tfm_memory_check is inaccurate
Closed, ResolvedPublic
Actions

Description

our use case detected by tests, where we sending invec pointing to a RO section in flash
moreover, buffers allocated from the heap on the secure side are not detected either.
tfm_memory_check only checks data section for NS and fails the request by causing panic

the needed chnages are:

check if a buffer comes from secure flash (example psa_write of const buffer in secure partition)
check if a buffer comes from non-secure flash (example: psa_call with one of the buffers pointing to a const memory chunk)
check if a buffer comes from secure heap (example psa_read to a buffer allocated by a secure partition)
check if a buffer comes from secure zero-initialized data (In ARM comopiler Image$$ER_TFM_DATA$$Base/LIMIT does not cover ZI data)

Event Timeline

alzix created this task.Jan 31 2019, 7:12 AM

mikisch81 added a subscriber: KenLSoft.Feb 4 2019, 7:14 AM

orenc17 updated the task description. (Show Details)Feb 6 2019, 1:56 PM

orenc17 updated the task description. (Show Details)Feb 6 2019, 2:39 PM

mikisch81 updated the task description. (Show Details)Feb 21 2019, 3:27 PM

devran01 added a subscriber: devran01.Jun 26 2019, 4:08 PM

This problem has been fixed for quite a while, close it.

tfm_memory_check is inaccurateClosed, ResolvedPublicActions

Description

Event Timeline

tfm_memory_check is inaccurate
Closed, ResolvedPublic
Actions