kernel - OpenGrok history log for /optee

Revision	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
6fa59c9a	12-May-2023	Seonghyun Park <seonghp@amazon.com>	arm64: Introduce permissive PAN implementation Privileged Access Never (PAN) is a part of ARMv8.1 extension that restricts accesses to unprivileged memory from privileged mode in order to prevent un arm64: Introduce permissive PAN implementation Privileged Access Never (PAN) is a part of ARMv8.1 extension that restricts accesses to unprivileged memory from privileged mode in order to prevent unintended accesses to potentially malicious memory. This introduces configuration of PAN and helper functions enter_user_access() and exit_user_access() that toggles PSTATE.PAN that controls the behavior of PAN. Current OP-TEE impelmentation is not ready to apply strict PAN policy due to missing user-access function uses, etc. Hence, this patch takes a very permissive approach (yet better than nothing), where PAN is deactivated in the entire lifetime of thread_svc_handler (i.e., system call). Signed-off-by: Seonghyun Park <seonghp@amazon.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/CHANGELOG.md /optee_os/Makefile /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/arm64_macros.S /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/user_access_arch.h /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/mm/mobj_dyn_shm.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.h /optee_os/core/arch/arm/plat-k3/drivers/ti_sci_protocol.h /optee_os/core/arch/arm/plat-k3/main.c /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/riscv/include/kernel/delay_arch.h /optee_os/core/arch/riscv/include/kernel/tlb_helpers.h /optee_os/core/arch/riscv/include/kernel/user_access_arch.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/kernel/tee_time_rdtime.c /optee_os/core/arch/riscv/mm/sub.mk /optee_os/core/arch/riscv/mm/tlb_helpers_rv.S /optee_os/core/crypto/crypto.c /optee_os/core/drivers/crypto/caam/acipher/caam_dh.c /optee_os/core/drivers/crypto/caam/acipher/caam_dsa.c /optee_os/core/drivers/crypto/caam/acipher/caam_ecc.c /optee_os/core/drivers/crypto/caam/acipher/caam_rsa.c /optee_os/core/drivers/crypto/se050/core/ecc.c /optee_os/core/drivers/crypto/se050/core/rsa.c /optee_os/core/drivers/crypto/versal/ecc.c /optee_os/core/include/crypto/crypto.h user_access.h /optee_os/core/lib/libtomcrypt/dh.c /optee_os/core/lib/libtomcrypt/dsa.c /optee_os/core/lib/libtomcrypt/ecc.c /optee_os/core/lib/libtomcrypt/mpi_desc.c /optee_os/core/lib/libtomcrypt/rsa.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/ldelf/ftrace.c /optee_os/lib/libmbedtls/core/bignum.c /optee_os/lib/libmbedtls/core/dh.c /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libmbedtls/core/rsa.c /optee_os/lib/libutee/include/riscv_user_sysreg.h /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutils/ext/arch/riscv/mcount_rv.S /optee_os/lib/libutils/ext/arch/riscv/sub.mk /optee_os/lib/libutils/ext/ftrace/ftrace.c /optee_os/lib/libutils/ext/include/asm.S /optee_os/lib/libutils/ext/include/riscv.S /optee_os/lib/libutils/isoc/arch/riscv/setjmp_rv.S /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/setjmp.h /optee_os/mk/config.mk /optee_os/scripts/ftrace_format.py /optee_os/ta/arch/riscv/ta.ld.S
b89b3da2	21-Apr-2023	Vincent Chuang <Vincent.Chuang@mediatek.com>	core: thread: Add support for canary value randomization Currently hardcoded magic number is used as thread stack canary, an attacker with full control over the overflow can embed the hardcoded cana core: thread: Add support for canary value randomization Currently hardcoded magic number is used as thread stack canary, an attacker with full control over the overflow can embed the hardcoded canary value on the right location to bypass the overflow detection. To add extra layer of security, redefine the canary value as variable, such that the canary can be initialized during runtime. The canaries are initialized with static values from thread_init_canaries() during the early boot stage. The plat_get_random_stack_canaries() is refactored to support arbitrary-length random numbers, and a new function called thread_update_canaries() is created to fetch the random values and update the thread canaries. For CFG_NS_VIRTUALIZATION=y, the updated function is disabled. Signed-off-by: Vincent Chuang <Vincent.Chuang@mediatek.com> Signed-off-by: Randy Hsu <Randy-CY.Hsu@mediatek.