subtree updates
meta-openembedded: 0782ea454a..ce0b93fc12:
Alex Kiernan (5):
faad2: Upgrade 2.8.8 -> 2.10.0
onig: Upgrade 6.9.4 -> 6.9.8
jansson: Honour multilib paths
jansson: Backport linker flag fixes
jansson: Default to shared builds
Beniamin Sandu (1):
libnet: update to v1.2 release
Daniel Gomez (4):
gst-instruments: Update 0.2.3 -> 0.3.1+cb8977a
libftdi: Add ftdi-eeprom support
xf86-video-ati: Update 19.1.0 -> 19.1.0+7a6a34af
v4l-utils: Update 1.22.1 -> 1.23.0+fd544473
Gianluigi Spagnuolo (1):
bpftool: add aarch64 to COMPATIBLE_HOST
Hitomi Hasegawa (1):
libsdl: add CVE-2019-14906 to allowlist
Khem Raj (2):
python3-gevent: Avoid building internal version of libev
xterm: Add _GNU_SOURCE via CFLAGS
Lukas Rusak (2):
libwebsockets: add optional support for sd-event loop
libwebsockets: add error check if PACKAGECONFIG contains systemd but DISTRO_FEATURES doesn't
Ming Liu (1):
plymouth: uprev to 22.02.122
William A. Kennington III (2):
gerbera: upgrade 1.9.2 -> 1.11.0
fmt: upgrade 8.1.1 -> 9.1.0
Yi Zhao (4):
freeradius: fix daemon startup warnings
frr: upgrade 8.2.2 -> 8.3.1
libnftnl: upgrade 1.2.2 -> 1.2.3
nftables: upgrade 1.0.4 -> 1.0.5
onkelpit (1):
tio: added tio version 2.0 and 1.47
wangmy (1):
xterm: upgrade 372 -> 373
meta-arm: 52f07a4b0b..0164b4ca7a:
Abdellatif El Khlifi (12):
arm-bsp/u-boot: corstone1000: update initramfs bundle size
arm-bsp/u-boot: corstone1000: upgrade FF-A support
arm-bsp/optee-os: corstone1000: upgrade to v3.18
arm-bsp/optee-spdevkit: corstone1000: drop the support
arm-bsp/corstone1000-initramfs-image: remove obsolete packages
arm-bsp/trusted-services: corstone1000: add secure partitions support
arm-bsp/machine: corstone1000: disable pulling the kernel into the initramfs
arm-bsp/trusted-services: corstone1000: add MHU-driver
arm-bsp/corstone1000-initramfs-image: add TS PSA API tests packages
arm-bsp/linux: corstone1000: use arm-ffa machine feature
arm/secure-partitions: drop use of the recipe
arm/ffa-debugfs: drop use of the kernel module
Adam Johnston (3):
arm-bsp/edk2-firmware: Update edk2/edk2-platforms versions for N1SDP
arm-bsp/edk2-firmware: Add edk2-platforms patches for N1SDP
arm-bsp/trusted-firmware-a: Update TF-A version for N1SDP
Andrei Gherzan (1):
edk2-firmware: Fix configure sed typo
Anton Antonov (1):
Temporary use qemu 7.0.0 for TS CI pipelines
Davidson K (6):
arm-bsp/tc: upgrade version of trusted-firmware-a
arm-bsp/tc: upgrade version of hafnium
arm-bsp/tc: upgrade version of optee
arm-bsp/u-boot: add gnutls-native as dependency
arm-bsp/trusted-firmware-a: add firmware update support for TC
arm-bsp/hafnium: enable Virtual Host Extension for TC
Denys Dmytriyenko (1):
arm-toolchain/gcc,external-arm-toolchain: resolve conflict with gcc headers
Emekcan (8):
arm-bsp/u-boot: Add external system driver to u-boot device tree
arm-bsp/kernel: Add external device driver
arm-bsp/u-boot: Add external system MHUs to u-boot device tree
arm-bsp/kernel: Add rpmsg_arm_mailbox to corstone1000
arm-bsp/test: Adding a test app for external system
arm-bsp/images: Adding external system test to initramfs image
