pkcs11 - OpenGrok history log for /optee_os/ta/pkcs11

Revision	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
3bc92b91	08-Jan-2024	Etienne Carriere <etienne.carriere@foss.st.com>	ta: pkcs11: use TEE_InitRefAttribute() to compute key check value Use TEE_InitRefAttribute() helper function to set key data attribute in compute_check_value_with_ecb(). Fixes: bcac2127a7f1 ("ta: p ta: pkcs11: use TEE_InitRefAttribute() to compute key check value Use TEE_InitRefAttribute() helper function to set key data attribute in compute_check_value_with_ecb(). Fixes: bcac2127a7f1 ("ta: pkcs11: pkcs11_attributes.c: support PKCS11_CKA_CHECK_VALUE") Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... src/pkcs11_attributes.c
cfbe7874	08-Jan-2024	Etienne Carriere <etienne.carriere@foss.st.com>	ta: pkcs11: key check value may not be applicable Key check value attribute is required only for objects of types certificate and symmetric keys. Fix set_check_value_attr() to return a successful st ta: pkcs11: key check value may not be applicable Key check value attribute is required only for objects of types certificate and symmetric keys. Fix set_check_value_attr() to return a successful status instead of bad argument error code when there is no key check value attribute to compute. Fixes: bcac2127a7f1 ("ta: pkcs11: pkcs11_attributes.c: support PKCS11_CKA_CHECK_VALUE") Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... src/pkcs11_attributes.c
adfad2cd	08-Jan-2024	Etienne Carriere <etienne.carriere@foss.st.com>	ta: pkcs11: fix block size to compute AES key check value Fix AES block size in compute_check_value_with_ecb(). It is 16 bytes, not the AES key size. By the way allocate cipher block in the stack in ta: pkcs11: fix block size to compute AES key check value Fix AES block size in compute_check_value_with_ecb(). It is 16 bytes, not the AES key size. By the way allocate cipher block in the stack instead of in the heap since the block is quite small. Fixes: bcac2127a7f1 ("ta: pkcs11: pkcs11_attributes.c: support PKCS11_CKA_CHECK_VALUE") Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Signed-off-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/CHANGELOG.md /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp151.dtsi /optee_os/core/arch/arm/dts/stm32mp157a-dk1-scmi.dts /optee_os/core/arch/arm/dts/stm32mp157c-dk2-scmi.dts /optee_os/core/arch/arm/dts/stm32mp157c-ed1-scmi.dts /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/dts/stm32mp157c-ev1-scmi.dts /optee_os/core/arch/arm/dts/stm32mp15xx-dkx.dtsi /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/kernel/tz_ssvce_pl310.h /optee_os/core/arch/arm/kernel/thread_spmc_a64.S /optee_os/core/arch/arm/kernel/tz_ssvce_pl310_a32.S /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/plat-imx/imx_pl310.c /optee_os/core/arch/arm/plat-k3/drivers/sa2ul_rng.c /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sam/main.c /optee_os/core/arch/arm/plat-sam/matrix.c /optee_os/core/arch/arm/plat-sam/matrix.h /optee_os/core/arch/arm/plat-sam/platform_config.h /optee_os/core/arch/arm/plat-sam/sama7g5.h /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/main.c /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/drivers/crypto/caam/caam_rng.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/caam/hal/common/hal_rng.c /optee_os/core/drivers/crypto/caam/hal/common/registers/rng_regs.h /optee_os/core/drivers/crypto/caam/include/caam_hal_rng.h /optee_os/core/drivers/crypto/hisilicon/hisi_qm.c /optee_os/core/drivers/crypto/hisilicon/include/hisi_qm.h /optee_os/core/drivers/plic.c /optee_os/core/drivers/remoteproc/stm32_remoteproc.c /optee_os/core/drivers/remoteproc/sub.mk /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/stm32_iwdg.h /optee_os/core/include/drivers/stm32_remoteproc.h /optee_os/core/include/dt-bindings/gpio/stm32mp_gpio.h /optee_os/core/include/kernel/transfer_list.h /optee_os/core/pta/stm32mp/remoteproc_pta.c /optee_os/core/pta/stm32mp/rproc_pub_key.h /optee_os/core/pta/stm32mp/sub.mk /optee_os/core/pta/sub.mk /optee_os/lib/libutee/include/remoteproc_pta.h /optee_os/lib/libutee/include/utee_defines.h /optee_os/mk/config.mk src/pkcs11_attributes.c /optee_os/ta/remoteproc/Makefile /optee_os/ta/remoteproc/include/ta_remoteproc.h /optee_os/ta/remoteproc/src/elf_parser.c /optee_os/ta/remoteproc/src/elf_parser.h /optee_os/ta/remoteproc/src/remoteproc_core.c /optee_os/ta/remoteproc/src/sub.mk /optee_os/ta/remoteproc/src/user_ta_header_defines.h /optee_os/ta/remoteproc/sub.mk /optee_os/ta/remoteproc/user_ta.mk
bcac2127	24-Nov-2023	Marouene Boubakri <marouene.boubakri@nxp.com>	ta: pkcs11: pkcs11_attributes.c: support PKCS11_CKA_CHECK_VALUE Add PKCS11_CKA_CHECK_VALUE as an optional attribute of symmetric key and certificate objects . As per the PKCS#11 specification, key c ta: pkcs11: pkcs11_attributes.c: support PKCS11_CKA_CHECK_VALUE Add PKCS11_CKA_CHECK_VALUE as an optional attribute of symmetric key and certificate objects . As per the PKCS#11 specification, key check value attribute is optional therefore add pkcs11 TA configuration switch CFG_PKCS11_TA_CHECK_VALUE_ATTRIBUTE to embed or not the support. When supported, as per the spec, the attribute can be either the legitimate value recomputed by the PKCS#11 token or a zero-sized value called a no-value for when client does not want the attribute to set in an object. This change adds the support for the pcks11 TA commands related to Cryptoki API functions C_GenerateKey(), C_CreateObject(), C_CopyObject(), C_SetAttributeValue(), C_UnwrapKey() and C_DeriveKey(). TA command related to C_FindOjects() support the attribute without any change. Signed-off-by: Marouene Boubakri <marouene.boubakri@nxp.com> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/dts/stm32mp157a-dk1.dts /optee_os/core/arch/arm/dts/stm32mp157c-dk2.dts /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/dts/stm32mp15xx-dkx.dtsi /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/thread_spmc.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/include/optee_ffa.h /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/thread_optee_smc.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/mobj_ffa.c /optee_os/core/arch/arm/plat-aspeed/conf.mk /optee_os/core/arch/arm/plat-aspeed/platform_ast2600.c /optee_os/core/arch/arm/plat-aspeed/platform_ast2700.c /optee_os/core/arch/arm/plat-aspeed/platform_config.h /optee_os/core/arch/arm/plat-corstone1000/main.c /optee_os/core/arch/arm/plat-d06/conf.mk /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-k3/main.c /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-mediatek/main.c /optee_os/core/arch/arm/plat-rcar/main.c /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rzn1/main.c /optee_os/core/arch/arm/plat-sam/matrix.c /optee_os/core/arch/arm/plat-sam/matrix.h /optee_os/core/arch/arm/plat-stm/main.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/plat_tzc400.c /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp2/main.c /optee_os/core/arch/arm/plat-sunxi/main.c /optee_os/core/arch/arm/plat-ti/main.c /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-vexpress/platform_config.h /optee_os/core/arch/arm/plat-zynq7k/main.c /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/core.mk /optee_os/core/drivers/clk/clk.c /optee_os/core/drivers/crypto/caam/include/caam_sm.h /optee_os/core/drivers/crypto/hisilicon/hisi_qm.c /optee_os/core/drivers/crypto/hisilicon/include/hisi_qm.h /optee_os/core/drivers/crypto/hisilicon/sub.mk /optee_os/core/drivers/crypto/sub.mk /optee_os/core/drivers/gic.c /optee_os/core/drivers/hisi_trng.c /optee_os/core/drivers/regulator/regulator.c /optee_os/core/drivers/regulator/regulator_gpio.c /optee_os/core/drivers/regulator/stm32_vrefbuf.c /optee_os/core/drivers/regulator/stm32mp13_regulator_iod.c /optee_os/core/include/drivers/clk.h /optee_os/core/include/drivers/gic.h /optee_os/core/include/drivers/regulator.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/transfer_list.h /optee_os/core/include/mm/tee_mm.h /optee_os/core/include/tee/tee_pobj.h /optee_os/core/include/tee/tee_svc_storage.h /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/notif.c /optee_os/core/kernel/notif_default.c /optee_os/core/kernel/panic.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/transfer_list.c /optee_os/core/mm/tee_mm.c /optee_os/core/pta/stats.c /optee_os/core/tee/tee_pobj.c /optee_os/core/tee/tee_rpmb_fs.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/core/tee/tee_svc_storage.c /optee_os/lib/libutee/include/pta_stats.h /optee_os/lib/libutee/user_ta_entry.c /optee_os/lib/libutils/ext/mempool.c /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/malloc.h /optee_os/mk/config.mk /optee_os/scripts/checkpatch_inc.sh src/object.c src/pkcs11_attributes.c src/pkcs11_attributes.h src/processing.c sub.mk
2eba68d2	28-Sep-2023	Etienne Carriere <etienne.carriere@foss.st.com>	ta: pkcs11: prevent user ID verification when user PIN is not set Fix User PIN verification in ACL mode (protected authentication) so that it always returns PKCS11_CKR_USER_PIN_NOT_INITIALIZED when ta: pkcs11: prevent user ID verification when user PIN is not set Fix User PIN verification in ACL mode (protected authentication) so that it always returns PKCS11_CKR_USER_PIN_NOT_INITIALIZED when User PIN has not been initialized yet by the Security Officer. Before this change, this was tested only in the standard PIN path, not for the authenticated TEE identity mode (CFG_PKCS11_TA_AUTH_TEE_IDENTITY=y). Reviewed-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Signed-off-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/dts/stm32mp15xx-dkx.dtsi /optee_os/core/arch/arm/include/mm/generic_ram_layout.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_optee_smc.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/plat-hikey/main.c /optee_os/core/arch/arm/plat-hikey/spi_test.c /optee_os/core/arch/arm/plat-rockchip/platform.c /optee_os/core/arch/arm/plat-rockchip/platform_px30.c /optee_os/core/arch/arm/plat-rockchip/platform_rk3399.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_syscfg.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_syscfg.h /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/plat-spike/conf.mk /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/atmel_wdt.c /optee_os/core/drivers/bcm_hwrng.c /optee_os/core/drivers/clk/clk.c /optee_os/core/drivers/crypto/caam/hal/common/hal_jr.c /optee_os/core/drivers/dra7_rng.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/imx_wdog.c /optee_os/core/drivers/ls_dspi.c /optee_os/core/drivers/ls_gpio.c /optee_os/core/drivers/ls_i2c.c /optee_os/core/drivers/regulator/regulator.c /optee_os/core/drivers/regulator/regulator_gpio.c /optee_os/core/drivers/regulator/stm32mp13_regulator_iod.c /optee_os/core/drivers/regulator/sub.mk /optee_os/core/drivers/smccc_trng.c /optee_os/core/drivers/xiphera_trng.c /optee_os/core/include/drivers/clk.h /optee_os/core/include/drivers/scmi-msg.h /optee_os/core/include/drivers/stm32mp13_regulator_iod.h /optee_os/core/include/kernel/dt.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/dt.c /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/panic.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/tpm.c /optee_os/core/kernel/trace_ext.c /optee_os/core/mm/core_mmu.c /optee_os/core/pta/bcm/gpio.c /optee_os/core/tee/tee_ree_fs.c /optee_os/core/tee/tee_svc.c /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libutee/include/tee_arith_internal.h /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutils/ext/include/trace.h /optee_os/lib/libutils/ext/trace.c /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/mk/config.mk /optee_os/scripts/symbolize.py src/pkcs11_token.c
