kernel - OpenGrok history log for /optee

Revision	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
d45fc140	26-Nov-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: add missing field in memory access descriptor FF-A v1.2 introduced a 16 byte implementation-defined field in the endpoint memory access descriptor. Update all handling of struct ffa_mem_a core: ffa: add missing field in memory access descriptor FF-A v1.2 introduced a 16 byte implementation-defined field in the endpoint memory access descriptor. Update all handling of struct ffa_mem_access to for correct access regardless of FF-A version. With this patch, OP-TEE will use the updated memory access descriptor, but ignore the impdef field. Suggested-by: Olivier Deprez <olivier.deprez@arm.com> Fixes: bef959c837fe ("core: arm: ffa: switch to FF-A version 1.2") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/.github/workflows/notify.yml /optee_os/core/arch/arm/dts/stm32mp211.dtsi /optee_os/core/arch/arm/dts/stm32mp231.dtsi /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/thread_private_arch.h spmc_sp_handler.c thread_spmc.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/imx-common.c /optee_os/core/arch/arm/plat-imx/imx-regs.h /optee_os/core/arch/arm/plat-imx/imx.h /optee_os/core/arch/arm/plat-imx/registers/imx943.h /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-telechips/scripts/tcmktool.py /optee_os/core/arch/arm/plat-ti/main.c /optee_os/core/arch/riscv/kernel/spinlock.S /optee_os/core/drivers/crypto/ele/ele.c /optee_os/core/drivers/imx/mu/sub.mk /optee_os/core/drivers/stm32_i2c.c /optee_os/core/include/drivers/imx_mu.h /optee_os/core/include/drivers/stm32_i2c.h /optee_os/core/include/kernel/boot.h /optee_os/core/lib/libtomcrypt/src/pk/rsa/rsa_verify_hash.c /optee_os/core/tee/fs_htree.c /optee_os/mk/macros.mk /optee_os/scripts/gen_ldelf_hex.py /optee_os/scripts/notify_maintainers.py
82d5d8cc	24-Oct-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: guard sp_session field state with spinlock Accesses to the state field in struct sp_session is often guarded with a spinlock, but there are a few places with it's missing. So, add the mis core: ffa: guard sp_session field state with spinlock Accesses to the state field in struct sp_session is often guarded with a spinlock, but there are a few places with it's missing. So, add the missing spinlocks. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... secure_partition.c spmc_sp_handler.c
8c8f3bae	24-Oct-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: verify thread ID before resuming S-EL0 SP Check that the thread ID for an S-EL0 SP is correct before trying to resume it. This guards against resuming an unrelated thread. Signed-off-by: core: ffa: verify thread ID before resuming S-EL0 SP Check that the thread ID for an S-EL0 SP is correct before trying to resume it. This guards against resuming an unrelated thread. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/kernel/spmc_sp_handler.h secure_partition.c spmc_sp_handler.c thread_spmc.c
6af74df5	24-Oct-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: fix direct request error code for S-EL0 SP Direct requests to S-EL0 SPs are delivered using a thread. If no thread is available return FFA_BUSY, to let the caller know that it should try core: ffa: fix direct request error code for S-EL0 SP Direct requests to S-EL0 SPs are delivered using a thread. If no thread is available return FFA_BUSY, to let the caller know that it should try again. This should normally never happen, but let's do our best for a corner case. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/include/kernel/spmc_sp_handler.h spmc_sp_handler.c thread_spmc.c
00338334	31-Oct-2024	Jens Wiklander <jens.wiklander@linaro.org>	core: support dynamic protected memory lending With CFG_CORE_DYN_PROTMEM=y support dynamic protected memory lending. A new internal struct mobj_ffa_rsm is added to handle dynamic protected memory f core: support dynamic protected memory lending With CFG_CORE_DYN_PROTMEM=y support dynamic protected memory lending. A new internal struct mobj_ffa_rsm is added to handle dynamic protected memory for FF-A. A new internal struct mobj_protmem is add to handle dynamic protected memory without FF-A. Lending non-secure memory to OP-TEE to use it as protected memory means that it should to become inaccessible by the normal world as part of the process. This part is currently not supported, since it must be done in a platform specific way for platforms that support that. QEMU don't support that. Adding two platform specific functions, plat_get_protmem_config() and plat_set_protmem_range() for dynamic protected memory. The functions has __weak implementation to allow easier testing. However, plat_set_protmem_range() requires CFG_INSECURE=y since it doesn't change memory protection. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/.github/workflows/stales.yml /optee_os/CHANGELOG.md /optee_os/MAINTAINERS /optee_os/core/arch/arm/crypto/aes-gcm-ce.c /optee_os/core/arch/arm/dts/stm32mp21-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp23-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp231.dtsi /optee_os/core/arch/arm/dts/stm32mp233.dtsi /optee_os/core/arch/arm/dts/stm32mp235.dtsi /optee_os/core/arch/arm/dts/stm32mp235f-dk-ca35tdcid-rcc.dtsi /optee_os/core/arch/arm/dts/stm32mp235f-dk-ca35tdcid-resmem.dtsi /optee_os/core/arch/arm/dts/stm32mp235f-dk-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp235f-dk.dts /optee_os/core/arch/arm/dts/stm32mp23xc.dtsi /optee_os/core/arch/arm/dts/stm32mp23xf.dtsi /optee_os/core/arch/arm/dts/stm32mp25-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk.dts /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/thread_spmc.h /optee_os/core/arch/arm/include/optee_ffa.h /optee_os/core/arch/arm/include/sm/optee_smc.h thread_spmc.c /optee_os/core/arch/arm/mm/mobj_ffa.c /optee_os/core/arch/arm/plat-automotive_rd/conf.mk /optee_os/core/arch/arm/plat-automotive_rd/main.c /optee_os/core/arch/arm/plat-automotive_rd/platform_config.h /optee_os/core/arch/arm/plat-automotive_rd/rd1ae_core_pos.S /optee_os/core/arch/arm/plat-automotive_rd/sub.mk /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/registers/imx95.h /optee_os/core/arch/arm/plat-k3/conf.mk /optee_os/core/arch/arm/plat-qcom/conf.mk /optee_os/core/arch/arm/plat-qcom/main.c /optee_os/core/arch/arm/plat-qcom/platform_config.h /optee_os/core/arch/arm/plat-qcom/sub.mk /optee_os/core/arch/arm/plat-rockchip/conf.mk /optee_os/core/arch/arm/plat-rockchip/platform_config.h /optee_os/core/arch/arm/plat-rockchip/platform_rk3588.c /optee_os/core/arch/arm/plat-rpi5/conf.mk /optee_os/core/arch/arm/plat-rpi5/main.c /optee_os/core/arch/arm/plat-rpi5/platform_config.h /optee_os/core/arch/arm/plat-rpi5/sub.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_syscfg.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/tee/entry_fast.c /optee_os/core/crypto/aes-gcm.c /optee_os/core/drivers/crypto/ele/ele.c /optee_os/core/drivers/firewall/stm32_rifsc.c /optee_os/core/drivers/gpio/gpio.c /optee_os/core/drivers/imx/mu/imx_mu_8ulp_9x.c /optee_os/core/drivers/imx/mu/sub.mk /optee_os/core/drivers/qcom_geni_uart.c /optee_os/core/drivers/regulator/regulator.c /optee_os/core/drivers/regulator/regulator_dt.c /optee_os/core/drivers/regulator/regulator_fixed.c /optee_os/core/drivers/regulator/regulator_gpio.c /optee_os/core/drivers/rockchip_otp.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_rtc.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/imx_mu.h /optee_os/core/include/drivers/qcom_geni_uart.h /optee_os/core/include/drivers/regulator.h /optee_os/core/include/drivers/rockchip_otp.h /optee_os/core/include/drivers/stm32mp_dt_bindings.h /optee_os/core/include/mm/mobj.h /optee_os/core/include/optee_msg.h /optee_os/core/kernel/console.c /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/kernel/transfer_list.c /optee_os/core/mm/core_mmu.c /optee_os/core/mm/mobj.c /optee_os/core/mm/mobj_dyn_shm.c /optee_os/core/mm/vm.c /optee_os/core/pta/device.c /optee_os/core/pta/tests/dt_driver_test.c /optee_os/core/tee/entry_std.c /optee_os/core/tee/fs_htree.c /optee_os/lib/libmbedtls/mbedtls/ChangeLog /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/bignum.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/build_info.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/dhm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecdh.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecdsa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecjpake.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecp.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/lms.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pk.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform_util.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/rsa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_cookie.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_ticket.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_crt.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_csr.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_extra.h /optee_os/lib/libmbedtls/mbedtls/library/aesni.c /optee_os/lib/libmbedtls/mbedtls/library/asn1write.c /optee_os/lib/libmbedtls/mbedtls/library/base64.c /optee_os/lib/libmbedtls/mbedtls/library/cipher.c /optee_os/lib/libmbedtls/mbedtls/library/cipher_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.h /optee_os/lib/libmbedtls/mbedtls/library/common.h /optee_os/lib/libmbedtls/mbedtls/library/lmots.c /optee_os/lib/libmbedtls/mbedtls/library/lms.c /optee_os/lib/libmbedtls/mbedtls/library/pem.c /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto.c /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto_mac.c /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto_slot_management.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_misc.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_msg.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls12_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls12_server.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_keys.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_keys.h /optee_os/lib/libmbedtls/mbedtls/library/version_features.c /optee_os/lib/libmbedtls/mbedtls/library/x509_create.c /optee_os/lib/libmbedtls/mbedtls/library/x509write_crt.c /optee_os/lib/libmbedtls/mbedtls/library/x509write_csr.c /optee_os/lib/libutee/user_ta_entry.c /optee_os/mk/config.mk /optee_os/scripts/ci-host-cleanup.sh /optee_os/ta/pkcs11/src/processing_rsa.c /optee_os/ta/remoteproc/src/remoteproc_core.c
