feat(ci): Measured boot hash verification scripts Move away from dependency on external fTPM and OP-TEE binaries through using our own scripts to validate the hashes in the TF-A event log during measured boot tests. Change-Id: Ifd1fa8ce7d2091510b4c8242e25438e4d9aa61bb Signed-off-by: Slava Andrianov <slava.andrianov@arm.com>

commit: 192ee178035089d5445d1e0fc48324f291b8dbf5 [log] [tgz]
author: Slava Andrianov <slava.andrianov@arm.com> Wed Jun 11 15:40:43 2025 -0500
committer: Lauren Wehrmeister <lauren.wehrmeister@arm.com> Fri Aug 08 16:35:56 2025 +0000
tree: 850a29285cc42a41286dda8c1d07649d99c99aa3
parent: 49e4c6d2c5db27a077423732b02c51c38be28200 [diff] [blame]
diff --git a/script/expect-post-runner.sh b/script/expect-post-runner.sh
index 92fff75..e429b27 100755
--- a/script/expect-post-runner.sh
+++ b/script/expect-post-runner.sh

@@ -18,6 +18,14 @@
 
 archive="${WORKSPACE}/artefacts-lava"
 
+if [ $(get_run_env $archive "verify_hashes" 0) -eq 1 ]; then
+    echo "Enabling hash verification for measured boot"
+    export verify_hashes=1
+    export ci_root
+    export artefacts_dir=$archive
+    export tfa_log="${archive}/tfa_event_log"
+fi
+
 # Extract UART numbering from the FVP common log using the ports script
 declare -a ports=()
commit	192ee178035089d5445d1e0fc48324f291b8dbf5	[log] [tgz]
author	Slava Andrianov <slava.andrianov@arm.com>	Wed Jun 11 15:40:43 2025 -0500
committer	Lauren Wehrmeister <lauren.wehrmeister@arm.com>	Fri Aug 08 16:35:56 2025 +0000
tree	850a29285cc42a41286dda8c1d07649d99c99aa3
parent	49e4c6d2c5db27a077423732b02c51c38be28200 [diff] [blame]