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/MAINTAINERS /optee_os/core/arch/arm/dts/stm32mp13-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp13xc.dtsi /optee_os/core/arch/arm/dts/stm32mp13xf.dtsi /optee_os/core/arch/arm/dts/stm32mp15-pinctrl.dtsi /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/arch_scall.c /optee_os/core/arch/riscv/riscv.mk /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/hfic.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_etzpc.c /optee_os/core/drivers/stm32_i2c.c /optee_os/core/include/drivers/stm32_etzpc.h /optee_os/core/include/dt-bindings/clock/stm32mp13-clks.h /optee_os/core/include/dt-bindings/regulator/st,stm32mp13-regulator.h /optee_os/core/include/dt-bindings/rtc/rtc-stm32.h boot.h thread.h /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/thread.c /optee_os/ldelf/main.c /optee_os/ldelf/ta_elf.c /optee_os/ldelf/ta_elf.h /optee_os/lib/libutee/arch/riscv/utee_syscalls_rv.S /optee_os/mk/aosp_optee.mk /optee_os/scripts/symbolize.py
f932e355	03-Jan-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: interrupt: interrupt chip framework Extends itr_chip framework to allow interrupt controllers to register as interrupt chip and other interrupt management methods it their owns interrupt consu core: interrupt: interrupt chip framework Extends itr_chip framework to allow interrupt controllers to register as interrupt chip and other interrupt management methods it their owns interrupt consumer through the interrupt_xxx() API function. This change does not modify the existing interrupt API function that allow a driver to get an interrupt from the CPU main interrupt controller. A later change will remove these old API functions. This changes adds fields in existing structures defined in interrupt.h: - itr_handler::chip back references the interrupt controller - itr_chip::handlers is a list head for controller registered handlers - itr_chip::name for debug trace purpose - itr_ops::mask and itr_ops::unmask to mask/unmask an interrupt The new API functions exposed to interrupt consumers are: - interrupt_add_configure_handler(), interrupt_remove_handler() and helper functions interrupt_add_handler() and interrupt_add_handler_with_chip(); - interrupt_alloc_add_handler() and interrupt_remove_free_handler(); - interrupt_configure(), interrupt_enable(), interrupt_disable(), interrupt_mask() and interrupt_unmask(); Interrupt controllers shall call generic API function interrupt_call_handlers() to have their registered consumer handlers called upon their related interrupt occurrences. Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/kernel/tlb_helpers.h /optee_os/core/arch/arm/kernel/cache_helpers_a64.S /optee_os/core/arch/arm/kernel/tlb_helpers_a32.S /optee_os/core/arch/arm/kernel/tlb_helpers_a64.S /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/mm/tee_pager.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_syscfg.c /optee_os/core/arch/riscv/mm/tlb_helpers_rv.S /optee_os/core/drivers/stm32_bsec.c /optee_os/core/include/drivers/pinctrl.h interrupt.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/interrupt.c /optee_os/core/mm/core_mmu.c /optee_os/core/mm/vm.c /optee_os/ta/pkcs11/src/processing.h
b357d34f	06-Jun-2023	Etienne Carriere <etienne.carriere@foss.st.com>	core: dt_driver: swap TEE_result and retrieved device reference Changes dt_driver callback function to return a TEE_Result value and pass retrieved device reference by a output argument rather than core: dt_driver: swap TEE_result and retrieved device reference Changes dt_driver callback function to return a TEE_Result value and pass retrieved device reference by a output argument rather than the opposite. This change updates dt_driver.c, dt_driver.h and all drivers implementing related dt_driver callback function. As a consequence, this change removes all type definition related to device specific callback handler function types which are useless as all these now comply with type dt_driver_probe_func defined in dt_driver.h. Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/core_mmu_v7.c /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/riscv.mk /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/clk/clk-stm32-core.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/clk/clk_dt.c /optee_os/core/drivers/clk/sam/at91_clk.h /optee_os/core/drivers/clk/sam/at91_pmc.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/gpio/gpio.c /optee_os/core/drivers/i2c/atmel_i2c.c /optee_os/core/drivers/pinctrl/atmel_pio.c /optee_os/core/drivers/pinctrl/pinctrl.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/i2c.h /optee_os/core/include/drivers/pinctrl.h /optee_os/core/include/drivers/rstctrl.h dt_driver.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/dt_driver.c /optee_os/core/mm/core_mmu.c /optee_os/core/pta/tests/dt_driver_test.c /optee_os/mk/aosp_optee.mk /optee_os/ta/mk/ta_dev_kit.mk /optee_os/ta/ta.mk