ed89aa36	19-Aug-2025	Yeoreum Yun <yeoreum.yun@arm.com>	core: arm: stmm_sp: return FFA_NOT_SUPPORTED for undefined FFA functions edk2's patch ("ArmFfaLib: Add Rx/Tx support for Stmm secure partition") [0] added Rx/Tx buffer mapping support to ArmFfaStand core: arm: stmm_sp: return FFA_NOT_SUPPORTED for undefined FFA functions edk2's patch ("ArmFfaLib: Add Rx/Tx support for Stmm secure partition") [0] added Rx/Tx buffer mapping support to ArmFfaStandaloneMm(Core)Lib. However, stmm_sp does not require Rx/Tx buffer mapping and its SVC handler is lightweight. Therefore, when it receives an undefined FFA function, it is sufficient to return FFA_NOT_SUPPORTED to StandaloneMm instead of panicking. This also aligns with the FF-A specification, which requires returning FFA_NOT_SUPPORTED when an unimplemented function ID is received. If StandaloneMm fails to initialize, it will return FFA_ERROR. In this case, there is no way to keep the stmm_sp TA alive, so panic is called. Otherwise, StandaloneMm will return with DIRECT_MSG_RESP. Link: https://github.com/tianocore/edk2/pull/11080/commits/75ca159e57dbe081b89373046280f34d67571852 [0] Signed-off-by: Yeoreum Yun <yeoreum.yun@arm.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Ilias Apalodimas <ilias.apalodimas@linaro.org> Tested-by: Mikko Rapeli <mikko.rapeli@linaro.org> show more ... /optee_os/.github/workflows/ci.yml stmm_sp.c /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/platform_config.h /optee_os/core/arch/riscv/include/kernel/misc_arch.h /optee_os/core/arch/riscv/include/rpmi.h /optee_os/core/arch/riscv/include/sbi.h /optee_os/core/arch/riscv/include/sbi_mpxy.h /optee_os/core/arch/riscv/include/sbi_mpxy_rpmi.h /optee_os/core/arch/riscv/kernel/sbi.c /optee_os/core/arch/riscv/kernel/sbi_mpxy.c /optee_os/core/arch/riscv/kernel/sbi_mpxy_rpmi.c /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/plat-sifive/conf.mk /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/arch/riscv/riscv.mk /optee_os/core/kernel/boot.c /optee_os/core/kernel/tpm.c /optee_os/ta/remoteproc/src/remoteproc_core.c
62caa4d4	12-Aug-2025	Joseph Lo <josephl@nvidia.com>	core: boot: fix TPM log area mapping to use correct device tree source Change the conditional compilation for TPM log area mapping from CFG_CORE_SEL1_SPMC to CFG_CORE_FFA. This ensures the correct d core: boot: fix TPM log area mapping to use correct device tree source Change the conditional compilation for TPM log area mapping from CFG_CORE_SEL1_SPMC to CFG_CORE_FFA. This ensures the correct device tree source is used: - When CFG_CORE_FFA is enabled: use manifest DT (get_manifest_dt()) - When CFG_CORE_FFA is disabled: use external DT (get_external_dt()) The fix aligns the device tree source selection with the broader FFA configuration, ensuring TPM log area mapping works correctly across all FFA-enabled platforms regardless of the specific SPMC variant (S-EL1, S-EL2, or EL3). Signed-off-by: Joseph Lo <josephl@nvidia.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/.gitignore /optee_os/CHANGELOG.md /optee_os/MAINTAINERS /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp151.dtsi /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/dts/stm32mp15xx-dkx.dtsi /optee_os/core/arch/arm/dts/stm32mp21-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp211.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk-ca35tdcid-rcc.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk.dts /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk-ca35tdcid-rcc.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk-ca35tdcid-resmem.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk.dts /optee_os/core/arch/arm/dts/stm32mp257f-ev1-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1.dts boot.c /optee_os/core/arch/arm/plat-corstone1000/conf.mk /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-k3/conf.mk /optee_os/core/arch/arm/plat-k3/drivers/dthev2.c /optee_os/core/arch/arm/plat-k3/drivers/eip76d_trng.c /optee_os/core/arch/arm/plat-k3/drivers/eip76d_trng.h /optee_os/core/arch/arm/plat-k3/drivers/sa2ul.c /optee_os/core/arch/arm/plat-k3/drivers/sub.mk /optee_os/core/arch/arm/plat-k3/platform_config.h /optee_os/core/arch/arm/plat-marvell/conf.mk /optee_os/core/arch/arm/plat-marvell/platform_config.h /optee_os/core/arch/arm/plat-marvell/sub.mk /optee_os/core/arch/arm/plat-rockchip/conf.mk /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rockchip/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/main.c /optee_os/core/arch/arm/plat-stm32mp2/stm32_sysconf.h /optee_os/core/arch/arm/plat-stm32mp2/stm32_util.h /optee_os/core/arch/arm/plat-versal2/conf.mk /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-vexpress/platform_config.h /optee_os/core/drivers/clk/clk-stm32mp21.c /optee_os/core/drivers/clk/clk-stm32mp25.c /optee_os/core/drivers/clk/sub.mk /optee_os/core/drivers/ffa_console.c /optee_os/core/drivers/rstctrl/stm32mp21_rstctrl.c /optee_os/core/drivers/rstctrl/stm32mp25_rstctrl.c /optee_os/core/drivers/rstctrl/sub.mk /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/stm32_rtc.