Merge "pvmfw: Clear cache lines in DiceClearMemory"

commit: 357fb9c5f3480efbdcb894744d5cd69af6c206d7 [log] [tgz]
author: Pierre-Clément Tosi <ptosi@google.com> Mon Feb 13 22:01:21 2023 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Mon Feb 13 22:01:21 2023 +0000
tree: d569fdd52846cf394dd5be66236727f101f64730
parent: 463588dfd553bc0e4d9deb8850916a17c72fc77b [diff]
parent: bec8466de568d4ad5239a861a7248af58653c814 [diff]
diff --git a/pvmfw/src/dice.rs b/pvmfw/src/dice.rs
index f6a1f3d..e354666 100644
--- a/pvmfw/src/dice.rs
+++ b/pvmfw/src/dice.rs

@@ -14,8 +14,11 @@
 
 //! Support for DICE derivation and BCC generation.
 
+use crate::helpers::flushed_zeroize;
+use core::ffi::c_void;
 use core::ffi::CStr;
 use core::mem::size_of;
+use core::slice;
 use dice::bcc::Handover;
 use dice::Config;
 use dice::DiceMode;
@@ -69,3 +72,16 @@
 
     bcc.main_flow(&input_values, next_bcc)
 }
+
+/// Flushes data caches over the provided address range.
+///
+/// # Safety
+///
+/// The provided address and size must be to a valid address range (typically on the stack, .bss,
+/// .data, or provided BCC).
+#[no_mangle]
+unsafe extern "C" fn DiceClearMemory(_ctx: *mut c_void, size: usize, addr: *mut c_void) {
+    // SAFETY - We must trust that the slice will be valid arrays/variables on the C code stack.
+    let region = unsafe { slice::from_raw_parts_mut(addr as *mut u8, size) };
+    flushed_zeroize(region)
+}
commit	357fb9c5f3480efbdcb894744d5cd69af6c206d7	[log] [tgz]
author	Pierre-Clément Tosi <ptosi@google.com>	Mon Feb 13 22:01:21 2023 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Mon Feb 13 22:01:21 2023 +0000
tree	d569fdd52846cf394dd5be66236727f101f64730
parent	463588dfd553bc0e4d9deb8850916a17c72fc77b [diff]
parent	bec8466de568d4ad5239a861a7248af58653c814 [diff]