Make SSL error code more generic It's undesirable to have users of the SSL layer check for an error code specific to a lower-level layer, both out of general layering principles, and also because if we later make another crypto module gain resume capabilities, we would need to change the contract again (checking for a new module-specific error code).

commit: 558da9c3feee5d4376fcb9f481af18152165a467 [log] [tgz]
author: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Wed Jun 13 12:02:12 2018 +0200
committer: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Wed Jun 13 12:02:12 2018 +0200
tree: 68c15cb5cdd9ba05ce44bdadc29affdce63be1e5
parent: b5d668a7a7eef6ca5b1b2e3d152cf0ecf5cf8ca0 [diff] [blame]
diff --git a/library/error.c b/library/error.c
index a2de275..4dc13a4 100644
--- a/library/error.c
+++ b/library/error.c

@@ -499,6 +499,8 @@
             mbedtls_snprintf( buf, buflen, "SSL - Couldn't set the hash for verifying CertificateVerify" );
         if( use_ret == -(MBEDTLS_ERR_SSL_CONTINUE_PROCESSING) )
             mbedtls_snprintf( buf, buflen, "SSL - Internal-only message signaling that further message-processing should be done" );
+        if( use_ret == -(MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS) )
+            mbedtls_snprintf( buf, buflen, "SSL - A cryptographic operation is in progress. Try again later" );
 #endif /* MBEDTLS_SSL_TLS_C */
 
 #if defined(MBEDTLS_X509_USE_C) || defined(MBEDTLS_X509_CREATE_C)
commit	558da9c3feee5d4376fcb9f481af18152165a467	[log] [tgz]
author	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Wed Jun 13 12:02:12 2018 +0200
committer	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Wed Jun 13 12:02:12 2018 +0200
tree	68c15cb5cdd9ba05ce44bdadc29affdce63be1e5
parent	b5d668a7a7eef6ca5b1b2e3d152cf0ecf5cf8ca0 [diff] [blame]