Thanks Sandrine. Patches look good. I realized after looking at things a little closer that i had misunderstood how fconf works for io policies. I thought the image id's themselves came from the config files and not just the UUID's, which is why i was worried about bounds check, since the id was coming from an external source(trusted or untrusted, depending on if it is signed data or not). This also made me realize that we are using another table built into code, to convert from image id to UUID for io policies. Is there a reason image id's also can't be discovered from the config file?
-Raghu
On 4/2/20 7:17 AM, Sandrine Bailleux (Code Review) wrote:
Hi guys,
This is the patch I mentioned last Thursday at the TF-A tech call. Sorry it took me so long to post it.
View Change https://review.trustedfirmware.org/c/TF-A/trusted-firmware-a/+/3836
To view, visit change 3836 https://review.trustedfirmware.org/c/TF-A/trusted-firmware-a/+/3836. To unsubscribe, or for help writing mail filters, visit settings https://review.trustedfirmware.org/settings.
Gerrit-Project: TF-A/trusted-firmware-a Gerrit-Branch: integration Gerrit-Change-Id: Ic5ea20e43cf8ca959bb7f9b60de7c0839b390add Gerrit-Change-Number: 3836 Gerrit-PatchSet: 1 Gerrit-Owner: Sandrine Bailleux sandrine.bailleux@arm.com Gerrit-Reviewer: Louis Mayencourt louis.mayencourt@arm.com Gerrit-Reviewer: Raghu K raghu.ncstate@icloud.com Gerrit-Reviewer: Sandrine Bailleux sandrine.bailleux@arm.com Gerrit-Comment-Date: Thu, 02 Apr 2020 14:17:12 +0000 Gerrit-HasComments: No Gerrit-Has-Labels: No Gerrit-MessageType: comment