21 Mar
2023
21 Mar
'23
6:04 p.m.
Hi Anton,
The design of Armv8-M does not prevent a Non-secure software from crashing a system.
Thanks for confirming. Since this particular behavior is different from A-class cores with TZ ext I was trying to see if this aspect is covered in tfm threat model. The worst it might cause is a DoS attack AFAIU.
I see dummy handlers in tfm for the faults which does not seem to do anything at the moment. The easiest thing one would probably do is to assume the worst for any fault and react to it in SPE instead of trying to treat the NSSPE originated ones differently if at all its feasible to identify. Or will it be feasible to do something better in TFM?
Appreciate your thoughts on this.
Thanks Sandeep