blob: bf3228d53970df2ab7d7fa4e05e7a26cea52c3bb [file] [log] [blame]
Mate Toth-Pal65c935e2018-01-17 18:42:13 +01001#-------------------------------------------------------------------------------
Tamas Banabea89d2020-01-15 13:29:25 +00002# Copyright (c) 2018-2020, Arm Limited. All rights reserved.
Mate Toth-Pal65c935e2018-01-17 18:42:13 +01003#
4# SPDX-License-Identifier: BSD-3-Clause
5#
6#-------------------------------------------------------------------------------
7
8if(NOT DEFINED REGRESSION)
9 message(FATAL_ERROR "ERROR: Incomplete Configuration: REGRESSION not defined, Include this file from a Config*.cmake")
10elseif(NOT DEFINED CORE_TEST)
11 message(FATAL_ERROR "ERROR: Incomplete Configuration: CORE_TEST not defined, Include this file from a Config*.cmake")
Tamas Band90c81b2018-08-15 15:03:42 +010012elseif(NOT DEFINED TFM_LVL)
13 message(FATAL_ERROR "ERROR: Incomplete Configuration: TFM_LVL not defined, Include this file from a Config*.cmake")
David Huf2cfa122019-08-27 15:32:38 +080014elseif(NOT DEFINED CORE_IPC)
Tamas Banabea89d2020-01-15 13:29:25 +000015 message(FATAL_ERROR "ERROR: Incomplete Configuration: CORE_IPC not defined. Include this file from a Config*.cmake")
Mate Toth-Pal65c935e2018-01-17 18:42:13 +010016endif()
17
Mate Toth-Palee551bc2018-06-12 16:40:45 +020018if(NOT DEFINED COMPILER)
19 message(FATAL_ERROR "ERROR: COMPILER is not set in command line")
TTornblom99f0be22019-12-17 16:22:38 +010020elseif((NOT ${COMPILER} STREQUAL "ARMCLANG") AND (NOT ${COMPILER} STREQUAL "GNUARM") AND (NOT ${COMPILER} STREQUAL "IARARM"))
Mate Toth-Palee551bc2018-06-12 16:40:45 +020021 message(FATAL_ERROR "ERROR: Compiler \"${COMPILER}\" is not supported.")
22endif()
23
Tamas Bandd10fe52019-09-18 11:52:32 +010024#Configure the default build type
25set(CMAKE_BUILD_TYPE "Debug" CACHE STRING "Build type (i.e. Debug)")
26
Raef Colesb321c0b2019-10-15 08:49:17 +010027#Ignore case on the cmake build types
28string(TOLOWER ${CMAKE_BUILD_TYPE} CMAKE_BUILD_TYPE)
29
Edison Aicb0ecf62019-07-10 18:43:51 +080030if(CORE_IPC)
31 if (TFM_LVL EQUAL 3)
32 message(FATAL_ERROR "ERROR: Invalid isolation level!")
33 endif()
34else()
35 if(NOT TFM_LVL EQUAL 1)
36 message(FATAL_ERROR "ERROR: Invalid isolation level!")
37 endif()
38endif()
39
David Vincze4638b2a2019-05-24 10:14:23 +020040#BL2 bootloader (MCUBoot) related settings
David Vincze54d05552019-08-05 12:58:47 +020041include(${CMAKE_CURRENT_LIST_DIR}/bl2/ext/mcuboot/MCUBootConfig.cmake)
David Vincze4638b2a2019-05-24 10:14:23 +020042
Mate Toth-Pal48fc6a02018-01-24 09:50:14 +010043set(BUILD_CMSIS_CORE Off)
44set(BUILD_RETARGET Off)
45set(BUILD_NATIVE_DRIVERS Off)
46set(BUILD_TIME Off)
47set(BUILD_STARTUP Off)
48set(BUILD_TARGET_CFG Off)
49set(BUILD_TARGET_HARDWARE_KEYS Off)
Marc Moreno Berengue4cc81fc2018-08-10 14:32:01 +010050set(BUILD_TARGET_NV_COUNTERS Off)
Mate Toth-Pal48fc6a02018-01-24 09:50:14 +010051set(BUILD_CMSIS_DRIVERS Off)
52set(BUILD_UART_STDOUT Off)
53set(BUILD_FLASH Off)
Mate Toth-Pald3c77662019-02-20 16:23:00 +010054set(BUILD_PLAT_TEST Off)
Tamas Band4bf3472019-09-06 12:59:56 +010055set(BUILD_BOOT_HAL Off)
Mate Toth-Pal48fc6a02018-01-24 09:50:14 +010056if(NOT DEFINED PLATFORM_CMAKE_FILE)
57 message (FATAL_ERROR "Platform specific CMake is not defined. Please set PLATFORM_CMAKE_FILE.")