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/include/drivers/rtc.h /optee_os/core/include/drivers/stm32mp21_rcc.h /optee_os/core/include/drivers/stm32mp_dt_bindings.h /optee_os/core/include/dt-bindings/clock/st,stm32mp21-rcc.h /optee_os/core/include/dt-bindings/clock/stm32mp21-clksrc.h /optee_os/core/include/dt-bindings/reset/st,stm32mp21-rcc.h /optee_os/core/include/kernel/asan.h /optee_os/core/kernel/asan.c /optee_os/core/kernel/panic.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/user_ta.c /optee_os/core/pta/rtc.c /optee_os/core/pta/tests/misc.c /optee_os/lib/libutee/include/pta_rtc.h /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutils/isoc/arch/arm/setjmp_a32.S /optee_os/lib/libutils/isoc/arch/arm/setjmp_a64.S /optee_os/lib/libutils/isoc/arch/riscv/setjmp_rv.S /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/setjmp.h /optee_os/lib/libutils/isoc/newlib/strchr.c /optee_os/lib/libutils/isoc/newlib/strcmp.c /optee_os/lib/libutils/isoc/newlib/strcpy.c /optee_os/lib/libutils/isoc/newlib/strlen.c /optee_os/mk/config.mk /optee_os/ta/link.mk /optee_os/ta/user_ta_header.c
cdffc82e	25-Jun-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: arm: support EL1 physical timer When configured with an SPMC at S-EL2 (CFG_CORE_SEL2_SPMC=y) use the (emulated) EL1 physical timer instead of the EL3 physical timer since the latter then is us core: arm: support EL1 physical timer When configured with an SPMC at S-EL2 (CFG_CORE_SEL2_SPMC=y) use the (emulated) EL1 physical timer instead of the EL3 physical timer since the latter then is used by S-EL2. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Gatien Chevallier <gatien.chevallier@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp151.dtsi /optee_os/core/arch/arm/dts/stm32mp15xx-dkx.dtsi /optee_os/core/arch/arm/dts/stm32mp211.dtsi /optee_os/core/arch/arm/dts/stm32mp213.dtsi /optee_os/core/arch/arm/dts/stm32mp215.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk.dts /optee_os/core/arch/arm/dts/stm32mp21xc.dtsi /optee_os/core/arch/arm/dts/stm32mp21xf.dtsi /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1.dts /optee_os/core/arch/arm/include/arm64.h generic_timer.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/stm32_sysconf.h /optee_os/core/arch/arm/plat-versal2/conf.mk /optee_os/core/arch/riscv/include/kernel/riscv_elf.h /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/kern.ld.S /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/arch/riscv/plat-sifive/conf.mk /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/drivers/amd/gpio_common.c /optee_os/core/drivers/amd/gpio_private.h /optee_os/core/drivers/amd/ps_gpio_driver.c /optee_os/core/drivers/amd/sub.mk /optee_os/core/drivers/clk/clk-stm32mp25.c /optee_os/core/drivers/ffa_console.c /optee_os/core/drivers/firewall/stm32_rifsc.c /optee_os/core/drivers/hfic.c /optee_os/core/drivers/stm32_exti.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_rtc.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/drivers/stm32_rtc.h /optee_os/core/include/drivers/stm32mp_dt_bindings.h /optee_os/core/include/dt-bindings/firewall/stm32mp21-rifsc.h /optee_os/core/include/dt-bindings/firewall/stm32mp25-rifsc.h /optee_os/core/include/dt-bindings/tamper/st,stm32-tamp.h /optee_os/core/include/dt-bindings/tamper/st,stm32mp13-tamp.h /optee_os/core/include/dt-bindings/tamper/st,stm32mp21-tamp.h /optee_os/core/include/dt-bindings/tamper/st,stm32mp25-tamp.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/kernel/ree_fs_ta.c /optee_os/mk/config.mk
2cd578ba	23-May-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: fix asan for CFG_WITH_PAGER=n Some fixes are needed to make CFG_CORE_SANITIZE_KADDRESS=y work both with and without CFG_DYN_CONFIG=y. Sanitizing stack addresses aren't supported with CFG_DYN_ core: fix asan for CFG_WITH_PAGER=n Some fixes are needed to make CFG_CORE_SANITIZE_KADDRESS=y work both with and without CFG_DYN_CONFIG=y. Sanitizing stack addresses aren't supported with CFG_DYN_CONFIG=y since it requires extensive changes in the ASAN framework. The VCORE_FREE area is moved right before the .asan_shadow area. init_asan() calls boot_mem_init_asan() to tag access to already allocated boot memory. entry_a32.S is updated to skip allowing access to stacks in the .asan_shadow area for CFG_DYN_CONFIG=y since stacks are stored elsewhere in that configuration. entry_a64.S is updated to initialize the .asan_shadow area in the same way as in entry_a32.S. The .asan_shadow area is mapped explicitly in collect_mem_ranges() instead of relying on the now non-existent coverage of MEM_AREA_TEE_RAM_RW. CFG_DYN_CONFIG=y and CFG_WITH_PAGER=y is not yet known to work. Fixes: 1c1f8b65b5c6 ("core: mm: unify secure core and TA memory") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... boot.c entry_a32.S entry_a64.S kern.ld.S /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/core.mk /optee_os/core/include/kernel/boot.h /optee_os/core/mm/boot_mem.c /optee_os/core/mm/core_mmu.c
bb538722	02-Jun-2025	Alvin Chang <alvinga@andestech.com>	core: replace CFG_DYN_STACK_CONFIG with CFG_DYN_CONFIG This commit replaces CFG_DYN_STACK_CONFIG with CFG_DYN_CONFIG since now RISC-V also supports CFG_DYN_STACK_CONFIG. Signed-off-by: Alvin Chang core: replace CFG_DYN_STACK_CONFIG with CFG_DYN_CONFIG This commit replaces CFG_DYN_STACK_CONFIG with CFG_DYN_CONFIG since now RISC-V also supports CFG_DYN_STACK_CONFIG. Signed-off-by: Alvin Chang <alvinga@andestech.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/dts/stm32mp25-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1.dts /optee_os/core/arch/arm/include/mm/core_mmu_arch.h entry_a32.S entry_a64.S /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/drivers/stm32mp25_syscfg.c /optee_os/core/arch/arm/plat-stm32mp2/stm32_sysconf.h /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/drivers/stm32_omm.c /optee_os/core/drivers/sub.mk /optee_os/core/include/dt-bindings/firewall/stm32mp25-rifsc.h /optee_os/core/include/dt-bindings/scmi/scmi-clock.h /optee_os/core/include/kernel/thread.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/boot.c /optee_os/core/kernel/thread.c /optee_os/core/lib/scmi-server/conf-optee-stm32mp1.mk /optee_os/core/lib/scmi-server/conf-optee-stm32mp2.mk /optee_os/core/lib/scmi-server/conf.mk /optee_os/core/lib/scmi-server/include/scmi_agent_configuration.h /optee_os/core/lib/scmi-server/include/scmi_clock_consumer.h /optee_os/core/lib/scmi-server/include/scmi_reset_consumer.h /optee_os/core/lib/scmi-server/scmi_clock_consumer.c /optee_os/core/lib/scmi-server/scmi_reset_consumer.c /optee_os/core/lib/scmi-server/scmi_server.c /optee_os/core/lib/scmi-server/scmi_server_scpfw.c /optee_os/core/lib/scmi-server/sub.mk /optee_os/core/mm/core_mmu.c /optee_os/lib/libmbedtls/mbedtls/library/common.h /optee_os/mk/clang.mk /optee_os/mk/config.mk
9d58f55e	19-May-2025	Gyorgy Szing <gyorgy.szing@arm.com>	spmc: fix FF-A manifest boot-order handling According to the official manifest binding documentation [1], all integer properties must be defined as 32-bit wide DTB properties. However, the OP-TEE SP spmc: fix FF-A manifest boot-order handling According to the official manifest binding documentation [1], all integer properties must be defined as 32-bit wide DTB properties. However, the OP-TEE SPMC previously implemented the boot-order property as a 16-bit value. This patch corrects that inconsistency by adding support for the correct 32 bit representation while keeping backwards compatibility. Recent changes in TF-A’s build tooling have broken support for manifest files using the "/bits/" width specifier. This update restores compatibility by eliminating the need to use them. [1] FF-A Manifest Binding Link: https://trustedfirmware-a.readthedocs.io/en/v2.12.0/components/ffa-manifest-binding.html Signed-off-by: Gyorgy Szing <gyorgy.szing@arm.com> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml secure_partition.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.h /optee_os/core/arch/arm/plat-k3/drivers/ti_sci_protocol.h /optee_os/core/arch/arm/plat-rockchip/conf.mk /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rockchip/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/crypto/signed_hdr.c /optee_os/core/drivers/crypto/caam/include/caam_ae.h /optee_os/core/drivers/firewall/stm32_rifsc.c /optee_os/core/drivers/firewall/stm32_risab.c /optee_os/core/drivers/stm32_hpdma.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/wdt/watchdog_sm.c /optee_os/core/include/drivers/wdt.h /optee_os/core/include/kernel/thread.h /optee_os/core/kernel/thread.c /optee_os/keys/default.pem /optee_os/mk/config.mk
91d4649d	20-Mar-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: add thread_count to thread_init_threads() Add a thread_count parameter to thread_init_threads(). This must currently always be equal to CFG_NUM_THREADS, but may become a dynamic configuration core: add thread_count to thread_init_threads() Add a thread_count parameter to thread_init_threads(). This must currently always be equal to CFG_NUM_THREADS, but may become a dynamic configuration parameter with CFG_DYN_CONFIG=y in later patches. The array threads[] is changed into a pointer to allow dynamic allocation in later patches. The assembly code is updated accordingly to handle a pointer instead of an array. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Alvin Chang <alvinga@andestech.com> Tested-by: Alvin Chang <alvinga@andestech.com> Reviewed-by: Yu-Chien Peter Lin <peter.lin@sifive.com> Tested-by: Yu-Chien Peter Lin <peter.lin@sifive.com> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... boot.c entry_a32.S entry_a64.S thread_a64.S virtualization.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/thread_private.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/thread.c /optee_os/core/mm/core_mmu.c
59724f22	20-Mar-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: dynamic allocation of thread_core_local and its stacks With CFG_DYN_CONFIG enabled, use dynamic allocation of thread_core_local and the two stacks, tmp_stack and abt_stack, recorded in it. Si core: dynamic allocation of thread_core_local and its stacks With CFG_DYN_CONFIG enabled, use dynamic allocation of thread_core_local and the two stacks, tmp_stack and abt_stack, recorded in it. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/arch/arm/include/kernel/thread_arch.h /optee_os/core/arch/arm/include/kernel/thread_private_arch.h asm-defines.c boot.c entry_a32.S entry_a64.S thread.c /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/thread_private.h /optee_os/core/kernel/thread.c /optee_os/mk/config.mk