d75c42ff	31-Oct-2023	Loic Poulain <loic.poulain@linaro.org>	ta: pkcs11: Improve PIN counter handling robustness Make sure PIN check attempt is saved persistently before continuing with the actual PIN verification, improving counter and flags coherency in cas ta: pkcs11: Improve PIN counter handling robustness Make sure PIN check attempt is saved persistently before continuing with the actual PIN verification, improving counter and flags coherency in case of subsequent failure with persistent saving. Signed-off-by: Loic Poulain <loic.poulain@linaro.org> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/.gitignore /optee_os/CHANGELOG.md /optee_os/MAINTAINERS /optee_os/Makefile /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/dts/stm32mp25-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp251.dtsi /optee_os/core/arch/arm/dts/stm32mp253.dtsi /optee_os/core/arch/arm/dts/stm32mp255.dtsi /optee_os/core/arch/arm/dts/stm32mp257.dtsi /optee_os/core/arch/arm/dts/stm32mp257f-ev1.dts /optee_os/core/arch/arm/dts/stm32mp25xc.dtsi /optee_os/core/arch/arm/dts/stm32mp25xf.dtsi /optee_os/core/arch/arm/dts/stm32mp25xxai-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp25xxak-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp25xxal-pinctrl.dtsi /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm32.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/crypto/ghash-ce-core.h /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/misc_arch.h /optee_os/core/arch/arm/include/kernel/tee_l2cc_mutex.h /optee_os/core/arch/arm/include/kernel/tlb_helpers.h /optee_os/core/arch/arm/include/kernel/tz_proc_def.h /optee_os/core/arch/arm/include/kernel/tz_ssvce_def.h /optee_os/core/arch/arm/include/kernel/tz_ssvce_pl310.h /optee_os/core/arch/arm/include/kernel/vfp.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/include/scmi/scmi_server.h /optee_os/core/arch/arm/include/sm/optee_smc.h /optee_os/core/arch/arm/include/sm/pm.h /optee_os/core/arch/arm/include/sm/psci.h /optee_os/core/arch/arm/include/sm/sm.h /optee_os/core/arch/arm/include/sm/std_smc.h /optee_os/core/arch/arm/include/sm/teesmc_opteed.h /optee_os/core/arch/arm/include/sm/teesmc_opteed_macros.h /optee_os/core/arch/arm/include/sm/watchdog_smc.h /optee_os/core/arch/arm/include/tee/entry_fast.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/link_dummies_init.c /optee_os/core/arch/arm/kernel/link_dummies_paged.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/kernel/stmm_sp.c /optee_os/core/arch/arm/kernel/sub.mk /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/plat-d06/conf.mk /optee_os/core/arch/arm/plat-d06/platform_config.h /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.h /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.h /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/plat_tzc400.c /optee_os/core/arch/arm/plat-stm32mp1/pm/psci.c /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp2/conf.mk /optee_os/core/arch/arm/plat-stm32mp2/main.c /optee_os/core/arch/arm/plat-stm32mp2/platform_config.h /optee_os/core/arch/arm/plat-stm32mp2/stm32_util.h /optee_os/core/arch/arm/plat-stm32mp2/sub.mk /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/riscv/include/kernel/misc_arch.h /optee_os/core/arch/riscv/include/kernel/tee_l2cc_mutex.h /optee_os/core/arch/riscv/include/kernel/thread_arch.h /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/include/kernel/tlb_helpers.h /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/include/riscv_macros.S /optee_os/core/arch/riscv/include/sbi.h /optee_os/core/arch/riscv/include/tee/entry_fast.h /optee_os/core/arch/riscv/include/tee/optee_abi.h /optee_os/core/arch/riscv/include/tee/teeabi_opteed.h /optee_os/core/arch/riscv/include/tee/teeabi_opteed_macros.h /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_optee_abi_rv.S /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/atmel_wdt.c /optee_os/core/drivers/crypto/caam/caam_jr.c /optee_os/core/drivers/crypto/caam/caam_sm.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/stm32/cipher.c /optee_os/core/drivers/hisi_trng.c /optee_os/core/drivers/plic.c /optee_os/core/drivers/regulator/regulator_dt.c /optee_os/core/drivers/regulator/stm32_vrefbuf.c /optee_os/core/drivers/regulator/sub.mk /optee_os/core/drivers/sp805_wdt.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/drivers/stpmic1.c /optee_os/core/drivers/sub.mk /optee_os/core/include/bench.h /optee_os/core/include/console.h /optee_os/core/include/crypto/crypto_se.h /optee_os/core/include/crypto/sm2-kdf.h /optee_os/core/include/drivers/amlogic_uart.h /optee_os/core/include/drivers/atmel_uart.h /optee_os/core/include/drivers/bcm/bnxt.h /optee_os/core/include/drivers/bcm_gpio.h /optee_os/core/include/drivers/bcm_hwrng.h /optee_os/core/include/drivers/bcm_sotp.h /optee_os/core/include/drivers/caam_extension.h /optee_os/core/include/drivers/cbmem_console.h /optee_os/core/include/drivers/cdns_uart.h /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/hi16xx_uart.h /optee_os/core/include/drivers/imx/dcp.h /optee_os/core/include/drivers/imx_ocotp.h /optee_os/core/include/drivers/imx_uart.h /optee_os/core/include/drivers/imx_wdog.h /optee_os/core/include/drivers/lpc_uart.h /optee_os/core/include/drivers/mvebu_uart.h /optee_os/core/include/drivers/ns16550.h /optee_os/core/include/drivers/pl011.h /optee_os/core/include/drivers/pl022_spi.h /optee_os/core/include/drivers/pl061_gpio.h /optee_os/core/include/drivers/plic.h /optee_os/core/include/drivers/regulator.h /optee_os/core/include/drivers/rtc.h /optee_os/core/include/drivers/sam/at91_ddr.h /optee_os/core/include/drivers/scif.h /optee_os/core/include/drivers/scmi-msg.h /optee_os/core/include/drivers/scmi.h /optee_os/core/include/drivers/serial8250_uart.h /optee_os/core/include/drivers/sp805_wdt.h /optee_os/core/include/drivers/sprd_uart.h /optee_os/core/include/drivers/stih_asc.h /optee_os/core/include/drivers/stm32_bsec.h /optee_os/core/include/drivers/stm32_etzpc.h /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/drivers/stm32_i2c.h /optee_os/core/include/drivers/stm32_iwdg.h /optee_os/core/include/drivers/stm32_uart.h /optee_os/core/include/drivers/stm32_vrefbuf.h /optee_os/core/include/drivers/stm32mp_dt_bindings.h /optee_os/core/include/drivers/stpmic1.h /optee_os/core/include/drivers/wdt.h /optee_os/core/include/gen-asm-defines.h /optee_os/core/include/initcall.h /optee_os/core/include/io.h /optee_os/core/include/keep.h /optee_os/core/include/kernel/abort.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/chip_services.h /optee_os/core/include/kernel/dt.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/early_ta.h /optee_os/core/include/kernel/embedded_ts.h /optee_os/core/include/kernel/handle.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/ldelf_loader.h /optee_os/core/include/kernel/ldelf_syscalls.h /optee_os/core/include/kernel/misc.h /optee_os/core/include/kernel/msg_param.h /optee_os/core/include/kernel/mutex.h /optee_os/core/include/kernel/panic.h /optee_os/core/include/kernel/pseudo_ta.h /optee_os/core/include/kernel/rpc_io_i2c.h /optee_os/core/include/kernel/spinlock.h /optee_os/core/include/kernel/tee_common.h /optee_os/core/include/kernel/tee_common_otp.h /optee_os/core/include/kernel/tee_misc.h /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/include/kernel/tee_time.h /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/time_source.h /optee_os/core/include/kernel/timer.h /optee_os/core/include/kernel/trace_ta.h /optee_os/core/include/kernel/transfer_list.h /optee_os/core/include/kernel/unwind.h /optee_os/core/include/kernel/user_ta.h /optee_os/core/include/kernel/virtualization.h /optee_os/core/include/kernel/wait_queue.h /optee_os/core/include/mm/core_memprot.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/include/mm/mobj.h /optee_os/core/include/mm/pgt_cache.h /optee_os/core/include/mm/tee_mm.h /optee_os/core/include/mm/tee_mmu_types.h /optee_os/core/include/mm/tee_pager.h /optee_os/core/include/mm/vm.h /optee_os/core/include/optee_msg.h /optee_os/core/include/signed_hdr.h /optee_os/core/include/ta_pub_key.h /optee_os/core/include/tee/cache.h /optee_os/core/include/tee/entry_std.h /optee_os/core/include/tee/svc_cache.h /optee_os/core/include/tee/tee_cryp_concat_kdf.h /optee_os/core/include/tee/tee_cryp_hkdf.h /optee_os/core/include/tee/tee_cryp_pbkdf2.h /optee_os/core/include/tee/tee_cryp_utl.h /optee_os/core/include/tee/tee_fs.h /optee_os/core/include/tee/tee_fs_key_manager.h /optee_os/core/include/tee/tee_fs_rpc.h /optee_os/core/include/tee/tee_obj.h /optee_os/core/include/tee/tee_pobj.h /optee_os/core/include/tee/tee_supp_plugin_rpc.h /optee_os/core/include/tee/tee_svc.h /optee_os/core/include/tee/tee_svc_cryp.h /optee_os/core/include/tee/tee_svc_storage.h /optee_os/core/include/tee/tee_ta_enc_manager.h /optee_os/core/kernel/dt.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/notif.c /optee_os/core/kernel/pseudo_ta.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/transfer_list.c /optee_os/core/kernel/user_ta.c /optee_os/core/mm/core_mmu.c /optee_os/core/mm/mobj.c /optee_os/core/mm/vm.c /optee_os/core/pta/attestation.c /optee_os/core/tee/tee_svc.c /optee_os/ldelf/ta_elf.c /optee_os/lib/libutee/tee_api_operations.c /optee_os/lib/libutils/ext/ftrace/ftrace.c /optee_os/mk/aosp_optee.mk /optee_os/mk/checkconf.mk /optee_os/mk/config.mk /optee_os/mk/macros.mk /optee_os/scripts/gen_compile_commands.py /optee_os/scripts/ts_bin_to_c.py /optee_os/ta/arch/arm/ta.ld.S /optee_os/ta/link.mk /optee_os/ta/mk/ta_dev_kit.mk src/pkcs11_token.c /optee_os/ta/ta.mk
32b31808	06-Oct-2023	Jens Wiklander <jens.wiklander@linaro.org>	Squashed commit upgrading to mbedtls-3.4.0 Squash merging branch import/mbedtls-3.4.0 8225713449d3 ("libmbedtls: fix unrecognized compiler option") f03730842d7b ("core: ltc: configure internal MD5" Squashed commit upgrading to mbedtls-3.4.0 Squash merging branch import/mbedtls-3.4.0 8225713449d3 ("libmbedtls: fix unrecognized compiler option") f03730842d7b ("core: ltc: configure internal MD5") 2b0d0c50127c ("core: ltc: configure internal SHA-1 and SHA-224") 0e48a6e17630 ("libmedtls: core: update to mbedTLS 3.4.0 API") 049882b143af ("libutee: update to mbedTLS 3.4.0 API") 982307bf6169 ("core: LTC mpi_desc.c: update to mbedTLS 3.4.0 API") 33218e9eff7b ("ta: pkcs11: update to mbedTLS 3.4.0 API") 6956420cc064 ("libmbedtls: fix cipher_wrap.c for NIST AES Key Wrap mode") ad67ef0b43fd ("libmbedtls: fix cipher_wrap.c for chacha20 and chachapoly") 7300f4d97bbf ("libmbedtls: add fault mitigation in mbedtls_rsa_rsassa_pkcs1_v15_verify()") cec89b62a86d ("libmbedtls: add fault mitigation in mbedtls_rsa_rsassa_pss_verify_ext()") e7e048796c44 ("libmbedtls: add SM2 curve") 096beff2cd31 ("libmbedtls: mbedtls_mpi_exp_mod(): optimize mempool usage") 7108668efd3f ("libmbedtls: mbedtls_mpi_exp_mod(): reduce stack usage") 0ba4eb8d0572 ("libmbedtls: mbedtls_mpi_exp_mod() initialize W") 3fd6ecf00382 ("libmbedtls: fix no CRT issue") d5ea7e9e9aa7 ("libmbedtls: add interfaces in mbedtls for context memory operation") 2b0fb3f1fa3d ("libmedtls: mpi_miller_rabin: increase count limit") 2c3301ab99bb ("libmbedtls: add mbedtls_mpi_init_mempool()") 9a111f0da04b ("libmbedtls: make mbedtls_mpi_mont*() available") 804fe3a374f5 ("mbedtls: configure mbedtls to reach for config") b28a41531427 ("mbedtls: remove default include/mbedtls/config.h") dfafe507bbef ("Import mbedtls-3.4.0") Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (vexpress-qemu_armv8a) show more ... /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/kernel/thread_arch.h /optee_os/core/arch/arm/include/optee_ffa.h /optee_os/core/arch/arm/include/sm/watchdog_smc.h /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/link_dummies_paged.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/thread_spmc_a64.S /optee_os/core/arch/arm/mm/mobj_ffa.