TrustZone-A monitor / EL3 / SMC semantics

Partial

TrustZone-A monitor / EL3 / SMC semantics

Priority 7 - Security Hardware

$0 / $5,7500% funded

$0 / $5,750 - 0%

As a security engineer, I want vemu to deliver SMC/secure-monitor calls to the Monitor/EL3 vector with full semantics, so that I can run real secure-world firmware (TF-A/OP-TEE) that owns the SMC vector.

Why it matters

Run real secure-world firmware (TF-A/OP-TEE) that owns the SMC vector

Summary

Secure-monitor call delivery to Monitor/EL3

Scope of work

Partially modeled. Complete the missing mechanics of TrustZone-A monitor / EL3 / SMC semantics. What it is: Secure-monitor call delivery to Monitor/EL3. Why it matters: Run real secure-world firmware (TF-A/OP-TEE) that owns the SMC vector.

Current state

Status: Partially implemented. Notes / evidence: SMC handler exists (AArch32 - > Monitor/MVBAR+0x08; AArch64 - > EL3 EC_SMC64, SMD/TSC honored); no built-in SMCCC/PSCI-over-SMC service dispatch (PSCI handled over HVC only).

Blocked by 1

Fund these first - this work can't be completed until they ship.

Done

Activity log

Feature defined and added to the roadmap
2026-05-30
Funding goal set to $5,750
2026-05-31
Implementation status: Partial
2026-05-31