arm-bsp/test: Changing the test app repository
arm-bsp/external-system: Changing the RTX repo
Jiacheng Tang (1):
arm/fvp-base-r-aem: upgrade to version 11.19.14
Joe Slater (1):
arm/packagegroup-ts-tests: fix parse error
Jon Mason (17):
arm-bsp/optee-os: add 3.10 recipe for corstone1000
arm-bsp/optee: rename corstone1000 files
arm/optee-spdevkit: add version to file name
arm/optee-os: add ARMv7 changes to clang patch and update patches
arm/qemuarm-secureboot: remove optee-os version pin
arm/optee: remove old versions
arm/optee-client: move the 3.14 recipe to meta-arm-bsp
arm/hafnium: update to 2.7
arm-bsp/n1sdp: update linux-yocto patches
arm/edk2-firmware: Work around clang issue
arm-bsp/tc: remove hafnium clang patch
layers: convert to langdale compatibility
CI: Remove uniquely zephyr machines
arm-bsp/fvp: move the fvp include file to the include directory
ci: move features only needed by testimage from base
CI: apply a patch so that meta-zephyr is compatible with langdale
Revert "CI: apply a patch so that meta-zephyr is compatible with langdale"
Khem Raj (6):
optee-os: Extend clang pragma fixes to core_mmu_v7.c for 3.18
trusted-services: Pin to use gcc
ffa-debugfs-mod: Exclude from world builds
linux-yocto: Add bbappend for 5.19
hafnium: Add a fix for clang-15 errors
hafnium: Exclude from world builds
Mohamed Omar Asaker (1):
arm-bsp/n1sdp-board-firmware: upgrade to N1SDP-2022.06.22
Peter Hoyes (4):
arm/lib: Specify the FVP environment variables explicitly
arm-bsp/trusted-firmware-m: Make branch names configurable
arm/classes: Migrate TF-M image signing to bbclass
arm-bsp/corstone1000: Refactor image signing to use new bbclass
Ross Burton (3):
gem5/linux-yocto: upgrade to 5.4.205 and fix buildpaths in binaries
Revert "Temporary use qemu 7.0.0 for TS CI pipelines"
runfvp: pass-through environment variables need for GUI applications
Rui Miguel Silva (1):
arm-bsp: trusted-services: fix openamp build
Vishnu Banavath (2):
arm-bsp/ffa-debugfs: update git SHA for v2.1.0
arm-bsp/external-system:corstone1000: build and install external-system
Xueliang Zhong (1):
arm-bsp/n1sdp: upgrade scp-firmware version
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I7a07eab9e4aa0bdbdb50602050c3c4caf062acbf
diff --git a/meta-arm/meta-arm-bsp/recipes-security/trusted-services/ts-corstone1000.inc b/meta-arm/meta-arm-bsp/recipes-security/trusted-services/ts-corstone1000.inc
index b04863f..12d300a 100644
--- a/meta-arm/meta-arm-bsp/recipes-security/trusted-services/ts-corstone1000.inc
+++ b/meta-arm/meta-arm-bsp/recipes-security/trusted-services/ts-corstone1000.inc
@@ -1,127 +1,11 @@
-FILESEXTRAPATHS:prepend := "${THISDIR}/secure-partitions/corstone1000:"
-
-COMPATIBLE_MACHINE = "corstone1000"
-
-LIC_FILES_CHKSUM += "file://../mbedtls/LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57 \
- file://../nanopb/LICENSE.txt;md5=9db4b73a55a3994384112efcdb37c01f \
- file://../openamp/LICENSE.md;md5=a8d8cf662ef6bf9936a1e1413585ecbf \
- file://../libmetal/LICENSE.md;md5=fe0b8a4beea8f0813b606d15a3df3d3c \
- file://../psa-arch-tests/LICENSE.md;md5=2a944942e1496af1886903d274dedb13 \
