user_mode_ctx.h - OpenGrok history log for /optee_os/core/include/kernel/user_mode

Revision	Date	Author	Comments
# c185655e	19-Jan-2021	Jelle Sels <jelle.sels@arm.com>	core: Initiate and load Secure Partitions Secure Partitions (SP) are S-El0 execution service defined in the Arm FF-A specification. The Secure Partitions are loaded as the last part of the boot proc core: Initiate and load Secure Partitions Secure Partitions (SP) are S-El0 execution service defined in the Arm FF-A specification. The Secure Partitions are loaded as the last part of the boot process. A Secure Partitions can be added to image using the SP_PATHS build option. The SPs are loaded using ldelf. Signed-off-by: Jelle Sels <jelle.sels@arm.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org> show more ...
# f9cd31c5	05-Oct-2020	Jelle Sels <jelle.sels@arm.com>	core: rename secure_partition to stmm_sp The current secure partition code is used for the stmm SP. Rename it so we can start integrating the FF-A secure partitions. Backwards compatibility is main core: rename secure_partition to stmm_sp The current secure partition code is used for the stmm SP. Rename it so we can start integrating the FF-A secure partitions. Backwards compatibility is maintained when CFG_STMM_PATH is used to enable support for STMM. The internal configuration flag CFG_WITH_SECURE_PARTITION is renamed to CFG_WITH_STMM_SP. Signed-off-by: Jelle Sels <jelle.sels@arm.com> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Ilias Apalodimas <ilias.apalodimas@linaro.org> show more ...
# 1f648d54	09-Oct-2020	Jens Wiklander <jens.wiklander@linaro.org>	core: remove struct tee_ta_ctx from struct user_mode_ctx Removes struct tee_ta_ctx from struct user_mode_ctx allowing a user mode entity to be independent of the TA concept, that is, making room for core: remove struct tee_ta_ctx from struct user_mode_ctx Removes struct tee_ta_ctx from struct user_mode_ctx allowing a user mode entity to be independent of the TA concept, that is, making room for SPs in user mode. A pointer to a struct user_mode_ctx is passed to many memory management functions where a pointer to a struct ts_ctx is needed too. Prior to this patch it was possible to calculate that address of corresponding struct ts_ctx with help of the container_of() macro, that is no longer possible. Instead is a struct ts_ctx *ts_ctx field added to struct user_mode_ctx in order to allow such lookups. Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ...
# 3560d990	01-Sep-2020	Jens Wiklander <jens.wiklander@linaro.org>	core: add generic struct ts_ctx Adds the generic struct ts_ctx to be used instead of struct tee_ta_ctx where generic context operations are performed. struct tee_ta_ctx adds a field with struct ts_ core: add generic struct ts_ctx Adds the generic struct ts_ctx to be used instead of struct tee_ta_ctx where generic context operations are performed. struct tee_ta_ctx adds a field with struct ts_ctx for conversion to struct ts_ctx where needed. The struct ts_session is updated to keep a pointer to a struct ts_ctx instead of the previous struct tee_ta_ctx. Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ...
# 42471ecf	11-Sep-2019	Jens Wiklander <jens.wiklander@linaro.org>	core: load stmm via secure partition Secure variable storage for EFI variables is critical for enabling and protecting UEFI Secure Boot. Unfortunately due to the fact that SPD and SPM are mutually e core: load stmm via secure partition Secure variable storage for EFI variables is critical for enabling and protecting UEFI Secure Boot. Unfortunately due to the fact that SPD and SPM are mutually exclusive, we can't run StMM from EDK2 and OP-TEE. An advantage of doing so is that different firmware implementations can leverage EDK2's StandAloneMM and in cooperation with OP-TEE RPMB APIs can store UEFI variables in a secure storage. This makes the variable storage quite generic in any device with an RPMB partition. Using a well debugged application is preferable over rewriting the whole application as a TA. Another advantage is that this inherits the Fault Tolerant Writes (FTW) functionality built-in on StMM to protect variables against corruptions during writing. Considering the FFA changes of the future Arm architectures using an SP that includes everything seems like a better choice at the moment. The 'SPM emulation' currently added into OP-TEE only supports a single SP to be launched. This means that the StMM embedded application has the RPMB driver built in at the moment. In the future we can add code (evolving FFA) to launch multiple SPs. So the StMM variable handling can be decoupled from the RPMB driver, which will reside in a different SP. So let's add a user mode secure partition context and support loading "Standalone MM" of EDK2 into it. A separate syscall handling is added to serve as different kind of ABI and syscall IDs. The secure partition has a TA like interface towards normal world, but requests are routed into the StMM partition instead. CFG_STMM_PATH is assigned the path of BL32_AP_MM.fd, for instance: CFG_STMM_PATH=...Build/QemuVirtMmStandalone/DEBUG_GCC5/FV/BL32_AP_MM.fd Since this is quite tricky to compile and test you can use this [1]. Just clone the repo and run ./build.sh. The script will pick up edk2, edk2-platforms, op-tee, atf and U-boot and compile all the necessary binaries for QEMU. A patch (awful hack) has been added to U-boot to allow RPMB emulation through it's supplicant, since QEMU RPMB emulation is not yet available. After compiling and launching QEMU the usual U-boot commands for EFI variable management will store the variables on an RPMB device. [1] https://git.linaro.org/people/ilias.apalodimas/efi_optee_variables.git/ Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Co-developed-by: Ilias Apalodimas <ilias.apalodimas@linaro.org> Signed-off-by: Ilias Apalodimas <ilias.apalodimas@linaro.org> Co-developed-by: Pipat Methavanitpong <pipat1010@gmail.com> Signed-off-by: Pipat Methavanitpong <pipat1010@gmail.com> Co-developed-by: Miklos Balint <Miklos.Balint@arm.com> Signed-off-by: Miklos Balint <Miklos.Balint@arm.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org> show more ...
# 5343f09f	07-Oct-2019	Jens Wiklander <jens.wiklander@linaro.org>	core: add common user_mode_ctx_print_mappings() Adds a common user_mode_ctx_print_mappings() which prints the current user mode mappings. Acked-by: Pipat Methavanitpong <pipat.methavanitpong@linaro core: add common user_mode_ctx_print_mappings() Adds a common user_mode_ctx_print_mappings() which prints the current user mode mappings. Acked-by: Pipat Methavanitpong <pipat.methavanitpong@linaro.org> Reviewed-by: Jerome Forissier <jerome@forissier.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ...
# 1936dfc7	07-Oct-2019	Jens Wiklander <jens.wiklander@linaro.org>	core: add struct user_mode_ctx Adds struct user_mode_ctx which replaces user mode specific fields used for memory mapping. Acked-by: Pipat Methavanitpong <pipat.methavanitpong@linaro.org> Acked-by: core: add struct user_mode_ctx Adds struct user_mode_ctx which replaces user mode specific fields used for memory mapping. Acked-by: Pipat Methavanitpong <pipat.methavanitpong@linaro.org> Acked-by: Jerome Forissier <jerome@forissier.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ...