linux-drivers/
drivers/firmware/efi/stmm

OP-TEE StandAloneMM EFI variable service for Arm TrustZone

A bridge that lets Arm embedded systems store UEFI variables securely by routing them through OP-TEE's StandAloneMM service into eMMC RPMB storage, instead of using a traditional SPI flash variable store. It is used on small Arm TrustZone-based devices that pair Linux or U-Boot with OP-TEE, and was introduced in late 2023.

keep-annotate conf=0.87 deploy=low replacement=none subsystem=firmware category=firmware
87%

recommendation

Worth keeping but documenting its niche, because it serves a specific Arm embedded use case rather than mainstream PCs. On Arm TrustZone systems running OP-TEE, it provides EFI variable storage backed by eMMC RPMB through a StandAloneMM secure-world service, and upstream activity through 2025 and into 2026 shows it is actively maintained with no removal discussion.

repository signals

2 files
833 source lines
9 commits, 5y
+897 / −64 lines added / removed, 5y
5 authors, 5y
monthly commits · 2021-04-21 → 2026-04-21 · 9 total · active in 5/61 months
2021 2022 2023 2024 2025 2026 2021-04: 0 commits · +0 −0 2021-05: 0 commits · +0 −0 2021-06: 0 commits · +0 −0 2021-07: 0 commits · +0 −0 2021-08: 0 commits · +0 −0 2021-09: 0 commits · +0 −0 2021-10: 0 commits · +0 −0 2021-11: 0 commits · +0 −0 2021-12: 0 commits · +0 −0 2022-01: 0 commits · +0 −0 2022-02: 0 commits · +0 −0 2022-03: 0 commits · +0 −0 2022-04: 0 commits · +0 −0 2022-05: 0 commits · +0 −0 2022-06: 0 commits · +0 −0 2022-07: 0 commits · +0 −0 2022-08: 0 commits · +0 −0 2022-09: 0 commits · +0 −0 2022-10: 0 commits · +0 −0 2022-11: 0 commits · +0 −0 2022-12: 0 commits · +0 −0 2023-01: 0 commits · +0 −0 2023-02: 0 commits · +0 −0 2023-03: 0 commits · +0 −0 2023-04: 0 commits · +0 −0 2023-05: 0 commits · +0 −0 2023-06: 0 commits · +0 −0 2023-07: 0 commits · +0 −0 2023-08: 0 commits · +0 −0 2023-09: 0 commits · +0 −0 2023-10: 0 commits · +0 −0 2023-11: 1 commit · +852 −0 2023-12: 0 commits · +0 −0 2024-01: 0 commits · +0 −0 2024-02: 0 commits · +0 −0 2024-03: 0 commits · +0 −0 2024-04: 0 commits · +0 −0 2024-05: 0 commits · +0 −0 2024-06: 0 commits · +0 −0 2024-07: 0 commits · +0 −0 2024-08: 0 commits · +0 −0 2024-09: 0 commits · +0 −0 2024-10: 0 commits · +0 −0 2024-11: 0 commits · +0 −0 2024-12: 0 commits · +0 −0 2025-01: 0 commits · +0 −0 2025-02: 0 commits · +0 −0 2025-03: 0 commits · +0 −0 2025-04: 0 commits · +0 −0 2025-05: 0 commits · +0 −0 2025-06: 0 commits · +0 −0 2025-07: 0 commits · +0 −0 2025-08: 4 commits · +27 −34 2025-09: 0 commits · +0 −0 2025-10: 0 commits · +0 −0 2025-11: 1 commit · +3 −3 2025-12: 2 commits · +6 −19 2026-01: 0 commits · +0 −0 2026-02: 1 commit · +9 −8 2026-03: 0 commits · +0 −0 2026-04: 0 commits · +0 −0

sources

  1. spinics.net

    Introduction patch describes this as a TEE-based EFI runtime variable service driver for small embedded devices, using OP-TEE plus StandaloneMM and eMMC RPMB-backed storage.

  2. spinics.net

    August 2025 cover letter reports a critical fix plus cleanups for the EFI StMM driver, indicating active maintenance rather than abandonment.

  3. spinics.net

    A February 15, 2026 patch updates this driver again, showing continued upstream attention and no obvious removal trajectory.

  4. optee.readthedocs.io

    Current OP-TEE documentation includes a StandAloneMM setup path for Arm platforms, with EFI variables stored in eMMC RPMB and Linux/U-Boot integration, showing the use case remains current.

  5. optee.readthedocs.io

    OP-TEE is current software for Linux on Arm TrustZone systems, supporting the broader platform family this driver depends on.

codex reasoning notes (technical)

Local `exec_command` inspection showed `tee_stmm_efi.c` is a real kernel module/TEE client driver that overrides EFI variable operations, not a helper-only directory. Local `git log` via `exec_command` showed introduction on 2023-12-11 and substantive touches on 2025-08-26 and 2026-02-18. Web search found active mailing-list traffic on Spinics mirrors for 2025-2026 fixes/cleanups and no removal discussion. Web search also found current OP-TEE StandAloneMM docs describing active Arm embedded deployments using RPMB-backed EFI variables. Conclusion: keep, but annotate as a niche Arm secure-firmware path with low deployment volume rather than a broadly deployed PC-class EFI driver.