[Cryptech-Commits] [sw/libhal] 02/02: Add locking around keystore operations.

git at cryptech.is git at cryptech.is
Thu Feb 2 19:07:33 UTC 2017


This is an automated email from the git hooks/post-receive script.

sra at hactrn.net pushed a commit to branch pymux
in repository sw/libhal.

commit 6a6cc04dda8f613134ae5b30b702de3f1a4dff95
Author: Rob Austein <sra at hactrn.net>
AuthorDate: Thu Feb 2 14:03:18 2017 -0500

    Add locking around keystore operations.
---
 Makefile       |   2 +-
 core.c         |  10 -
 hal_internal.h |   9 +
 ks_flash.c     | 886 ++++++++++++++++++++++++++++++++-------------------------
 ks_volatile.c  | 240 ++++++++++------
 locks.c        | 108 +++++++
 rpc_misc.c     |  20 +-
 rpc_pkey.c     |  18 +-
 8 files changed, 797 insertions(+), 496 deletions(-)

diff --git a/Makefile b/Makefile
index 1e7316a..6c01ab4 100644
--- a/Makefile
+++ b/Makefile
@@ -75,7 +75,7 @@ endif
 # just "building this is harmless even if we don't use it."
 
 OBJ += errorstrings.o hash.o asn1.o ecdsa.o rsa.o xdr.o slip.o
-OBJ += rpc_api.o rpc_hash.o uuid.o rpc_pkcs1.o crc32.o
+OBJ += rpc_api.o rpc_hash.o uuid.o rpc_pkcs1.o crc32.o locks.o
 
 # Object files to build when we're on a platform with direct access
 # to our hardware (Verilog) cores.
diff --git a/core.c b/core.c
index a17422a..cbc3bc2 100644
--- a/core.c
+++ b/core.c
@@ -201,16 +201,6 @@ hal_core_t *hal_core_find(const char *name, hal_core_t *core)
   return NULL;
 }
 
-__attribute__((weak)) void hal_critical_section_start(void)
-{
-  return;
-}
-
-__attribute__((weak)) void hal_critical_section_end(void)
-{
-  return;
-}
-
 hal_error_t hal_core_alloc(const char *name, hal_core_t **pcore)
 {
   hal_core_t *core;
diff --git a/hal_internal.h b/hal_internal.h
index 69d9e67..40a600c 100644
--- a/hal_internal.h
+++ b/hal_internal.h
@@ -90,6 +90,15 @@ extern void *hal_allocate_static_memory(const size_t size);
 #define HAL_MAX_HASH_DIGEST_LENGTH      SHA512_DIGEST_LEN
 
 /*
+ * Locks and critical sections.
+ */
+
+extern void hal_critical_section_start(void);
+extern void hal_critical_section_end(void);
+extern void hal_ks_lock(void);
+extern void hal_ks_unlock(void);
+
+/*
  * Dispatch structures for RPC implementation.
  *
  * The breakdown of which functions go into which dispatch vectors is
diff --git a/ks_flash.c b/ks_flash.c
index 82bc59a..c21d668 100644
--- a/ks_flash.c
+++ b/ks_flash.c
@@ -565,6 +565,10 @@ static inline void *gnaw(uint8_t **mem, size_t *len, const size_t size)
 
 static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc)
 {
+  hal_error_t err = HAL_OK;
+
+  hal_ks_lock();
+
   /*
    * Initialize the in-memory database.
    */
@@ -577,8 +581,10 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
 
     uint8_t *mem = hal_allocate_static_memory(len);
 
-    if (mem == NULL)
-      return HAL_ERROR_ALLOCATION_FAILURE;
+    if (mem == NULL) {
+      err = HAL_ERROR_ALLOCATION_FAILURE;
+      goto done;
+    }
 
     memset(&db, 0, sizeof(db));
     memset(mem, 0, len);
@@ -597,8 +603,10 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
 
   db.ksi.used  = 0;
 
-  if (db.ksi.index == NULL || db.ksi.names == NULL || db.cache == NULL)
-    return HAL_ERROR_IMPOSSIBLE;
+  if (db.ksi.index == NULL || db.ksi.names == NULL || db.cache == NULL) {
+    err = HAL_ERROR_IMPOSSIBLE;
+    goto done;
+  }
 
   for (int i = 0; i < KS_FLASH_CACHE_SIZE; i++)
     db.cache[i].blockno = ~0;
@@ -613,11 +621,12 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
   flash_block_status_t block_status[NUM_FLASH_BLOCKS];
   flash_block_t *block = cache_pick_lru();
   int first_erased = -1;
-  hal_error_t err;
   uint16_t n = 0;
 
-  if (block == NULL)
-    return HAL_ERROR_IMPOSSIBLE;
+  if (block == NULL) {
+    err = HAL_ERROR_IMPOSSIBLE;
+    goto done;
+  }
 
   for (int i = 0; i < NUM_FLASH_BLOCKS; i++) {
 
@@ -637,7 +646,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
       block_types[i] = block_get_type(block);
 
     else
-      return err;
+      goto done;
 
     switch (block_types[i]) {
     case BLOCK_TYPE_KEY:
@@ -718,7 +727,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
    */
 
   if ((err = hal_ks_index_setup(&db.ksi)) != HAL_OK)
-    return err;
+    goto done;
 
   /*
    * We might want to call hal_ks_index_fsck() here, if we can figure
@@ -764,7 +773,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
     int where = -1;
 
     if ((err = hal_ks_index_find_range(&db.ksi, &name, 0, &n_blocks, NULL, &where, 0)) != HAL_OK)
-      return err;
+      goto done;
 
     while (where > 0 && !hal_uuid_cmp(&name, &db.ksi.names[db.ksi.index[where - 1]].name)) {
       where--;
@@ -778,9 +787,9 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
     for (int j = 0; j < n_blocks; j++) {
       unsigned b = db.ksi.index[where + j];
       switch (block_status[b]) {
-      case BLOCK_STATUS_LIVE:           n_live++;       break;
-      case BLOCK_STATUS_TOMBSTONE:      n_tomb++;       break;
-      default:                          return HAL_ERROR_IMPOSSIBLE;
+      case BLOCK_STATUS_LIVE:           n_live++;                       break;
+      case BLOCK_STATUS_TOMBSTONE:      n_tomb++;                       break;
+      default:                          err = HAL_ERROR_IMPOSSIBLE;     goto done;
       }
     }
 
@@ -790,7 +799,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
       unsigned b = db.ksi.index[where + j];
 
       if ((err = block_read(b, block)) != HAL_OK)
-        return err;
+        goto done;
 
       join_ok &= block->header.this_chunk == j && block->header.total_chunks == n_blocks;
 
@@ -804,18 +813,21 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
         tomb_ok &= block->header.this_chunk == i_tomb++ && block->header.total_chunks == n_tomb;
         break;
       default:
-        return HAL_ERROR_IMPOSSIBLE;
+        err = HAL_ERROR_IMPOSSIBLE;
+        goto done;
       }
     }
 
-    if (!live_ok && !tomb_ok && !join_ok)
-      return HAL_ERROR_KEYSTORE_LOST_DATA;
+    if (!live_ok && !tomb_ok && !join_ok) {
+      err = HAL_ERROR_KEYSTORE_LOST_DATA;
+      goto done;
+    }
 
     if (live_ok) {
       for (int j = 0; j < n_tomb; j++) {
         const unsigned b = tomb_blocks[j];
         if ((err = block_zero(b)) != HAL_OK)
-          return err;
+          goto done;
         block_types[b]  = BLOCK_TYPE_ZEROED;
         block_status[b] = BLOCK_STATUS_UNKNOWN;
       }
@@ -825,7 +837,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
       for (int j = 0; j < n_live; j++) {
         const unsigned b = live_blocks[j];
         if ((err = block_zero(b)) != HAL_OK)
-          return err;
+          goto done;
         block_types[b]  = BLOCK_TYPE_ZEROED;
         block_status[b] = BLOCK_STATUS_UNKNOWN;
       }
@@ -855,11 +867,11 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
       if (block_status[b1] != BLOCK_STATUS_TOMBSTONE)
         continue;
       if ((err = block_read(b1, block)) != HAL_OK)
-        return err;
+        goto done;
       block->header.block_status = BLOCK_STATUS_LIVE;
       if ((err = hal_ks_index_replace(&db.ksi, &name, j, &b2, &hint)) != HAL_OK ||
           (err = block_write(b2, block)) != HAL_OK)
-        return err;
+        goto done;
       block_types[b1]  = BLOCK_TYPE_ZEROED;
       block_status[b1] = BLOCK_STATUS_UNKNOWN;
       block_status[b2] = BLOCK_STATUS_LIVE;
@@ -875,7 +887,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
   }
 
   else if (err != HAL_ERROR_KEY_NOT_FOUND)
-    return err;
+    goto done;
 
   else {
     /*
@@ -900,7 +912,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
     block->pin.user_pin  = db.user_pin;
 
     if ((err = hal_ks_index_add(&db.ksi, &pin_uuid, 0, &b, NULL)) != HAL_OK)
-      return err;
+      goto done;
 
     cache_mark_used(block, b);
 
@@ -909,7 +921,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
     cache_release(block);
 
     if (err != HAL_OK)
-      return err;
+      goto done;
   }
 
   /*
@@ -918,7 +930,7 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
 
   if (db.ksi.used < db.ksi.size &&
       (err = block_erase_maybe(db.ksi.index[db.ksi.used])) != HAL_OK)
-    return err;
+    goto done;
 
   /*
    * And we're finally done.
@@ -926,7 +938,11 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver, const int alloc
 
   db.ks.driver = driver;
 
-  return HAL_OK;
+  err = HAL_OK;
+
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 static hal_error_t ks_shutdown(const hal_ks_driver_t * const driver)
@@ -974,18 +990,24 @@ static hal_error_t ks_store(hal_ks_t *ks,
   if (ks != &db.ks || slot == NULL || der == NULL || der_len == 0 || !acceptable_key_type(slot->type))
     return HAL_ERROR_BAD_ARGUMENTS;
 
-  flash_block_t *block = cache_pick_lru();
-  flash_key_block_t *k = &block->key;
+  hal_error_t err = HAL_OK;
+  flash_block_t *block;
+  flash_key_block_t *k;
   uint8_t kek[KEK_LENGTH];
   size_t kek_len;
-  hal_error_t err;
   unsigned b;
 
-  if (block == NULL)
-    return HAL_ERROR_IMPOSSIBLE;
+  hal_ks_lock();
+
+  if ((block = cache_pick_lru()) == NULL) {
+    err = HAL_ERROR_IMPOSSIBLE;
+    goto done;
+  }
+
+  k = &block->key;
 
   if ((err = hal_ks_index_add(&db.ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
-    return err;
+    goto done;
 
   cache_mark_used(block, b);
 
@@ -1008,13 +1030,18 @@ static hal_error_t ks_store(hal_ks_t *ks,
 
   memset(kek, 0, sizeof(kek));
 
-  if (err == HAL_OK &&
-      (err = block_write(b, block)) == HAL_OK)
-    return HAL_OK;
+  if (err == HAL_OK)
+    err = block_write(b, block);
+
+  if (err == HAL_OK)
+    goto done;
 
   memset(block, 0, sizeof(*block));
   cache_release(block);
   (void) hal_ks_index_delete(&db.ksi, &slot->name, 0, NULL, &slot->hint);
+
+ done:
+  hal_ks_unlock();
   return err;
 }
 
@@ -1025,16 +1052,20 @@ static hal_error_t ks_fetch(hal_ks_t *ks,
   if (ks != &db.ks || slot == NULL)
     return HAL_ERROR_BAD_ARGUMENTS;
 
+  hal_error_t err = HAL_OK;
   flash_block_t *block;
-  hal_error_t err;
   unsigned b;
 
+  hal_ks_lock();
+
   if ((err = hal_ks_index_find(&db.ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK ||
       (err = block_read_cached(b, &block))                                != HAL_OK)
-    return err;
+    goto done;
 
-  if (block_get_type(block) != BLOCK_TYPE_KEY)
-    return HAL_ERROR_KEYSTORE_WRONG_BLOCK_TYPE; /* HAL_ERROR_KEY_NOT_FOUND */
+  if (block_get_type(block) != BLOCK_TYPE_KEY) {
+    err = HAL_ERROR_KEYSTORE_WRONG_BLOCK_TYPE; /* HAL_ERROR_KEY_NOT_FOUND */
+    goto done;
+  }
 
   cache_mark_used(block, b);
 
@@ -1062,12 +1093,11 @@ static hal_error_t ks_fetch(hal_ks_t *ks,
       err = hal_aes_keyunwrap(NULL, kek, kek_len, k->der, k->der_len, der, der_len);
 
     memset(kek, 0, sizeof(kek));
-
-    if (err != HAL_OK)
-      return err;
   }
 
-  return HAL_OK;
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 static hal_error_t ks_delete(hal_ks_t *ks,
@@ -1076,25 +1106,33 @@ static hal_error_t ks_delete(hal_ks_t *ks,
   if (ks != &db.ks || slot == NULL)
     return HAL_ERROR_BAD_ARGUMENTS;
 
-  hal_error_t err;
+  hal_error_t err = HAL_OK;
   unsigned n;
 
-  if ((err = hal_ks_index_delete_range(&db.ksi, &slot->name, 0, &n, NULL, &slot->hint)) != HAL_OK)
-    return err;
+  hal_ks_lock();
 
-  unsigned b[n];
+  {
+    if ((err = hal_ks_index_delete_range(&db.ksi, &slot->name, 0, &n, NULL, &slot->hint)) != HAL_OK)
+      goto done;
 
-  if ((err = hal_ks_index_delete_range(&db.ksi, &slot->name, n, NULL, b, &slot->hint)) != HAL_OK)
-    return err;
+    unsigned b[n];
 
-  for (int i = 0; i < n; i++)
-    cache_release(cache_find_block(b[i]));
+    if ((err = hal_ks_index_delete_range(&db.ksi, &slot->name, n, NULL, b, &slot->hint)) != HAL_OK)
+      goto done;
 
-  for (int i = 0; i < n; i++)
-    if ((err = block_zero(b[i])) != HAL_OK)
-      return err;
+    for (int i = 0; i < n; i++)
+      cache_release(cache_find_block(b[i]));
 
-  return block_erase_maybe(db.ksi.index[db.ksi.used]);
+    for (int i = 0; i < n; i++)
+      if ((err = block_zero(b[i])) != HAL_OK)
+        goto done;
+
+    err = block_erase_maybe(db.ksi.index[db.ksi.used]);
+  }
+
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 static inline hal_error_t locate_attributes(flash_block_t *block, const unsigned chunk,
@@ -1141,11 +1179,13 @@ static hal_error_t ks_match(hal_ks_t *ks,
     return HAL_ERROR_BAD_ARGUMENTS;
 
   uint8_t need_attr[attributes_len > 0 ? attributes_len : 1];
+  hal_error_t err = HAL_OK;
   flash_block_t *block;
   int possible = 0;
-  hal_error_t err;
   int i = -1;
 
+  hal_ks_lock();
+
   *result_len = 0;
 
   err = hal_ks_index_find(&db.ksi, previous_uuid, 0, NULL, &i);
@@ -1153,7 +1193,7 @@ static hal_error_t ks_match(hal_ks_t *ks,
   if (err == HAL_ERROR_KEY_NOT_FOUND)
     i--;
   else if (err != HAL_OK)
-    return err;
+    goto done;
 
   while (*result_len < result_max && ++i < db.ksi.used) {
 
@@ -1166,7 +1206,7 @@ static hal_error_t ks_match(hal_ks_t *ks,
       continue;
 
     if ((err = block_read_cached(b, &block)) != HAL_OK)
-      return err;
+      goto done;
 
     if (db.ksi.names[b].chunk == 0) {
       memset(need_attr, 1, sizeof(need_attr));
@@ -1184,13 +1224,13 @@ static hal_error_t ks_match(hal_ks_t *ks,
 
       if ((err = locate_attributes(block, db.ksi.names[b].chunk,
                                    &bytes, &bytes_len, &attrs_len)) != HAL_OK)
-        return err;
+        goto done;
 
       if (*attrs_len > 0) {
         hal_pkey_attribute_t attrs[*attrs_len];
 
         if ((err = hal_ks_attribute_scan(bytes, bytes_len, attrs, *attrs_len, NULL)) != HAL_OK)
-          return err;
+          goto done;
 
         for (int j = 0; possible && j < attributes_len; j++) {
 
@@ -1220,7 +1260,11 @@ static hal_error_t ks_match(hal_ks_t *ks,
     possible = 0;
   }
 
-  return HAL_OK;
+  err = HAL_OK;
+
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 /*
@@ -1259,419 +1303,451 @@ static  hal_error_t ks_set_attributes(hal_ks_t *ks,
    */
 
   unsigned updated_attributes_len = attributes_len;
+  hal_error_t err = HAL_OK;
   flash_block_t *block;
   unsigned chunk = 0;
-  hal_error_t err;
   unsigned b;
 
-  do {
-    int hint = slot->hint + chunk;
+  hal_ks_lock();
 
-    if ((err = hal_ks_index_find(&db.ksi, &slot->name, chunk, &b, &hint)) != HAL_OK ||
-        (err = block_read_cached(b, &block))                              != HAL_OK)
-      return err;
+  {
 
-    if (block->header.this_chunk != chunk)
-      return HAL_ERROR_IMPOSSIBLE;
+    do {
+      int hint = slot->hint + chunk;
 
-    cache_mark_used(block, b);
+      if ((err = hal_ks_index_find(&db.ksi, &slot->name, chunk, &b, &hint)) != HAL_OK ||
+          (err = block_read_cached(b, &block))                              != HAL_OK)
+        goto done;
 
-    if (chunk == 0)
-      slot->hint = hint;
+      if (block->header.this_chunk != chunk) {
+        err = HAL_ERROR_IMPOSSIBLE;
+        goto done;
+      }
 
-    uint8_t *bytes = NULL;
-    size_t bytes_len = 0;
-    unsigned *attrs_len;
+      cache_mark_used(block, b);
 
-    if ((err = locate_attributes(block, chunk, &bytes, &bytes_len, &attrs_len)) != HAL_OK)
-      return err;
+      if (chunk == 0)
+        slot->hint = hint;
+
+      uint8_t *bytes = NULL;
+      size_t bytes_len = 0;
+      unsigned *attrs_len;
+
+      if ((err = locate_attributes(block, chunk, &bytes, &bytes_len, &attrs_len)) != HAL_OK)
+        goto done;
 
-    updated_attributes_len += *attrs_len;
+      updated_attributes_len += *attrs_len;
 
 #if KS_SET_ATTRIBUTES_SINGLE_BLOCK_UPDATE_FAST_PATH
 
-    hal_pkey_attribute_t attrs[*attrs_len + attributes_len];
-    size_t total;
+      hal_pkey_attribute_t attrs[*attrs_len + attributes_len];
+      size_t total;
 