58elseif(NOT EXISTS ${PLATFORM_CMAKE_FILE})
59 message (FATAL_ERROR "Platform specific CMake \"${PLATFORM_CMAKE_FILE}\" file does not exist. Please fix value of PLATFORM_CMAKE_FILE.")
60else()
61 include(${PLATFORM_CMAKE_FILE})
62endif()
63
David Hu857bfa52019-05-21 13:54:50 +080064# Select the corresponding CPU type and configuration according to current
65# building status in multi-core scenario.
66# The updated configuration will be used in following compiler setting.
67if (DEFINED TFM_MULTI_CORE_TOPOLOGY AND TFM_MULTI_CORE_TOPOLOGY)
David Hu104388f2019-11-18 14:37:32 +080068 if (NOT CORE_IPC)
69 message(FATAL_ERROR "CORE_IPC is OFF. Multi-core topology should work in IPC model.")
70 endif()
71
David Hu857bfa52019-05-21 13:54:50 +080072 include("Common/MultiCore")
73
74 if (NOT DEFINED TFM_BUILD_IN_SPE)
75 message(FATAL_ERROR "Flag of building in SPE is not specified. Please set TFM_BUILD_IN_SPE.")
76 else()
77 select_arm_cpu_type(${TFM_BUILD_IN_SPE})
78 endif()
David Hu857bfa52019-05-21 13:54:50 +080079
David Hufeae0f92019-06-17 13:42:20 +080080 # CMSE is unnecessary in multi-core scenarios.
81 # TODO: Need further discussion about if CMSE is required when an Armv8-M
82 # core acts as secure core in multi-core scenario.
Mate Toth-Pal8f17a712020-03-02 16:22:19 +010083 # leave CMSE_FLAGS undefined
David Hufeae0f92019-06-17 13:42:20 +080084else()
TTornblom99f0be22019-12-17 16:22:38 +010085 if(${COMPILER} STREQUAL "IARARM")
86 set (CMSE_FLAGS "--cmse")
87 else()
88 set (CMSE_FLAGS "-mcmse")
89 endif()
David Huaeaf2732019-10-10 14:32:53 +080090
91 # Clear multi-core test setting
92 set (TFM_MULTI_CORE_TEST OFF)
David Hufeae0f92019-06-17 13:42:20 +080093endif()
94
Mate Toth-Palee551bc2018-06-12 16:40:45 +020095if(${COMPILER} STREQUAL "ARMCLANG")
Mate Toth-Pal76867262018-03-09 13:15:36 +010096 #Use any ARMCLANG version found on PATH. Note: Only versions supported by the
97 #build system will work. A file cmake/Common/CompilerArmClangXY.cmake
98 #must be present with a matching version.
99 include("Common/FindArmClang")
100 include("Common/${ARMCLANG_MODULE}")
Mate Toth-Pal48fc6a02018-01-24 09:50:14 +0100101
Ken Liu8e7622b2020-04-16 17:05:56 +0800102 set (COMMON_COMPILE_FLAGS -fshort-enums -fshort-wchar -funsigned-char -mfpu=none -ffunction-sections -fdata-sections -fno-builtin -nostdlib)
Tamas Bandb69d522018-03-01 10:04:41 +0000103 ##Shared compiler settings.
104 function(config_setting_shared_compiler_flags tgt)
Mate Toth-Pal8f17a712020-03-02 16:22:19 +0100105 embedded_set_target_compile_flags(TARGET ${tgt} LANGUAGE C APPEND FLAGS -xc -std=c99 ${COMMON_COMPILE_FLAGS} -Wall -Werror)
Tamas Bandb69d522018-03-01 10:04:41 +0000106 endfunction()
107
108 ##Shared linker settings.
109 function(config_setting_shared_linker_flags tgt)
Antonio de Angelis3302f452019-07-19 10:36:33 +0100110 embedded_set_target_link_flags(TARGET ${tgt} FLAGS --strict --map --symbols --xref --entry=Reset_Handler --remove --info=summarysizes,sizes,totals,unused,veneers)
Mate Toth-Pal76867262018-03-09 13:15:36 +0100111 endfunction()
112elseif(${COMPILER} STREQUAL "GNUARM")
113 #Use any GNUARM version found on PATH. Note: Only versions supported by the
114 #build system will work. A file cmake/Common/CompilerGNUARMXY.cmake
115 #must be present with a matching version.
116 include("Common/FindGNUARM")
117 include("Common/${GNUARM_MODULE}")
Mate Toth-Pal48fc6a02018-01-24 09:50:14 +0100118
Ken Liu8e7622b2020-04-16 17:05:56 +0800119 set (COMMON_COMPILE_FLAGS -fshort-enums -fshort-wchar -funsigned-char -msoft-float -ffunction-sections -fdata-sections --specs=nano.specs -fno-builtin)
Mate Toth-Pal76867262018-03-09 13:15:36 +0100120 ##Shared compiler and linker settings.
