commit 8756763cf1ff15a2a075f0677327f4d29c0a7588
author Moran Peker <moran.peker@arm.com> Mon Jun 04 18:41:37 2018 +0300
committer itayzafrir <itay.zafrir@arm.com> Wed Sep 05 12:13:23 2018 +0300
tree 2cdcbce9c5ea4dc23cae06a543217b8ed4f1e03c
parent 785fd55a39f37543bb613dba132771b5ab74e323

change error check on psa_internal_export_key func

library/psa_crypto.c

diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index d1960f7..17d7d1a 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -471,13 +471,13 @@
     if( slot->type == PSA_KEY_TYPE_NONE )
         return( PSA_ERROR_EMPTY_SLOT );
 
-    if( !( slot->policy.usage & PSA_KEY_USAGE_EXPORT ) )
-        return( PSA_ERROR_NOT_PERMITTED );
-
-    if( export_public_key && !( PSA_KEY_TYPE_IS_PUBLIC_KEY( slot->type ) ||
-                                PSA_KEY_TYPE_IS_KEYPAIR( slot->type ) ) )
+    if( export_public_key && ( !( PSA_KEY_TYPE_IS_ASYMMETRIC( slot->type ) ) ) )
         return( PSA_ERROR_INVALID_ARGUMENT );
 
+    if( ( !export_public_key ) && ( !( PSA_KEY_TYPE_IS_PUBLIC_KEY( slot->type ) ) ) &&
+        ( !( slot->policy.usage & PSA_KEY_USAGE_EXPORT ) ) )
+        return( PSA_ERROR_NOT_PERMITTED );
+    
     if( PSA_KEY_TYPE_IS_RAW_BYTES( slot->type ) )
     {
         if( slot->data.raw.bytes > data_size )