Hi All,
We are pleased to announce the formal release of Trusted Firmware-A version 2.10 bundle of project deliverables.
This includes Trusted Firmware-A, Trusted Firmware-A Tests, Hafnium, RMM and TF-A OpenCI Scripts/Jobs 2.10 releases involving the tagging of multiple repositories.
These went live on 22nd November 2023.
Please find references to tags and change logs at the end of this email.
Many thanks to the community for the active engagement in delivering this release!
Notable Features of the Version 2.10 Release are as follows:
TF-A/EL3 Root World
* New Features: * Firmware handoff library support * Improvements to BL31 runtime exception handling * Context management refactoring for RME/4 worlds * Gelas, Nevis & Travis CPUs support * V8.9 features enabled (FEAT_ HAFT, RPRFM, LRCPC3, MTE_PERM)
TF-A Boot BL1/BL2
* New Features * Trusted Boot support for ECDSA (Elliptic Curve Digital Signature Algorithm) * Migrated to PSA crypto API’s * Improved the GUID Partition Table (GPT) parser. * Various security Improvements and threat Model updates for ARM CCA * Signer id extraction Implementation
Hafnium/SEL2 SPM
* New Features: * FF-A v1.2: FFA_YIELD with time-out; EL3 SPMDs LSPs communication; memory sharing updates. * Memory region relative base address field support in SP manifests. * Interrupt re-configuration hypervisor calls. * Memory management: S2 PT NS/S IPA split * SMCCCv1.2+ compliance fixes. * Feature parity test improvements, EL3 SPMC and Hafnium (S-EL2 SPMC)
TF-RMM/REL2
* New Feature/Support * Fenimore v1.0 EAC5 aligned implementation. * TFTF Enhancements for RME testing * Initial CBMC support * NS SME support in RMM * BTI support for RMM
Errata
* Errata implemented (1xCortex-X2/ Matterhorn-ELP, 1xCortex-A710/Matterhorn, 1xNeoverse N2/Perseus, 2xNeoverse V2/Demeter, Makalu ELP/Cortex X3, Klein/Cortex-A510) * Fix some minor defects with version in a few errata that applies for some follow up revisions of the CPUs. (Neoverse V1, Cortex-X2, Cortex-A710)
TF-A Tests
* Core * Added errata management firmware interface tests. * Added firmware handoff tests. * Introduced RAS KFH support test. * SPM/FF-A * Support SMCCCv1.2 extended GP registers set. * Test SMCCC compliance at the non-secure physical instance. * Test secure eSPI interrupt handling. * Test FF-A v1.2 FFA_PARTITION_INFO_GET_REGS interface. * RMM * Added FPU/SVE/SME tests * Added multiple REC single CPU tests. * Added PAuth support in Realms tests. * Added PMU tests.
Platform Support
* New platforms added: * Aspeed AST2700, NXP IMX93, Intel Agilex5, Nuvoton NPCM845x, QTI MDM9607, MSM8909, MSM8939, ST STM32MP2
Release tags across repositories:
https://git.trustedfirmware.org/TF-A/trusted-firmware-a.git/tag/?h=v2.10
https://git.trustedfirmware.org/TF-A/tf-a-tests.git/tag/?h=v2.10
https://git.trustedfirmware.org/ci/tf-a-ci-scripts.git/tag/?h=v2.10 https://git.trustedfirmware.org/ci/tf-a-job-configs.git/tag/?h=v2.10 https://git.trustedfirmware.org/hafnium/hafnium.git/tag/?h=v2.10 https://git.trustedfirmware.org/ci/hafnium-ci-scripts.git/tag/?h=v2.10 https://git.trustedfirmware.org/ci/hafnium-job-configs.git/tag/?h=v2.10 https://git.trustedfirmware.org/TF-RMM/tf-rmm.git/tag/?h=tf-rmm-v0.4.0
Change logs:
https://trustedfirmware-a.readthedocs.io/en/v2.10/change-log.html#id1
https://trustedfirmware-a-tests.readthedocs.io/en/v2.10/change-log.html#vers...
https://hafnium.readthedocs.io/en/latest/change-log.html#v2-10
https://tf-rmm.readthedocs.io/en/tf-rmm-v0.4.0/about/change-log.html#v0-4-0
Regards,
Olivier.
Hi All,
We are pleased to announce the formal release of Trusted Firmware-A version 2.11 bundle of project deliverables.
This includes Trusted Firmware-A, Trusted Firmware-A Tests, Hafnium, RMM and TF-A OpenCI Scripts/Jobs 2.11 releases involving the tagging of multiple repositories.
These went live on May, 23rd 2024.
Please find references to tags and change logs at the end of this email.
Many thanks to the community for the active engagement in delivering this release!
Notable features of the release version 2.11 are as follows:
TF-A/EL3 Root World
* SMCCCv1.5 : Implemented vendor specific EL3 monitor calls along with DebugFS and PMF migrated to this range. * Support for Undefined injection into lower ELs to prevent spurious EL3 traps. * Add support for FEAT_CSV2_3, remove usage of FEAT_MTE from TF-A and use FEAT_MTE2 instead. * EL3 SPMC: added S-EL0 partition support, and FFA_CONSOLE_LOG, FFA_MEM_PERM_GET/SET ABIs. * SPMD: bumped to FF-A v1.2 (added FFA_MSG_SEND_DIR_REQ2/RESP2 ABIs), SMCCCv1.3 SVE hint bit passed to SPMC, permit enabling SME in normal world, moved NS EL1 context save/restore to S-EL2 SPMC when present, support for RAS FFH scenarios. * Enhance Firmware handoff library and provide BL1->BL2->BL31 interface to use transfer list. * Add MHUv3 doorbell driver support. * Support for saving/restoring DSU PMU registers. * Refactoring and documentation on Context mgmt. library along with utility tool to report the memory usage.
