| /openbmc/openbmc/meta-arm/meta-arm/recipes-security/optee/ |
| H A D | optee-os-ts.inc | 6 # TS SPs UUIDs definitions
7 require recipes-security/trusted-services/ts-uuid.inc
16 DEPENDS:append = "${@bb.utils.contains('MACHINE_FEATURES', 'ts-its', \
17 ' ts-sp-its', '' , d)}"
18 SP_PATHS:append = "${@bb.utils.contains('MACHINE_FEATURES', 'ts-its', \
22 DEPENDS:append = "${@bb.utils.contains('MACHINE_FEATURES', 'ts-storage', \
23 ' ts-sp-storage', '' , d)}"
24 SP_PATHS:append = "${@bb.utils.contains('MACHINE_FEATURES', 'ts-storage', \
28 DEPENDS:append = "${@bb.utils.contains('MACHINE_FEATURES', 'ts-crypto', \
29 ' ts-sp-crypto', '' , d)}"
[all …]
|
| /openbmc/openbmc/meta-arm/meta-arm-bsp/recipes-security/trusted-services/corstone1000/ |
| H A D | 0009-Remove-Werror-flag.patch | 6 Remove Werror flag due to compilation issues for TS in yocto
8 Upstream-Status: Inappropriate [Only for meta-arm]
9 Signed-off-by: Harsimran Singh Tungal <harsimransingh.tungal@arm.com>
10 ---
11 deployments/smm-gateway/config/default-opteesp/CMakeLists.txt | 1 -
12 deployments/smm-gateway/config/default-sp/CMakeLists.txt | 1 -
13 environments/arm-linux/default_toolchain_file.cmake | 2 +-
14 environments/linux-pc/default_toolchain_file.cmake | 2 +-
15 environments/opteesp/default_toolchain_file.cmake | 2 +-
16 5 files changed, 3 insertions(+), 5 deletions(-)
[all …]
|
| H A D | 0017-Implement-Private-Authenticated-Variable-verificatio.patch | 10 Signed-off-by: Gabor Toth <gabor.toth2@arm.com>
11 Upstream-Status: Submitted [https://review.trustedfirmware.org/c/TS/trusted-services/+/27957]
12 ---
13 .../backend/uefi_variable_store.c | 126 +++++++++++++++---
16 .../config/default-opteesp/CMakeLists.txt | 2 +-
17 .../config/default-sp/CMakeLists.txt | 2 +-
18 5 files changed, 112 insertions(+), 21 deletions(-)
20 diff --git a/components/service/uefi/smm_variable/backend/uefi_variable_store.c b/components/servic…
22 --- a/components/service/uefi/smm_variable/backend/uefi_variable_store.c
24 @@ -75,15 +75,25 @@ static efi_status_t verify_var_by_key_var(const efi_data_map *new_var,
[all …]
|
| H A D | 0014-Provide-crypto-api-to-create-uefi-priv-var-fingerpri.patch | 5 MIME-Version: 1.0
6 Content-Type: text/plain; charset=UTF-8
7 Content-Transfer-Encoding: 8bit
11 of the top-level issuer certificate.
13 Signed-off-by: Gabor Toth <gabor.toth2@arm.com>
14 Upstream-Status: Submitted [https://review.trustedfirmware.org/c/TS/trusted-services/+/27953]
15 ---
16 .../client/caller/packed-c/crypto_caller.h | 1 +
18 .../packed-c/packedc_crypto_client.cpp | 8 +
19 .../protocol/packed-c/packedc_crypto_client.h | 4 +
[all …]
|
| H A D | 0018-Make-RSS-and-MHU-sizes-compile-time-definitions-user.patch | 4 Subject: [PATCH] Make RSS and MHU sizes compile-time definitions
5 user-configurable
11 Upstream-Status: Submitted [https://review.trustedfirmware.org/c/TS/trusted-services/+/31178/1]
12 Signed-off-by: Bence Balogh <bence.balogh@arm.com>
13 Signed-off-by: Harsimran Singh Tungal <harsimransingh.tungal@arm.com>
14 ---
15 platform/providers/arm/corstone1000/platform.cmake | 6 ++++--
16 1 file changed, 4 insertions(+), 2 deletions(-)
18 diff --git a/platform/providers/arm/corstone1000/platform.cmake b/platform/providers/arm/corstone10…
20 --- a/platform/providers/arm/corstone1000/platform.cmake
[all …]
|
| H A D | 0012-Fix-GetNextVariableName-NameSize-input.patch | 9 Change smm-gateway and the tests according this. Also remove
13 Signed-off-by: Gabor Toth <gabor.toth2@arm.com>
14 Upstream-Status: Submitted [https://review.trustedfirmware.org/c/TS/trusted-services/+/28022]
15 ---
16 .../backend/test/variable_store_tests.cpp | 48 +++++++--------
17 .../backend/uefi_variable_store.c | 60 ++++++++++++-------
18 .../backend/uefi_variable_store.h | 5 +-
20 .../provider/smm_variable_provider.c | 59 +++++-------------
21 .../service/smm_variable_attack_tests.cpp | 29 ++++-----
22 .../service/smm_variable_service_tests.cpp | 7 ++-
[all …]
|
| /openbmc/openbmc/meta-arm/documentation/ |
| H A D | trusted-services.md | 1 # The Trusted Services: framework for developing root-of-trust services
3 meta-arm layer includes recipes for [Trusted Services][^1] Secure Partitions and Normal World appli…
4 in `meta-arm/recipes-security/trusted-services`
8 We define dedicated recipes for all supported Trusted Services (TS) Secure Partitions.
10 These files are automatically included into optee-os image accordingly to defined MACHINE_FEATURES.
12 ### How to include TS SPs
14 To include TS SPs into optee-os image you need to add into MACHINE_FEATURES
18 | ----------------- | --------------- |
19 | Attestation | ts-attesation |
20 | Crypto | ts-crypto |
[all …]
|
| /openbmc/openbmc/meta-arm/meta-arm-bsp/conf/machine/include/ |
| H A D | corstone1000.inc | 1 require conf/machine/include/arm/armv8a/tune-cortexa35.inc
5 # TF-M
6 PREFERRED_VERSION_trusted-firmware-m ?= "2.1.%"
8 # TF-A
10 PREFERRED_VERSION_trusted-firmware-a ?= "2.11.%"
11 PREFERRED_VERSION_tf-a-tests ?= "2.10.%"
13 TFA_BL2_BINARY = "bl2-corstone1000.bin"
14 TFA_FIP_BINARY = "fip-corstone1000.bin"
17 PREFERRED_VERSION_optee-os ?= "4.3.%"
22 # Include smm-gateway and se-proxy SPs into optee-os binary
[all …]
|
| /openbmc/openbmc/meta-arm/meta-arm/recipes-kernel/linux/ |
| H A D | linux-yocto%.bbappend | 3 FILESEXTRAPATHS:prepend:qemuarm64-secureboot = "${ARMFILESPATHS}"
4 SRC_URI:append:qemuarm64-secureboot = " \
8 # for Trusted Services uefi-test tool if SMM-Gateway is included
9 SRC_URI:append:qemuarm64-secureboot = "\
10 …${@bb.utils.contains('MACHINE_FEATURES', 'ts-smm-gateway', 'file://no-strict-devmem.cfg', '' , d)}…
13 FILESEXTRAPATHS:prepend:qemuarm-secureboot = "${ARMFILESPATHS}"
14 SRC_URI:append:qemuarm-secureboot = " \
26 FFA_TRANSPORT_INCLUDE = "${@bb.utils.contains('MACHINE_FEATURES', 'arm-ffa', 'arm-ffa-transport.inc…
29 require ${@bb.utils.contains('MACHINE_FEATURES', 'uefi-secureboot', 'linux-yocto-uefi-secureboot.in…
