mk - OpenGrok history log for /optee_os/mk

Revision	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
33035005	04-Apr-2019	Etienne Carriere <etienne.carriere@linaro.org>	build: remove pedantic from build directives This change removes -pedantic from the build directive from all warning build level. The rational is that OP-TEE OS package no longer supports being buil build: remove pedantic from build directives This change removes -pedantic from the build directive from all warning build level. The rational is that OP-TEE OS package no longer supports being built in pedantic mode allowing now use of implementation sequence that are rejected in pedantic mode, for example using = { } for initializing structured local variables in a structure agnostic way which OP-TEE OS community as agreed to use. Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.shippable.yml /optee_os/core/core.mk /optee_os/core/crypto.mk /optee_os/lib/libmbedtls/core/aes.c /optee_os/lib/libmbedtls/core/aes_cbc.c /optee_os/lib/libmbedtls/core/aes_cmac.c /optee_os/lib/libmbedtls/core/aes_ctr.c /optee_os/lib/libmbedtls/core/aes_ecb.c /optee_os/lib/libmbedtls/core/bignum.c /optee_os/lib/libmbedtls/core/des3_cbc.c /optee_os/lib/libmbedtls/core/des3_ecb.c /optee_os/lib/libmbedtls/core/des_cbc.c /optee_os/lib/libmbedtls/core/des_ecb.c /optee_os/lib/libmbedtls/core/dh.c /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libmbedtls/core/hash.c /optee_os/lib/libmbedtls/core/hmac.c /optee_os/lib/libmbedtls/core/mbd_rand.h /optee_os/lib/libmbedtls/core/rsa.c /optee_os/lib/libmbedtls/core/sub.mk /optee_os/lib/libmbedtls/core/tomcrypt.c /optee_os/lib/libmbedtls/include/mbedtls_config_kernel.h compile.mk
77327d7a	15-Dec-2017	Edison Ai <edison.ai@arm.com>	libmbedtls: support mbedTLS in kernel mode Initial step of mbedtls cryptos integration. Directory created and interface file is drafted. All function interfaces are set to "not supported". The mbedt libmbedtls: support mbedTLS in kernel mode Initial step of mbedtls cryptos integration. Directory created and interface file is drafted. All function interfaces are set to "not supported". The mbedtls can be selected by specifying build flags "CFG_CRYPTOLIB_NAME=mbedtls" and "CFG_CRYPTOLIB_DIR=lib/libmbedtls" Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Edison Ai <edison.ai@arm.com> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/core.mk /optee_os/core/crypto.mk /optee_os/core/crypto/crypto.c /optee_os/core/lib/libtomcrypt/acipher_helpers.h /optee_os/core/lib/libtomcrypt/aes.c /optee_os/core/lib/libtomcrypt/cbc.c /optee_os/core/lib/libtomcrypt/dh.c /optee_os/core/lib/libtomcrypt/dsa.c /optee_os/core/lib/libtomcrypt/ecb.c /optee_os/core/lib/libtomcrypt/ecc.c /optee_os/core/lib/libtomcrypt/hash.c /optee_os/core/lib/libtomcrypt/include/tomcrypt_custom.h /optee_os/core/lib/libtomcrypt/include/tomcrypt_init.h /optee_os/core/lib/libtomcrypt/include/tomcrypt_mp.h /optee_os/core/lib/libtomcrypt/mpa_desc.c /optee_os/core/lib/libtomcrypt/mpi_desc.c /optee_os/core/lib/libtomcrypt/rsa.c /optee_os/core/lib/libtomcrypt/src/ciphers/sub.mk /optee_os/core/lib/libtomcrypt/src/encauth/gcm/gcm_mult_h_arm_ce.c /optee_os/core/lib/libtomcrypt/src/encauth/gcm/sub.mk /optee_os/core/lib/libtomcrypt/src/encauth/sub.mk /optee_os/core/lib/libtomcrypt/src/hashes/sha2/sub.mk /optee_os/core/lib/libtomcrypt/src/hashes/sub.mk /optee_os/core/lib/libtomcrypt/src/mac/sub.mk /optee_os/core/lib/libtomcrypt/src/math/fp/sub.mk /optee_os/core/lib/libtomcrypt/src/modes/sub.mk /optee_os/core/lib/libtomcrypt/src/pk/sub.mk /optee_os/core/lib/libtomcrypt/src/prngs/sub.mk /optee_os/core/lib/libtomcrypt/src/sub.mk /optee_os/core/lib/libtomcrypt/sub.mk /optee_os/core/lib/libtomcrypt/tomcrypt.c /optee_os/lib/libmbedtls/core/stubbed.c /optee_os/lib/libmbedtls/core/sub.mk /optee_os/lib/libmbedtls/include/mbedtls_config_kernel.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cipher.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cipher_internal.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cmac.h /optee_os/lib/libmbedtls/mbedtls/library/cipher.c /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/cmac.c /optee_os/lib/libmbedtls/mbedtls/library/md.c /optee_os/lib/libmbedtls/mbedtls/library/rsa.c /optee_os/lib/libmbedtls/sub.mk config.mk
471ce4b6	25-Mar-2019	Jens Wiklander <jens.wiklander@linaro.org>	Move CFG_CORE_MBEDTLS_MPI init to mk/config.mk Moves default assignment of CFG_CORE_MBEDTLS_MPI into mk/config.mk Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Jens Wiklan Move CFG_CORE_MBEDTLS_MPI init to mk/config.mk Moves default assignment of CFG_CORE_MBEDTLS_MPI into mk/config.mk Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/core.mk config.mk
68689d86	25-Mar-2019	Jens Wiklander <jens.wiklander@linaro.org>	Move CFG_CRYPTOLIB_{NAME,DIR} init to mk/config.mk Moves default initialization of CFG_CRYPTOLIB_NAME and CFG_CRYPTOLIB_DIR to mk/config.mk. Only assigns default y to CFG_CRYPTO_RSASSA_NA1 in case Move CFG_CRYPTOLIB_{NAME,DIR} init to mk/config.mk Moves default initialization of CFG_CRYPTOLIB_NAME and CFG_CRYPTOLIB_DIR to mk/config.mk. Only assigns default y to CFG_CRYPTO_RSASSA_NA1 in case CFG_CRYPTOLIB_NAME == tomcrypt. Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/kernel/link.mk /optee_os/core/core.mk /optee_os/core/crypto/aes-cts.c /optee_os/core/crypto/aes-gcm-sw.c /optee_os/core/crypto/sub.mk /optee_os/core/include/crypto/crypto.h /optee_os/core/lib/libtomcrypt/src/pk/dsa/dsa_import.c /optee_os/core/lib/libtomcrypt/src/tee_ltc_provider.c /optee_os/core/lib/libtomcrypt/sub.mk /optee_os/lib/libmbedtls/mbedtls/CONTRIBUTING.md /optee_os/lib/libmbedtls/mbedtls/ChangeLog /optee_os/lib/libmbedtls/mbedtls/README.md /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/aes.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/aesni.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/arc4.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/aria.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/asn1.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/asn1write.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/base64.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/bignum.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/blowfish.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/bn_mul.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/camellia.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ccm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/certs.