Page MenuHomePhabricator
Feed All Stories

Today

ccli8 added a comment to T966: NSC call broken on NSPE interrupt disabled.

Thanks for your check. Would you also backport the patch to TF-M 1.4?

Wed, Sep 22, 12:50 AM · Trusted Firmware M

Mon, Sep 20

gomonovych closed T965: SDEI dispatch from Fast SMC call provoke context corruption as Resolved.
Mon, Sep 20, 1:16 PM · TF-A Bug

Sat, Sep 18

kevin-peng-hao added a comment to T950: NS interrupt masking prevents from executing PSA calls.

Hi ioannisg,

Sat, Sep 18, 6:53 AM
kevin-peng-hao added a comment to T966: NSC call broken on NSPE interrupt disabled.

I think you're right.
The Secure PendSV is masked by NSPE, although it has the same priority value 0x80.
It has to have a lower value to preempt the NSPE, having an equal priority value does not work.

Sat, Sep 18, 6:52 AM · Trusted Firmware M

Fri, Sep 17

Vge0rge moved T938: PSA driver for sign/verify message capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Fri, Sep 17, 3:15 PM · Restricted Project
gomonovych renamed T965: SDEI dispatch from Fast SMC call provoke context corruption from SDEI dispatcher called from EL3 type interrupt handler provoke Data Abort (SEGV) exception if that interrupt preempt SMC call to SDEI dispatch from Fast SMC call provoke context corruption.
Fri, Sep 17, 10:47 AM · TF-A Bug
gomonovych updated the task description for T965: SDEI dispatch from Fast SMC call provoke context corruption.
Fri, Sep 17, 10:41 AM · TF-A Bug
gomonovych updated the task description for T965: SDEI dispatch from Fast SMC call provoke context corruption.
Fri, Sep 17, 10:39 AM · TF-A Bug
kevin-peng-hao claimed T966: NSC call broken on NSPE interrupt disabled.
Fri, Sep 17, 9:45 AM · Trusted Firmware M
ccli8 created T966: NSC call broken on NSPE interrupt disabled.
Fri, Sep 17, 1:44 AM · Trusted Firmware M

Thu, Sep 16

gomonovych triaged T965: SDEI dispatch from Fast SMC call provoke context corruption as Low priority.
Thu, Sep 16, 10:27 PM · TF-A Bug
aoxiangyunjian created T964: can hafnium run at S-EL1?.
Thu, Sep 16, 9:14 AM

Wed, Sep 15

odeprez closed T896: Implement FFA_RXTX_UNMAP_32 interface as Resolved.
Wed, Sep 15, 10:15 AM · Hafnium
odeprez added a comment to T896: Implement FFA_RXTX_UNMAP_32 interface.

Merged https://review.trustedfirmware.org/c/hafnium/hafnium/+/10759

Wed, Sep 15, 10:15 AM · Hafnium

Mon, Sep 13

noonfom moved T939: PSA driver for key_agreement capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mon, Sep 13, 2:51 PM · Restricted Project

Fri, Sep 10

adeaarm closed T419: Build: Review build default defines as Wontfix.
Fri, Sep 10, 10:58 PM · Trusted Firmware M
adeaarm renamed T963: Fix Chacha_Poly1305 as per spec recommendation from Fix Chacha_Poly1305 to Fix Chacha_Poly1305 as per spec recommendation.
Fri, Sep 10, 10:57 PM · Restricted Project
adeaarm renamed T963: Fix Chacha_Poly1305 as per spec recommendation from Placeholder to fix Chacha_Poly1305 to Fix Chacha_Poly1305.
Fri, Sep 10, 10:56 PM · Restricted Project
adeaarm triaged T963: Fix Chacha_Poly1305 as per spec recommendation as Normal priority.
Fri, Sep 10, 10:56 PM · Restricted Project
adeaarm closed T960: Identify a way to disable/enable driver features based on macro identifiers in the JSON file as Resolved.
Fri, Sep 10, 10:55 PM · Restricted Project
adeaarm moved T960: Identify a way to disable/enable driver features based on macro identifiers in the JSON file from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Fri, Sep 10, 10:55 PM · Restricted Project
adeaarm added a comment to T960: Identify a way to disable/enable driver features based on macro identifiers in the JSON file.

Note: Feedback to the PSA spec team for a priority value to be associated to each JSON file for those configurations where we have multiple accelerators available.

Fri, Sep 10, 10:54 PM · Restricted Project
adeaarm claimed T947: PSA driver for random generation multipart capability.
Fri, Sep 10, 11:03 AM · Restricted Project
adeaarm closed T940: PSA driver for get_entropy capability as Resolved.
Fri, Sep 10, 10:42 AM · Restricted Project
adeaarm moved T940: PSA driver for get_entropy capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Fri, Sep 10, 10:41 AM · Restricted Project

Mon, Sep 6

adeaarm reassigned T937: PSA driver for asymmetric capability from salomethirot-arm to torsteingrindvik.
Mon, Sep 6, 8:51 PM · Restricted Project
adeaarm moved T960: Identify a way to disable/enable driver features based on macro identifiers in the JSON file from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mon, Sep 6, 10:45 AM · Restricted Project
adeaarm added a comment to T960: Identify a way to disable/enable driver features based on macro identifiers in the JSON file.

The spec currently defines an attribute for an entry point (or family of) in the JSON file, i.e. algorithms, which is used by the core to decide if the entry point needs to be applied for a particular algorithm or not. The JSON file is meant to be consumed as a description of the driver by the mbedTLS parser at build time, in order to link the driver entry points properly into the driver core.

Mon, Sep 6, 10:45 AM · Restricted Project

Sat, Sep 4

adeaarm closed T936: PSA driver for aead capability as Resolved.
Sat, Sep 4, 2:03 PM · Restricted Project
adeaarm moved T947: PSA driver for random generation multipart capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Sat, Sep 4, 2:03 PM · Restricted Project
adeaarm closed T947: PSA driver for random generation multipart capability as Wontfix.
Sat, Sep 4, 2:03 PM · Restricted Project
adeaarm added a comment to T947: PSA driver for random generation multipart capability.

After additional analysis, the summary of the discussion is that these entry points are more suited to be implemented for an hardware which implements a fast way to provide random numbers. CC-312 exposes a TRNG source through the get_entropy entry point, but the remaining part of the DRBG algorithms is implemented in firmware (possibly only partially accelerating parts of them through the driver crypto core transparently calling into the driver from within its own software implementation). For this reason, I am marking this item as Won't do.

Sat, Sep 4, 2:03 PM · Restricted Project

Fri, Sep 3

torsteingrindvik moved T936: PSA driver for aead capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Fri, Sep 3, 9:36 AM · Restricted Project

Thu, Sep 2

noonfom moved T939: PSA driver for key_agreement capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Thu, Sep 2, 2:56 PM · Restricted Project
Vge0rge moved T940: PSA driver for get_entropy capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Thu, Sep 2, 7:39 AM · Restricted Project

Tue, Aug 31

adeaarm closed T951: TFM regressions tests seem to hang on QEMU for mps2_an521 as Resolved.
Tue, Aug 31, 11:56 AM · Restricted Project
adeaarm added a comment to T951: TFM regressions tests seem to hang on QEMU for mps2_an521.

Verified by building qemu 6.1.0 from source as it's been released on 24/08. Regression for AN521 passes without problem on this version. Closing this ticket with a recommendation to re-enable Open CI test cases based on Qemu after upgrading the Qemu version available in Open CI to 6.1.0.

Tue, Aug 31, 11:56 AM · Restricted Project

Thu, Aug 26

schspa added a comment to T962: Crash when build with LOG_LEVEL >= LOG_LEVEL_VERBOSE.

fix change need to review at:
https://review.trustedfirmware.org/c/TF-A/trusted-firmware-a/+/11218

Thu, Aug 26, 8:04 AM · TF-A Bug
schspa created T962: Crash when build with LOG_LEVEL >= LOG_LEVEL_VERBOSE.
Thu, Aug 26, 7:13 AM · TF-A Bug

Wed, Aug 25

adeaarm assigned T939: PSA driver for key_agreement capability to noonfom.
Wed, Aug 25, 10:09 AM · Restricted Project

Tue, Aug 24

adeaarm closed T959: Rebase on mbedTLS 3.0 as Resolved.
Tue, Aug 24, 2:46 PM · Restricted Project
adeaarm moved T959: Rebase on mbedTLS 3.0 from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Tue, Aug 24, 2:46 PM · Restricted Project
TTornblom created T961: Nuvoton: Build failures with IAR for m2351 and m2354.
Tue, Aug 24, 9:31 AM
danh-arm edited the content of Trusted Firmware Security Center.
Tue, Aug 24, 8:31 AM

Aug 21 2021

adeaarm moved T959: Rebase on mbedTLS 3.0 from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 21 2021, 1:25 PM · Restricted Project
adeaarm added a comment to T959: Rebase on mbedTLS 3.0.

https://review.trustedfirmware.org/c/TF-M/trusted-firmware-m/+/11159/1
https://review.trustedfirmware.org/c/TF-M/trusted-firmware-m/+/11160/1

Aug 21 2021, 1:22 PM · Restricted Project

Aug 20 2021

adeaarm triaged T960: Identify a way to disable/enable driver features based on macro identifiers in the JSON file as Normal priority.
Aug 20 2021, 2:02 PM · Restricted Project
adeaarm moved T959: Rebase on mbedTLS 3.0 from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 20 2021, 2:00 PM · Restricted Project
adeaarm triaged T959: Rebase on mbedTLS 3.0 as Normal priority.
Aug 20 2021, 2:00 PM · Restricted Project
adeaarm closed T943: PSA driver for mac multipart capability as Resolved.
Aug 20 2021, 1:28 PM · Restricted Project
adeaarm closed T945: PSA driver for cipher multipart capability as Resolved.
Aug 20 2021, 1:27 PM · Restricted Project
adeaarm closed T934: PSA driver for mac capability as Resolved.
Aug 20 2021, 1:27 PM · Restricted Project
adeaarm closed T935: PSA driver for cipher capability as Resolved.
Aug 20 2021, 1:27 PM · Restricted Project
adeaarm moved T945: PSA driver for cipher multipart capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 20 2021, 1:27 PM · Restricted Project
adeaarm moved T935: PSA driver for cipher capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 20 2021, 1:27 PM · Restricted Project
salomethirot-arm moved T943: PSA driver for mac multipart capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 20 2021, 8:44 AM · Restricted Project
salomethirot-arm moved T934: PSA driver for mac capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 20 2021, 8:44 AM · Restricted Project

Aug 13 2021

adeaarm triaged T958: Create a JSON description of the driver module as Low priority.
Aug 13 2021, 1:52 PM · Restricted Project
adeaarm updated the task description for T944: PSA driver for aead multipart capability.
Aug 13 2021, 10:14 AM · Restricted Project
adeaarm added a comment to T944: PSA driver for aead multipart capability.

This is pending on this PR from mbedTLS for support on the backend side: https://github.com/ARMmbed/mbedtls/pull/4338
Associated ticket: https://github.com/ARMmbed/mbedtls/issues/3257
This would require some reworking of the low level CC driver as well as the current implementation only supports single-shot AEAD operations.

Aug 13 2021, 10:12 AM · Restricted Project
adeaarm moved T936: PSA driver for aead capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 13 2021, 10:09 AM · Restricted Project
adeaarm added a project to T951: TFM regressions tests seem to hang on QEMU for mps2_an521: Restricted Project.
Aug 13 2021, 10:09 AM · Restricted Project
roanparker76 added a comment to T414: Build failed on AN524/musca_b1 platform when -DMBEDTLS_DEBUG=ON.

Amazing, This is something that should be shared. Thanks. canon.com/ijsetup

Aug 13 2021, 4:36 AM · Restricted Project

Aug 9 2021

danh-arm changed the visibility for F197017: pub_security_at_trustedfirmware_key_2.asc.
Aug 9 2021, 2:03 PM
danh-arm edited the content of PGP Keys.
Aug 9 2021, 2:01 PM

Aug 6 2021

ccli8 created T957: Missing root-RSA-3072.pem in install directory.
Aug 6 2021, 9:02 AM · Trusted Firmware M
ccli8 created T956: TFM_SP_PS_TEST test broken with PS_NUM_ASSETS enlarged.
Aug 6 2021, 8:28 AM · Trusted Firmware M

Aug 4 2021

raghuncstate added a comment to T955: Bug in hftest.py.

Copying response on mailing list.

Aug 4 2021, 6:53 PM · Hafnium
raghuncstate added a comment to T955: Bug in hftest.py.

- Uploaded patch for repro.

Aug 4 2021, 6:53 PM · Hafnium
raghuncstate created T955: Bug in hftest.py.
Aug 4 2021, 6:52 PM · Hafnium
salomethirot-arm moved T937: PSA driver for asymmetric capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 4 2021, 10:20 AM · Restricted Project

Aug 3 2021

michaelthomasj edited the content of TF-M Security Patch Release Process.
Aug 3 2021, 4:17 PM
jamike created T954: Non Secure Image size overflow on STM32L562E-DK PSA Arch Crypto .
Aug 3 2021, 2:52 PM
Summer-ARM added a comment to T953: Build errors in PSA api tests for initial attestation.

For PSA_ALG_MD4 error, I think it is the mismatch between tfm and psa arch test. We have a patch to workaround this issue in tfm (lib/ext/psa_arch_tests/0004-Align-with-mbedtls-3.0.0.patch).
Suggest you apply these patches if you specify your own psa arch test path.

Aug 3 2021, 3:29 AM
Summer-ARM added a comment to T953: Build errors in PSA api tests for initial attestation.

I tested with the following command with TF-Mv1.4.0-RC3:
-DTFM_PLATFORM=nordic_nrf/nrf5340dk_nrf5340_cpuapp -DTFM_TOOLCHAIN_FILE=toolchain_GNUARM.cmake -DCMAKE_BUILD_TYPE=Debug -DTEST_PSA_API=INITIAL_ATTESTATION -DTFM_PSA_API=ON

Aug 3 2021, 3:22 AM
kevin-peng-hao added a comment to T910: Interactive tests fail to return to main thread after test has ran and sit in osRtxIdleThread() function.

If it's an RTX issue, then please contact RTX people. Thanks very much.

Aug 3 2021, 3:14 AM · Trusted Firmware M

Aug 2 2021

adeaarm moved T948: List all missing one-shot API tests from the existing TF-M regression from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 2 2021, 2:41 PM · Restricted Project
adeaarm closed T948: List all missing one-shot API tests from the existing TF-M regression as Resolved.
Aug 2 2021, 2:41 PM · Restricted Project
oyvindronningstad created T953: Build errors in PSA api tests for initial attestation.
Aug 2 2021, 10:23 AM

Aug 1 2021

KenLSoft created T952: Image size overflow on Musca-B1 PSA Arch test suite debug build.
Aug 1 2021, 5:03 AM · Trusted Firmware M
KenLSoft added a comment to T909: 'psa-arch-tests' panic test result inconsistent between ARMCLANG and GNUARM.

