Commits · 65a5e1c04df56dbc0feb270fbae13c884020a5b9 · Infra Solutions / Reference Design / platsw / trusted-firmware-a

Jun 07, 2022
- Merge "fix(changelog): fix the broken link to commitlintrc.js" into integration · 65a5e1c0
  Manish Pandey2 authored Jun 07, 2022
  
  65a5e1c0
- fix(changelog): fix the broken link to commitlintrc.js · c1284a7f
  Jayanth Dodderi Chidanand authored Jun 07, 2022
```
The link to commitlintrc.js file in the v2.7 changelog
is updated.

Change-Id: I24ee736180d8df72b2d831e110a9a3a80a6d9862
Signed-off-by: Jayanth Dodderi Chidanand <jayanthdodderi.chidanand@arm.com>
```
  c1284a7f
Jun 06, 2022
- Merge "feat(imx8mq): add 100us delay after USB OTG SRC bit 0 clear" into integration · 938dfa29
  Madhukar Pappireddy authored Jun 06, 2022
  
  938dfa29
- Merge "fix(imx8mq): correct architected counter frequency" into integration · 8634793e
  Madhukar Pappireddy authored Jun 06, 2022
  
  8634793e
Jun 03, 2022
- Merge "fix(plat/zynqmp): fix coverity scan warnings" into integration · 5e529e32
  Madhukar Pappireddy authored Jun 03, 2022
  
  5e529e32
Jun 02, 2022

Merge "feat(plat/xilinx/zynqmp): optimization on pinctrl_functions" into integration · 950dc3a1
Madhukar Pappireddy authored Jun 02, 2022

950dc3a1

Merge changes Idafbe02d,Ib01eb5ce into integration · 67656351

Madhukar Pappireddy authored Jun 02, 2022

* changes:
  fix(scmi-msg): base: fix protocol list querying
  fix(scmi-msg): base: fix protocol list response size

67656351

Merge "fix(lib/psa): fix Null pointer dereference error" into integration · ed96c532
Madhukar Pappireddy authored Jun 02, 2022

ed96c532
Merge "fix(stm32mp1): fdts: stm32mp1: align DDR regulators with new driver" into integration · 87f76d31
Madhukar Pappireddy authored Jun 02, 2022

87f76d31

fix(stm32mp1): fdts: stm32mp1: align DDR regulators with new driver · 9eed71b7

Ahmad Fatoum authored Jun 02, 2022



With recent changes, TF-A now panics on MC-1, Avenger96 and Odyssey:

  NOTICE:  CPU: STM32MP157C?? Rev.B
  NOTICE:  Model: Linux Automation MC-1 board
  ERROR:   regul ldo3: max value 750 is invalid
  PANIC at PC : 0x2ffeebb7

as the driver takes great offense at the content of the device
tree. The parts in question were copy-pasted from ST DTs, but
those ST DTs were fixed by commit 67d95409
("refactor(stm32mp1-fdts): update regulator description").

Fix the breakage by transplanting the same changes into all
remaining STM32MP1 DTs.

Change was boot-tested on MC-1, but only build tested for the
other two.

Fixes: bba9fdee ("feat(stm32mp1): add regulator framework compilation")
Signed-off-by: Ahmad Fatoum <a.fatoum@pengutronix.de>
Change-Id: I143d0091625f62c313b3b71449c9ad99583d01c8

9eed71b7

Jun 01, 2022

Merge "docs(changelog): changelog for v2.7 release" into integration · 35f4c729
joannafarley-arm authored Jun 01, 2022

35f4c729

docs(changelog): changelog for v2.7 release · 24c5d206

Jayanth Dodderi Chidanand authored May 19, 2022



Change-Id: I573e5eb3c7fad097892292c8a967dc02d72d12e6
Signed-off-by: Jayanth Dodderi Chidanand <jayanthdodderi.chidanand@arm.com>

24c5d206

Merge changes from topic "sb/threat-model" into integration · ae985349

joannafarley-arm authored Jun 01, 2022

* changes:
  docs(threat-model): broaden the scope of threat #05
  docs(threat-model): emphasize whether mitigations are implemented

ae985349

Merge changes from topic "od/spm-doc-update" into integration · 7048400a
joannafarley-arm authored Jun 01, 2022
```
* changes:
  docs(spm): refresh FF-A SPM design doc
  docs(spm): update FF-A manifest binding
```
7048400a

docs(spm): refresh FF-A SPM design doc · 9eea92a1

Olivier Deprez authored Apr 28, 2022



- Move manifest binding doc as a dedicated SPM doc section.
- Highlight introduction of an EL3 FF-A SPM solution.
- Refresh TF-A build options.
- Refresh PE MMU configuration section.
- Add arch extensions for security hardening section.
- Minor corrections, typos fixes and rephrasing.

Signed-off-by: Olivier Deprez <olivier.deprez@arm.com>
Change-Id: I2db06c140ef5871a812ce00a4398c663d5433bb4

9eea92a1

docs(spm): update FF-A manifest binding · 79a91381

Olivier Deprez authored May 12, 2022



- Add security state attribute to memory and device regions.
- Rename device region reg attribution to base-address aligned with
  memory regions.
- Add pages-count field to device regions.
- Refresh interrupt attributes description in device regions.

Signed-off-by: Olivier Deprez <olivier.deprez@arm.com>
Change-Id: I901f48d410edb8b10f65bb35398b80f18105e427

79a91381

May 31, 2022

docs(threat-model): broaden the scope of threat #05 · 0677796c

Sandrine Bailleux authored May 16, 2022



 - Cite crash reports as an example of sensitive
   information. Previously, it might have sounded like this was the
   focus of the threat.

 - Warn about logging high-precision timing information, as well as
   conditionally logging (potentially nonsensitive) information
   depending on sensitive information.

Change-Id: I33232dcb1e4b5c81efd4cd621b24ab5ac7b58685
Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>

0677796c

docs(threat-model): emphasize whether mitigations are implemented · 7e32cdb2

Sandrine Bailleux authored May 13, 2022



For each threat, we now separate:
 - how to mitigate against it;
 - whether TF-A currently implements these mitigations.

A new "Mitigations implemented?" box is added to each threat to
provide the implementation status. For threats that are partially
mitigated from platform code, the original text is improved to make
these expectations clearer. The hope is that platform integrators will
have an easier time identifying what they need to carefully implement
in order to follow the security recommendations from the threat model.

Change-Id: I8473d75946daf6c91a0e15e61758c183603e195b
Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>

7e32cdb2

May 30, 2022
- Merge changes from topic "ja/boot_protocol" into integration · ccfa411b
  Olivier Deprez authored May 30, 2022
```
* changes:
  docs(spm): update ff-a boot protocol documentation
  docs(maintainers): add code owner to sptool
```
  ccfa411b
May 26, 2022
- Merge "fix(include/aarch64): fix encodings for MPAMVPM* registers" into integration · 16646921
  Manish Pandey2 authored May 26, 2022
  
  16646921
May 25, 2022

docs(spm): update ff-a boot protocol documentation · 573ac373

Joao Alves authored May 24, 2022



Updated following sections to document implementation of the FF-A boot
information protocol:
- Describing secure partitions.
- Secure Partition Packages.
- Passing boot data to the SP.
Also updated description of the manifest field 'gp-register-num'.

Signed-off-by: J-Alves <joao.alves@arm.com>
Change-Id: I5c856437b60cdf05566dd636a01207c9b9f42e61

573ac373

Merge "fix(cpus/denver): use CPU_NO_EXTRA3_FUNC for all variants" into integration · b9e2c773
Varun Wadekar authored May 25, 2022

b9e2c773

fix(include/aarch64): fix encodings for MPAMVPM* registers · e9265584

Varun Wadekar authored May 25, 2022



This patch fixes the following encodings in the System register
encoding space for the MPAM registers. The encodings now match
with the Arm® Architecture Reference Manual Supplement for MPAM.

* MPAMVPM0_EL2
* MPAMVPM1_EL2
* MPAMVPM2_EL2
* MPAMVPM3_EL2
* MPAMVPM4_EL2
* MPAMVPM5_EL2
* MPAMVPM6_EL2
* MPAMVPM7_EL2
* MPAMVPMV_EL2

Signed-off-by: Varun Wadekar <vwadekar@nvidia.com>
Change-Id: Ib339412de6a9c945a3307f3f347fe7b2efabdc18

e9265584

feat(imx8mq): add 100us delay after USB OTG SRC bit 0 clear · 66345b8b

Jacky Bai authored Jan 19, 2020



After the SRC bit clear, we must wait for a while to make sure
the operation is finished. And don't enable all the PU domains
by default.

for USB OTG, the limitations are:
1. before system clock configuration. ipg clock runs at 12.5MHz.
delay time should longer than 82us.

2. after system clock configuration. ipg clock runs at 66.5MHz.
delay time should longer than 15.3us.

so add udelay 100 to safely clear the SRC bit 0.

Signed-off-by: Jacky Bai <ping.bai@nxp.com>
Change-Id: I52e8e7739fdaaf86442bcd148e768b6af38bcdb7

66345b8b

May 24, 2022

docs(maintainers): add code owner to sptool · 77b73416

Joao Alves authored May 24, 2022



Add Joao Alves as code owner to the sptool.

Signed-off-by: J-Alves <joao.alves@arm.com>
Change-Id: I9e44e322ba1cce62308bf16c4a6253f7b0117fe0

77b73416

fix(cpus/denver): use CPU_NO_EXTRA3_FUNC for all variants · b2ed9989

Varun Wadekar authored May 24, 2022

Denver CPUs use the same workaround for CVE-2017-5715 and CVE-2022-23960
vulnerabilities. The workaround for CVE-2017-5715 is always enabled, so
all Denver variants use CPU_NO_EXTRA3_FUNC as a placeholder for the
mitigation for CVE-2022-23960. This patch implements the approach.

Signed-off-by: Varun Wadekar <vwadekar@nvidia.com>
Change-Id: I0863541ce19b6b3b6d1b2f901d3fb6a77f315189

b2ed9989

Merge "fix(build): use DWARF 4 when building debug" into integration · 10534b3e
Manish Pandey2 authored May 24, 2022

10534b3e
Merge changes from topic "ffa_el3_spmc" into integration · f7ad7434
Olivier Deprez authored May 24, 2022
```
* changes:
  fix(spmc): fix incorrect FF-A version usage
  fix(spmc): fix FF-A memory transaction validation
```
f7ad7434

May 23, 2022

fix(imx8mq): correct architected counter frequency · 21189b8e

Lucas Stach authored May 20, 2022



Different from other i.MX SoCs, which typically use a 24MHz reference clock,
the i.MX8MQ uses a 25MHz reference clock. As the architected timer clock
frequency is directly sourced from the reference clock via a /3 divider this
SoC runs the timers at 8.33MHz.

Signed-off-by: Lucas Stach <l.stach@pengutronix.de>
Change-Id: Ief36af9ffebce7cb75a200124134828d3963e744

21189b8e

feat(plat/xilinx/zynqmp): optimization on pinctrl_functions · 314f9f79

Ronak Jain authored May 06, 2022



Optimizing the pinctrl_functions structure. Remove the pointer to
array of u16 type which consumes a lot of memory (64bits pointer to
array + 16B for END_OF_GROUPS + almost useless 8bits on every entry
which is the same for every group) and add two new members of type
u16 and u8 with the name called group_base and group_size
respectively.

The group_base member contains the base value of pinctrl group whereas
the group_size member contains the total number of groups requested
from the pinctrl function.

Overall, it saves around ~2KB of RAM and ~0.7KB of code memory.

Signed-off-by: Michal Simek <michal.simek@amd.com>
Signed-off-by: Ronak Jain <ronak.jain@xilinx.com>
Change-Id: I79b761b45df350d390fa344d411b340d9b2f13ac

314f9f79

fix(lib/psa): fix Null pointer dereference error · c32ab75c

Dávid Vincze authored May 18, 2022



Fixing possible Null pointer dereference error, found
by Coverity scan.