50dd2af0	08-Feb-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: dt_driver: add helper for old fashion interrupt bindings Adds a helper function dt_driver_device_from_node_idx_prop_phandle() in device tree driver probing framework for when a DT node propert core: dt_driver: add helper for old fashion interrupt bindings Adds a helper function dt_driver_device_from_node_idx_prop_phandle() in device tree driver probing framework for when a DT node property contains a resource references but not the related device phandle as first property cell, as for property "interrupts" which should get the interrupt controller phandle from property "interrupt-parent". This change aims at supporting "interrupts" property DT bindings. Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... dt_driver.h /optee_os/core/kernel/dt_driver.c
ed33eb2e	05-Feb-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: dt_driver: define interrupt controller drivers identifier Defines identifier DT_DRIVER_INTERRUPT in dt_driver_type enumerated type for interrupt controller drivers. Acked-by: Jens Wiklander < core: dt_driver: define interrupt controller drivers identifier Defines identifier DT_DRIVER_INTERRUPT in dt_driver_type enumerated type for interrupt controller drivers. Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/include/drivers/stm32_gpio.h dt_driver.h /optee_os/core/kernel/dt_driver.c
a009881d	05-Feb-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: interrupt: add inline descriptions Adds inline description comments in interrupt.h and fix an indentation. Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carri core: interrupt: add inline descriptions Adds inline description comments in interrupt.h and fix an indentation. Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... interrupt.h /optee_os/core/kernel/interrupt.c
e050e0a7	31-May-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: interrupt: interrupt_get_main_chip() returns main controller Adds helper function interrupt_get_main_chip() to get the struct itr_chip reference of the CPU main interrupt controller (e.g. the core: interrupt: interrupt_get_main_chip() returns main controller Adds helper function interrupt_get_main_chip() to get the struct itr_chip reference of the CPU main interrupt controller (e.g. the GIC). This function helps adapting a generic interrupt controller framework to consider CPU main interrupt controller specific reference. Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/core/arch/arm/kernel/abort.c /optee_os/core/arch/arm/plat-aspeed/conf.mk /optee_os/core/arch/arm/plat-aspeed/platform_ast2700.c /optee_os/core/arch/arm/plat-aspeed/platform_config.h /optee_os/core/arch/arm/plat-aspeed/sub.mk /optee_os/core/arch/arm/plat-nuvoton/conf.mk /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-nuvoton/platform_config.h /optee_os/core/arch/arm/plat-nuvoton/sub.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/abort.c /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/kernel/unwind_rv.c /optee_os/core/arch/riscv/riscv.mk /optee_os/core/drivers/imx_ele.c /optee_os/core/drivers/pinctrl/pinctrl.c /optee_os/core/drivers/stm32_gpio.c interrupt.h /optee_os/core/kernel/interrupt.c /optee_os/keys/default.pem /optee_os/keys/default_ta.pem /optee_os/lib/libunw/include/unw/unwind.h /optee_os/lib/libunw/sub.mk /optee_os/lib/libunw/unwind_arm64.c /optee_os/lib/libunw/unwind_riscv.c /optee_os/scripts/symbolize.py /optee_os/ta/ta.mk
8fd620f7	22-May-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: rename dt_driver_phandle_args to dt_pargs Renames struct dt_driver_phandle_args to struct dt_pargs to shorten the label and prevent ugly line breaks in function signatures. Acked-by: Jens Wik core: rename dt_driver_phandle_args to dt_pargs Renames struct dt_driver_phandle_args to struct dt_pargs to shorten the label and prevent ugly line breaks in function signatures. Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/clk/clk-stm32-core.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/clk/sam/at91_clk.h /optee_os/core/drivers/clk/sam/at91_pmc.c /optee_os/core/drivers/gpio/gpio.c /optee_os/core/drivers/i2c/atmel_i2c.c /optee_os/core/drivers/pinctrl/atmel_pio.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/i2c.h /optee_os/core/include/drivers/pinctrl.h /optee_os/core/include/drivers/rstctrl.h dt_driver.h /optee_os/core/kernel/dt_driver.c /optee_os/core/pta/tests/dt_driver_test.c
