Add error code MBEDTLS_ERR_PLATFORM_FAULT_DETECTED This can be used by Mbed TLS functions in any module to signal that a fault attack is likely happening, so this can be appropriately handled by the application (report, fall back to safer mode or even halt, etc.)

commit: 324c6e9cc9768f435f0f13bf66b3df449b94ceb3 [log] [tgz]
author: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Wed Nov 06 11:52:41 2019 +0100
committer: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu Nov 21 15:14:59 2019 +0100
tree: 84777add74386b5302cd5e2daccfe5da013e75d4
parent: e6d6f17738b46a73bbf255073a96899b1667840d [diff] [blame]
diff --git a/library/error.c b/library/error.c
index c993524..77c7133 100644
--- a/library/error.c
+++ b/library/error.c

@@ -841,6 +841,8 @@
         mbedtls_snprintf( buf, buflen, "PLATFORM - Hardware accelerator failed" );
     if( use_ret == -(MBEDTLS_ERR_PLATFORM_FEATURE_UNSUPPORTED) )
         mbedtls_snprintf( buf, buflen, "PLATFORM - The requested feature is not supported by the platform" );
+    if( use_ret == -(MBEDTLS_ERR_PLATFORM_FAULT_DETECTED) )
+        mbedtls_snprintf( buf, buflen, "PLATFORM - A fault was detected in a critical path, likely indicative of an active physical attack" );
 #endif /* MBEDTLS_PLATFORM_C */
 
 #if defined(MBEDTLS_POLY1305_C)
commit	324c6e9cc9768f435f0f13bf66b3df449b94ceb3	[log] [tgz]
author	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Wed Nov 06 11:52:41 2019 +0100
committer	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Thu Nov 21 15:14:59 2019 +0100
tree	84777add74386b5302cd5e2daccfe5da013e75d4
parent	e6d6f17738b46a73bbf255073a96899b1667840d [diff] [blame]