TrustZone Registers OP-TEE


#1

Hello,

I was wondering if anyone knew where the TZ Registers that configure the memory to secure or non secure are located at in OP-TEE?


#2

Hi Jon,

This is not officially done in OP-TEE, but ARM Trusted Firmware [1]. However, this is just reference code from the board vendor. The documentation is not available to the public (see [2][3][4] for related discussions). For a similar but unofficial implementation in OP-TEE, see [5][6]. The HW IP used in the HiKey board for this doesn’t seem to be fully compatible with TZASC though, so for better TZASC reference implementations (on Juno and FVP), see [7][8].

[1] https://github.com/96boards/arm-trusted-firmware/commit/38fc0955a31bd822ab8917a0d35ca3b8683d104c
[2] http://www.96boards.org/forums/topic/does-hikey-provide-access-to-the-secure-mode-of-trustzone/#post-12728
[3] http://www.96boards.org/forums/topic/hikey-board-as-securetrustzone-developpement-board/
[4] http://www.96boards.org/forums/topic/is-the-hi6220v100-boot-rom-source-code-available/
[5] https://github.com/jforissier/secvideo_demo
[6] https://github.com/jforissier/optee_os/commit/b8bd4d6cec410ba20676bcbd612718d6beff6ea3
[7] http://www.96boards.org/forums/topic/how-to-config-a-device-to-be-trusted-in-aarch64/#post-12578
[8] https://github.com/96boards-hikey/arm-trusted-firmware/commit/740134e6dc78785e2c75532659a8c7971a124f64