tee - OpenGrok history log for /optee_os/core/tee

Revision	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
45279642	19-Oct-2023	Vincent Mailhol <mailhol.vincent@wanadoo.fr>	core: tee_svc.c: allow to pass non-NULL memref of size 0 Allow TAs to pass non-NULL memref of size zero to other TAs by changing the non-NULL pointer into a NULL one in such a case. GP TEE Internal core: tee_svc.c: allow to pass non-NULL memref of size 0 Allow TAs to pass non-NULL memref of size zero to other TAs by changing the non-NULL pointer into a NULL one in such a case. GP TEE Internal Core API does not forbid such memref parameter [1] whereas the previous implementation generated a TEE_ERROR_BAD_PARAMETERS error code when converting such memref buffer pointer into a physical memory address. This change is specifically needed to allow a TA to forward a REE client memref for which GP TEE Client API explicitly allows such non-NULL address zero sized memref [2]. It also makes the TA implementation more flexible when dealing with its own memref. [1] TEE Internal Core API Specification – Public Release v1.3.1, §4.9.4 "Operation Parameters in the Internal Client API" Table 4-15: "Interpretation of params[i] on Entry to Internal Client API" [2] TEE Client API Specification v1.0, §4.5.4 TEEC_RegisterSharedMemory, paragraph "Implementers' Notes" Signed-off-by: Vincent Mailhol <mailhol.vincent@wanadoo.fr> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/dts/stm32mp15xx-dkx.dtsi /optee_os/core/arch/arm/include/mm/generic_ram_layout.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/drivers/regulator/regulator_gpio.c /optee_os/core/drivers/regulator/sub.mk /optee_os/core/include/kernel/dt.h /optee_os/core/kernel/dt.c /optee_os/core/kernel/tee_ta_manager.c tee_svc.c /optee_os/mk/config.mk
9ea709a7	14-Nov-2023	Etienne Carriere <etienne.carriere@foss.st.com>	tree wide: CFG_INSECURE deprecates CFG_WARN_INSECURE Replaces configuration switch CFG_WARN_INSECURE with CFG_INSECURE The new name is better because the switch not only warns but also change the OP tree wide: CFG_INSECURE deprecates CFG_WARN_INSECURE Replaces configuration switch CFG_WARN_INSECURE with CFG_INSECURE The new name is better because the switch not only warns but also change the OP-TEE core behavior as, for example, allowing absence of secure storage rollback protection. Suggested-by: Jérôme Forissier <jerome@forissier.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/.gitignore /optee_os/CHANGELOG.md /optee_os/MAINTAINERS /optee_os/Makefile /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/dts/stm32mp25-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp253.dtsi /optee_os/core/arch/arm/dts/stm32mp255.dtsi /optee_os/core/arch/arm/dts/stm32mp257.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1.dts /optee_os/core/arch/arm/dts/stm32mp25xc.dtsi /optee_os/core/arch/arm/dts/stm32mp25xf.dtsi /optee_os/core/arch/arm/dts/stm32mp25xxai-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp25xxak-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp25xxal-pinctrl.dtsi /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm32.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/crypto/ghash-ce-core.h /optee_os/core/arch/arm/include/kernel/misc_arch.h /optee_os/core/arch/arm/include/kernel/tee_l2cc_mutex.h /optee_os/core/arch/arm/include/kernel/tlb_helpers.h /optee_os/core/arch/arm/include/kernel/tz_proc_def.h /optee_os/core/arch/arm/include/kernel/tz_ssvce_def.h /optee_os/core/arch/arm/include/kernel/tz_ssvce_pl310.h /optee_os/core/arch/arm/include/kernel/vfp.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/include/scmi/scmi_server.h /optee_os/core/arch/arm/include/sm/optee_smc.h /optee_os/core/arch/arm/include/sm/pm.h /optee_os/core/arch/arm/include/sm/psci.h /optee_os/core/arch/arm/include/sm/sm.h /optee_os/core/arch/arm/include/sm/std_smc.h /optee_os/core/arch/arm/include/sm/teesmc_opteed.h /optee_os/core/arch/arm/include/sm/teesmc_opteed_macros.h /optee_os/core/arch/arm/include/sm/watchdog_smc.h /optee_os/core/arch/arm/include/tee/entry_fast.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/link_dummies_init.c /optee_os/core/arch/arm/kernel/link_dummies_paged.c /optee_os/core/arch/arm/kernel/stmm_sp.c /optee_os/core/arch/arm/kernel/sub.mk /optee_os/core/arch/arm/kernel/thread_optee_smc.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/plat-d06/conf.mk /optee_os/core/arch/arm/plat-d06/platform_config.h /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.h /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/plat_tzc400.c /optee_os/core/arch/arm/plat-stm32mp1/pm/psci.c /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/main.c /optee_os/core/arch/arm/plat-stm32mp2/platform_config.h /optee_os/core/arch/arm/plat-stm32mp2/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp2/sub.mk /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/riscv/include/kernel/misc_arch.h /optee_os/core/arch/riscv/include/kernel/tee_l2cc_mutex.h /optee_os/core/arch/riscv/include/kernel/thread_arch.h /optee_os/core/arch/riscv/include/kernel/tlb_helpers.h /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/include/sbi.h /optee_os/core/arch/riscv/include/tee/entry_fast.h /optee_os/core/arch/riscv/include/tee/optee_abi.h /optee_os/core/arch/riscv/include/tee/teeabi_opteed.h /optee_os/core/arch/riscv/include/tee/teeabi_opteed_macros.h /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/plat-spike/conf.mk /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/atmel_wdt.c /optee_os/core/drivers/crypto/caam/caam_jr.c /optee_os/core/drivers/crypto/caam/caam_sm.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/gic.c /optee_os/core/drivers/hisi_trng.c /optee_os/core/drivers/plic.c /optee_os/core/drivers/regulator/stm32_vrefbuf.c /optee_os/core/drivers/regulator/sub.mk /optee_os/core/drivers/sp805_wdt.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/drivers/stpmic1.c /optee_os/core/drivers/sub.mk /optee_os/core/include/bench.h /optee_os/core/include/console.h /optee_os/core/include/crypto/crypto_se.h /optee_os/core/include/crypto/sm2-kdf.h /optee_os/core/include/drivers/amlogic_uart.h /optee_os/core/include/drivers/atmel_uart.h /optee_os/core/include/drivers/bcm/bnxt.h /optee_os/core/include/drivers/bcm_gpio.h /optee_os/core/include/drivers/bcm_hwrng.h /optee_os/core/include/drivers/bcm_sotp.h /optee_os/core/include/drivers/caam_extension.h /optee_os/core/include/drivers/cbmem_console.h /optee_os/core/include/drivers/cdns_uart.h /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/hi16xx_uart.h /optee_os/core/include/drivers/imx/dcp.h /optee_os/core/include/drivers/imx_ocotp.h /optee_os/core/include/drivers/imx_uart.h /optee_os/core/include/drivers/imx_wdog.h /optee_os/core/include/drivers/lpc_uart.h /optee_os/core/include/drivers/mvebu_uart.h /optee_os/core/include/drivers/ns16550.h /optee_os/core/include/drivers/pl011.h /optee_os/core/include/drivers/pl022_spi.h /optee_os/core/include/drivers/pl061_gpio.h /optee_os/core/include/drivers/plic.h /optee_os/core/include/drivers/regulator.h /optee_os/core/include/drivers/rtc.h /optee_os/core/include/drivers/sam/at91_ddr.h /optee_os/core/include/drivers/scif.h /optee_os/core/include/drivers/scmi-msg.h /optee_os/core/include/drivers/scmi.h /optee_os/core/include/drivers/serial8250_uart.h /optee_os/core/include/drivers/sp805_wdt.h /optee_os/core/include/drivers/sprd_uart.h /optee_os/core/include/drivers/stih_asc.h /optee_os/core/include/drivers/stm32_bsec.h /optee_os/core/include/drivers/stm32_etzpc.h /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/drivers/stm32_i2c.h /optee_os/core/include/drivers/stm32_iwdg.h /optee_os/core/include/drivers/stm32_uart.h /optee_os/core/include/drivers/stm32_vrefbuf.h /optee_os/core/include/drivers/stm32mp_dt_bindings.h /optee_os/core/include/drivers/stpmic1.h /optee_os/core/include/drivers/wdt.h /optee_os/core/include/gen-asm-defines.h /optee_os/core/include/initcall.h /optee_os/core/include/io.h /optee_os/core/include/keep.h /optee_os/core/include/kernel/abort.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/chip_services.h /optee_os/core/include/kernel/dt.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/early_ta.h /optee_os/core/include/kernel/embedded_ts.h /optee_os/core/include/kernel/handle.