|
| /openbmc/openbmc/meta-arm/meta-arm/recipes-kernel/arm-ffa-user/ |
| H A D | arm-ffa-user_5.0.2.bb | 1 SUMMARY = "FF-A Debugfs Linux kernel module"
2 DESCRIPTION = "This out-of-tree kernel module exposes FF-A operations to user space \
4 LICENSE = "GPL-2.0-only"
9 SRC_URI = "git://gitlab.arm.com/linux-arm/linux-trusted-services;protocol=https;branch=debugfs \
14 # Tag debugfs-v5.0.2
17 COMPATIBLE_HOST = "(arm|aarch64).*-linux"
18 KERNEL_MODULE_AUTOLOAD += "arm-ffa-user"
19 KERNEL_MODULE_PROBECONF += "arm-ffa-user"
21 # SMM Gateway SP
22 UUID_LIST = "${@bb.utils.contains('MACHINE_FEATURES', 'ts-smm-gateway', \
[all …]
|
| /openbmc/openbmc/meta-arm/meta-arm/recipes-security/trusted-services/ |
| H A D | ts-sp-smm-gateway_git.bb | 1 DESCRIPTION = "Trusted Services service provider for UEFI SMM services"
3 require ts-sp-common.inc
8 OECMAKE_SOURCEPATH="${S}/deployments/smm-gateway/config/${TS_SP_SMM_GATEWAY_CONFIG}-${TS_ENV}"
|
| /openbmc/openbmc/meta-arm/ci/ |
| H A D | qemuarm64-secureboot-ts.yml | 1 # yaml-language-server: $schema=https://raw.githubusercontent.com/siemens/kas/master/kas/schema-kas…
6 - ci/meta-openembedded.yml
11 …# Include TS Crypto, TS Protected Storage, and TS Internal Trusted Storage and SPs into optee-os i…
12 # FIXME - remove TS SMM Gateway due to QEMU v9.0.0 test failures
13 MACHINE_FEATURES:append = " arm-ffa ts-crypto ts-storage ts-its"
14 # Include TS demo/test tools into image
15 IMAGE_INSTALL:append = " packagegroup-ts-tests"
16 # Include TS PSA Arch tests into image
17 IMAGE_INSTALL:append = " packagegroup-ts-tests-psa"
|
| H A D | fvp-base-ts.yml | 1 # yaml-language-server: $schema=https://raw.githubusercontent.com/siemens/kas/master/kas/schema-kas…
6 - ci/fvp-base.yml
7 - ci/meta-openembedded.yml
8 - ci/testimage.yml
15 MACHINE_FEATURES:append = " arm-ffa ts-crypto ts-storage ts-its"
16 MACHINE_FEATURES:append = " ts-attestation ts-smm-gateway optee-spmc-test"
17 MACHINE_FEATURES:append = " ts-block-storage ts-fwu"
18 # Include TS demo/test tools into image
19 IMAGE_INSTALL:append = " packagegroup-ts-tests"
20 # Include TS PSA Arch tests into image
[all …]
|
| /openbmc/openbmc/meta-arm/meta-arm/recipes-security/packagegroups/ |
| H A D | packagegroup-ts-tests.bb | 7 COMPATIBLE_HOST = "aarch64.*-linux"
9 COMPATIBLE_MACHINE:qemuarm64-secureboot = "qemuarm64-secureboot"
11 PACKAGES = "${PN} ${PN}-psa"
14 ts-demo \
15 ts-service-test \
16 ${@bb.utils.contains('MACHINE_FEATURES', 'ts-env-test', 'ts-remote-test', '' , d)} \
17 ${@bb.utils.contains('MACHINE_FEATURES', 'ts-smm-gateway', 'ts-uefi-test', '' , d)} \
20 SUMMARY:${PN}-psa = "PSA certification tests (psa-arch-test) for TS SPs"
21 RDEPENDS:${PN}-psa = "\
22 ${@bb.utils.contains('MACHINE_FEATURES', 'ts-crypto', 'ts-psa-crypto-api-test', '' , d)} \
[all …]
|
| /openbmc/openbmc/meta-arm/meta-arm-bsp/recipes-kernel/linux/ |
| H A D | linux-arm-platforms.inc | 15 SRC_URI_KMETA = "file://arm-platforms-kmeta;type=kmeta;name=arm-platforms-kmeta;destsuffix=arm-plat…
16 SRC_URI:append:fvp-base = " ${SRC_URI_KMETA}"
24 KCONFIG_MODE:corstone1000 = "--alldefconfig"
41 'corstone1000-extsys', \
44 file://0001-remoteproc-Add-Arm-remoteproc-driver.patch \
45 file://0002-arm64-dts-Add-corstone1000-external-system-device-no.patch \
46 file://0003-dt-bindings-remoteproc-Add-Arm-remoteproc.patch \
63 COMPATIBLE_MACHINE:fvp-base = "fvp-base"
64 KMACHINE:fvp-base = "fvp"
65 FILESEXTRAPATHS:prepend:fvp-base := "${ARMBSPFILESPATHS}:${ARMFILESPATHS}"
[all …]
|
| /openbmc/openbmc/meta-arm/meta-arm-bsp/documentation/corstone1000/ |
| H A D | change-log.rst | 2 # Copyright (c) 2022-2024, Arm Limited.
