commit 190865523191330955cf12f6e47620a3a1033fbf
author Hanno Becker <hanno.becker@arm.com> Sat Nov 17 22:11:16 2018 +0000
committer Hanno Becker <hanno.becker@arm.com> Thu Nov 22 16:33:01 2018 +0000
tree 993c09cd55103c005ee4159fe06f0b43b0785e70
parent 4ee7e76378a7ee3e62f1bde1cdf868589926de17

Use enum for slot state in PSA-based cipher context

library/cipher.c

diff --git a/library/cipher.c b/library/cipher.c
index e9a1a07..95146ac 100644
--- a/library/cipher.c
+++ b/library/cipher.c
@@ -175,7 +175,7 @@
             mbedtls_cipher_context_psa * const cipher_psa =
                 (mbedtls_cipher_context_psa *) ctx->cipher_ctx;
 
-            if( cipher_psa->slot_state == 1 )
+            if( cipher_psa->slot_state == MBEDTLS_CIPHER_PSA_KEY_OWNED )
             {
                 /* xxx_free() doesn't allow to return failures. */
                 (void) psa_destroy_key( cipher_psa->slot );
@@ -299,14 +299,16 @@
             return( MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
 
         /* Don't allow keys to be set multiple times. */
-        if( cipher_psa->slot_state != 0 )
+        if( cipher_psa->slot_state != MBEDTLS_CIPHER_PSA_KEY_UNSET )
             return( MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
 
         /* Find a fresh key slot to use. */
         status = mbedtls_psa_get_free_key_slot( &cipher_psa->slot );
         if( status != PSA_SUCCESS )
             return( MBEDTLS_ERR_CIPHER_HW_ACCEL_FAILED );
-        cipher_psa->slot_state = 1; /* Indicate that we own the key slot. */
+         /* Indicate that we own the key slot and need to
+          * destroy it in mbedtls_cipher_free(). */
+        cipher_psa->slot_state = MBEDTLS_CIPHER_PSA_KEY_OWNED;
 
         /* From that point on, the responsibility for destroying the
          * key slot is on mbedtls_cipher_free(). This includes the case