-    if ((err = hal_ks_attribute_scan(bytes, bytes_len, attrs, *attrs_len, &total)) != HAL_OK)
-      return err;
+      if ((err = hal_ks_attribute_scan(bytes, bytes_len, attrs, *attrs_len, &total)) != HAL_OK)
+        goto done;
 
-    for (int i = 0; err == HAL_OK && i < attributes_len; i++)
-      if (attributes[i].length == HAL_PKEY_ATTRIBUTE_NIL)
-        err = hal_ks_attribute_delete(bytes, bytes_len, attrs, attrs_len, &total,
-                                      attributes[i].type);
-      else
-        err = hal_ks_attribute_insert(bytes, bytes_len, attrs, attrs_len, &total,
-                                      attributes[i].type,
-                                      attributes[i].value,
-                                      attributes[i].length);
+      for (int i = 0; err == HAL_OK && i < attributes_len; i++)
+        if (attributes[i].length == HAL_PKEY_ATTRIBUTE_NIL)
+          err = hal_ks_attribute_delete(bytes, bytes_len, attrs, attrs_len, &total,
+                                        attributes[i].type);
+        else
+          err = hal_ks_attribute_insert(bytes, bytes_len, attrs, attrs_len, &total,
+                                        attributes[i].type,
+                                        attributes[i].value,
+                                        attributes[i].length);
 
-    if (err != HAL_OK)
-      cache_release(block);
+      if (err != HAL_OK)
+        cache_release(block);
 
-    if (err == HAL_ERROR_RESULT_TOO_LONG)
-      continue;
+      if (err == HAL_ERROR_RESULT_TOO_LONG)
+        continue;
 
-    if (err != HAL_OK)
-      return err;
+      if (err == HAL_OK)
+        err = block_update(b, block, &slot->name, chunk, &hint);
 
-    return block_update(b, block, &slot->name, chunk, &hint);
+      goto done;
 
 #endif /* KS_SET_ATTRIBUTES_SINGLE_BLOCK_UPDATE_FAST_PATH */
 
-  } while (++chunk < block->header.total_chunks);
+    } while (++chunk < block->header.total_chunks);
 
-  /*
-   * If we get here, we're on the slow path, which requires rewriting
-   * all the chunks in this object but which can also add or remove
-   * chunks from this object.  We need to keep track of all the old
-   * chunks so we can zero them at the end, and because we can't zero
-   * them until we've written out the new chunks, we need enough free
-   * blocks to hold all the new chunks.
-   *
-   * Calculating all of this is extremely tedious, but flash writes
-   * are so much more expensive than anything else we do here that
-   * it's almost certainly worth it.
-   *
-   * We don't need the attribute values to compute the sizes, just the
-   * attribute sizes, so we scan all the existing blocks, build up a
-   * structure with the current attribute types and sizes, modify that
-   * according to our arguments, and compute the needed size.  Once we
-   * have that, we can start rewriting existing blocks.  We put all
-   * the new stuff at the end, which simplifies this slightly.
-   *
-   * In theory, this process never requires us to have more than two
-   * blocks in memory at the same time (source and destination when
-   * copying across chunk boundaries), but having enough cache buffers
-   * to keep the whole set in memory will almost certainly make this
-   * run faster.
-   */
+    /*
+     * If we get here, we're on the slow path, which requires rewriting
+     * all the chunks in this object but which can also add or remove
+     * chunks from this object.  We need to keep track of all the old
+     * chunks so we can zero them at the end, and because we can't zero
+     * them until we've written out the new chunks, we need enough free
+     * blocks to hold all the new chunks.
+     *
+     * Calculating all of this is extremely tedious, but flash writes
+     * are so much more expensive than anything else we do here that
+     * it's almost certainly worth it.
+     *
+     * We don't need the attribute values to compute the sizes, just the
+     * attribute sizes, so we scan all the existing blocks, build up a
+     * structure with the current attribute types and sizes, modify that
+     * according to our arguments, and compute the needed size.  Once we
+     * have that, we can start rewriting existing blocks.  We put all
+     * the new stuff at the end, which simplifies this slightly.
+     *
+     * In theory, this process never requires us to have more than two
+     * blocks in memory at the same time (source and destination when
+     * copying across chunk boundaries), but having enough cache buffers
+     * to keep the whole set in memory will almost certainly make this
+     * run faster.
+     */
 
-  hal_pkey_attribute_t updated_attributes[updated_attributes_len];
-  const unsigned total_chunks_old = block->header.total_chunks;
-  size_t bytes_available = 0;
+    hal_pkey_attribute_t updated_attributes[updated_attributes_len];
+    const unsigned total_chunks_old = block->header.total_chunks;
+    size_t bytes_available = 0;
 
-  updated_attributes_len = 0;
+    updated_attributes_len = 0;
 
-  /*
-   * Phase 0.1: Walk the old chunks to populate updated_attributes[].
-   * This also initializes bytes_available, since we can only get that
-   * by reading old chunk zero.
-   */
+    /*
+     * Phase 0.1: Walk the old chunks to populate updated_attributes[].
+     * This also initializes bytes_available, since we can only get that
+     * by reading old chunk zero.
+     */
 
-  for (chunk = 0; chunk < total_chunks_old; chunk++) {
-    int hint = slot->hint + chunk;
+    for (chunk = 0; chunk < total_chunks_old; chunk++) {
+      int hint = slot->hint + chunk;
 
-    if ((err = hal_ks_index_find(&db.ksi, &slot->name, chunk, &b, &hint)) != HAL_OK ||
-        (err = block_read_cached(b, &block))                              != HAL_OK)
-      return err;
+      if ((err = hal_ks_index_find(&db.ksi, &slot->name, chunk, &b, &hint)) != HAL_OK ||
+          (err = block_read_cached(b, &block))                              != HAL_OK)
+        goto done;
 
-    if (block->header.this_chunk != chunk)
-      return HAL_ERROR_IMPOSSIBLE;
+      if (block->header.this_chunk != chunk) {
+        err = HAL_ERROR_IMPOSSIBLE;
+        goto done;
+      }
 
-    cache_mark_used(block, b);
+      cache_mark_used(block, b);
 
-    uint8_t *bytes = NULL;
-    size_t bytes_len = 0;
-    unsigned *attrs_len;
+      uint8_t *bytes = NULL;
+      size_t bytes_len = 0;
+      unsigned *attrs_len;
 
-    if ((err = locate_attributes(block, chunk, &bytes, &bytes_len, &attrs_len)) != HAL_OK)
-      return err;
+      if ((err = locate_attributes(block, chunk, &bytes, &bytes_len, &attrs_len)) != HAL_OK)
+        goto done;
 
-    hal_pkey_attribute_t attrs[*attrs_len];
-    size_t total;
+      hal_pkey_attribute_t attrs[*attrs_len];
+      size_t total;
 
-    if ((err = hal_ks_attribute_scan(bytes, bytes_len, attrs, *attrs_len, &total)) != HAL_OK)
-      return err;
+      if ((err = hal_ks_attribute_scan(bytes, bytes_len, attrs, *attrs_len, &total)) != HAL_OK)
+        goto done;
 
-    if (chunk == 0)
-      bytes_available = bytes_len;
+      if (chunk == 0)
+        bytes_available = bytes_len;
 
-    for (int i = 0; i < *attrs_len; i++) {
+      for (int i = 0; i < *attrs_len; i++) {
 
-      if (updated_attributes_len >= sizeof(updated_attributes)/sizeof(*updated_attributes))
-        return HAL_ERROR_IMPOSSIBLE;
+        if (updated_attributes_len >= sizeof(updated_attributes)/sizeof(*updated_attributes)) {
+          err = HAL_ERROR_IMPOSSIBLE;
+          goto done;
+        }
 
-      updated_attributes[updated_attributes_len].type   = attrs[i].type;
-      updated_attributes[updated_attributes_len].length = attrs[i].length;
-      updated_attributes[updated_attributes_len].value  = NULL;
-      updated_attributes_len++;
+        updated_attributes[updated_attributes_len].type   = attrs[i].type;
+        updated_attributes[updated_attributes_len].length = attrs[i].length;
+        updated_attributes[updated_attributes_len].value  = NULL;
+        updated_attributes_len++;
+      }
     }
-  }
 
-  /*
-   * Phase 0.2: Merge new attributes into updated_attributes[].
-   */
+    /*
+     * Phase 0.2: Merge new attributes into updated_attributes[].
+     */
 
-  for (int i = 0; i < attributes_len; i++) {
+    for (int i = 0; i < attributes_len; i++) {
 
-    for (int j = 0; j < updated_attributes_len; j++)
-      if (updated_attributes[j].type == attributes[i].type)
-        updated_attributes[j].length = HAL_PKEY_ATTRIBUTE_NIL;
+      for (int j = 0; j < updated_attributes_len; j++)
+        if (updated_attributes[j].type == attributes[i].type)
+          updated_attributes[j].length = HAL_PKEY_ATTRIBUTE_NIL;
 
-    if (updated_attributes_len >= sizeof(updated_attributes)/sizeof(*updated_attributes))
-      return HAL_ERROR_IMPOSSIBLE;
+      if (updated_attributes_len >= sizeof(updated_attributes)/sizeof(*updated_attributes)) {
+        err = HAL_ERROR_IMPOSSIBLE;
+        goto done;
+      }
 
-    updated_attributes[updated_attributes_len].type   = attributes[i].type;
-    updated_attributes[updated_attributes_len].length = attributes[i].length;
-    updated_attributes[updated_attributes_len].value  = attributes[i].value;
-    updated_attributes_len++;
-  }
+      updated_attributes[updated_attributes_len].type   = attributes[i].type;
+      updated_attributes[updated_attributes_len].length = attributes[i].length;
+      updated_attributes[updated_attributes_len].value  = attributes[i].value;
+      updated_attributes_len++;
+    }
 
-  /*
-   * Phase 0.3: Prune trailing deletion actions: we don't need them to
-   * maintain synchronization with existing attributes, and doing so
-   * simplifies logic for updating the final new chunk.
-   */
+    /*
+     * Phase 0.3: Prune trailing deletion actions: we don't need them to
+     * maintain synchronization with existing attributes, and doing so
+     * simplifies logic for updating the final new chunk.
+     */
 
-  while (updated_attributes_len > 0 &&
-         updated_attributes[updated_attributes_len - 1].length == HAL_PKEY_ATTRIBUTE_NIL)
-    --updated_attributes_len;
+    while (updated_attributes_len > 0 &&
+           updated_attributes[updated_attributes_len - 1].length == HAL_PKEY_ATTRIBUTE_NIL)
+      --updated_attributes_len;
 
-  /*
-   * Phase 0.4: Figure out how many chunks all this will occupy.
-   */
+    /*
+     * Phase 0.4: Figure out how many chunks all this will occupy.
+     */
 
-  chunk = 0;
+    chunk = 0;
 
-  for (int i = 0; i < updated_attributes_len; i++) {
+    for (int i = 0; i < updated_attributes_len; i++) {
 
-    if (updated_attributes[i].length == HAL_PKEY_ATTRIBUTE_NIL)
-      continue;
+      if (updated_attributes[i].length == HAL_PKEY_ATTRIBUTE_NIL)
+        continue;
 
-    const size_t needed = hal_ks_attribute_header_size + updated_attributes[i].length;
+      const size_t needed = hal_ks_attribute_header_size + updated_attributes[i].length;
 
-    if (needed > bytes_available) {
-      bytes_available = SIZEOF_FLASH_ATTRIBUTE_BLOCK_ATTRIBUTES;
-      chunk++;
+      if (needed > bytes_available) {
+        bytes_available = SIZEOF_FLASH_ATTRIBUTE_BLOCK_ATTRIBUTES;
+        chunk++;
+      }
+
+      if (needed > bytes_available) {
+        err = HAL_ERROR_RESULT_TOO_LONG;
+        goto done;
+      }
+
+      bytes_available -= needed;
     }
 
-    if (needed > bytes_available)
-      return HAL_ERROR_RESULT_TOO_LONG;
+    const unsigned total_chunks_new = chunk + 1;
 
-    bytes_available -= needed;
-  }
+    /*
+     * If there aren't enough free blocks, give up now, before changing anything.
+     */
 
-  const unsigned total_chunks_new = chunk + 1;
+    if (db.ksi.used + total_chunks_new > db.ksi.size) {
+      err = HAL_ERROR_NO_KEY_INDEX_SLOTS;
+      goto done;
+    }
 
-  /*
-   * If there aren't enough free blocks, give up now, before changing anything.
-   */
+    /*
+     * Phase 1: Deprecate all the old chunks, remember where they were.
+     */
 
-  if (db.ksi.used + total_chunks_new > db.ksi.size)
-    return HAL_ERROR_NO_KEY_INDEX_SLOTS;
+    unsigned old_blocks[total_chunks_old];
 
-  /*
-   * Phase 1: Deprecate all the old chunks, remember where they were.
-   */
+    for (chunk = 0; chunk < total_chunks_old; chunk++) {
+      int hint = slot->hint + chunk;
+      if ((err = hal_ks_index_find(&db.ksi, &slot->name, chunk, &b, &hint)) != HAL_OK ||
+          (err = block_deprecate(b))                                        != HAL_OK)
+        goto done;
+      old_blocks[chunk] = b;
+    }
 
-  unsigned old_blocks[total_chunks_old];
+    /*
+     * Phase 2: Write new chunks, copying attributes from old chunks or
+     * from attributes[], as needed.
+     */
 
-  for (chunk = 0; chunk < total_chunks_old; chunk++) {
-    int hint = slot->hint + chunk;
-    if ((err = hal_ks_index_find(&db.ksi, &slot->name, chunk, &b, &hint)) != HAL_OK ||
-        (err = block_deprecate(b))                                        != HAL_OK)
-      return err;
-    old_blocks[chunk] = b;
-  }
+    {
+      hal_pkey_attribute_t old_attrs[updated_attributes_len], new_attrs[updated_attributes_len];
+      unsigned                *old_attrs_len = NULL,             *new_attrs_len = NULL;
+      flash_block_t           *old_block     = NULL,             *new_block     = NULL;
+      uint8_t                 *old_bytes     = NULL,             *new_bytes     = NULL;
+      size_t                   old_bytes_len = 0,                 new_bytes_len = 0;
+      unsigned                 old_chunk     = 0,                 new_chunk     = 0;
+      size_t                   old_total     = 0,                 new_total     = 0;
 
-  /*
-   * Phase 2: Write new chunks, copying attributes from old chunks or
-   * from attributes[], as needed.
-   */
+      int updated_attributes_i = 0, old_attrs_i = 0;
 
-  {
-    hal_pkey_attribute_t old_attrs[updated_attributes_len], new_attrs[updated_attributes_len];
-    unsigned                *old_attrs_len = NULL,             *new_attrs_len = NULL;
-    flash_block_t           *old_block     = NULL,             *new_block     = NULL;
-    uint8_t                 *old_bytes     = NULL,             *new_bytes     = NULL;
-    size_t                   old_bytes_len = 0,                 new_bytes_len = 0;
-    unsigned                 old_chunk     = 0,                 new_chunk     = 0;
-    size_t                   old_total     = 0,                 new_total     = 0;
+      uint32_t       new_attr_type;
+      size_t         new_attr_length;
+      const uint8_t *new_attr_value;
 
-    int updated_attributes_i = 0, old_attrs_i = 0;
+      while (updated_attributes_i < updated_attributes_len) {
 
-    uint32_t       new_attr_type;
-    size_t         new_attr_length;
-    const uint8_t *new_attr_value;
+        if (old_chunk >= total_chunks_old || new_chunk >= total_chunks_new) {
+          err = HAL_ERROR_IMPOSSIBLE;
+          goto done;
+        }
 
-    while (updated_attributes_i < updated_attributes_len) {
+        /*
+         * If we've gotten as far as new data that comes from
+         * attributes[], we have it in hand and can just copy it.
+         */
 
-      if (old_chunk >= total_chunks_old || new_chunk >= total_chunks_new)
-        return HAL_ERROR_IMPOSSIBLE;
+        if (updated_attributes_len - updated_attributes_i <= attributes_len) {
+          new_attr_type   = updated_attributes[updated_attributes_i].type;
+          new_attr_length = updated_attributes[updated_attributes_i].length;
+          new_attr_value  = updated_attributes[updated_attributes_i].value;
+        }
 
-      /*
-       * If we've gotten as far as new data that comes from
-       * attributes[], we have it in hand and can just copy it.
-       */
+        /*
+         * Otherwise, we have to read it from an old block, which may in
+         * turn require reading in the next old block.
+         */
 
-      if (updated_attributes_len - updated_attributes_i <= attributes_len) {
-        new_attr_type   = updated_attributes[updated_attributes_i].type;
-        new_attr_length = updated_attributes[updated_attributes_i].length;
-        new_attr_value  = updated_attributes[updated_attributes_i].value;
-      }
+        else {
 
-      /*
-       * Otherwise, we have to read it from an old block, which may in
-       * turn require reading in the next old block.
-       */
+          if (old_block == NULL) {
 
-      else {
+            if ((err = block_read_cached(old_blocks[old_chunk], &old_block)) != HAL_OK)
+              goto done;
 
-        if (old_block == NULL) {
+            if (old_block->header.this_chunk != old_chunk) {
+              err = HAL_ERROR_IMPOSSIBLE;
+              goto done;
+            }
+
+            if ((err = locate_attributes(old_block, old_chunk,
+                                         &old_bytes, &old_bytes_len, &old_attrs_len)) != HAL_OK ||
+                (err = hal_ks_attribute_scan(old_bytes, old_bytes_len,
+                                             old_attrs, *old_attrs_len, &old_total))  != HAL_OK)
+              goto done;
+
+            old_attrs_i = 0;
+          }
 
-          if ((err = block_read_cached(old_blocks[old_chunk], &old_block)) != HAL_OK)
-            return err;
+          if (old_attrs_i >= *old_attrs_len) {
+            old_chunk++;
+            old_block = NULL;
+            continue;
+          }
 
-          if (old_block->header.this_chunk != old_chunk)
-            return HAL_ERROR_IMPOSSIBLE;
+          new_attr_type   = old_attrs[old_attrs_i].type;
+          new_attr_length = old_attrs[old_attrs_i].length;
+          new_attr_value  = old_attrs[old_attrs_i].value;
 
-          if ((err = locate_attributes(old_block, old_chunk,
-                                       &old_bytes, &old_bytes_len, &old_attrs_len)) != HAL_OK ||
-              (err = hal_ks_attribute_scan(old_bytes, old_bytes_len,
-                                           old_attrs, *old_attrs_len, &old_total))  != HAL_OK)
-            return err;
+          if (new_attr_type != updated_attributes[updated_attributes_i].type) {
+            err = HAL_ERROR_IMPOSSIBLE;
+            goto done;
+          }
 
