The tee interface

The tee interface permits access to Trusted Execution Environment (TEE) devices via the TEE subsystem in the Linux kernel.

This interface is primarily intended to be used with Ubuntu Core.

Interface documentation:
See Interface management and Supported interfaces for further details on how interfaces are used.


Developer details

Auto-connect: no

Intended for snaps needing to access the the TEE subsystem over /dev/tee[0-9]*, /dev/teepriv[0-0]* or the Qualcomm equivalent qseecom (Qualcomm Secure Execution Environment Communicator) at /dev/qseecom.

Code examples

The official Ubuntu Core gadget snap for the i.MX8M Mini Evaluation Kit uses this interface: https://github.com/kubiko/imx8m-gadget/blob/imx8mm-evk/snap/snapcraft.yaml

The test code can be found in the snapd repository: https://github.com/snapcore/snapd/blob/master/interfaces/builtin/tee_test.go

The source code for the interface is in the snapd repository: https://github.com/snapcore/snapd/blob/master/interfaces/builtin/tee.go