tresor: fix <initialize> config constraints

Until now, it was possible to use bad Free-Tree/VBD configurations with the
<initialize/> command. The tresor tester didn't complaining about it but the
tresor lib crashed or, worse, corrupted the tresor container. Now, the tresor
tester checks things, like for instance, that "nr_of_children" must be a power
of 2.

Ref #4971

repos/gems/src/lib/tresor/include/tresor/init/configuration.h

@@ -18,9 +18,13 @@
 /* base includes */
 #include <util/xml_node.h>
 
+/* tresor includes */
+#include <tresor/types.h>
+
 namespace Tresor_init {
 
 	using namespace Genode;
+	using namespace Tresor;
 
 	class Configuration;
 }
@@ -36,6 +40,12 @@ class Tresor_init::Configuration
 		uint64_t _ft_nr_of_children  { 0 };
 		uint64_t _ft_nr_of_leafs     { 0 };
 
+		static bool _is_power_of_2(uint64_t val)
+		{
+			for (; val && (val & 1) == 0; val >>= 1);
+			return val == 1;
+		}
+
 	public:
 
 		struct Invalid : Exception { };
@@ -62,15 +72,17 @@ class Tresor_init::Configuration
 				_ft_nr_of_leafs =
 					ft.attribute_value("nr_of_leafs", (uint64_t)0);
 			});
-			if (_vbd_nr_of_lvls     == 0 ||
+			ASSERT(_vbd_nr_of_lvls);
-				 _vbd_nr_of_children == 0 ||
+			ASSERT(_vbd_nr_of_lvls <= TREE_MAX_NR_OF_LEVELS);
-				 _vbd_nr_of_leafs    == 0 ||
+			ASSERT(_vbd_nr_of_leafs);
-				 _ft_nr_of_lvls      == 0 ||
+			ASSERT(_is_power_of_2(_vbd_nr_of_children));
-				 _ft_nr_of_children  == 0 ||
+			ASSERT(_vbd_nr_of_children <= NR_OF_T1_NODES_PER_BLK);
-				 _ft_nr_of_leafs     == 0)
+			ASSERT(_ft_nr_of_lvls);
-			{
+			ASSERT(_ft_nr_of_lvls <= TREE_MAX_NR_OF_LEVELS);
-				throw Invalid();
+			ASSERT(_ft_nr_of_leafs);
-			}
+			ASSERT(_is_power_of_2(_ft_nr_of_children));
+			ASSERT(_ft_nr_of_children <= NR_OF_T1_NODES_PER_BLK);
+			ASSERT(_ft_nr_of_children <= NR_OF_T2_NODES_PER_BLK);
 		}
 
 		Configuration (Configuration const &other)