TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / next / TF-M / trusted-firmware-m / 31b8268afea59eb81315ec57b57d95394e566a47
commit31b8268afea59eb81315ec57b57d95394e566a47[log] [tgz]
authorKostiantyn Tkachov <kostiantyn.tkachov@infineon.com>Fri Jan 05 12:56:50 2024 -0800
committerAnton Komlev <Anton.Komlev@arm.com>Fri Jan 12 13:22:55 2024 +0100
treed53693c2e4cf96804312b9903bfa83918aa47d83
parentd4bb5e8cdfa677c1eda95fb8aa033f90f184e069 [diff]
Platform: Check NV counter read length

The description of tfm_platform_nv_counter_read() says that it is used
to read a single NV counter, but the API accepts a size in bytes and the
implementation will currently pass that through. This means that it can
be used to read multiple NV counters, while also possibly overwriting
platform partition data because platform_sp_nv_read_psa_api() reads it
into an array of NV_COUNTER_SIZE bytes.

Note that the sample implementation of tfm_plat_read_nv_counter() does
check the size, but that's much later and the check would be better in
the core partition code.

Change-Id: I7898a863a9f1a4ee47d3fa1cf8db5dab5ac4d531
Signed-off-by: Kostiantyn Tkachov <kostiantyn.tkachov@infineon.com>
Signed-off-by: Chris Brand <chris.brand@cypress.com>
1 file changed
tree: d53693c2e4cf96804312b9903bfa83918aa47d83
  1. bl1/
  2. bl2/
  3. cmake/
  4. config/
  5. docs/
  6. interface/
  7. lib/
  8. platform/
  9. secure_fw/
  10. tools/
  11. .editorconfig
  12. .gitattributes
  13. .gitignore
  14. .gitreview
  15. .readthedocs.yaml
  16. CMakeLists.txt
  17. dco.txt
  18. Kconfig
  19. Kconfig.bl
  20. Kconfig.misc
  21. license.rst
  22. readme.rst
  23. toolchain_ARMCLANG.cmake
  24. toolchain_GNUARM.cmake
  25. toolchain_IARARM.cmake