Don't return threading error on release()-without-acquire() calls

Previously, a call to mbedtls_x509_crt_xxx_release() would return
MBEDTLS_ERR_THREADING_MUTEX_ERROR if usage counter for the frame/PK
was 0. Now that resource counting can also be used outside of
threading support, this is no longer adequate, and this commit
changes the return code to MBEDTLS_ERR_X509_FATAL_ERROR; while
generic, this at least matches the top-level module.
This commit is contained in:
Hanno Becker 2019-06-28 15:47:53 +01:00
parent fc99a09cc4
commit 69c303360e

View file

@ -878,7 +878,7 @@ static inline int mbedtls_x509_crt_frame_release( mbedtls_x509_crt const *crt )
#if !defined(MBEDTLS_X509_ALWAYS_FLUSH) || \ #if !defined(MBEDTLS_X509_ALWAYS_FLUSH) || \
defined(MBEDTLS_THREADING_C) defined(MBEDTLS_THREADING_C)
if( crt->cache->frame_readers == 0 ) if( crt->cache->frame_readers == 0 )
return( MBEDTLS_ERR_THREADING_MUTEX_ERROR ); return( MBEDTLS_ERR_X509_FATAL_ERROR );
crt->cache->frame_readers--; crt->cache->frame_readers--;
#endif #endif
@ -980,7 +980,7 @@ static inline int mbedtls_x509_crt_pk_release( mbedtls_x509_crt const *crt )
#if !defined(MBEDTLS_X509_ALWAYS_FLUSH) || \ #if !defined(MBEDTLS_X509_ALWAYS_FLUSH) || \
defined(MBEDTLS_THREADING_C) defined(MBEDTLS_THREADING_C)
if( crt->cache->pk_readers == 0 ) if( crt->cache->pk_readers == 0 )
return( MBEDTLS_ERR_THREADING_MUTEX_ERROR ); return( MBEDTLS_ERR_X509_FATAL_ERROR );
crt->cache->pk_readers--; crt->cache->pk_readers--;
#endif #endif