This article is a guideline to OP-TEE trusted application support, which is fully integrated from release 1.7.1.21_MP13-A1 of STM32CubeIDE.
It proposes creating one OP-TEE trusted application project to implement:
- user space hello world with call to OP-TEE trusted application
- OP-TEE trusted application itself with UUID support
1. Prerequisites[edit source]
Minimum hardware
- STM32MP135F-DK-based board
- Linux console
- Ethernet (or Ethernet over USB) for connection to Linux® Cortex®-A
Minimum software
- STM32CubeIDE v1.7.1.21_MP13-A1 installed and
- STM32MP15 project created
- Yocto SDK installed thanks to "Setup OpenSTLinux", root project contextual menu
- Linux project imported thanks to "Import an OpenSTLinux project", root project contextual menu
Yocto SDK is required to built trusted application example and Linux project is used here only to deploy trusted application on the STM32MP13 target.
2. Create a Trusted Application project[edit source]
From STM32CubeIDE release 1.7.1.21_MP13-A1 it is possible to enrich an STM32MP13x project with Trusted Application type project. In the root project context, named here MP157C-DK2_CA7, right-click and select Create an OP-TEE Trusted Application Project...
In Note that the trusted application project uses by default the SDK version associated to the STM32MP13 project (OpenSTLinux 3.0.0 in this STM32CubeIDE 1.7 version).
3. Build[edit source]