RFC: Proposal of Integrating Trusted Firmware-A #46105
Comments
povergoing
added
RFC
|
Hi @carlocaione @stephanosio, would you like to create a repo for TF-A? @SgrrZhf has prepared most of the work to integrate the TF-A, any suggestions on the next step? |
|
Two questions:
|
@SgrrZhf would you like to take a look? |
|
Since we already have the
cc @nashif @MaureenHelm @carlescufi anyone opposed to creating |
|
@stephanosio I'm not sure we will need Zephyr-specific patches TBH. And I understand the downtime problem but having TF-A as full forked module is going to add more burden on top of everything else. We are indeed trying to go in the opposite direction for some other modules already, see #44279 |
|
@carlocaione That OpenAMP module seems to be a special case because it adds the original repository content as a directory under the fork repository, and is not a direct Git mirror of the original repository. Obviously, we are not going to do that for In case of We do not want to rely on external providers at least for the modules that are part of the |
I think the overall Zephyr module approach needs to be reviewed. It doesn't make sense to keep pulling more and more packages in |
Agreed, the module list for the main repository keeps growing and we need to do something about it. The current approach of "pull everything by default" should probably be re-considered; at minimum, it should be "pull only required by default." The problem is that there is no easy way for west to resolve what modules are "required" at the moment. Anyways, let's leave that discussion for another day (should probably create an issue to track this). |
|
@carlocaione @stephanosio @povergoing let's not discuss the wider issue of whether we have too many entries in @carlocaione the reason for having a fork of many other projects like TF-M is not only to be able to keep any out-of-tree patches that we may requires, but also to be able to apply patches earlier than the upstream will take them, thus being able to release Zephyr according to our own schedule. |
@carlescufi Agreed, but the wider issue is raised by @gmarull, hahaha~ help you ping him |
|
TSC meeting 2022-06-01 @povergoing @SgrrZhf could you create a proof-of-concept pull request first so we can see what the TF-A integration would look like? |
Sure, will do |
|
TSC has approved the inclusion of this as a module, pending discussion in #46801 |
|
#46181 |
Origin
trusted-firmware-a https://git.trustedfirmware.org/TF-A/trusted-firmware-a.git
Purpose
Trusted Firmware-A (TF-A) provides a reference implementation of secure world
software for
Armv7-A and Armv8-A, including aSecure Monitorexecutingat Exception Level 3 (EL3). It implements various Arm interface standards,
such as:
Power State Coordination Interface (PSCI)_Trusted Board Boot Requirements CLIENT (TBBR-CLIENT)_SMC Calling Convention_System Control and Management Interface (SCMI)_Software Delegated Exception Interface (SDEI)_PSA FW update specification_Mode of integration
As a module: it is easier to maintain and update with patches from the origin.
Module path would be modules/tee/tf-a/trusted-firmware-a
Pull Request
#46181
Description
TF-A Provides a reference implementation of secure world software for Armv7-A and Armv8-A. Such as PSCI, Trusted board boot...
Now we are trying to boot arm64 code from TF-A and use its PSCI function to support SMP. later, we will try to support more TF-A functions.
Dependencies
C compiler
GNU make
Git
OpenSSL >= 3.0 Required to build the cert_create tool.
mbed TLS == 2.28.0 Required if used Trusted Board Boot and Measured Boot
Revision
latest release version(v2.6):
https://git.trustedfirmware.org/TF-A/trusted-firmware-a.git/tag/?h=v2.6
License
As stated here:
https://git.trustedfirmware.org/TF-A/trusted-firmware-a.git/tree/docs/license.rst
is BSD-3-Clause.
The text was updated successfully, but these errors were encountered: