Commits · c3fb00d93ee734e60dea4f13f7f7a80eadb9cfa9 · adam.huang / Arm Trusted Firmware

10 Feb, 2020 5 commits

SPMD: enable SPM dispatcher support · c3fb00d9

Achin Gupta authored Oct 11, 2019



This patch adds support to the build system to include support for the SPM
dispatcher when the SPD configuration option is spmd.
Signed-off-by: Achin Gupta <achin.gupta@arm.com>
Signed-off-by: Artsem Artsemenka <artsem.artsemenka@arm.com>
Change-Id: Ic1ae50ecd7403fcbcf1d318abdbd6ebdc642f732

c3fb00d9

SPMD: hook SPMD into standard services framework · 2a7b403d

Achin Gupta authored Oct 11, 2019



This patch adds support to initialise the SPM dispatcher as a standard
secure service. It also registers a handler for SPCI SMCs exported by
the SPM dispatcher.
Signed-off-by: Achin Gupta <achin.gupta@arm.com>
Signed-off-by: Artsem Artsemenka <artsem.artsemenka@arm.com>
Change-Id: I2183adf826d08ff3fee9aee75f021021162b6477

2a7b403d

SPMD: add SPM dispatcher based upon SPCI Beta 0 spec · bdd2596d

Achin Gupta authored Oct 11, 2019



This patch adds a rudimentary SPM dispatcher component in EL3.
It does the following:

- Consumes the TOS_FW_CONFIG to determine properties of the SPM core
  component
- Initialises the SPM core component which resides in the BL32 image
- Implements a handler for SPCI calls from either security state. Some
  basic validation is done for each call but in most cases it is simply
  forwarded as-is to the "other" security state.
Signed-off-by: Achin Gupta <achin.gupta@arm.com>
Signed-off-by: Artsem Artsemenka <artsem.artsemenka@arm.com>
Change-Id: I7d116814557f7255f4f4ebb797d1619d4fbab590

bdd2596d

SPMD: add support to run BL32 in TDRAM and BL31 in secure DRAM on Arm FVP · 64758c97

Achin Gupta authored Oct 11, 2019



This patch reserves and maps the Trusted DRAM for SPM core execution.
It also configures the TrustZone address space controller to run BL31
in secure DRAM.
Signed-off-by: Achin Gupta <achin.gupta@arm.com>
Signed-off-by: Artsem Artsemenka <artsem.artsemenka@arm.com>
Change-Id: I7e1bb3bbc61a0fec6a9cb595964ff553620c21dc

64758c97

SPMD: add support for an example SPM core manifest · 0cb64d01

Achin Gupta authored Oct 11, 2019



This patch repurposes the TOS FW configuration file as the manifest for
the SPM core component which will reside at the secure EL adjacent to
EL3. The SPM dispatcher component will use the manifest to determine how
the core component must be initialised. Routines and data structure to
parse the manifest have also been added.
Signed-off-by: Achin Gupta <achin.gupta@arm.com>
Signed-off-by: Artsem Artsemenka <artsem.artsemenka@arm.com>
Change-Id: Id94f8ece43b4e05609f0a1d364708a912f6203cb

0cb64d01

05 Feb, 2020 1 commit

SPMD: add SPCI Beta 0 specification header file · d8b225a1

Achin Gupta authored Oct 11, 2019



This patch adds a header file with defines based on the SPCI Beta 0 spec.
It will be used by the SPM dispatcher component which will be introduced
in subsequent patches.
Signed-off-by: Achin Gupta <achin.gupta@arm.com>
Signed-off-by: Artsem Artsemenka <artsem.artsemenka@arm.com>
Change-Id: Ia8a196cd85ebc14731f24801698d0a49a97b6063

d8b225a1

04 Feb, 2020 7 commits
- Merge "Coverity: remove unnecessary header file includes" into integration · 235c8174
  Mark Dykes authored Feb 04, 2020
  