Tamas Bandb69d522018-03-01 10:04:41 +0000121 function(config_setting_shared_compiler_flags tgt)
Mate Toth-Pal8f17a712020-03-02 16:22:19 +0100122 embedded_set_target_compile_flags(TARGET ${tgt} LANGUAGE C APPEND FLAGS -xc -std=c99 ${COMMON_COMPILE_FLAGS} -Wall -Werror -Wno-format -Wno-return-type -Wno-unused-but-set-variable)
Tamas Bandb69d522018-03-01 10:04:41 +0000123 endfunction()
124
125 ##Shared linker settings.
126 function(config_setting_shared_linker_flags tgt)
Mate Toth-Pal76867262018-03-09 13:15:36 +0100127 #--no-wchar-size-warning flag is added because TF-M sources are compiled
128 #with short wchars, however the standard library is compiled with normal
129 #wchar, and this generates linker time warnings. TF-M code does not use
130 #wchar, so the warning can be suppressed.
Antonio de Angelis3302f452019-07-19 10:36:33 +0100131 embedded_set_target_link_flags(TARGET ${tgt} FLAGS -Wl,-check-sections,-fatal-warnings,--gc-sections,--no-wchar-size-warning,--print-memory-usage --entry=Reset_Handler --specs=nano.specs)
Mate Toth-Pal76867262018-03-09 13:15:36 +0100132 endfunction()
TTornblom99f0be22019-12-17 16:22:38 +0100133elseif(${COMPILER} STREQUAL "IARARM")
134 #Use any IARARM version found on PATH. Note: Only versions supported by the
135 #build system will work. A file cmake/Common/CompilerIARARMXY.cmake
136 #must be present with a matching version.
137 include("Common/FindIARARM")
138 include("Common/${IARARM_MODULE}")
139
TTornblomfaf74f52020-03-04 17:56:27 +0100140 set (COMMON_COMPILE_FLAGS -e --dlib_config=full --vla --silent -DNO_TYPEOF ${CMSE_FLAGS} --diag_suppress Pe546,Pe940)
TTornblom99f0be22019-12-17 16:22:38 +0100141 ##Shared compiler and linker settings.
142 function(config_setting_shared_compiler_flags tgt)
143 embedded_set_target_compile_flags(TARGET ${tgt} LANGUAGE C FLAGS ${COMMON_COMPILE_FLAGS} "-DImage$$= " "-DLoad$$LR$$= " "-D$$ZI$$Base=$$Base" "-D$$ZI$$Limit=$$Limit" "-D$$RO$$Base=$$Base" "-D$$RO$$Limit=$$Limit" "-D$$RW$$Base=$$Base" "-D$$RW$$Limit=$$Limit" "-D_DATA$$RW$$Base=_DATA$$Base" "-D_DATA$$RW$$Limit=_DATA$$Limit" "-D_DATA$$ZI$$Base=_DATA$$Base" "-D_DATA$$ZI$$Limit=_DATA$$Limit" "-D_STACK$$ZI$$Base=_STACK$$Base" "-D_STACK$$ZI$$Limit=_STACK$$Limit" )
144 endfunction()
145
146 ##Shared linker settings.
147 function(config_setting_shared_linker_flags tgt)
148 #--no-wchar-size-warning flag is added because TF-M sources are compiled
149 #with short wchars, however the standard library is compiled with normal
150 #wchar, and this generates linker time warnings. TF-M code does not use
151 #wchar, so the warning can be suppressed.
152 embedded_set_target_link_flags(TARGET ${tgt} FLAGS --silent --semihosting --redirect __write=__write_buffered)
153 endfunction()
Mate Toth-Pal76867262018-03-09 13:15:36 +0100154endif()
155
156#Create a string from the compile flags list, so that it can be used later
157#in this file to set mbedtls and BL2 flags
Tamas Bandb69d522018-03-01 10:04:41 +0000158list_to_string(COMMON_COMPILE_FLAGS_STR ${COMMON_COMPILE_FLAGS})
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100159
160#Settings which shall be set for all projects the same way based
161# on the variables above.
Mate Toth-Pal349714a2018-02-23 15:30:24 +0100162set (TFM_PARTITION_TEST_CORE OFF)
Jamie Foxadf02552019-05-16 17:44:52 +0100163set (TFM_PARTITION_TEST_CORE_IPC OFF)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100164set (CORE_TEST_POSITIVE OFF)
165set (CORE_TEST_INTERACTIVE OFF)
Miklos Balintf13ec022018-04-06 17:21:22 +0200166set (REFERENCE_PLATFORM OFF)
Ben Davis6d7256b2018-04-18 14:16:53 +0100167set (TFM_PARTITION_TEST_SECURE_SERVICES OFF)
Jamie Fox0e823a02019-10-28 17:28:19 +0000168set (TFM_PARTITION_TEST_SST OFF)
Tamas Band90c81b2018-08-15 15:03:42 +0100169set (SERVICES_TEST_ENABLED OFF)
Marc Moreno Berenguecae2c532018-10-09 12:58:46 +0100170set (TEST_FRAMEWORK_S OFF)
171set (TEST_FRAMEWORK_NS OFF)
Edison Aiec109cd2018-07-17 16:04:14 +0800172set (TFM_PSA_API OFF)
Miklos Balintf13ec022018-04-06 17:21:22 +0200173
David Hu60105382019-12-25 13:37:05 +0800174if (NOT DEFINED TFM_PARTITION_AUDIT_LOG)
175 # Enable the TF-M Audit Log partition
176 set(TFM_PARTITION_AUDIT_LOG ON)
177endif()
178if (NOT DEFINED TFM_PARTITION_PLATFORM)
179 # Enable the TF-M Platform partition
180 set(TFM_PARTITION_PLATFORM ON)
181endif()
182if (NOT DEFINED TFM_PARTITION_SECURE_STORAGE)
183 # Enable the TF-M secure storage partition
184 set(TFM_PARTITION_SECURE_STORAGE ON)
185endif()
186if (NOT DEFINED TFM_PARTITION_INTERNAL_TRUSTED_STORAGE)
187 # Enable the TF-M internal trusted storage partition
188 set(TFM_PARTITION_INTERNAL_TRUSTED_STORAGE ON)
189endif()
190if (NOT DEFINED TFM_PARTITION_CRYPTO)
191 # Enable the TF-M crypto partition
192 set(TFM_PARTITION_CRYPTO ON)
193endif()
194if (NOT DEFINED TFM_PARTITION_INITIAL_ATTESTATION)
195 # Enable the TF-M initial attestation partition
196 set(TFM_PARTITION_INITIAL_ATTESTATION ON)
197endif()
Kevin Pengc73130f2019-10-22 17:27:18 +0800198
Edison Ai1dfd7b12020-02-23 14:16:08 +0800199if (NOT TFM_LVL EQUAL 1 AND NOT DEFINED CONFIG_TFM_ENABLE_MEMORY_PROTECT)
200 set (CONFIG_TFM_ENABLE_MEMORY_PROTECT ON)
201endif()
202
Kevin Pengc73130f2019-10-22 17:27:18 +0800203if (TFM_PARTITION_INITIAL_ATTESTATION OR TFM_PARTITION_SECURE_STORAGE)
204 #PSA Initial Attestation and Protected storage rely on Cryptography API
205 set(TFM_PARTITION_CRYPTO ON)
206endif()
Jamie Foxc78c62c2019-05-23 13:42:17 +0100207
Kevin Peng0b5acd32020-03-03 15:17:58 +0800208if (TFM_PARTITION_SECURE_STORAGE)
209 set(TFM_PARTITION_INTERNAL_TRUSTED_STORAGE ON)
210endif()
211
Marton Berke6fd21f12019-07-02 13:43:07 +0200212if(${TARGET_PLATFORM} STREQUAL "AN521" OR ${TARGET_PLATFORM} STREQUAL "AN519" OR ${TARGET_PLATFORM} STREQUAL "AN539")
Miklos Balintf13ec022018-04-06 17:21:22 +0200213 set (REFERENCE_PLATFORM ON)
214endif()
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100215
Miklos Balint6cbeba62018-04-12 17:31:34 +0200216# Option to demonstrate usage of secure-only peripheral
217set (SECURE_UART1 OFF)
218
Alan DeMars61844692019-10-22 08:23:29 -0700219if (PLATFORM_SVC_HANDLERS)
220 add_definitions(-DPLATFORM_SVC_HANDLERS)
221endif()
222
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100223if (REGRESSION)
224 set(SERVICES_TEST_ENABLED ON)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100225endif()
226
Edison Aiec109cd2018-07-17 16:04:14 +0800227if (CORE_IPC)
228 set(TFM_PSA_API ON)
David Huf2cfa122019-08-27 15:32:38 +0800229
230 # Disable IPC Test by default if the config or platform doesn't explicitly
231 # require it
232 if (NOT DEFINED IPC_TEST)
233 set(IPC_TEST OFF)
234 endif()
235else()
236 set(IPC_TEST OFF)
Edison Aiec109cd2018-07-17 16:04:14 +0800237endif()
238
Miklos Balint87da2512018-04-19 13:45:50 +0200239if (TFM_PSA_API)
240 add_definitions(-DTFM_PSA_API)
241endif()
242
David Hu104388f2019-11-18 14:37:32 +0800243if (DEFINED TFM_MULTI_CORE_TOPOLOGY AND TFM_MULTI_CORE_TOPOLOGY)
244 add_definitions(-DTFM_MULTI_CORE_TOPOLOGY)
David Huaeaf2732019-10-10 14:32:53 +0800245
246 # Skip multi-core test cases if regression test is disabled
247 if (NOT REGRESSION)
248 set(TFM_MULTI_CORE_TEST OFF)
249 endif()
David Hu104388f2019-11-18 14:37:32 +0800250endif()
251
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100252if (SERVICES_TEST_ENABLED)
253 set(SERVICE_TEST_S ON)
254 set(SERVICE_TEST_NS ON)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100255endif()
256
257if (CORE_TEST)
Kevin Peng726ad7a2020-01-22 15:49:29 +0800258 if (NOT CORE_IPC OR TFM_LVL EQUAL 1)
259 set(CORE_TEST_POSITIVE ON)
260 endif()
Mate Toth-Pal6569a592019-06-07 12:09:50 +0200261 set(CORE_TEST_INTERACTIVE OFF)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100262endif()
263
Ben Davis6d7256b2018-04-18 14:16:53 +0100264if (CORE_TEST_INTERACTIVE)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100265 add_definitions(-DCORE_TEST_INTERACTIVE)
266 set(TEST_FRAMEWORK_NS ON)
Mate Toth-Pal349714a2018-02-23 15:30:24 +0100267 set(TFM_PARTITION_TEST_CORE ON)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100268endif()
269
Ben Davis6d7256b2018-04-18 14:16:53 +0100270if (CORE_TEST_POSITIVE)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100271 add_definitions(-DCORE_TEST_POSITIVE)
272 set(TEST_FRAMEWORK_NS ON)
Mate Toth-Pal349714a2018-02-23 15:30:24 +0100273 set(TFM_PARTITION_TEST_CORE ON)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100274endif()
275
David Hu33f2fd22019-08-16 15:32:39 +0800276if (TFM_PARTITION_TEST_CORE)
277 # If the platform or the topology doesn't specify whether IRQ test is
278 # supported, enable it by default.
279 if (NOT DEFINED TFM_ENABLE_IRQ_TEST)
280 set(TFM_ENABLE_IRQ_TEST ON)
281 endif()
282
283 if (TFM_ENABLE_IRQ_TEST)
284 add_definitions(-DTFM_ENABLE_IRQ_TEST)
285 endif()
286else()
287 set(TFM_ENABLE_IRQ_TEST OFF)
288endif()
289
David Huf2cfa122019-08-27 15:32:38 +0800290if (IPC_TEST)
291 add_definitions(-DENABLE_IPC_TEST)
Jamie Foxadf02552019-05-16 17:44:52 +0100292 set(TEST_FRAMEWORK_NS ON)
293 set(TFM_PARTITION_TEST_CORE_IPC ON)
Edison Aiec109cd2018-07-17 16:04:14 +0800294endif()
295
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100296if (SERVICE_TEST_S)
297 add_definitions(-DSERVICES_TEST_S)
298 set(TEST_FRAMEWORK_S ON)
299endif()
300
301if (SERVICE_TEST_NS)
302 add_definitions(-DSERVICES_TEST_NS)
303 set(TEST_FRAMEWORK_NS ON)
304endif()
305
Ben Davis6d7256b2018-04-18 14:16:53 +0100306if (TEST_FRAMEWORK_S)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100307 add_definitions(-DTEST_FRAMEWORK_S)
Jamie Fox56da0992019-05-28 14:35:06 +0100308 # The secure client partition is required to run secure tests
309 set(TFM_PARTITION_TEST_SECURE_SERVICES ON)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100310endif()
311
Ben Davis6d7256b2018-04-18 14:16:53 +0100312if (TEST_FRAMEWORK_NS)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100313 add_definitions(-DTEST_FRAMEWORK_NS)
314endif()
315
Jamie Foxc78c62c2019-05-23 13:42:17 +0100316if (CORE_IPC)
317 set(TFM_PARTITION_AUDIT_LOG OFF)
318endif()
319
