Abhishek Pandit (Arm) Chris (Cypress) Ray Ngun (Cypress) Christian Daudt (Cypress) Dan Handley (Arm) David Brown (Linaro) Joakim Bech (Linaro) Julius Werner (Google) Lionel Debieve (ST) Rajeev Gulati (Data I/O) Bill Fletcher (Linaro Community Projects)
Notes
Ray: Cypress TF M enablement on PSoC6 dual core (slides circulated separately) Chris: PSoC as SMPUs based on v6/v7 ones. Has alignment/size constraints. Difficult to arrange 1M flash to manage protection regions. Much easier with the v8. Build system work complicated. AP: Getting feedback on build system elsewhere. Not sure if it is CMake. What’s your view? Chris: CMake isn’t particularly intuitive. Building secure side veneers - had to figure out to separate those out. AP: V8m crashes are hard to debug. Maybe worth having a focus group on build system. CD: Implicit assumptin that secure and non-secure are the same ilk and not the case for PSoC6. Does not have the same facilities/options. AP: Assumed secured binary comes from one entity and non-secure from another. That’s how it evolved. Secure people give config and API. Agreed it’s very v8m centric. CD: Patches should fix that AP: Will follow up on why the patches are still pending.
Rajeev: Data I/O Security provisioning (slides circulated separately) AP: Need to have a follow up task on this. This is just a prelude to what the TF teams need to do in this area. Rajeev: We can talk about the provisioning usecases next time.
Joakim: OP-TEE Pending actions for creating branches for TF gerrit. Not done but have a clear idea after talking to Dan Linking TF.org to OP-TEE.org done one way. Plan to fix the other way with a sit down with Web Admin at Connect. Security sessions at Connect http://bit.ly/san19swg They will be added to the public schedule (WIP) Linaro has PoR (Plan of Record) process to say what work is done. Too early to say what this will mean but things that are expected to continue:
Keymaster work. Will look at new features in keymaster4.
Prototyping work on Armv8 virtualisation.
PKCS11.
Widevine work
DH: Expecting that a lot of work will be followed up at Connect.
AP: When will incident handling be finalised? DH: Not received any comments for a while. Also need steps to make it active. Which projects will use it? Can spend some time to nail it down at Connect. Then look to make it active.
