lib - OpenGrok history log for /optee

Revision	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
273a583e	30-Sep-2025	Thomas Bourgoin <thomas.bourgoin@foss.st.com>	Squashed commit upgrading to mbedtls-3.6.4 Squash merging branch import/mbedtls-3.6.4 commit 43e97a8f0625 ("Import mbedtls-3.6.4") commit 8ac83749d343 ("mbedtls: remove default include/mbedtls/conf Squashed commit upgrading to mbedtls-3.6.4 Squash merging branch import/mbedtls-3.6.4 commit 43e97a8f0625 ("Import mbedtls-3.6.4") commit 8ac83749d343 ("mbedtls: remove default include/mbedtls/config.h") commit 89c0fc652535 ("mbedtls: configure mbedtls to reach for config") commit 59c9730a19a8 ("libmbedtls: make mbedtls_mpi_mont*() available") commit 20d408b354b4 ("libmbedtls: add mbedtls_mpi_init_mempool()") commit ae519b65d8e1 ("libmedtls: mpi_miller_rabin: increase count limit") commit eec216feead8 ("libmbedtls: add interfaces in mbedtls for context memory operation") commit 436c9dec3733 ("libmbedtls: fix no CRT issue") commit eb7fd40aa0c1 ("libmbedtls: add SM2 curve") commit 6ca24312de58 ("libmbedtls: add fault mitigation in mbedtls_rsa_rsassa_pss_verify_ext()") commit a7a355ebd993 ("libmbedtls: add fault mitigation in mbedtls_rsa_rsassa_pkcs1_v15_verify()") commit 45083a9c2d7f ("libmbedtls: fix cipher_wrap.c for chacha20 and chachapoly") commit a345e1bb1572 ("libmbedtls: fix cipher_wrap.c for NIST AES Key Wrap mode") commit 015ba93f356d ("libmbedtls: allow inclusion of arm_neon.h") commit 3c7a228496a7 ("libmbedtls: add CFG_CORE_UNSAFE_MODEXP and CFG_TA_MBEDTLS_UNSAFE_MODEXP") commit c88a506a0f55 ("libmbedtls: use mempool_calloc() for temporary memory") commit b22584209222 ("libmbedtls: fix build warning related to deprecated DTLS connect ID") commit 4afc1eba8114 ("libmbedtls: sync with DTLS connect ID build fix") commit 85329760d40b ("libmbedtls: fix compilation warning with GCC14") Signed-off-by: Thomas Bourgoin <thomas.bourgoin@foss.st.com> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (vexpress-qemu_virt) Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (vexpress-qemu_armv8a) show more ... /optee_os/.github/workflows/ci.yml /optee_os/.github/workflows/stales.yml /optee_os/MAINTAINERS /optee_os/core/arch/arm/crypto/aes-gcm-ce.c /optee_os/core/arch/arm/dts/stm32mp21-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp23-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp231.dtsi /optee_os/core/arch/arm/dts/stm32mp233.dtsi /optee_os/core/arch/arm/dts/stm32mp235.dtsi /optee_os/core/arch/arm/dts/stm32mp235f-dk-ca35tdcid-rcc.dtsi /optee_os/core/arch/arm/dts/stm32mp235f-dk-ca35tdcid-resmem.dtsi /optee_os/core/arch/arm/dts/stm32mp235f-dk-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp235f-dk.dts /optee_os/core/arch/arm/dts/stm32mp23xc.dtsi /optee_os/core/arch/arm/dts/stm32mp23xf.dtsi /optee_os/core/arch/arm/dts/stm32mp25-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk.dts /optee_os/core/arch/arm/plat-k3/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/crypto/aes-gcm.c /optee_os/core/drivers/firewall/stm32_rifsc.c /optee_os/core/drivers/gpio/gpio.c /optee_os/core/drivers/regulator/regulator_fixed.c /optee_os/core/drivers/regulator/regulator_gpio.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/stm32mp_dt_bindings.h /optee_os/core/kernel/console.c /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/pta/tests/dt_driver_test.c libmbedtls/mbedtls/ChangeLog libmbedtls/mbedtls/include/mbedtls/bignum.h libmbedtls/mbedtls/include/mbedtls/build_info.h libmbedtls/mbedtls/include/mbedtls/dhm.h libmbedtls/mbedtls/include/mbedtls/ecdh.h libmbedtls/mbedtls/include/mbedtls/ecdsa.h libmbedtls/mbedtls/include/mbedtls/ecjpake.h libmbedtls/mbedtls/include/mbedtls/ecp.h libmbedtls/mbedtls/include/mbedtls/lms.h libmbedtls/mbedtls/include/mbedtls/pk.h libmbedtls/mbedtls/include/mbedtls/platform_util.h libmbedtls/mbedtls/include/mbedtls/rsa.h libmbedtls/mbedtls/include/mbedtls/ssl.h libmbedtls/mbedtls/include/mbedtls/ssl_cookie.h libmbedtls/mbedtls/include/mbedtls/ssl_ticket.h libmbedtls/mbedtls/include/mbedtls/x509.h libmbedtls/mbedtls/include/mbedtls/x509_crt.h libmbedtls/mbedtls/include/mbedtls/x509_csr.h libmbedtls/mbedtls/include/psa/crypto.h libmbedtls/mbedtls/include/psa/crypto_extra.h libmbedtls/mbedtls/library/aesni.c libmbedtls/mbedtls/library/asn1write.c libmbedtls/mbedtls/library/base64.c libmbedtls/mbedtls/library/cipher.c libmbedtls/mbedtls/library/cipher_invasive.h libmbedtls/mbedtls/library/cipher_wrap.c libmbedtls/mbedtls/library/cipher_wrap.h libmbedtls/mbedtls/library/common.h libmbedtls/mbedtls/library/lmots.c libmbedtls/mbedtls/library/lms.c libmbedtls/mbedtls/library/pem.c libmbedtls/mbedtls/library/psa_crypto.c libmbedtls/mbedtls/library/psa_crypto_mac.c libmbedtls/mbedtls/library/psa_crypto_slot_management.c libmbedtls/mbedtls/library/ssl_misc.h libmbedtls/mbedtls/library/ssl_msg.c libmbedtls/mbedtls/library/ssl_tls.c libmbedtls/mbedtls/library/ssl_tls12_client.c libmbedtls/mbedtls/library/ssl_tls12_server.c libmbedtls/mbedtls/library/ssl_tls13_keys.c libmbedtls/mbedtls/library/ssl_tls13_keys.h libmbedtls/mbedtls/library/version_features.c libmbedtls/mbedtls/library/x509_create.c libmbedtls/mbedtls/library/x509write_crt.c libmbedtls/mbedtls/library/x509write_csr.c /optee_os/mk/config.mk
