Add some comments to document some non-obvious coding choices

2024-11-22 23:35:49 +01:00 · 2018-03-07 16:41:37 +01:00 · 2018-03-07 16:41:37 +01:00 · 6d9121381a
commit 6d9121381a
parent 03182e99b6
1 changed files with 7 additions and 3 deletions
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@ -305,6 +305,7 @@ psa_status_t psa_import_key(psa_key_slot_t key,

    if( PSA_KEY_TYPE_IS_RAW_BYTES( type ) )
    {
+        /* Ensure that a bytes-to-bit conversion won't overflow. */
        if( data_length > SIZE_MAX / 8 )
            return( PSA_ERROR_NOT_SUPPORTED );
        slot->data.raw.data = mbedtls_calloc( 1, data_length );
@ -396,7 +397,7 @@ psa_status_t psa_destroy_key(psa_key_slot_t key)
 #endif /* defined(MBEDTLS_ECP_C) */
    {
        /* Shouldn't happen: the key type is not any type that we
-         * put it. */
+         * put in. */
        return( PSA_ERROR_TAMPERING_DETECTED );
    }

@ -445,7 +446,7 @@ psa_status_t psa_get_key_information(psa_key_slot_t key,
 #endif /* defined(MBEDTLS_ECP_C) */
    {
        /* Shouldn't happen: the key type is not any type that we
-         * put it. */
+         * put in. */
        return( PSA_ERROR_TAMPERING_DETECTED );
    }

@ -503,8 +504,11 @@ psa_status_t psa_export_key(psa_key_slot_t key,
        return( PSA_SUCCESS );
    }
    else
-#endif /* definedMBEDTLS_PK_WRITE_C) */
+#endif /* defined(MBEDTLS_PK_WRITE_C) */
    {
+        /* This shouldn't happen in the reference implementation, but
+           it is valid for a special-purpose implementation to omit
+           support for exporting certain key types. */
        return( PSA_ERROR_NOT_SUPPORTED );
    }
 }