commit 9ce31c466d181848f31ba932428db3d4da398a6d
author Gilles Peskine <Gilles.Peskine@arm.com> Tue Aug 13 15:14:20 2019 +0200
committer Gilles Peskine <Gilles.Peskine@arm.com> Tue Aug 13 15:14:20 2019 +0200
tree 82a4d95bbf1e68500e25672cadaef207ac998dd5
parent caec27821fab3db60bc52bea08602d7b1528d724

Note about destroying a key with other open handles

https://github.com/ARMmbed/mbed-crypto/issues/214

library/psa_crypto.c

diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index 4fee3cd..66c5151 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -1052,8 +1052,11 @@
 #if defined(MBEDTLS_PSA_CRYPTO_STORAGE_C)
     if( slot->attr.lifetime != PSA_KEY_LIFETIME_VOLATILE )
     {
-        storage_status =
-            psa_destroy_persistent_key( slot->attr.id );
+        storage_status = psa_destroy_persistent_key( slot->attr.id );
+        /* TODO: other slots may have a copy of the same key. We should
+         * invalidate them.
+         * https://github.com/ARMmbed/mbed-crypto/issues/214
+         */
     }
 #endif /* defined(MBEDTLS_PSA_CRYPTO_STORAGE_C) */