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/imx-regs.h /optee_os/core/arch/arm/plat-imx/imx.h /optee_os/core/arch/arm/plat-imx/registers/imx6.h /optee_os/core/arch/arm/plat-imx/registers/imx7.h /optee_os/core/arch/arm/plat-imx/registers/imx8m.h /optee_os/core/arch/arm/plat-imx/sub.mk /optee_os/core/arch/arm/plat-k3/conf.mk /optee_os/core/arch/arm/plat-k3/drivers/sa2ul.c /optee_os/core/arch/arm/plat-ls/conf.mk /optee_os/core/arch/arm/plat-mediatek/conf.mk /optee_os/core/arch/arm/plat-mediatek/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.h /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-zynqmp/platform_config.h /optee_os/core/arch/arm/tee/entry_fast.c /optee_os/core/arch/riscv/include/kernel/thread_arch.h /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/include/tee/entry_fast.h /optee_os/core/arch/riscv/include/tee/optee_abi.h /optee_os/core/arch/riscv/include/tee/teeabi_opteed.h /optee_os/core/arch/riscv/include/tee/teeabi_opteed_macros.h /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_optee_abi.c /optee_os/core/arch/riscv/kernel/thread_optee_abi_rv.S /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/arch/riscv/plat-virt/platform_config.h /optee_os/core/arch/riscv/tee/entry_fast.c /optee_os/core/arch/riscv/tee/sub.mk /optee_os/core/crypto.mk /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/crypto/caam/blob/caam_dek.c /optee_os/core/drivers/crypto/caam/blob/sub.mk /optee_os/core/drivers/crypto/caam/caam_ctrl.c /optee_os/core/drivers/crypto/caam/caam_sm.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/caam/hal/common/hal_ctrl.c /optee_os/core/drivers/crypto/caam/hal/common/hal_sm.c /optee_os/core/drivers/crypto/caam/hal/common/registers/sm_regs.h /optee_os/core/drivers/crypto/caam/hal/common/sub.mk /optee_os/core/drivers/crypto/caam/hal/imx_8m/registers/ctrl_regs.h /optee_os/core/drivers/crypto/caam/hal/sub.mk /optee_os/core/drivers/crypto/caam/include/caam_desc_defines.h /optee_os/core/drivers/crypto/caam/include/caam_desc_helper.h /optee_os/core/drivers/crypto/caam/include/caam_hal_ctrl.h /optee_os/core/drivers/crypto/caam/include/caam_hal_sm.h /optee_os/core/drivers/crypto/caam/include/caam_sm.h /optee_os/core/drivers/crypto/caam/include/caam_trace.h /optee_os/core/drivers/crypto/caam/sub.mk /optee_os/core/drivers/crypto/stm32/stm32_saes.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/hfic.c /optee_os/core/drivers/imx/mu/sub.mk /optee_os/core/drivers/imx_csu.c /optee_os/core/drivers/imx_snvs.c /optee_os/core/drivers/ns16550.c /optee_os/core/drivers/plic.c /optee_os/core/drivers/pm/imx/gpcv2.c /optee_os/core/drivers/pm/imx/local.h /optee_os/core/drivers/pm/imx/psci.c /optee_os/core/drivers/pm/imx/src.c /optee_os/core/drivers/pm/imx/sub.mk /optee_os/core/drivers/pm/sub.mk /optee_os/core/drivers/regulator/regulator.c /optee_os/core/drivers/regulator/regulator_dt.c /optee_os/core/drivers/regulator/regulator_fixed.c /optee_os/core/drivers/regulator/sub.mk /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_i2c.c /optee_os/core/drivers/sub.mk /optee_os/core/drivers/wdt/watchdog_sm.c /optee_os/core/include/drivers/caam_extension.h /optee_os/core/include/drivers/imx_snvs.h /optee_os/core/include/drivers/ns16550.h /optee_os/core/include/drivers/plic.h /optee_os/core/include/drivers/regulator.h /optee_os/core/include/drivers/stm32_i2c.h /optee_os/core/include/io.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/nv_counter.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/include/tee/fs_dirfile.h /optee_os/core/include/tee/fs_htree.h /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/nv_counter.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/tpm.c /optee_os/core/lib/libtomcrypt/mpi_desc.c /optee_os/core/lib/libtomcrypt/rsa.c /optee_os/core/lib/libtomcrypt/src/hashes/sha2/sub.mk /optee_os/core/lib/libtomcrypt/src/hashes/sub.mk /optee_os/core/lib/libtomcrypt/sub.mk /optee_os/core/lib/libtomcrypt/tomcrypt.c /optee_os/core/mm/core_mmu.c /optee_os/core/pta/imx/dek_blob.c /optee_os/core/pta/imx/sub.mk /optee_os/core/pta/stats.c /optee_os/core/pta/tests/fs_htree.c /optee_os/core/tee/fs_dirfile.c /optee_os/core/tee/fs_htree.c /optee_os/core/tee/tee_ree_fs.c /optee_os/lib/libmbedtls/core/aes.c /optee_os/lib/libmbedtls/core/dh.c /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libmbedtls/core/hash.c /optee_os/lib/libmbedtls/core/hmac.c /optee_os/lib/libmbedtls/core/mbed_helpers.h /optee_os/lib/libmbedtls/core/rsa.c /optee_os/lib/libmbedtls/core/sub.mk /optee_os/lib/libmbedtls/include/mbedtls_config_kernel.h /optee_os/lib/libmbedtls/mbedtls/.gitattributes /optee_os/lib/libmbedtls/mbedtls/.uncrustify.cfg /optee_os/lib/libmbedtls/mbedtls/CONTRIBUTING.md /optee_os/lib/libmbedtls/mbedtls/ChangeLog /optee_os/lib/libmbedtls/mbedtls/README.md /optee_os/lib/libmbedtls/mbedtls/SECURITY.md /optee_os/lib/libmbedtls/mbedtls/SUPPORT.md /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/aes.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/aria.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/asn1.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/asn1write.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/base64.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/bignum.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/build_info.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/camellia.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ccm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/chacha20.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/chachapoly.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/check_config.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cipher.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/cmac.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/compat-2.x.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/config_psa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/constant_time.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ctr_drbg.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/debug.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/des.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/dhm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecdh.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecdsa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecjpake.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ecp.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/entropy.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/error.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/gcm.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/hkdf.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/hmac_drbg.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/legacy_or_psa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/lms.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/mbedtls_config.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/md5.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/memory_buffer_alloc.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/net_sockets.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/nist_kw.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/oid.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pem.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pk.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs12.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs5.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/pkcs7.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform_time.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/platform_util.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/poly1305.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/private_access.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/psa_util.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ripemd160.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/rsa.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha1.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha256.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/sha512.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_cache.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_ciphersuites.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_cookie.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/ssl_ticket.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/threading.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/timing.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/version.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_crl.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_crt.h /optee_os/lib/libmbedtls/mbedtls/include/mbedtls/x509_csr.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_builtin_composites.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_builtin_primitives.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_compat.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_config.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_driver_common.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_driver_contexts_composites.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_driver_contexts_primitives.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_extra.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_platform.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_se_driver.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_sizes.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_struct.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_types.h /optee_os/lib/libmbedtls/mbedtls/include/psa/crypto_values.h /optee_os/lib/libmbedtls/mbedtls/library/aes.c /optee_os/lib/libmbedtls/mbedtls/library/aesce.c /optee_os/lib/libmbedtls/mbedtls/library/aesce.h /optee_os/lib/libmbedtls/mbedtls/library/aesni.c /optee_os/lib/libmbedtls/mbedtls/library/aesni.h /optee_os/lib/libmbedtls/mbedtls/library/alignment.h /optee_os/lib/libmbedtls/mbedtls/library/aria.c /optee_os/lib/libmbedtls/mbedtls/library/asn1parse.c /optee_os/lib/libmbedtls/mbedtls/library/asn1write.c /optee_os/lib/libmbedtls/mbedtls/library/base64.c /optee_os/lib/libmbedtls/mbedtls/library/bignum.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_core.