  235c8174
- Merge changes from topic "mp/separate_nobits" into integration · 9eac8e95
  Sandrine Bailleux authored Feb 04, 2020
```
* changes:
  plat/arm: Add support for SEPARATE_NOBITS_REGION
  Changes necessary to support SEPARATE_NOBITS_REGION feature
```
  9eac8e95
- Coverity: remove unnecessary header file includes · e6937287
  Zelalem authored Feb 03, 2020
```
This patch removes unnecessary header file includes
discovered by Coverity HFA option.

Change-Id: I2827c37c1c24866c87db0e206e681900545925d4
Signed-off-by: Zelalem <zelalem.aweke@arm.com>
```
  e6937287
- Merge "coverity: debugfs devfip remove comparisons to LONG_MAX" into integration · 44e3424e
  Soby Mathew authored Feb 04, 2020
  
  44e3424e
- Merge "intel: agilex: Enable uboot BL31 loading" into integration · d57a582a
  Manish Pandey authored Feb 04, 2020
  
  d57a582a
- coverity: debugfs devfip remove comparisons to LONG_MAX · 47939f67
  Olivier Deprez authored Jan 06, 2020
```
CID 353228:  Integer handling issues  (CONSTANT_EXPRESSION_RESULT)

The checks on size and offset_address in get_entry always resolve to
false provided those fields are long long int and cannot be greater
than LONG_MAX.
Signed-off-by: Olivier Deprez <olivier.deprez@arm.com>
Change-Id: I0fac485a39ac4a40ae8c0d25a706ad74c795e130
```
  47939f67
- Merge "BL2: Print ID of images we fail loading" into integration · 4ad18e5d
  Sandrine Bailleux authored Feb 04, 2020
  
  4ad18e5d
03 Feb, 2020 5 commits

BL2: Print ID of images we fail loading · a416325b

Sandrine Bailleux authored Feb 03, 2020

When Trusted Boot is enabled, images are loaded and authenticated
following up the root of trust. This means that between the initial
console message saying that an image is being loaded, and the final one
where it says that it failed to load it, BL2 may print several messages
about other images on the chain of trust being loaded, thus it is not
always clear which image we failed loading at the end of the day.

Change-Id: I3b189ec9d12c2a6203d16c8dbbb4fc117639c3c1
Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>

a416325b

Merge "FDT wrappers: add functions for read/write bytes" into integration · 5f62213e
Manish Pandey authored Feb 03, 2020

5f62213e

FDT wrappers: add functions for read/write bytes · 0a2ab6e6

Alexei Fedorov authored Jan 29, 2020



This patch adds 'fdtw_read_bytes' and 'fdtw_write_inplace_bytes'
functions for read/write array of bytes from/to a given property.
It also adds 'fdt_setprop_inplace_namelen_partial' to jmptbl.i
files for builds with USE_ROMLIB=1 option.

Change-Id: Ied7b5c8b38a0e21d508aa7bcf5893e656028b14d
Signed-off-by: Alexei Fedorov <Alexei.Fedorov@arm.com>

0a2ab6e6

Merge "doc: qemu: fix and update documentation" into integration · 9db293d1
Sandrine Bailleux authored Feb 03, 2020

9db293d1

doc: qemu: fix and update documentation · 62038be7

Masahiro Yamada authored Dec 26, 2019



The current URL for QEMU_EFI.fd is not found. Update the link to
point to the new one.

If you run the shell command as instructed, you will see this error:
  qemu-system-aarch64: keep_bootcon: Could not open 'keep_bootcon': No such file or directory

The part "console=ttyAMA0,38400 keep_bootcon root=/dev/vda2" is the
kernel parameter, so it must be quoted.

As of writing, QEMU v4.2.0 is the latest, but it does not work for
TF-A (It has been fixed in the mainline.) QEMU v4.1.0 works fine.

With those issues addressed, I succeeded in booting the latest kernel.

