Comment on locking strategy in psa_fail_key_creation Signed-off-by: Ryan Everett <ryan.everett@arm.com>

commit: 73feaf2682b63b7c405c0360c26f3e066c2f465a [log] [tgz]
author: Ryan Everett <ryan.everett@arm.com> Wed Feb 14 11:36:41 2024 +0000
committer: Ryan Everett <ryan.everett@arm.com> Wed Feb 14 14:19:54 2024 +0000
tree: da91de23b24fa356705320fadfb94e6ea31ec1cb
parent: 3d8118d9dcae661fe2cc7d958d1a6ec8ee444c5c [diff]
diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index 5300126..67f6eac 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c

@@ -1900,6 +1900,9 @@
     }
 
 #if defined(MBEDTLS_THREADING_C)
+    /* If the lock operation fails we still wipe the slot.
+     * Operations will no longer work after a failed lock,
+     * but we still need to wipe the slot of confidential data. */
     mbedtls_mutex_lock(&mbedtls_threading_key_slot_mutex);
 #endif
commit	73feaf2682b63b7c405c0360c26f3e066c2f465a	[log] [tgz]
author	Ryan Everett <ryan.everett@arm.com>	Wed Feb 14 11:36:41 2024 +0000
committer	Ryan Everett <ryan.everett@arm.com>	Wed Feb 14 14:19:54 2024 +0000
tree	da91de23b24fa356705320fadfb94e6ea31ec1cb
parent	3d8118d9dcae661fe2cc7d958d1a6ec8ee444c5c [diff]