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/chacha20.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/chachapoly.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/check_config.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cipher.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cipher_internal.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cmac.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/compat-1.3.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ctr_drbg.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/debug.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/des.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/dhm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecdh.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecdsa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecjpake.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecp.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecp_internal.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/entropy.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/entropy_poll.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/error.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/gcm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/havege.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/hkdf.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/hmac_drbg.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md2.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md4.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md5.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md_internal.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/memory_buffer_alloc.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/net.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/net_sockets.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/nist_kw.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/oid.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/padlock.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pem.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pk.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pk_internal.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs11.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs12.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs5.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform_time.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform_util.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/poly1305.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ripemd160.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/rsa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/rsa_internal.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha1.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha256.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha512.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_cache.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_ciphersuites.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_cookie.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_internal.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_ticket.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/threading.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/timing.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/version.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_crl.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_crt.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_csr.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/xtea.h /optee_os/lib/libmbedtls/mbedtls/library/aes.c /optee_os/lib/libmbedtls/mbedtls/library/aesni.c /optee_os/lib/libmbedtls/mbedtls/library/arc4.c /optee_os/lib/libmbedtls/mbedtls/library/aria.c /optee_os/lib/libmbedtls/mbedtls/library/asn1parse.c /optee_os/lib/libmbedtls/mbedtls/library/asn1write.c /optee_os/lib/libmbedtls/mbedtls/library/bignum.c /optee_os/lib/libmbedtls/mbedtls/library/blowfish.c /optee_os/lib/libmbedtls/mbedtls/library/camellia.c /optee_os/lib/libmbedtls/mbedtls/library/ccm.c /optee_os/lib/libmbedtls/mbedtls/library/certs.c /optee_os/lib/libmbedtls/mbedtls/library/chacha20.c /optee_os/lib/libmbedtls/mbedtls/library/chachapoly.c /optee_os/lib/libmbedtls/mbedtls/library/cipher.c /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/cmac.c /optee_os/lib/libmbedtls/mbedtls/library/ctr_drbg.c /optee_os/lib/libmbedtls/mbedtls/library/debug.c /optee_os/lib/libmbedtls/mbedtls/library/des.c /optee_os/lib/libmbedtls/mbedtls/library/dhm.c /optee_os/lib/libmbedtls/mbedtls/library/ecdh.c /optee_os/lib/libmbedtls/mbedtls/library/ecdsa.c /optee_os/lib/libmbedtls/mbedtls/library/ecjpake.c /optee_os/lib/libmbedtls/mbedtls/library/ecp.c /optee_os/lib/libmbedtls/mbedtls/library/ecp_curves.c /optee_os/lib/libmbedtls/mbedtls/library/entropy.c /optee_os/lib/libmbedtls/mbedtls/library/entropy_poll.c /optee_os/lib/libmbedtls/mbedtls/library/error.c /optee_os/lib/libmbedtls/mbedtls/library/gcm.c /optee_os/lib/libmbedtls/mbedtls/library/havege.c /optee_os/lib/libmbedtls/mbedtls/library/hkdf.c /optee_os/lib/libmbedtls/mbedtls/library/hmac_drbg.c /optee_os/lib/libmbedtls/mbedtls/library/md.c /optee_os/lib/libmbedtls/mbedtls/library/md2.c /optee_os/lib/libmbedtls/mbedtls/library/md4.c /optee_os/lib/libmbedtls/mbedtls/library/md5.c /optee_os/lib/libmbedtls/mbedtls/library/md_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/memory_buffer_alloc.c /optee_os/lib/libmbedtls/mbedtls/library/net_sockets.c /optee_os/lib/libmbedtls/mbedtls/library/nist_kw.c /optee_os/lib/libmbedtls/mbedtls/library/oid.c /optee_os/lib/libmbedtls/mbedtls/library/pem.c /optee_os/lib/libmbedtls/mbedtls/library/pk.c /optee_os/lib/libmbedtls/mbedtls/library/pk_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/pkcs12.c /optee_os/lib/libmbedtls/mbedtls/library/pkcs5.c /optee_os/lib/libmbedtls/mbedtls/library/pkparse.c /optee_os/lib/libmbedtls/mbedtls/library/pkwrite.c /optee_os/lib/libmbedtls/mbedtls/library/platform.c /optee_os/lib/libmbedtls/mbedtls/library/platform_util.c /optee_os/lib/libmbedtls/mbedtls/library/poly1305.c /optee_os/lib/libmbedtls/mbedtls/library/ripemd160.c /optee_os/lib/libmbedtls/mbedtls/library/rsa.c /optee_os/lib/libmbedtls/mbedtls/library/rsa_internal.c /optee_os/lib/libmbedtls/mbedtls/library/sha1.c /optee_os/lib/libmbedtls/mbedtls/library/sha256.c /optee_os/lib/libmbedtls/mbedtls/library/sha512.