-          old_attrs_i = 0;
+          old_attrs_i++;
         }
 
-        if (old_attrs_i >= *old_attrs_len) {
-          old_chunk++;
-          old_block = NULL;
-          continue;
+        /*
+         * Unless this is a deletion, we should have something to write.
+         */
+
+        if (new_attr_length != HAL_PKEY_ATTRIBUTE_NIL && new_attr_value == NULL) {
+          err = HAL_ERROR_IMPOSSIBLE;
+          goto done;
         }
 
-        new_attr_type   = old_attrs[old_attrs_i].type;
-        new_attr_length = old_attrs[old_attrs_i].length;
-        new_attr_value  = old_attrs[old_attrs_i].value;
+        /*
+         * Initialize the new block if necessary.  If it's the new chunk
+         * zero, we need to copy all the non-attribute data from the old
+         * chunk zero; otherwise, it's a new empty attribute block.
+         */
+
+        if (new_block == NULL) {
+
+          new_block = cache_pick_lru();
+          memset(new_block, 0xFF, sizeof(*new_block));
+
+          if (new_chunk == 0) {
+            flash_block_t *tmp_block;
+            if ((err = block_read_cached(old_blocks[0], &tmp_block)) != HAL_OK)
+              goto done;
+            if (tmp_block->header.this_chunk != 0) {
+              err = HAL_ERROR_IMPOSSIBLE;
+              goto done;
+            }
+            new_block->header.block_type   = BLOCK_TYPE_KEY;
+            new_block->key.name            = slot->name;
+            new_block->key.type            = tmp_block->key.type;
+            new_block->key.curve           = tmp_block->key.curve;
+            new_block->key.flags           = tmp_block->key.flags;
+            new_block->key.der_len         = tmp_block->key.der_len;
+            new_block->key.attributes_len  = 0;
+            memcpy(new_block->key.der, tmp_block->key.der, tmp_block->key.der_len);
+          }
+          else {
+            new_block->header.block_type   = BLOCK_TYPE_ATTR;
+            new_block->attr.name           = slot->name;
+            new_block->attr.attributes_len = 0;
+          }
 
-        if (new_attr_type != updated_attributes[updated_attributes_i].type)
-          return HAL_ERROR_IMPOSSIBLE;
+          new_block->header.block_status = BLOCK_STATUS_LIVE;
+          new_block->header.total_chunks = total_chunks_new;
+          new_block->header.this_chunk   = new_chunk;
 
-        old_attrs_i++;
-      }
+          if ((err = locate_attributes(new_block, new_chunk,
+                                       &new_bytes, &new_bytes_len, &new_attrs_len)) != HAL_OK)
+            goto done;
 
-      /*
-       * Unless this is a deletion, we should have something to write.
-       */
+          new_total = 0;
+        }
 
-      if (new_attr_length != HAL_PKEY_ATTRIBUTE_NIL && new_attr_value == NULL)
-        return HAL_ERROR_IMPOSSIBLE;
+        /*
+         * After all that setup, we finally get to write the frelling attribute.
+         */
 
-      /*
-       * Initialize the new block if necessary.  If it's the new chunk
-       * zero, we need to copy all the non-attribute data from the old
-       * chunk zero; otherwise, it's a new empty attribute block.
-       */
+        if (new_attr_length != HAL_PKEY_ATTRIBUTE_NIL)
+          err = hal_ks_attribute_insert(new_bytes, new_bytes_len, new_attrs, new_attrs_len, &new_total,
+                                        new_attr_type, new_attr_value, new_attr_length);
 
-      if (new_block == NULL) {
-
-        new_block = cache_pick_lru();
-        memset(new_block, 0xFF, sizeof(*new_block));
-
-        if (new_chunk == 0) {
-          flash_block_t *tmp_block;
-          if ((err = block_read_cached(old_blocks[0], &tmp_block)) != HAL_OK)
-            return err;
-          if (tmp_block->header.this_chunk != 0)
-            return HAL_ERROR_IMPOSSIBLE;
-          new_block->header.block_type   = BLOCK_TYPE_KEY;
-          new_block->key.name            = slot->name;
-          new_block->key.type            = tmp_block->key.type;
-          new_block->key.curve           = tmp_block->key.curve;
-          new_block->key.flags           = tmp_block->key.flags;
-          new_block->key.der_len         = tmp_block->key.der_len;
-          new_block->key.attributes_len  = 0;
-          memcpy(new_block->key.der, tmp_block->key.der, tmp_block->key.der_len);
-        }
-        else {
-          new_block->header.block_type   = BLOCK_TYPE_ATTR;
-          new_block->attr.name           = slot->name;
-          new_block->attr.attributes_len = 0;
+        /*
+         * Figure out what to do next: immediately loop for next
+         * attribute, write current block, or bail out.
+         */
+
+        switch (err) {
+        case HAL_OK:
+          if (++updated_attributes_i < updated_attributes_len)
+            continue;
+          break;
+        case HAL_ERROR_RESULT_TOO_LONG:
+          if (new_chunk > 0 && new_attrs_len == 0)
+            goto done;
+          break;
+        default:
+          goto done;
         }
 
-        new_block->header.block_status = BLOCK_STATUS_LIVE;
-        new_block->header.total_chunks = total_chunks_new;
-        new_block->header.this_chunk   = new_chunk;
+        /*
+         * If we get here, either the current new block is full or we
+         * finished the last block, so we need to write it out.
+         */
 
-        if ((err = locate_attributes(new_block, new_chunk,
-                                     &new_bytes, &new_bytes_len, &new_attrs_len)) != HAL_OK)
-          return err;
+        int hint = slot->hint + new_chunk;
 
-        new_total = 0;
-      }
+        if (new_chunk < total_chunks_old)
+          err = hal_ks_index_replace(&db.ksi, &slot->name, new_chunk, &b, &hint);
+        else
+          err = hal_ks_index_add(    &db.ksi, &slot->name, new_chunk, &b, &hint);
 
-      /*
-       * After all that setup, we finally get to write the frelling attribute.
-       */
-
-      if (new_attr_length != HAL_PKEY_ATTRIBUTE_NIL)
-        err = hal_ks_attribute_insert(new_bytes, new_bytes_len, new_attrs, new_attrs_len, &new_total,
-                                      new_attr_type, new_attr_value, new_attr_length);
+        if (err != HAL_OK || (err = block_write(b, new_block)) != HAL_OK)
+          goto done;
 
-      /*
-       * Figure out what to do next: immediately loop for next
-       * attribute, write current block, or bail out.
-       */
+        cache_mark_used(new_block, b);
 
-      switch (err) {
-      case HAL_OK:
-        if (++updated_attributes_i < updated_attributes_len)
-          continue;
-        break;
-      case HAL_ERROR_RESULT_TOO_LONG:
-        if (new_chunk > 0 && new_attrs_len == 0)
-          return err;
-        break;
-      default:
-        return err;
+        new_block = NULL;
+        new_chunk++;
       }
 
       /*
-       * If we get here, either the current new block is full or we
-       * finished the last block, so we need to write it out.
+       * If number of blocks shrank, we need to clear trailing entries from the index.
        */
 
-      int hint = slot->hint + new_chunk;
+      for (old_chunk = total_chunks_new; old_chunk < total_chunks_old; old_chunk++) {
+        int hint = slot->hint + old_chunk;
 
-      if (new_chunk < total_chunks_old)
-        err = hal_ks_index_replace(&db.ksi, &slot->name, new_chunk, &b, &hint);
-      else
-        err = hal_ks_index_add(    &db.ksi, &slot->name, new_chunk, &b, &hint);
+        err = hal_ks_index_delete(&db.ksi, &slot->name, old_chunk, NULL, &hint);
 
-      if (err != HAL_OK || (err = block_write(b, new_block)) != HAL_OK)
-        return err;
-
-      cache_mark_used(new_block, b);
+        if (err != HAL_OK)
+          goto done;
+      }
 
-      new_block = NULL;
-      new_chunk++;
     }
 
     /*
-     * If number of blocks shrank, we need to clear trailing entries from the index.
+     * Phase 3: Zero the old chunks we deprecated in phase 1.
      */
 
-    for (old_chunk = total_chunks_new; old_chunk < total_chunks_old; old_chunk++) {
-      int hint = slot->hint + old_chunk;
-
-      err = hal_ks_index_delete(&db.ksi, &slot->name, old_chunk, NULL, &hint);
+    for (chunk = 0; chunk < total_chunks_old; chunk++)
+      if ((err = block_zero(old_blocks[chunk])) != HAL_OK)
+        goto done;
 
-      if (err != HAL_OK)
-        return err;
-    }
+    err = HAL_OK;
 
   }
 
-  /*
-   * Phase 3: Zero the old chunks we deprecated in phase 1.
-   */
-
-  for (chunk = 0; chunk < total_chunks_old; chunk++)
-    if ((err = block_zero(old_blocks[chunk])) != HAL_OK)
-      return err;
-
-  return HAL_OK;
+ done:
+  hal_ks_unlock();
+  return err;
 
 #warning What happens if something goes wrong partway through this awful mess?
   // We're left in a state with all the old blocks deprecated and
@@ -1700,18 +1776,22 @@ static  hal_error_t ks_get_attributes(hal_ks_t *ks,
   flash_block_t *block = NULL;
   unsigned chunk = 0;
   unsigned found = 0;
-  hal_error_t err;
+  hal_error_t err = HAL_OK;
   unsigned b;
 
+  hal_ks_lock();
+
   do {
     int hint = slot->hint + chunk;
 
     if ((err = hal_ks_index_find(&db.ksi, &slot->name, chunk, &b, &hint)) != HAL_OK ||
         (err = block_read_cached(b, &block))                              != HAL_OK)
-      return err;
+      goto done;
 