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/ldelf_loader.h /optee_os/core/include/kernel/ldelf_syscalls.h /optee_os/core/include/kernel/misc.h /optee_os/core/include/kernel/msg_param.h /optee_os/core/include/kernel/mutex.h /optee_os/core/include/kernel/panic.h /optee_os/core/include/kernel/pseudo_ta.h /optee_os/core/include/kernel/rpc_io_i2c.h /optee_os/core/include/kernel/spinlock.h /optee_os/core/include/kernel/tee_common.h /optee_os/core/include/kernel/tee_common_otp.h /optee_os/core/include/kernel/tee_misc.h /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/include/kernel/tee_time.h /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/time_source.h /optee_os/core/include/kernel/timer.h /optee_os/core/include/kernel/trace_ta.h /optee_os/core/include/kernel/transfer_list.h /optee_os/core/include/kernel/unwind.h /optee_os/core/include/kernel/user_ta.h /optee_os/core/include/kernel/virtualization.h /optee_os/core/include/kernel/wait_queue.h /optee_os/core/include/mm/core_memprot.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/include/mm/mobj.h /optee_os/core/include/mm/pgt_cache.h /optee_os/core/include/mm/tee_mm.h /optee_os/core/include/mm/tee_mmu_types.h /optee_os/core/include/mm/tee_pager.h /optee_os/core/include/mm/vm.h /optee_os/core/include/optee_msg.h /optee_os/core/include/signed_hdr.h /optee_os/core/include/ta_pub_key.h /optee_os/core/include/tee/cache.h /optee_os/core/include/tee/entry_std.h /optee_os/core/include/tee/svc_cache.h /optee_os/core/include/tee/tee_cryp_concat_kdf.h /optee_os/core/include/tee/tee_cryp_hkdf.h /optee_os/core/include/tee/tee_cryp_pbkdf2.h /optee_os/core/include/tee/tee_cryp_utl.h /optee_os/core/include/tee/tee_fs.h /optee_os/core/include/tee/tee_fs_key_manager.h /optee_os/core/include/tee/tee_fs_rpc.h /optee_os/core/include/tee/tee_obj.h /optee_os/core/include/tee/tee_pobj.h /optee_os/core/include/tee/tee_supp_plugin_rpc.h /optee_os/core/include/tee/tee_svc.h /optee_os/core/include/tee/tee_svc_cryp.h /optee_os/core/include/tee/tee_svc_storage.h /optee_os/core/include/tee/tee_ta_enc_manager.h /optee_os/core/kernel/dt.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/notif.c /optee_os/core/kernel/panic.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/trace_ext.c /optee_os/core/kernel/transfer_list.c /optee_os/core/mm/core_mmu.c /optee_os/core/mm/mobj.c /optee_os/core/mm/vm.c /optee_os/core/pta/attestation.c tee_ree_fs.c /optee_os/lib/libutee/include/tee_arith_internal.h /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutee/tee_api_operations.c /optee_os/lib/libutils/ext/include/trace.h /optee_os/lib/libutils/ext/trace.c /optee_os/mk/aosp_optee.mk /optee_os/mk/config.mk /optee_os/scripts/gen_compile_commands.py /optee_os/scripts/symbolize.py /optee_os/ta/pkcs11/src/pkcs11_token.c /optee_os/ta/ta.mk
1e9c1b80	05-May-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: remove temp memory allocation for TA invoke Remove the temporary memory allocation used if a TA invokes another TA with a private memory buffer. This has not been in used with TAs compiled sin core: remove temp memory allocation for TA invoke Remove the temporary memory allocation used if a TA invokes another TA with a private memory buffer. This has not been in used with TAs compiled since commit ef305e54eac8 ("libutee: allocate temp secmem for invoke") or OP-TEE version 3.6.0. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/Makefile /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/kernel/thread_arch.h /optee_os/core/arch/arm/include/optee_ffa.h /optee_os/core/arch/arm/include/sm/watchdog_smc.h /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/thread_spmc_a64.S /optee_os/core/arch/arm/mm/mobj_ffa.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/imx-regs.h /optee_os/core/arch/arm/plat-imx/imx.h /optee_os/core/arch/arm/plat-imx/registers/imx6.h /optee_os/core/arch/arm/plat-imx/registers/imx7.h /optee_os/core/arch/arm/plat-imx/sub.mk /optee_os/core/arch/arm/plat-k3/drivers/sa2ul.c /optee_os/core/arch/arm/plat-ls/conf.mk /optee_os/core/arch/arm/plat-mediatek/conf.mk /optee_os/core/arch/arm/plat-mediatek/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.h /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/tee/entry_fast.c /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/include/riscv_macros.S /optee_os/core/arch/riscv/include/sbi.h /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_optee_abi_rv.S /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/arch/riscv/plat-virt/platform_config.h /optee_os/core/crypto.mk /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/caam/hal/sub.mk /optee_os/core/drivers/crypto/stm32/cipher.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/hfic.c /optee_os/core/drivers/imx/mu/sub.mk /optee_os/core/drivers/imx_csu.c /optee_os/core/drivers/imx_snvs.c /optee_os/core/drivers/ns16550.c /optee_os/core/drivers/plic.c /optee_os/core/drivers/pm/imx/gpcv2.c /optee_os/core/drivers/pm/imx/local.h /optee_os/core/drivers/pm/imx/psci.c /optee_os/core/drivers/pm/imx/src.c /optee_os/core/drivers/pm/imx/sub.mk /optee_os/core/drivers/pm/sub.mk /optee_os/core/drivers/regulator/regulator.c /optee_os/core/drivers/regulator/regulator_dt.c /optee_os/core/drivers/regulator/regulator_fixed.c /optee_os/core/drivers/regulator/sub.mk /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_i2c.c /optee_os/core/drivers/sub.mk /optee_os/core/drivers/wdt/watchdog_sm.c /optee_os/core/include/drivers/imx_snvs.h /optee_os/core/include/drivers/ns16550.h /optee_os/core/include/drivers/plic.h /optee_os/core/include/drivers/regulator.h /optee_os/core/include/drivers/stm32_i2c.h /optee_os/core/include/io.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/include/kernel/user_ta.h /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/pseudo_ta.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/user_ta.c /optee_os/core/lib/libtomcrypt/mpi_desc.c /optee_os/core/lib/libtomcrypt/rsa.c /optee_os/core/lib/libtomcrypt/src/hashes/sha2/sub.mk /optee_os/core/lib/libtomcrypt/src/hashes/sub.mk /optee_os/core/lib/libtomcrypt/sub.mk /optee_os/core/lib/libtomcrypt/tomcrypt.c /optee_os/core/mm/core_mmu.c /optee_os/core/pta/imx/dek_blob.c /optee_os/core/pta/stats.c tee_svc.c /optee_os/ldelf/ta_elf.c /optee_os/lib/libmbedtls/core/aes.c /optee_os/lib/libmbedtls/core/dh.c /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libmbedtls/core/hash.c /optee_os/lib/libmbedtls/core/hmac.c /optee_os/lib/libmbedtls/core/mbed_helpers.h /optee_os/lib/libmbedtls/core/rsa.c /optee_os/lib/libmbedtls/core/sub.mk /optee_os/lib/libmbedtls/include/mbedtls_config_kernel.h /optee_os/lib/libmbedtls/mbedtls/.gitattributes /optee_os/lib/libmbedtls/mbedtls/.uncrustify.cfg /optee_os/lib/libmbedtls/mbedtls/CONTRIBUTING.md /optee_os/lib/libmbedtls/mbedtls/ChangeLog /optee_os/lib/libmbedtls/mbedtls/README.md /optee_os/lib/libmbedtls/mbedtls/SECURITY.md /optee_os/lib/libmbedtls/mbedtls/SUPPORT.md /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/aes.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/aria.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/asn1.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/asn1write.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/base64.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/bignum.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/build_info.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/camellia.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ccm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/chacha20.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/chachapoly.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/check_config.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cipher.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cmac.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/compat-2.x.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/config_psa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/constant_time.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ctr_drbg.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/debug.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/des.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/dhm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecdh.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecdsa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecjpake.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecp.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/entropy.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/error.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/gcm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/hkdf.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/hmac_drbg.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/legacy_or_psa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/lms.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/mbedtls_config.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md5.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/memory_buffer_alloc.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/net_sockets.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/nist_kw.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/oid.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pem.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pk.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs12.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs5.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs7.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform_time.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform_util.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/poly1305.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/private_access.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/psa_util.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ripemd160.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/rsa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha1.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha256.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha512.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_cache.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_ciphersuites.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_cookie.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_ticket.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/threading.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/timing.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/version.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_crl.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_crt.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_csr.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_builtin_composites.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_builtin_primitives.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_compat.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_config.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_driver_common.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_driver_contexts_composites.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_driver_contexts_primitives.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_extra.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_platform.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_se_driver.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_sizes.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_struct.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_types.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_values.h /optee_os/lib/libmbedtls/mbedtls/library/aes.c /optee_os/lib/libmbedtls/mbedtls/library/aesce.c /optee_os/lib/libmbedtls/mbedtls/library/aesce.h /optee_os/lib/libmbedtls/mbedtls/library/aesni.c /optee_os/lib/libmbedtls/mbedtls/library/aesni.h /optee_os/lib/libmbedtls/mbedtls/library/alignment.h /optee_os/lib/libmbedtls/mbedtls/library/aria.c /optee_os/lib/libmbedtls/mbedtls/library/asn1parse.c /optee_os/lib/libmbedtls/mbedtls/library/asn1write.c /optee_os/lib/libmbedtls/mbedtls/library/base64.c /optee_os/lib/libmbedtls/mbedtls/library/bignum.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_core.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_core.h /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod.h /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod_raw.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod_raw.h /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod_raw_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/bn_mul.h /optee_os/lib/libmbedtls/mbedtls/library/camellia.c /optee_os/lib/libmbedtls/mbedtls/library/ccm.c /optee_os/lib/libmbedtls/mbedtls/library/chacha20.c /optee_os/lib/libmbedtls/mbedtls/library/chachapoly.c /optee_os/lib/libmbedtls/mbedtls/library/check_crypto_config.h /optee_os/lib/libmbedtls/mbedtls/library/cipher.c /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.h /optee_os/lib/libmbedtls/mbedtls/library/cmac.c /optee_os/lib/libmbedtls/mbedtls/library/common.h /optee_os/lib/libmbedtls/mbedtls/library/constant_time.c /optee_os/lib/libmbedtls/mbedtls/library/constant_time_internal.h /optee_os/lib/libmbedtls/mbedtls/library/constant_time_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/ctr_drbg.c /optee_os/lib/libmbedtls/mbedtls/library/debug.c /optee_os/lib/libmbedtls/mbedtls/library/des.c /optee_os/lib/libmbedtls/mbedtls/library/dhm.c /optee_os/lib/libmbedtls/mbedtls/library/ecdh.c /optee_os/lib/libmbedtls/mbedtls/library/ecdsa.c /optee_os/lib/libmbedtls/mbedtls/library/ecjpake.c /optee_os/lib/libmbedtls/mbedtls/library/ecp.c /optee_os/lib/libmbedtls/mbedtls/library/ecp_curves.c /optee_os/lib/libmbedtls/mbedtls/library/ecp_internal_alt.h /optee_os/lib/libmbedtls/mbedtls/library/ecp_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/entropy.c /optee_os/lib/libmbedtls/mbedtls/library/entropy_poll.c /optee_os/lib/libmbedtls/mbedtls/library/entropy_poll.h /optee_os/lib/libmbedtls/mbedtls/library/error.c /optee_os/lib/libmbedtls/mbedtls/library/gcm.c /optee_os/lib/libmbedtls/mbedtls/library/hash_info.c /optee_os/lib/libmbedtls/mbedtls/library/hash_info.h /optee_os/lib/libmbedtls/mbedtls/library/hkdf.c /optee_os/lib/libmbedtls/mbedtls/library/hmac_drbg.c /optee_os/lib/libmbedtls/mbedtls/library/lmots.c /optee_os/lib/libmbedtls/mbedtls/library/lmots.h /optee_os/lib/libmbedtls/mbedtls/library/lms.c /optee_os/lib/libmbedtls/mbedtls/library/md.c /optee_os/lib/libmbedtls/mbedtls/library/md5.c /optee_os/lib/libmbedtls/mbedtls/library/md_wrap.h /optee_os/lib/libmbedtls/mbedtls/library/memory_buffer_alloc.c /optee_os/lib/libmbedtls/mbedtls/library/net_sockets.c /optee_os/lib/libmbedtls/mbedtls/library/nist_kw.c /optee_os/lib/libmbedtls/mbedtls/library/oid.c /optee_os/lib/libmbedtls/mbedtls/library/padlock.c /optee_os/lib/libmbedtls/mbedtls/library/padlock.h /optee_os/lib/libmbedtls/mbedtls/library/pem.c /optee_os/lib/libmbedtls/mbedtls/library/pk.c /optee_os/lib/libmbedtls/mbedtls/library/pk_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/pk_wrap.h /optee_os/lib/libmbedtls/mbedtls/library/pkcs12.c /optee_os/lib/libmbedtls/mbedtls/library/pkcs5.c /optee_os/lib/libmbedtls/mbedtls/library/pkcs7.c /optee_os/lib/libmbedtls/mbedtls/library/pkparse.c /optee_os/lib/libmbedtls/mbedtls/library/pkwrite.c /optee_os/lib/libmbedtls/mbedtls/library/pkwrite.h /optee_os/lib/libmbedtls/mbedtls/library/platform.c /optee_os/lib/libmbedtls/mbedtls/library/platform_util.c /optee_os/lib/libmbedtls/mbedtls/library/poly1305.c /optee_os/lib/libmbedtls/mbedtls/library/ripemd160.c /optee_os/lib/libmbedtls/mbedtls/library/rsa.c /optee_os/lib/libmbedtls/mbedtls/library/rsa_alt_helpers.c /optee_os/lib/libmbedtls/mbedtls/library/rsa_alt_helpers.h /optee_os/lib/libmbedtls/mbedtls/library/sha1.c /optee_os/lib/libmbedtls/mbedtls/library/sha256.c /optee_os/lib/libmbedtls/mbedtls/library/sha512.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_cache.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_ciphersuites.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_client.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_cookie.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_debug_helpers.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_debug_helpers_generated.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_misc.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_msg.