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_cache.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_ciphersuites.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_cli.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_cookie.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_srv.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_ticket.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls.c /optee_os/lib/libmbedtls/mbedtls/library/threading.c /optee_os/lib/libmbedtls/mbedtls/library/timing.c /optee_os/lib/libmbedtls/mbedtls/library/version.c /optee_os/lib/libmbedtls/mbedtls/library/version_features.c /optee_os/lib/libmbedtls/mbedtls/library/x509.c /optee_os/lib/libmbedtls/mbedtls/library/x509_create.c /optee_os/lib/libmbedtls/mbedtls/library/x509_crl.c /optee_os/lib/libmbedtls/mbedtls/library/x509_crt.c /optee_os/lib/libmbedtls/mbedtls/library/x509_csr.c /optee_os/lib/libmbedtls/mbedtls/library/x509write_crt.c /optee_os/lib/libmbedtls/mbedtls/library/x509write_csr.c /optee_os/lib/libmbedtls/mbedtls/library/xtea.c /optee_os/lib/libmbedtls/sub.mk config.mk
7dfff131	20-Dec-2018	Jerome Forissier <jerome.forissier@linaro.org>	core: user_ta: implement ASLR for TAs Introduces CFG_TA_ASLR to enable Address Space Layout Randomization of Trusted Applications. ASLR makes the exploitation of memory corruption vulnerabilities ha core: user_ta: implement ASLR for TAs Introduces CFG_TA_ASLR to enable Address Space Layout Randomization of Trusted Applications. ASLR makes the exploitation of memory corruption vulnerabilities harder. The feature is disabled by default except for the configurations I could test (QEMU and HiKey960). When CFG_TA_ASLR=y, the stack and subsequent ELF file(s) needed by the TA are mapped into the user VA space with a random offset comprised between CFG_TA_ASLR_MIN_OFFSET_PAGES and CFG_TA_ASLR_MAX_OFFSET_PAGES pages (that is between 0 and 128 pages by default). Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (QEMU, HiKey960) Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/kernel/generic_boot.c /optee_os/core/arch/arm/kernel/user_ta.c /optee_os/core/arch/arm/plat-hikey/conf.mk /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-zynqmp/platform_config.h /optee_os/core/crypto/aes-gcm-ghash-tbl.c /optee_os/core/crypto/aes-gcm.c /optee_os/core/crypto/cbc-mac.c /optee_os/core/crypto/crypto.c /optee_os/core/crypto/sub.mk /optee_os/core/drivers/stm32_i2c.c /optee_os/core/drivers/sub.mk /optee_os/core/include/crypto/crypto_impl.h /optee_os/core/include/drivers/stm32_i2c.h /optee_os/core/lib/libtomcrypt/cbc.c /optee_os/core/lib/libtomcrypt/ccm.c /optee_os/core/lib/libtomcrypt/cmac.c /optee_os/core/lib/libtomcrypt/ctr.c /optee_os/core/lib/libtomcrypt/cts.c /optee_os/core/lib/libtomcrypt/des2_key.h /optee_os/core/lib/libtomcrypt/ecb.c /optee_os/core/lib/libtomcrypt/gcm.c /optee_os/core/lib/libtomcrypt/hash.c /optee_os/core/lib/libtomcrypt/hmac.c /optee_os/core/lib/libtomcrypt/src/tee_ltc_provider.c /optee_os/core/lib/libtomcrypt/sub.mk /optee_os/core/lib/libtomcrypt/xts.c /optee_os/core/tee/tee_fs_key_manager.c /optee_os/lib/libutee/base64.c /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutils/ext/include/types_ext.h /optee_os/lib/libutils/ext/include/util.h /optee_os/lib/libutils/ext/trace.c config.mk /optee_os/scripts/symbolize.py /optee_os/typedefs.checkpatch
64718c93	29-May-2018	Jerome Forissier <jerome.forissier@linaro.org>	Allow building libutils etc. as shared libraries When CFG_ULIBS_SHARED=y (default n), build libutils, libmpa/libmbedtls and libutee as shared libraries (.so). The static archives (.a) are still prod Allow building libutils etc. as shared libraries When CFG_ULIBS_SHARED=y (default n), build libutils, libmpa/libmbedtls and libutee as shared libraries (.so). The static archives (.a) are still produced. The linker uses shared libraries by default when present so TAs just need to be re-built to use the shared libraries. For the time being, in-tree TAs are always linked statically for practical reasons. Indeed, in-tree TAs (such as ta/avb) are likely to be used as "early TAs". If such a TA was linked against shared libraries, then those libraries would need to be installed in the "early TA" area, too. While this works fine technically, it requires some more steps in the Makefiles to make sure the proper dependencies are installed and also it would mean that those libraries take precedence over the ones potentially installed in the REE FS etc. In other words, it would raise questions that we do not want nor need to address now. Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/kernel/elf_load.c config.mk /optee_os/ta/arch/arm/link.mk /optee_os/ta/mk/build-user-ta.mk /optee_os/ta/ta.mk
e59b134d	29-May-2018	Jerome Forissier <jerome.forissier@linaro.org>	mk/lib.mk: add support for producing shared user libraries This commit adds the infrastructure to build libutils, libmpa/ libmbedtls etc. as shared objects (.so). Signed-off-by: Jerome Forissier <j mk/lib.mk: add support for producing shared user libraries This commit adds the infrastructure to build libutils, libmpa/ libmbedtls etc. as shared objects (.so). Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/kernel/generic_boot.c /optee_os/core/arch/arm/kernel/pseudo_ta.c /optee_os/core/arch/arm/kernel/tee_time_arm_cntpct.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/unwind_arm32.c /optee_os/core/arch/arm/kernel/user_ta.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/pta/gprof.c /optee_os/core/arch/arm/tee/entry_std.c /optee_os/core/drivers/tzc380.c /optee_os/core/drivers/tzc400.c /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/lib/libtomcrypt/src/tee_ltc_provider.c /optee_os/core/tee/tee_obj.c /optee_os/core/tee/tee_rpmb_fs.c /optee_os/core/tee/tee_svc_storage.c /optee_os/lib/libutee/include/pta_invoke_tests.h lib.mk
7db24ad6	07-Feb-2019	Jerome Forissier <jerome.forissier@linaro.org>	core: REE FS TAs: add option to verify signature before processing Adds configuration flag CFG_REE_FS_TA_BUFFERED, default enabled. A new TA store is introduced which depends on the TEE FS TA store core: REE FS TAs: add option to verify signature before processing Adds configuration flag CFG_REE_FS_TA_BUFFERED, default enabled. A new TA store is introduced which depends on the TEE FS TA store to load the whole binary into a temporary buffer in secure DDR and authenticate it before being processed further. This reduces the attack surface of the TEE core in case of a vulnerability in the ELF loader, at the expense of increased memory usage at load time. Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Reported-by: Bastien Simondi <bsimondi@netflix.com> [3.6] Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/kernel/ree_fs_ta.c config.mk
77cb2a4d	06-Feb-2019	Jerome Forissier <jerome.forissier@linaro.org>	mk/config.mk: remove untrue comment The comment stating that the REE filesystem is the only possible storage to load Trusted Applications from is not true anymore. As described in documentation/opte mk/config.mk: remove untrue comment The comment stating that the REE filesystem is the only possible storage to load Trusted Applications from is not true anymore. As described in documentation/optee_design.md, two other options are possible (early TAs and secure storage). Therefore, remove the comment. Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Joakim Bech <joakim.bech@linaro.org> show more ... /optee_os/.shippable.yml /optee_os/.travis.yml /optee_os/LICENSE /optee_os/MAINTAINERS /optee_os/README.md /optee_os/core/arch/arm/dts/stm32mp157c.dtsi /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/kernel/generic_boot.h /optee_os/core/arch/arm/include/mm/core_mmu.h /optee_os/core/arch/arm/kernel/elf_load.c /optee_os/core/arch/arm/kernel/generic_boot.c /optee_os/core/arch/arm/kernel/generic_entry_a64.S /optee_os/core/arch/arm/kernel/pseudo_ta.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/kernel/user_ta.c /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/mobj.c /optee_os/core/arch/arm/mm/tee_mmu.c /optee_os/core/arch/arm/mm/tee_pager.c /optee_os/core/arch/arm/plat-bcm/main.c /optee_os/core/arch/arm/plat-bcm/platform_config.h /optee_os/core/arch/arm/plat-d02/main.c /optee_os/core/arch/arm/plat-hikey/main.c /optee_os/core/arch/arm/plat-hikey/spi_test.c /optee_os/core/arch/arm/plat-hisilicon/conf.mk /optee_os/core/arch/arm/plat-hisilicon/hi3519av100.h /optee_os/core/arch/arm/plat-hisilicon/hi3519av100_plat_init.S /optee_os/core/arch/arm/plat-hisilicon/main.c /optee_os/core/arch/arm/plat-hisilicon/platform_config.h /optee_os/core/arch/arm/plat-hisilicon/psci.c /optee_os/core/arch/arm/plat-hisilicon/sub.mk /optee_os/core/arch/arm/plat-imx/imx-common.c /optee_os/core/arch/arm/plat-imx/imx6.c /optee_os/core/arch/arm/plat-imx/imx6ul.c /optee_os/core/arch/arm/plat-imx/imx7.c /optee_os/core/arch/arm/plat-imx/imx_pl310.c /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-imx/mmdc.c /optee_os/core/arch/arm/plat-imx/pm/cpuidle-imx7d.c /optee_os/core/arch/arm/plat-imx/pm/gpcv2.c /optee_os/core/arch/arm/plat-imx/pm/pm-imx7.c /optee_os/core/arch/arm/plat-imx/pm/psci.c /optee_os/core/arch/arm/plat-k3/main.c /optee_os/core/arch/arm/plat-ls/conf.mk /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-marvell/armada3700/hal_sec_perf.c /optee_os/core/arch/arm/plat-marvell/armada7k8k/hal_sec_perf.c /optee_os/core/arch/arm/plat-marvell/main.c /optee_os/core/arch/arm/plat-mediatek/main.c /optee_os/core/arch/arm/plat-poplar/main.c /optee_os/core/arch/arm/plat-poplar/platform_config.h /optee_os/core/arch/arm/plat-rcar/conf.mk /optee_os/core/arch/arm/plat-rcar/main.c /optee_os/core/arch/arm/plat-rcar/platform_config.h /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rockchip/platform.c /optee_os/core/arch/arm/plat-rockchip/psci_rk322x.c /optee_os/core/arch/arm/plat-rpi3/main.c /optee_os/core/arch/arm/plat-rpi3/platform_config.h /optee_os/core/arch/arm/plat-sam/main.c /optee_os/core/arch/arm/plat-sam/matrix.c /optee_os/core/arch/arm/plat-sam/platform_config.h /optee_os/core/arch/arm/plat-sprd/main.c /optee_os/core/arch/arm/plat-sprd/platform_config.h /optee_os/core/arch/arm/plat-stm/main.c /optee_os/core/arch/arm/plat-stm/rng_support.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_clk.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_etzpc.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_rcc.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_rcc.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/sub.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/pm/psci.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-sunxi/main.c /optee_os/core/arch/arm/plat-sunxi/psci.c /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-synquacer/rng_pta.c /optee_os/core/arch/arm/plat-ti/main.c /optee_os/core/arch/arm/plat-ti/platform_config.h /optee_os/core/arch/arm/plat-ti/sm_platform_handler_a9.c /optee_os/core/arch/arm/plat-ti/ti_pl310.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-zynq7k/main.c /optee_os/core/arch/arm/plat-zynqmp/main.c /optee_os/core/arch/arm/plat-zynqmp/platform_config.h /optee_os/core/arch/arm/pta/core_self_tests.c /optee_os/core/arch/arm/pta/secstor_ta_mgmt.c /optee_os/core/arch/arm/tee/entry_fast.c /optee_os/core/arch/arm/tee/entry_std.c /optee_os/core/crypto/aes-gcm.c /optee_os/core/crypto/signed_hdr.c /optee_os/core/drivers/atmel_uart.c /optee_os/core/drivers/cdns_uart.c /optee_os/core/drivers/dra7_rng.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/hi16xx_rng.c /optee_os/core/drivers/hi16xx_uart.c /optee_os/core/drivers/imx_snvs.c /optee_os/core/drivers/imx_uart.c /optee_os/core/drivers/imx_wdog.c /optee_os/core/drivers/mvebu_uart.c /optee_os/core/drivers/ns16550.c /optee_os/core/drivers/pl011.c /optee_os/core/drivers/pl022_spi.c /optee_os/core/drivers/pl061_gpio.c /optee_os/core/drivers/scif.c /optee_os/core/drivers/serial8250_uart.c /optee_os/core/drivers/sprd_uart.c /optee_os/core/drivers/stih_asc.c /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_etzpc.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/drivers/sub.mk /optee_os/core/drivers/tzc380.c /optee_os/core/drivers/tzc400.c /optee_os/core/include/drivers/stm32_bsec.h /optee_os/core/include/drivers/stm32_etzpc.h /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/io.h /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/lib/libtomcrypt/include/tomcrypt_custom.h /optee_os/core/lib/libtomcrypt/src/mpa_desc.c /optee_os/core/lib/libtomcrypt/src/mpi_desc.c /optee_os/core/lib/libtomcrypt/src/tee_ltc_provider.c /optee_os/core/tee/fs_htree.c /optee_os/core/tee/tee_rpmb_fs.c /optee_os/core/tee/tee_svc.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/lib/libutee/include/tee_api.h /optee_os/lib/libutee/tee_api.c /optee_os/lib/libutee/tee_api_arith_mpa.c /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutee/tee_api_objects.c /optee_os/lib/libutee/tee_api_operations.c /optee_os/lib/libutils/ext/consttime_memcmp.c /optee_os/lib/libutils/ext/include/mempool.h /optee_os/lib/libutils/ext/include/string_ext.h /optee_os/lib/libutils/ext/mempool.c /optee_os/lib/libutils/ext/sub.mk /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/malloc.h /optee_os/lib/libutils/isoc/isalnum.c /optee_os/lib/libutils/isoc/iscntrl.c /optee_os/lib/libutils/isoc/isgraph.c /optee_os/lib/libutils/isoc/islower.c /optee_os/lib/libutils/isoc/isprint.c /optee_os/lib/libutils/isoc/ispunct.c /optee_os/lib/libutils/isoc/sub.mk /optee_os/lib/libutils/isoc/toupper.c config.mk /optee_os/ta/arch/arm/link.mk