Tested with QEMU v4.1.0 and Linux 5.5 (defconfig with no modification).
Update the tested versions.

Change-Id: Ic85db0e688d67b1803ff890047d37de3f3db2daa
Signed-off-by: Masahiro Yamada <yamada.masahiro@socionext.com>

62038be7

31 Jan, 2020 1 commit
- Merge "Add support for documentation build as a target in Makefile" into integration · 989429e8
  Sandrine Bailleux authored Jan 31, 2020
  
  989429e8
30 Jan, 2020 3 commits
- Merge "Use correct type when reading SCR register" into integration · f69a5828
  Alexei Fedorov authored Jan 30, 2020
  
  f69a5828
- Merge "Ignore the ctags file" into integration · b7e0ed2c
  Sandrine Bailleux authored Jan 30, 2020
  
  b7e0ed2c
- Merge changes from topic "sb/select-cot" into integration · dcd03ce7
  Sandrine Bailleux authored Jan 30, 2020
```
* changes:
  Introduce COT build option
  cert_create: Remove references to TBBR in common code
  cert_create: Introduce COT build option
  cert_create: Introduce TBBR CoT makefile
```
  dcd03ce7
29 Jan, 2020 11 commits

Merge "qemu: Implement PSCI_CPU_OFF." into integration · b1d810bd
Soby Mathew authored Jan 29, 2020

b1d810bd
Merge "T589: Fix insufficient ordering guarantees in bakery lock" into integration · 458dde3c
Soby Mathew authored Jan 29, 2020

458dde3c

Introduce COT build option · 3bff910d

Sandrine Bailleux authored Jan 15, 2020



Allows to select the chain of trust to use when the Trusted Boot feature
is enabled. This affects both the cert_create tool and the firmware
itself.

Right now, the only available CoT is TBBR.

Change-Id: I7ab54e66508a1416cb3fcd3dfb0f055696763b3d
Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>

3bff910d

cert_create: Remove references to TBBR in common code · 067f7e9c

Sandrine Bailleux authored Jan 15, 2020



In preparation of supporting alternate chains of trust, reword comments
and error messages that explicitly mentioned TBBR.

Change-Id: I85a0b08e16d0cd82f3b767fcc092d1f20f45939f
Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>

067f7e9c

cert_create: Introduce COT build option · 43743ea5

Sandrine Bailleux authored Jan 15, 2020



It allows to select the desired chain of trust. Right now, only the TBBR
CoT is available.

At this stage, this build option only affects the tool itself. It is not
plugged into the rest of the build system yet. To use it:

 > make -C tools/cert_create COT=tbbr

Change-Id: I4484418f76d3c7b330d8653c978499a181534dcd
Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>

43743ea5

cert_create: Introduce TBBR CoT makefile · 3b24b66e

Sandrine Bailleux authored Jan 14, 2020



Move all TBBR-specific stuff out of the tool's makefile into a
sub-makefile. This will make it easier to define and select an alternate
chain of trust in the future.

Change-Id: I92e366a1999b74cf51127d1771b64b807cd94b29
Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>

3b24b66e

Add support for documentation build as a target in Makefile · 6de32378

Madhukar Pappireddy authored Jan 28, 2020



Command to build HTML-formatted pages from docs:
make doc

Change-Id: I4103c804b3564fe67d8fc5a3373679daabf3f2e9
Signed-off-by: Madhukar Pappireddy <madhukar.pappireddy@arm.com>

6de32378

qemu: Implement PSCI_CPU_OFF. · 33e8c569

Andrew Walbran authored Jan 23, 2020

This is based on the rpi implementation from
https://review.trustedfirmware.org/c/TF-A/trusted-firmware-a/+/2746

.
Signed-off-by: Andrew Walbran <qwandor@google.com>
Change-Id: I5fe324fcd9d5e232091e01267ea12147c46bc9c1

33e8c569

Merge changes I0fb7cf79,Ia8eb4710 into integration · 8efec9e0

Soby Mathew authored Jan 29, 2020

* changes:
  qemu: Implement qemu_system_off via semihosting.
  qemu: Support ARM_LINUX_KERNEL_AS_BL33 to pass FDT address.

8efec9e0

Merge "Enable -Wredundant-decls warning check" into integration · c1f118f1
Soby Mathew authored Jan 29, 2020

c1f118f1

intel: agilex: Enable uboot BL31 loading · 2a1e0866

Hadi Asyrafi authored Jan 14, 2020



This patch enables uboot's spl entrypoint to BL31 and also handles
secondary cpus state during cold boot.
Signed-off-by: Hadi Asyrafi <muhammad.hadi.asyrafi.abdul.halim@intel.com>
Change-Id: Ib70ec91a3ad09a568cb66e7c1e23a2b3e460746c

2a1e0866

28 Jan, 2020 7 commits

Merge "Measured Boot: add function for hash calculation" into integration · b012454d
Mark Dykes authored Jan 28, 2020

b012454d

Enable -Wredundant-decls warning check · ca661a00

Madhukar Pappireddy authored Dec 23, 2019



This flag warns if anything is declared more than once in the same
scope, even in cases where multiple declaration is valid and changes
nothing.

Consequently, this patch also fixes the issues reported by this
flag. Consider the following two lines of code from two different source
files(bl_common.h and bl31_plat_setup.c):

IMPORT_SYM(uintptr_t, __RO_START__, BL_CODE_BASE);
IMPORT_SYM(unsigned long, __RO_START__, BL2_RO_BASE);

The IMPORT_SYM macro which actually imports a linker symbol as a C expression.
The macro defines the __RO_START__ as an extern variable twice, one for each
instance. __RO_START__ symbol is defined by the linker script to mark the start
of the Read-Only area of the memory map.

Essentially, the platform code redefines the linker symbol with a different
(relevant) name rather than using the standard symbol. A simple solution to
fix this issue in the platform code for redundant declarations warning is
to remove the second IMPORT_SYM and replace it with following assignment

static const unsigned long BL2_RO_BASE = BL_CODE_BASE;

Change-Id: If4835d1ee462d52b75e5afd2a59b64828707c5aa
Signed-off-by: Madhukar Pappireddy <madhukar.pappireddy@arm.com>

ca661a00

Measured Boot: add function for hash calculation · 8c105290

Alexei Fedorov authored Jan 23, 2020



This patch adds 'calc_hash' function using Mbed TLS library
required for Measured Boot support.

Change-Id: Ifc5aee0162d04db58ec6391e0726a526f29a52bb
Signed-off-by: Alexei Fedorov <Alexei.Fedorov@arm.com>

8c105290

Use correct type when reading SCR register · f1be00da

Louis Mayencourt authored Jan 24, 2020

The Secure Configuration Register is 64-bits in AArch64 and 32-bits in
AArch32. Use u_register_t instead of unsigned int to reflect this.

Change-Id: I51b69467baba36bf0cfaec2595dc8837b1566934
Signed-off-by: Louis Mayencourt <louis.mayencourt@arm.com>

f1be00da

Merge changes from topic "ti-cluster-power" into integration · 29763ac2

Soby Mathew authored Jan 28, 2020

* changes:
  ti: k3: drivers: ti_sci: Put sequence number in coherent memory
  ti: k3: drivers: ti_sci: Remove indirect structure of const data
  ti: k3: common: Enable ARM cluster power down
  ti: k3: common: Rename device IDs to be more consistent

29763ac2

Merge "plat/arm/sgi: move topology information to board folder" into integration · 7cd731bc
Manish Pandey authored Jan 28, 2020

7cd731bc
Merge "Tegra194: enable spe-console functionality" into integration · 99018581
Sandrine Bailleux authored Jan 28, 2020

99018581