4d028847	18-Apr-2023	Imre Kis <imre.kis@arm.com>	core: spmc: handle non-secure interrupts Add FFA_INTERRUPT and FFA_RUN support for signaling non-secure interrupts and for resuming to the secure world. If a secure partition is preempted by a non-s core: spmc: handle non-secure interrupts Add FFA_INTERRUPT and FFA_RUN support for signaling non-secure interrupts and for resuming to the secure world. If a secure partition is preempted by a non-secure interrupt OP-TEE saves the SP's state and sends an FFA_INTERRUPT to the normal world. After handling the interrupt the normal world should send an FFA_RUN to OP-TEE so it can continue running the SP. If OP-TEE is the active FF-A endpoint (i.e. it is running TAs) the non-secure interrupts are signaled by the existing OPTEE_FFA_YIELDING_CALL_RETURN_INTERRUPT message instead of FFA_INTERRUPT. Signed-off-by: Imre Kis <imre.kis@arm.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/spmc_sp_handler.h /optee_os/core/arch/arm/include/kernel/thread_spmc.h /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/thread_spmc_a64.S /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_rng.c /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/pinctrl.h /optee_os/core/include/drivers/stm32_gpio.h thread.h /optee_os/lib/libutee/arch/riscv/utee_syscalls_rv.S
a65dd3a6	02-Feb-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: spmc: support virtualization with SPMC at S-EL1 Adds support for virtualization with OP-TEE as SPMC at S-EL1. This if the FF-A counterpart of SMC based ABI with virtualization. Reviewed-by: B core: spmc: support virtualization with SPMC at S-EL1 Adds support for virtualization with OP-TEE as SPMC at S-EL1. This if the FF-A counterpart of SMC based ABI with virtualization. Reviewed-by: Balint Dobszay <balint.dobszay@arm.com> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/mm/mobj_ffa.c virtualization.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/include/mm/mobj.h /optee_os/core/mm/core_mmu.c
79321a89	02-Feb-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: add virt_get_current_guest_id() Adds the helper function virt_get_current_guest_id(). Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander core: add virt_get_current_guest_id() Adds the helper function virt_get_current_guest_id(). Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/kernel/spmc_sp_handler.h /optee_os/core/arch/arm/include/kernel/thread_spmc.h /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/arch/riscv/riscv.mk virtualization.h /optee_os/core/kernel/sub.mk /optee_os/core/pta/tests/dt_driver_test.c /optee_os/core/pta/tests/sub.mk /optee_os/ta/pkcs11/src/handle.c /optee_os/ta/pkcs11/src/handle.h /optee_os/ta/pkcs11/src/object.c /optee_os/ta/pkcs11/src/pkcs11_token.c /optee_os/ta/pkcs11/src/pkcs11_token.h
01980f3f	16-May-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: interrupt: rename itr_init() Renames itr_init() to interrupt_main_init() as a later change will modify interrupt chip API functions using interrupt_ as prefix. Reviewed-by: Jens Wiklander <je core: interrupt: rename itr_init() Renames itr_init() to interrupt_main_init() as a later change will modify interrupt chip API functions using interrupt_ as prefix. Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/hfic.c interrupt.h /optee_os/core/kernel/interrupt.c
358bf47c	16-May-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: interrupt: rename itr_core_handler() Renames itr_core_handler() to interrupt_main_handler() as a later change will modify interrupt chip API functions using interrupt_ as prefix. Reviewed-by: core: interrupt: rename itr_core_handler() Renames itr_core_handler() to interrupt_main_handler() as a later change will modify interrupt chip API functions using interrupt_ as prefix. Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/MAINTAINERS /optee_os/core/arch/arm/dts/sama5d2.dtsi /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_a32.S /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/kernel/thread_optee_smc_a32.S /optee_os/core/arch/arm/kernel/thread_optee_smc_a64.S /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/plat-aspeed/platform_ast2600.c /optee_os/core/arch/arm/plat-bcm/main.c /optee_os/core/arch/arm/plat-corstone1000/main.c /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-k3/main.c /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-marvell/main.c /optee_os/core/arch/arm/plat-mediatek/main.c /optee_os/core/arch/arm/plat-rcar/main.c /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rzn1/main.c /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sam/main.c /optee_os/core/arch/arm/plat-sprd/main.c /optee_os/core/arch/arm/plat-stm/main.c /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-sunxi/main.c /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-ti/main.c /optee_os/core/arch/arm/plat-totalcompute/main.c /optee_os/core/arch/arm/plat-uniphier/main.c /optee_os/core/arch/arm/plat-versal/main.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-zynq7k/main.c /optee_os/core/arch/arm/plat-zynqmp/main.c /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/hfic.c /optee_os/core/drivers/pinctrl/atmel_pio.c /optee_os/core/drivers/pinctrl/pinctrl.c /optee_os/core/drivers/pinctrl/sub.mk /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/atmel_saic.h /optee_os/core/include/drivers/gic.h /optee_os/core/include/drivers/hfic.h /optee_os/core/include/drivers/pinctrl.h interrupt.h /optee_os/core/kernel/interrupt.c /optee_os/mk/config.mk
b5aff6de	02-Mar-2023	Clément Léger <clement.leger@bootlin.com>	core: dt_driver: add support for DT_DRIVER_PINCTRL In order to handle pinctrl the same way that other driver are handled by DT driver support, modify node parsing to refer to the parent node in case core: dt_driver: add support for DT_DRIVER_PINCTRL In order to handle pinctrl the same way that other driver are handled by DT driver support, modify node parsing to refer to the parent node in case we are handling a pinctrl request. Signed-off-by: Clément Léger <clement.leger@bootlin.com> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Thomas Perrot <thomas.perrot@bootlin.com> show more ... dt_driver.h /optee_os/core/kernel/dt_driver.c /optee_os/lib/libutils/ext/include/compiler.h /optee_os/lib/libutils/isoc/arch/arm/arm32_aeabi_divmod.c /optee_os/mk/compile.mk /optee_os/mk/config.mk
d679f4dd	10-May-2023	Thomas Perrot <thomas.perrot@bootlin.com>	core: dt_driver: fix a typo Replace "controlle" with "controller". Signed-off-by: Thomas Perrot <thomas.perrot@bootlin.com> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> /optee_os/core/arch/arm/dts/dt_driver_test.dtsi /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/drivers/atmel_piobu.c dt_driver.h /optee_os/core/kernel/dt_driver_test.c /optee_os/mk/config.mk
4fc179b6	11-May-2023	Thomas Perrot <thomas.perrot@bootlin.com>	drivers: gpio: add device-tree based gpio controller framework Build a small gpio framework based on the device-tree infrastructure and on top of the existing gpio.h content. This framework allows t drivers: gpio: add device-tree based gpio controller framework Build a small gpio framework based on the device-tree infrastructure and on top of the existing gpio.h content. This framework allows to register gpio controllers and to retrieve gpio struct based on a "<name>-gpios" properties. Signed-off-by: Clément Léger <clement.leger@bootlin.com> Signed-off-by: Thomas Perrot <thomas.perrot@bootlin.com> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/.clang-format /optee_os/core/arch/arm/plat-rzn1/platform_config.h /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sam/nsec-service/sm_platform_handler.c /optee_os/core/arch/arm/plat-sam/nsec-service/smc_ids.h /optee_os/core/arch/arm/plat-sam/scmi_server.c /optee_os/core/arch/arm/plat-sam/sub.mk /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/clk/sam/at91_clk.h /optee_os/core/drivers/clk/sam/at91_pmc.c /optee_os/core/drivers/clk/sam/at91_sckc.c /optee_os/core/drivers/clk/sam/sama5d2_clk.c /optee_os/core/drivers/gpio/gpio.c /optee_os/core/drivers/gpio/sub.mk /optee_os/core/drivers/ls_gpio.c /optee_os/core/drivers/scmi-msg/clock_generic.c /optee_os/core/drivers/scmi-msg/sub.mk /optee_os/core/drivers/sub.mk /optee_os/core/drivers/versal_gpio.c /optee_os/core/include/drivers/bcm_gpio.h /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/ls_gpio.h /optee_os/core/include/drivers/pl022_spi.h /optee_os/core/include/drivers/pl061_gpio.h /optee_os/core/include/drivers/scmi-msg.h /optee_os/core/include/drivers/versal_gpio.h /optee_os/core/include/dt-bindings/clock/at91.h dt_driver.h /optee_os/core/kernel/dt_driver.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/mk/cc-option.mk /optee_os/mk/config.mk
