Use security_model mapped-xattr for QEMU Persistent Secure Storage Use security_model mapped-xattr for QEMU_PSS_HOST_DIR. This allows folders/files below /data/tee to be owned by any uid/gid of the QEMU context. Fixes https://github.com/OP-TEE/build/issues/478 Signed-off-by: Christoph Gellner <cgellner@de.adit-jv.com> Suggested-by: Jerome Forissier <jerome@forissier.org> Reviewed-by: Jerome Forissier <jerome@forissier.org>

commit: 4e1b0bd38504ac31d51a9e895dc75f53f3f40268 [log] [tgz]
author: Christoph Gellner <cgellner@de.adit-jv.com> Thu Jun 24 14:32:37 2021 +0200
committer: Jérôme Forissier <jerome@forissier.org> Fri Jun 25 14:14:39 2021 +0200
tree: b80ef6bc3032c9317d6782c43ec74a5bc179615d
parent: d7c761d82c933c95835af6caab60708dae77b81e [diff] [blame]
diff --git a/common.mk b/common.mk
index fb77e9b..f027208 100644
--- a/common.mk
+++ b/common.mk

@@ -425,7 +425,7 @@
 	-device virtio-9p-device,fsdev=fsdev0,mount_tag=host
 ifeq ($(QEMU_PSS_ENABLE),y)
 QEMU_EXTRA_ARGS +=\
-	  -fsdev local,id=fsdev1,path=$(QEMU_PSS_HOST_DIR),security_model=none \
+	  -fsdev local,id=fsdev1,path=$(QEMU_PSS_HOST_DIR),security_model=mapped-xattr \
 	  -device virtio-9p-device,fsdev=fsdev1,mount_tag=secure
 endif
 endif
commit	4e1b0bd38504ac31d51a9e895dc75f53f3f40268	[log] [tgz]
author	Christoph Gellner <cgellner@de.adit-jv.com>	Thu Jun 24 14:32:37 2021 +0200
committer	Jérôme Forissier <jerome@forissier.org>	Fri Jun 25 14:14:39 2021 +0200
tree	b80ef6bc3032c9317d6782c43ec74a5bc179615d
parent	d7c761d82c933c95835af6caab60708dae77b81e [diff] [blame]