c4e8be26	30-May-2018	Volodymyr Babchuk <vlad.babchuk@gmail.com>	virt: add virtualization subsystem This patch adds virtualization framework to OP-TEE. Signed-off-by: Volodymyr Babchuk <vlad.babchuk@gmail.com> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> /optee_os/MAINTAINERS /optee_os/core/arch/arm/include/kernel/thread.h /optee_os/core/arch/arm/include/mm/core_mmu.h /optee_os/core/arch/arm/kernel/generic_boot.c /optee_os/core/arch/arm/kernel/sub.mk /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/trace_ext.c /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/core_mmu_private.h /optee_os/core/arch/arm/mm/core_mmu_v7.c /optee_os/core/arch/arm/mm/tee_mm.c /optee_os/core/arch/arm/mm/tee_pager.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/drivers/pl011.c /optee_os/core/include/kernel/virtualization.h /optee_os/core/include/mm/tee_mm.h /optee_os/core/kernel/console.c /optee_os/lib/libutils/ext/include/string_ext.h /optee_os/lib/libutils/ext/nex_strdup.c /optee_os/lib/libutils/ext/sub.mk /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/stack_check.c config.mk
15216d4d	06-Feb-2018	Volodymyr Babchuk <vlad.babchuk@gmail.com>	virt: add nexus memory area This patch is the first in series of patches that split OP-TEE RW memory into two regions: nexus memory and TEE memory. Nexus memory will be always mapped and it will be virt: add nexus memory area This patch is the first in series of patches that split OP-TEE RW memory into two regions: nexus memory and TEE memory. Nexus memory will be always mapped and it will be used to store all data that is vital for OP-TEE core and is not bound to virtual guests. TEE memory is a memory that holds data specific for certain guest. There will be TEE memory bank for every guest and it will be mapped into OP-TEE address space only during call from that guest. This patch adds nexus memory and moves stacks into it. Also it provides __nex_bss and __nex_data macros, so one can easily set right section for a variable. Signed-off-by: Volodymyr Babchuk <vlad.babchuk@gmail.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/include/kernel/linker.h /optee_os/core/arch/arm/include/mm/core_mmu.h /optee_os/core/arch/arm/kernel/generic_entry_a32.S /optee_os/core/arch/arm/kernel/generic_entry_a64.S /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/link_dummy.ld /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/pta/core_self_tests.c /optee_os/core/arch/arm/pta/stats.c /optee_os/lib/libutils/ext/include/compiler.h config.mk
386fc264	05-Feb-2018	Volodymyr Babchuk <vlad.babchuk@gmail.com>	bget_malloc: add nex_malloc pool If virtualization enabled, this pool will be used to allocate memory for OP-TEE nexus needs. Without virtualization, generic malloc pool will be used. Signed-off-by bget_malloc: add nex_malloc pool If virtualization enabled, this pool will be used to allocate memory for OP-TEE nexus needs. Without virtualization, generic malloc pool will be used. Signed-off-by: Volodymyr Babchuk <vlad.babchuk@gmail.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.shippable.yml /optee_os/MAINTAINERS /optee_os/README.md /optee_os/core/arch/arm/include/kernel/linker.h /optee_os/core/arch/arm/kernel/generic_boot.c /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/link_dummy.ld /optee_os/core/arch/arm/kernel/ree_fs_ta.c /optee_os/core/arch/arm/kernel/user_ta.c /optee_os/core/arch/arm/plat-bcm/conf.mk /optee_os/core/arch/arm/plat-bcm/main.c /optee_os/core/arch/arm/plat-bcm/platform_config.h /optee_os/core/arch/arm/plat-bcm/sub.mk /optee_os/core/arch/arm/plat-rcar/conf.mk /optee_os/core/arch/arm/plat-rcar/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/scripts/stm32image.py /optee_os/core/arch/arm/pta/stats.c /optee_os/core/lib/libtomcrypt/src/tee_ltc_provider.c /optee_os/core/tee/tee_fs_key_manager.c /optee_os/documentation/external_libraries.rst /optee_os/lib/libutils/isoc/bget.c /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/malloc.h /optee_os/lib/libutils/isoc/sub.mk config.mk /optee_os/scripts/bin_to_c.py
3ec2cabc	28-Jan-2019	Victor Chong <victor.chong@linaro.org>	mk/aosp_optee.mk: remove cp -u option AOSP's Toybox's version of cp doesn't support the -u option Signed-off-by: Victor Chong <victor.chong@linaro.org> Signed-off-by: Yongqin Liu <yongqin.liu@linar mk/aosp_optee.mk: remove cp -u option AOSP's Toybox's version of cp doesn't support the -u option Signed-off-by: Victor Chong <victor.chong@linaro.org> Signed-off-by: Yongqin Liu <yongqin.liu@linaro.org> Reviewed-by: Joakim Bech <joakim.bech@linaro.org> show more ... /optee_os/CHANGELOG.md /optee_os/core/arch/arm/kernel/ree_fs_ta.c /optee_os/core/arch/arm/kernel/secstor_ta.c /optee_os/core/arch/arm/kernel/thread_a32.S /optee_os/core/arch/arm/kernel/user_ta.c /optee_os/core/arch/arm/mm/tee_mmu.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/tee/entry_std.c /optee_os/core/crypto/signed_hdr.c /optee_os/core/include/optee_msg.h /optee_os/core/kernel/lockdep.c /optee_os/core/tee/tee_fs_key_manager.c /optee_os/core/tee/tee_ree_fs.c /optee_os/core/tee/tee_svc.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/core/tee/tee_svc_storage.c /optee_os/lib/libutils/ext/trace.c aosp_optee.mk /optee_os/scripts/symbolize.py
8bd53f40	18-Jan-2019	Jerome Forissier <jerome.forissier@linaro.org>	Update revision for release tag 3.4.0-rc1 Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> /optee_os/core/arch/arm/plat-hikey/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-synquacer/rng_pta.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/include/console.h /optee_os/core/include/drivers/stm32_uart.h /optee_os/core/include/kernel/dt.h /optee_os/core/kernel/console.c /optee_os/core/kernel/dt.c /optee_os/lib/libmbedtls/mbedtls/library/bignum.c /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutils/ext/include/atomic.h /optee_os/lib/libutils/ext/mempool.c config.mk /optee_os/scripts/gen_hashed_bin.py
