Trusted Firmware OP TEE: v3.21.0 Released

Introduction

Trusted Firmware OP TEE v3.21.0 was released on the14th of April, 2023. The release includes cryptography improvements, new FF-A features, platform updates and more.

Highlights

Here are some of the main additions in OP TEE 3.21.0:

• Support for TEE_ALG_SM2_DSA_SM3 in the crypto driver framework
• SHA-3 acceleration on platforms with Armv8.2-A Cryptography Extensions
• Support for MD5 hashes in RSA sign/verify operations (for Android test suite compatibility)
• FF-A: allow multiple Secure Partitions having the same interface UUID
• FF-A: introduce support for custom Secure Partition binary format
• StandaloneMM: the UUID of the StMM service is now reported to non-secure world in the same list as pseudo-TAs
• The default toolchain is updated to GCC 11.3.1
• Platform updates
  • NXP: EdgeLock driver for i.MX8ULP and i.MX93 ; TZASC support for imx8mscale ; CAAM manufacturing protection driver + PTA ; i.MX PTA for OCOTP and DIGPROG
  • plat-sam: Add support for sama5d27_wlsom1_ek
  • Xilinx Versal ACAP: enable crypto driver for asymmetric cipher and authentication
  • STM32MP13: hardware RNG support

The release included updates to the following repos:

• optee_os
• optee_client
• optee_test
• build

More details can be found here.

Testing of the release has been performed by the committers and can be found here Test plan for this release using the OP-TEE are here test suite. Testing results can be found in the pull request itself

The release has been tagged at 3.21.0 using the OP TEE release procedure.

The OP TEE release roadmap can be found here.

Any security fixes prior to the next release will be made available on the Security Advisories page.

About TrustedFirmware.org

TrustedFirmware.org is an open source project implementing foundational software components for creating secure devices. Trusted Firmware provides a reference implementation of secure software for processors implementing both the A-Profile and M-Profile Arm architecture. It provides SoC developers and OEMs with a reference trusted code base complying with the relevant Arm specifications. Trusted Firmware code is the preferred implementation of Arm specifications, allowing quick and easy porting to modern chips and platforms. This forms the foundations of a Trusted Execution Environment (TEE) on application processors, or the Secure Processing Environment (SPE) of microcontrollers.

TrustedFirmware.org is member driven and member funded.

To learn more about membership and its benefits, please see the following page or send a request for more information to enquiries@trustedfirmware.org.