Make psa_fail_key_creation thread safe Hold the mutex for the entirety of the call. We need the mutex for the wipe, also hold it for aborting driver transactions as this may have side effects. We can't use the macros here as this function returns void. Signed-off-by: Ryan Everett <ryan.everett@arm.com>

commit: b71014406c090349e414dec586845c415ed71dd9 [log] [tgz]
author: Ryan Everett <ryan.everett@arm.com> Tue Jan 23 20:09:49 2024 +0000
committer: Ryan Everett <ryan.everett@arm.com> Wed Feb 14 14:19:54 2024 +0000
tree: 07322fb98afa7150b136ab25ea2533ccfbb14543
parent: 91ffe5b87187e45a0d58cf0510d773ebe804508d [diff] [blame]
diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index d53a09d..a0e58a2 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c

@@ -1891,6 +1891,10 @@
         return;
     }
 
+#if defined(MBEDTLS_THREADING_C)
+    mbedtls_mutex_lock(&mbedtls_threading_key_slot_mutex);
+#endif
+
 #if defined(MBEDTLS_PSA_CRYPTO_SE_C)
     /* TODO: If the key has already been created in the secure
      * element, and the failure happened later (when saving metadata
@@ -1909,6 +1913,10 @@
 #endif /* MBEDTLS_PSA_CRYPTO_SE_C */
 
     psa_wipe_key_slot(slot);
+
+#if defined(MBEDTLS_THREADING_C)
+    mbedtls_mutex_unlock(&mbedtls_threading_key_slot_mutex);
+#endif
 }
 
 /** Validate optional attributes during key creation.
commit	b71014406c090349e414dec586845c415ed71dd9	[log] [tgz]
author	Ryan Everett <ryan.everett@arm.com>	Tue Jan 23 20:09:49 2024 +0000
committer	Ryan Everett <ryan.everett@arm.com>	Wed Feb 14 14:19:54 2024 +0000
tree	07322fb98afa7150b136ab25ea2533ccfbb14543
parent	91ffe5b87187e45a0d58cf0510d773ebe804508d [diff] [blame]