0b611081	07-Jan-2019	Sumit Garg <sumit.garg@linaro.org>	core: pta: Add device pseudo TA This pseudo TA enumerates OP-TEE pseudo TAs which can act as devices/ services for Linux TEE bus driver. For differentiation of such devices, added TA_FLAG_DEVICE_ENU core: pta: Add device pseudo TA This pseudo TA enumerates OP-TEE pseudo TAs which can act as devices/ services for Linux TEE bus driver. For differentiation of such devices, added TA_FLAG_DEVICE_ENUM optional flag in pseudo TA header. Signed-off-by: Sumit Garg <sumit.garg@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/Makefile /optee_os/core/arch/arm/include/kernel/delay.h /optee_os/core/arch/arm/include/kernel/pseudo_ta.h /optee_os/core/arch/arm/include/mm/core_memprot.h /optee_os/core/arch/arm/kernel/delay.c /optee_os/core/arch/arm/kernel/pseudo_ta.c /optee_os/core/arch/arm/kernel/thread_a32.S /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/mm/mobj.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/imx-regs.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_rcc.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_rcc.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/sub.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/pm/psci.c /optee_os/core/arch/arm/plat-stm32mp1/pm/sub.mk /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp1/sub.mk /optee_os/core/arch/arm/plat-synquacer/rng_pta.c /optee_os/core/arch/arm/plat-synquacer/rng_pta_client.h /optee_os/core/arch/arm/pta/benchmark.c /optee_os/core/arch/arm/pta/device.c /optee_os/core/arch/arm/pta/sub.mk /optee_os/core/drivers/gic.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/include/drivers/serial.h /optee_os/core/tee/tee_svc_storage.c /optee_os/lib/libutee/include/pta_device.h /optee_os/lib/libutee/include/user_ta_header.h config.mk /optee_os/scripts/gen_hashed_bin.py /optee_os/scripts/gen_ld_sects.py /optee_os/ta/avb/entry.c /optee_os/ta/avb/include/ta_avb.h
24d49094	17-Dec-2018	Jerome Forissier <jerome.forissier@linaro.org>	Document CFG_USER_TA_TARGETS and CFG_USER_TA_TARGET_<ta-name> Document the configuration flags that controls the target architecture for user mode libraries and in-tree TAs. Signed-off-by: Jerome F Document CFG_USER_TA_TARGETS and CFG_USER_TA_TARGET_<ta-name> Document the configuration flags that controls the target architecture for user mode libraries and in-tree TAs. Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... config.mk
dc701d99	14-Dec-2018	Jerome Forissier <jerome.forissier@linaro.org>	Introduce CFG_USER_TA_TARGETS to select user mode architecture(s) This change introduces CFG_USER_TA_TARGETS to allow the configuration directives to select the architectures for which userspace TA Introduce CFG_USER_TA_TARGETS to select user mode architecture(s) This change introduces CFG_USER_TA_TARGETS to allow the configuration directives to select the architectures for which userspace TA and TA libraries shall be built. The only use case for the moment is to be able to build only 32 or 64-bit libraries and TAs when the platform would otherwise support both 32 and 64-bit. See the example below. If CFG_USER_TA_TARGETS is undefined or empty, all the architectures supported by the platform are built. If CFG_USER_TA_TARGETS contains an unsupported value, the build will report an error. Examples: $ make PLATFORM=hikey CFG_ARM64_core=y # Builds both 32 and 64-bit userspace $ make PLATFORM=hikey CFG_ARM64_core=y \ CFG_USER_TA_TARGETS="ta_arm32 ta_arm64" # Same as above $ make PLATFORM=hikey CFG_ARM64_core=y CFG_USER_TA_TARGETS=ta_arm32 # Builds only 32-bit userspace Suggested-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/.shippable.yml /optee_os/MAINTAINERS /optee_os/Makefile /optee_os/README.md /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/dts/stm32mp157-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/dts/stm32mp157c-ev1.dts /optee_os/core/arch/arm/dts/stm32mp157c.dtsi /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/kernel/generic_boot.h /optee_os/core/arch/arm/include/kernel/timer.h /optee_os/core/arch/arm/include/kernel/user_ta.h /optee_os/core/arch/arm/include/mm/core_memprot.h /optee_os/core/arch/arm/kernel/generic_boot.c /optee_os/core/arch/arm/kernel/sub.mk /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/kernel/thread_private.h /optee_os/core/arch/arm/kernel/timer_a64.c /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/plat-d02/conf.mk /optee_os/core/arch/arm/plat-hikey/conf.mk /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/imx-regs.h /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-imx/sub.mk /optee_os/core/arch/arm/plat-k3/conf.mk /optee_os/core/arch/arm/plat-ls/conf.mk /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-ls/platform_config.h /optee_os/core/arch/arm/plat-marvell/conf.mk /optee_os/core/arch/arm/plat-mediatek/conf.mk /optee_os/core/arch/arm/plat-poplar/conf.mk /optee_os/core/arch/arm/plat-rcar/conf.mk /optee_os/core/arch/arm/plat-rockchip/conf.mk /optee_os/core/arch/arm/plat-rpi3/conf.mk /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sprd/conf.mk /optee_os/core/arch/arm/plat-stm/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/link.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/scripts/stm32image.py /optee_os/core/arch/arm/plat-sunxi/conf.mk /optee_os/core/arch/arm/plat-synquacer/conf.mk /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-synquacer/platform_config.h /optee_os/core/arch/arm/plat-synquacer/rng_pta.c /optee_os/core/arch/arm/plat-synquacer/rng_pta.h /optee_os/core/arch/arm/plat-synquacer/rng_pta_client.h /optee_os/core/arch/arm/plat-synquacer/sub.mk /optee_os/core/arch/arm/plat-ti/conf.mk /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-zynq7k/conf.mk /optee_os/core/arch/arm/plat-zynqmp/conf.mk /optee_os/core/arch/arm/pta/sub.mk /optee_os/core/arch/arm/tee/arch_svc.c /optee_os/core/arch/arm/tee/entry_fast.c /optee_os/core/crypto.mk /optee_os/core/drivers/imx_wdog.c /optee_os/core/drivers/pl011.c /optee_os/core/drivers/serial8250_uart.c /optee_os/core/include/crypto/crypto.h /optee_os/core/include/dt-bindings/clock/stm32mp1-clks.h /optee_os/core/include/dt-bindings/gpio/gpio.h /optee_os/core/include/dt-bindings/interrupt-controller/arm-gic.h /optee_os/core/include/dt-bindings/interrupt-controller/irq.h /optee_os/core/include/dt-bindings/pinctrl/stm32-pinfunc.h /optee_os/core/include/dt-bindings/reset/stm32mp1-resets.h /optee_os/core/include/io.h /optee_os/core/include/kernel/pm.h /optee_os/core/kernel/console.c /optee_os/core/kernel/pm.c /optee_os/core/kernel/sub.mk /optee_os/core/lib/libtomcrypt/include/tomcrypt_custom.h /optee_os/core/lib/libtomcrypt/include/tomcrypt_hash.h /optee_os/core/lib/libtomcrypt/src/hashes/sha2/sha512_256.c /optee_os/core/lib/libtomcrypt/src/hashes/sha2/sub.mk /optee_os/core/lib/libtomcrypt/src/tee_ltc_provider.c /optee_os/core/sub.mk /optee_os/core/tee/sub.mk /optee_os/documentation/dt-bindings/README.txt /optee_os/documentation/optee_design.md /optee_os/documentation/porting_guidelines.md /optee_os/lib/libmbedtls/include/mbedtls_config_uta.