feat(arm): support boot info handoff and event log Add support for processing boot arguments via Firmware Handoff on Arm platforms. Update platform hooks to pass boot info to BL31 and BL32 stages. Enable parsing and dumping of an event log from the transfer list when MEASURED_BOOT is enabled. This allows measured boot testing in the secure world. Also update BL32 sources to include event log support when TSPD and measured boot are both enabled. Change-Id: Ia310696d0e6cfe93d756bfb075e9fda08342c0a1 Signed-off-by: Harrison Mutai <harrison.mutai@arm.com>

commit: a852fa1d594f63bdc502a0c73eb77c5ce88aa02e [log] [tgz]
author: Harrison Mutai <harrison.mutai@arm.com> Fri Feb 21 11:52:48 2025 +0000
committer: Harrison Mutai <harrison.mutai@arm.com> Fri Apr 25 08:57:10 2025 +0000
tree: cb2a38c922920192b1260a5c0d9c12261747b07c
parent: 9018b7b8401ab106228842140b53502ee64f1432 [diff]
diff --git a/plat/arm/common/arm_bl31_setup.c b/plat/arm/common/arm_bl31_setup.c
index dd95749..f196269 100644
--- a/plat/arm/common/arm_bl31_setup.c
+++ b/plat/arm/common/arm_bl31_setup.c

@@ -133,7 +133,12 @@
 	}
 #endif
 	else {
+#if TRANSFER_LIST && !RESET_TO_BL31
+		next_image_info = transfer_list_set_handoff_args(
+			secure_tl, &bl32_image_ep_info);
+#else
 		next_image_info = &bl32_image_ep_info;
+#endif
 	}
 
 	/*

diff --git a/plat/arm/common/arm_common.mk b/plat/arm/common/arm_common.mk
index d3c2a96..418a9d8 100644
--- a/plat/arm/common/arm_common.mk
+++ b/plat/arm/common/arm_common.mk

@@ -456,6 +456,9 @@
     ifeq (${MEASURED_BOOT},1)
          BL1_SOURCES		+= 	${EVENT_LOG_SOURCES}
          BL2_SOURCES		+= 	${EVENT_LOG_SOURCES}
+         ifeq (${SPD_tspd},1)
+             BL32_SOURCES		+= 	${EVENT_LOG_SOURCES}
+         endif
     endif
 
     ifeq (${DRTM_SUPPORT},1)

diff --git a/plat/arm/common/tsp/arm_tsp.mk b/plat/arm/common/tsp/arm_tsp.mk
index 4ad77c6..d7592df 100644
--- a/plat/arm/common/tsp/arm_tsp.mk
+++ b/plat/arm/common/tsp/arm_tsp.mk

@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2015, ARM Limited and Contributors. All rights reserved.
+# Copyright (c) 2015-2025, Arm Limited and Contributors. All rights reserved.
 #
 # SPDX-License-Identifier: BSD-3-Clause
 #
@@ -8,3 +8,10 @@
 BL32_SOURCES		+=	plat/arm/common/arm_topology.c			\
 				plat/arm/common/tsp/arm_tsp_setup.c		\
 				plat/common/aarch64/platform_mp_stack.S
+
+ifeq (${TRANSFER_LIST},1)
+BL32_SOURCES	+=	$(TRANSFER_LIST_SOURCES)
+ifeq (${MEASURED_BOOT},1)
+BL32_SOURCES	+=	$(EVENT_LOG_SOURCES)
+endif
+endif

diff --git a/plat/arm/common/tsp/arm_tsp_setup.c b/plat/arm/common/tsp/arm_tsp_setup.c
index 5181dd5..d018dee 100644
--- a/plat/arm/common/tsp/arm_tsp_setup.c
+++ b/plat/arm/common/tsp/arm_tsp_setup.c

@@ -13,6 +13,9 @@
 #include <common/debug.h>
 #include <drivers/arm/pl011.h>
 #include <drivers/console.h>
+#if TRANSFER_LIST && MEASURED_BOOT
+#include <drivers/measured_boot/event_log/event_log.h>
+#endif
 #include <plat/arm/common/plat_arm.h>
 #include <plat/common/platform.h>
 
@@ -26,6 +29,13 @@
 					BL32_END - BL32_BASE,		\
 					MT_MEMORY | MT_RW | MT_SECURE)
 
+#define MAP_FW_HANDOFF		MAP_REGION_FLAT(			\
+					PLAT_ARM_EL3_FW_HANDOFF_BASE,	\
+					PLAT_ARM_FW_HANDOFF_SIZE,	\
+					MT_MEMORY | MT_RO | MT_SECURE)
+
+struct transfer_list_header *secure_tl __unused;
+
 /*******************************************************************************
  * Initialize the UART
  ******************************************************************************/
@@ -34,6 +44,17 @@
 void arm_tsp_early_platform_setup(u_register_t arg0, u_register_t arg1,
 			      u_register_t arg2, u_register_t arg3)
 {
+#if TRANSFER_LIST
+	secure_tl = (struct transfer_list_header *)arg3;
+	assert(secure_tl != NULL);
+
+	if (transfer_list_check_header(secure_tl) == TL_OPS_NON) {
+		ERROR("Invalid transfer list received");
+		transfer_list_dump(secure_tl);
+		panic();
+	}
+#endif
+
 	/*
 	 * Initialize a different console than already in use to display
 	 * messages from TSP
@@ -61,6 +82,8 @@
  ******************************************************************************/
 void tsp_platform_setup(void)
 {
+	struct transfer_list_entry *te __unused;
+
 	/*
 	 * On GICv2 the driver must be initialised before calling the plat_ic_*
 	 * functions as they need the data structures. Higher versions don't.
@@ -68,6 +91,17 @@
 #if USE_GIC_DRIVER == 2
 	gic_init(plat_my_core_pos());
 #endif
+
+#if TRANSFER_LIST && MEASURED_BOOT
+	te = transfer_list_find(secure_tl, TL_TAG_TPM_EVLOG);
+	assert(te != NULL);
+
+	/*
+	 * Note the actual log is offset 4-bytes from the start of entry data, the
+	 * first bytes are reserved.
+	 */
+	event_log_dump(transfer_list_entry_data(te) + U(4), te->data_size - U(4));
+#endif
 }
 
 /*******************************************************************************
@@ -84,6 +118,9 @@
 	const mmap_region_t bl_regions[] = {
 		MAP_BL_TSP_TOTAL,
 		ARM_MAP_BL_RO,
+#if TRANSFER_LIST
+		MAP_FW_HANDOFF,
+#endif
 		{0}
 	};
commit	a852fa1d594f63bdc502a0c73eb77c5ce88aa02e	[log] [tgz]
author	Harrison Mutai <harrison.mutai@arm.com>	Fri Feb 21 11:52:48 2025 +0000
committer	Harrison Mutai <harrison.mutai@arm.com>	Fri Apr 25 08:57:10 2025 +0000
tree	cb2a38c922920192b1260a5c0d9c12261747b07c
parent	9018b7b8401ab106228842140b53502ee64f1432 [diff]