a4c2e0cb	20-Mar-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: add core_count to thread_init_thread_core_local() Add a core_count parameter to thread_init_thread_core_local() to enable dynamic configuration of the number of supported cores when configured core: add core_count to thread_init_thread_core_local() Add a core_count parameter to thread_init_thread_core_local() to enable dynamic configuration of the number of supported cores when configured with CFG_DYN_STACK_CONFIG=y, or it must be equal to CFG_TEE_CORE_NB_CORE. This is needed in later patches where the number of cores is configured dynamically. The array thread_core_local[] is changed into a pointer to allow dynamic allocation in later patches. The assembly code is updated accordingly to handle a pointer instead of an array. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Alvin Chang <alvinga@andestech.com> Tested-by: Alvin Chang <alvinga@andestech.com> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... boot.c /optee_os/core/arch/arm/sm/pm_a32.S /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/thread_private.h /optee_os/core/kernel/thread.c
a6d75fa2	20-Mar-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: arm: virt: share TA memory with core With CFG_NS_VIRTUALIZATION=y it is assumed that all physical OP-TEE memory, core and TA, is equally secure. When a guest is created, register the allocated core: arm: virt: share TA memory with core With CFG_NS_VIRTUALIZATION=y it is assumed that all physical OP-TEE memory, core and TA, is equally secure. When a guest is created, register the allocated physical TA memory in the physical core memory pool instead of physical TA memory pool. This lets the partition to allocate from a single pool reserved for the partition instead of trying to guess how much core memory it might need. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/include/kernel/thread_private_arch.h virtualization.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/plat-ti/a9_plat_init.S /optee_os/core/arch/arm/tests/ffa_lsp.c /optee_os/core/arch/arm/tests/sub.mk /optee_os/core/pta/tests/misc.c
ecf08061	22-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: arm: ffa: add framework for Logical SPs Add a framework to register Logical Secure Partitions in parallel with OP-TEE at S-EL1. This is akin to Pseudo TAs, it provides an ABI but it's part of core: arm: ffa: add framework for Logical SPs Add a framework to register Logical Secure Partitions in parallel with OP-TEE at S-EL1. This is akin to Pseudo TAs, it provides an ABI but it's part of the OP-TEE binary. A critical difference is that it's only available for FF-A and can only use the non-threaded environment, that is, no mutexes or RPC. The logical OP-TEE core partition is registered in the framework. The SPMC is also registered in the framework, but with a nil UUID so it's not returned by FFA_PARTITION_INFO_GET. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> Reviewed-by: Akshay Belsare <akshay.belsare@amd.com> show more ... /optee_os/core/arch/arm/include/kernel/thread_spmc.h secure_partition.c thread_spmc.c
40f03182	22-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: only accept FFA_RUN for S-EL0 SPs OP-TEE core is never preemted with FFA_INTERRUPT so it must never be resumed with FFA_RUN. However, S-EL0 SPs are preempted with FFA_INTERRUPT so those a core: ffa: only accept FFA_RUN for S-EL0 SPs OP-TEE core is never preemted with FFA_INTERRUPT so it must never be resumed with FFA_RUN. However, S-EL0 SPs are preempted with FFA_INTERRUPT so those are still resumed using FFA_RUN. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> Reviewed-by: Akshay Belsare <akshay.belsare@amd.com> show more ... thread_spmc.c
5c85c87e	22-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: sp_partition_info_get() takes uuid_words[] Replace the TEE_UUID ffa_uuid parameter with uint32_t ffa_uuid_words[4] to simplify how sp_partition_info_get() is called. Signed-off-by: Jens core: ffa: sp_partition_info_get() takes uuid_words[] Replace the TEE_UUID ffa_uuid parameter with uint32_t ffa_uuid_words[4] to simplify how sp_partition_info_get() is called. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> Reviewed-by: Akshay Belsare <akshay.belsare@amd.com> show more ... /optee_os/core/arch/arm/include/kernel/secure_partition.h secure_partition.c thread_spmc.c
fc6415c4	22-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: add spmc_is_reserved_id() Add spmc_is_reserved_id() and replace direct checks against spmd_id and spmc_id. spmd_id and spmc_id are changed to static variables since they don't need to be core: ffa: add spmc_is_reserved_id() Add spmc_is_reserved_id() and replace direct checks against spmd_id and spmc_id. spmd_id and spmc_id are changed to static variables since they don't need to be exported any longer. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> Reviewed-by: Akshay Belsare <akshay.belsare@amd.com> show more ... /optee_os/core/arch/arm/include/kernel/thread_spmc.h secure_partition.c thread_spmc.c /optee_os/core/kernel/dt.c /optee_os/core/kernel/transfer_list.c /optee_os/core/pta/tests/invoke.c /optee_os/core/pta/tests/misc.h /optee_os/core/pta/tests/sub.mk /optee_os/core/pta/tests/transfer_list.c /optee_os/lib/libutee/include/pta_invoke_tests.h /optee_os/mk/config.mk