-    if (block->header.this_chunk != chunk)
-      return HAL_ERROR_IMPOSSIBLE;
+    if (block->header.this_chunk != chunk) {
+      err = HAL_ERROR_IMPOSSIBLE;
+      goto done;
+    }
 
     if (chunk == 0)
       slot->hint = hint;
@@ -1723,7 +1803,7 @@ static  hal_error_t ks_get_attributes(hal_ks_t *ks,
     unsigned *attrs_len;
 
     if ((err = locate_attributes(block, chunk, &bytes, &bytes_len, &attrs_len)) != HAL_OK)
-      return err;
+      goto done;
 
     if (*attrs_len == 0)
       continue;
@@ -1731,7 +1811,7 @@ static  hal_error_t ks_get_attributes(hal_ks_t *ks,
     hal_pkey_attribute_t attrs[*attrs_len];
 
     if ((err = hal_ks_attribute_scan(bytes, bytes_len, attrs, *attrs_len, NULL)) != HAL_OK)
-      return err;
+      goto done;
 
     for (int i = 0; i < attributes_len; i++) {
 
@@ -1750,8 +1830,10 @@ static  hal_error_t ks_get_attributes(hal_ks_t *ks,
       if (attributes_buffer_len == 0)
         continue;
 
-      if (attrs[j].length > attributes_buffer + attributes_buffer_len - abuf)
-        return HAL_ERROR_RESULT_TOO_LONG;
+      if (attrs[j].length > attributes_buffer + attributes_buffer_len - abuf) {
+        err = HAL_ERROR_RESULT_TOO_LONG;
+        goto done;
+      }
 
       memcpy(abuf, attrs[j].value, attrs[j].length);
       attributes[i].value  = abuf;
@@ -1761,9 +1843,13 @@ static  hal_error_t ks_get_attributes(hal_ks_t *ks,
   } while (found < attributes_len && ++chunk < block->header.total_chunks);
 
   if (found < attributes_len && attributes_buffer_len > 0)
-    return HAL_ERROR_ATTRIBUTE_NOT_FOUND;
+    err = HAL_ERROR_ATTRIBUTE_NOT_FOUND;
+  else
+    err = HAL_OK;
 
-  return HAL_OK;
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 const hal_ks_driver_t hal_ks_token_driver[1] = {{
@@ -1799,6 +1885,8 @@ void hal_ks_init_read_only_pins_only(void)
   unsigned b, best_seen = ~0;
   flash_block_t block[1];
 
+  hal_ks_lock();
+
   for (b = 0; b < NUM_FLASH_BLOCKS; b++) {
     if (block_read(b, block) != HAL_OK || block_get_type(block) != BLOCK_TYPE_PIN)
       continue;
@@ -1818,6 +1906,8 @@ void hal_ks_init_read_only_pins_only(void)
   db.wheel_pin = block->pin.wheel_pin;
   db.so_pin    = block->pin.so_pin;
   db.user_pin  = block->pin.user_pin;
+
+  hal_ks_unlock();
 }
 
 /*
@@ -1830,14 +1920,20 @@ hal_error_t hal_get_pin(const hal_user_t user,
   if (pin == NULL)
     return HAL_ERROR_BAD_ARGUMENTS;
 
+  hal_error_t err = HAL_OK;
+
+  hal_ks_lock();
+
   switch (user) {
   case HAL_USER_WHEEL:  *pin = &db.wheel_pin;  break;
   case HAL_USER_SO:     *pin = &db.so_pin;     break;
   case HAL_USER_NORMAL: *pin = &db.user_pin;   break;
-  default:              return HAL_ERROR_BAD_ARGUMENTS;
+  default:               err = HAL_ERROR_BAD_ARGUMENTS;
   }
 
-  return HAL_OK;
+  hal_ks_unlock();
+
+  return err;
 }
 
 /*
@@ -1904,8 +2000,10 @@ hal_error_t hal_set_pin(const hal_user_t user,
   hal_error_t err;
   unsigned b;
 
+  hal_ks_lock();
+
   if ((err = fetch_pin_block(&b, &block)) != HAL_OK)
-    return err;
+    goto done;
 
   flash_pin_block_t new_data = block->pin;
   hal_ks_pin_t *dp, *bp;
@@ -1914,7 +2012,7 @@ hal_error_t hal_set_pin(const hal_user_t user,
   case HAL_USER_WHEEL:  bp = &new_data.wheel_pin; dp = &db.wheel_pin; break;
   case HAL_USER_SO:     bp = &new_data.so_pin;    dp = &db.so_pin;    break;
   case HAL_USER_NORMAL: bp = &new_data.user_pin;  dp = &db.user_pin;  break;
-  default:              return HAL_ERROR_BAD_ARGUMENTS;
+  default:              err = HAL_ERROR_BAD_ARGUMENTS;  goto done;
   }
 
   const hal_ks_pin_t old_pin = *dp;
@@ -1923,6 +2021,8 @@ hal_error_t hal_set_pin(const hal_user_t user,
   if ((err = update_pin_block(b, block, &new_data)) != HAL_OK)
     *dp = old_pin;
 
+ done:
+  hal_ks_unlock();
   return err;
 }
 
@@ -1951,16 +2051,20 @@ hal_error_t hal_mkm_flash_read(uint8_t *buf, const size_t len)
   hal_error_t err;
   unsigned b;
 
+  hal_ks_lock();
+
   if ((err = fetch_pin_block(&b, &block)) != HAL_OK)
-    return err;
+    goto done;
 
   if (block->pin.kek_set != FLASH_KEK_SET)
-    return HAL_ERROR_MASTERKEY_NOT_SET;
+    err = HAL_ERROR_MASTERKEY_NOT_SET;
 
-  if (buf != NULL)
+  else if (buf != NULL)
     memcpy(buf, block->pin.kek, len);
 
-  return HAL_OK;
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 hal_error_t hal_mkm_flash_write(const uint8_t * const buf, const size_t len)
@@ -1975,15 +2079,21 @@ hal_error_t hal_mkm_flash_write(const uint8_t * const buf, const size_t len)
   hal_error_t err;
   unsigned b;
 
+  hal_ks_lock();
+
   if ((err = fetch_pin_block(&b, &block)) != HAL_OK)
-    return err;
+    goto done;
 
   flash_pin_block_t new_data = block->pin;
 
   new_data.kek_set = FLASH_KEK_SET;
   memcpy(new_data.kek, buf, len);
 
-  return update_pin_block(b, block, &new_data);
+  err = update_pin_block(b, block, &new_data);
+
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 hal_error_t hal_mkm_flash_erase(const size_t len)
@@ -1995,15 +2105,21 @@ hal_error_t hal_mkm_flash_erase(const size_t len)
   hal_error_t err;
   unsigned b;
 
+  hal_ks_lock();
+
   if ((err = fetch_pin_block(&b, &block)) != HAL_OK)
-    return err;
+    goto done;
 
   flash_pin_block_t new_data = block->pin;
 
   new_data.kek_set = FLASH_KEK_SET;
   memset(new_data.kek, 0, len);
 
-  return update_pin_block(b, block, &new_data);
+  err = update_pin_block(b, block, &new_data);
+
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 #endif /* HAL_MKM_FLASH_BACKUP_KLUDGE */
diff --git a/ks_volatile.c b/ks_volatile.c
index 99ad68c..9762da3 100644
--- a/ks_volatile.c
+++ b/ks_volatile.c
@@ -187,6 +187,10 @@ static hal_error_t ks_init(const hal_ks_driver_t * const driver,
 
 static hal_error_t ks_volatile_init(const hal_ks_driver_t * const driver, const int alloc)
 {
+  hal_error_t err = HAL_OK;
+
+  hal_ks_lock();
+
   const size_t len = (sizeof(*volatile_ks.db) +
                       sizeof(*volatile_ks.db->ksi.index) * STATIC_KS_VOLATILE_SLOTS +
                       sizeof(*volatile_ks.db->ksi.names) * STATIC_KS_VOLATILE_SLOTS +
@@ -195,9 +199,12 @@ static hal_error_t ks_volatile_init(const hal_ks_driver_t * const driver, const
   uint8_t *mem = NULL;
 
   if (alloc && (mem = hal_allocate_static_memory(len)) == NULL)
-    return HAL_ERROR_ALLOCATION_FAILURE;
+    err = HAL_ERROR_ALLOCATION_FAILURE;
+  else
+    err = ks_init(driver, 1, &volatile_ks, mem, len);
 
-  return ks_init(driver, 1, &volatile_ks, mem, len);
+  hal_ks_unlock();
+  return err;
 }
 
 static hal_error_t ks_volatile_shutdown(const hal_ks_driver_t * const driver)
@@ -241,14 +248,18 @@ static hal_error_t ks_store(hal_ks_t *ks,
     return HAL_ERROR_BAD_ARGUMENTS;
 
   ks_t *ksv = ks_to_ksv(ks);
-  hal_error_t err;
+  hal_error_t err = HAL_OK;
   unsigned b;
 
-  if (ksv->db == NULL)
-    return HAL_ERROR_KEYSTORE_ACCESS;
+  hal_ks_lock();
+
+  if (ksv->db == NULL) {
+    err = HAL_ERROR_KEYSTORE_ACCESS;
+    goto done;
+  }
 
   if ((err = hal_ks_index_add(&ksv->db->ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
-    return err;
+    goto done;
 
   uint8_t kek[KEK_LENGTH];
   size_t kek_len;
@@ -272,6 +283,8 @@ static hal_error_t ks_store(hal_ks_t *ks,
   else
     (void) hal_ks_index_delete(&ksv->db->ksi, &slot->name, 0, NULL, &slot->hint);
 
