TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / next / TF-M / trusted-firmware-m / bc0360c320adf68e16f400e353d20f20b6f8e5fc / . / config / check_config.cmake
blob: 8fec51ef29e047688d61a7e43c10cbec34faea72 [file] [log] [blame]
Raef Coles958aeef2020-10-08 12:12:58 +0100[diff] [blame]1#-------------------------------------------------------------------------------
David Hufb4a8b72022-01-13 16:46:02 +0800[diff] [blame]2# Copyright (c) 2020-2022, Arm Limited. All rights reserved.
Chris Brand636ab482022-05-19 15:55:37 -0700[diff] [blame]3# Copyright (c) 2021-2022 Cypress Semiconductor Corporation (an Infineon company)
4# or an affiliate of Cypress Semiconductor Corporation. All rights reserved.
Raef Coles958aeef2020-10-08 12:12:58 +0100[diff] [blame]5#
6# SPDX-License-Identifier: BSD-3-Clause
7#
8#-------------------------------------------------------------------------------
9
10function(tfm_invalid_config)
11 if (${ARGV})
12 string (REPLACE ";" " " ARGV_STRING "${ARGV}")
Minos Galanakisf216e2b2020-11-09 17:12:01 +0000[diff] [blame]13 string (REPLACE "STREQUAL" "=" ARGV_STRING "${ARGV_STRING}")
14 string (REPLACE "GREATER" ">" ARGV_STRING "${ARGV_STRING}")
15 string (REPLACE "LESS" "<" ARGV_STRING "${ARGV_STRING}")
16 string (REPLACE "VERSION_LESS" "<" ARGV_STRING "${ARGV_STRING}")
17 string (REPLACE "EQUAL" "=" ARGV_STRING "${ARGV_STRING}")
18 string (REPLACE "IN_LIST" "in" ARGV_STRING "${ARGV_STRING}")
Raef Coles958aeef2020-10-08 12:12:58 +0100[diff] [blame]19
20 message(FATAL_ERROR "INVALID CONFIG: ${ARGV_STRING}")
21 endif()
22endfunction()
23
Summer Qin2de23d02021-05-14 13:44:14 +0800[diff] [blame]24set (TFM_L3_PLATFORM_LISTS arm/mps2/an521 arm/musca_b1/sse_200 stm/stm32l562e_dk)
Kevin Peng386374c2021-11-04 14:36:17 +0800[diff] [blame]25set (VALID_ISOLATION_LEVELS 1 2 3)
Mingyang Sunc9d24712020-10-23 15:06:34 +0800[diff] [blame]26
Chris Brandca819022022-07-19 09:25:15 -0700[diff] [blame]27tfm_invalid_config(TFM_LIB_MODEL AND NOT CONFIG_TFM_USE_TRUSTZONE)
Kevin Peng23a583c2021-09-08 22:33:33 +0800[diff] [blame]28tfm_invalid_config(TFM_LIB_MODEL AND TFM_PSA_API)
29tfm_invalid_config(NOT TFM_LIB_MODEL AND NOT TFM_PSA_API)
Kevin Peng386374c2021-11-04 14:36:17 +0800[diff] [blame]30tfm_invalid_config(NOT TFM_ISOLATION_LEVEL IN_LIST VALID_ISOLATION_LEVELS)
Mingyang Sunc9d24712020-10-23 15:06:34 +0800[diff] [blame]31tfm_invalid_config(TFM_ISOLATION_LEVEL EQUAL 3 AND NOT TFM_PLATFORM IN_LIST TFM_L3_PLATFORM_LISTS)
Kevin Peng23a583c2021-09-08 22:33:33 +0800[diff] [blame]32tfm_invalid_config(TFM_ISOLATION_LEVEL GREATER 1 AND TFM_LIB_MODEL)
Kevin Peng386374c2021-11-04 14:36:17 +0800[diff] [blame]33tfm_invalid_config(TFM_ISOLATION_LEVEL GREATER 1 AND PSA_FRAMEWORK_HAS_MM_IOVEC)
Kevin Peng710acf52021-11-16 11:42:41 +0800[diff] [blame]34tfm_invalid_config(TFM_LIB_MODEL AND PSA_FRAMEWORK_HAS_MM_IOVEC)
