diff mbox series

arm/trusted-firmware-a: add support for 2.12.0

Message ID 20241217-tf-a-2-12-v1-1-cca762965260@cherry.de
State New
Headers show
Series arm/trusted-firmware-a: add support for 2.12.0 | expand

Commit Message

Quentin Schulz Dec. 17, 2024, 3:05 p.m. UTC 
From: Quentin Schulz <quentin.schulz@cherry.de>

Add support for TF-A version v2.12.0 and mbedtls 3.6.1.

GCC-compiled boot tested on RK3588 Tiger, RK3399 Puma and PX30 Ringneck.

0001-fix-zynqmp-handle-secure-SGI-at-EL1-for-OP-TEE.patch is merged in
2.12.0 so no need to have it in SRC_URI as for 2.11.0 and earlier
recipes.

Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>
---
This is interesting for meta-rockchip since it now has support for
RK3588 and initial/incomplete support for RK356x (see
https://review.trustedfirmware.org/c/TF-A/trusted-firmware-a/+/31265 for
missing patch). I do not own RK356x devices so cannot test their
support.

Cc Trevor as maintainer of meta-rockchip as he could have interest
making upstream TF-A the default for RK3588(s) instead of using
Rockchip's blob.

Cc: Trevor Woerner <twoerner@gmail.com>

Tested on master branch of poky, meta-arm, meta-openembedded and
meta-rockchip.
---
 .../trusted-firmware-a/trusted-firmware-a_2.12.0.bb   | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)


---
base-commit: b2c43dbf9b4e7c22038bdd5d01633962afe8f18f
change-id: 20241217-tf-a-2-12-2e8004a4ffd3

Best regards,

Comments

Jon Mason Dec. 21, 2024, 1:20 p.m. UTC | #1 
On Tue, Dec 17, 2024 at 10:06 AM Quentin Schulz via
lists.yoctoproject.org <foss=0leil.net@lists.yoctoproject.org> wrote:
>
> From: Quentin Schulz <quentin.schulz@cherry.de>
>
> Add support for TF-A version v2.12.0 and mbedtls 3.6.1.
>
> GCC-compiled boot tested on RK3588 Tiger, RK3399 Puma and PX30 Ringneck.
>
> 0001-fix-zynqmp-handle-secure-SGI-at-EL1-for-OP-TEE.patch is merged in
> 2.12.0 so no need to have it in SRC_URI as for 2.11.0 and earlier
> recipes.
>
> Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de>

Unfortunately, this isn't a simple upgrade.  There is now a hard
dependency on poetry.  See
https://gitlab.com/jonmason00/meta-arm/-/jobs/8666827497/viewer#L9246

I was seeing it on all my builds when I did the recipe bump a couple
weeks ago (but I did a replacement of the 2.11 recipe, not an
additional one).  So, this is going to need a poetry recipe to get
working, which is where I left my attempt :)