69e63e33	15-May-2023	Alvin Chang <alvinga@andestech.com>	Add missing conditional compilation for RISC-V RV64 also uses kern_sp. The elf.h is also used by RV32 and RV64. Signed-off-by: Alvin Chang <alvinga@andestech.com> Acked-by: Jerome Forissier <jerome Add missing conditional compilation for RISC-V RV64 also uses kern_sp. The elf.h is also used by RV32 and RV64. Signed-off-by: Alvin Chang <alvinga@andestech.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/link.mk thread_private.h /optee_os/core/mm/core_mmu.c /optee_os/lib/libutee/include/elf.h
e1602654	11-Apr-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: ffa: parse boot info With CFG_CORE_SEL2_SPMC=y OP-TEE is executed as an SP at S-EL1. The manifest describing the OP-TEE SP is passed as a boot argument. The manifest contains among other thin core: ffa: parse boot info With CFG_CORE_SEL2_SPMC=y OP-TEE is executed as an SP at S-EL1. The manifest describing the OP-TEE SP is passed as a boot argument. The manifest contains among other things the two properties "load-address" and "mem-size". These cover the secure memory allocated for OP-TEE to cover core and TA memory. The retrieved memory range is saved with a call to core_mmu_set_secure_memory() to be used when initializing MMU and other memory configuration. Acked-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/link_dummies_init.c boot.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/mm/core_mmu.c
4e45454a	11-Apr-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: add dt_getprop_as_number() Adds dt_getprop_as_number() to read a property and parse it as a number returned as a uint64_t. The size of the property determines if it's read as an unsigned 32-bi core: add dt_getprop_as_number() Adds dt_getprop_as_number() to read a property and parse it as a number returned as a uint64_t. The size of the property determines if it's read as an unsigned 32-bit or 64-bit integer. Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/mm/generic_ram_layout.h /optee_os/core/arch/arm/include/sm/optee_smc.h /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/riscv/include/encoding.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/entry.S dt.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/dt.c /optee_os/core/mm/core_mmu.c /optee_os/lib/libutils/ext/include/bitstring.h /optee_os/mk/config.mk
946f37ee	04-Apr-2022	Etienne Carriere <etienne.carriere@linaro.org>	driver: tpm2: remove TPM2 driver Remove TPM2 driver from OP-TEE core. OP-TEE will instead rely on a remote REE TPM2 driver allowing REE OS to embed TPM2 software stack and leverage TPM2 features. A driver: tpm2: remove TPM2 driver Remove TPM2 driver from OP-TEE core. OP-TEE will instead rely on a remote REE TPM2 driver allowing REE OS to embed TPM2 software stack and leverage TPM2 features. Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-ls/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-vexpress/platform_config.h /optee_os/core/arch/riscv/mm/tlb_helpers_rv.S /optee_os/core/crypto.mk /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/caam/sub.mk /optee_os/core/drivers/crypto/se050/adaptors/apis/sss.c /optee_os/core/drivers/sub.mk /optee_os/core/kernel/sub.mk /optee_os/core/kernel/thread.c /optee_os/mk/config.mk
c11218eb	28-Apr-2023	Clement Faure <clement.faure@nxp.com>	pta: stats: fix compilation incompatible pointer warning To reproduce the issue: $ make PLATFORM=imx-mx8mmevk CFG_WITH_STATS=y CFG_TA_STATS=y core/pta/stats.c: In function ‘get_user_ta_stats’: core pta: stats: fix compilation incompatible pointer warning To reproduce the issue: $ make PLATFORM=imx-mx8mmevk CFG_WITH_STATS=y CFG_TA_STATS=y core/pta/stats.c: In function ‘get_user_ta_stats’: core/pta/stats.c:169:37: warning: passing argument 2 of ‘tee_ta_instance_stats’ from incompatible pointer type [-Wincompatible-pointer-types] 169 \| &p[0].memref.size); \| ^~~~~~~~~~~~~~~~~ \| \| \| size_t * {aka long unsigned int } In file included from core/include/kernel/pseudo_ta.h:10, from core/pta/stats.c:8: core/include/kernel/tee_ta_manager.h:171:56: note: expected ‘uint32_t ’ {aka ‘unsigned int ’} but argument is of type ‘size_t ’ {aka ‘long unsigned int ’} 171 \| TEE_Result tee_ta_instance_stats(void buff, uint32_t *buff_size); \| ~~~~~~~~~~^~~~~~~~~ core/pta/stats.c: At top level: cc1: note: unrecognized command-line option ‘-Wno-c2x-extensions’ may have been intended to silence earlier diagnostics Fixes: 7509620b8b95 ("GP131: Update TEE_Param") Signed-off-by: Clement Faure <clement.faure@nxp.com> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/config/imx6qdlsolo.h /optee_os/core/arch/arm/plat-imx/config/imx6sl.h /optee_os/core/arch/arm/plat-imx/config/imx6sll.h /optee_os/core/arch/arm/plat-imx/config/imx6sx.h /optee_os/core/arch/arm/plat-imx/platform_config.h /optee_os/core/arch/arm/plat-imx/sm_platform_handler.c /optee_os/core/arch/arm/plat-imx/sub.mk /optee_os/core/arch/arm/plat-imx/tzc380.