OP-TEE SPMC implementation

Introduction

OP-TEE SPMC implementation

This document describes the OP-TEE SPMC (Secure Partition Manager Core) implementation. This implementation is used to support the Trusted Services PSA Secure Partitions (SPs). The PSA SPs are implemented based on the Arm FF-A specification. The OP-TEE SPMC can be used as a reference S-EL1 implementation and the Trusted Services can be used a reference S-EL0 SP implementations.

FF-A

Arm Firmware Framework for Arm A-profile (FF-A) is a framework designed to standardize the communication between the various software images.
Including the communication between the various software images in the Secure world and Normal world. The current release of the OP-TEE SPMC is based around the FF-A v1.0 spec.

OP-TEE

OP-TEE is an open source Trusted Execution Environment (TEE) relying on the Arm TrustZone technology. More information can be found at readthedocs. OP-TEE can run both as a S-EL1 SP or as the S-EL1 SPMC.
This document describes OP-TEE as a S-EL1 SPMC. The current mainline OP-TEE version can be found here.

Trusted Services

The Trusted Services project provides a framework for developing and deploying device Root of Trust (RoT) services across a range of secure processing environments such as those provided by OP-TEE and Hafnium.
More information about Trusted Services can be found at Trusted-Services.

Current Status

Limited support for OP-TEE SPMC aligning with FF-A 1.0 is available in OP-TEE v3.19. Complete support for FF-A 1.0 and TS is planned for upcoming releases. See below for status.
For the OP-TEE release specific testing and results please see the following page:

• OP-TEE 3.19 release
• OP-TEE 3.20 release
• OP-TEE 3.21 release
• OP-TEE 3.22 release

Important Changes of 3.22 release

• Added support for discovering if the CRC32 instruction family is implemented by the PE. Conveying this information to Secure Partitions through the SP manifest DT.
• Implemented non-secure interrupt handling through FF-A
• Implemented the FF-A v1.1 boot protocol for passing boot info to Secure Partitions.

SPMC status

OP-TEE SPMC FF-A status:

OP-TEE SPMC FF-A messages status:

[^1]: Sharing device memory is not yet supported.

OP-TEE SP loading mechanism:

Trusted Services status

All Trusted Services Secure Partitions are supported with OP-TEE SPMC v3.19.

Trusted Services SP support status:

Build

The build process follows the OP-TEE build process. Additional information is needed for some steps:

• Step 1: The Trusted Services project has some extra requirements described on this page, please install these.

• Step 2: -

• Step 3: Use the manifest file for Trusted Services integration and use the 3.19.0 tagged version.

repo init -u https://github.com/OP-TEE/manifest.git -m fvp-ts.xml -b 3.19.0

• Step 4: -

• Step 5: -

• Step 6 and onwards: Since we're running on models instead of real hardware, these steps are not necessary.

Boot

The current system uses the Arm AEMv-A Base Platform FVP to run the test environment. The latest version can be found at Arm Architecture Models. The downloaded FVP should be extracted at the project root (<project root>/Base_RevC_AEMvA_pkg).

Boot the system on the FVP:

make -C build run-only

Two console windows should appear, one for the Secure World and one for the Normal World. When the boot is complete, login as root. Then run these commands to load the necessary kernel modules and install the TS test applications and libraries:

/mnt/host/out/linux-arm-ffa-tee/load_module.sh
/mnt/host/out/linux-arm-ffa-user/load_module.sh
cp -at /usr /mnt/host/out/ts-install/arm-linux/bin /mnt/host/out/ts-install/arm-linux/lib

To run the SPMC tests built into xtest (OP-TEE test suite):

xtest -t ffa_spmc