Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

core: ta flags fixup #1574

Merged
merged 1 commit into from
Jun 6, 2017
Merged

core: ta flags fixup #1574

merged 1 commit into from
Jun 6, 2017

Conversation

prime-zeng
Copy link
Contributor

Ignore the TA_FLAG_MULTI_SESSION and TA_FLAG_INSTANCE_KEEP_ALIVE when
the TA_FLAG_SINGLE_INSTANCE is not set.

Signed-off-by: Zeng Tao [email protected]

@@ -313,6 +313,14 @@ static TEE_Result ta_load(const TEE_UUID *uuid,
goto error_return;
}

if (ta_head->flags & TA_FLAG_MULTI_SESSION &&
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't fully agree with this approach. If it's a problem that those flags may be set then they shouldn't have been set from the beginning and we should just refuse to load the TA.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

From the GP spec, we should just ignore the unmatched flags but not refuse. Maybe a warning message is needed here.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@jenswi-linaro maybe not. The GP Internal Core API v1.1, table 4-11 "Trusted Application Standard Configuration Properties" says (emphasis mine): "gpd.ta.multiSession Boolean [...] This property is ignored for multi-instance Trusted Applications".
As for the keep-alive flag, the wording is a bit more ambiguous (emphasis mine again): "gpd.ta.instanceKeepAlive Boolean [...] This property is meaningful only when the gpd.ta.singleInstance is set to true"

@prime-zeng does this patch actually change the behavior of OP-TEE? In other words:

  • What happens if TA_FLAG_SINGLE_INSTANCE is not set and TA_FLAG_MULTI_SESSION is set, compared to both not set?
  • What happens if TA_FLAG_SINGLE_INSTANCE is not set and TA_FLAG_INSTANCE_KEEP_ALIVE is set, compared to both not set?

Copy link
Contributor Author

@prime-zeng prime-zeng Jun 1, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@jforissier I have test the case TA_FLAG_INSTANCE_KEEP_ALIVE is set and TA_FLAG_SINGLE_INSTANCE not set, when running the same TA, it will soon get the error message "Failed to allocate ASID", i think some resources are leaked .

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Given this I think we should not modify any flags, because doing so is a bit confusing. I'd rather interpret the flags correctly, in this case it's the if at the end of tee_ta_close_session() that need to take TA_FLAG_SINGLE_INSTANCE into account also.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@jenswi-linaro do you mean that we force the TA_FLAG_SINGLE_INSTANCE flag when TA_FLAG_INSTANCE_KEEP_ALIVE or TA_FLAG_MULTI_SESSION is set? if so, i think it is a bit different from what the GP Internal Core API v1.1 describes.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No, we should follow the spec. But I don't want to change any flags, instead whenever we look at for instance TA_FLAG_INSTANCE_KEEP_ALIVE we need to check TA_FLAG_SINGLE_INSTANCE also because if it's not set then TA_FLAG_INSTANCE_KEEP_ALIVE isn't relevant.

@jenswi-linaro
Copy link
Contributor

Reviewed-by: Jens Wiklander <[email protected]>

According to the The GP Internal Core API v1.1:
The keepalive flag should be ignored when the single instance flag is
not set.

Reviewed-by: Jens Wiklander <[email protected]>
Signed-off-by: Zeng Tao <[email protected]>
@prime-zeng
Copy link
Contributor Author

Update, tag applied.

@jforissier
Copy link
Contributor

Thanks @prime-zeng.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants