Hi Mudit,

Thanks for checking. Is the build you tested using the same mix of SFN and IPC as I was?

Regards,
Brian

From: Mudit Sharma <mudit.sharma@arm.com>
Sent: Thursday, May 8, 2025 5:21 AM
To: Quach, Brian <brian@ti.com>; tf-m@lists.trustedfirmware.org
Cc: Antonio.DeAngelis@arm.com
Subject: [EXTERNAL] Re: [TF-M] Attestation calls to PSA Crypto

Hi Brian, We built secure world TF-M test for AN521 platform: ``` cmake -S spe -B build_spe -DTFM_PLATFORM=arm/mps2/an521 \ -DCONFIG_TFM_SOURCE_PATH="$TFM_SOURCE_DIR" \ -DCMAKE_BUILD_TYPE=Debug \ -DTEST_S=ON -DTEST_NS=OFF ``` We ran this test

ZjQcmQRYFpfptBannerStart

This message was sent from outside of Texas Instruments.

Do not click links or open attachments unless you recognize the source of this email and know the content is safe.

Report Suspicious ‌

ZjQcmQRYFpfptBannerEnd

Hi Brian,

We built secure world TF-M test for AN521 platform:

```

cmake -S spe -B build_spe -DTFM_PLATFORM=arm/mps2/an521 \

       -DCONFIG_TFM_SOURCE_PATH="$TFM_SOURCE_DIR" \

       -DCMAKE_BUILD_TYPE=Debug \

       -DTEST_S=ON -DTEST_NS=OFF

```

We ran this test on a FVP model and stepped through

`tfm_attest_test_1001`. Please find attached a screenshot of the call stack.

Function in `attest_core` (in the Attestation partition) invokes

function in the `tfm_crypto_api`. This request is routed by the Secure

Partition Manager (SPM) into the Crypto partition via `psa_call()`.

On 5/6/25 00:33, Quach, Brian wrote:

> Is my configuration valid?   How should it work?

Any time you call a function across partitions, regardless of isolation

level, the SPM forwards it to the target partition using `psa_call()`

Best regards,

Mudit Sharma