Hi All,

We are pleased to announce the formal release of Trusted Firmware-A version 2.13 bundle of project deliverables.

This includes Trusted Firmware-A, Trusted Firmware-A Tests, Hafnium, TF-RMM, Trusted Services, and TF-A OpenCI scripts/jobs components.

These went live on May, 22nd 2025.

Please find references to tags and change logs at the end of this email.

Many thanks to the trustedfirmware.org community for the active engagement in delivering this release!

Notable features of the release version 2.13 are as follows:

TF-A/EL3

Alto CPU support
Architecture feature support for PMUv3p9. PAUTH_LR and SPE_FDS.
Refactor PSCI to let each CPU core initialise its own context, allowing TF-A to natively handle asymmetric configurations
PSCI Powerdown abandon feature support
SMCCC_FEATURE_AVAILABILITY support based on SMCCC v1.5 specification
Firmware Handoff

Library enhancements to add more TE types in library
All BL interfaces for FVP are now migrated to use Transfer List along in different boot scenarios (RESET_TO_BL1/BL2/BL31)
TC platform is now using Transfer List for booting

Boot flow

Added discrete TPM support in BL1/BL2 for the RPi3 platform.
Support for MbedTLS PSA Crypto with ROMLIB on FVP.
Redesigned PSA Crypto Key ID management to avoid repeated key creation/destruction.

Support for MbedTLS PSA Crypto with ROMLIB on FVP.
Added basic boot test for TF-RMM with TF-A and TFTF (Realm Payload) in Jenkins CI.
Integrated DRTM ACS test suite into TF-A Jenkins CI.
Added missing test configuration for ROTPK in register on FVP platform.

Refactored ROTPK key/hash generation to auto-generate required files during build.

Errata/Security mitigations (CPU/GIC)

Hafnium/SPM (S-EL2)

SP loading: SP artefacts can be bundled in a TL format. I.e SP binary and SP manifest (DTB).
Resuming ECs for interrupt handling assisted by NWd Scheduler when the SP is in waiting state, with sri-interrupts-policy field in the SP manifest.

TF-RMM (R-EL2)

Deprivileging RMM code via EL0 App support
Added some support for some RMMv1.1 APIs - "RMI_DEV_MEM_(UN)MAP", support for device granules in "RMI_GRANULE_DELEGATE" and "RMI_GRANULE_UNDELEGATE".
Additional hardening of RMM via compiler flags `-fstack-protector-strong`, '-Wextra', '-Wstrict-overflow', '-D_FORTIFY_SOURCE=2' and '-Wnull-dereference'.
New platform support for RD-V3-R1 and RD-V3-R1-Cfg1 FVPs.
Dynamic discovery of PCIE Root complex topology and device memory from the Boot manifest.

Trusted Services (v1.2.0)

Introduced the fTPM SP. The implementation is experimental.
Introduce the new Arm Reference Design-1 AE platform targeting the Automotive segment. It features
high-performance Arm Neoverse V3AE Application Processor compute system, Arm Cortex-R82AE based Safety Island, and
a Runtime Security Engine (RSE) for enhanced security.
Updated the se-proxy deployment and added support for the Firmware Update Proxy service. The FWU Proxy implements a Platform Security Firmware Update for the A-profile Arm Architecture compliant FWU Agent which runs a PSA Certified Firmware Update API 1.0 compliant client as its backend.

TF-A Tests