Matter TrustZone

This section mainly introduces how to use the trustzone feature of the matter SDK.

Preparing Secure APP

To enable trustzone on the Matter platform, a secure app needs to be provided. The following explains how to compile the secure APP.

Open the command prompt and navigate to the matter directory.

$ cd beeSDK/subsys/matter

Go to the compilation directory of the single bank secure app.

$ cd samples/app_s/proj/gcc

Start build

$ make

After a successful compilation, the application bin file app_s_MP_sdk_0.0.0.0_xxxx.bin will be generated in the directory /subsys/matter/samples/app_s/proj/gcc/build/bin.

Preparing Non-Secure APP

Enter the compilation directory of the non-secure app

$ cd beeSDK/subsys/matter/sample

Start build

$ ./build.py rtl8777g lighting --preset secure

After a successful build, the application bin file matter-cli-ftd_bank0_MP_dev_xxxx.bin will be generated in the ./subsys/matter/samples/build/bank0/bin directory.

How to Flash

To download app bin into EVB board, follow the steps listed on the Downloading in Quick Start.

Simply replace the file to be flashed with the file from the following location:

Flash File Type Correspondence Table

File Type

File

File Path

System ConfigFile

configFile_xxx.bin

\subsys\openthread\vendor\bee4\rtl8777g\firmware\trustzone_enable

Bank0 Boot PatchImage

BANK0_boot_patch_MP_release_xxx.bin

\subsys\openthread\vendor\bee4\rtl8777g\firmware

Bank0 OTA HeaderFile

OTAHeader_Bank0_xxx.bin

\subsys\openthread\vendor\bee4\rtl8777g\firmware\trustzone_enable

Bank0 SystemPatch Image

sys_patch_MP_release_xxx.bin

\subsys\openthread\vendor\bee4\rtl8777g\firmware

Bank0 Bluetooth StackPatch Image

bt_stack_patch_MP_master_xxx.bin

\subsys\openthread\vendor\bee4\rtl8777g\firmware

Bank0 Bluetooth HostImage

bt_host_MP_xxx.bin

\subsys\openthread\vendor\bee4\rtl8777g\firmware

Bank0 APP Image

matter-cli-ftd_xxx.bin

\subsys\openthread\vendor\bee4\rtl8777g\firmware\trustzone_enable

Bank0 Secure APP Image

app_s_MP_sdk_xxx.bin

\subsys\openthread\vendor\bee4\rtl8777g\firmware\trustzone_enable