commit 9717d107ca5bcc8d9a32b0cae64686297b942f36
author Gilles Peskine <Gilles.Peskine@arm.com> Wed Jun 26 11:50:04 2019 +0200
committer Gilles Peskine <Gilles.Peskine@arm.com> Wed Jun 26 20:01:35 2019 +0200
tree 4029f0825be273adac2c05ee8712947fb3bdef7c
parent a8ade16ffd4e8466be75a03fbec4e98cb4db479f

Explain that lifetime=0 from static initialization means VOLATILE

library/psa_crypto_se.c

diff --git a/library/psa_crypto_se.c b/library/psa_crypto_se.c
index 814c6a0..688d4e7 100644
--- a/library/psa_crypto_se.c
+++ b/library/psa_crypto_se.c
@@ -27,6 +27,7 @@
 
 #if defined(MBEDTLS_PSA_CRYPTO_SE_C)
 
+#include <assert.h>
 #include <string.h>
 
 #include "psa_crypto_se.h"
@@ -47,6 +48,12 @@
 
     if( methods->hal_version != PSA_DRV_SE_HAL_VERSION )
         return( PSA_ERROR_NOT_SUPPORTED );
+    /* Driver table entries are 0-initialized. 0 is not a valid driver
+     * lifetime because it means a volatile key. */
+#if defined(static_assert)
+    static_assert( PSA_KEY_LIFETIME_VOLATILE == 0,
+                   "Secure element support requires 0 to mean a volatile key" );
+#endif
     if( lifetime == PSA_KEY_LIFETIME_VOLATILE ||
         lifetime == PSA_KEY_LIFETIME_PERSISTENT )
     {