This issue has been fixed by:
https://review.trustedfirmware.org/c/TF-M/trusted-firmware-m/+/10402

Aug 1 2021, 5:01 AM · Trusted Firmware M
KenLSoft closed T909: 'psa-arch-tests' panic test result inconsistent between ARMCLANG and GNUARM as Resolved.
Aug 1 2021, 5:01 AM · Trusted Firmware M

Jul 30 2021

stevew817 added a comment to T910: Interactive tests fail to return to main thread after test has ran and sit in osRtxIdleThread() function.

Ran into this as well when porting a new target and trying to get all constellations of test suites up and running. It seems to be an issue with how thread joins are handled during RtxThreadExit in RTX 5.5.0. Tracing the disassembly in the kernel makes me think there's some sort of optimisation bug in the precompiled libraries, since the idle thread is marked for running instead of the test thread (which was waiting on the join).

Jul 30 2021, 4:54 PM · Trusted Firmware M
ioannisg added a comment to T950: NS interrupt masking prevents from executing PSA calls.

i will try to revert the patch that is mentioned above and report here.

Jul 30 2021, 10:43 AM

Jul 29 2021

kevin-peng-hao added a comment to T950: NS interrupt masking prevents from executing PSA calls.

I think it's not the priority issue.
I'm testing with:

  • The NS is bare metal (is that the terminology? Only a main function, NO RTOS)
  • The NS calls test_app(NULL) directly - some RTOS dependencies have been removed such as the PS test suites and the tfm_ns_interface implementations.
  • Before the test_app was called, I set the BASEPRI_NS to 32 using the debugger
Jul 29 2021, 6:08 AM
KenLSoft added a comment to T950: NS interrupt masking prevents from executing PSA calls.

It looks like a:

Jul 29 2021, 4:13 AM
Summer-ARM renamed PSA Arch Crypto Test Failure Analysis In TF-M V1.4 Release from Psa Arch Crypto Test Failure Analysis In TF-M V1.4 Release to PSA Arch Crypto Test Failure Analysis In TF-M V1.4 Release.
Jul 29 2021, 3:44 AM

Jul 28 2021

salomethirot-arm moved T934: PSA driver for mac capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 28 2021, 2:59 PM · Restricted Project
salomethirot-arm moved T943: PSA driver for mac multipart capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 28 2021, 2:59 PM · Restricted Project
ioannisg added a comment to T950: NS interrupt masking prevents from executing PSA calls.

Hi Kevin.

Jul 28 2021, 1:42 PM
kevin-peng-hao added a comment to T950: NS interrupt masking prevents from executing PSA calls.

Hi @ioannisg , my understanding is the same as yours.
In theory, there should be any issues.
May I ask which service were you connecting to and got the invalid handle?
And could you provide more information on how the IRQs are locked? I have not ever used the BASEPRI_NS.
Any other information like the version of TF-M you are integrating and build configurations would also help.
Thanks.

Jul 28 2021, 1:05 PM
noonfom moved T935: PSA driver for cipher capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 28 2021, 12:47 PM · Restricted Project
microbuilder closed T760: Integration of updates from Zephyr's TF-M fork as Resolved.
Jul 28 2021, 10:48 AM
microbuilder closed T706: Add support for the lpcxpresso55s69-evk as Resolved.
Jul 28 2021, 10:48 AM · Trusted Firmware M
microbuilder closed T928: Commit NXP SDK files directly to the repo as Resolved.
Jul 28 2021, 10:41 AM
Summer-ARM edited the content of PSA Arch Crypto Test Failure Analysis In TF-M V1.4 Release.
Jul 28 2021, 10:38 AM
salomethirot-arm claimed T937: PSA driver for asymmetric capability.
Jul 28 2021, 9:18 AM · Restricted Project
adeaarm closed T933: PSA driver for hash capability as Resolved.
Jul 28 2021, 8:57 AM · Restricted Project
adeaarm closed T941: PSA driver for hash multipart capability as Resolved.
Jul 28 2021, 8:56 AM · Restricted Project
salomethirot-arm moved T934: PSA driver for mac capability from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 28 2021, 8:39 AM · Restricted Project