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/bignum.h /optee_os/lib/libmbedtls/mbedtls/library/bignum.c /optee_os/lib/libutee/arch/arm/utee_syscalls_asm.S /optee_os/lib/libutee/include/tee_syscall_numbers.h /optee_os/lib/libutee/sub.mk /optee_os/lib/libutee/tee_api_arith_mpa.c /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutils/ext/include/mempool.h /optee_os/lib/libutils/ext/mempool.c aosp_optee.mk /optee_os/scripts/checkpatch_inc.sh /optee_os/ta/mk/build-user-ta.mk /optee_os/ta/mk/ta_dev_kit.mk /optee_os/ta/ta.mk /optee_os/typedefs.checkpatch
0a3ad9b6	19-Nov-2018	Bryan O'Donoghue <bryan.odonoghue@linaro.org>	core: generic_boot: Add add_dt_overlay_fragment() This patch adds a dt routine add_dt_overlay_fragment(). This purpose of which is to encapsulate the dynamic FDT node entries OPTEE provides inside o core: generic_boot: Add add_dt_overlay_fragment() This patch adds a dt routine add_dt_overlay_fragment(). This purpose of which is to encapsulate the dynamic FDT node entries OPTEE provides inside of a fragment@0 { target-path = "/"; __overlay__ { /* OPTEE nodes go here */ }; }; A subsequent set of patches will wrapper up existing dynamic OPTEE nodes - /firmware/optee - /psci - /reserved/memory optee@0xaddress Once done it will be possible for a DTB in memory to be populated with OPTEE fragments and for a subsequent bootloader to merge the OPTEE populated overlay into a DTB loaded by a later stage. if CFG_EXTERNAL_DTB_OVERLAY is not defined then this code has no effect. Signed-off-by: Bryan O'Donoghue <bryan.odonoghue@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/include/kernel/linker.h /optee_os/core/arch/arm/include/kernel/pseudo_ta.h /optee_os/core/arch/arm/include/kernel/user_ta.h /optee_os/core/arch/arm/include/mm/core_mmu.h /optee_os/core/arch/arm/kernel/early_ta.c /optee_os/core/arch/arm/kernel/elf_load.h /optee_os/core/arch/arm/kernel/generic_boot.c /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/pseudo_ta.c /optee_os/core/arch/arm/kernel/ree_fs_ta.c /optee_os/core/arch/arm/kernel/secstor_ta.c /optee_os/core/arch/arm/kernel/user_ta.c /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/tee/init.c /optee_os/core/include/initcall.h /optee_os/core/include/keep.h /optee_os/core/include/scattered_array.h /optee_os/core/kernel/scattered_array.c /optee_os/core/kernel/sub.mk config.mk /optee_os/ta/ta.mk
d3353b42	22-Nov-2018	Jens Wiklander <jens.wiklander@linaro.org>	mk/compile.mk: define __FILE_ID__ for all files Defines __FILE_ID__ with a unique name of the file being compiled. Useful to create globally unique variables. Acked-by: Etienne Carriere <etienne.ca mk/compile.mk: define __FILE_ID__ for all files Defines __FILE_ID__ with a unique name of the file being compiled. Useful to create globally unique variables. Acked-by: Etienne Carriere <etienne.carriere@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/kernel/asan.c /optee_os/documentation/file_structure.md compile.mk
c95b9511	23-Nov-2018	Etienne Carriere <etienne.carriere@linaro.org>	core: embedded secure device tree This change introduces configurations CFG_EMDED_DTB and CFG_EMBED_DTB_SOURCE_FILE. When CFG_EMDED_DTB=y a device tree blob (DTB) is embedded in a read-only section core: embedded secure device tree This change introduces configurations CFG_EMDED_DTB and CFG_EMBED_DTB_SOURCE_FILE. When CFG_EMDED_DTB=y a device tree blob (DTB) is embedded in a read-only section of the core based on an in-tree device tree source (DTS) file. CFG_EMBED_DTS_SOURCE_FILE defines the relative path of the target device in core/arch/$(ARCH)/dts. Non empty CFG_EMBED_DTS_SOURCE_FILE content implies CFG_EMBED_DTB=y. CFG_EMBED_DTB=y mandates CFG_EMBED_DTS_SOURCE_FILE definition. CFG_EMDED_DTB=y mandates CFG_DT=y. Since the embedded DTB is read-only, core do not attempt to modify it adding information such as OP-TEE resources nodes and properties. Core still get generic information such as system memory address range and debug console configuration from the embedded DTB. Documentation includes a DT section in the OP-TEE design description. Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/kernel/generic_boot.c /optee_os/core/sub.mk /optee_os/documentation/file_structure.md /optee_os/documentation/optee_design.md config.mk /optee_os/scripts/bin_to_c.py
c828ecea	23-Nov-2018	Etienne Carriere <etienne.carriere@linaro.org>	core: helper for device tree compilation Add helper function gen-dtb-file in the build sequence. It generates a DTB file from input DTS file. The DTS file is preprocessed with CPP before being compi core: helper for device tree compilation Add helper function gen-dtb-file in the build sequence. It generates a DTB file from input DTS file. The DTS file is preprocessed with CPP before being compiled using the device tree compiler (DTC). Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/arch/arm/include/mm/mobj.h /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/mm/tee_mmu.c /optee_os/core/arch/arm/tee/entry_std.c compile.mk
b31756b3	15-Nov-2018	Jerome Forissier <jerome.forissier@linaro.org>	lib.mk: centralize profiling flag (-pg) Code cleanup, no functional change. This commit avoids the duplication of the -pg flag in the library makefiles. Signed-off-by: Jerome Forissier <jerome.fori lib.mk: centralize profiling flag (-pg) Code cleanup, no functional change. This commit avoids the duplication of the -pg flag in the library makefiles. Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/core/lib/zlib/inflate.c /optee_os/lib/libmbedtls/sub.mk /optee_os/lib/libmpa/sub.mk /optee_os/lib/libutee/sub.mk /optee_os/lib/libutils/sub.mk lib.mk
017dfaf8	13-Nov-2018	Gabor Szekely <szvgabor@gmail.com>	mk/config.mk: default enable CFG_CRYPTO_RSASSA_NA1 Enable the TEE_ALG_RSASSA_PKCS1_V1_5 extension by default. Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Gabor Szekely < mk/config.mk: default enable CFG_CRYPTO_RSASSA_NA1 Enable the TEE_ALG_RSASSA_PKCS1_V1_5 extension by default. Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Gabor Szekely <szvgabor@gmail.com> show more ... /optee_os/.travis.yml /optee_os/core/arch/arm/include/kernel/thread.h /optee_os/core/arch/arm/include/mm/mobj.h /optee_os/core/arch/arm/kernel/ree_fs_ta.c /optee_os/core/arch/arm/kernel/tee_time.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/user_ta.c /optee_os/core/arch/arm/kernel/wait_queue.c /optee_os/core/arch/arm/pta/benchmark.c /optee_os/core/arch/arm/pta/gprof.c /optee_os/core/arch/arm/tee/pta_socket.c /optee_os/core/core.mk /optee_os/core/include/kernel/msg_param.h /optee_os/core/include/optee_msg.h /optee_os/core/include/optee_rpc_cmd.h /optee_os/core/include/tee/tee_fs_rpc.h /optee_os/core/include/tee/uuid.h /optee_os/core/kernel/msg_param.c /optee_os/core/lib/libtomcrypt/include/tomcrypt_custom.h /optee_os/core/lib/libtomcrypt/include/tomcrypt_macros.h /optee_os/core/lib/libtomcrypt/include/tomcrypt_pkcs.h /optee_os/core/lib/libtomcrypt/src/mpi_desc.c /optee_os/core/lib/libtomcrypt/src/pk/rsa/rsa_sign_hash.c /optee_os/core/lib/libtomcrypt/src/pk/rsa/rsa_verify_hash.c /optee_os/core/lib/libtomcrypt/src/sub.mk /optee_os/core/lib/libtomcrypt/src/tee_ltc_provider.c /optee_os/core/tee/fs_htree.c /optee_os/core/tee/tadb.c /optee_os/core/tee/tee_fs_rpc.c /optee_os/core/tee/tee_ree_fs.c /optee_os/core/tee/tee_rpmb_fs.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/documentation/extensions/crypto_rsassa_pkcs1_v1_5.md /optee_os/documentation/extensions/extensions.md /optee_os/lib/libmbedtls/include/mbedtls_config_kernel.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/bignum.h /optee_os/lib/libmbedtls/mbedtls/library/bignum.c /optee_os/lib/libmbedtls/sub.mk /optee_os/lib/libutee/include/tee_api_defines.h /optee_os/lib/libutee/include/tee_api_defines_extensions.h /optee_os/lib/libutee/tee_api_operations.c /optee_os/lib/libutils/ext/mempool.c config.mk /optee_os/scripts/gen_hashed_bin.py /optee_os/scripts/gen_ld_sects.py /optee_os/scripts/mem_usage.py /optee_os/scripts/pem_to_pub_c.py /optee_os/scripts/sign.py /optee_os/scripts/symbolize.py /optee_os/scripts/ta_bin_to_c.py /optee_os/scripts/tee_bin_parser.py
3f58e4ec	05-Nov-2018	Ovidiu Mihalachi <ovidiu_mihalachi@mentor.com>	trace levels: Redefine TRACE_MIN level to 0 The global `trace_level` session-wise indicator which is set by `trace_set_level()` [1], could get a wrong value in case of an input `level` set to 0, mea trace levels: Redefine TRACE_MIN level to 0 The global `trace_level` session-wise indicator which is set by `trace_set_level()` [1], could get a wrong value in case of an input `level` set to 0, meaning that all logs need to be disabled by user define `CFG_TEE_TA_LOG_LEVEL=0` when building TA applications. This inconsistency is caused by a rather wrong value of `TRACE_MIN` low boundary value set to 1. According to [1] `trace level` will be set to `TRACE_MAX` (4) in case input level is smaller than `TRACE_MIN` and larger than `TRACE_MAX`. In the scenario when the needed log level is 0, `trace level` would be set to `TRACE_MAX` and will cause a lot of flow log level information dumped by trace functions/macros that are using `trace_printf()` primitive. This patch sets the `TRACE_MIN` to 0 in order to assure a proper trace level setting and completely disable all logs in case `CFG_TEE_TA_LOG_LEVEL=0`. [1] void trace_set_level(int level) { if (((int)level >= TRACE_MIN) && (level <= TRACE_MAX)) trace_level = level; else trace_level = TRACE_MAX; } Acked-by: Christoph Gellner <cgellner@de.adit-jv.com> Signed-off-by: Ovidiu Mihalachi <ovidiu_mihalachi@mentor.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/kernel/early_ta.h /optee_os/core/arch/arm/include/kernel/mutex.h /optee_os/core/arch/arm/include/kernel/thread.h /optee_os/core/arch/arm/kernel/mutex.c /optee_os/core/arch/arm/kernel/tee_time_arm_cntpct.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_private.h /optee_os/core/arch/arm/mm/mobj.c /optee_os/core/arch/arm/plat-synquacer/conf.mk /optee_os/core/arch/arm/tee/entry_std.c /optee_os/core/drivers/gic.c /optee_os/core/include/kernel/dt.h /optee_os/core/lib/libfdt/fdt.c /optee_os/core/lib/libfdt/fdt_empty_tree.c /optee_os/core/lib/libfdt/fdt_overlay.c /optee_os/core/lib/libfdt/fdt_ro.c /optee_os/core/lib/libfdt/fdt_rw.c /optee_os/core/lib/libfdt/fdt_strerror.c /optee_os/core/lib/libfdt/fdt_sw.c /optee_os/core/lib/libfdt/fdt_wip.c /optee_os/core/lib/libfdt/include/fdt.h /optee_os/core/lib/libfdt/include/libfdt.h /optee_os/core/lib/libfdt/include/libfdt_env.h /optee_os/core/lib/libfdt/libfdt_internal.h /optee_os/core/lib/libfdt/sub.mk /optee_os/core/lib/libtomcrypt/include/tomcrypt_mp.h /optee_os/core/lib/libtomcrypt/src/mpa_desc.c /optee_os/core/lib/libtomcrypt/src/tee_ltc_provider.c /optee_os/lib/libutils/ext/include/compiler.h /optee_os/lib/libutils/ext/include/trace_levels.h /optee_os/lib/libutils/ext/trace.c /optee_os/lib/libutils/isoc/include/stdlib.h /optee_os/lib/libutils/isoc/include/string.h /optee_os/lib/libutils/isoc/isalpha.c /optee_os/lib/libutils/isoc/isspace.c /optee_os/lib/libutils/isoc/isupper.c /optee_os/lib/libutils/isoc/newlib/strrchr.c /optee_os/lib/libutils/isoc/newlib/strtoul.c /optee_os/lib/libutils/isoc/newlib/sub.mk /optee_os/lib/libutils/isoc/sub.mk config.mk
b2c322ae	29-Oct-2018	Yongqin Liu <yongqin.liu@linaro.org>	mk/aosp_optee.mk: use prebuilt make command The host side make command is disallowed by the Android build system on AOSP master [1]. Using it anyway causes the following build error: "make" is no mk/aosp_optee.mk: use prebuilt make command The host side make command is disallowed by the Android build system on AOSP master [1]. Using it anyway causes the following build error: "make" is not allowed to be used. See [2] for more information. Link: [1] https://android-review.googlesource.com/c/platform/build/soong/+/796565 Link: [2] https://android.googlesource.com/platform/build/+/master/Changes.md#PATH_Tools Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Yongqin Liu <yongqin.liu@linaro.org> show more ... aosp_optee.mk
1...<<11 121314 15 16 17 18 19