- 20 Oct, 2023 3 commits
-
-
Mariam Elshakfy authored
This change enables N1SDP cache to improve performance by removing this patch: HACK-disable-instruction-cache-and-data-cache.patch Signed-off-by:Mariam Elshakfy <mariam.elshakfy@arm.com>
-
Mariam Elshakfy authored
Since the original location of OP-TEE in DDR3 observes a HW issue when cache is enabled, this change moves OP-TEE to run from DDR4. Patches are added to TF-A to reflect that change and the used region is also reserved in UEFI (EDK2) to protect against allocations by UEFI applications. OP-TEE size is modified for consistency across all patches to be 32 MB (0x02000000) instead of (0x02008000). Signed-off-by: -
Jon Mason authored
Mikko Rapeli upstreamed the patch for the Nuvoton defconfig issue and it has been pulled back the 6.1 kernel. So, it is no longer needed here. Signed-off-by:Jon Mason <jon.mason@arm.com>
-
- 16 Oct, 2023 1 commit
-
-
Vikas Katariya authored
This support is for Cassini distro using Corstone-1000 platform. When running parsec test, it reports an error `PSA_ERROR_DATA_INVALID (-153)`. This is related to `ITS_MAX_ASSET_SIZE` configuration which is been set to 512 on the secure enclave (TF-M), which defines the max asset size and it overflows when running the parsec tests. The key is generated, but when it is asked to store via `psa_its_set` it returns `PSA_ERROR_INVALID_ARGUMENT (-135)`, which then propagates to `PSA_ERROR_DATA_INVALID (-153)` Increasing the `ITS_MAX_ASSET_SIZE` to 2048 solves this issue. Signed-off-by:
Vikas Katariya <vikas.katariya@arm.com> Signed-off-by:
-
- 06 Oct, 2023 1 commit
-
-
Jon Mason authored
SRCREV_FORMAT is now required. Add that to address the build breakage. Signed-off-by:
-
- 01 Oct, 2023 1 commit
-
-
Jon Mason authored
Signed-off-by:
-
- 29 Sep, 2023 1 commit
-
-
Abdellatif El Khlifi authored
enable errata 855472 for Cortex-A35 in Corstone-1000 Signed-off-by:
Abdellatif El Khlifi <abdellatif.elkhlifi@arm.com> Signed-off-by:
-
- 14 Aug, 2023 3 commits
-
-
Robbie Cao authored
Add kernel configuration necessary to build an image with preempt-rt support for generic-arm64. And tweak kernel configuration for preempt-rt kernel. Signed-off-by:
Robbie Cao <robbie.cao@arm.com> Signed-off-by:
-
Jon Mason authored
Move the 3 patches only needed by the 6.1 kernel into a unique bbappend The defconfig changes cannot be moved into a config fragment because they only exist in the defconfig file (because the patches that integrated their functionality into the kernel were not merged). Signed-off-by: -
Jon Mason authored
Signed-off-by:
-
- 27 Jul, 2023 1 commit
-
-
Adam Johnston authored
The physical memory which is used to run OP-TEE on the N1SDP is known to the secure world via TOS_FW_CONFIG, but it may not be known to the normal world. As a precaution, explicitly reserve this memory via NT_FW_CONFIG to prevent the normal world from using it. This is not required on most platforms as the Trusted OS is run from secure RAM. Signed-off-by:
Adam Johnston <adam.johnston@arm.com> Signed-off-by:
-
- 06 Jul, 2023 3 commits
-
-
Abdellatif El Khlifi authored
set poky and meta-openembedded SHAs Signed-off-by:
-
Abdellatif El Khlifi authored
Adding extra details to corstone1000 user guide. Signed-off-by:
Emekcan Aras <Emekcan.Aras@arm.com> Signed-off-by:
-
Abdellatif El Khlifi authored
Updates the release note copyright. Signed-off-by:
-
- 27 Jun, 2023 4 commits
-
-
Abdellatif El Khlifi authored
Align the document with the current design. Signed-off-by: -
Abdellatif El Khlifi authored
Signed-off-by: -
Tomás González authored
Update the release notes with Known Issues and Limitations. Signed-off-by:Tomás González <tomasagustin.gonzalezorlando@arm.com>
-
Tomás González authored
Signed-off-by:
-
- 22 Jun, 2023 7 commits
-
-
Emekcan Aras authored
Adds missing update service definitions for using stateless platform services and initializes the capsule udpate provider in se-proxy-sp for corstone1000. Signed-off-by:
-
Emekcan Aras authored
Adds missing compilation option to fix psa_raw_key_aggrement test for corstone1000. Signed-off-by:
-
Emekcan Aras authored
From: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com> Signed-off-by:
Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com> Signed-off-by:
-
Emekcan Aras authored
From: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com> These 2 patches causes the secure world to enter into an infinite loop when the PSA arch tests are triggered. This is a temporary fix and the issue needs to be investigated before the patches can be enabled. Signed-off-by:
-
Emekcan Aras authored
This patch is required to handle one of the corner cases of the GetNextVariableName EFI service as specified in the UEFI spec. Signed-off-by:
-
Emekcan Aras authored