3eb0c445	24-Jun-2025	Johan Korsnes <johan.korsnes@remarkable.no>	libutee: Fix handling of failed TA_CreateEntryPoint() in keep-alive TAs Do not mark init as done if init fails. This is necessary to avoid running a TA uninitialized. Also, add a new marker indicati libutee: Fix handling of failed TA_CreateEntryPoint() in keep-alive TAs Do not mark init as done if init fails. This is necessary to avoid running a TA uninitialized. Also, add a new marker indicating if the malloc pool and other runtime setup has been performed - this part of the init must not be repeated. This issue could cause a NULL pointer dereference in PKCS#11 TA if the TA's init failed. F.ex., if `tee-supplicant` was unavailable, the PKCS#11 TA's `TA_CreateEntryPoint()` would fail to init its tokens, and an error value would be returned. This in itself is fine, but the problem is that the init would be marked as done. Hence, for the next session, the TA's `TA_CreateEntryPoint()` would be omitted during init. Link: https://github.com/OP-TEE/optee_os/pull/7443 Signed-off-by: Johan Korsnes <johan.korsnes@remarkable.no> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/stmm_sp.c /optee_os/core/arch/arm/plat-automotive_rd/conf.mk /optee_os/core/arch/arm/plat-automotive_rd/main.c /optee_os/core/arch/arm/plat-automotive_rd/platform_config.h /optee_os/core/arch/arm/plat-automotive_rd/rd1ae_core_pos.S /optee_os/core/arch/arm/plat-automotive_rd/sub.mk /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/platform_config.h /optee_os/core/arch/riscv/include/kernel/misc_arch.h /optee_os/core/arch/riscv/include/rpmi.h /optee_os/core/arch/riscv/include/sbi.h /optee_os/core/arch/riscv/include/sbi_mpxy.h /optee_os/core/arch/riscv/include/sbi_mpxy_rpmi.h /optee_os/core/arch/riscv/kernel/sbi.c /optee_os/core/arch/riscv/kernel/sbi_mpxy.c /optee_os/core/arch/riscv/kernel/sbi_mpxy_rpmi.c /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/plat-sifive/conf.mk /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/arch/riscv/riscv.mk /optee_os/core/kernel/boot.c /optee_os/core/kernel/tpm.c /optee_os/core/kernel/transfer_list.c libutee/user_ta_entry.c /optee_os/ta/remoteproc/src/remoteproc_core.c
86d6bc20	11-Jul-2025	Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de>	libutils: disable word-at-a-time for str* functions with ASan The optimized versions of str* functions perform word-aligned reads that may go slightly past the actual string boundary. The out-of-bou libutils: disable word-at-a-time for str* functions with ASan The optimized versions of str* functions perform word-aligned reads that may go slightly past the actual string boundary. The out-of-bound read accesses doesn't look dangerous, because in this case buffer start address is always word-size aligned. Disable the optimized versions when CFG_CORE_SANITIZE_KADDRESS is enabled to avoid ASan errors. Signed-off-by: Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/dts/stm32mp211.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk.dts /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk-ca35tdcid-rcc.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk-ca35tdcid-resmem.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-dk.dts /optee_os/core/arch/arm/dts/stm32mp257f-ev1-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1.dts /optee_os/core/arch/arm/plat-k3/conf.mk /optee_os/core/arch/arm/plat-k3/drivers/dthev2.c /optee_os/core/arch/arm/plat-k3/drivers/eip76d_trng.c /optee_os/core/arch/arm/plat-k3/drivers/eip76d_trng.h /optee_os/core/arch/arm/plat-k3/drivers/sa2ul.c /optee_os/core/arch/arm/plat-k3/drivers/sub.mk /optee_os/core/arch/arm/plat-k3/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/main.c /optee_os/core/arch/arm/plat-stm32mp2/stm32_sysconf.h /optee_os/core/arch/arm/plat-stm32mp2/stm32_util.h /optee_os/core/arch/arm/plat-versal2/conf.mk /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/drivers/clk/clk-stm32mp21.c /optee_os/core/drivers/clk/clk-stm32mp25.c /optee_os/core/drivers/ffa_console.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/stm32_rtc.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/kernel/asan.c /optee_os/core/kernel/panic.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/pta/tests/misc.c libutils/isoc/newlib/strchr.c libutils/isoc/newlib/strcmp.c libutils/isoc/newlib/strcpy.c libutils/isoc/newlib/strlen.c /optee_os/mk/config.mk
8e31dd58	02-Sep-2024	Clément Le Goffic <clement.legoffic@foss.st.com>	core: pta: add alarm-related operations to RTC PTA Add `set_alarm()`, `read_alarm()`, `enable_alarm()`, `wait_alarm()`, `cancel_wait()` and `set_wake_alarm_status()` operations. Also update RTC feat core: pta: add alarm-related operations to RTC PTA Add `set_alarm()`, `read_alarm()`, `enable_alarm()`, `wait_alarm()`, `cancel_wait()` and `set_wake_alarm_status()` operations. Also update RTC features to include alarm and wakeup alarm capabilities. Signed-off-by: Clément Le Goffic <clement.legoffic@foss.st.com> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> Reviewed-by: Gatien Chevallier <gatien.chevallier@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/.gitignore /optee_os/core/include/drivers/rtc.h /optee_os/core/kernel/asan.c /optee_os/core/pta/rtc.c libutee/include/pta_rtc.h
0f3e22bd	17-Jun-2025	Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de>	libutils: drop redundant IS_ENABLED checks The functions asan_tag_access() and asan_tag_heap_free() are always defined. When CFG_CORE_SANITIZE_KADDRESS is disabled, they are compiled as no-ops. Thus libutils: drop redundant IS_ENABLED checks The functions asan_tag_access() and asan_tag_heap_free() are always defined. When CFG_CORE_SANITIZE_KADDRESS is disabled, they are compiled as no-ops. Thus, the surrounding IS_ENABLED() checks are unnecessary and removed. Signed-off-by: Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... libutils/isoc/bget_malloc.c
ffe211e0	17-Jun-2025	Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de>	libutils: tag only actual allocated size in ASan heap tagging Tag exactly the requested allocation size (hdr_size + requested_size) instead of the rounded-up buffer size. This ensures that ASan does libutils: tag only actual allocated size in ASan heap tagging Tag exactly the requested allocation size (hdr_size + requested_size) instead of the rounded-up buffer size. This ensures that ASan does not mark extra padding as valid memory. Signed-off-by: Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... libutils/isoc/bget_malloc.c
7749dda2	08-Jun-2025	Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de>	core, libutils: unpoison stack on longjmp for ASan Adds support for unpoisoning the stack when performing longjmp, to ensure correct ASan behavior. When a longjmp unwinds the stack, parts of the st core, libutils: unpoison stack on longjmp for ASan Adds support for unpoisoning the stack when performing longjmp, to ensure correct ASan behavior. When a longjmp unwinds the stack, parts of the stack that were poisoned during deeper calls may remain marked as inaccessible. This can lead to false ASan reports after longjmp, as the new frame reuses that memory. To avoid this, a call to asan_handle_longjmp() is added to setjmp_a64.S, which unpoisons the stack range between the current SP and the old SP (saved during setjmp). Signed-off-by: Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/CHANGELOG.md /optee_os/MAINTAINERS /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp151.dtsi /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/dts/stm32mp15xx-dkx.dtsi /optee_os/core/arch/arm/plat-corstone1000/conf.mk /optee_os/core/arch/arm/plat-marvell/conf.mk /optee_os/core/arch/arm/plat-marvell/platform_config.h /optee_os/core/arch/arm/plat-marvell/sub.mk /optee_os/core/arch/arm/plat-rockchip/conf.mk /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rockchip/platform_config.h /optee_os/core/include/kernel/asan.h /optee_os/core/kernel/asan.c /optee_os/core/pta/tests/misc.c libutils/isoc/arch/arm/setjmp_a32.S libutils/isoc/arch/arm/setjmp_a64.S libutils/isoc/arch/riscv/setjmp_rv.S libutils/isoc/include/setjmp.h /optee_os/mk/config.mk /optee_os/ta/link.mk
941a58d7	04-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	Add optee.ta.instanceKeepCrashed property Add the optee.ta.instanceKeepCrashed property to prevent a TA with gpd.ta.instanceKeepAlive=true to be restarted. This prevents unexpected resetting of the Add optee.ta.instanceKeepCrashed property Add the optee.ta.instanceKeepCrashed property to prevent a TA with gpd.ta.instanceKeepAlive=true to be restarted. This prevents unexpected resetting of the state of the TA. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Alex Lewontin <alex.lewontin@canonical.com> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp151.dtsi /optee_os/core/arch/arm/dts/stm32mp15xx-dkx.dtsi /optee_os/core/arch/arm/dts/stm32mp21-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp211.dtsi /optee_os/core/arch/arm/dts/stm32mp213.dtsi /optee_os/core/arch/arm/dts/stm32mp215.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk-ca35tdcid-rcc.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp215f-dk.dts /optee_os/core/arch/arm/dts/stm32mp21xc.dtsi /optee_os/core/arch/arm/dts/stm32mp21xf.dtsi /optee_os/core/arch/arm/dts/stm32mp25-st-scmi-cfg.dtsi /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1-ca35tdcid-rif.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1.dts /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/generic_timer.c /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/drivers/stm32mp25_syscfg.c /optee_os/core/arch/arm/plat-stm32mp2/stm32_sysconf.h /optee_os/core/arch/arm/plat-versal2/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-vexpress/platform_config.h /optee_os/core/arch/riscv/include/kernel/riscv_elf.h /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/kern.ld.S /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/arch/riscv/plat-sifive/conf.mk /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/core.mk /optee_os/core/drivers/amd/gpio_common.c /optee_os/core/drivers/amd/gpio_private.h /optee_os/core/drivers/amd/ps_gpio_driver.c /optee_os/core/drivers/amd/sub.mk /optee_os/core/drivers/clk/clk-stm32mp21.c /optee_os/core/drivers/clk/clk-stm32mp25.c /optee_os/core/drivers/clk/sub.mk /optee_os/core/drivers/ffa_console.c /optee_os/core/drivers/firewall/stm32_rifsc.c /optee_os/core/drivers/hfic.c /optee_os/core/drivers/rstctrl/stm32mp21_rstctrl.c /optee_os/core/drivers/rstctrl/stm32mp25_rstctrl.c /optee_os/core/drivers/rstctrl/sub.mk /optee_os/core/drivers/stm32_exti.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_omm.c /optee_os/core/drivers/stm32_rtc.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/drivers/stm32_rtc.h /optee_os/core/include/drivers/stm32mp21_rcc.h /optee_os/core/include/drivers/stm32mp_dt_bindings.h /optee_os/core/include/dt-bindings/clock/st,stm32mp21-rcc.h /optee_os/core/include/dt-bindings/clock/stm32mp21-clksrc.h /optee_os/core/include/dt-bindings/firewall/stm32mp21-rifsc.h /optee_os/core/include/dt-bindings/firewall/stm32mp25-rifsc.h /optee_os/core/include/dt-bindings/reset/st,stm32mp21-rcc.h /optee_os/core/include/dt-bindings/scmi/scmi-clock.h /optee_os/core/include/dt-bindings/tamper/st,stm32-tamp.h /optee_os/core/include/dt-bindings/tamper/st,stm32mp13-tamp.h /optee_os/core/include/dt-bindings/tamper/st,stm32mp21-tamp.h /optee_os/core/include/dt-bindings/tamper/st,stm32mp25-tamp.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/thread.h /optee_os/core/kernel/boot.c /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/thread.c /optee_os/core/kernel/user_ta.c /optee_os/core/lib/scmi-server/conf-optee-stm32mp1.mk /optee_os/core/lib/scmi-server/conf-optee-stm32mp2.mk /optee_os/core/lib/scmi-server/conf.mk /optee_os/core/lib/scmi-server/include/scmi_agent_configuration.h /optee_os/core/lib/scmi-server/include/scmi_clock_consumer.h /optee_os/core/lib/scmi-server/include/scmi_reset_consumer.h /optee_os/core/lib/scmi-server/scmi_clock_consumer.c /optee_os/core/lib/scmi-server/scmi_reset_consumer.c /optee_os/core/lib/scmi-server/scmi_server.c /optee_os/core/lib/scmi-server/scmi_server_scpfw.c /optee_os/core/lib/scmi-server/sub.mk /optee_os/core/mm/boot_mem.c /optee_os/core/mm/core_mmu.c libutee/include/user_ta_header.h /optee_os/mk/config.mk /optee_os/ta/user_ta_header.c
98dd4c70	07-Mar-2025	Jerome Forissier <jerome.forissier@linaro.org>	libmbedtls: fix compilation warning with GCC14 (2) Cherry-picking commit 7505c3588f44 ("libmbedtls: fix compilation warning with GCC14") which was lost in commit c3deb3d6f3b1 ("Squashed commit upgra libmbedtls: fix compilation warning with GCC14 (2) Cherry-picking commit 7505c3588f44 ("libmbedtls: fix compilation warning with GCC14") which was lost in commit c3deb3d6f3b1 ("Squashed commit upgrading to mbedtls-3.6.3"). It should have been pushed onto the import/mbedtls-3.6.2 branch when it was accepted in master but that didn't happen and therefore it was unfortunately left aside when upgrading. This time it has been applied to import/mbedtls-3.6.3 [1] so it will hopefully not be forgotten in the next upgrade. Link: https://github.com/OP-TEE/optee_os/commit/b526c146f87 [1] Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/kernel/thread_arch.h /optee_os/core/arch/arm/include/kernel/thread_private_arch.h /optee_os/core/arch/arm/include/kernel/thread_spmc.