From: Sven Schultschik <sven.schultschik@...> This series of patches will add recipes to build a QEMU setup which uses OP-TEE to use RPBM (Replay protected memory) of an EMMC for a secure storage. Whi

From: Sven Schultschik <sven.schultschik@...> The start-qemu shell script need some adjustments to switch on secure in the machine statement and adds the virtual random number generator if secure boot

From: Sven Schultschik <sven.schultschik@...> Qemu itself is missing a implemented emulation of an RPBM (replay protected memory) which is part of an emmc. Therefore currently a u-boot patch, which ad

From: Sven Schultschik <sven.schultschik@...> The recipe provides the possibility to create optee-os binaries for use inside of an qemu secureboot setup with edk2, rpmb, u-boot and uefi Signed-off-by:

From: Sai <Sai.Sathujoda@...> The dmesg will not show secure boot status for arm64 or armhf architectures. Signed-off-by: Sai <Sai.Sathujoda@...> --- doc/README.secureboot.md | 4 ++++ 1 file changed,

From: Sven Schultschik <sven.schultschik@...> provide a recipe to create the BL32_AP_MM.fd binary by edk2 which is needed for the qemu optee generation as dependencie. Signed-off-by: Sven Schultschik

Hi ! It's this week's CVE report. This week reported 23 new CVEs and 2 updated CVEs. CVE-2022-41674, CVE-2022-42719, and CVE-2022-42720 are remote code execution vulnerabilities. These CVEs are alread

Hi all, Kindly be reminded to attend the weekly meeting through IRC to discuss technical topics with CIP kernel today. Our channel is the following: irc:irc.libera.chat:6667/cip The IRC meeting is sch

From: Quirin Gylstorff <quirin.gylstorff@...> Update for downstream layers. Signed-off-by: Quirin Gylstorff <quirin.gylstorff@...> --- kas-cip.yml | 2 +- kas/opt/swupdate.yml | 1 + 2 files changed, 2

From: Sven Schultschik <sven.schultschik@...> The recipe provides the possibility to create optee-os binaries for use inside of an qemu secureboot setup with edk2, rpmb, u-boot and uefi Signed-off-by:

From: Sven Schultschik <sven.schultschik@...> This patch is not ment for merge but shows how to generally test the implementation of the optee and rpmb driven secure boot qemu setup. Signed-off-by: Sv

From: Sven Schultschik <sven.schultschik@...> The start-qemu shell script need some adjustments to switch on secure in the machine statement and adds the virtual random number generator if secure boot

From: Sven Schultschik <sven.schultschik@...> The u-boot-efi-ebg-op-tee-qemu kas file combines the different recipes to create an image which can be booted with qemu and provides secure boot with EBG,

From: Sven Schultschik <sven.schultschik@...> Qemu itself is missing a implemented emulation of an RPBM (replay protected memory) which is part of an emmc. Therefore currently a u-boot patch, which ad

From: Sven Schultschik <sven.schultschik@...> provide a recipe to generate the needed binary to start a secure boot qemu with integrated optee and active RPMB replay protected memory emulation within

From: Jan Kiszka <jan.kiszka@...> The usage of class is not bound to wic, thus we should not declare any dependency of wic on it. This makes the verity pattern analogous to the squashfs one (for non-s

Hi Team, I could able to see there are few tests are running in the CIP LAVA platform. I am showing the list below what all LAVA tests are running in the CIP LAVA platform. Test-case CIP LAVA job link

From: Quirin Gylstorff <quirin.gylstorff@...> This fixes issues https://gitlab.com/cip-project/cip-core/isar-cip-core/-/issues/44. Signed-off-by: Quirin Gylstorff <quirin.gylstorff@...> --- recipes-co

Mount unit template used wrong variable name for mount options. This resulted in empty `Options` value used for /tmp mounting. Signed-off-by: Uladzimir Bely <ubely@...> --- recipes-core/tmp-fs/files/t

Hi, CIP kernel team has released Linux kernel v4.19.261-cip83 and v5.10.147-cip18. The linux-4.19.y-cip tree has been updated base version from v4.19.259 to v4.19.261, and the linux-5.10.y-cip tree ha