From: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com> This patch adds the required configs to the corstone1000 u-boot defconfig to enable the EFI services. This is done to fix the SCT failure reported by the SetTime_Conf and SetTime_Func. Signed-off-by:
-
Emekcan Aras authored
From: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com> The patch fixes the ACS InstallMultipleProtocolInterfaces_Conf failures in corstone1000 platform by dropping a workaround u-boot patch. The NVMXIP initialization had some issues during u-boot boot stage which led to the workaround patch. Upstream-Status: Pending [Not submitted to upstream yet] Signed-off-by:
-
- 14 Jun, 2023 15 commits
-
-
Denys Dmytriyenko authored
CFG_MAP_EXT_DT_SECURE=y should be set per platform, as it requires CFG_DT=y to also be set, which is not the case for all the platforms out there using optee-os. Moreover CFG_MAP_EXT_DT_SECURE is already being set conditionally in optee-os-ts. Signed-off-by:
Denys Dmytriyenko <denys@konsulko.com> Signed-off-by:
Denys Dmytriyenko <denis@denix.org> Signed-off-by:
-
Adam Johnston authored
Split trusted-services.xml into qemuarm64-secureboot-ts.yml and n1sdp-ts.yml as collection of Trusted Services which can be tested on each platform has diverged. Signed-off-by:
-
Rui Miguel Silva authored
Make sure we setup the new variable for the configuration of the SE-Proxy service for our machine. This will trigger the right configuration building trusted services and all psa-arch test pass as before. Signed-off-by:
Rui Miguel Silva <rui.silva@linaro.org> Signed-off-by:
-
Gyorgy Szing authored
Update Trusted Services and backport an OP-TEE update which allows interrupting the SPs by NWd interrupts. This solves the kernel stall problems which are due to long cryptographic operations being executed in the SWd. Signed-off-by:
Gyorgy Szing <Gyorgy.Szing@arm.com> Signed-off-by:
-
Gyorgy Szing authored
The nanopb build step randomly fails in the yocto CI due to a race condition. This change adds a patch file to disable parallel build for nanopb. This is a temporary workaround and a proper fix will be up-streamed int he future. Signed-off-by:
-
Rui Miguel Silva authored
Patch related with the changes to support the in/out_vec modifications in TF-M v1.7 was merged in upstream trusted-services integration branch. So, drop this 3 out of tree patches not needed to be applied any more. Signed-off-by:
-
Gyorgy Szing authored
TF-A v2.8 does not support measured boot and FF-A which is mandatory for PSA Initial Attestation SP to work correctly. Signed-off-by:
-
Gyorgy Szing authored
Add information related to SPMC tests and fix stale links. Signed-off-by:
-
Rui Miguel Silva authored
Remove already merged patches in trusted services integration branch to avoid clash during apply patch stage and rebase the remaining patches. Signed-off-by:
-
Gyorgy Szing authored
Run the ffa_spmc test group of xtest if the optee-spmc-test machine feature is enabled. Signed-off-by:
Anton Antonov <Anton.Antonov@arm.com> Signed-off-by:
-
Gyorgy Szing authored
Add ta-devkit and optee-test. Change configuration to enable building and deploying OP-TEE SPMC tests. Signed-off-by:
-
Gyorgy Szing authored
The ABI used by the arm-ffa-user driver to call into the SWd changed. The change was driven by the MM over FF-A ABI implementation which is used by SmmGW SP and uefi-test. uefi-test uses the same arm-ffa-user driver as xtest hence xtest needs to be updated to use the new driver. This xtest change is already merged up-stream but after v3.20, which is used here. This change adds backported xtest changes as carried patches. Signed-off-by:
-
Gyorgy Szing authored
This change: - cherry-picks TF-A changes from master which implement passing TOS_FW_CONFIG DTB from the FIP package to the trusted OS. - add an OP-TEE SPMC specific SPMC manifest file - configures TF-A to build the manifest, add it to the FIP package and pass it to OP-TEE as a boot argument. This functionality needs matching changes in OPTEE (OP-TEE v3.21 or v3.20 + carried patches.) Signed-off-by: -
Gyorgy Szing authored
OP-TEE SPMC v3.20 and TF-A v2.8 is incompatible on qemu, and OP-TEE panics during boot because having an SPMC manifest passed to the SPMC is mandatory since v3.20. TF-A and OP-TEE upstream already fixed this issue by modifying the ABI between the SPMD and SPMC. Moreover qemu support in TF-A has been extended to allow building an SPMC manifest DTS file, and loading it from the FIP package. This change adds the needed OP-TEE fixes as carried patches. The TF-A change will be added in the next commit. Signed-off-by:
-
Anton Antonov authored
Split tests to groups, and enable groups based on machine features set. This allows limiting tests to testing deployed SPs only. Signed-off-by:
-