TF-A Boot BL1/BL2
* Migration to mbedTLS v3.6.0. * DPE implementation. * Update DRTM implementation as per latest v1.0 specification. * Migrate to FWU metadata version 2. * PSA FWU test enhancements. * CCA CoT device tree support. * GUID partition table enhancements. * Various threat model updates for PSA Firmware update, side-channel attacks and supply chain.
Hafnium/SPM/S-EL2
* FF-A v1.2: direct messaging supports the extended set of registers and UUID use; memory sharing descriptors update; setup and discovery interfaces updated; multiple UUID per SP support. * FF-A memory lend/donate, in RME-enabled platforms, leverage dynamic changes to PAS to enforce the semantics of lend/donate. * SPMC to recover from a GPF when attempting to access a non-secure RX/TX buffer pair. * Initial support for FF-A memory lend of device memory. * SMMUv3 support: improved to enforce static DMA isolation. * SME/SVE context save and restore for the NS-EL1 state, on entry from and exit back to the NWd. * New platform port for RD Fremont.
TF-RMM/R-EL2
* Enabled FEAT_DIT for RMM execution. * Added support for FEAT_LPA2 to S2TT component which enables creating Realms with LPA2 support. * Introduced the dynamic console framework for RMM and allows passing console info dynamically from EL3. * Introduced the ``arm`` platform layer which can be used by any compatible SoC and possibly enable a single binary across them. * Improvements to Exception handling in RMM by having separated exception stack , added crash dump and backtrace support. * Reduced the memory required for `struct granule` thus reducing memory footprint of RMM by 12MB for FVP. * Various bug fixes and performance optimizations. * MISRA C 2012 fixes and integration with Cppcheck tool. * Extended CBMC analysis to more RMI commands. * Added support for RD-Fremont platform.
Errata (CPU/GIC)
* 28 new CPU Errata implemented. (1xCortex-X2, 6xCortex-X3, 3xCortex-X4, 1xNeoverse V1, 3xNeoverse V2, 2xCortex-A78C, 1xCortex-A710, 7xCortex-A715, 2xCortex-A720, 2xCortex-A520). * Fixed 3 errata implementation defects (2xCortex-A715). The third was to fix applying an erratum wrongly to Cortex-A715 instead of Cortex-X3. * Updated version for an erratum on the latest SDEN update for Cortex-X3. * Implemented 1x GIC600 erratum.
TF-A Tests
* Boot * Introduce negative boot test framework. * Core * Updated the TFTF Test suite for Errata management firmware interface. * Test to verify undefined injection, vendor specific EL3 SMC calls. * End-to-end test of Firmware handoff on FVP platform. * SPM/FF-A * Support SMCCCv1.2 extended GP registers set. * Test secure eSPI interrupt handling. * Test FF-A v1.2 FFA_PARTITION_INFO_GET_REGS interface. * Test SME/SVE context save and restore. * Test FF-A Memory share/lend/donate in an RME-enabled platform. * Exercise DMA isolation for secure access to Non-Secure memory. * RMM/RME * Added the following tests: * Test for PMU with multiple RECs. * Tests for HIPAS and RIPAS transitions. * Tests for DIT. * Additional tests for Pauth in Realm. * Tests for exception handling in Realm. * Test for SVE hint. * Tests for validating multiple RECs on multiple CPUs. * Tests for RSI_IPA_STATE_GET/SET. * Added capability to create multiple Realms. * Bug fixes for Realm world testing framework.
Platform Support
* New platforms added: * S32G274ARDB2, Raspberry Pi 5, TC3, i.MX8ULP.
Release tags across repositories:
https://git.trustedfirmware.org/TF-A/trusted-firmware-a/+/refs/tags/v2.11.0
https://git.trustedfirmware.org/TF-A/tf-a-tests/+/refs/tags/v2.11.0
https://git.trustedfirmware.org/ci/tf-a-ci-scripts/+/refs/tags/v2.11.0 https://git.trustedfirmware.org/ci/tf-a-job-configs/+/refs/tags/v2.11.0 https://git.trustedfirmware.org/hafnium/hafnium/+/refs/tags/v2.11 https://git.trustedfirmware.org/TF-RMM/tf-rmm/+/refs/tags/tf-rmm-v0.5.0
Change logs:
https://trustedfirmware-a.readthedocs.io/en/v2.11/change-log.html#id1
https://trustedfirmware-a-tests.readthedocs.io/en/v2.11/change-log.html#vers...
https://hafnium.readthedocs.io/en/v2.11/change-log.html#v2-11
https://tf-rmm.readthedocs.io/en/tf-rmm-v0.5.0/about/change-log.html#v0-5-0
Regards,
Olivier.
hafnium@lists.trustedfirmware.org