diff options
author | Jerome Forissier <jerome.forissier@linaro.org> | 2017-05-05 15:42:00 +0200 |
---|---|---|
committer | Jerome Forissier <jerome.forissier@linaro.org> | 2017-05-10 09:54:07 +0200 |
commit | ee664c198650618f3621c3110a3c4a5d8fe1f90d (patch) | |
tree | 711d02ddc5b6ce0783d7144b4d461b650753ece6 /core/sub.mk | |
parent | 762b7d0de04b83e4c3933009fb2a95f67064bd5e (diff) |
core: add interface to load user TAs
Some use cases may require custom load and verification methods for
user-mode Trusted Applications. Introduce struct user_ta_store_ops with
open(), get_size(), read() and close() functions to abstract these
tasks from the ELF loader code. Do the communication with
tee-supplicant as well as the hashing and signature verification of the
TA binary in core/arch/arm/kernel/ree_fs_ta.c, which may be disabled
and replaced by a different implementation if need be.
CC: Zeng Tao <prime.zeng@hisilicon.com>
Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org>
Tested-by: Jerome Forissier <jerome.forissier@linaro.org> (HiKey, QEMU)
Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org>
Reviewed-by: Etienne Carriere <etienne.carriere@linaro.org>
Diffstat (limited to 'core/sub.mk')
-rw-r--r-- | core/sub.mk | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/core/sub.mk b/core/sub.mk index 0732905d..79bfd072 100644 --- a/core/sub.mk +++ b/core/sub.mk @@ -2,9 +2,11 @@ subdirs-y += kernel subdirs-y += tee subdirs-y += drivers +ifeq ($(CFG_WITH_USER_TA)-$(CFG_REE_FS_TA),y-y) gensrcs-y += ta_pub_key produce-ta_pub_key = ta_pub_key.c depends-ta_pub_key = $(TA_SIGN_KEY) recipe-ta_pub_key = scripts/pem_to_pub_c.py --prefix ta_pub_key \ --key $(TA_SIGN_KEY) --out $(sub-dir-out)/ta_pub_key.c cleanfiles += $(sub-dir-out)/ta_pub_key.c +endif |