SkillAgentSearch skills...

Coffer

Coffer is a RISC-V trusted execution environment developed in Rust.

GenerateConvertImprove

Install / Use

/learn @jwnhy/Coffer
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

Coffer RISC-V Trusted Execution Environment

Issue Rust riscv64

Table of contents

  1. What is Coffer?
  2. Quickstart with QEMU.
  3. Quickstart with Nezha D1.
  4. Current Status.
  5. Contact.
  6. License and Copyright.

What is Coffer? <a name="whatiscoffer"></a>

Coffer is designed to be an flexible, software-based trusted execution environment. It requires a minimal hardware primitive (PMP is all you need!) to provide a powerful software interface for TEE.

asciicast

Quickstart with QEMU <a name="quickqemu"></a>

To run Linux with Coffer, you will need to prepare a Linux image and a rootfs.

One may refer to this tutorial (EN) or this tutorial (CN) to learn how to build your own image and rootfs.

Once your Linux/rootfs is ready, you can run just one line to get coffer booting Linux in qemu.

just qemu <path-to-your-kernel> <path-to-your-rootfs>

Quickstart with Nezha D1 <a name="quicknezha"></a>

To run Linux with Coffer on Nezha D1 SoC, you will first need to get the Nezha SDK ready.

One may refer to the official guide to learn how to get Allwinner SDK setup.

To replace OpenSBI with Coffer, you will need to run the following command.

# Make other stuff using Allwinner SDK
just release sunxi # build coffer for target platform Nezha D1
cp coffer <path-to-allwinner-sdk>/device/config/chips/d1/bin/opensbi_sun20iw1p1.bin # replace OpenSBI with Coffer

Once copied into the SDK, you can continue the tutorial provided by AllWinner and run Linux on D1 with Coffer enabled.

Current Status <a name="status"></a>

Coffer has serveral goals to archive in terms of both security and functionality.

  • [x] Linux-capable Bootload
  • [x] SBI Standard Implementation
  • [x] Runtime Memory Protection
  • [x] I/O Space Protection
  • [ ] Firmware Specific Binary Interface
  • [ ] Port to SiFive Unleashed Board
  • [ ] Enclave Memory Migration

Contact <a name="contact"></a>

You can email luhy2017@mail.sustech.edu.cn if you have any questions about Coffer.

License and Copyright <a name="license"></a>

See LICENSE for distribution and use of source code, binaries, and documentation.

Related Skills

node-connect

347.2k

Diagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps

frontend-design

108.0k

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.

openai-whisper-api

347.2k

Transcribe audio via OpenAI Audio Transcriptions API (Whisper).

qqbot-media

347.2k

QQBot 富媒体收发能力。使用 <qqmedia> 标签,系统根据文件扩展名自动识别类型(图片/语音/视频/文件)。

jwnhy

View profile

View on GitHub
GitHub Stars20
CategoryDevelopment
Updated1mo ago
Forks1
jwnhy/coffer

Languages

Rust

Security Score

90/100

Audited on Feb 13, 2026

No findings