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_core.h /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod.h /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod_raw.c /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod_raw.h /optee_os/lib/libmbedtls/mbedtls/library/bignum_mod_raw_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/bn_mul.h /optee_os/lib/libmbedtls/mbedtls/library/camellia.c /optee_os/lib/libmbedtls/mbedtls/library/ccm.c /optee_os/lib/libmbedtls/mbedtls/library/chacha20.c /optee_os/lib/libmbedtls/mbedtls/library/chachapoly.c /optee_os/lib/libmbedtls/mbedtls/library/check_crypto_config.h /optee_os/lib/libmbedtls/mbedtls/library/cipher.c /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.h /optee_os/lib/libmbedtls/mbedtls/library/cmac.c /optee_os/lib/libmbedtls/mbedtls/library/common.h /optee_os/lib/libmbedtls/mbedtls/library/constant_time.c /optee_os/lib/libmbedtls/mbedtls/library/constant_time_internal.h /optee_os/lib/libmbedtls/mbedtls/library/constant_time_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/ctr_drbg.c /optee_os/lib/libmbedtls/mbedtls/library/debug.c /optee_os/lib/libmbedtls/mbedtls/library/des.c /optee_os/lib/libmbedtls/mbedtls/library/dhm.c /optee_os/lib/libmbedtls/mbedtls/library/ecdh.c /optee_os/lib/libmbedtls/mbedtls/library/ecdsa.c /optee_os/lib/libmbedtls/mbedtls/library/ecjpake.c /optee_os/lib/libmbedtls/mbedtls/library/ecp.c /optee_os/lib/libmbedtls/mbedtls/library/ecp_curves.c /optee_os/lib/libmbedtls/mbedtls/library/ecp_internal_alt.h /optee_os/lib/libmbedtls/mbedtls/library/ecp_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/entropy.c /optee_os/lib/libmbedtls/mbedtls/library/entropy_poll.c /optee_os/lib/libmbedtls/mbedtls/library/entropy_poll.h /optee_os/lib/libmbedtls/mbedtls/library/error.c /optee_os/lib/libmbedtls/mbedtls/library/gcm.c /optee_os/lib/libmbedtls/mbedtls/library/hash_info.c /optee_os/lib/libmbedtls/mbedtls/library/hash_info.h /optee_os/lib/libmbedtls/mbedtls/library/hkdf.c /optee_os/lib/libmbedtls/mbedtls/library/hmac_drbg.c /optee_os/lib/libmbedtls/mbedtls/library/lmots.c /optee_os/lib/libmbedtls/mbedtls/library/lmots.h /optee_os/lib/libmbedtls/mbedtls/library/lms.c /optee_os/lib/libmbedtls/mbedtls/library/md.c /optee_os/lib/libmbedtls/mbedtls/library/md5.c /optee_os/lib/libmbedtls/mbedtls/library/md_wrap.h /optee_os/lib/libmbedtls/mbedtls/library/memory_buffer_alloc.c /optee_os/lib/libmbedtls/mbedtls/library/net_sockets.c /optee_os/lib/libmbedtls/mbedtls/library/nist_kw.c /optee_os/lib/libmbedtls/mbedtls/library/oid.c /optee_os/lib/libmbedtls/mbedtls/library/padlock.c /optee_os/lib/libmbedtls/mbedtls/library/padlock.h /optee_os/lib/libmbedtls/mbedtls/library/pem.c /optee_os/lib/libmbedtls/mbedtls/library/pk.c /optee_os/lib/libmbedtls/mbedtls/library/pk_wrap.c /optee_os/lib/libmbedtls/mbedtls/library/pk_wrap.h /optee_os/lib/libmbedtls/mbedtls/library/pkcs12.c /optee_os/lib/libmbedtls/mbedtls/library/pkcs5.c /optee_os/lib/libmbedtls/mbedtls/library/pkcs7.c /optee_os/lib/libmbedtls/mbedtls/library/pkparse.c /optee_os/lib/libmbedtls/mbedtls/library/pkwrite.c /optee_os/lib/libmbedtls/mbedtls/library/pkwrite.h /optee_os/lib/libmbedtls/mbedtls/library/platform.c /optee_os/lib/libmbedtls/mbedtls/library/platform_util.c /optee_os/lib/libmbedtls/mbedtls/library/poly1305.c /optee_os/lib/libmbedtls/mbedtls/library/ripemd160.c /optee_os/lib/libmbedtls/mbedtls/library/rsa.c /optee_os/lib/libmbedtls/mbedtls/library/rsa_alt_helpers.c /optee_os/lib/libmbedtls/mbedtls/library/rsa_alt_helpers.h /optee_os/lib/libmbedtls/mbedtls/library/sha1.c /optee_os/lib/libmbedtls/mbedtls/library/sha256.c /optee_os/lib/libmbedtls/mbedtls/library/sha512.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_cache.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_ciphersuites.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_client.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_cookie.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_debug_helpers.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_debug_helpers_generated.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_misc.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_msg.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_ticket.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls12_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls12_server.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_client.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_generic.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_invasive.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_keys.c /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_keys.h /optee_os/lib/libmbedtls/mbedtls/library/ssl_tls13_server.c /optee_os/lib/libmbedtls/mbedtls/library/threading.c /optee_os/lib/libmbedtls/mbedtls/library/timing.c /optee_os/lib/libmbedtls/mbedtls/library/version.c /optee_os/lib/libmbedtls/mbedtls/library/version_features.c /optee_os/lib/libmbedtls/mbedtls/library/x509.c /optee_os/lib/libmbedtls/mbedtls/library/x509_create.c /optee_os/lib/libmbedtls/mbedtls/library/x509_crl.c /optee_os/lib/libmbedtls/mbedtls/library/x509_crt.c /optee_os/lib/libmbedtls/mbedtls/library/x509_csr.c /optee_os/lib/libmbedtls/mbedtls/library/x509write_crt.c /optee_os/lib/libmbedtls/mbedtls/library/x509write_csr.c /optee_os/lib/libmbedtls/sub.mk /optee_os/lib/libutee/include/pta_imx_dek_blob.h /optee_os/lib/libutee/sub.mk /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutils/ext/include/fault_mitigation.h /optee_os/lib/libutils/isoc/include/assert.h /optee_os/mk/config.mk /optee_os/scripts/sign_rproc_fw.py src/pkcs11_attributes.c
7c243321	29-Jul-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: fix EC private key import When importing EC private key also generate hidden EC public key for that. This fixes EC private key import problem. Signed-off-by: Vesa Jääskeläinen <vesa.ja ta: pkcs11: fix EC private key import When importing EC private key also generate hidden EC public key for that. This fixes EC private key import problem. Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Reviewed-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Tested-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Acked-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... src/pkcs11_attributes.c
c9cf3320	27-Jul-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: add hidden EC point support The PKCS#11 standard does not allow one to have CKA_EC_POINT for private keys but TEE internal API requires one to be present when performing private key oper ta: pkcs11: add hidden EC point support The PKCS#11 standard does not allow one to have CKA_EC_POINT for private keys but TEE internal API requires one to be present when performing private key operations. Instead of calculating it each time it is needed store it as hidden attribute. This fixes EC private key generation to function as specified in standard. There is backwards support for existing keys that has been created inadvertently with CKA_EC_POINT included. Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Reviewed-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Tested-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... include/pkcs11_ta.h src/pkcs11_helpers.c src/processing_ec.c
981966bc	27-Jul-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: add OP-TEE hidden attribute extension Attributes which has hidden OP-TEE vendor flag specified are not exported to user space nor can be imported from user space. Signed-off-by: Vesa Jä ta: pkcs11: add OP-TEE hidden attribute extension Attributes which has hidden OP-TEE vendor flag specified are not exported to user space nor can be imported from user space. Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Reviewed-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Tested-by: Ayoub Zaki <ayoub.zaki@embetrix.com> show more ... include/pkcs11_ta.h src/attributes.c src/object.c src/pkcs11_attributes.c src/pkcs11_attributes.h
58282936	27-Jul-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: specify OP-TEE's vendor specific attribute scheme Add vendor allocation specification for OP-TEE specific attributes. Specifies which bits of attribute identifier is for what purpose. ta: pkcs11: specify OP-TEE's vendor specific attribute scheme Add vendor allocation specification for OP-TEE specific attributes. Specifies which bits of attribute identifier is for what purpose. Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Reviewed-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Tested-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... include/pkcs11_ta.h
6a7d7282	27-Jul-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: introduce PKCS11_CKF_ARRAY_ATTRIBUTE Add own define for PKCS11_CKF_ARRAY_ATTRIBUTE to keep attribute defines clear. Adjust users to new define. Value is same as CKF_ARRAY_ATTRIBUTE in ta: pkcs11: introduce PKCS11_CKF_ARRAY_ATTRIBUTE Add own define for PKCS11_CKF_ARRAY_ATTRIBUTE to keep attribute defines clear. Adjust users to new define. Value is same as CKF_ARRAY_ATTRIBUTE in standard. Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Reviewed-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Tested-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/MAINTAINERS /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/drivers/clk/clk_dt.c /optee_os/core/drivers/crypto/caam/caam_ctrl.c /optee_os/core/drivers/crypto/caam/utils/utils_dmaobj.c /optee_os/core/include/kernel/embedded_ts.h /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/include/kernel/ts_manager.h /optee_os/core/include/kernel/ts_store.h /optee_os/core/include/kernel/user_access.h /optee_os/core/include/tee/tadb.h /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/embedded_ts.c /optee_os/core/kernel/ldelf_loader.c /optee_os/core/kernel/ldelf_syscalls.c /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/kernel/scall.c /optee_os/core/kernel/secstor_ta.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/user_access.c /optee_os/core/kernel/user_ta.c /optee_os/core/mm/vm.c /optee_os/core/pta/system.c /optee_os/core/tee/sub.mk /optee_os/core/tee/tadb.c /optee_os/core/tee/tee_svc.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/core/tee/tee_svc_storage.c /optee_os/mk/config.mk /optee_os/scripts/sign_rproc_fw.py include/pkcs11_ta.h /optee_os/ta/ta.mk
5071d7d1	30-Jul-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: on RSA public key import calculate CKA_MODULUS_BITS When RSA public key is created with C_CreateObject() CKA_MODULUS_BITS is not allowed to be specified. The tooling like pkcs11-tool ex ta: pkcs11: on RSA public key import calculate CKA_MODULUS_BITS When RSA public key is created with C_CreateObject() CKA_MODULUS_BITS is not allowed to be specified. The tooling like pkcs11-tool expects that the value is there. In specification it is not specified clearly that it needs to be calculated but it is assumed to be in the RSA public key object. Calculate the value and add it to the object during RSA public key import. Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com> show more ... /optee_os/.github/workflows/ci.yml /optee_os/CHANGELOG.md /optee_os/MAINTAINERS /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/arm64_macros.S /optee_os/core/arch/arm/include/kernel/thread_private_arch.h /optee_os/core/arch/arm/kernel/abort.c /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/stmm_sp.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/kernel/thread_optee_smc_a64.S /optee_os/core/arch/arm/kernel/thread_spmc_a64.S /optee_os/core/arch/arm/mm/sub.mk /optee_os/core/arch/arm/plat-aspeed/conf.mk /optee_os/core/arch/arm/plat-bcm/conf.mk /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-marvell/cn10k/core_pos.S /optee_os/core/arch/arm/plat-marvell/conf.mk /optee_os/core/arch/arm/plat-marvell/platform_config.h /optee_os/core/arch/arm/plat-marvell/sub.mk /optee_os/core/arch/arm/plat-nuvoton/conf.mk /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-versal/main.c /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/include/kernel/user_access_arch.h /optee_os/core/arch/riscv/kernel/arch_scall.c /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/plat-spike/platform_config.h /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/arch/riscv/riscv.mk /optee_os/core/crypto/crypto.c /optee_os/core/drivers/crypto/caam/mp/caam_mp.c /optee_os/core/drivers/crypto/caam/utils/utils_dmaobj.c /optee_os/core/drivers/crypto/crypto_api/acipher/dh.c /optee_os/core/drivers/crypto/crypto_api/acipher/rsamgf.c /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt.h /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt_acipher.h /optee_os/core/drivers/crypto/se050/core/storage.c /optee_os/core/drivers/crypto/stm32/authenc.c /optee_os/core/drivers/crypto/stm32/cipher.c /optee_os/core/drivers/crypto/stm32/common.h /optee_os/core/drivers/crypto/stm32/crypto.mk /optee_os/core/drivers/crypto/stm32/stm32_cryp.c /optee_os/core/drivers/crypto/stm32/stm32_saes.c /optee_os/core/drivers/crypto/stm32/stm32_saes.h /optee_os/core/drivers/crypto/stm32/sub.mk /optee_os/core/drivers/imx/mu/imx_mu.c /optee_os/core/drivers/imx/mu/imx_mu_8q.c /optee_os/core/drivers/imx/mu/imx_mu_8ulp.c /optee_os/core/drivers/imx/mu/imx_mu_platform.h /optee_os/core/drivers/ls_dspi.c /optee_os/core/drivers/ls_sfp.c /optee_os/core/drivers/plic.c /optee_os/core/include/crypto/crypto.h /optee_os/core/include/drivers/ls_dspi.h /optee_os/core/include/kernel/huk_subkey.h /optee_os/core/include/kernel/linker.h /optee_os/core/include/kernel/pseudo_ta.h /optee_os/core/include/kernel/user_access.h /optee_os/core/include/tee/fs_dirfile.h /optee_os/core/include/tee/tee_fs.h /optee_os/core/include/tee/tee_supp_plugin_rpc.h /optee_os/core/kernel/asan.c /optee_os/core/kernel/huk_subkey.c /optee_os/core/kernel/ldelf_loader.c /optee_os/core/kernel/pseudo_ta.c /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/kernel/user_access.c /optee_os/core/lib/libtomcrypt/src/pk/rsa/rsa_verify_hash.c /optee_os/core/lib/libtomcrypt/x25519.c /optee_os/core/lib/scmi-server/conf-optee-fvp.mk /optee_os/core/lib/scmi-server/sub.mk /optee_os/core/mm/pgt_cache.c /optee_os/core/mm/sub.mk /optee_os/core/pta/attestation.c /optee_os/core/pta/imx/manufacturing_protection.c /optee_os/core/pta/system.c /optee_os/core/tee/entry_std.c /optee_os/core/tee/fs_dirfile.c /optee_os/core/tee/socket.c /optee_os/core/tee/tadb.c /optee_os/core/tee/tee_ree_fs.c /optee_os/core/tee/tee_rpmb_fs.c /optee_os/core/tee/tee_supp_plugin_rpc.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/core/tee/tee_svc_storage.c /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutee/include/utee_defines.h /optee_os/lib/libutee/tee_api.c /optee_os/lib/libutee/tee_api_property.c /optee_os/lib/libutils/ext/include/compiler.h /optee_os/lib/libutils/ext/mempool.c /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/mk/config.mk /optee_os/scripts/derive_rpmb_key.py src/pkcs11_attributes.c