Kevin Pengedde1de2019-10-25 17:12:45 +0800320include(${CMAKE_CURRENT_LIST_DIR}/test/TestConfig.cmake)
321
Jamie Foxc78c62c2019-05-23 13:42:17 +0100322if (TFM_PARTITION_AUDIT_LOG)
323 add_definitions(-DTFM_PARTITION_AUDIT_LOG)
324endif()
325
Mingyang Sun9511e5e2019-05-29 18:18:44 +0800326if (TFM_PARTITION_PLATFORM)
327 add_definitions(-DTFM_PARTITION_PLATFORM)
328endif()
329
Kevin Pengc73130f2019-10-22 17:27:18 +0800330if (TFM_PARTITION_SECURE_STORAGE)
331 add_definitions(-DTFM_PARTITION_SECURE_STORAGE)
332endif()
333
334if (TFM_PARTITION_INTERNAL_TRUSTED_STORAGE)
335 add_definitions(-DTFM_PARTITION_INTERNAL_TRUSTED_STORAGE)
336endif()
337
338if (TFM_PARTITION_CRYPTO)
339 add_definitions(-DTFM_PARTITION_CRYPTO)
340endif()
341
342if (TFM_PARTITION_INITIAL_ATTESTATION)
343 add_definitions(-DTFM_PARTITION_INITIAL_ATTESTATION)
344endif()
345
Mate Toth-Pal349714a2018-02-23 15:30:24 +0100346if (TFM_PARTITION_TEST_CORE)
347 add_definitions(-DTFM_PARTITION_TEST_CORE)
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100348endif()
349
Jamie Foxadf02552019-05-16 17:44:52 +0100350if (TFM_PARTITION_TEST_CORE_IPC)
351 add_definitions(-DTFM_PARTITION_TEST_CORE_IPC)
352endif()
353
Jamie Foxc78c62c2019-05-23 13:42:17 +0100354if (TFM_PARTITION_TEST_SECURE_SERVICES)
355 add_definitions(-DTFM_PARTITION_TEST_SECURE_SERVICES)
356endif()
357
Edison Ai1dfd7b12020-02-23 14:16:08 +0800358if (CONFIG_TFM_ENABLE_MEMORY_PROTECT)
359 add_definitions(-DCONFIG_TFM_ENABLE_MEMORY_PROTECT)
360endif()
361
Jamie Fox17c30bb2019-01-10 13:39:33 +0000362if (PSA_API_TEST)
363 add_definitions(-DPSA_API_TEST_NS)
364 set(PSA_API_TEST_NS ON)
365 if (NOT DEFINED PSA_API_TEST_CRYPTO)
366 set(PSA_API_TEST_CRYPTO OFF)
367 endif()
Vinay Kumar Kotegowder75641062020-04-24 16:44:12 +0530368 if (NOT DEFINED PSA_API_TEST_STORAGE)
369 set(PSA_API_TEST_STORAGE OFF)
370 endif()
Jamie Fox6b6a19b2019-09-30 16:54:17 +0100371 if (NOT DEFINED PSA_API_TEST_INTERNAL_TRUSTED_STORAGE)
372 set(PSA_API_TEST_INTERNAL_TRUSTED_STORAGE OFF)
373 endif()
Karl Zhang1895a2c2020-03-08 18:27:32 +0800374 if (NOT DEFINED PSA_API_TEST_PROTECTED_STORAGE)
375 set(PSA_API_TEST_PROTECTED_STORAGE OFF)
Jamie Fox17c30bb2019-01-10 13:39:33 +0000376 endif()
Karl Zhang1895a2c2020-03-08 18:27:32 +0800377 if (NOT DEFINED PSA_API_TEST_INITIAL_ATTESTATION)
378 set(PSA_API_TEST_INITIAL_ATTESTATION OFF)
Jamie Fox17c30bb2019-01-10 13:39:33 +0000379 endif()
Jaykumar Pitambarbhai Patel38e6db52020-01-09 16:35:41 +0530380 if (NOT DEFINED PSA_API_TEST_IPC)
381 set(PSA_API_TEST_IPC OFF)
382 endif()
383
384 #Set PSA API compliance test build path
385 if(NOT DEFINED PSA_API_TEST_BUILD_PATH)
386 #If not specified, assume it's the default build folder checked out at the same level of TFM root dir
387 set(PSA_API_TEST_BUILD_PATH "${TFM_ROOT_DIR}/../psa-arch-tests/api-tests/BUILD")
388 endif()
Jamie Fox17c30bb2019-01-10 13:39:33 +0000389endif()
390
Kevin Penge9b61a72020-01-06 17:01:44 +0800391# The config for enable secure context management in TF-M
392if (NOT DEFINED CONFIG_TFM_ENABLE_CTX_MGMT)
393 set(CONFIG_TFM_ENABLE_CTX_MGMT ON)
394endif()
395
396if (CONFIG_TFM_ENABLE_CTX_MGMT)
397 add_definitions(-DCONFIG_TFM_ENABLE_CTX_MGMT)
398endif()
399
Marc Moreno Berenguec2e4db82018-09-14 16:32:24 +0100400# This flag indicates if the non-secure OS is capable of identify the non-secure clients
Mingyang Sun9ac02372019-08-26 15:59:14 +0800401# which call the secure services. It is diabled in IPC model.