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_ticket.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls12_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls12_server.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_generic.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_keys.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_keys.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_server.c /optee_os/lib/libmbedtls/mbedtls/library/threading.c /optee_os/lib/libmbedtls/mbedtls/library/timing.c /optee_os/lib/libmbedtls/mbedtls/library/version.c /optee_os/lib/libmbedtls/mbedtls/library/version_features.c /optee_os/lib/libmbedtls/mbedtls/library/x509.c /optee_os/lib/libmbedtls/mbedtls/library/x509_create.c /optee_os/lib/libmbedtls/mbedtls/library/x509_crl.c /optee_os/lib/libmbedtls/mbedtls/library/x509_crt.c /optee_os/lib/libmbedtls/mbedtls/library/x509_csr.c /optee_os/lib/libmbedtls/mbedtls/library/x509write_crt.c /optee_os/lib/libmbedtls/mbedtls/library/x509write_csr.c /optee_os/lib/libmbedtls/sub.mk /optee_os/lib/libutee/include/pta_imx_dek_blob.h /optee_os/lib/libutee/sub.mk /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutils/ext/ftrace/ftrace.c /optee_os/lib/libutils/ext/include/fault_mitigation.h /optee_os/mk/checkconf.mk /optee_os/mk/config.mk /optee_os/mk/macros.mk /optee_os/scripts/sign_rproc_fw.py /optee_os/scripts/ts_bin_to_c.py /optee_os/ta/arch/arm/ta.ld.S /optee_os/ta/link.mk /optee_os/ta/mk/ta_dev_kit.mk /optee_os/ta/pkcs11/src/pkcs11_attributes.c /optee_os/ta/ta.mk
623b9bd4	23-Aug-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: use monotonic counter for secure storage without RPMB If OP-TEE is configured without RPMB (CFG_REE_FS_INTEGRITY_RPMB=n), use the non-volatile monotonic counter interface instead to protect ag core: use monotonic counter for secure storage without RPMB If OP-TEE is configured without RPMB (CFG_REE_FS_INTEGRITY_RPMB=n), use the non-volatile monotonic counter interface instead to protect against rollback of the REE FS base secure storage. If configured without CFG_WARN_INSECURE=y, accept TEE_ERROR_NOT_IMPLEMENTED error from nv_counter_get_ree_fs() and nv_counter_incr_ree_fs_to() and warn once to make clear that the configuration isn't secure. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> Tested-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/MAINTAINERS /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/link_dummies_paged.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/plat-imx/registers/imx8m.h /optee_os/core/arch/arm/plat-k3/conf.mk /optee_os/core/arch/arm/plat-zynqmp/platform_config.h /optee_os/core/arch/riscv/include/kernel/thread_arch.h /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/include/tee/entry_fast.h /optee_os/core/arch/riscv/include/tee/optee_abi.h /optee_os/core/arch/riscv/include/tee/teeabi_opteed.h /optee_os/core/arch/riscv/include/tee/teeabi_opteed_macros.h /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_optee_abi.c /optee_os/core/arch/riscv/kernel/thread_optee_abi_rv.S /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/tee/entry_fast.c /optee_os/core/arch/riscv/tee/sub.mk /optee_os/core/drivers/crypto/caam/blob/caam_dek.c /optee_os/core/drivers/crypto/caam/blob/sub.mk /optee_os/core/drivers/crypto/caam/caam_ctrl.c /optee_os/core/drivers/crypto/caam/caam_sm.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/caam/hal/common/hal_ctrl.c /optee_os/core/drivers/crypto/caam/hal/common/hal_sm.c /optee_os/core/drivers/crypto/caam/hal/common/registers/sm_regs.h /optee_os/core/drivers/crypto/caam/hal/common/sub.mk /optee_os/core/drivers/crypto/caam/hal/imx_8m/registers/ctrl_regs.h /optee_os/core/drivers/crypto/caam/include/caam_desc_defines.h /optee_os/core/drivers/crypto/caam/include/caam_desc_helper.h /optee_os/core/drivers/crypto/caam/include/caam_hal_ctrl.h /optee_os/core/drivers/crypto/caam/include/caam_hal_sm.h /optee_os/core/drivers/crypto/caam/include/caam_sm.h /optee_os/core/drivers/crypto/caam/include/caam_trace.h /optee_os/core/drivers/crypto/caam/sub.mk /optee_os/core/drivers/crypto/stm32/stm32_saes.c /optee_os/core/drivers/gic.c /optee_os/core/include/drivers/caam_extension.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/nv_counter.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/include/tee/fs_dirfile.h /optee_os/core/include/tee/fs_htree.h /optee_os/core/kernel/nv_counter.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/tpm.c /optee_os/core/mm/core_mmu.c /optee_os/core/pta/imx/dek_blob.c /optee_os/core/pta/imx/sub.mk /optee_os/core/pta/tests/fs_htree.c fs_dirfile.c fs_htree.c tee_ree_fs.c /optee_os/lib/libutee/include/pta_imx_dek_blob.h /optee_os/lib/libutils/isoc/include/assert.h /optee_os/mk/config.mk /optee_os/ta/pkcs11/include/pkcs11_ta.h /optee_os/ta/pkcs11/src/attributes.c /optee_os/ta/pkcs11/src/object.c /optee_os/ta/pkcs11/src/pkcs11_attributes.c /optee_os/ta/pkcs11/src/pkcs11_attributes.h /optee_os/ta/pkcs11/src/pkcs11_helpers.c /optee_os/ta/pkcs11/src/processing_ec.c
aae97333	02-Aug-2023	loubaihui <loubaihui1@huawei.com>	crypto: introduce CFG_CRYPTO_HW_PBKDF2 Add a new configuration flag to support hardware implementation of PBKDF2. Signed-off-by: loubaihui <loubaihui1@huawei.com> Acked-by: Jens Wiklander <jens.wik crypto: introduce CFG_CRYPTO_HW_PBKDF2 Add a new configuration flag to support hardware implementation of PBKDF2. Signed-off-by: loubaihui <loubaihui1@huawei.com> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/drivers/clk/clk_dt.c sub.mk /optee_os/mk/config.mk
7be18e1b	06-Sep-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: simplify calls to bb_memdup_user_private() Now that bb_memdup_user_private() supports supplying zero-lenth buffers remove checks for zero-length buffer before calling bb_memdup_user_private(). core: simplify calls to bb_memdup_user_private() Now that bb_memdup_user_private() supports supplying zero-lenth buffers remove checks for zero-length buffer before calling bb_memdup_user_private(). Removes calls to memtag_strip_tag() for input buffer to bb_memdup_user_private() since that's also dealt with internally by that function. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/include/kernel/user_access.h /optee_os/core/kernel/user_access.c /optee_os/core/pta/system.c tee_svc_storage.c
c6a1b33b	06-Sep-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: simplify utee_param_to_param() with BB_MEMDUP_USER() Simplifies utee_param_to_param() by using BB_MEMDUP_USER() instead of bb_alloc() followed by copy_from_user(). Signed-off-by: Jens Wikland core: simplify utee_param_to_param() with BB_MEMDUP_USER() Simplifies utee_param_to_param() by using BB_MEMDUP_USER() instead of bb_alloc() followed by copy_from_user(). Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/arch/arm/include/arm64.h /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/include/kernel/ts_manager.h /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/user_ta.c /optee_os/core/mm/vm.c tee_svc.c /optee_os/scripts/sign_rproc_fw.py /optee_os/ta/ta.mk
f5348ecb	25-Aug-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: tee_svc_cryp.c: replace get_used_bits() Prior to this patch was get_used_bits() called in tee_svc_cryp_obj_populate_type() to check that a bignum isn't too large. While the code works it's mor core: tee_svc_cryp.c: replace get_used_bits() Prior to this patch was get_used_bits() called in tee_svc_cryp_obj_populate_type() to check that a bignum isn't too large. While the code works it's more complicated than necessary. The bignum has just been imported so the normal bignum functions can be used directly instead of copying the user space buffer again and feed it to bit_ffs(). So replace the call to get_used_bits() with a call to crypto_bignum_num_bits() on the newly imported bignum. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/kernel/ldelf_loader.c /optee_os/core/kernel/ldelf_syscalls.c /optee_os/core/kernel/scall.c /optee_os/core/kernel/user_ta.c tee_svc_cryp.c