074c61af	28-Jul-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: remove redundant comment about start and end date PKCS#11 standard specifies that verification or usage of start and end date for certificate objects is responsibility of the application ta: pkcs11: remove redundant comment about start and end date PKCS#11 standard specifies that verification or usage of start and end date for certificate objects is responsibility of the application. There is no other activity than storage needed for those. Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/CHANGELOG.md /optee_os/MAINTAINERS /optee_os/Makefile /optee_os/core/arch/arm/dts/stm32mp13-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp13xc.dtsi /optee_os/core/arch/arm/dts/stm32mp13xf.dtsi /optee_os/core/arch/arm/dts/stm32mp15-pinctrl.dtsi /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/arm64_macros.S /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/user_access_arch.h /optee_os/core/arch/arm/kernel/arch_scall.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/mm/mobj_dyn_shm.c /optee_os/core/arch/arm/plat-aspeed/platform_ast2600.c /optee_os/core/arch/arm/plat-aspeed/platform_ast2700.c /optee_os/core/arch/arm/plat-bcm/main.c /optee_os/core/arch/arm/plat-corstone1000/main.c /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-imx/pm/cpuidle-imx7d.c /optee_os/core/arch/arm/plat-imx/pm/imx7_suspend.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.h /optee_os/core/arch/arm/plat-k3/drivers/ti_sci_protocol.h /optee_os/core/arch/arm/plat-k3/main.c /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-marvell/main.c /optee_os/core/arch/arm/plat-mediatek/main.c /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-rcar/main.c /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rzn1/main.c /optee_os/core/arch/arm/plat-sam/freq.c /optee_os/core/arch/arm/plat-sam/main.c /optee_os/core/arch/arm/plat-sprd/main.c /optee_os/core/arch/arm/plat-stm/main.c /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pwr.c /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_syscfg.c /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-sunxi/main.c /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-ti/a9_plat_init.S /optee_os/core/arch/arm/plat-ti/main.c /optee_os/core/arch/arm/plat-totalcompute/main.c /optee_os/core/arch/arm/plat-uniphier/main.c /optee_os/core/arch/arm/plat-versal/main.c /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-zynq7k/main.c /optee_os/core/arch/arm/plat-zynqmp/main.c /optee_os/core/arch/riscv/include/kernel/delay_arch.h /optee_os/core/arch/riscv/include/kernel/tlb_helpers.h /optee_os/core/arch/riscv/include/kernel/user_access_arch.h /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/arch_scall.c /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/kernel/tee_time_rdtime.c /optee_os/core/arch/riscv/mm/core_mmu_arch.c /optee_os/core/arch/riscv/mm/sub.mk /optee_os/core/arch/riscv/mm/tlb_helpers_rv.S /optee_os/core/arch/riscv/riscv.mk /optee_os/core/crypto/crypto.c /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/clk/clk_dt.c /optee_os/core/drivers/crypto/caam/acipher/caam_dh.c /optee_os/core/drivers/crypto/caam/acipher/caam_dsa.c /optee_os/core/drivers/crypto/caam/acipher/caam_ecc.c /optee_os/core/drivers/crypto/caam/acipher/caam_rsa.c /optee_os/core/drivers/crypto/caam/cipher/caam_cipher_mac.c /optee_os/core/drivers/crypto/caam/hal/common/hal_cfg.c /optee_os/core/drivers/crypto/se050/core/ecc.c /optee_os/core/drivers/crypto/se050/core/rsa.c /optee_os/core/drivers/crypto/se050/glue/i2c_stm32.c /optee_os/core/drivers/crypto/versal/ecc.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/hfic.c /optee_os/core/drivers/plic.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_etzpc.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_i2c.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/drivers/stm32mp15_huk.c /optee_os/core/drivers/sub.mk /optee_os/core/include/crypto/crypto.h /optee_os/core/include/drivers/plic.h /optee_os/core/include/drivers/stm32_bsec.h /optee_os/core/include/drivers/stm32_etzpc.h /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/drivers/stm32_i2c.h /optee_os/core/include/drivers/stm32_uart.h /optee_os/core/include/dt-bindings/clock/stm32mp13-clks.h /optee_os/core/include/dt-bindings/regulator/st,stm32mp13-regulator.h /optee_os/core/include/dt-bindings/rtc/rtc-stm32.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/dt.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/ldelf_loader.h /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/user_access.h /optee_os/core/include/kernel/user_mode_ctx_struct.h /optee_os/core/kernel/dt.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/ldelf_loader.c /optee_os/core/kernel/scall.c /optee_os/core/kernel/thread.c /optee_os/core/kernel/user_access.c /optee_os/core/kernel/user_ta.c /optee_os/core/lib/libtomcrypt/dh.c /optee_os/core/lib/libtomcrypt/dsa.c /optee_os/core/lib/libtomcrypt/ecc.c /optee_os/core/lib/libtomcrypt/mpi_desc.c /optee_os/core/lib/libtomcrypt/rsa.c /optee_os/core/pta/system.c /optee_os/core/tee/tee_svc.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/core/tee/tee_svc_storage.c /optee_os/ldelf/ftrace.c /optee_os/ldelf/main.c /optee_os/ldelf/ta_elf.c /optee_os/ldelf/ta_elf.h /optee_os/lib/libmbedtls/core/bignum.c /optee_os/lib/libmbedtls/core/dh.c /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libmbedtls/core/rsa.c /optee_os/lib/libutee/arch/riscv/utee_syscalls_rv.S /optee_os/lib/libutee/include/riscv_user_sysreg.h /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutils/ext/arch/riscv/mcount_rv.S /optee_os/lib/libutils/ext/arch/riscv/sub.mk /optee_os/lib/libutils/ext/ftrace/ftrace.c /optee_os/lib/libutils/ext/include/asm.S /optee_os/lib/libutils/ext/include/riscv.S /optee_os/lib/libutils/ext/include/util.h /optee_os/lib/libutils/isoc/arch/riscv/setjmp_rv.S /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/setjmp.h /optee_os/mk/aosp_optee.mk /optee_os/mk/config.mk /optee_os/scripts/ftrace_format.py /optee_os/scripts/symbolize.py /optee_os/ta/arch/riscv/ta.ld.S src/pkcs11_attributes.c
5d6b6c79	12-Jun-2023	Jose Quaresma <jose.quaresma@foundries.io>	ta: pkcs11: Fix conflicting types due to enum/integer mismatch This is an error with gcc13 [-Werror=enum-int-mismatch] Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Jose Qu ta: pkcs11: Fix conflicting types due to enum/integer mismatch This is an error with gcc13 [-Werror=enum-int-mismatch] Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org> Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> show more ... /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/kernel/spmc_sp_handler.h /optee_os/core/arch/arm/include/kernel/thread_spmc.h /optee_os/core/arch/arm/include/kernel/tlb_helpers.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/kernel/abort.c /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/cache_helpers_a64.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/spmc_sp_handler.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/thread_spmc_a64.S /optee_os/core/arch/arm/kernel/tlb_helpers_a32.S /optee_os/core/arch/arm/kernel/tlb_helpers_a64.S /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/mm/core_mmu.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/core_mmu_v7.c /optee_os/core/arch/arm/mm/mobj_ffa.c /optee_os/core/arch/arm/mm/tee_pager.c /optee_os/core/arch/arm/plat-aspeed/conf.mk /optee_os/core/arch/arm/plat-aspeed/platform_ast2700.c /optee_os/core/arch/arm/plat-aspeed/platform_config.h /optee_os/core/arch/arm/plat-aspeed/sub.mk /optee_os/core/arch/arm/plat-nuvoton/conf.mk /optee_os/core/arch/arm/plat-nuvoton/main.c /optee_os/core/arch/arm/plat-nuvoton/platform_config.h /optee_os/core/arch/arm/plat-nuvoton/sub.mk /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/abort.c /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/kernel/unwind_rv.c /optee_os/core/arch/riscv/mm/tlb_helpers_rv.S /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/arch/riscv/riscv.mk /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/clk/clk-stm32-core.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/clk/clk_dt.c /optee_os/core/drivers/clk/sam/at91_clk.h /optee_os/core/drivers/clk/sam/at91_pmc.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/gpio/gpio.c /optee_os/core/drivers/i2c/atmel_i2c.c /optee_os/core/drivers/imx_ele.c /optee_os/core/drivers/pinctrl/atmel_pio.c /optee_os/core/drivers/pinctrl/pinctrl.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_rng.c /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/i2c.h /optee_os/core/include/drivers/pinctrl.h /optee_os/core/include/drivers/rstctrl.h /optee_os/core/include/drivers/stm32_gpio.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/thread.h /optee_os/core/include/kernel/virtualization.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/include/mm/mobj.h /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/interrupt.c /optee_os/core/mm/core_mmu.c /optee_os/core/mm/vm.c /optee_os/core/pta/tests/dt_driver_test.c /optee_os/keys/default.pem /optee_os/keys/default_ta.pem /optee_os/lib/libunw/include/unw/unwind.h /optee_os/lib/libunw/sub.mk /optee_os/lib/libunw/unwind_arm64.c /optee_os/lib/libunw/unwind_riscv.c /optee_os/lib/libutee/arch/riscv/utee_syscalls_rv.S /optee_os/mk/aosp_optee.mk /optee_os/scripts/symbolize.py /optee_os/ta/mk/ta_dev_kit.mk src/processing.h /optee_os/ta/ta.mk
bb5d1825	12-May-2023	Etienne Carriere <etienne.carriere@linaro.org>	ta: pkcs11: invalidate handle of destroyed token objects Marks as invalid any object handle that refers to the token object that is being destroying so that any use of the related handle will consid ta: pkcs11: invalidate handle of destroyed token objects Marks as invalid any object handle that refers to the token object that is being destroying so that any use of the related handle will consider the object handle as invalid. Link: https://github.com/OP-TEE/optee_os/issues/6005 Reviewed-by: Valerii Chubar <valerii_chubar@epam.com> Reviewed-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... src/object.c src/pkcs11_token.c src/pkcs11_token.h
