From: Sascha Hauer <s.hauer@pengutronix.de>
To: "open list:BAREBOX" <barebox@lists.infradead.org>
Subject: [PATCH 0/9] Add RPMB support
Date: Wed, 12 Mar 2025 13:16:15 +0100 [thread overview]
Message-ID: <20250312-rpmb-v1-0-0f213382a3f3@pengutronix.de> (raw)
This series adds the necessary pieces to provide OP-TEE access to RPMB
partitions under barebox.
With this OP-TEE can issue RPMB requests to barebox and barebox will
answer them accordingly.
OP-TEE will only access the RPMB when triggered by barebox. For this
purpose I implemented access to the Android Verified Boot (AVB) variable
store. This is implemented in U-Boot as well and the code is loosely
based on it. The variables can be read/written using the newly
introduced avb_pvalue command.
Signed-off-by: Sascha Hauer <s.hauer@pengutronix.de>
---
Sascha Hauer (9):
mci: implement mci_set_blockcount()
mci: export some functions for RPMB support
mci: detect RPMB partitions
mci: add RPMB support
tee: optee: probe successfully even when no devices are found
tee: optee: implement shared mem alloc/free RPC commands
tee: optee: implement RPMB support
tee: optee: implement AVB named persistent values support
commands: add avb_pvalue command
commands/Kconfig | 13 +++
commands/Makefile | 1 +
commands/avb_pvalue.c | 138 +++++++++++++++++++++++++
drivers/mci/Kconfig | 3 +
drivers/mci/Makefile | 1 +
drivers/mci/mci-core.c | 73 +++++++++++++-
drivers/mci/rpmb.c | 206 ++++++++++++++++++++++++++++++++++++++
drivers/tee/optee/Kconfig | 9 ++
drivers/tee/optee/Makefile | 2 +
drivers/tee/optee/avb.c | 189 ++++++++++++++++++++++++++++++++++
drivers/tee/optee/device.c | 1 +
drivers/tee/optee/optee_private.h | 13 +++
drivers/tee/optee/optee_rpc_cmd.h | 144 ++++++++++++++++++++++++++
drivers/tee/optee/rpc.c | 63 +++++++++++-
drivers/tee/optee/rpmb.c | 128 +++++++++++++++++++++++
drivers/tee/optee/smc_abi.c | 26 +++--
drivers/tee/tee_shm.c | 1 +
include/linux/tee_drv.h | 1 +
include/mci.h | 17 +++-
include/tee/avb.h | 9 ++
20 files changed, 1021 insertions(+), 17 deletions(-)
---
base-commit: a9a50228674d01adc8d7a49d1ab0e7e894c25fe8
change-id: 20250312-rpmb-c6f330f29cb1
Best regards,
--
Sascha Hauer <s.hauer@pengutronix.de>
next reply other threads:[~2025-03-12 13:06 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-03-12 12:16 Sascha Hauer [this message]
2025-03-12 12:16 ` [PATCH 1/9] mci: implement mci_set_blockcount() Sascha Hauer
2025-03-12 12:16 ` [PATCH 2/9] mci: export some functions for RPMB support Sascha Hauer
2025-03-12 12:16 ` [PATCH 3/9] mci: detect RPMB partitions Sascha Hauer
2025-03-12 12:16 ` [PATCH 4/9] mci: add RPMB support Sascha Hauer
2025-03-12 12:16 ` [PATCH 5/9] tee: optee: probe successfully even when no devices are found Sascha Hauer
2025-03-12 12:16 ` [PATCH 6/9] tee: optee: implement shared mem alloc/free RPC commands Sascha Hauer
2025-03-12 12:16 ` [PATCH 7/9] tee: optee: implement RPMB support Sascha Hauer
2025-03-12 12:16 ` [PATCH 8/9] tee: optee: implement AVB named persistent values support Sascha Hauer
2025-03-12 12:16 ` [PATCH 9/9] commands: add avb_pvalue command Sascha Hauer
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20250312-rpmb-v1-0-0f213382a3f3@pengutronix.de \
--to=s.hauer@pengutronix.de \
--cc=barebox@lists.infradead.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox