Skip to content

GitLab

Switch branch/tag
History Find file
Clone
plat/st: do not rely on tainted value for dt property length
Yann Gautier authored 
To compare the "okay" string of a property, strncmp is used but with the
length given by fdt_getprop. This len value is reported as tainted by
Coverity [1]. We just can use strlen("okay") which is a known value
to compare the 2 strings.

 [1] https://scan4.coverity.com/reports.htm#v51972/p11439/fileInstanceId=96515154&defectInstanceId=14219121&mergedDefectId=342997

Signed-off-by: default avatarYann Gautier <yann.gautier@foss.st.com>
Change-Id: Ic8fb6ccf3126a37df615e433eb028861812015da
f714ca80
Name Last commit Last update
.husky build(hooks): add commitlint hook
bl1 Add PIE support for AARCH32
bl2 Add PIE support for AARCH32
bl2u Avoid the use of linker *_SIZE__ macros
bl31 Add TRNG Firmware Interface service
bl32 Add PIE support for AARCH32
common feat(fdt): introduce wrapper function to read DT UUIDs
docs Merge changes from topic "fw-update" into integration
drivers fix(driver/auth): avoid NV counter upgrade without certificate validation
fdts Merge changes from topic "mit-license" into integration
include Merge changes from topic "fw-update" into integration
lib Merge changes I15e7cc43,Id7411bd5,I92bafe70,I8f1c0658 into integration
licenses docs(license): rectify `arm-gic.h` license
make_helpers tbbr-tools: enable override TRUSTED_KEY_CERT
plat plat/st: do not rely on tainted value for dt property length
services Merge changes from topic "od/ns-interrupts" into integration
tools fiptool: Do not call 'make clean' in 'all' target
.checkpatch.conf Re-apply GIT_COMMIT_ID check for checkpatch
.cz.json build(hooks): add Commitizen hook
.editorconfig .editorconfig: set max line length to 100
.gitignore build(hooks): add Husky configuration
.gitreview Specify integration as the default branch for git-review
Makefile Add PIE support for AARCH32
commitlint.config.js build(hooks): add commitlint hook
dco.txt Drop requirement for CLA in contribution.md
license.rst
package-lock.json
package.json
readme.rst
readme.rst

Trusted Firmware-A

Trusted Firmware-A (TF-A) is a reference implementation of secure world software for Arm A-Profile architectures (Armv8-A and Armv7-A), including an Exception Level 3 (EL3) Secure Monitor. It provides a suitable starting point for productization of secure world boot and runtime firmware, in either the AArch32 or AArch64 execution states.

TF-A implements Arm interface standards, including:

The code is designed to be portable and reusable across hardware platforms and software models that are based on the Armv8-A and Armv7-A architectures.

In collaboration with interested parties, we will continue to enhance TF-A with reference implementations of Arm standards to benefit developers working with Armv7-A and Armv8-A TrustZone technology.

Users are encouraged to do their own security validation, including penetration testing, on any secure world code derived from TF-A.

More Info and Documentation

To find out more about Trusted Firmware-A, please view the full documentation that is available through trustedfirmware.org.

Copyright (c) 2013-2019, Arm Limited and Contributors. All rights reserved.