+ done:
+  hal_ks_unlock();
   return err;
 }
 
@@ -283,19 +296,25 @@ static hal_error_t ks_fetch(hal_ks_t *ks,
     return HAL_ERROR_BAD_ARGUMENTS;
 
   ks_t *ksv = ks_to_ksv(ks);
-  hal_error_t err;
+  hal_error_t err = HAL_OK;
   unsigned b;
 
-  if (ksv->db == NULL)
-    return HAL_ERROR_KEYSTORE_ACCESS;
+  hal_ks_lock();
+
+  if (ksv->db == NULL) {
+    err = HAL_ERROR_KEYSTORE_ACCESS;
+    goto done;
+  }
 
   if ((err = hal_ks_index_find(&ksv->db->ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
-    return err;
+    goto done;
 
   const ks_key_t * const k = &ksv->db->keys[b];
 
-  if (!key_visible_to_session(ksv, slot->client_handle, slot->session_handle, k))
-    return HAL_ERROR_KEY_NOT_FOUND;
+  if (!key_visible_to_session(ksv, slot->client_handle, slot->session_handle, k)) {
+    err = HAL_ERROR_KEY_NOT_FOUND;
+    goto done;
+  }
 
   slot->type  = k->type;
   slot->curve = k->curve;
@@ -319,12 +338,11 @@ static hal_error_t ks_fetch(hal_ks_t *ks,
       err = hal_aes_keyunwrap(NULL, kek, kek_len, k->der, k->der_len, der, der_len);
 
     memset(kek, 0, sizeof(kek));
-
-    if (err != HAL_OK)
-      return err;
   }
 
-  return HAL_OK;
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 static hal_error_t ks_delete(hal_ks_t *ks,
@@ -334,24 +352,32 @@ static hal_error_t ks_delete(hal_ks_t *ks,
     return HAL_ERROR_BAD_ARGUMENTS;
 
   ks_t *ksv = ks_to_ksv(ks);
-  hal_error_t err;
+  hal_error_t err = HAL_OK;
   unsigned b;
 
-  if (ksv->db == NULL)
-    return HAL_ERROR_KEYSTORE_ACCESS;
+  hal_ks_lock();
+
+  if (ksv->db == NULL) {
+    err = HAL_ERROR_KEYSTORE_ACCESS;
+    goto done;
+  }
 
   if ((err = hal_ks_index_find(&ksv->db->ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
-    return err;
+    goto done;
 
-  if (!key_visible_to_session(ksv, slot->client_handle, slot->session_handle, &ksv->db->keys[b]))
-    return HAL_ERROR_KEY_NOT_FOUND;
+  if (!key_visible_to_session(ksv, slot->client_handle, slot->session_handle, &ksv->db->keys[b])) {
+    err = HAL_ERROR_KEY_NOT_FOUND;
+    goto done;
+  }
 
   if ((err = hal_ks_index_delete(&ksv->db->ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
-    return err;
+    goto done;
 
   memset(&ksv->db->keys[b], 0, sizeof(ksv->db->keys[b]));
 
-  return HAL_OK;
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 static hal_error_t ks_match(hal_ks_t *ks,
@@ -376,9 +402,11 @@ static hal_error_t ks_match(hal_ks_t *ks,
   if (ksv->db == NULL)
     return HAL_ERROR_KEYSTORE_ACCESS;
 
-  hal_error_t err;
+  hal_error_t err = HAL_OK;
   int i = -1;
 
+  hal_ks_lock();
+
   *result_len = 0;
 
   err = hal_ks_index_find(&ksv->db->ksi, previous_uuid, 0, NULL, &i);
@@ -386,7 +414,7 @@ static hal_error_t ks_match(hal_ks_t *ks,
   if (err == HAL_ERROR_KEY_NOT_FOUND)
     i--;
   else if (err != HAL_OK)
-    return err;
+    goto done;
 
   while (*result_len < result_max && ++i < ksv->db->ksi.used) {
 
@@ -415,7 +443,7 @@ static hal_error_t ks_match(hal_ks_t *ks,
 
       if ((err = hal_ks_attribute_scan(k->der + k->der_len, sizeof(k->der) - k->der_len,
                                        key_attrs, k->attributes_len, NULL)) != HAL_OK)
-        return err;
+        goto done;
 
       for (const hal_pkey_attribute_t *required = attributes;
            ok && required < attributes + attributes_len; required++) {
@@ -437,7 +465,11 @@ static hal_error_t ks_match(hal_ks_t *ks,
     ++*result_len;
   }
 
-  return HAL_OK;
+  err = HAL_OK;
+
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 static hal_error_t ks_set_attributes(hal_ks_t *ks,
@@ -449,40 +481,53 @@ static hal_error_t ks_set_attributes(hal_ks_t *ks,
     return HAL_ERROR_BAD_ARGUMENTS;
 
   ks_t *ksv = ks_to_ksv(ks);
-  hal_error_t err;
+  hal_error_t err = HAL_OK;
   unsigned b;
 
-  if (ksv->db == NULL)
-    return HAL_ERROR_KEYSTORE_ACCESS;
+  hal_ks_lock();
+
+  {
+    if (ksv->db == NULL) {
+      err = HAL_ERROR_KEYSTORE_ACCESS;
+      goto done;
+    }
+
+    if ((err = hal_ks_index_find(&ksv->db->ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
+      goto done;
+
+    ks_key_t * const k = &ksv->db->keys[b];
+
+    if (!key_visible_to_session(ksv, slot->client_handle, slot->session_handle, k)) {
+      err = HAL_ERROR_KEY_NOT_FOUND;
+      goto done;
+    }
+
+    hal_pkey_attribute_t attrs[k->attributes_len + attributes_len];
+    uint8_t *bytes = k->der + k->der_len;
+    size_t bytes_len = sizeof(k->der) - k->der_len;
+    size_t total_len;
+
+    if ((err = hal_ks_attribute_scan(bytes, bytes_len, attrs, k->attributes_len, &total_len)) != HAL_OK)
+      goto done;
+
+    for (const hal_pkey_attribute_t *a = attributes; a < attributes + attributes_len; a++) {
+      if (a->length == HAL_PKEY_ATTRIBUTE_NIL)
+        err =  hal_ks_attribute_delete(bytes, bytes_len, attrs, &k->attributes_len, &total_len,
+                                       a->type);
+      else
+        err =  hal_ks_attribute_insert(bytes, bytes_len, attrs, &k->attributes_len, &total_len,
+                                       a->type, a->value, a->length);
+      if (err != HAL_OK)
+        goto done;
+    }
+
+    err = HAL_OK;
 
-  if ((err = hal_ks_index_find(&ksv->db->ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
-    return err;
-
-  ks_key_t * const k = &ksv->db->keys[b];
-
-  if (!key_visible_to_session(ksv, slot->client_handle, slot->session_handle, k))
-    return HAL_ERROR_KEY_NOT_FOUND;
-
-  hal_pkey_attribute_t attrs[k->attributes_len + attributes_len];
-  uint8_t *bytes = k->der + k->der_len;
-  size_t bytes_len = sizeof(k->der) - k->der_len;
-  size_t total_len;
-
-  if ((err = hal_ks_attribute_scan(bytes, bytes_len, attrs, k->attributes_len, &total_len)) != HAL_OK)
-    return err;
-
-  for (const hal_pkey_attribute_t *a = attributes; a < attributes + attributes_len; a++) {
-    if (a->length == HAL_PKEY_ATTRIBUTE_NIL)
-      err =  hal_ks_attribute_delete(bytes, bytes_len, attrs, &k->attributes_len, &total_len,
-                                     a->type);
-    else
-      err =  hal_ks_attribute_insert(bytes, bytes_len, attrs, &k->attributes_len, &total_len,
-                                     a->type, a->value, a->length);
-    if (err != HAL_OK)
-      return err;
   }
 
-  return HAL_OK;
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 static hal_error_t ks_get_attributes(hal_ks_t *ks,
@@ -497,53 +542,70 @@ static hal_error_t ks_get_attributes(hal_ks_t *ks,
     return HAL_ERROR_BAD_ARGUMENTS;
 
   ks_t *ksv = ks_to_ksv(ks);
-  hal_error_t err;
+  hal_error_t err = HAL_OK;
   unsigned b;
 
-  if (ksv->db == NULL)
-    return HAL_ERROR_KEYSTORE_ACCESS;
+  hal_ks_lock();
 
-  if ((err = hal_ks_index_find(&ksv->db->ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
-    return err;
+  {
+    if (ksv->db == NULL) {
+      err = HAL_ERROR_KEYSTORE_ACCESS;
+      goto done;
+    }
 
-  const ks_key_t * const k = &ksv->db->keys[b];
+    if ((err = hal_ks_index_find(&ksv->db->ksi, &slot->name, 0, &b, &slot->hint)) != HAL_OK)
+      goto done;
 
-  if (!key_visible_to_session(ksv, slot->client_handle, slot->session_handle, k))
-    return HAL_ERROR_KEY_NOT_FOUND;
+    const ks_key_t * const k = &ksv->db->keys[b];
 
-  hal_pkey_attribute_t attrs[k->attributes_len > 0 ? k->attributes_len : 1];
+    if (!key_visible_to_session(ksv, slot->client_handle, slot->session_handle, k)) {
+      err = HAL_ERROR_KEY_NOT_FOUND;
+      goto done;
+    }
 
-  if ((err = hal_ks_attribute_scan(k->der + k->der_len, sizeof(k->der) - k->der_len,
-                                   attrs, k->attributes_len, NULL)) != HAL_OK)
-    return err;
+    hal_pkey_attribute_t attrs[k->attributes_len > 0 ? k->attributes_len : 1];
 