Thanks,
Jon

> ---
> This is interesting for meta-rockchip since it now has support for
> RK3588 and initial/incomplete support for RK356x (see
> https://review.trustedfirmware.org/c/TF-A/trusted-firmware-a/+/31265 for
> missing patch). I do not own RK356x devices so cannot test their
> support.
>
> Cc Trevor as maintainer of meta-rockchip as he could have interest
> making upstream TF-A the default for RK3588(s) instead of using
> Rockchip's blob.
>
> Cc: Trevor Woerner <twoerner@gmail.com>
>
> Tested on master branch of poky, meta-arm, meta-openembedded and
> meta-rockchip.
> ---
>  .../trusted-firmware-a/trusted-firmware-a_2.12.0.bb   | 19 +++++++++++++++++++
>  1 file changed, 19 insertions(+)
>
> diff --git a/meta-arm/recipes-bsp/trusted-firmware-a/trusted-firmware-a_2.12.0.bb b/meta-arm/recipes-bsp/trusted-firmware-a/trusted-firmware-a_2.12.0.bb
> new file mode 100644
> index 0000000000000000000000000000000000000000..ceaac263fc7504a6c876eb7c217027936a2889f9
> --- /dev/null
> +++ b/meta-arm/recipes-bsp/trusted-firmware-a/trusted-firmware-a_2.12.0.bb
> @@ -0,0 +1,19 @@
> +require recipes-bsp/trusted-firmware-a/trusted-firmware-a.inc
> +
> +# TF-A v2.12.0
> +SRCREV_tfa = "4ec2948fe3f65dba2f19e691e702f7de2949179c"
> +SRCBRANCH = "master"
> +
> +LIC_FILES_CHKSUM += "file://docs/license.rst;md5=83b7626b8c7a37263c6a58af8d19bee1"
> +
> +# in TF-A src, docs/getting_started/prerequisites.rst lists the expected version mbedtls
> +# mbedtls-3.6.1
> +SRC_URI_MBEDTLS = "git://github.com/ARMmbed/mbedtls.git;name=mbedtls;protocol=https;destsuffix=git/mbedtls;branch=mbedtls-3.6"
> +SRCREV_mbedtls = "71c569d44bf3a8bd53d874c81ee8ac644dd6e9e3"
> +
> +LIC_FILES_CHKSUM_MBEDTLS = "file://mbedtls/LICENSE;md5=379d5819937a6c2f1ef1630d341e026d"
> +
> +# continue to boot also without TPM
> +SRC_URI += "\
> +    file://0001-qemu_measured_boot.c-ignore-TPM-error-and-continue-w.patch \
> +"
>
> ---
> base-commit: b2c43dbf9b4e7c22038bdd5d01633962afe8f18f
> change-id: 20241217-tf-a-2-12-2e8004a4ffd3
>
> Best regards,
> --
> Quentin Schulz <quentin.schulz@cherry.de>
>
>
> -=-=-=-=-=-=-=-=-=-=-=-
> Links: You receive all messages sent to this group.
> View/Reply Online (#6296): https://lists.yoctoproject.org/g/meta-arm/message/6296
> Mute This Topic: https://lists.yoctoproject.org/mt/110163862/3616920
> Group Owner: meta-arm+owner@lists.yoctoproject.org
> Unsubscribe: https://lists.yoctoproject.org/g/meta-arm/unsub [jdmason@kudzu.us]
> -=-=-=-=-=-=-=-=-=-=-=-
>
diff mbox series

Patch

diff --git a/meta-arm/recipes-bsp/trusted-firmware-a/trusted-firmware-a_2.12.0.bb b/meta-arm/recipes-bsp/trusted-firmware-a/trusted-firmware-a_2.12.0.bb
new file mode 100644
index 0000000000000000000000000000000000000000..ceaac263fc7504a6c876eb7c217027936a2889f9
--- /dev/null
+++ b/meta-arm/recipes-bsp/trusted-firmware-a/trusted-firmware-a_2.12.0.bb
@@ -0,0 +1,19 @@ 
+require recipes-bsp/trusted-firmware-a/trusted-firmware-a.inc
+
+# TF-A v2.12.0
+SRCREV_tfa = "4ec2948fe3f65dba2f19e691e702f7de2949179c"
+SRCBRANCH = "master"
+
+LIC_FILES_CHKSUM += "file://docs/license.rst;md5=83b7626b8c7a37263c6a58af8d19bee1"
+
+# in TF-A src, docs/getting_started/prerequisites.rst lists the expected version mbedtls
+# mbedtls-3.6.1
+SRC_URI_MBEDTLS = "git://github.com/ARMmbed/mbedtls.git;name=mbedtls;protocol=https;destsuffix=git/mbedtls;branch=mbedtls-3.6"
+SRCREV_mbedtls = "71c569d44bf3a8bd53d874c81ee8ac644dd6e9e3"
+
+LIC_FILES_CHKSUM_MBEDTLS = "file://mbedtls/LICENSE;md5=379d5819937a6c2f1ef1630d341e026d"
+
+# continue to boot also without TPM
+SRC_URI += "\
+    file://0001-qemu_measured_boot.c-ignore-TPM-error-and-continue-w.patch \
+"