TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 5ac511b45a06e64c241518a079652b002ddf22b5^! / . / library / pk.c
commit5ac511b45a06e64c241518a079652b002ddf22b5[log] [tgz]
authorValerio Setti <valerio.setti@nordicsemi.no>Wed Feb 14 10:17:08 2024 +0100
committerValerio Setti <valerio.setti@nordicsemi.no>Mon Mar 11 11:34:58 2024 +0100
treef50a80e28b1a827e12880c2ee30fe13526998902
parent3a815cbd2f519232e58f690d27b9d987060ce71d [diff] [blame]
pk: let psa_export_key() check if the key is exportable or not

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>

diff --git a/library/pk.c b/library/pk.c
index 580fa0e..56f8bb1 100644
--- a/library/pk.c
+++ b/library/pk.c

@@ -1400,14 +1400,9 @@
         return MBEDTLS_ERR_PK_BAD_INPUT_DATA;
     }
 
-    if ((psa_get_key_usage_flags(&key_attr) & PSA_KEY_USAGE_EXPORT) != PSA_KEY_USAGE_EXPORT) {
-        ret = MBEDTLS_ERR_PK_BAD_INPUT_DATA;
-        goto exit;
-    }
-
     status = psa_export_key(key_id, exp_key, sizeof(exp_key), &exp_key_len);
     if (status != PSA_SUCCESS) {
-        ret = psa_generic_status_to_mbedtls(status);
+        ret = MBEDTLS_ERR_PK_BAD_INPUT_DATA;
         goto exit;
     }