aa6d7fc3	11-Sep-2024	Levi Yun <yeoreum.yun@arm.com>	core: applies FF-A v1.2 features on StandaloneMm edk2's StandaloneMm will be applied with FF-A v1.2. while applying, StandaloneMm doesn't create anymore PHIT hob by itself but it should be passed fr core: applies FF-A v1.2 features on StandaloneMm edk2's StandaloneMm will be applied with FF-A v1.2. while applying, StandaloneMm doesn't create anymore PHIT hob by itself but it should be passed from other software stack. To make StandaloneMm runs properly, create Hob information and deliver it using FF-A Boot protocol according to FF-A specification [1]. Also, apply FF-A management protocol to change it [2] to get/set memory permission instead of using DIRECT_REQ_MSG. Also, implements some FF-A ABIs to communication StandaloneMm properly. Link: https://developer.arm.com/documentation/den0077/latest [1] Link: https://developer.arm.com/documentation/den0140/latest [2] Tested-by: Ilias Apalodimas <ilias.apalodimas@linaro.org> Acked-by: Ilias Apalodimas <ilias.apalodimas@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Levi Yun <yeoreum.yun@arm.com> show more ... stmm_sp.c /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/arch/riscv/riscv.mk /optee_os/core/core.mk /optee_os/core/lib/libefi/hob.c /optee_os/core/lib/libefi/include/efi/efi_types.h /optee_os/core/lib/libefi/include/efi/hob.h /optee_os/core/lib/libefi/include/efi/hob_guid.h /optee_os/core/lib/libefi/include/efi/mmram.h /optee_os/core/lib/libefi/include/efi/mpinfo.h /optee_os/core/lib/libefi/sub.mk /optee_os/lib/libmbedtls/include/mbedtls_config_kernel.h /optee_os/lib/libmbedtls/include/mbedtls_config_uta.h /optee_os/mk/clang.mk /optee_os/mk/config.mk
f3434bd3	28-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: arm: remove $(libgcccore) usage Remove all remaining $(libgcccore) usage now that lib/libutils/compiler-rt provides the needed bits. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> core: arm: remove $(libgcccore) usage Remove all remaining $(libgcccore) usage now that lib/libutils/compiler-rt provides the needed bits. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... link.mk /optee_os/core/kernel/dt_driver.c /optee_os/lib/libutils/compiler-rt/LICENSE.TXT /optee_os/lib/libutils/compiler-rt/README.txt /optee_os/lib/libutils/compiler-rt/lib/builtins/ashlti3.c /optee_os/lib/libutils/compiler-rt/lib/builtins/int_div_impl.inc /optee_os/lib/libutils/compiler-rt/lib/builtins/int_endianness.h /optee_os/lib/libutils/compiler-rt/lib/builtins/int_lib.h /optee_os/lib/libutils/compiler-rt/lib/builtins/int_types.h /optee_os/lib/libutils/compiler-rt/lib/builtins/int_util.h /optee_os/lib/libutils/compiler-rt/lib/builtins/sub.mk /optee_os/lib/libutils/compiler-rt/lib/builtins/udivmodti4.c /optee_os/lib/libutils/compiler-rt/lib/builtins/udivti3.c /optee_os/lib/libutils/compiler-rt/lib/sub.mk /optee_os/lib/libutils/compiler-rt/sub.mk /optee_os/lib/libutils/sub.mk /optee_os/mk/config.mk
414123ae	03-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: reserve physical memory for manifest With CFG_CORE_SEL2_SPMC=y (Hafnium as SPMC at S-EL2), the FF-A manifest passed to OP-TEE resides in the memory reserved for OP-TEE just before the loa core: ffa: reserve physical memory for manifest With CFG_CORE_SEL2_SPMC=y (Hafnium as SPMC at S-EL2), the FF-A manifest passed to OP-TEE resides in the memory reserved for OP-TEE just before the load address. The physical memory pool is initialized with the entire range of secure memory, with holes carved out for already used memory. Temporarily allocate the physical memory used by the manifest until it's not needed any longer and released by release_manifest_dt(). Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/CHANGELOG.md boot.c /optee_os/core/arch/arm/plat-k3/drivers/sa2ul.c /optee_os/core/arch/arm/plat-k3/platform_config.h /optee_os/core/drivers/crypto/stm32/stm32_cryp.c /optee_os/core/drivers/crypto/stm32/stm32_saes.c /optee_os/core/include/kernel/dt.h /optee_os/core/kernel/dt.c /optee_os/core/tee/fs_htree.c /optee_os/mk/config.mk
45c754ce	16-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: fix crash during syscall ftrace Syscall ftrace collects data during a syscall. get_fbuf() checks if thread_get_id_may_fail() != -1 to see if a function is called under normal thread execution. core: fix crash during syscall ftrace Syscall ftrace collects data during a syscall. get_fbuf() checks if thread_get_id_may_fail() != -1 to see if a function is called under normal thread execution. This can lead to an inconsistent state if a native interrupt occur while ftrace_enter() or ftrace_return() is recording data in the ftrace buffer. So fix this by using thread_is_in_normal_mode() to exclude ftrace during interrupt processing. Reported-by: Jerome Forissier <jerome.forissier@linaro.org> Closes: https://github.com/OP-TEE/optee_os/issues/7216 Fixes: 099918f6744c ("ftrace: Add support for syscall function tracer") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (vexpress-qemu_armv8a) show more ... thread.c /optee_os/core/drivers/atmel_saic.c /optee_os/core/kernel/thread.c /optee_os/core/tee/fs_htree.c /optee_os/lib/libutils/ext/ftrace/ftrace.c /optee_os/mk/config.mk