Marc Moreno Berenguec2e4db82018-09-14 16:32:24 +0100402if (NOT DEFINED TFM_NS_CLIENT_IDENTIFICATION)
Mingyang Sun9ac02372019-08-26 15:59:14 +0800403 if (TFM_PSA_API)
404 set(TFM_NS_CLIENT_IDENTIFICATION OFF)
405 else()
Kevin Penge9b61a72020-01-06 17:01:44 +0800406 if (CONFIG_TFM_ENABLE_CTX_MGMT)
407 set(TFM_NS_CLIENT_IDENTIFICATION ON)
408 else()
409 set(TFM_NS_CLIENT_IDENTIFICATION OFF)
410 endif()
Mingyang Sun9ac02372019-08-26 15:59:14 +0800411 endif()
Marc Moreno Berenguec2e4db82018-09-14 16:32:24 +0100412endif()
413
Kevin Penge9b61a72020-01-06 17:01:44 +0800414if (NOT CONFIG_TFM_ENABLE_CTX_MGMT AND TFM_NS_CLIENT_IDENTIFICATION)
415 # NS client ID is part of context management.
416 message(FATAL_ERROR "TFM_NS_CLIENT_IDENTIFICATION cannot be ON when CONFIG_TFM_ENABLE_CTX_MGMT is OFF")
417endif()
418
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100419if (BL2)
David Vincze63eda7a2019-08-09 17:42:51 +0200420 # Add MCUBOOT_IMAGE_NUMBER definition to the compiler command line.
421 add_definitions(-DMCUBOOT_IMAGE_NUMBER=${MCUBOOT_IMAGE_NUMBER})
422
David Vincze4638b2a2019-05-24 10:14:23 +0200423 if (${MCUBOOT_UPGRADE_STRATEGY} STREQUAL "NO_SWAP")
Tamas Bandb69d522018-03-01 10:04:41 +0000424 set(LINK_TO_BOTH_MEMORY_REGION ON)
425 endif()
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100426endif()
427
Raef Coles1bb168e2019-10-17 09:04:55 +0100428##Set Mbed Crypto compiler flags and variables for crypto service
Mate Toth-Pal8f17a712020-03-02 16:22:19 +0100429set(MBEDCRYPTO_C_FLAGS_SERVICES "${CMSE_FLAGS} -D__thumb2__ ${COMMON_COMPILE_FLAGS_STR} -I${CMAKE_CURRENT_LIST_DIR}/platform/ext/common")
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100430
Marc Moreno Berengue6ffb22f2018-02-20 13:46:30 +0000431#Default TF-M secure storage flags.
432#These flags values can be overwritten by setting them in platform/ext/<TARGET_NAME>.cmake
Tamas Ban01f64c52019-08-26 13:46:21 +0100433#Documentation about these flags can be found in docs/user_guides/services/tfm_sst_integration_guide.rst
Marc Moreno Berengue8385e8e2019-01-21 11:49:50 +0000434if (NOT DEFINED SST_ENCRYPTION)
435 set (SST_ENCRYPTION ON)
436endif()
Marc Moreno Berengue6ffb22f2018-02-20 13:46:30 +0000437
Marc Moreno Berengue8385e8e2019-01-21 11:49:50 +0000438if (NOT DEFINED SST_ROLLBACK_PROTECTION)
439 set (SST_ROLLBACK_PROTECTION OFF)
440endif()
Marc Moreno Berengue6ffb22f2018-02-20 13:46:30 +0000441
Marc Moreno Berengue8385e8e2019-01-21 11:49:50 +0000442if (NOT DEFINED SST_CREATE_FLASH_LAYOUT)
443 set (SST_CREATE_FLASH_LAYOUT OFF)
444endif()
Marc Moreno Berengue184d2032018-08-14 12:51:43 +0100445
Marc Moreno Berengue8385e8e2019-01-21 11:49:50 +0000446if (NOT DEFINED SST_VALIDATE_METADATA_FROM_FLASH)
447 set (SST_VALIDATE_METADATA_FROM_FLASH ON)
448endif()
Marc Moreno Berengue6ffb22f2018-02-20 13:46:30 +0000449
Marc Moreno Berengue8385e8e2019-01-21 11:49:50 +0000450if (NOT DEFINED SST_RAM_FS)
451 if (REGRESSION)
452 set (SST_RAM_FS ON)
453 else()
454 set (SST_RAM_FS OFF)
Marc Moreno Berengue02a23442018-08-15 14:28:45 +0100455 endif()
Marc Moreno Berengue792fc682018-02-20 11:53:30 +0000456endif()
Marc Moreno Berengue6ffb22f2018-02-20 13:46:30 +0000457
Jamie Fox95bacd42019-03-21 18:14:15 +0000458if (NOT DEFINED SST_TEST_NV_COUNTERS)
Kevin Pengedde1de2019-10-25 17:12:45 +0800459 if (REGRESSION AND ENABLE_SECURE_STORAGE_SERVICE_TESTS)
Jamie Fox95bacd42019-03-21 18:14:15 +0000460 set(SST_TEST_NV_COUNTERS ON)
461 else()
462 set(SST_TEST_NV_COUNTERS OFF)
463 endif()
464endif()
465
Jamie Fox0e823a02019-10-28 17:28:19 +0000466# The SST NV counter tests depend on the SST test partition to call
467# sst_system_prepare().
468if (SST_TEST_NV_COUNTERS)
469 set(TFM_PARTITION_TEST_SST ON)
470 add_definitions(-DTFM_PARTITION_TEST_SST)
471endif()
472
TudorCretufb182bc2019-07-05 17:34:12 +0100473#Default TF-M internal trusted storage flags.
474#These flags values can be overwritten by setting them in platform/ext/<TARGET_NAME>.cmake
475#Documentation about these flags can be found in the TF-M ITS integration guide
476option(ITS_CREATE_FLASH_LAYOUT "Create an empty ITS Flash Layout" OFF)
477
478if (NOT DEFINED ITS_VALIDATE_METADATA_FROM_FLASH)
479 set (ITS_VALIDATE_METADATA_FROM_FLASH ON)
480endif()
481
482if (NOT DEFINED ITS_RAM_FS)
483 if (REGRESSION)
484 set (ITS_RAM_FS ON)
485 else()
486 set (ITS_RAM_FS OFF)
487 endif()
488endif()
489
Raef Coles1bb168e2019-10-17 09:04:55 +0100490if (NOT DEFINED MBEDCRYPTO_DEBUG)
491 set(MBEDCRYPTO_DEBUG OFF)
Marc Moreno Berengue6ffb22f2018-02-20 13:46:30 +0000492endif()
Mate Toth-Pal65c935e2018-01-17 18:42:13 +0100493
Tamas Ban01f64c52019-08-26 13:46:21 +0100494#Default TF-M initial-attestation service flags.
495#Documentation about these flags can be found in docs/user_guides/services/tfm_attestation_integration_guide.rst
496if (NOT DEFINED ATTEST_INCLUDE_OPTIONAL_CLAIMS)
497 set(ATTEST_INCLUDE_OPTIONAL_CLAIMS ON)
498endif()
499
Tamas Banabea89d2020-01-15 13:29:25 +0000500if (NOT DEFINED ATTEST_INCLUDE_COSE_KEY_ID)
501 set(ATTEST_INCLUDE_COSE_KEY_ID OFF)
502endif()
503
504if (NOT DEFINED ATTEST_INCLUDE_TEST_CODE)
505 if (CMAKE_BUILD_TYPE STREQUAL "debug")
506 set(ATTEST_INCLUDE_TEST_CODE ON)
507 else()
508 set(ATTEST_INCLUDE_TEST_CODE OFF)
509 endif()
Tamas Ban303dd082019-08-27 10:43:03 +0100510endif()
511
David Vinczee13a48b2020-01-08 17:42:30 +0100512if (NOT DEFINED BOOT_DATA_AVAILABLE)
David Vinczec3e313a2020-01-06 17:31:11 +0100513 if (BL2 AND (NOT MCUBOOT_REPO STREQUAL "UPSTREAM"))
David Vinczee13a48b2020-01-08 17:42:30 +0100514 set(BOOT_DATA_AVAILABLE ON)
515 else()
516 set(BOOT_DATA_AVAILABLE OFF)
517 endif()
518endif()
519
Balint Matyi95f58eb2020-05-22 08:52:32 +0100520if (NOT DEFINED ATTEST_CLAIM_VALUE_CHECK)
521 set(ATTEST_CLAIM_VALUE_CHECK OFF)
522endif()
523
Tamas Bandb69d522018-03-01 10:04:41 +0000524##Set mbedTLS compiler flags for BL2 bootloader
Mate Toth-Pal8f17a712020-03-02 16:22:19 +0100525set(MBEDCRYPTO_C_FLAGS_BL2 "${CMSE_FLAGS} -D__thumb2__ ${COMMON_COMPILE_FLAGS_STR} -DMBEDTLS_CONFIG_FILE=\\\\\\\"config-rsa.h\\\\\\\" -I${CMAKE_CURRENT_LIST_DIR}/bl2/ext/mcuboot/include")
Tamas Ban7801ed42019-05-20 13:21:53 +0100526if (MCUBOOT_SIGNATURE_TYPE STREQUAL "RSA-3072")
Raef Coles1bb168e2019-10-17 09:04:55 +0100527 string(APPEND MBEDCRYPTO_C_FLAGS_BL2 " -DMCUBOOT_SIGN_RSA_LEN=3072")
Jamie Foxc78c62c2019-05-23 13:42:17 +0100528endif()