- "
+FILESEXTRAPATHS:prepend := "${THISDIR}/corstone1000:"
SRC_URI:append = " \
- ${SRC_URI_MBEDTLS} ${SRC_URI_NANOPB} ${SRC_URI_OPENAMP} ${SRC_URI_LIBMETAL} ${SRC_URI_ARCH-TESTS}\
- file://0001-tools-cmake-common-applying-lowercase-project-conven.patch \
- file://0002-fix-EARLY_TA_PATHS-env-variable.patch \
- file://0003-se-proxy-dts-add-se-proxy-as-child-node.patch \
- file://0004-Update-mm-comm-buffer-region-in-dts-file.patch \
- file://0005-Configure-NV-storage-macro.patch \
- file://0006-Use-device-region.patch \
- file://0007-Add-openamp-to-SE-proxy-deployment.patch \
- file://0008-Implement-mhu-driver-and-the-OpenAmp-conversion-laye.patch \
- file://0009-Add-openamp-rpc-caller.patch \
- file://0010-add-psa-client-definitions-for-ff-m.patch \
- file://0011-Add-common-service-component-to-ipc-support.patch \
- file://0012-Add-secure-storage-ipc-backend.patch \
- file://0013-Use-secure-storage-ipc-and-openamp-for-se_proxy.patch \
- file://0014-Add-uefi-variable-append-write-support.patch \
- file://0015-Add-UEFI-variable-support-for-QueryVariableInfo.patch \
- file://0016-Add-uefi-test-deployment.patch \
- file://0017-Fix-interface-ID-parameter-setting-in-sp-ffarpc_call.patch \
- file://0018-Support-FFARPC-call-requests-with-no-shared-buffer.patch \
- file://0019-Run-psa-arch-test.patch \
- file://0020-Use-address-instead-of-pointers.patch \
- file://0021-Add-psa-ipc-attestation-to-se-proxy.patch \
- file://0022-Setup-its-backend-as-openamp-rpc-using-secure-storag.patch \
- file://0023-add-psa-ipc-crypto-backend.patch \
- file://0024-Increase-SMM-gateway-UEFI-variable-macro-value.patch \
- file://0025-Add-stub-capsule-update-service-components.patch \
- file://0026-Add-logs-to-functions-in-SMM-gateway-SP.patch \
- file://0027-Configure-storage-size.patch \
- file://0028-Revert-Add-uefi-variable-append-write-support.patch \
- file://0029-Change-UID-of-variable-index-in-SMM.patch \
- file://0030-Add-missing-features-to-setVariable.patch \
- file://0031-Add-invalid-parameter-check-in-getNextVariableName.patch \
- file://0032-smm_gateway-add-checks-for-null-attributes.patch \
- file://0033-Enhance-mbedtls-fetch-process.patch \
- file://0034-Fix-format-specifier-in-logging_caller.patch \
- file://0035-Update-refspecs-for-mbedtls-and-psa-arch-tests-for-v.patch \
- file://0036-Separate-sign-verify-message-and-hash-operations.patch \
- file://0037-Add-defence-against-uninitialised-multi-part-transac.patch \
- file://0038-Integrate-AEAD-operation-support.patch \
- file://0039-Add-IV-generation-to-one-shot-cipher-operation.patch \
- file://0040-Fix-multi-part-termination-on-error.patch \
- file://0041-Abort-AEAD-operation-if-client-provided-buffer-is-to.patch \
- file://0042-Peg-to-updated-t_cose-version-fc3a4b2c.patch \
- file://0043-pass-sysroot_yocto.patch \
- file://0044-Fix-Crypto-interface-structure-aligned-with-tf-m-cha.patch \
- file://0045-Integrate-remaining-psa-ipc-client-APIs.patch \
- file://0046-Fix-update-psa_set_key_usage_flags-definition-to-the.patch \
- file://0047-Fixes-in-AEAD-for-psa-arch-test-54-and-58.patch \
- file://0003-corstone1000-port-crypto-config.patch;patchdir=../psa-arch-tests \
- file://0048-Fix-UEFI-get_variable-with-small-buffer.patch \
- "
+ file://0026-plat-add-corstone1000-platform-to-drivers-arm.patch \
+ file://0027-Add-MHU-driver.patch \
+ "
-SRC_URI_MBEDTLS = "git://github.com/ARMmbed/mbedtls.git;protocol=https;branch=development;name=mbedtls;destsuffix=git/mbedtls"
-SRCREV_mbedtls = "d65aeb37349ad1a50e0f6c9b694d4b5290d60e49"
-SRC_URI_NANOPB = "git://github.com/nanopb/nanopb.git;name=nanopb;protocol=https;branch=master;destsuffix=git/nanopb"
-SRCREV_nanopb = "df0e92f474f9cca704fe2b31483f0b4d1b1715a4"
-
-SRC_URI_OPENAMP = "git://github.com/OpenAMP/open-amp.git;name=openamp;protocol=https;branch=main;destsuffix=git/openamp"
-SRCREV_openamp = "347397decaa43372fc4d00f965640ebde042966d"
-
-SRC_URI_LIBMETAL = "git://github.com/OpenAMP/libmetal.git;name=libmetal;protocol=https;branch=main;destsuffix=git/libmetal"
-SRCREV_libmetal = "f252f0e007fbfb8b3a52b1d5901250ddac96baad"
-
-SRC_URI_ARCH-TESTS = "git://github.com/bensze01/psa-arch-tests.git;name=psa-arch-tests;protocol=https;nobranch=1;destsuffix=git/psa-arch-tests"
-SRCREV_psa-arch-tests = "5d1a87f9c0a82e1632a3145687b4c8d7cbbeed2d"
-
-TS_ENVIRONMENT_LINUX = "arm-linux"
-TS_PLATFORM = "arm/corstone1000"
-TS_ENVIRONMENT = "opteesp"
-SP_PACKAGING_METHOD = "embedded"
-
-# Secure Enclave proxy secure partition
-TS_DEPLOYMENTS += "'deployments/se-proxy/${TS_ENVIRONMENT}'"
-
-# smm-gateway secure partition
-TS_DEPLOYMENTS += "'deployments/smm-gateway/${TS_ENVIRONMENT}'"
-
-PSA_API_TESTS = "deployments/psa-api-test/protected_storage/${TS_ENVIRONMENT_LINUX}"
-PSA_API_TESTS += "deployments/psa-api-test/internal_trusted_storage/${TS_ENVIRONMENT_LINUX}"
-PSA_API_TESTS += "deployments/psa-api-test/initial_attestation/${TS_ENVIRONMENT_LINUX}"
-PSA_API_TESTS += "deployments/psa-api-test/crypto/${TS_ENVIRONMENT_LINUX}"
-
-# ffa-debugfs-mod provides arm_ffa_user.h needed by psa-arch-tests source-code
-DEPENDS += "ffa-debugfs-mod"
-
-do_configure:append() {
- for PSA_API_TEST in ${PSA_API_TESTS}; do
- cmake \
- -DSYSROOT_YOCTO=${RECIPE_SYSROOT} \
- -S ${S}/$PSA_API_TEST -B "${B}/$PSA_API_TEST"
- done
-}
-
-do_compile:append() {
- for PSA_API_TEST in ${PSA_API_TESTS}; do
- cmake --build "${B}/$PSA_API_TEST"
- done
-}
-
-do_install:append() {
- for PSA_API_TEST in ${PSA_API_TESTS}; do
- install -d -m 0755 ${D}${libdir}/${PSA_API_TEST}
- install -d -m 0755 ${D}${includedir}/${PSA_API_TEST}
- psafile_fullpath=`ls ${B}/${PSA_API_TEST}/psa-*`
- psafile_filename="`basename -s .bin ${psafile_fullpath}`"
- install -D -p -m 0755 ${psafile_fullpath} ${D}/${bindir}/${psafile_filename}
- done
- cp -rf ${B}/${PSA_API_TEST}/libts_install/arm-linux/lib/*.so* ${D}/${libdir}
-}
-
-FILES:${PN}-dev = "${includedir}/deployments/psa-api-test/"
-INSANE_SKIP:${PN}-psa-api-tests += "rpaths dev-so buildpaths"
-PACKAGES += "${PN}-psa-api-tests"
-FILES:${PN}-psa-api-tests = "${libdir} ${bindir}"
+EXTRA_OECMAKE:append = "-DMM_COMM_BUFFER_ADDRESS="0x00000000 0x02000000" \
+ -DMM_COMM_BUFFER_PAGE_COUNT="1" \
+"