boot: Move encryption context invalidation to boot_enc_drop. The enc_key_data.valid had been set to true when key has been added to the encryption context, but in case when boot_enc_drop was called, on the same context, the flag remained true, even though the context may no longer hold any valid context nor key. The commit moves the enc_key_data invalidation to enc_key_drop. Signed-off-by: Dominik Ermel <dominik.ermel@nordicsemi.no>

commit: 335573520dbe64392280fab0e94edc50dc0cb05b [log] [tgz]
author: Dominik Ermel <dominik.ermel@nordicsemi.no> Wed Jul 17 12:11:55 2024 +0000
committer: Andrzej Puzdrowski <andrzej.puzdrowski@nordicsemi.no> Wed Jul 24 17:27:19 2024 +0200
tree: c3aa610c616fe8e4a0a361f9080519c1313ad61b
parent: 2371c0aa7f058c04d02894d7e4d64bf9c834b69c [diff] [blame]
diff --git a/boot/bootutil/src/encrypted.c b/boot/bootutil/src/encrypted.c
index d8e3292..09b9a78 100644
--- a/boot/bootutil/src/encrypted.c
+++ b/boot/bootutil/src/encrypted.c

@@ -347,6 +347,7 @@
 boot_enc_drop(struct enc_key_data *enc_state, uint8_t slot)
 {
     bootutil_aes_ctr_drop(&enc_state[slot].aes_ctr);
+    enc_state[slot].valid = 0;
     return 0;
 }
 
@@ -359,7 +360,6 @@
     rc = bootutil_aes_ctr_set_key(&enc_state[slot].aes_ctr, bs->enckey[slot]);
     if (rc != 0) {
         boot_enc_drop(enc_state, slot);
-        enc_state[slot].valid = 0;
         return -1;
     }
commit	335573520dbe64392280fab0e94edc50dc0cb05b	[log] [tgz]
author	Dominik Ermel <dominik.ermel@nordicsemi.no>	Wed Jul 17 12:11:55 2024 +0000
committer	Andrzej Puzdrowski <andrzej.puzdrowski@nordicsemi.no>	Wed Jul 24 17:27:19 2024 +0200
tree	c3aa610c616fe8e4a0a361f9080519c1313ad61b
parent	2371c0aa7f058c04d02894d7e4d64bf9c834b69c [diff] [blame]