ef44161f	25-Aug-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: update ts_store API with user space buffer Updates the read() function pointer in struct ts_store_ops to take an user space buffer in addition to the previous core buffer. Core buffers are nor core: update ts_store API with user space buffer Updates the read() function pointer in struct ts_store_ops to take an user space buffer in addition to the previous core buffer. Core buffers are normal secure memory while user space buffers should only be accessed using the user_access.h functions. The different TA storage implementations are updated accordingly. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/core/arch/arm/include/arm64_macros.S /optee_os/core/arch/arm/include/kernel/thread_private_arch.h /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/mm/sub.mk /optee_os/core/arch/arm/plat-aspeed/conf.mk /optee_os/core/arch/arm/plat-marvell/cn10k/core_pos.S /optee_os/core/arch/arm/plat-marvell/conf.mk /optee_os/core/arch/arm/plat-marvell/platform_config.h /optee_os/core/arch/arm/plat-marvell/sub.mk /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/include/kernel/user_access_arch.h /optee_os/core/arch/riscv/kernel/arch_scall.c /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/plat-spike/platform_config.h /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/arch/riscv/riscv.mk /optee_os/core/drivers/crypto/caam/utils/utils_dmaobj.c /optee_os/core/drivers/plic.c /optee_os/core/include/kernel/embedded_ts.h /optee_os/core/include/kernel/linker.h /optee_os/core/include/kernel/ts_store.h /optee_os/core/include/kernel/user_access.h /optee_os/core/include/tee/tadb.h /optee_os/core/kernel/asan.c /optee_os/core/kernel/embedded_ts.c /optee_os/core/kernel/ldelf_syscalls.c /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/kernel/secstor_ta.c /optee_os/core/kernel/user_access.c /optee_os/core/lib/libtomcrypt/src/pk/rsa/rsa_verify_hash.c /optee_os/core/mm/pgt_cache.c /optee_os/core/mm/sub.mk /optee_os/core/pta/imx/manufacturing_protection.c tadb.c /optee_os/lib/libutee/include/utee_defines.h /optee_os/lib/libutils/ext/include/compiler.h /optee_os/lib/libutils/ext/mempool.c /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/mk/config.mk /optee_os/scripts/derive_rpmb_key.py /optee_os/ta/pkcs11/src/pkcs11_attributes.c
d24c41ef	22-Aug-2023	Clement Faure <clement.faure@nxp.com>	core: tee: initialize variables in entry_open_session() Initialize local variables at declaration as specified by the coding guidelines. Signed-off-by: Clement Faure <clement.faure@nxp.com> Reviewe core: tee: initialize variables in entry_open_session() Initialize local variables at declaration as specified by the coding guidelines. Signed-off-by: Clement Faure <clement.faure@nxp.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/pta/attestation.c entry_std.c /optee_os/lib/libutee/tee_api_property.c
a4ba53eb	24-Jul-2023	Clement Faure <clement.faure@nxp.com>	core: tee: initialize dirfile_entry objects Coverity reports many errors where dirfile_entry{} is used un-initialized. Resolve these errors by setting these objects to zero on declaration. Signed-o core: tee: initialize dirfile_entry objects Coverity reports many errors where dirfile_entry{} is used un-initialized. Resolve these errors by setting these objects to zero on declaration. Signed-off-by: Clement Faure <clement.faure@nxp.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... fs_dirfile.c tadb.c
85a3e2d5	24-Jul-2023	Clement Faure <clement.faure@nxp.com>	core: tee: entry_open_session(): initialize tee_ta_param object Initialize tee_ta_param{} to zero in entry_open_session() so it can be used initialized in cleanup_shm_refs() without Coverity error. core: tee: entry_open_session(): initialize tee_ta_param object Initialize tee_ta_param{} to zero in entry_open_session() so it can be used initialized in cleanup_shm_refs() without Coverity error. Signed-off-by: Clement Faure <clement.faure@nxp.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/CHANGELOG.md /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/kernel/thread_private_arch.h /optee_os/core/arch/arm/kernel/abort.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_optee_smc_a64.S /optee_os/core/arch/arm/kernel/thread_spmc_a64.S /optee_os/core/arch/arm/plat-bcm/conf.mk /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-nuvoton/conf.mk /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-versal/main.c /optee_os/core/drivers/crypto/caam/mp/caam_mp.c /optee_os/core/drivers/crypto/caam/utils/utils_dmaobj.c /optee_os/core/drivers/crypto/crypto_api/acipher/dh.c /optee_os/core/drivers/crypto/crypto_api/acipher/rsamgf.c /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt_acipher.h /optee_os/core/drivers/crypto/stm32/authenc.c /optee_os/core/drivers/crypto/stm32/cipher.c /optee_os/core/drivers/crypto/stm32/common.h /optee_os/core/drivers/crypto/stm32/crypto.mk /optee_os/core/drivers/crypto/stm32/stm32_cryp.c /optee_os/core/drivers/crypto/stm32/stm32_saes.c /optee_os/core/drivers/crypto/stm32/stm32_saes.h /optee_os/core/drivers/crypto/stm32/sub.mk /optee_os/core/drivers/imx/mu/imx_mu.c /optee_os/core/drivers/imx/mu/imx_mu_8q.c /optee_os/core/drivers/imx/mu/imx_mu_8ulp.c /optee_os/core/drivers/imx/mu/imx_mu_platform.h /optee_os/core/drivers/ls_dspi.c /optee_os/core/drivers/ls_sfp.c /optee_os/core/include/drivers/ls_dspi.h /optee_os/core/include/kernel/huk_subkey.h /optee_os/core/include/kernel/pseudo_ta.h /optee_os/core/kernel/huk_subkey.c /optee_os/core/kernel/pseudo_ta.c /optee_os/core/lib/scmi-server/conf-optee-fvp.mk /optee_os/core/lib/scmi-server/sub.mk /optee_os/core/pta/attestation.c entry_std.c /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutee/tee_api.c /optee_os/lib/libutee/tee_api_property.c
b2284b11	17-Jul-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: update FS storage API with user space buffer Updates the create(), read(), and write() function pointers in struct ts_store_ops to take a user space buffer in addition to the previous core buf core: update FS storage API with user space buffer Updates the create(), read(), and write() function pointers in struct ts_store_ops to take a user space buffer in addition to the previous core buffer. Core buffers are normal secure memory while user space buffers should only be accessed using the user_access.h functions. The different FS storage implementations are updated accordingly. Note that the RPMB FS storage implementation resorts to using enter_user_access() and exit_user_access() due to internal complexities. Fixes: 4e154320e47c ("core: Apply finer-grained PAN") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/arch/arm/kernel/stmm_sp.c /optee_os/core/drivers/crypto/se050/core/storage.c /optee_os/core/include/tee/fs_dirfile.h /optee_os/core/include/tee/tee_fs.h /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/pta/attestation.c fs_dirfile.c tadb.c tee_ree_fs.c tee_rpmb_fs.c tee_svc_storage.c
6d628a81	17-Jul-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: syscall_storage_obj_rename(): fix direct user memory access Fixes a direct user memory access in syscall_storage_obj_rename() which can lead to a data abort if PAN is enabled. Fixes: 84f78978 core: syscall_storage_obj_rename(): fix direct user memory access Fixes a direct user memory access in syscall_storage_obj_rename() which can lead to a data abort if PAN is enabled. Fixes: 84f78978974b ("core: use user-access functions for storage svc") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... tee_svc_storage.c
090e9463	17-Jul-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: pta: socket: fix direct user memory access Replaces direct user memory accesses in the socket PTA with copy_to_user() and copy_from_user(). This avoids PAN errors when PAN is active. Fixes: 4 core: pta: socket: fix direct user memory access Replaces direct user memory accesses in the socket PTA with copy_to_user() and copy_from_user(). This avoids PAN errors when PAN is active. Fixes: 4e154320e47c ("core: Apply finer-grained PAN") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/kernel/ldelf_loader.c socket.c
