@@ -739,7 +739,7 @@ All security-relevant firmware and software shall be compiled with secure compil
* Objective: Secure design and development
* Preparation: Document which flags should be used
* Activities: Review compilation flags, warnings, and documentation for exceptions
* Verdict: Documentation of flags exists, all warnings and exceptions are documented
* Verdict: Documentation of flags exists, all warnings and exceptions are documented => PASS, otherwise FAIL
* Evidence: Documentation of flags, build system files, documentation of warnings and exceptions
#### 5.2.2.7 Mapping of mitigations to risk factors and security profiles
@@ -785,7 +785,7 @@ The product shall zero-initialize all stack memory before use.
* Reference: ER-SSDD
* Objective: Prevent attacker from exploiting erroneous use of uninitialized stack memory
* Activities: Sequentially call 2 functions that allocate the same amount of memory, fill the first with non-zero values and return, and during second function call, read the stack contents back
* Verdict: Stack contents are all zero on second call
* Verdict: Stack contents are all zero on second call => PASS, otherwise FAIL
* Evidence: Contents of stack before the first function return, contents of stack during the second function call
#### 5.2.2.12 MI-MZRO-2: Heap memory zeroing
@@ -795,7 +795,7 @@ The product shall zero-initialize all heap memory before use.
* Reference: ER-SSDD
* Objective: Prevent attacker from exploiting erroneous use of uninitialized heap memory
* Activities: Allocate heap memory, fill with a non-zero value, free it, allocate it again in a deterministic way to get the same heap region, and read back the contents
* Verdict: Memory contents are all zero on second call
* Verdict: Memory contents are all zero on second call => PASS, otherwise FAIL
* Evidence: Contents of allocated memory before the free, contents of allocated memory after second allocation