Raef Coles958aeef2020-10-08 12:12:58 +0100[diff] [blame]35
Kevin Peng23a583c2021-09-08 22:33:33 +0800[diff] [blame]36tfm_invalid_config(TFM_MULTI_CORE_TOPOLOGY AND TFM_LIB_MODEL)
Chris Brand56b4d0c2021-12-17 16:15:58 -0800[diff] [blame]37tfm_invalid_config(TFM_MULTI_CORE_TOPOLOGY AND TFM_NS_MANAGE_NSID)
Mark Horvathdadc1ea2021-03-12 15:39:25 +0100[diff] [blame]38tfm_invalid_config(TFM_PLAT_SPECIFIC_MULTI_CORE_COMM AND NOT TFM_MULTI_CORE_TOPOLOGY)
Raef Coles958aeef2020-10-08 12:12:58 +0100[diff] [blame]39
Chris Brand30106ba2022-01-13 13:48:50 -0800[diff] [blame]40tfm_invalid_config(TFM_ISOLATION_LEVEL EQUAL 3 AND CONFIG_TFM_STACK_WATERMARKS)
41
David Hu12f25872021-08-23 14:55:46 +0800[diff] [blame]42tfm_invalid_config((TFM_S_REG_TEST OR TFM_NS_REG_TEST) AND TEST_PSA_API)
Raef Coles958aeef2020-10-08 12:12:58 +0100[diff] [blame]43
Øyvind Rønningstad72004712021-03-11 15:55:28 +0100[diff] [blame]44tfm_invalid_config(SUITE STREQUAL "IPC" AND NOT TEST_PSA_API STREQUAL "IPC")
45
Kevin Peng23a583c2021-09-08 22:33:33 +0800[diff] [blame]46tfm_invalid_config(TEST_PSA_API STREQUAL "IPC" AND TFM_LIB_MODEL)
Raef Coles958aeef2020-10-08 12:12:58 +0100[diff] [blame]47tfm_invalid_config(TEST_PSA_API STREQUAL "CRYPTO" AND NOT TFM_PARTITION_CRYPTO)
48tfm_invalid_config(TEST_PSA_API STREQUAL "INITIAL_ATTESTATION" AND NOT TFM_PARTITION_INITIAL_ATTESTATION)
49tfm_invalid_config(TEST_PSA_API STREQUAL "INTERNAL_TRUSTED_STORAGE" AND NOT TFM_PARTITION_INTERNAL_TRUSTED_STORAGE)
50tfm_invalid_config(TEST_PSA_API STREQUAL "PROTECTED_STORAGE" AND NOT TFM_PARTITION_PROTECTED_STORAGE)
51tfm_invalid_config(TEST_PSA_API STREQUAL "STORAGE" AND NOT TFM_PARTITION_INTERNAL_TRUSTED_STORAGE)
52tfm_invalid_config(TEST_PSA_API STREQUAL "STORAGE" AND NOT TFM_PARTITION_PROTECTED_STORAGE)
53
David Vincze8608bdb2022-02-11 12:04:54 +0100[diff] [blame]54########################## BL1 #################################################
55
56tfm_invalid_config((BL1 AND PLATFORM_DEFAULT_BL1 AND CONFIG_TFM_BOOT_STORE_MEASUREMENTS) AND NOT TFM_PARTITION_MEASURED_BOOT)
57
David Vincze0c515de2020-11-25 19:02:57 +0100[diff] [blame]58########################## BL2 #################################################
59
60get_property(MCUBOOT_STRATEGY_LIST CACHE MCUBOOT_UPGRADE_STRATEGY PROPERTY STRINGS)
shejia0184440112021-07-07 10:49:09 +0800[diff] [blame]61tfm_invalid_config(BL2 AND (NOT MCUBOOT_UPGRADE_STRATEGY IN_LIST MCUBOOT_STRATEGY_LIST))
David Vincze0c515de2020-11-25 19:02:57 +0100[diff] [blame]62
Tintu Thomaseab1b472022-03-21 14:27:58 +0000[diff] [blame]63# Maximum number of MCUBoot images supported by TF-M NV counters and ROTPKs
64tfm_invalid_config(MCUBOOT_IMAGE_NUMBER GREATER 4)
Raef Coles91fadb92021-06-18 09:20:50 +0100[diff] [blame]65
David Vincze8c95d2a2022-01-19 10:11:58 +0100[diff] [blame]66tfm_invalid_config((BL2 AND CONFIG_TFM_BOOT_STORE_MEASUREMENTS AND NOT CONFIG_TFM_BOOT_STORE_ENCODED_MEASUREMENTS) AND NOT MCUBOOT_DATA_SHARING)
David Vincze8608bdb2022-02-11 12:04:54 +0100[diff] [blame]67tfm_invalid_config((NOT (TFM_PARTITION_FIRMWARE_UPDATE OR CONFIG_TFM_BOOT_STORE_MEASUREMENTS)) AND MCUBOOT_DATA_SHARING)
David Vincze8c95d2a2022-01-19 10:11:58 +0100[diff] [blame]68
Michel Jaouen24c3dd02021-08-12 15:32:13 +0200[diff] [blame]69get_property(MCUBOOT_ALIGN_VAL_LIST CACHE MCUBOOT_ALIGN_VAL PROPERTY STRINGS)
70tfm_invalid_config(BL2 AND (NOT MCUBOOT_ALIGN_VAL IN_LIST MCUBOOT_ALIGN_VAL_LIST))
71
Tamas Ban3a7cb3c2020-11-25 15:45:04 +0000[diff] [blame]72####################### Code sharing ###########################################
73
Summer Qin2de23d02021-05-14 13:44:14 +0800[diff] [blame]74set(TFM_CODE_SHARING_PLATFORM_LISTS arm/mps2/an521 arm/musca_b1/sse_200) # Without crypto hw acceleration
Tamas Ban3a7cb3c2020-11-25 15:45:04 +0000[diff] [blame]75tfm_invalid_config(NOT TFM_CODE_SHARING STREQUAL "OFF" AND NOT TFM_PLATFORM IN_LIST TFM_CODE_SHARING_PLATFORM_LISTS)
76tfm_invalid_config(NOT TFM_CODE_SHARING STREQUAL "OFF" AND CRYPTO_HW_ACCELERATOR)
Summer Qin2cd2ab72020-04-22 14:55:00 +0800[diff] [blame]77
Raef Coles148b9472021-06-18 08:48:17 +0100[diff] [blame]78########################## Platform ############################################
79
80tfm_invalid_config(OTP_NV_COUNTERS_RAM_EMULATION AND NOT (PLATFORM_DEFAULT_OTP OR PLATFORM_DEFAULT_NV_COUNTERS))
Michel Jaouend0fd8d92021-10-14 09:22:41 +0200[diff] [blame]81tfm_invalid_config(PLATFORM_DEFAULT_NV_COUNTERS AND NOT PLATFORM_DEFAULT_OTP_WRITEABLE)
82tfm_invalid_config(TFM_DUMMY_PROVISIONING AND NOT PLATFORM_DEFAULT_OTP_WRITEABLE)
Raef Coles249aba92022-06-16 10:20:29 +0100[diff] [blame]83tfm_invalid_config(TFM_NS_NV_COUNTER_AMOUNT GREATER 3)
Raef Coles148b9472021-06-18 08:48:17 +0100[diff] [blame]84
Sherry Zhang07b42412021-01-07 14:19:41 +0800[diff] [blame]85####################### Firmware Update Parttion ###############################
86
87tfm_invalid_config(TFM_PARTITION_FIRMWARE_UPDATE AND NOT TFM_PARTITION_PLATFORM)
88tfm_invalid_config((MCUBOOT_UPGRADE_STRATEGY STREQUAL "DIRECT_XIP" OR MCUBOOT_UPGRADE_STRATEGY STREQUAL "RAM_LOAD") AND TFM_PARTITION_FIRMWARE_UPDATE)
89tfm_invalid_config(TFM_PARTITION_FIRMWARE_UPDATE AND NOT MCUBOOT_DATA_SHARING)
Tamas Banb881bea2020-11-04 16:18:36 +0000[diff] [blame]90
Chris Brand636ab482022-05-19 15:55:37 -0700[diff] [blame]91####################### Protected Storage Parttion ###############################
92
93tfm_invalid_config(TFM_PARTITION_PROTECTED_STORAGE AND NOT TFM_PARTITION_INTERNAL_TRUSTED_STORAGE)
Chris Brand9ea9ac72022-06-27 09:01:21 -0700[diff] [blame]94# PS only uses the platform partition when PS_ROLLBACK_PROTECTION is ON, but
David Vinczea6f501e2021-06-14 10:42:30 +0200[diff] [blame]95# the dependency in the manifest file means the dependency is unconditional