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/drivers/cbmem_console.c /optee_os/core/drivers/imx_caam.c /optee_os/core/drivers/imx_csu.c /optee_os/core/drivers/imx_scu.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/cbmem_console.h tee_ta_manager.h /optee_os/core/kernel/console.c /optee_os/core/kernel/tee_ta_manager.c
9e3c57c8	28-Feb-2023	Etienne Carriere <etienne.carriere@linaro.org>	core: dt_driver: move related content from dt.h to dt_driver.h Moves so-called dt_driver related declarations and definitions from dt.h to dt_drivers.h. Incidentally adds an inline description to en core: dt_driver: move related content from dt.h to dt_driver.h Moves so-called dt_driver related declarations and definitions from dt.h to dt_drivers.h. Incidentally adds an inline description to enum dt_driver_type. This change clarifies when a source file shall include dt.h and/or dt_driver.h. This change updates driver source files to include none, one or both of these header files where applicable. Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/plat-sam/sam_sfr.c /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/atmel_rstc.c /optee_os/core/drivers/atmel_rtc.c /optee_os/core/drivers/atmel_shdwc.c /optee_os/core/drivers/atmel_wdt.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/crypto/caam/acipher/caam_ecc.c /optee_os/core/drivers/crypto/crypto_api/acipher/ecc.c /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt_acipher.h /optee_os/core/drivers/crypto/se050/core/ecc.c /optee_os/core/drivers/crypto/stm32/authenc.c /optee_os/core/drivers/crypto/stm32/cipher.c /optee_os/core/drivers/crypto/stm32/stm32_cryp.c /optee_os/core/drivers/crypto/versal/ecc.c /optee_os/core/drivers/i2c/atmel_i2c.c /optee_os/core/drivers/i2c/i2c.c /optee_os/core/drivers/imx_lpuart.c /optee_os/core/drivers/imx_uart.c /optee_os/core/drivers/pl011.c /optee_os/core/drivers/rstctrl/rstctrl.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/serial8250_uart.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/i2c.h /optee_os/core/include/drivers/rstctrl.h dt.h dt_driver.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/console.c /optee_os/core/kernel/dt.c /optee_os/core/kernel/dt_driver_test.c /optee_os/core/mm/core_mmu.c /optee_os/ta/pkcs11/include/pkcs11_ta.h /optee_os/ta/pkcs11/src/pkcs11_token.c
439d2a89	11-Apr-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: pass secure memory parameter to virt_init_memory() Pass the physical secure memory range as a parameter from secure_only[]. This avoids using hard coded defines in virt_init_memory(). CFG_NS_ core: pass secure memory parameter to virt_init_memory() Pass the physical secure memory range as a parameter from secure_only[]. This avoids using hard coded defines in virt_init_memory(). CFG_NS_VIRTUALIZATION=y depends on secure_only[] to have all memory as consecutive memory ranges, but that's unchanged behaviour from before since it was expected that the entire range from TEE_RAM_START to TA_RAM_START + TA_RAM_SIZE is usable memory. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/thread_optee_smc_a64.S /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/mm/tee_pager.c /optee_os/core/arch/arm/plat-hisilicon/psci.c /optee_os/core/arch/arm/plat-imx/pm/psci.c /optee_os/core/arch/arm/plat-rcar/romapi_call.S /optee_os/core/arch/arm/plat-sunxi/psci.c /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/kernel/kern.ld.S virtualization.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/mm/core_mmu.c /optee_os/core/mm/fobj.c
c24c1950	11-Apr-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: linker.h: remove _SZ_UNSAFE defines Removes the now unused _SZ_UNSAFE defines. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro. core: linker.h: remove _SZ_UNSAFE defines Removes the now unused _SZ_UNSAFE defines. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... linker.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/mm/core_mmu.c
1 2 3 4 567 8 9 10 >>...18