eb4a988a	14-Jul-2023	Jens Wiklander <jens.wiklander@linaro.org>	core: add user buffer to tee_invoke_supp_plugin_rpc() Adds a user buffer to tee_invoke_supp_plugin_rpc() so direct user memory access can be used when called with a buffer in user memory instead of core: add user buffer to tee_invoke_supp_plugin_rpc() Adds a user buffer to tee_invoke_supp_plugin_rpc() so direct user memory access can be used when called with a buffer in user memory instead of core memory. tee_invoke_supp_plugin_rpc() can still take a core memory buffer as an argument if needed. PTA_SYSTEM_SUPP_PLUGIN_INVOKE in the system PTA is updated to pass the memref as a user memory buffer instead of a core memory buffer. This fixes a direct privileged memory access to user space memory. Fixes: 4e154320e47c ("core: Apply finer-grained PAN") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt.h /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt_acipher.h /optee_os/core/include/kernel/user_access.h /optee_os/core/include/tee/tee_supp_plugin_rpc.h /optee_os/core/kernel/user_access.c /optee_os/core/pta/system.c tee_supp_plugin_rpc.c /optee_os/lib/libutee/include/utee_defines.h
34ce35b1	14-Jul-2023	loubaihui <loubaihui1@huawei.com>	crypto: add X448 support Refer to the X25519 algorithm, add the X448 algorithm framework code. Signed-off-by: loubaihui <loubaihui1@huawei.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.o crypto: add X448 support Refer to the X25519 algorithm, add the X448 algorithm framework code. Signed-off-by: loubaihui <loubaihui1@huawei.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/crypto/crypto.c /optee_os/core/include/crypto/crypto.h tee_svc_cryp.c /optee_os/lib/libutee/include/utee_defines.h
46e25a17	14-Jul-2023	loubaihui <loubaihui1@huawei.com>	crypto: rename struct x25519_keypair Since X25519 and X448 have the same key pair structure, so we rename struct x25519_keypair as struct montgomery_keypair. Signed-off-by: loubaihui <loubaihui1@hu crypto: rename struct x25519_keypair Since X25519 and X448 have the same key pair structure, so we rename struct x25519_keypair as struct montgomery_keypair. Signed-off-by: loubaihui <loubaihui1@huawei.com> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/plat-aspeed/platform_ast2600.c /optee_os/core/arch/arm/plat-aspeed/platform_ast2700.c /optee_os/core/arch/arm/plat-bcm/main.c /optee_os/core/arch/arm/plat-corstone1000/main.c /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-imx/pm/cpuidle-imx7d.c /optee_os/core/arch/arm/plat-imx/pm/imx7_suspend.c /optee_os/core/arch/arm/plat-k3/main.c /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-marvell/main.c /optee_os/core/arch/arm/plat-mediatek/main.c /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-rcar/main.c /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rzn1/main.c /optee_os/core/arch/arm/plat-sam/freq.c /optee_os/core/arch/arm/plat-sam/main.c /optee_os/core/arch/arm/plat-sprd/main.c /optee_os/core/arch/arm/plat-stm/main.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-sunxi/main.c /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-ti/a9_plat_init.S /optee_os/core/arch/arm/plat-ti/main.c /optee_os/core/arch/arm/plat-totalcompute/main.c /optee_os/core/arch/arm/plat-uniphier/main.c /optee_os/core/arch/arm/plat-versal/main.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-zynq7k/main.c /optee_os/core/arch/arm/plat-zynqmp/main.c /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/arch/riscv/mm/sub.mk /optee_os/core/crypto/crypto.c /optee_os/core/drivers/clk/clk_dt.c /optee_os/core/drivers/crypto/caam/cipher/caam_cipher_mac.c /optee_os/core/drivers/crypto/caam/hal/common/hal_cfg.c /optee_os/core/drivers/crypto/se050/glue/i2c_stm32.c /optee_os/core/drivers/plic.c /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_i2c.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/drivers/stm32mp15_huk.c /optee_os/core/drivers/sub.mk /optee_os/core/include/crypto/crypto.h /optee_os/core/include/drivers/plic.h /optee_os/core/include/drivers/stm32_bsec.h /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/drivers/stm32_i2c.h /optee_os/core/include/drivers/stm32_uart.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/dt.h /optee_os/core/kernel/dt.c /optee_os/core/kernel/ldelf_loader.c /optee_os/core/kernel/user_ta.c /optee_os/core/lib/libtomcrypt/x25519.c tee_svc_cryp.c /optee_os/lib/libutils/ext/include/util.h /optee_os/mk/aosp_optee.mk /optee_os/ta/pkcs11/src/pkcs11_attributes.c
4e154320	29-May-2023	Seonghyun Park <seonghp@amazon.com>	core: Apply finer-grained PAN Prior to this commit, the PAN was disabled for most of the time, within the thread scall handler. After resolving all outstanding missing unprivileged access functions, core: Apply finer-grained PAN Prior to this commit, the PAN was disabled for most of the time, within the thread scall handler. After resolving all outstanding missing unprivileged access functions, we can now enable finer- grained PAN, where the unprivileged access is only allowed inside handful of special user-access functions. There are some exceptions where we toggle PAN to allow the OP-TEE core to access user memory, instead of using user-access functions or bounce buffers. Those are crypto services and ldelf syscall handlers. Those are chosen to avoid potential large bounce buffer allocations. Signed-off-by: Seonghyun Park <seonghp@amazon.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/kernel/scall.c /optee_os/core/kernel/user_access.c tee_svc_cryp.c
a844a0b8	21-Jun-2023	Seonghyun Park <seonghp@amazon.com>	core: use user-access functions for crypto service Use user-access functions for crypto service functions, excluding encryption, decryption and hasn operations, which might require large bounce buff core: use user-access functions for crypto service Use user-access functions for crypto service functions, excluding encryption, decryption and hasn operations, which might require large bounce buffer allocations. Besides these operations, user- access functions are applied for those functions that takes attributes, IVs, big numbers, and auxiliary data from the user- space. Signed-off-by: Seonghyun Park <seonghp@amazon.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/arch/arm/kernel/arch_scall.c /optee_os/core/pta/system.c tee_svc_cryp.c
84f78978	21-Jun-2023	Seonghyun Park <seonghp@amazon.com>	core: use user-access functions for storage svc Use user-access functions within storage service syscalls, mainly to copy object id from user-spaced buffers. Signed-off-by: Seonghyun Park <seonghp@ core: use user-access functions for storage svc Use user-access functions within storage service syscalls, mainly to copy object id from user-spaced buffers. Signed-off-by: Seonghyun Park <seonghp@amazon.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... tee_svc_storage.c
376448c2	21-Jun-2023	Seonghyun Park <seonghp@amazon.com>	core: use user-access functions for passing params Use user-access functions for parameter-passing between user TA and the core when calling another TA from a TA and when entering a user TA. Signed core: use user-access functions for passing params Use user-access functions for parameter-passing between user TA and the core when calling another TA from a TA and when entering a user TA. Signed-off-by: Seonghyun Park <seonghp@amazon.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/CHANGELOG.md /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/arm64_macros.S /optee_os/core/arch/arm/include/kernel/user_access_arch.h /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/riscv/include/kernel/user_access_arch.h /optee_os/core/include/kernel/ldelf_loader.h /optee_os/core/include/kernel/user_access.h /optee_os/core/include/kernel/user_mode_ctx_struct.h /optee_os/core/kernel/ldelf_loader.c /optee_os/core/kernel/scall.c /optee_os/core/kernel/user_access.c /optee_os/core/kernel/user_ta.c /optee_os/core/pta/system.c tee_svc.c /optee_os/mk/config.mk
e2ec831c	03-Jul-2023	Jihwan Park <jihwp@amazon.com>	core: crypto_bignum_free(): add indirection and set pointer to NULL To prevent human mistake, crypto_bignum_free() sets the location of the bignum pointer to NULL after freeing it. Signed-off-by: J core: crypto_bignum_free(): add indirection and set pointer to NULL To prevent human mistake, crypto_bignum_free() sets the location of the bignum pointer to NULL after freeing it. Signed-off-by: Jihwan Park <jihwp@amazon.com> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Joakim Bech <joakim.bech@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/crypto/crypto.c /optee_os/core/drivers/crypto/caam/acipher/caam_dh.c /optee_os/core/drivers/crypto/caam/acipher/caam_dsa.c /optee_os/core/drivers/crypto/caam/acipher/caam_ecc.c /optee_os/core/drivers/crypto/caam/acipher/caam_rsa.c /optee_os/core/drivers/crypto/se050/core/ecc.c /optee_os/core/drivers/crypto/se050/core/rsa.c /optee_os/core/drivers/crypto/versal/ecc.c /optee_os/core/include/crypto/crypto.h /optee_os/core/lib/libtomcrypt/dh.c /optee_os/core/lib/libtomcrypt/dsa.c /optee_os/core/lib/libtomcrypt/ecc.c /optee_os/core/lib/libtomcrypt/mpi_desc.c /optee_os/core/lib/libtomcrypt/rsa.c tee_svc_cryp.c /optee_os/lib/libmbedtls/core/bignum.c /optee_os/lib/libmbedtls/core/dh.c /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libmbedtls/core/rsa.c
9ab92ded	28-Jun-2023	Etienne Carriere <etienne.carriere@foss.st.com>	core: tee_svc_cryp: report RSAES_PKCS1_OAEP_MGF1 bad hash ID Fixes syscall_asymm_operate() to report inconsistent hash algorithm specified as attribute for TEE_ALG_RSAES_PKCS1_OAEP_MGF1_* operations core: tee_svc_cryp: report RSAES_PKCS1_OAEP_MGF1 bad hash ID Fixes syscall_asymm_operate() to report inconsistent hash algorithm specified as attribute for TEE_ALG_RSAES_PKCS1_OAEP_MGF1_* operations as OP-TEE only supports the hash predefined for the request algorithm TEE_ALG_RSAES_PKCS1_OAEP_MGF1_xxx. Link: https://github.com/OP-TEE/optee_os/issues/6143 Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.clang-format /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/Makefile /optee_os/core/arch/arm/dts/dt_driver_test.dtsi /optee_os/core/arch/arm/dts/sama5d2.dtsi /optee_os/core/arch/arm/dts/stm32mp13-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp13xc.dtsi /optee_os/core/arch/arm/dts/stm32mp13xf.dtsi /optee_os/core/arch/arm/dts/stm32mp15-pinctrl.dtsi /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/kernel/spmc_sp_handler.h /optee_os/core/arch/arm/include/kernel/thread_spmc.h /optee_os/core/arch/arm/include/kernel/tlb_helpers.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/kernel/abort.c /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/cache_helpers_a64.S /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_a32.S /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/kernel/thread_optee_smc_a32.S /optee_os/core/arch/arm/kernel/thread_optee_smc_a64.S /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/thread_spmc_a64.S /optee_os/core/arch/arm/kernel/tlb_helpers_a32.S /optee_os/core/arch/arm/kernel/tlb_helpers_a64.S /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/core_mmu_v7.c /optee_os/core/arch/arm/mm/mobj_dyn_shm.c /optee_os/core/arch/arm/mm/mobj_ffa.c /optee_os/core/arch/arm/mm/tee_pager.c /optee_os/core/arch/arm/plat-aspeed/conf.mk /optee_os/core/arch/arm/plat-aspeed/platform_ast2600.c /optee_os/core/arch/arm/plat-aspeed/platform_ast2700.c /optee_os/core/arch/arm/plat-aspeed/platform_config.h /optee_os/core/arch/arm/plat-aspeed/sub.mk /optee_os/core/arch/arm/plat-bcm/main.c /optee_os/core/arch/arm/plat-corstone1000/main.c /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.h /optee_os/core/arch/arm/plat-k3/drivers/ti_sci_protocol.h /optee_os/core/arch/arm/plat-k3/main.c /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-marvell/main.c /optee_os/core/arch/arm/plat-mediatek/main.c /optee_os/core/arch/arm/plat-nuvoton/conf.mk /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-nuvoton/platform_config.h /optee_os/core/arch/arm/plat-nuvoton/sub.mk /optee_os/core/arch/arm/plat-rcar/main.c /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rzn1/main.c /optee_os/core/arch/arm/plat-rzn1/platform_config.h /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sam/main.c /optee_os/core/arch/arm/plat-sam/nsec-service/sm_platform_handler.c /optee_os/core/arch/arm/plat-sam/nsec-service/smc_ids.h /optee_os/core/arch/arm/plat-sam/scmi_server.c /optee_os/core/arch/arm/plat-sam/sub.mk /optee_os/core/arch/arm/plat-sprd/main.c /optee_os/core/arch/arm/plat-stm/main.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_syscfg.c /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-sunxi/main.c /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-ti/main.c /optee_os/core/arch/arm/plat-totalcompute/main.c /optee_os/core/arch/arm/plat-uniphier/main.c /optee_os/core/arch/arm/plat-versal/main.c /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-zynq7k/main.c /optee_os/core/arch/arm/plat-zynqmp/main.c /optee_os/core/arch/riscv/include/kernel/delay_arch.h /optee_os/core/arch/riscv/include/kernel/tlb_helpers.h /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/abort.c /optee_os/core/arch/riscv/kernel/arch_scall.c /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/kernel/tee_time_rdtime.c /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/kernel/unwind_rv.c /optee_os/core/arch/riscv/mm/sub.mk /optee_os/core/arch/riscv/mm/tlb_helpers_rv.S /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/arch/riscv/riscv.mk /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/clk/clk-stm32-core.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/clk/clk_dt.c /optee_os/core/drivers/clk/sam/at91_clk.h /optee_os/core/drivers/clk/sam/at91_pmc.c /optee_os/core/drivers/clk/sam/at91_sckc.c /optee_os/core/drivers/clk/sam/sama5d2_clk.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/gpio/gpio.c /optee_os/core/drivers/gpio/sub.mk /optee_os/core/drivers/hfic.c /optee_os/core/drivers/i2c/atmel_i2c.c /optee_os/core/drivers/imx_ele.c /optee_os/core/drivers/ls_gpio.c /optee_os/core/drivers/pinctrl/atmel_pio.c /optee_os/core/drivers/pinctrl/pinctrl.c /optee_os/core/drivers/pinctrl/sub.mk /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/scmi-msg/clock_generic.c /optee_os/core/drivers/scmi-msg/sub.mk /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_etzpc.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_i2c.c /optee_os/core/drivers/stm32_rng.c /optee_os/core/drivers/sub.mk /optee_os/core/drivers/versal_gpio.c /optee_os/core/include/drivers/atmel_saic.h /optee_os/core/include/drivers/bcm_gpio.h /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/gic.h /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/hfic.h /optee_os/core/include/drivers/i2c.h /optee_os/core/include/drivers/ls_gpio.h /optee_os/core/include/drivers/pinctrl.h /optee_os/core/include/drivers/pl022_spi.h /optee_os/core/include/drivers/pl061_gpio.h /optee_os/core/include/drivers/rstctrl.h /optee_os/core/include/drivers/scmi-msg.h /optee_os/core/include/drivers/stm32_etzpc.h /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/drivers/versal_gpio.h /optee_os/core/include/dt-bindings/clock/at91.h /optee_os/core/include/dt-bindings/clock/stm32mp13-clks.h /optee_os/core/include/dt-bindings/regulator/st,stm32mp13-regulator.h /optee_os/core/include/dt-bindings/rtc/rtc-stm32.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/virtualization.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/include/mm/mobj.h /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/thread.c /optee_os/core/mm/core_mmu.c /optee_os/core/mm/vm.c /optee_os/core/pta/tests/dt_driver_test.c /optee_os/core/pta/tests/sub.mk tee_svc_cryp.c /optee_os/keys/default.pem /optee_os/keys/default_ta.pem /optee_os/ldelf/ftrace.c /optee_os/ldelf/main.c /optee_os/ldelf/ta_elf.c /optee_os/ldelf/ta_elf.h /optee_os/lib/libunw/include/unw/unwind.h /optee_os/lib/libunw/sub.mk /optee_os/lib/libunw/unwind_arm64.c /optee_os/lib/libunw/unwind_riscv.c /optee_os/lib/libutee/arch/riscv/utee_syscalls_rv.S /optee_os/lib/libutee/include/riscv_user_sysreg.h /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutils/ext/arch/riscv/mcount_rv.S /optee_os/lib/libutils/ext/arch/riscv/sub.mk /optee_os/lib/libutils/ext/ftrace/ftrace.c /optee_os/lib/libutils/ext/include/asm.S /optee_os/lib/libutils/ext/include/compiler.h /optee_os/lib/libutils/ext/include/riscv.S /optee_os/lib/libutils/isoc/arch/arm/arm32_aeabi_divmod.c /optee_os/lib/libutils/isoc/arch/riscv/setjmp_rv.S /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/setjmp.h /optee_os/mk/aosp_optee.mk /optee_os/mk/cc-option.mk /optee_os/mk/compile.mk /optee_os/mk/config.mk /optee_os/scripts/ftrace_format.py /optee_os/scripts/symbolize.py /optee_os/ta/arch/riscv/ta.ld.S /optee_os/ta/mk/ta_dev_kit.mk /optee_os/ta/pkcs11/src/handle.c /optee_os/ta/pkcs11/src/handle.h /optee_os/ta/pkcs11/src/object.c /optee_os/ta/pkcs11/src/pkcs11_token.c /optee_os/ta/pkcs11/src/pkcs11_token.h /optee_os/ta/pkcs11/src/processing.h /optee_os/ta/ta.mk