2bc50ed5	12-May-2023	Etienne Carriere <etienne.carriere@linaro.org>	ta: pkcs11: invalidating handle in a database Introduces a specific pointer value for handles that are no more valid and API function handle_invalidate() to mark that a handle is no more valid. Rev ta: pkcs11: invalidating handle in a database Introduces a specific pointer value for handles that are no more valid and API function handle_invalidate() to mark that a handle is no more valid. Reviewed-by: Valerii Chubar <valerii_chubar@epam.com> Reviewed-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... src/handle.c src/handle.h
b8fa5170	12-May-2023	Etienne Carriere <etienne.carriere@linaro.org>	ta: pkcs11: factorize handle reference sanity test Factorizes sanity validation of handle database and handle value in pkcs11 TA handle functions Reviewed-by: Valerii Chubar <valerii_chubar@epam.co ta: pkcs11: factorize handle reference sanity test Factorizes sanity validation of handle database and handle value in pkcs11 TA handle functions Reviewed-by: Valerii Chubar <valerii_chubar@epam.com> Reviewed-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/.clang-format /optee_os/.github/workflows/ci.yml /optee_os/MAINTAINERS /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/dts/dt_driver_test.dtsi /optee_os/core/arch/arm/dts/sama5d2.dtsi /optee_os/core/arch/arm/include/arm.h /optee_os/core/arch/arm/include/arm64.h /optee_os/core/arch/arm/include/ffa.h /optee_os/core/arch/arm/include/mm/generic_ram_layout.h /optee_os/core/arch/arm/include/sm/optee_smc.h /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/link.mk /optee_os/core/arch/arm/kernel/link_dummies_init.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_a32.S /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/kernel/thread_optee_smc_a32.S /optee_os/core/arch/arm/kernel/thread_optee_smc_a64.S /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/plat-aspeed/platform_ast2600.c /optee_os/core/arch/arm/plat-bcm/main.c /optee_os/core/arch/arm/plat-corstone1000/main.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/config/imx6qdlsolo.h /optee_os/core/arch/arm/plat-imx/config/imx6sl.h /optee_os/core/arch/arm/plat-imx/config/imx6sll.h /optee_os/core/arch/arm/plat-imx/config/imx6sx.h /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-imx/platform_config.h /optee_os/core/arch/arm/plat-imx/sm_platform_handler.c /optee_os/core/arch/arm/plat-imx/sub.mk /optee_os/core/arch/arm/plat-imx/tzc380.c /optee_os/core/arch/arm/plat-k3/main.c /optee_os/core/arch/arm/plat-ls/conf.mk /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-marvell/main.c /optee_os/core/arch/arm/plat-mediatek/main.c /optee_os/core/arch/arm/plat-rcar/main.c /optee_os/core/arch/arm/plat-rockchip/main.c /optee_os/core/arch/arm/plat-rzn1/main.c /optee_os/core/arch/arm/plat-rzn1/platform_config.h /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sam/main.c /optee_os/core/arch/arm/plat-sam/nsec-service/sm_platform_handler.c /optee_os/core/arch/arm/plat-sam/nsec-service/smc_ids.h /optee_os/core/arch/arm/plat-sam/sam_sfr.c /optee_os/core/arch/arm/plat-sam/scmi_server.c /optee_os/core/arch/arm/plat-sam/sub.mk /optee_os/core/arch/arm/plat-sprd/main.c /optee_os/core/arch/arm/plat-stm/main.c /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-sunxi/main.c /optee_os/core/arch/arm/plat-synquacer/main.c /optee_os/core/arch/arm/plat-ti/main.c /optee_os/core/arch/arm/plat-totalcompute/main.c /optee_os/core/arch/arm/plat-uniphier/main.c /optee_os/core/arch/arm/plat-versal/main.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/plat-vexpress/platform_config.h /optee_os/core/arch/arm/plat-zynq7k/main.c /optee_os/core/arch/arm/plat-zynqmp/main.c /optee_os/core/arch/riscv/include/encoding.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/mm/tlb_helpers_rv.S /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/crypto.mk /optee_os/core/drivers/atmel_piobu.c /optee_os/core/drivers/atmel_rstc.c /optee_os/core/drivers/atmel_rtc.c /optee_os/core/drivers/atmel_saic.c /optee_os/core/drivers/atmel_shdwc.c /optee_os/core/drivers/atmel_wdt.c /optee_os/core/drivers/cbmem_console.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/clk/sam/at91_clk.h /optee_os/core/drivers/clk/sam/at91_pmc.c /optee_os/core/drivers/clk/sam/at91_sckc.c /optee_os/core/drivers/clk/sam/sama5d2_clk.c /optee_os/core/drivers/crypto/caam/acipher/caam_ecc.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/caam/sub.mk /optee_os/core/drivers/crypto/crypto_api/acipher/ecc.c /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt_acipher.h /optee_os/core/drivers/crypto/se050/adaptors/apis/sss.c /optee_os/core/drivers/crypto/se050/core/ecc.c /optee_os/core/drivers/crypto/stm32/authenc.c /optee_os/core/drivers/crypto/stm32/cipher.c /optee_os/core/drivers/crypto/stm32/stm32_cryp.c /optee_os/core/drivers/crypto/versal/ecc.c /optee_os/core/drivers/gic.c /optee_os/core/drivers/gpio/gpio.c /optee_os/core/drivers/gpio/sub.mk /optee_os/core/drivers/hfic.c /optee_os/core/drivers/i2c/atmel_i2c.c /optee_os/core/drivers/i2c/i2c.c /optee_os/core/drivers/imx_caam.c /optee_os/core/drivers/imx_csu.c /optee_os/core/drivers/imx_lpuart.c /optee_os/core/drivers/imx_scu.c /optee_os/core/drivers/imx_uart.c /optee_os/core/drivers/ls_gpio.c /optee_os/core/drivers/pinctrl/atmel_pio.c /optee_os/core/drivers/pinctrl/pinctrl.c /optee_os/core/drivers/pinctrl/sub.mk /optee_os/core/drivers/pl011.c /optee_os/core/drivers/rstctrl/rstctrl.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/scmi-msg/clock_generic.c /optee_os/core/drivers/scmi-msg/sub.mk /optee_os/core/drivers/serial8250_uart.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/drivers/sub.mk /optee_os/core/drivers/versal_gpio.c /optee_os/core/include/drivers/atmel_saic.h /optee_os/core/include/drivers/bcm_gpio.h /optee_os/core/include/drivers/cbmem_console.h /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/gic.h /optee_os/core/include/drivers/gpio.h /optee_os/core/include/drivers/hfic.h /optee_os/core/include/drivers/i2c.h /optee_os/core/include/drivers/ls_gpio.h /optee_os/core/include/drivers/pinctrl.h /optee_os/core/include/drivers/pl022_spi.h /optee_os/core/include/drivers/pl061_gpio.h /optee_os/core/include/drivers/rstctrl.h /optee_os/core/include/drivers/scmi-msg.h /optee_os/core/include/drivers/versal_gpio.h /optee_os/core/include/dt-bindings/clock/at91.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/dt.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/interrupt.h /optee_os/core/include/kernel/tee_ta_manager.h /optee_os/core/include/kernel/thread_private.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/console.c /optee_os/core/kernel/dt.c /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/interrupt.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/thread.c /optee_os/core/mm/core_mmu.c /optee_os/core/pta/tests/dt_driver_test.c /optee_os/core/pta/tests/sub.mk /optee_os/core/tee/tee_svc_cryp.c /optee_os/lib/libutee/include/elf.h /optee_os/lib/libutils/ext/include/bitstring.h /optee_os/lib/libutils/ext/include/compiler.h /optee_os/lib/libutils/isoc/arch/arm/arm32_aeabi_divmod.c /optee_os/mk/cc-option.mk /optee_os/mk/compile.mk /optee_os/mk/config.mk src/handle.c
920e0127	26-Mar-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: Allow authentication mode switch with PIN change In order to enable one to switch from PIN mode to TEE Identity mode or vice versa enable the mode switch when token has just been initial ta: pkcs11: Allow authentication mode switch with PIN change In order to enable one to switch from PIN mode to TEE Identity mode or vice versa enable the mode switch when token has just been initialized but not taken in use (eg. no user PIN set). Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... include/pkcs11_ta.h src/pkcs11_token.c
f1105cc5	26-Mar-2023	Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com>	ta: pkcs11: Fix token initialization's authentication When token has been initialized make sure that SO is properly authenticated based on authentication mode setting to follow PKCS#11 2.40 specific ta: pkcs11: Fix token initialization's authentication When token has been initialized make sure that SO is properly authenticated based on authentication mode setting to follow PKCS#11 2.40 specification for C_InitToken(). This makes it impossible to change authentication mode with C_InitToken(). Signed-off-by: Vesa Jääskeläinen <vesa.jaaskelainen@vaisala.com> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/CHANGELOG.md /optee_os/core/arch/arm/crypto/sha3_armv8a_ce.c /optee_os/core/arch/arm/crypto/sha3_armv8a_ce_a64.S /optee_os/core/arch/arm/crypto/sm4_armv8a_aese_a64.S /optee_os/core/arch/arm/crypto/sm4_armv8a_ce.c /optee_os/core/arch/arm/crypto/sm4_armv8a_ce.h /optee_os/core/arch/arm/crypto/sm4_armv8a_ce_a64.S /optee_os/core/arch/arm/crypto/sm4_armv8a_neon.c /optee_os/core/arch/arm/crypto/sm4_armv8a_neon.h /optee_os/core/arch/arm/crypto/sub.mk /optee_os/core/arch/arm/dts/at91-sama5d27_wlsom1.dtsi /optee_os/core/arch/arm/dts/stm32mp157a-dk1.dts /optee_os/core/arch/arm/dts/stm32mp157c-dk2.dts /optee_os/core/arch/arm/dts/stm32mp157c-ed1.dts /optee_os/core/arch/arm/include/kernel/secure_partition.h /optee_os/core/arch/arm/include/mm/core_mmu_arch.h /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/thread_optee_smc_a64.S /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/kernel/virtualization.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/core_mmu_v7.c /optee_os/core/arch/arm/mm/tee_pager.c /optee_os/core/arch/arm/plat-hisilicon/psci.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/drivers/tzc380.c /optee_os/core/arch/arm/plat-imx/pm/psci.c /optee_os/core/arch/arm/plat-imx/registers/imx8ulp.h /optee_os/core/arch/arm/plat-imx/registers/imx93.h /optee_os/core/arch/arm/plat-ls/main.c /optee_os/core/arch/arm/plat-rcar/romapi_call.S /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sam/matrix.c /optee_os/core/arch/arm/plat-sam/matrix.h /optee_os/core/arch/arm/plat-sam/sam_sfr.c /optee_os/core/arch/arm/plat-sam/sama5d2.h /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/drivers/stm32mp1_pmic.c /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-sunxi/psci.c /optee_os/core/arch/arm/plat-totalcompute/fdts/optee_sp_manifest.dts /optee_os/core/arch/arm/plat-totalcompute/platform_config.h /optee_os/core/arch/arm/plat-zynqmp/main.c /optee_os/core/arch/arm/plat-zynqmp/platform_config.h /optee_os/core/arch/riscv/include/mm/core_mmu_arch.h /optee_os/core/arch/riscv/kernel/kern.ld.S /optee_os/core/crypto.mk /optee_os/core/crypto/sm4_accel.c /optee_os/core/crypto/sub.mk /optee_os/core/drivers/atmel_rstc.c /optee_os/core/drivers/atmel_rtc.c /optee_os/core/drivers/atmel_shdwc.c /optee_os/core/drivers/atmel_tcb.c /optee_os/core/drivers/atmel_trng.c /optee_os/core/drivers/atmel_wdt.c /optee_os/core/drivers/clk/clk-stm32mp13.