4 # SPDX-License-Identifier: MIT
11 fixes in each release of Corstone-1000 software stack.
21 - Implementation of a replication strategy for FWU metadata in TF-M according to the FWU specificat…
22 - Upgrade to metadata version 2 in TF-M.
23 - Increase the ITS and PS memory size in Secure Flash for TF-M.
24 - SW components upgrades.
25 - Bug fixes.
27 Corstone-1000 components versions
30 +-------------------------------------------+-----------------------------------------------------+
[all …]
|
| H A D | user-guide.rst | 2 # Copyright (c) 2022-2024, Arm Limited.
4 # SPDX-License-Identifier: MIT
11 ------
12 The Corstone-1000 software stack uses the `Yocto Project <https://www.yoctoproject.org/>`__ to build
13 a tiny Linux distribution suitable for the Corstone-1000 platform (kernel and initramfs filesystem …
14 The Yocto Project relies on the `BitBake <https://docs.yoctoproject.org/bitbake.html#bitbake-docume…
19 -------------
26 - Git 1.8.3.1 or greater.
27 - Python 3.8.0 or greater.
28 - GNU Tar 1.28 or greater.
[all …]
|
| /openbmc/linux/ |
| H A D | CREDITS | 1 This is at least a partial credits-file of people that have
4 scripts. The fields are: name (N), email (E), web-address
6 snail-mail address (S).
10 ----------
51 D: in-kernel DRM Maintainer
71 E: tim_alpaerts@toyota-motor-europe.com
75 S: B-2610 Wilrijk-Antwerpen
80 W: http://www-stu.christs.cam.ac.uk/~aia21/
101 D: Maintainer of ide-cd and Uniform CD-ROM driver,
102 D: ATAPI CD-Changer support, Major 2.1.x CD-ROM update.
[all …]
|
| H A D | opengrok0.0.log | 1 2024-12-28 20:09:05.996-0600 FINEST t1171 PendingFileCompleter.doRename: Moved pending as file: '/opengrok/data/xref/openbmc/linux/drivers/staging/media/av7110/video-continue.rst.gz'
2 2024-12-28 20:09:05.942-0600 FINEST t1149 PendingFileCompleter.doRename: Moved pending as file: '/opengrok/data/xref/openbmc/u-boot/arch/sh/config.mk.gz'
3 2024-12-2
[all...] |
| H A D | opengrok1.0.log | 1 2024-12-28 20:07:11.902-0600 FINER t583 IndexDatabase.createAnnotationCache: failed to create annotation: repository {dir='/opengrok/src/openbmc/linux',type=git,historyCache=on,renamed=false,merge=true,annotationCache=off} does not allow to create annotation cache for '/opengrok/src/openbmc/linux/drivers/net/ethernet/marvell/mvpp2/mvpp2_prs.c'
2 2024-12-28 20:07:11.913-0600 FINEST t583 Statistics.logIt: Added: '/openbmc/linux/drivers/net/ethernet/marvell/mvpp2/mvpp2_prs.c' (CAnalyzer) (took 116 ms)
3 2024-12-28 20:07:11.899-0600 FINER t593 IndexDatabase.createAnnotationCache: failed to create annotation: repository {dir='/opengrok/src/openbmc/linux',type=git,historyCache=on,renamed=false,merge=true,annotationCache=off} does not allow to create annotation cache for '/opengrok/src/openbmc/linux/tools/testing/selftests/powerpc/tm/tm-signa
[all...] |
| /openbmc/ |
| D | opengrok1.0.log | 1 2025-03-19 03:00:43.644-0500 FINE t1 Executor.registerErrorHandler: Installing default uncaught exception handler
2 2025-03-19 03:00:43.767-0500 INFO t1 Indexer.parseOptions: Indexer options: [-c, /usr/local/bin/ctags, -T, 12, -s, /opengrok/src, -
[all...] |
| D | opengrok2.0.log | 1 2025-03-18 03:00:46.767-0500 FINE t1 Executor.registerErrorHandler: Installing default uncaught exception handler
2 2025-03-18 03:00:46.892-0500 INFO t1 Indexer.parseOptions: Indexer options: [-c, /usr/local/bin/ctags, -T, 12, -s, /opengrok/src, -
[all...] |