Chris Brand9ea9ac72022-06-27 09:01:21 -0700[diff] [blame]96tfm_invalid_config(TFM_PARTITION_PROTECTED_STORAGE AND NOT TFM_PARTITION_PLATFORM)
Chris Brand636ab482022-05-19 15:55:37 -0700[diff] [blame]97tfm_invalid_config(PS_ROLLBACK_PROTECTION AND NOT PS_ENCRYPTION)
98
Tamas Banb881bea2020-11-04 16:18:36 +0000[diff] [blame]99########################## FIH #################################################
100
101get_property(TFM_FIH_PROFILE_LIST CACHE TFM_FIH_PROFILE PROPERTY STRINGS)
102tfm_invalid_config(NOT TFM_FIH_PROFILE IN_LIST TFM_FIH_PROFILE_LIST)
David Hue056d182021-03-29 15:14:01 +0800[diff] [blame]103
Joakim Andersson7f572ff2022-08-09 16:50:36 +0200[diff] [blame]104########################### TF-M initial attestation #####################################
105
106tfm_invalid_config(ATTEST_INCLUDE_TEST_CODE AND NOT (TEST_NS_ATTESTATION OR TEST_S_ATTESTATION))
107
David Hue056d182021-03-29 15:14:01 +0800[diff] [blame]108########################### TF-M audit log #####################################
109
Kevin Peng23a583c2021-09-08 22:33:33 +0800[diff] [blame]110tfm_invalid_config(TFM_PARTITION_AUDIT_LOG AND NOT TFM_LIB_MODEL)
Kevin Peng6a121d02021-05-10 13:53:58 +0800[diff] [blame]111
Summer Qin9347dc72021-07-12 18:57:57 +0800[diff] [blame]112########################### TF-M crypto ########################################
113
Raef Coles618fc152021-06-18 09:26:46 +0100[diff] [blame]114tfm_invalid_config(CRYPTO_NV_SEED AND CRYPTO_HW_ACCELERATOR)
115tfm_invalid_config(NOT CRYPTO_NV_SEED AND NOT CRYPTO_HW_ACCELERATOR)
shejia01bfd37122021-06-03 13:31:51 +0800[diff] [blame]116
Chris Brand636ab482022-05-19 15:55:37 -0700[diff] [blame]117######################## TF-M Profile config check #############################
David Hu1feb4b12022-02-23 17:22:07 +0800[diff] [blame]118
119tfm_invalid_config(TFM_PROFILE STREQUAL "profile_small" AND CONFIG_TFM_SPM_BACKEND_IPC)
120
shejia01bfd37122021-06-03 13:31:51 +0800[diff] [blame]121########################### Test check config ##################################
122
David Hu12f25872021-08-23 14:55:46 +0800[diff] [blame]123if(TFM_S_REG_TEST OR TFM_NS_REG_TEST)
David Hu3d2121f2021-08-23 18:00:26 +0800[diff] [blame]124 include(${TFM_TEST_PATH}/config/check_config.cmake)
shejia01bfd37122021-06-03 13:31:51 +0800[diff] [blame]125endif()
Feder Liang55194382021-11-22 16:45:33 +0800[diff] [blame]126
127###################### Compiler check for FP support ###########################
128
129include(config/cp_check.cmake)
Chris Brand9edf0812022-07-05 14:18:42 -0700[diff] [blame]130
131###################### Platform-specific checks ################################
132
133if (EXISTS ${CMAKE_SOURCE_DIR}/platform/ext/target/${TFM_PLATFORM}/check_config.cmake)
134 include(platform/ext/target/${TFM_PLATFORM}/check_config.cmake)
135endif()