a0be044c	19-Apr-2023	lei zhou <lei.zhou@linaro.org>	core: crypto: change TEE_AEDecryptFinal() tag param's attribute Due to tag parameter was passed in from REE side share memory same as cipher-text source and nonce buffer/parameters. Then memory acce core: crypto: change TEE_AEDecryptFinal() tag param's attribute Due to tag parameter was passed in from REE side share memory same as cipher-text source and nonce buffer/parameters. Then memory access sanity-check marks CCM TAG buffer as ACCESS_DENIED, which triggers user TA panic. Change tag parameter's attribute from [in] to [inbuf]. This fix is expected to be addressed in next GP TEE Internal Core API specification. Link: https://github.com/OP-TEE/optee_os/issues/5946 Signed-off-by: lei zhou <lei.zhou@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/CHANGELOG.md /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/crypto/sha3_armv8a_ce.c /optee_os/core/arch/arm/crypto/sha3_armv8a_ce_a64.S /optee_os/core/arch/arm/crypto/sm4_armv8a_aese_a64.S /optee_os/core/arch/arm/crypto/sm4_armv8a_ce.c /optee_os/core/arch/arm/crypto/sm4_armv8a_ce.h /optee_os/core/arch/arm/crypto/sm4_armv8a_ce_a64.S /optee_os/core/arch/arm/crypto/sm4_armv8a_neon.c /optee_os/core/arch/arm/crypto/sm4_armv8a_neon.h /optee_os/core/arch/arm/crypto/sub.mk /optee_os/core/arch/arm/dts/at91-sama5d27_wlsom1.dtsi /optee_os/core/arch/arm/dts/stm32mp157a-dk1.dts /optee_os/core/arch/arm/dts/stm32mp157c-dk2.dts /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/include/mm/generic_ram_layout.h /optee_os/core/arch/arm/include/sm/optee_smc.h /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/link.mk /optee_os/core/arch/arm/kernel/link_dummies_init.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/thread_optee_smc_a64.S /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/core_mmu_v7.c /optee_os/core/arch/arm/mm/tee_pager.c /optee_os/core/arch/arm/plat-hisilicon/psci.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/config/imx6qdlsolo.h /optee_os/core/arch/arm/plat-imx/config/imx6sl.h /optee_os/core/arch/arm/plat-imx/config/imx6sll.h /optee_os/core/arch/arm/plat-imx/config/imx6sx.h /optee_os/core/arch/arm/plat-imx/platform_config.h /optee_os/core/arch/arm/plat-imx/pm/psci.c /optee_os/core/arch/arm/plat-imx/registers/imx8ulp.h /optee_os/core/arch/arm/plat-imx/registers/imx93.h /optee_os/core/arch/arm/plat-imx/sm_platform_handler.c /optee_os/core/arch/arm/plat-imx/sub.mk /optee_os/core/arch/arm/plat-imx/tzc380.c /optee_os/core/arch/arm/plat-ls/conf.mk /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-rcar/romapi_call.S /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sam/matrix.c /optee_os/core/arch/arm/plat-sam/matrix.h /optee_os/core/arch/arm/plat-sam/sam_sfr.c /optee_os/core/arch/arm/plat-sam/sama5d2.h /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-sunxi/psci.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-vexpress/platform_config.h /optee_os/core/arch/arm/plat-zynqmp/main.c /optee_os/core/arch/arm/plat-zynqmp/platform_config.h /optee_os/core/arch/riscv/include/encoding.h /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/kern.ld.S /optee_os/core/arch/riscv/mm/tlb_helpers_rv.S /optee_os/core/crypto.mk /optee_os/core/crypto/sm4_accel.c /optee_os/core/crypto/sub.mk /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/atmel_rstc.c /optee_os/core/drivers/atmel_rtc.c /optee_os/core/drivers/atmel_shdwc.c /optee_os/core/drivers/atmel_tcb.c /optee_os/core/drivers/atmel_trng.c /optee_os/core/drivers/atmel_wdt.c /optee_os/core/drivers/cbmem_console.c /optee_os/core/drivers/clk/clk-stm32mp13.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/clk/clk_dt.c /optee_os/core/drivers/clk/sam/sama5d2_clk.c /optee_os/core/drivers/crypto/caam/acipher/caam_ecc.c /optee_os/core/drivers/crypto/caam/acipher/sub.mk /optee_os/core/drivers/crypto/caam/caam_ctrl.c /optee_os/core/drivers/crypto/caam/caam_pwr.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/caam/hal/common/hal_cfg_dt.c /optee_os/core/drivers/crypto/caam/hal/common/hal_ctrl.c /optee_os/core/drivers/crypto/caam/hal/imx_8m/registers/ctrl_regs.h /optee_os/core/drivers/crypto/caam/include/caam_acipher.h /optee_os/core/drivers/crypto/caam/include/caam_desc_defines.h /optee_os/core/drivers/crypto/caam/include/caam_hal_ctrl.h /optee_os/core/drivers/crypto/caam/include/caam_mp.h /optee_os/core/drivers/crypto/caam/include/caam_status.h /optee_os/core/drivers/crypto/caam/include/caam_trace.h /optee_os/core/drivers/crypto/caam/mp/caam_mp.c /optee_os/core/drivers/crypto/caam/mp/sub.mk /optee_os/core/drivers/crypto/caam/sub.mk /optee_os/core/drivers/crypto/caam/utils/utils_status.c /optee_os/core/drivers/crypto/crypto_api/acipher/ecc.c /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt_acipher.h /optee_os/core/drivers/crypto/se050/adaptors/apis/sss.c /optee_os/core/drivers/crypto/se050/core/ecc.c /optee_os/core/drivers/crypto/se050/crypto.mk /optee_os/core/drivers/crypto/stm32/authenc.c /optee_os/core/drivers/crypto/stm32/cipher.c /optee_os/core/drivers/crypto/stm32/stm32_cryp.c /optee_os/core/drivers/crypto/versal/ecc.c /optee_os/core/drivers/i2c/atmel_i2c.c /optee_os/core/drivers/i2c/i2c.c /optee_os/core/drivers/i2c/sub.mk /optee_os/core/drivers/imx/dcp/dcp.c /optee_os/core/drivers/imx/mu/sub.mk /optee_os/core/drivers/imx_caam.c /optee_os/core/drivers/imx_csu.c /optee_os/core/drivers/imx_ele.c /optee_os/core/drivers/imx_i2c.c /optee_os/core/drivers/imx_lpuart.c /optee_os/core/drivers/imx_scu.c /optee_os/core/drivers/imx_uart.c /optee_os/core/drivers/imx_wdog.c /optee_os/core/drivers/ls_dspi.c /optee_os/core/drivers/pl011.c /optee_os/core/drivers/pm/sam/at91_pm.c /optee_os/core/drivers/rstctrl/rstctrl.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/serial8250_uart.c /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_etzpc.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_i2c.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/stm32_rng.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/drivers/stm32mp15_huk.c /optee_os/core/drivers/sub.mk /optee_os/core/drivers/tzc380.c /optee_os/core/drivers/xiphera_trng.c /optee_os/core/drivers/zynqmp_csu_aes.c /optee_os/core/include/crypto/crypto_accel.h /optee_os/core/include/drivers/caam_extension.h /optee_os/core/include/drivers/cbmem_console.h /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/i2c.h /optee_os/core/include/drivers/imx_mu.h /optee_os/core/include/drivers/rstctrl.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/dt.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/linker.h /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/include/kernel/thread_private.h /optee_os/core/include/kernel/virtualization.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/console.c /optee_os/core/kernel/dt.c /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/dt_driver_test.c /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/thread.c /optee_os/core/lib/libtomcrypt/sha3_accel.c /optee_os/core/lib/libtomcrypt/src/hashes/sub.mk /optee_os/core/lib/libtomcrypt/src/pk/pkcs1/pkcs_1_v1_5_decode.c /optee_os/core/lib/libtomcrypt/sub.mk /optee_os/core/lib/libtomcrypt/tomcrypt.c /optee_os/core/mm/core_mmu.c /optee_os/core/mm/fobj.c /optee_os/core/pta/attestation.c /optee_os/core/pta/imx/manufacturing_protection.c /optee_os/core/pta/imx/sub.mk tee_svc_cryp.c /optee_os/ldelf/ldelf.mk /optee_os/ldelf/sub.mk /optee_os/ldelf/syscalls_rv.S /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libutee/arch/arm/sub.mk /optee_os/lib/libutee/include/elf.h /optee_os/lib/libutee/include/pta_imx_manufacturing_protection.h /optee_os/lib/libutee/include/utee_defines.h /optee_os/lib/libutee/sub.mk /optee_os/lib/libutee/tcb.c /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutee/user_ta_entry.c /optee_os/lib/libutee/user_ta_entry_compat.c /optee_os/lib/libutils/ext/include/bitstring.h /optee_os/mk/config.mk /optee_os/ta/arch/riscv/ta.ld.S /optee_os/ta/link.mk /optee_os/ta/link_shlib.mk /optee_os/ta/mk/build-user-ta.mk /optee_os/ta/pkcs11/include/pkcs11_ta.h /optee_os/ta/pkcs11/src/pkcs11_token.c /optee_os/ta/ta.mk /optee_os/ta/user_ta_header.c
123 4 5 6 7 8 9 10 >>...24