psa_destroy_se_key: explain why the error is NOT_PERMITTED
diff --git a/library/psa_crypto_se.c b/library/psa_crypto_se.c
index e6dbe32..aece47d 100644
--- a/library/psa_crypto_se.c
+++ b/library/psa_crypto_se.c
@@ -223,6 +223,14 @@
{
psa_status_t status;
psa_status_t storage_status;
+ /* Normally a missing method would mean that the action is not
+ * supported. But psa_destroy_key() is not supposed to return
+ * PSA_ERROR_NOT_SUPPORTED: if you can create a key, you should
+ * be able to destroy it. The only use case for a driver that
+ * does not have a way to destroy keys at all is if the keys are
+ * locked in a read-only state: we can use the keys but not
+ * destroy them. Hence, if the driver doesn't support destroying
+ * keys, it's really a lack of permission. */
if( driver->methods->key_management == NULL ||
driver->methods->key_management->p_destroy == NULL )
return( PSA_ERROR_NOT_PERMITTED );