Searched hist:"30 e5e0be8c4e663f68ba88716dde9cad2ae33f06" (Results 1 – 1 of 1) sorted by relevance
| /optee_os/lib/libutee/ |
| H A D | tee_api.c | 30e5e0be8c4e663f68ba88716dde9cad2ae33f06 Fri Dec 09 13:07:09 UTC 2022 Jens Wiklander <jens.wiklander@linaro.org> GP131: check permissions on buffer passed to other TAs
In TEE Internal Core API Specification version 1.2 there is a passed in
"4.9.4 Operation Parameters in the Internal Client API" that says that:
Where all or part of the referenced memory buffer was passed to the
TA from the REE or from another TA, the implementation SHALL NOT
result in downgrade of the security characteristics of the buffer.
That is, buffers read-only memrefs should not be passed on to other TAs
as read/write. Fix this by adding the needed check in
TEE_OpenTASession() and TEE_InvokeTACommand().
Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org>
Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org>
|