secure_fw/core/ipc/tfm_svcalls.c tfm_svcall_psa_call
invec/outvec pointer and sizes validations must be moved to` tfm_spm_create_msg` and validated after they are copied to a message to prevent TOCTOU attack.
in_vec is a pointer in the caller memory, thus accessible and modifiable by the caller.
all the validations performed on individual invec/outvec may no longer be valid after a context switch (e.g. NSPE interrupt)