Visible to Intel only — GUID: GUID-BF248339-3D37-43B7-9E4A-5423FEE6BAC3
For API Level 1 - Intel® ME 7.x - Sandy Bridge
For API Level 1.1 - Intel® ME 8.x lite - Sandy Bridge
For API Level 2 - Intel® ME 8.0 - Ivy Bridge
For API Level 3 - Intel® ME 8.1 - Ivy Bridge
For API Level 3 - SEC1.0, SEC1.1, SEC1.2, SEC2.0
For API Level 4 - Intel® ME 9.5, Intel ME 9.5.55 - Haswell
For API Level 4 - Intel® ME 9.1, Intel ME 9.1.35 - Haswell
For API Level 5 - Intel® ME 10.0.0 - Haswell
For API Level 6 - Intel® ME 10.0.20 - Broadwell
For API Level 7 - ME 11.0 - Skylake_LP and Skylake_H
For API Level 8 - TXE3.0 - Broxton, ME 11.5/11.8 - Kabylake_LP, Kabylake_H
For API Level 9 - Intel® ME 12.0 - Cannon Lake
Trusted Application Validation Guidelines
Validating the Manifest
Memory and Performance
Error Handling and Recovery
Functional Validation and Multi-Instance Support
Pack and DALP Generation and Validation
Host-Side Software Validation Guidelines
Trusted Application Management Flows
Error Handling and Recovery Flows
Multi-Instance and Interoperability Testing of Trusted Application Management
General and Platform-Related Events
End-to-End and Setup Validation Guidelines
Cross Trusted Application Interoperability Functional Testing
Creating a New Project
Importing an Existing Project
Converting an Existing Project
Building and Packaging Your Project and Running in Emulated Environment
Running Your Project
Running and Testing on Emulation and on Silicon
Debugging Trusted Applications
Preparing and Submitting Your Project for Signing
Signing an Applet
Signing New Versions
Visible to Intel only — GUID: GUID-BF248339-3D37-43B7-9E4A-5423FEE6BAC3
TEE Management Error Codes
TEE_STATUS_SUCCESS = 0x0000
Operation completed successfully
TEE_STATUS_INTERNAL_ERROR = 0x2001
Something went wrong with Intel® DAL itself
TEE_STATUS_INVALID_PARAMS = 0x2002
An operation was called with illegal arguments, for example, a null pointer.
TEE_STATUS_INVALID_HANDLE = 0x2003
Invalid Security Domain (SD) handle
TEE_STATUS_INVALID_UUID = 0x2004
The Security Domain UUID is invalid
TEE_STATUS_NO_FW_CONNECTION = 0x2005
JHI service can't communicate with the virtual machine (VM) in the firmware. This might be a JHI configuration error, an Intel® MEI driver problem or a firmware problem.
TEE_STATUS_UNSUPPORTED_PLATFORM = 0x2006
The requested operation is not supported by the current platform.
TEE_STATUS_SERVICE_UNAVAILABLE = 0x2100
The application cannot connect to the JHI service. The service might be down.
TEE_STATUS_REGISTRY_ERROR = 0x2101
An error occurred during a registry access attempt or registry corruption detected
TEE_STATUS_REPOSITORY_ERROR = 0x2102
Cannot find the applets repository directory on the file system
TEE_STATUS_SPOOLER_MISSING = 0x2103
Cannot find the SpoolerApplet.dalp file
TEE_STATUS_SPOOLER_INVALID = 0x2104
The Spooler applet was found, but an error occurred while trying to install it in the VM and communicate with it
TEE_STATUS_PLUGIN_MISSING = 0x2105
teePlugin.dll, bhPlugin.dll or bhPluginV2.dll was not found. Should be in the same folder as jhi_service.exe.
TEE_STATUS_PLUGIN_VERIFY_FAILED = 0x2106
The signature or publisher name of teePlugin.dll, bhPlugin.dll or bhPluginV2.dll are not valid
TEE_STATUS_INVALID_PACKAGE = 0x2200
Invalid Admin Command Package
TEE_STATUS_INVALID_SIGNATURE = 0x2201
Signature verification failed
TEE_STATUS_MAX_SVL_RECORDS = 0x2202
Maximum number of records allowed in security version list (SVL) exceeded.
TEE_STATUS_CMD_FAILURE_SESSIONS_EXISTS = 0x2300
Operation cannot be executed because there are open sessions
TEE_STATUS_CMD_FAILURE = 0x2301
Failed to load Admin Command Package to the firmware
TEE_STATUS_MAX_TAS_REACHED = 0x2302
Maximum number of allowed applets exceeded, an applet needs to be uninstalled.
TEE_STATUS_MISSING_ACCESS_CONTROL = 0x2303
The Admin Command Package needs more permissions in order to be loaded. It is not allowed to use a needed Java* class or package
TEE_STATUS_TA_DOES_NOT_EXIST = 0x2304
The Admin Command Package (ACP) file path is incorrect
TEE_STATUS_INVALID_TA_SVN = 0x2305
ACP loading failed due to a failed Security Version Number (SVN) check.
TEE_STATUS_IDENTICAL_PACKAGE = 0x2306
The loaded package is identical to an existing one
TEE_STATUS_ILLEGAL_PLATFORM_ID = 0x2307
The provided platform ID is invalid
TEE_STATUS_SVL_CHECK_FAIL = 0x2308
Install failed due to an svl check
TEE_STATUS_TA_PLATFORM_MISMATCH = 0x2309
TA is not compatible with platform.
TEE_STATUS_SD_INTERFCE_DISABLED = 0x2400
OEM signing is disabled
TEE_STATUS_SD_PUBLICKEY_HASH_VERIFY_FAIL = 0x2401
Mismatch in public key hash of an SD
TEE_STATUS_SD_DB_NO_FREE_SLOT = 0x2402
No free slot for installing SD
TEE_STATUS_SD_TA_INSTALLATION_UNALLOWED = 0x2403
TA installation is not allowed for SD
TEE_STATUS_SD_TA_DB_NO_FREE_SLOT = 0x2404
No free slot to install TA for SD
TEE_STATUS_SD_INVALID_PROPERTIES = 0x2405
Incorrect properties in the SD manifest
TEE_STATUS_SD_SD_DOES_NOT_EXIST = 0x2406
Attempt to use an SD that was not installed
TEE_STATUS_SD_SD_INSTALL_UNALLOWED = 0x2407
Tried to install a SD that is not pre-allowed in the firmware
TEE_STATUS_PLATFORM_AFTER_EOM = 0x2500
Operation is not allowed after the End of Manufacturing is set in the firmware
TEE_STATUS_MAX_INVOCATIONS = 0x2501
Operation invocation quota exceeded
TEE_STATUS_COUNTER_MISMATCH = 0x2502
Obsolete counter value was used
TEE_STATUS_TA_ENCRYPTION_KEY_NOT_SET = 0x2503
TA encryption key was not set; cannot install or create session to an encrypted applet
TEE_STATUS_OMK_NOT_PROVISIONED = 0x2504
Cannot set TA encryption key before an OEM Master Key has been provisioned
TEE_STATUS_TA_ENCRYPTION_KEY_INVALID = 0x2505
The TA encryption key was rejected by the firmware (wrong structure/encryption)