[Ksummit-2013-discuss] [ARM ATTEND] Trustzone-based security solution for ARM Linux

Barry Song 21cnbao at gmail.com
Thu Aug 15 22:39:20 EDT 2013

>> >>
>> >> Isn't that up to the hardware?  Nothing that Linux can do about that.
>> >
>> > right. but linux need to assign interrupts to right group in GIC
>> > hardware. now it doesn't care.
>> I strongly hope that whatever is the secure OS is setting up these
>> routings, and the HW prevents the non-secure OS from modifying them and
>> hence never attempts to. Otherwise, the non-secure OS is able to affect
>> the functioning of the secure OS, which seems like a bad thing.
> Typically, the master controls are hard-wired for Secure-only access in
> hardware: so assigning GIC interrupts to groups is something the secure
> OS/firmware has to take care of.
> Of course, if Linux is acting as secure OS, it might have to understand
> what controls exist and to do some of that configuration itself.

that is just what i want. linux need to realize whether it is running
in security or non-security.
for example, if one irq is assigned to security, even though users
want to get it in non-security, linux should make it fail.
linux need security/non-security realization in GIC.

> Cheers
> ---Dave


More information about the linux-arm-kernel mailing list