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.h /optee_os/core/arch/arm/plat-k3/drivers/ti_sci_protocol.h /optee_os/core/arch/arm/plat-rockchip/conf.mk /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rockchip/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-ti/a9_plat_init.S /optee_os/core/arch/arm/sm/pm_a32.S /optee_os/core/arch/arm/tests/ffa_lsp.c /optee_os/core/arch/arm/tests/sub.mk /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/crypto/signed_hdr.c /optee_os/core/drivers/crypto/caam/include/caam_ae.h /optee_os/core/drivers/firewall/stm32_rifsc.c /optee_os/core/drivers/firewall/stm32_risab.c /optee_os/core/drivers/stm32_hpdma.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/wdt/watchdog_sm.c /optee_os/core/include/drivers/wdt.h /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/thread_private.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/thread.c /optee_os/core/mm/core_mmu.c /optee_os/core/pta/tests/misc.c /optee_os/keys/default.pem libmbedtls/mbedtls/library/common.h /optee_os/mk/clang.mk /optee_os/mk/config.mk
76d920d3	25-Mar-2025	Raymond Mao <raymond.mao@linaro.org>	core: pta: add self tests for transfer list Add self tests for transfer list. Adapt CFG_TRANSFER_LIST with its dependencies and add CFG_TRANSFER_LIST_TEST. Signed-off-by: Raymond Mao <raymond.mao@l core: pta: add self tests for transfer list Add self tests for transfer list. Adapt CFG_TRANSFER_LIST with its dependencies and add CFG_TRANSFER_LIST_TEST. Signed-off-by: Raymond Mao <raymond.mao@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/kernel/stmm_sp.c /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/arch/riscv/riscv.mk /optee_os/core/core.mk /optee_os/core/kernel/dt.c /optee_os/core/kernel/transfer_list.c /optee_os/core/lib/libefi/hob.c /optee_os/core/lib/libefi/include/efi/efi_types.h /optee_os/core/lib/libefi/include/efi/hob.h /optee_os/core/lib/libefi/include/efi/hob_guid.h /optee_os/core/lib/libefi/include/efi/mmram.h /optee_os/core/lib/libefi/include/efi/mpinfo.h /optee_os/core/lib/libefi/sub.mk /optee_os/core/pta/tests/invoke.c /optee_os/core/pta/tests/misc.h /optee_os/core/pta/tests/sub.mk /optee_os/core/pta/tests/transfer_list.c libutee/include/pta_invoke_tests.h /optee_os/mk/clang.mk /optee_os/mk/config.mk
3a0fa646	28-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	libmbedtls: config: re-enable long long divisions This reverts commit d3ec4328a070 ("libmbedtls: config: disable long long divisions") to address performance regressions introduced by that commit. T libmbedtls: config: re-enable long long divisions This reverts commit d3ec4328a070 ("libmbedtls: config: disable long long divisions") to address performance regressions introduced by that commit. The commit can be reverted now that __udivti3() needed by the unsigned long long divisions is available again. Link: https://github.com/OP-TEE/optee_os/pull/7359 Link: https://github.com/OP-TEE/optee_os/issues/7374 Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/arch/arm/kernel/link.mk libmbedtls/include/mbedtls_config_kernel.h libmbedtls/include/mbedtls_config_uta.h
48952fd4	28-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	libutils: add division routines from LLVM compiler-rt Add division routines needed to provide __udivti3() needed for long long divisions in mbedtls. Selected files are imported from the compiler-rt libutils: add division routines from LLVM compiler-rt Add division routines needed to provide __udivti3() needed for long long divisions in mbedtls. Selected files are imported from the compiler-rt directory in LLVM version 20.1.3, tag llvmorg-20.1, to lib/libutils/compiler-rt with no local changes except for the added sub.mk files. Link: https://github.com/OP-TEE/optee_os/pull/7359 Link: https://github.com/OP-TEE/optee_os/issues/7374 Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/CHANGELOG.md /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/plat-k3/drivers/sa2ul.c /optee_os/core/arch/arm/plat-k3/platform_config.h /optee_os/core/drivers/crypto/stm32/stm32_cryp.c /optee_os/core/drivers/crypto/stm32/stm32_saes.c /optee_os/core/include/kernel/dt.h /optee_os/core/kernel/dt.c /optee_os/core/kernel/dt_driver.c /optee_os/core/tee/fs_htree.c libutils/compiler-rt/LICENSE.TXT libutils/compiler-rt/README.txt libutils/compiler-rt/lib/builtins/ashlti3.c libutils/compiler-rt/lib/builtins/int_div_impl.inc libutils/compiler-rt/lib/builtins/int_endianness.h libutils/compiler-rt/lib/builtins/int_lib.h libutils/compiler-rt/lib/builtins/int_types.h libutils/compiler-rt/lib/builtins/int_util.h libutils/compiler-rt/lib/builtins/sub.mk libutils/compiler-rt/lib/builtins/udivmodti4.c libutils/compiler-rt/lib/builtins/udivti3.c libutils/compiler-rt/lib/sub.mk libutils/compiler-rt/sub.mk libutils/sub.mk /optee_os/mk/config.mk
45c754ce	16-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: fix crash during syscall ftrace Syscall ftrace collects data during a syscall. get_fbuf() checks if thread_get_id_may_fail() != -1 to see if a function is called under normal thread execution. core: fix crash during syscall ftrace Syscall ftrace collects data during a syscall. get_fbuf() checks if thread_get_id_may_fail() != -1 to see if a function is called under normal thread execution. This can lead to an inconsistent state if a native interrupt occur while ftrace_enter() or ftrace_return() is recording data in the ftrace buffer. So fix this by using thread_is_in_normal_mode() to exclude ftrace during interrupt processing. Reported-by: Jerome Forissier <jerome.forissier@linaro.org> Closes: https://github.com/OP-TEE/optee_os/issues/7216 Fixes: 099918f6744c ("ftrace: Add support for syscall function tracer") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (vexpress-qemu_armv8a) show more ... /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/plat-spike/conf.mk /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/core.mk /optee_os/core/drivers/atmel_saic.c /optee_os/core/kernel/boot.c /optee_os/core/kernel/thread.c /optee_os/core/tee/fs_htree.c libutils/ext/ftrace/ftrace.c /optee_os/mk/config.mk
c3deb3d6	28-Mar-2025	Etienne Carriere <etienne.carriere@foss.st.com>	Squashed commit upgrading to mbedtls-3.6.3 Squash merging branch import/mbedtls-3.6.3. 83dd409f0591 ("Import mbedtls-3.6.3") aa3df5be08de ("mbedtls: remove default include/mbedtls/config.h") 10d3d4 Squashed commit upgrading to mbedtls-3.6.3 Squash merging branch import/mbedtls-3.6.3. 83dd409f0591 ("Import mbedtls-3.6.3") aa3df5be08de ("mbedtls: remove default include/mbedtls/config.h") 10d3d445f46f ("mbedtls: configure mbedtls to reach for config") 03fd7670bc8e ("libmbedtls: make mbedtls_mpi_mont*() available") 134b0c7c7577 ("libmbedtls: add mbedtls_mpi_init_mempool()") 84a14c2a9e2a ("libmedtls: mpi_miller_rabin: increase count limit") 5e39a372b06e ("libmbedtls: add interfaces in mbedtls for context memory operation") d5f89f104e2f ("libmbedtls: fix no CRT issue") 7efbd8164a57 ("libmbedtls: add SM2 curve") ef671e650a67 ("libmbedtls: add fault mitigation in mbedtls_rsa_rsassa_pss_verify_ext()") dd7fe0899a74 ("libmbedtls: add fault mitigation in mbedtls_rsa_rsassa_pkcs1_v15_verify()") 2ff56f350a3e ("libmbedtls: fix cipher_wrap.c for chacha20 and chachapoly") 63b52087554b ("libmbedtls: fix cipher_wrap.c for NIST AES Key Wrap mode") 1a615e16f58a ("libmbedtls: allow inclusion of arm_neon.h") 3de987540e82 ("libmbedtls: add CFG_CORE_UNSAFE_MODEXP and CFG_TA_MBEDTLS_UNSAFE_MODEXP") 878995ea5dee ("libmbedtls: use mempool_calloc() for temporary memory") 0a7b758bcd12 ("libmbedtls: fix build warning related to deprecated DTLS connect ID") e7332889098e ("libmbedtls: libmbedtls: sync with DTLS connect ID build fix") Signed-off-by: Etienne Carriere <etienne.carriere@foss.st.com> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (vexpress-qemu_virt) Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (vexpress-qemu_armv8a) show more ... /optee_os/core/mm/core_mmu.c libmbedtls/mbedtls/ChangeLog libmbedtls/mbedtls/SECURITY.md libmbedtls/mbedtls/include/mbedtls/build_info.h libmbedtls/mbedtls/include/mbedtls/check_config.h libmbedtls/mbedtls/include/mbedtls/config_adjust_legacy_crypto.h libmbedtls/mbedtls/include/mbedtls/config_adjust_legacy_from_psa.h libmbedtls/mbedtls/include/mbedtls/config_adjust_psa_superset_legacy.h libmbedtls/mbedtls/include/mbedtls/debug.h libmbedtls/mbedtls/include/mbedtls/entropy.h libmbedtls/mbedtls/include/mbedtls/error.h libmbedtls/mbedtls/include/mbedtls/gcm.h libmbedtls/mbedtls/include/mbedtls/net_sockets.h libmbedtls/mbedtls/include/mbedtls/psa_util.h libmbedtls/mbedtls/include/mbedtls/ssl.h libmbedtls/mbedtls/include/mbedtls/threading.h libmbedtls/mbedtls/include/psa/crypto_config.h libmbedtls/mbedtls/include/psa/crypto_extra.h libmbedtls/mbedtls/include/psa/crypto_sizes.h libmbedtls/mbedtls/library/aesni.c libmbedtls/mbedtls/library/bignum_core.c libmbedtls/mbedtls/library/bignum_core.h libmbedtls/mbedtls/library/bignum_core_invasive.h libmbedtls/mbedtls/library/ccm.c libmbedtls/mbedtls/library/common.h libmbedtls/mbedtls/library/constant_time_impl.h libmbedtls/mbedtls/library/ecp.c libmbedtls/mbedtls/library/error.c libmbedtls/mbedtls/library/net_sockets.c libmbedtls/mbedtls/library/pk.c libmbedtls/mbedtls/library/psa_crypto.c libmbedtls/mbedtls/library/psa_crypto_cipher.c libmbedtls/mbedtls/library/psa_crypto_core.h libmbedtls/mbedtls/library/psa_crypto_driver_wrappers.h libmbedtls/mbedtls/library/psa_crypto_ecp.c libmbedtls/mbedtls/library/psa_crypto_slot_management.c libmbedtls/mbedtls/library/psa_crypto_storage.h libmbedtls/mbedtls/library/psa_util.c libmbedtls/mbedtls/library/ssl_client.c libmbedtls/mbedtls/library/ssl_debug_helpers_generated.c libmbedtls/mbedtls/library/ssl_misc.h libmbedtls/mbedtls/library/ssl_msg.c libmbedtls/mbedtls/library/ssl_tls.c libmbedtls/mbedtls/library/ssl_tls12_client.c libmbedtls/mbedtls/library/ssl_tls12_server.c libmbedtls/mbedtls/library/ssl_tls13_client.c libmbedtls/mbedtls/library/ssl_tls13_server.c libmbedtls/mbedtls/library/threading.c libmbedtls/mbedtls/library/version_features.c
