tfm_memory_check is inaccurate
Open, Needs TriagePublic

Description

our use case detected by tests, where we sending invec pointing to a RO section in flash
moreover, buffers allocated from the heap on the secure side are not detected either.
tfm_memory_check only checks data section for NS and fails the request by causing panic

the needed chnages are:

  1. check if a buffer comes from secure flash (example psa_write of const buffer in secure partition)
  2. check if a buffer comes from non-secure flash (example: psa_call with one of the buffers pointing to a const memory chunk)
  3. check if a buffer comes from secure heap (example psa_read to a buffer allocated by a secure partition)
  4. check if a buffer comes from secure zero-initialized data (In ARM comopiler Image$$ER_TFM_DATA$$Base/LIMIT does not cover ZI data)
alzix created this task.Jan 31 2019, 7:12 AM
orenc17 updated the task description. (Show Details)Feb 6 2019, 1:56 PM
orenc17 updated the task description. (Show Details)Feb 6 2019, 2:39 PM
mikisch81 updated the task description. (Show Details)Feb 21 2019, 3:27 PM