Change-Id: If60b7f7e13ecbc3c01e3a9c5005c480260bbabdd
Signed-off-by: David Vincze <david.vincze@arm.com>

c32ab75c

May 20, 2022

fix(spmc): fix incorrect FF-A version usage · 25eb2d41

Marc Bonnici authored May 20, 2022



Fix the wrong FF-A version being used for retrieving existing memory
descriptors for v1.0 clients. Internally these should always be stored
using the latest version rather than client version.

Signed-off-by: Marc Bonnici <marc.bonnici@arm.com>
Change-Id: Ibee1b2452c8d6ebd23bbd9d703c96ca185444093

25eb2d41

fix(spmc): fix FF-A memory transaction validation · 3954bc3c

Marc Bonnici authored May 20, 2022



Fix an incorrect bound check for overlapping memory regions which can
give false positives if the two regions are consecutive to each other.

Signed-off-by: Marc Bonnici <marc.bonnici@arm.com>
Change-Id: I997dc4d1ef2014660cc964aff0a73e348c44eff0

3954bc3c

fix(build): use DWARF 4 when building debug · 4466cf82

Daniel Boulby authored May 03, 2022



GCC 11 and Clang 14 now use the DWARF 5 standard by default however
Arm-DS currently only supports up to version 4. Therefore, for debug
builds, ensure the DWARF 4 standard is used.
Also update references for Arm DS-5 to it's successor Arm-DS (Arm
Development Studio).

Change-Id: Ica59588de3d121c1b795b3699f42c31f032cee49
Signed-off-by: Daniel Boulby <daniel.boulby@arm.com>

4466cf82

May 19, 2022

Merge changes from topic "sb/threat-model" into integration · 453abc80
Bipin Ravi authored May 19, 2022
```
* changes:
  docs(threat-model): make measured boot out of scope
  docs(threat-model): revamp threat #9
```
453abc80
Merge "fix(bl1): invalidate SP in data cache during secure SMC" into integration · 4cafcc30
Madhukar Pappireddy authored May 19, 2022

4cafcc30

Merge changes from topic "ffa_el3_spmc" into integration · 70313d36

Olivier Deprez authored May 19, 2022

* changes:
  feat(fvp): add plat hook for memory transactions
  feat(spmc): enable handling of the NS bit
  feat(spmc): add support for v1.1 FF-A memory data structures
  feat(spmc/mem): prevent duplicated sharing of memory regions
  feat(spmc/mem): support multiple endpoints in memory transactions
  feat(spmc): add support for v1.1 FF-A boot protocol
  feat(plat/fvp): introduce accessor function to obtain datastore
  feat(spmc/mem): add FF-A memory management code

70313d36

Merge "refactor(context mgmt): refactor initialization of EL1 context registers" into integration · 9c5d483b
Olivier Deprez authored May 19, 2022

9c5d483b

Merge changes from topic "gpt-crc" into integration · be1d3a1a

Madhukar Pappireddy authored May 19, 2022

* changes:
  feat(partition): verify crc while loading gpt header
  build(hikey): platform changes for verifying gpt header crc
  build(agilex): platform changes for verifying gpt header crc
  build(stratix10): platform changes for verifying gpt header crc
  build(stm32mp1): platform changes for verifying gpt header crc

be1d3a1a

feat(fvp): add plat hook for memory transactions · a8be4cd0

Marc Bonnici authored Feb 21, 2022



Add call to platform hooks upon successful transmission of a
memory transaction request and as part of a memory reclaim request.
This allows for platform specific functionality to be performed
accordingly.

Note the hooks must be placed in the initial share request and final
reclaim to prevent order dependencies with operations that may take
place in the normal world without visibility of the SPMC.

Add a dummy implementation to the FVP platform.

Signed-off-by: Marc Bonnici <marc.bonnici@arm.com>
Change-Id: I0c7441a9fdf953c4db0651512e5e2cdbc6656c79

a8be4cd0