682ff6eb	23-Feb-2025	Jens Wiklander <jens.wiklander@linaro.org>	pta: stats: add field for fragmentation metric Add the field free2sum to struct pta_stats_alloc to enable xtest to calculate fragmenation metric for the heap. Signed-off-by: Jens Wiklander <jens.wi pta: stats: add field for fragmentation metric Add the field free2sum to struct pta_stats_alloc to enable xtest to calculate fragmenation metric for the heap. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... libutee/include/pta_stats.h libutils/isoc/bget_malloc.c
f288234f	07-Mar-2025	Jens Wiklander <jens.wiklander@linaro.org>	libutils: bget: add free2_sum to struct bpoolset Add the field free2_sum to struct bpoolset to be used to calculate a metric for heap fragmentation. The value is calculated and kept up to date when libutils: bget: add free2_sum to struct bpoolset Add the field free2_sum to struct bpoolset to be used to calculate a metric for heap fragmentation. The value is calculated and kept up to date when compiled with statistics (CFG_WITH_STATS=y) enabled. See xtest and [1] for how to use the new field. Link: https://asawicki.info/news_1757_a_metric_for_memory_fragmentation [1] Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/kernel/link.mk /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/riscv/include/kernel/misc_arch.h /optee_os/core/arch/riscv/include/kernel/thread_arch.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/include/sbi.h /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/link.mk /optee_os/core/arch/riscv/kernel/sbi.c /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/plat-sifive/conf.mk /optee_os/core/arch/riscv/plat-sifive/main.c /optee_os/core/arch/riscv/plat-sifive/platform_config.h /optee_os/core/arch/riscv/plat-sifive/sub.mk /optee_os/core/arch/riscv/plat-virt/platform_config.h /optee_os/core/drivers/firewall/stm32_rifsc.c /optee_os/core/drivers/imx_csu.c /optee_os/core/drivers/sifive_uart.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/sifive_uart.h /optee_os/core/include/kernel/boot.h /optee_os/ldelf/link.mk libutils/isoc/bget.c /optee_os/mk/compile.mk /optee_os/ta/link.mk
07603a1f	01-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	libutils: avoid unneeded zero init in realloc() In raw_malloc_flags(), remove the special case for user space where memory is always zero initialized regardless of MAF_ZERO_INIT. This removes a case libutils: avoid unneeded zero init in realloc() In raw_malloc_flags(), remove the special case for user space where memory is always zero initialized regardless of MAF_ZERO_INIT. This removes a case of unneeded zero init for realloc(). Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... libutils/isoc/bget_malloc.c
34611468	01-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	libutee: fix __utee_tcb_init() Replace realloc() calls with calls to malloc_flags() to make sure that newly allocated memory is zero initialized. Fixes: 9d224046e710 ("ldelf, libutee: add minimal T libutee: fix __utee_tcb_init() Replace realloc() calls with calls to malloc_flags() to make sure that newly allocated memory is zero initialized. Fixes: 9d224046e710 ("ldelf, libutee: add minimal Thread Local Storage support") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... libutee/tcb.c
93b037ac	01-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	libutee: TEE_Realloc(): avoid realloc() TEE_Realloc() and realloc() have slightly different behaviour. TEE_Realloc() must zero initialize newly allocated memory while realloc() isn't expected to do libutee: TEE_Realloc(): avoid realloc() TEE_Realloc() and realloc() have slightly different behaviour. TEE_Realloc() must zero initialize newly allocated memory while realloc() isn't expected to do that. So use malloc_flags() and raw_malloc_flags() with the MAF_ZERO_INIT flag to make sure that newly allocated memory is zero initialized. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... libutee/tee_api.c
b13e4076	01-Apr-2025	Jens Wiklander <jens.wiklander@linaro.org>	libutils: add raw_malloc_flags() Add raw_malloc_flags() as a counterpart to malloc_flags(). Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier libutils: add raw_malloc_flags() Add raw_malloc_flags() as a counterpart to malloc_flags(). Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/plat-rockchip/platform_config.h /optee_os/core/arch/arm/plat-rockchip/platform_rk3588.c /optee_os/core/pta/tests/misc.c libutils/isoc/bget_malloc.c libutils/isoc/include/malloc.h /optee_os/scripts/checkpatch.sh /optee_os/scripts/checkpatch_inc.sh /optee_os/ta/mk/build-user-ta.mk /optee_os/ta/mk/ta_dev_kit.mk /optee_os/ta/pkcs11/scripts/dump_ec_curve_params.sh /optee_os/ta/pkcs11/scripts/verify-helpers.sh /optee_os/ta/ta.mk
fa1190c6	20-Feb-2025	Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de>	core: suppress duplicate ubsan reports When ubsan panic mode is disabled, the same undefined behavior may be reported multiple times from the same code location. This change ensures that only the fi core: suppress duplicate ubsan reports When ubsan panic mode is disabled, the same undefined behavior may be reported multiple times from the same code location. This change ensures that only the first occurrence is logged. Signed-off-by: Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... libutils/ext/ubsan.c
949b0c0c	15-Jan-2025	Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de>	ta: enable ubsan support for TAs Introduce CFG_TA_SANITIZE_UNDEFINED config to sanitize trusted applications. If CFG_TA_SANITIZE_UNDEFINED is set sanitize flags are propagated to internal TAs (avb, ta: enable ubsan support for TAs Introduce CFG_TA_SANITIZE_UNDEFINED config to sanitize trusted applications. If CFG_TA_SANITIZE_UNDEFINED is set sanitize flags are propagated to internal TAs (avb, pkcs11, remoteproc, trusted_keys) and external TAs, which are built with the devkit. Signed-off-by: Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/arch/riscv/plat-spike/conf.mk libutils/ext/sub.mk libutils/ext/ubsan.c /optee_os/mk/config.mk /optee_os/ta/mk/ta_dev_kit.mk /optee_os/ta/ta.mk
ff3ed644	15-Jan-2025	Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de>	ldelf: enable ubsan support Ubsan support was previously limited to core code. This commit moves the ubsan runtime implementation to libutils, making it available for ldelf and trusted applications. ldelf: enable ubsan support Ubsan support was previously limited to core code. This commit moves the ubsan runtime implementation to libutils, making it available for ldelf and trusted applications. As a result, ldelf will now be built with ubsan support when CFG_CORE_SANITIZE_UNDEFINED is enabled. Additionally, to avoid potential infinite recursion, ubsan instrumentation is explicitly disabled for ubsan.c. Signed-off-by: Aleksandr Iashchenko <aleksandr.iashchenko@linutronix.de> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_syscfg.c /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/drivers/scmi-msg/entry.c /optee_os/core/drivers/scmi-msg/perf_domain.c /optee_os/core/drivers/scmi-msg/perf_domain.h /optee_os/core/drivers/scmi-msg/sub.mk /optee_os/core/drivers/stm32_cpu_opp.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/scmi-msg.h /optee_os/core/include/drivers/stm32_cpu_opp.h /optee_os/core/kernel/sub.mk /optee_os/ldelf/ldelf.mk libutils/ext/sub.mk libutils/ext/ubsan.c /optee_os/mk/config.mk
e1abe7d1	20-Mar-2025	Alvin Chang <alvinga@andestech.com>	libmbedtls: fix typo: CFG_TA_MEBDTLS_UNSAFE_MODEXP CFG_TA_"MEBDTLS"_UNSAFE_MODEXP is typo. This commit fixes it. Fixes: cb03400251f9 ("Squashed commit upgrading to mbedtls-3.6.2") Signed-off-by: Al libmbedtls: fix typo: CFG_TA_MEBDTLS_UNSAFE_MODEXP CFG_TA_"MEBDTLS"_UNSAFE_MODEXP is typo. This commit fixes it. Fixes: cb03400251f9 ("Squashed commit upgrading to mbedtls-3.6.2") Signed-off-by: Alvin Chang <alvinga@andestech.com> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/core/arch/arm/dts/stm32mp15xx-dhcor-avenger96.dtsi /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/kernel/thread.c libmbedtls/mbedtls/library/bignum.c /optee_os/mk/config.mk /optee_os/scripts/sign_rproc_fw.py
809e0744	26-Feb-2025	Jens Wiklander <jens.wiklander@linaro.org>	core: mm: add virt_page_alloc() Add virt_page_alloc() to allocate memory from physical pool and map it in a virtual address pool. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed- core: mm: add virt_page_alloc() Add virt_page_alloc() to allocate memory from physical pool and map it in a virtual address pool. Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/core/include/mm/page_alloc.h /optee_os/core/mm/page_alloc.c /optee_os/core/mm/sub.mk libutils/isoc/include/malloc_flags.h
12 3 4 5 6 7 8 9 10 >>...35