-  uint8_t *abuf = attributes_buffer;
+    if ((err = hal_ks_attribute_scan(k->der + k->der_len, sizeof(k->der) - k->der_len,
+                                     attrs, k->attributes_len, NULL)) != HAL_OK)
+      goto done;
 
-  for (int i = 0; i < attributes_len; i++) {
-    int j = 0;
-    while (j < k->attributes_len && attrs[j].type != attributes[i].type)
-      j++;
-    const int found = j < k->attributes_len;
+    uint8_t *abuf = attributes_buffer;
 
-    if (attributes_buffer_len == 0) {
-      attributes[i].value  = NULL;
-      attributes[i].length = found ? attrs[j].length : 0;
-      continue;
-    }
+    for (int i = 0; i < attributes_len; i++) {
+      int j = 0;
+      while (j < k->attributes_len && attrs[j].type != attributes[i].type)
+        j++;
+      const int found = j < k->attributes_len;
+
+      if (attributes_buffer_len == 0) {
+        attributes[i].value  = NULL;
+        attributes[i].length = found ? attrs[j].length : 0;
+        continue;
+      }
 
-    if (!found)
-      return HAL_ERROR_ATTRIBUTE_NOT_FOUND;
+      if (!found) {
+        err = HAL_ERROR_ATTRIBUTE_NOT_FOUND;
+        goto done;
+      }
+
+      if (attrs[j].length > attributes_buffer + attributes_buffer_len - abuf) {
+        err = HAL_ERROR_RESULT_TOO_LONG;
+        goto done;
+      }
 
-    if (attrs[j].length > attributes_buffer + attributes_buffer_len - abuf)
-      return HAL_ERROR_RESULT_TOO_LONG;
+      memcpy(abuf, attrs[j].value, attrs[j].length);
+      attributes[i].value  = abuf;
+      attributes[i].length = attrs[j].length;
+      abuf += attrs[j].length;
+    }
+
+    err = HAL_OK;
 
-    memcpy(abuf, attrs[j].value, attrs[j].length);
-    attributes[i].value  = abuf;
-    attributes[i].length = attrs[j].length;
-    abuf += attrs[j].length;
   }
 
-  return HAL_OK;
+ done:
+  hal_ks_unlock();
+  return err;
 }
 
 const hal_ks_driver_t hal_ks_volatile_driver[1] = {{
diff --git a/locks.c b/locks.c
new file mode 100644
index 0000000..2165753
--- /dev/null
+++ b/locks.c
@@ -0,0 +1,108 @@
+/*
+ * locks.c
+ * -------
+ * Dummy lock code for libhal.
+ *
+ * Copyright (c) 2017, NORDUnet A/S All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are
+ * met:
+ * - Redistributions of source code must retain the above copyright notice,
+ *   this list of conditions and the following disclaimer.
+ *
+ * - Redistributions in binary form must reproduce the above copyright
+ *   notice, this list of conditions and the following disclaimer in the
+ *   documentation and/or other materials provided with the distribution.
+ *
+ * - Neither the name of the NORDUnet nor the names of its contributors may
+ *   be used to endorse or promote products derived from this software
+ *   without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
+ * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
+ * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
+ * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+ * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
+ * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+ * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+ * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+ * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+ * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+#include <stdio.h>
+#include <stdlib.h>
+#include <stdint.h>
+#include <string.h>
+
+#include "hal.h"
+#include "hal_internal.h"
+
+/*
+ * There are three slightly peculiar things about this module.
+ *
+ * 1) We want to include optional support for GNU weak functions,
+ *    because they're convenient, but we don't want to require support
+ *    for them.  So we wrap this in a compilation time conditional
+ *    which defaults to something compatible with C99, but allow this
+ *    to be overriden via an external definition.
+ *
+ * 2) The functions in this module are all no-ops, just here so that
+ *    things will link correctly on platforms that don't define them.
+ *    Real definitions for these functions have to come from the port
+ *    to a specific environment, eg, from sw/stm32/projects/hsm.c.
+ *
+ * 3) Because we want to expose as little as possible of the
+ *    underlying mechanisms, some of the functions here are closures
+ *    encapsulating objects things which would otherwise be arguments.
+ *    So, for example, we have functions to lock and unlock the HSM
+ *    keystore, rather than general lock and unlock functions which
+ *    they HSM keystore lock as an argument.  Since the versions in
+ *    this file are the no-ops, the lock itself goes away here.
+ */
+
+#ifndef ENABLE_WEAK_FUNCTIONS
+#define ENABLE_WEAK_FUNCTIONS 0
+#endif
+
+#if ENABLE_WEAK_FUNCTIONS
+#define WEAK_FUNCTION __attribute__((weak))
+#else
+#define WEAK_FUNCTION
+#endif
+
+/*
+ * Critical sections -- disable preemption BRIEFLY.
+ */
+
+WEAK_FUNCTION void hal_critical_section_start(void)
+{
+  return;
+}
+
+WEAK_FUNCTION void hal_critical_section_end(void)
+{
+  return;
+}
+
+/*
+ * Keystore lock -- lock call blocks indefinitely.
+ */
+
+WEAK_FUNCTION void hal_ks_lock(void)
+{
+  return;
+}
+
+WEAK_FUNCTION void hal_ks_unlock(void)
+{
+  return;
+}
+
+/*
+ * Local variables:
+ * indent-tabs-mode: nil
+ * End:
+ */
diff --git a/rpc_misc.c b/rpc_misc.c
index d6fc71d..cf5e4a0 100644
--- a/rpc_misc.c
+++ b/rpc_misc.c
@@ -103,24 +103,32 @@ static client_slot_t client_handle[HAL_STATIC_CLIENT_STATE_BLOCKS];
 
 static inline client_slot_t *alloc_slot(void)
 {
+  client_slot_t *slot = NULL;
+  hal_critical_section_start();
+
 #if HAL_STATIC_CLIENT_STATE_BLOCKS > 0
-  for (int i = 0; i < sizeof(client_handle)/sizeof(*client_handle); i++)
+  for (int i = 0; slot == NULL && i < sizeof(client_handle)/sizeof(*client_handle); i++)
     if (client_handle[i].logged_in == HAL_USER_NONE)
-      return &client_handle[i];
+      slot = &client_handle[i];
 #endif
 
-  return NULL;
+  hal_critical_section_end();
+  return slot;
 }
 
 static inline client_slot_t *find_handle(const hal_client_handle_t handle)
 {
+  client_slot_t *slot = NULL;
+  hal_critical_section_start();
+
 #if HAL_STATIC_CLIENT_STATE_BLOCKS > 0
-  for (int i = 0; i < sizeof(client_handle)/sizeof(*client_handle); i++)
+  for (int i = 0; slot == NULL && i < sizeof(client_handle)/sizeof(*client_handle); i++)
     if (client_handle[i].logged_in != HAL_USER_NONE && client_handle[i].handle.handle == handle.handle)
-      return &client_handle[i];
+      slot = &client_handle[i];
 #endif
 
-  return NULL;
+  hal_critical_section_end();
+  return slot;
 }
 
 static hal_error_t login(const hal_client_handle_t client,
diff --git a/rpc_pkey.c b/rpc_pkey.c
index e2e42c9..c0a6479 100644
--- a/rpc_pkey.c
+++ b/rpc_pkey.c
@@ -61,6 +61,9 @@ static hal_pkey_slot_t pkey_handle[HAL_STATIC_PKEY_STATE_BLOCKS];
 
 static inline hal_pkey_slot_t *alloc_slot(const hal_key_flags_t flags)
 {
+  hal_pkey_slot_t *slot = NULL;
+  hal_critical_section_start();
+
 #if HAL_STATIC_PKEY_STATE_BLOCKS > 0
   static uint16_t next_glop = 0;
   uint32_t glop = ++next_glop << 16;
@@ -71,17 +74,18 @@ static inline hal_pkey_slot_t *alloc_slot(const hal_key_flags_t flags)
   if ((flags & HAL_KEY_FLAG_TOKEN) != 0)
     glop |= HAL_PKEY_HANDLE_TOKEN_FLAG;
 
-  for (int i = 0; i < sizeof(pkey_handle)/sizeof(*pkey_handle); i++) {
+  for (int i = 0; slot == NULL && i < sizeof(pkey_handle)/sizeof(*pkey_handle); i++) {
     if (pkey_handle[i].type != HAL_KEY_TYPE_NONE)
       continue;
     memset(&pkey_handle[i], 0, sizeof(pkey_handle[i]));
     pkey_handle[i].pkey_handle.handle = i | glop;
     pkey_handle[i].hint = -1;
-    return &pkey_handle[i];
+    slot = &pkey_handle[i];
   }
 #endif
 
-  return NULL;
+  hal_critical_section_end();
+  return slot;
 }
 
 /*
@@ -91,14 +95,18 @@ static inline hal_pkey_slot_t *alloc_slot(const hal_key_flags_t flags)
 
 static inline hal_pkey_slot_t *find_handle(const hal_pkey_handle_t handle)
 {
+  hal_pkey_slot_t *slot = NULL;
+  hal_critical_section_start();
+
 #if HAL_STATIC_PKEY_STATE_BLOCKS > 0
   const int i = (int) (handle.handle & 0xFFFF);
 
   if (i < sizeof(pkey_handle)/sizeof(*pkey_handle) && pkey_handle[i].pkey_handle.handle == handle.handle)
-    return &pkey_handle[i];
+    slot = &pkey_handle[i];
 #endif
 
-  return NULL;
+  hal_critical_section_end();
+  return slot;
 }
 
 /*



More information about the Commits mailing list