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/clk/clk_dt.c /optee_os/core/drivers/clk/sam/sama5d2_clk.c /optee_os/core/drivers/crypto/caam/acipher/sub.mk /optee_os/core/drivers/crypto/caam/caam_ctrl.c /optee_os/core/drivers/crypto/caam/caam_pwr.c /optee_os/core/drivers/crypto/caam/crypto.mk /optee_os/core/drivers/crypto/caam/hal/common/hal_cfg_dt.c /optee_os/core/drivers/crypto/caam/hal/common/hal_ctrl.c /optee_os/core/drivers/crypto/caam/hal/imx_8m/registers/ctrl_regs.h /optee_os/core/drivers/crypto/caam/include/caam_acipher.h /optee_os/core/drivers/crypto/caam/include/caam_desc_defines.h /optee_os/core/drivers/crypto/caam/include/caam_hal_ctrl.h /optee_os/core/drivers/crypto/caam/include/caam_mp.h /optee_os/core/drivers/crypto/caam/include/caam_status.h /optee_os/core/drivers/crypto/caam/include/caam_trace.h /optee_os/core/drivers/crypto/caam/mp/caam_mp.c /optee_os/core/drivers/crypto/caam/mp/sub.mk /optee_os/core/drivers/crypto/caam/sub.mk /optee_os/core/drivers/crypto/caam/utils/utils_status.c /optee_os/core/drivers/crypto/crypto_api/acipher/ecc.c /optee_os/core/drivers/crypto/crypto_api/acipher/rsassa.c /optee_os/core/drivers/crypto/crypto_api/include/drvcrypt_acipher.h /optee_os/core/drivers/crypto/se050/core/ecc.c /optee_os/core/drivers/crypto/se050/crypto.mk /optee_os/core/drivers/crypto/stm32/stm32_cryp.c /optee_os/core/drivers/crypto/versal/ecc.c /optee_os/core/drivers/i2c/atmel_i2c.c /optee_os/core/drivers/i2c/i2c.c /optee_os/core/drivers/i2c/sub.mk /optee_os/core/drivers/imx/dcp/dcp.c /optee_os/core/drivers/imx/mu/sub.mk /optee_os/core/drivers/imx_ele.c /optee_os/core/drivers/imx_i2c.c /optee_os/core/drivers/imx_wdog.c /optee_os/core/drivers/ls_dspi.c /optee_os/core/drivers/pm/sam/at91_pm.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_etzpc.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_i2c.c /optee_os/core/drivers/stm32_iwdg.c /optee_os/core/drivers/stm32_rng.c /optee_os/core/drivers/stm32_tamp.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/drivers/stm32mp15_huk.c /optee_os/core/drivers/sub.mk /optee_os/core/drivers/tzc380.c /optee_os/core/drivers/xiphera_trng.c /optee_os/core/drivers/zynqmp_csu_aes.c /optee_os/core/drivers/zynqmp_csu_puf.c /optee_os/core/include/crypto/crypto_accel.h /optee_os/core/include/drivers/caam_extension.h /optee_os/core/include/drivers/i2c.h /optee_os/core/include/drivers/imx_mu.h /optee_os/core/include/kernel/dt.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/linker.h /optee_os/core/include/kernel/virtualization.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/dt.c /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/ree_fs_ta.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/lib/libtomcrypt/rsa.c /optee_os/core/lib/libtomcrypt/sha3_accel.c /optee_os/core/lib/libtomcrypt/src/hashes/sub.mk /optee_os/core/lib/libtomcrypt/src/pk/pkcs1/pkcs_1_v1_5_decode.c /optee_os/core/lib/libtomcrypt/sub.mk /optee_os/core/lib/libtomcrypt/tomcrypt.c /optee_os/core/mm/core_mmu.c /optee_os/core/mm/fobj.c /optee_os/core/pta/attestation.c /optee_os/core/pta/imx/manufacturing_protection.c /optee_os/core/pta/imx/sub.mk /optee_os/core/tee/tee_svc_cryp.c /optee_os/ldelf/ldelf.mk /optee_os/ldelf/sub.mk /optee_os/ldelf/syscalls_rv.S /optee_os/lib/libmbedtls/core/ecc.c /optee_os/lib/libmbedtls/core/rsa.c /optee_os/lib/libutee/arch/arm/sub.mk /optee_os/lib/libutee/include/pta_imx_manufacturing_protection.h /optee_os/lib/libutee/include/tee_api_defines_extensions.h /optee_os/lib/libutee/include/utee_defines.h /optee_os/lib/libutee/sub.mk /optee_os/lib/libutee/tcb.c /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutee/tee_api_operations.c /optee_os/lib/libutee/user_ta_entry.c /optee_os/lib/libutee/user_ta_entry_compat.c /optee_os/mk/config.mk /optee_os/ta/arch/riscv/ta.ld.S /optee_os/ta/link.mk /optee_os/ta/link_shlib.mk /optee_os/ta/mk/build-user-ta.mk include/pkcs11_ta.h src/pkcs11_token.c /optee_os/ta/ta.mk /optee_os/ta/user_ta_header.c
9894fdb4	24-Feb-2023	Clement Faure <clement.faure@nxp.com>	ta: pkcs11: fix trace compilation warning Fix the following compilation issue: $ make PLATFORM=imx-mx8mmevk CFG_TEE_TA_LOG_LEVEL=4 CFG_PKCS11_TA=y In file included from out/arm-plat-imx/export-ta_a ta: pkcs11: fix trace compilation warning Fix the following compilation issue: $ make PLATFORM=imx-mx8mmevk CFG_TEE_TA_LOG_LEVEL=4 CFG_PKCS11_TA=y In file included from out/arm-plat-imx/export-ta_arm64/include/assert.h:9, from ta/pkcs11/src/entry.c:6: ta/pkcs11/src/entry.c: In function ‘TA_InvokeCommandEntryPoint’: ta/pkcs11/src/entry.c:143:14: warning: format ‘%u’ expects argument of type ‘unsigned int’, but argument 7 has type ‘size_t’ {aka ‘long unsigned int’} [-Wformat=] 143 \| DMSG("%s p#0 %"PRIu32"@%p, p#1 %s %"PRIu32"@%p, p#2 %s %"PRIu32"@%p", \| ^~~~~~~~~~ 144 \| id2str_ta_cmd(cmd), 145 \| params[0].memref.size, params[0].memref.buffer, \| ~~~~~~~~~~~~~~~~~~~~~ \| \| \| size_t {aka long unsigned int} out/arm-plat-imx/export-ta_arm64/include/trace.h:41:22: note: in definition of macro ‘trace_printf_helper’ 41 \| __VA_ARGS__) \| ^~~~~~~~~~~ ta/pkcs11/src/entry.c:143:9: note: in expansion of macro ‘DMSG’ 143 \| DMSG("%s p#0 %"PRIu32"@%p, p#1 %s %"PRIu32"@%p, p#2 %s %"PRIu32"@%p", \| ^~~~ ta/pkcs11/src/entry.c:143:23: note: format string is defined here 143 \| DMSG("%s p#0 %"PRIu32"@%p, p#1 %s %"PRIu32"@%p, p#2 %s %"PRIu32"@%p", \| ~^ \| \| \| unsigned int \| %lu ta/pkcs11/src/entry.c:143:14: warning: format ‘%u’ expects argument of type ‘unsigned int’, but argument 10 has type ‘size_t’ {aka ‘long unsigned int’} [-Wformat=] 143 \| DMSG("%s p#0 %"PRIu32"@%p, p#1 %s %"PRIu32"@%p, p#2 %s %"PRIu32"@%p", \| ^~~~~~~~~~ ...... 148 \| param_is_memref(ptypes, 1) ? params[1].memref.size : 0, \| ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ \| \| \| size_t {aka long unsigned int} out/arm-plat-imx/export-ta_arm64/include/trace.h:41:22: note: in definition of macro ‘trace_printf_helper’ 41 \| __VA_ARGS__) \| ^~~~~~~~~~~ ta/pkcs11/src/entry.c:143:9: note: in expansion of macro ‘DMSG’ 143 \| DMSG("%s p#0 %"PRIu32"@%p, p#1 %s %"PRIu32"@%p, p#2 %s %"PRIu32"@%p", \| ^~~~ ta/pkcs11/src/entry.c:143:14: warning: format ‘%u’ expects argument of type ‘unsigned int’, but argument 13 has type ‘size_t’ {aka ‘long unsigned int’} [-Wformat=] 143 \| DMSG("%s p#0 %"PRIu32"@%p, p#1 %s %"PRIu32"@%p, p#2 %s %"PRIu32"@%p", \| ^~~~~~~~~~ ...... 152 \| param_is_memref(ptypes, 2) ? params[2].memref.size : 0, \| ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ \| \| \| size_t {aka long unsigned int} out/arm-plat-imx/export-ta_arm64/include/trace.h:41:22: note: in definition of macro ‘trace_printf_helper’ 41 \| __VA_ARGS__) \| ^~~~~~~~~~~ ta/pkcs11/src/entry.c:143:9: note: in expansion of macro ‘DMSG’ 143 \| DMSG("%s p#0 %"PRIu32"@%p, p#1 %s %"PRIu32"@%p, p#2 %s %"PRIu32"@%p", \| ^~~~ Signed-off-by: Clement Faure <clement.faure@nxp.com> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/core/arch/arm/dts/sama5d2.dtsi /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a32.S /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/kern.ld.S /optee_os/core/arch/arm/kernel/link.mk /optee_os/core/arch/arm/kernel/link_dummies_paged.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/sub.mk /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_optee_smc.c /optee_os/core/arch/arm/mm/core_mmu_lpae.c /optee_os/core/arch/arm/mm/core_mmu_v7.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/drivers/tzc380.c /optee_os/core/arch/arm/plat-imx/link.mk /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-k3/conf.mk /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.c /optee_os/core/arch/arm/plat-k3/drivers/ti_sci.h /optee_os/core/arch/arm/plat-k3/drivers/ti_sci_protocol.h /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-totalcompute/conf.mk /optee_os/core/arch/arm/plat-versal/conf.mk /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/tee/entry_fast.c /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/plat-spike/conf.mk /optee_os/core/crypto/crypto.c /optee_os/core/drivers/clk/clk-stm32mp15.c /optee_os/core/drivers/clk/sam/sama5d2_clk.c /optee_os/core/drivers/crypto/caam/acipher/caam_rsa.c /optee_os/core/drivers/crypto/caam/caam_jr.c /optee_os/core/drivers/crypto/caam/include/caam_hal_jr.h /optee_os/core/drivers/crypto/versal/crypto.mk /optee_os/core/drivers/crypto/versal/ecc.c /optee_os/core/drivers/crypto/versal/rsa.c /optee_os/core/drivers/rstctrl/stm32_rstctrl.c /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_etzpc.c /optee_os/core/drivers/stm32_gpio.c /optee_os/core/drivers/stm32_rng.c /optee_os/core/drivers/stm32_uart.c /optee_os/core/include/crypto/crypto.h /optee_os/core/include/drivers/gic.h /optee_os/core/include/dt-bindings/clock/at91.h /optee_os/core/include/kernel/boot.h /optee_os/core/include/kernel/user_mode_ctx_struct.h /optee_os/core/include/kernel/virtualization.h /optee_os/core/include/mm/core_mmu.h /optee_os/core/kernel/ldelf_loader.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/thread.c /optee_os/core/kernel/tpm.c /optee_os/core/lib/libtomcrypt/ed25519.c /optee_os/core/mm/core_mmu.c /optee_os/core/pta/bcm/wdt.c /optee_os/core/pta/k3/otp.c /optee_os/core/pta/k3/sub.mk /optee_os/core/pta/stats.c /optee_os/core/pta/sub.mk /optee_os/core/pta/tests/misc.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/core/tee/tee_svc_storage.c /optee_os/ldelf/include/ldelf.h /optee_os/ldelf/main.c /optee_os/ldelf/ta_elf.c /optee_os/ldelf/ta_elf.h /optee_os/lib/libutee/arch/arm/arm32_user_sysreg.txt /optee_os/lib/libutee/include/k3/otp_keywriting_ta.h /optee_os/lib/libutee/include/tee_api_compat.h /optee_os/lib/libutee/include/tee_api_defines.h /optee_os/lib/libutee/include/tee_internal_api.h /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutee/include/utee_defines.h /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutee/tee_api_operations.c /optee_os/lib/libutils/ext/include/compiler.h /optee_os/lib/libutils/ext/pthread_stubs.c /optee_os/lib/libutils/ext/sub.mk /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/malloc.h /optee_os/mk/config.mk /optee_os/mk/lib.mk /optee_os/scripts/ts_bin_to_c.py /optee_os/ta/arch/arm/user_ta_header.c src/entry.c
c7f1b4f7	13-Dec-2022	Jens Wiklander <jens.wiklander@linaro.org>	Upgrade in-tree TAs to use latest version of TEE Internal Core API Upgrades in-tree TAs to use latest version of TEE Internal Core API and the compatibility flag is by default turned off. Upgrading Upgrade in-tree TAs to use latest version of TEE Internal Core API Upgrades in-tree TAs to use latest version of TEE Internal Core API and the compatibility flag is by default turned off. Upgrading the TAs is basically a matter of replacing a few uint32_t pointers with size_t pointers instead. This is done in as few places as possible. So in particular the PKCS#11 TA might benefit from another round of refactoring now that the contagious use of uint32_t as size field is removed. Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org> show more ... /optee_os/.github/workflows/ci.yml /optee_os/CHANGELOG.md /optee_os/MAINTAINERS /optee_os/Makefile /optee_os/core/arch/arm/arm.mk /optee_os/core/arch/arm/crypto/sha512_armv8a_ce.c /optee_os/core/arch/arm/crypto/sha512_armv8a_ce_a64.S /optee_os/core/arch/arm/crypto/sm3_armv8a_ce.c /optee_os/core/arch/arm/crypto/sm3_armv8a_ce_a64.S /optee_os/core/arch/arm/crypto/sub.mk /optee_os/core/arch/arm/dts/at91-sama5d27_som1.dtsi /optee_os/core/arch/arm/dts/at91-sama5d27_som1_ek.dts /optee_os/core/arch/arm/dts/at91-sama5d27_wlsom1.dtsi /optee_os/core/arch/arm/dts/at91-sama5d27_wlsom1_ek.dts /optee_os/core/arch/arm/dts/at91-sama5d2_xplained.dts /optee_os/core/arch/arm/dts/sama5d2.dtsi /optee_os/core/arch/arm/dts/stm32mp13-pinctrl.dtsi /optee_os/core/arch/arm/dts/stm32mp131.dtsi /optee_os/core/arch/arm/dts/stm32mp135f-dk.dts /optee_os/core/arch/arm/dts/stm32mp151.dtsi /optee_os/core/arch/arm/include/hafnium.h /optee_os/core/arch/arm/include/kernel/arch_scall.h /optee_os/core/arch/arm/include/kernel/delay_arch.h /optee_os/core/arch/arm/include/kernel/stmm_sp.h /optee_os/core/arch/arm/include/kernel/thread_arch.h /optee_os/core/arch/arm/include/kernel/thread_private_arch.h /optee_os/core/arch/arm/include/scmi/scmi_server.h /optee_os/core/arch/arm/kernel/arch_scall.c /optee_os/core/arch/arm/kernel/arch_scall_a32.S /optee_os/core/arch/arm/kernel/arch_scall_a64.S /optee_os/core/arch/arm/kernel/asm-defines.c /optee_os/core/arch/arm/kernel/boot.c /optee_os/core/arch/arm/kernel/entry_a64.S /optee_os/core/arch/arm/kernel/ldelf_loader.c /optee_os/core/arch/arm/kernel/secure_partition.c /optee_os/core/arch/arm/kernel/stmm_sp.c /optee_os/core/arch/arm/kernel/sub.mk /optee_os/core/arch/arm/kernel/thread.c /optee_os/core/arch/arm/kernel/thread_a32.S /optee_os/core/arch/arm/kernel/thread_a64.S /optee_os/core/arch/arm/kernel/thread_spmc.c /optee_os/core/arch/arm/mm/mobj_ffa.c /optee_os/core/arch/arm/plat-imx/conf.mk /optee_os/core/arch/arm/plat-imx/main.c /optee_os/core/arch/arm/plat-k3/platform_config.h /optee_os/core/arch/arm/plat-mediatek/conf.mk /optee_os/core/arch/arm/plat-mediatek/platform_config.h /optee_os/core/arch/arm/plat-sam/conf.mk /optee_os/core/arch/arm/plat-sam/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/conf.mk /optee_os/core/arch/arm/plat-stm32mp1/main.c /optee_os/core/arch/arm/plat-stm32mp1/nsec-service/stm32mp1_smc.h /optee_os/core/arch/arm/plat-stm32mp1/platform_config.h /optee_os/core/arch/arm/plat-stm32mp1/scmi_server.c /optee_os/core/arch/arm/plat-stm32mp1/shared_resources.c /optee_os/core/arch/arm/plat-stm32mp1/stm32_util.h /optee_os/core/arch/arm/plat-totalcompute/fdts/optee_sp_manifest.dts /optee_os/core/arch/arm/plat-versal/conf.mk /optee_os/core/arch/arm/plat-versal/main.c /optee_os/core/arch/arm/plat-versal/platform_config.h /optee_os/core/arch/arm/plat-vexpress/conf.mk /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/arch/arm/tee/entry_fast.c /optee_os/core/arch/arm/tee/sub.mk /optee_os/core/arch/riscv/include/kernel/arch_scall.h /optee_os/core/arch/riscv/include/kernel/clint.h /optee_os/core/arch/riscv/include/kernel/delay_arch.h /optee_os/core/arch/riscv/include/kernel/stmm_sp.h /optee_os/core/arch/riscv/include/kernel/thread_arch.h /optee_os/core/arch/riscv/include/kernel/thread_private_arch.h /optee_os/core/arch/riscv/include/kernel/time.h /optee_os/core/arch/riscv/include/riscv.h /optee_os/core/arch/riscv/include/riscv_macros.S /optee_os/core/arch/riscv/kernel/abort.c /optee_os/core/arch/riscv/kernel/arch_scall.c /optee_os/core/arch/riscv/kernel/arch_scall_rv.S /optee_os/core/arch/riscv/kernel/asm-defines.c /optee_os/core/arch/riscv/kernel/boot.c /optee_os/core/arch/riscv/kernel/cache_helpers_rv.S /optee_os/core/arch/riscv/kernel/entry.S /optee_os/core/arch/riscv/kernel/kern.ld.S /optee_os/core/arch/riscv/kernel/link.mk /optee_os/core/arch/riscv/kernel/sub.mk /optee_os/core/arch/riscv/kernel/tee_time_rdtime.c /optee_os/core/arch/riscv/kernel/thread_arch.c /optee_os/core/arch/riscv/kernel/thread_rv.S /optee_os/core/arch/riscv/plat-spike/conf.mk /optee_os/core/arch/riscv/plat-virt/conf.mk /optee_os/core/arch/riscv/plat-virt/main.c /optee_os/core/arch/riscv/plat-virt/platform_config.h /optee_os/core/arch/riscv/plat-virt/sub.mk /optee_os/core/arch/riscv/riscv.mk /optee_os/core/arch/riscv/tee/sub.mk /optee_os/core/core.mk /optee_os/core/crypto.mk /optee_os/core/crypto/crypto.c /optee_os/core/crypto/sm3.c /optee_os/core/drivers/atmel_rstc.c /optee_os/core/drivers/atmel_shdwc.c /optee_os/core/drivers/atmel_wdt.c /optee_os/core/drivers/clk/clk.c /optee_os/core/drivers/crypto/caam/acipher/caam_math.c /optee_os/core/drivers/crypto/caam/utils/utils_delay.c /optee_os/core/drivers/crypto/crypto_api/acipher/ecc.c /optee_os/core/drivers/crypto/crypto_api/acipher/rsassa.c /optee_os/core/drivers/crypto/crypto_api/cipher/cipher.c /optee_os/core/drivers/crypto/crypto_api/hash/hash.c /optee_os/core/drivers/crypto/se050/adaptors/apis/sss.c /optee_os/core/drivers/crypto/se050/adaptors/include/se050.h /optee_os/core/drivers/crypto/se050/adaptors/utils/scp_config.c /optee_os/core/drivers/crypto/se050/adaptors/utils/utils.c /optee_os/core/drivers/crypto/se050/core/ecc.c /optee_os/core/drivers/crypto/se050/core/rsa.c /optee_os/core/drivers/crypto/se050/crypto.mk /optee_os/core/drivers/hfic.c /optee_os/core/drivers/ls_sfp.c /optee_os/core/drivers/rstctrl/rstctrl.c /optee_os/core/drivers/stm32_bsec.c /optee_os/core/drivers/stm32_rng.c /optee_os/core/drivers/stm32mp15_huk.c /optee_os/core/drivers/sub.mk /optee_os/core/drivers/versal_huk.c /optee_os/core/drivers/versal_pm.c /optee_os/core/drivers/versal_puf.c /optee_os/core/include/crypto/crypto_accel.h /optee_os/core/include/crypto/crypto_impl.h /optee_os/core/include/drivers/clk.h /optee_os/core/include/drivers/clk_dt.h /optee_os/core/include/drivers/hfic.h /optee_os/core/include/drivers/ls_sfp.h /optee_os/core/include/drivers/rstctrl.h /optee_os/core/include/drivers/stm32_bsec.h /optee_os/core/include/drivers/versal_puf.h /optee_os/core/include/kernel/delay.h /optee_os/core/include/kernel/dt_driver.h /optee_os/core/include/kernel/scall.h /optee_os/core/include/kernel/ts_manager.h /optee_os/core/kernel/delay.c /optee_os/core/kernel/dt_driver.c /optee_os/core/kernel/notif.c /optee_os/core/kernel/otp_stubs.c /optee_os/core/kernel/scall.c /optee_os/core/kernel/sub.mk /optee_os/core/kernel/tee_misc.c /optee_os/core/kernel/tee_ta_manager.c /optee_os/core/kernel/tee_time.c /optee_os/core/kernel/tee_time_ree.c /optee_os/core/kernel/user_ta.c /optee_os/core/lib/libtomcrypt/ccm.c /optee_os/core/lib/libtomcrypt/ecc.c /optee_os/core/lib/libtomcrypt/hash.c /optee_os/core/lib/libtomcrypt/hmac.c /optee_os/core/lib/libtomcrypt/mpi_desc.c /optee_os/core/lib/libtomcrypt/rsa.c /optee_os/core/lib/libtomcrypt/sha512_accel.c /optee_os/core/lib/libtomcrypt/shake.c /optee_os/core/lib/libtomcrypt/src/hashes/sha2/sub.mk /optee_os/core/lib/libtomcrypt/src/hashes/sub.mk /optee_os/core/lib/libtomcrypt/sub.mk /optee_os/core/lib/libtomcrypt/tomcrypt.c /optee_os/core/lib/scmi-server/conf-optee-fvp.mk /optee_os/core/lib/scmi-server/conf-optee-stm32mp1.mk /optee_os/core/lib/scmi-server/conf.mk /optee_os/core/lib/scmi-server/include/optee_scmi.h /optee_os/core/lib/scmi-server/scmi_server.c /optee_os/core/lib/scmi-server/sub-optee-fvp.mk /optee_os/core/lib/scmi-server/sub-optee-stm32mp1.mk /optee_os/core/lib/scmi-server/sub.mk /optee_os/core/pta/device.c /optee_os/core/pta/imx/digprog.c /optee_os/core/pta/imx/ocotp.c /optee_os/core/pta/imx/sub.mk /optee_os/core/pta/scmi.c /optee_os/core/pta/stm32mp/bsec_pta.c /optee_os/core/pta/stm32mp/sub.mk /optee_os/core/pta/sub.mk /optee_os/core/pta/tests/invoke.c /optee_os/core/tee/tee_svc.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/core/tee/tee_svc_storage.c /optee_os/lib/libmbedtls/core/hash.c /optee_os/lib/libmbedtls/include/mbedtls_config_kernel.h /optee_os/lib/libutee/arch/arm/sub.mk /optee_os/lib/libutee/arch/arm/user_ta_entry.c /optee_os/lib/libutee/arch/arm/user_ta_entry_compat.c /optee_os/lib/libutee/arch/riscv/sub.mk /optee_os/lib/libutee/arch/riscv/utee_syscalls_rv.S /optee_os/lib/libutee/include/pta_imx_digprog.h /optee_os/lib/libutee/include/pta_imx_ocotp.h /optee_os/lib/libutee/include/pta_scmi_client.h /optee_os/lib/libutee/include/pta_stm32mp_bsec.h /optee_os/lib/libutee/include/tee_api_compat.h /optee_os/lib/libutee/include/tee_api_defines.h /optee_os/lib/libutee/include/tee_api_defines_extensions.h /optee_os/lib/libutee/include/tee_api_types.h /optee_os/lib/libutee/include/tee_internal_api.h /optee_os/lib/libutee/include/user_ta_header.h /optee_os/lib/libutee/include/utee_defines.h /optee_os/lib/libutee/tee_api.c /optee_os/lib/libutee/tee_api_arith_mpi.c /optee_os/lib/libutee/tee_api_objects.c /optee_os/lib/libutee/tee_api_operations.c /optee_os/lib/libutee/tee_api_panic.c /optee_os/lib/libutee/tee_api_private.h /optee_os/lib/libutee/tee_api_property.c /optee_os/lib/libutils/ext/arch/riscv/atomic_rv.S /optee_os/lib/libutils/ext/arch/riscv/sub.mk /optee_os/lib/libutils/ext/include/config.h /optee_os/lib/libutils/isoc/arch/riscv/setjmp_rv.S /optee_os/lib/libutils/isoc/arch/riscv/sub.mk /optee_os/lib/libutils/isoc/bget_malloc.c /optee_os/lib/libutils/isoc/include/assert.h /optee_os/lib/libutils/isoc/include/malloc.h /optee_os/lib/libutils/isoc/include/setjmp.h /optee_os/mk/compile.mk /optee_os/mk/config.mk /optee_os/scripts/checkpatch.sh /optee_os/ta/arch/arm/user_ta_header.c /optee_os/ta/avb/entry.c src/persistent_token.c src/pkcs11_helpers.c src/processing.c src/processing_asymm.c src/processing_digest.c src/processing_symm.c /optee_os/ta/ta.mk /optee_os/ta/trusted_keys/entry.c
909efccb	06-Dec-2022	Etienne Carriere <etienne.carriere@linaro.org>	ta: pkcs11: save mechanism type on operation initialization Sets session active processing mechanism type from init_symm_operation(), init_asymm_operation() and init_disgest_operation() rather than ta: pkcs11: save mechanism type on operation initialization Sets session active processing mechanism type from init_symm_operation(), init_asymm_operation() and init_disgest_operation() rather than from their caller functions. No functional change. Reviewed-by: Valerii Chubar <valerii_chubar@epam.com> Reviewed-by: Xiaoxu Zeng <zengxiaoxu@huawei.com> Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/plat-d06/conf.mk /optee_os/core/arch/arm/plat-d06/main.c /optee_os/core/arch/arm/plat-d06/platform_config.h /optee_os/core/arch/arm/plat-stm/main.c /optee_os/core/arch/arm/plat-vexpress/main.c /optee_os/core/drivers/imx_lpuart.c /optee_os/core/drivers/lpc_uart.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/lpc_uart.h /optee_os/core/include/drivers/serial.h /optee_os/core/kernel/console.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/lib/libutee/arch/arm/utee_syscalls_a32.S /optee_os/lib/libutee/arch/arm/utee_syscalls_a64.S /optee_os/lib/libutee/arch/riscv/sub.mk /optee_os/lib/libutee/arch/riscv/utee_syscalls_rv64.S /optee_os/lib/libutee/include/utee_syscalls_asm.S src/processing.c src/processing_asymm.c src/processing_digest.c src/processing_symm.c
45d40bda	05-Dec-2022	Valerii Chubar <valerii_chubar@epam.com>	ta: pkcs11: Add RSA AES key wrap The PKCS#11 Specification: https://docs.oasis-open.org/pkcs11/pkcs11-spec/v3.1/cs01/ pkcs11-spec-v3.1-cs01.pdf 6.1.23 RSA AES KEY WRAP The mechanism requires AES K ta: pkcs11: Add RSA AES key wrap The PKCS#11 Specification: https://docs.oasis-open.org/pkcs11/pkcs11-spec/v3.1/cs01/ pkcs11-spec-v3.1-cs01.pdf 6.1.23 RSA AES KEY WRAP The mechanism requires AES KWP mechanism CKM_AES_KEY_WRAP_KWP which is not currently implemented in OP-TEE nor mentioned in Global Platform specification. Use the MBedTLS to wrap/unwrap the target key. Signed-off-by: Valerii Chubar <valerii_chubar@epam.com> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... include/pkcs11_ta.h src/pkcs11_attributes.c src/processing.c src/processing.h src/processing_asymm.c src/processing_rsa.c src/token_capabilities.c
a9aa45d8	05-Dec-2022	Valerii Chubar <valerii_chubar@epam.com>	ta: pkcs11: Copy secret key data for wrapping Currently the secret-key data is returned as a pointer to the key attribute parameter. But the RSA private key constitites of multiple parameters, some ta: pkcs11: Copy secret key data for wrapping Currently the secret-key data is returned as a pointer to the key attribute parameter. But the RSA private key constitites of multiple parameters, some memory has to be allocated and populated. After the unwrapping an allocated memory has to be freed. To generalise, return the secret key value as a copy. Signed-off-by: Valerii Chubar <valerii_chubar@epam.com> Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org> show more ... /optee_os/core/arch/arm/dts/fsl-lx2160a.dtsi /optee_os/core/drivers/ls_sfp.c /optee_os/core/drivers/sub.mk /optee_os/core/include/drivers/ls_sfp.h /optee_os/core/kernel/embedded_ts.c /optee_os/core/tee/tee_svc_cryp.c /optee_os/lib/libmbedtls/include/mbedtls_config_uta.h /optee_os/lib/libmbedtls/mbedtls/library/cipher_wrap.c /optee_os/lib/libutee/include/tee_api_defines.h /optee_os/lib/libutee/include/tee_internal_api.h /optee_os/lib/libutee/include/utee_syscalls.h /optee_os/lib/libutee/tee_api.c src/pkcs11_attributes.c src/pkcs11_attributes.h src/processing.c
123 4 5 6 7 8 9 10 11