Hi Yevgeni, Stefan,
Am 19.10.2017 um 13:05 schrieb Stefan Kalkowski:
And, is it possible to reproduce the USB Armory's "run/tz_vmm" scenario on i.MX6 platform?
This cannot be done out of the box. The most easy part would be to add support to the hw kernel to execute i.MX6 in the secure world, provide the TrustZone specific VM interface to the user-land, and to partition the memory into secure and normal one. The next probably more time-consuming step is the para-virtualization of the i.MX6 specific Linux Kernel that is run as "guest" in the tz_vmm.run scenario.
Let me add that the USB-Armory branch on my Linux fork [1] might serve as template for para-virtualization. The youngest commit adds a para-virtualized block driver and serial driver to a 4.2.3 Linux.
Cheers, Martin
[1] branch https://github.com/m-stein/linux/commits/genode_hw_usb_armory_tz_vmm