[0/3] arm-bsp: corstone1000: Change MM buffer location and enable

Message ID	20240412100527.991610-1-emekcan.aras@arm.com
Headers	show Return-Path: <emekcan.aras@arm.com> ip: 217.140.110.172, mailfrom: emekcan.aras@arm.com) From: emekcan.aras@arm.com To: meta-arm@lists.yoctoproject.org Cc: Emekcan Aras <Emekcan.Aras@arm.com> Subject: [PATCH 0/3] arm-bsp: corstone1000: Change MM buffer location and enable Date: Fri, 12 Apr 2024 11:05:24 +0100 Message-Id: <20240412100527.991610-1-emekcan.aras@arm.com> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable
Series	arm-bsp: corstone1000: Change MM buffer location and enable \| expand [0/3] arm-bsp: corstone1000: Change MM buffer location and enable [1/3] arm-bsp/u-boot: corstone1000: Change MMCOMM buffer location [2/3] arm-bsp/trusted-services: corstone1000: Change MM comm buffer location [3/3] arm-bsp/trusted-firmware-m: corstone1000: Enable host firewall in FVP

Message ID

20240412100527.991610-1-emekcan.aras@arm.com

Headers

From: emekcan.aras@arm.com
To: meta-arm@lists.yoctoproject.org
Cc: Emekcan Aras <Emekcan.Aras@arm.com>
Subject: [PATCH 0/3] arm-bsp: corstone1000: Change MM buffer location and
 enable
Date: Fri, 12 Apr 2024 11:05:24 +0100
Message-Id: <20240412100527.991610-1-emekcan.aras@arm.com>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable

Series

arm-bsp: corstone1000: Change MM buffer location and enable | expand

Message

Emekcan Aras April 12, 2024, 10:05 a.m. UTC

From: Emekcan Aras <Emekcan.Aras@arm.com>

MM Communicate buffer is accessed by normal world but at the moment it's 
allocated in the secure ram. This moves mm communicate buffer to the DDR and 
configures the host firewall in secure-enclave (for FVP) to ensure that 
secure-ram is not accesible by normal-world.

Emekcan Aras (3):
  arm-bsp/u-boot: corstone1000: Change MMCOMM buffer location
  arm-bsp/trusted-services: corstone1000: Change MM comm buffer location
  arm-bsp/trusted-firmware-m: corstone1000: Enable host firewall in FVP

 ...tone1000-Enable-host-firewall-in-FVP.patch | 177 ++++++++++++++++++
 .../trusted-firmware-m-corstone1000.inc       |   1 +
 .../u-boot/u-boot-corstone1000.inc            |   1 +
 ...ne1000-Change-MMCOMM-buffer-location.patch |  47 +++++
 .../trusted-services/libts_%.bbappend         |   2 +-
 .../ts-sp-se-proxy_%.bbappend                 |   2 +-
 .../ts-sp-smm-gateway_%.bbappend              |   2 +-
 7 files changed, 229 insertions(+), 3 deletions(-)
 create mode 100644 meta-arm-bsp/recipes-bsp/trusted-firmware-m/files/corstone1000/0008-Platform-Corstone1000-Enable-host-firewall-in-FVP.patch
 create mode 100644 meta-arm-bsp/recipes-bsp/u-boot/u-boot/corstone1000/0045-Corstone1000-Change-MMCOMM-buffer-location.patch

Comments

Jon Mason April 16, 2024, 2:17 a.m. UTC | #1

On Fri, 12 Apr 2024 11:05:24 +0100, emekcan.aras@arm.com wrote:
> From: Emekcan Aras <Emekcan.Aras@arm.com>
> 
> MM Communicate buffer is accessed by normal world but at the moment it's
> allocated in the secure ram. This moves mm communicate buffer to the DDR and
> configures the host firewall in secure-enclave (for FVP) to ensure that
> secure-ram is not accesible by normal-world.
> 
> [...]

Applied, thanks!

[1/3] arm-bsp/u-boot: corstone1000: Change MMCOMM buffer location
      commit: 1370190ac507cbcd0644816bc5577487f93603ef
[2/3] arm-bsp/trusted-services: corstone1000: Change MM comm buffer location
      commit: 14f32eef690cca1d715d739c66113537e646c2c3
[3/3] arm-bsp/trusted-firmware-m: corstone1000: Enable host firewall in FVP
      commit: 3715c698ec733f0c578c149e81ac854ca93a517c

Best regards,