abb35419	14-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: arm: update recorded SP first after MMU is enabled With CFG_CORE_ASLR=y, stored addresses must be updated after MMU has been enabled to match the map offset. In particular the recorded stack p core: arm: update recorded SP first after MMU is enabled With CFG_CORE_ASLR=y, stored addresses must be updated after MMU has been enabled to match the map offset. In particular the recorded stack pointers in thread_core_local[] must be updated to match the new offset before any calls can be done into C code or check_stack_limits() with CFG_CORE_DEBUG_CHECK_STACKS=y might catch an inconsistent stack pointer. Currently, boot_mem_relocate() is called before the recorded stack pointers have been updated and causes a crash with CFG_CORE_ASLR=y and CFG_CORE_DEBUG_CHECK_STACKS=y. So fix this by calling delaying the call to boot_mem_relocate() to after the stack pointers in thread_core_local[] has been updated. Reported-by: Jerome Forissier <jerome.forissier@linaro.org> Closes: https://github.com/OP-TEE/optee_os/issues/7363 Fixes: ea991d7459f6 ("core: arm: remove THREAD_CORE_LOCAL_STACKCHECK_RECURSION") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (vexpress-qemu_armv8a) show more ... entry_a32.S entry_a64.S /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/plat-spike/conf.mk /optee_os/core/arch/riscv/plat-virt/conf.mk
c60785c4	28-Mar-2025	Yu-Chien Peter Lin <peter.lin@sifive.com>	core: move plat_get_random_stack_canaries() to common part Other architectures (e.g. RISC-V) may want to call plat_get_random_stack_canaries() for random stack canaries. Move it from ARM architectur core: move plat_get_random_stack_canaries() to common part Other architectures (e.g. RISC-V) may want to call plat_get_random_stack_canaries() for random stack canaries. Move it from ARM architecture directory to common part. Signed-off-by: Yu-Chien Peter Lin <peter.lin@sifive.com> Co-developed-by: Alvin Chang <alvinga@andestech.com> Signed-off-by: Alvin Chang <alvinga@andestech.com> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... boot.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/core.mk /optee_os/core/drivers/firewall/stm32_rifsc.c /optee_os/core/kernel/boot.c /optee_os/core/mm/core_mmu.c /optee_os/lib/libmbedtls/mbedtls/ChangeLog /optee_os/lib/libmbedtls/mbedtls/SECURITY.md /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/build_info.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/check_config.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/config_adjust_legacy_crypto.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/config_adjust_legacy_from_psa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/config_adjust_psa_superset_legacy.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/debug.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/entropy.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/error.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/gcm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/net_sockets.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/psa_util.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/threading.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_config.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_extra.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_sizes.h /optee_os/lib/libmbedtls/mbedtls/library/aesni.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_core.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_core.h /optee_os/lib/libmbedtls/mbedtls/library/bignum_core_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/ccm.c /optee_os/lib/libmbedtls/mbedtls/library/common.h /optee_os/lib/libmbedtls/mbedtls/library/constant_time_impl.h /optee_os/lib/libmbedtls/mbedtls/library/ecp.c /optee_os/lib/libmbedtls/mbedtls/library/error.c /optee_os/lib/libmbedtls/mbedtls/library/net_sockets.c /optee_os/lib/libmbedtls/mbedtls/library/pk.c /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto.c /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto_cipher.c /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto_core.h /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto_driver_wrappers.h /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto_ecp.c /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto_slot_management.c /optee_os/lib/libmbedtls/mbedtls/library/psa_crypto_storage.h /optee_os/lib/libmbedtls/mbedtls/library/psa_util.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_debug_helpers_generated.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_misc.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_msg.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls12_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls12_server.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_server.c /optee_os/lib/libmbedtls/mbedtls/library/threading.c /optee_os/lib/libmbedtls/mbedtls/library/version_features.c /optee_os/lib/libutee/include/pta_stats.h /optee_os/lib/libutils/isoc/bget.c /optee_os/lib/libutils/isoc/bget_malloc.c
12 3 4 5 6 7 8 9 10 >>...49