Versions Compared

Version Old Version 3 New Version 4
Changes made by

Kevin Townsend

Kevin Townsend

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Build TF-M binaries

Tested with:

  • `AN521` build target (MPS2 in dual core M33 mode)
  • GNU GCC 7.3.1 (7-2018-q2-update)
  • TF-M hash `88661e56612d51811b6ea7b14ae6467128967bb2`
Info

The commands below will build a debug binary with no bootloader (`-DBL2=false`).


Info

If building on OS X, you need to install the coreutils package via

...

`$ brew install coreutils` and replace `readlink` below with `greadlink`.


Code Block
languagebash
titleBuilding TF-M Binaries
$ cd trusted-firmware-m
$ mkdir build && cd build
$ cmake -G"Unix Makefiles" -DPROJ_CONFIG=`readlink -f ../ConfigRegression.cmake` \
-DTARGET_PLATFORM=AN521 -DBL2=false -DCMAKE_BUILD_TYPE=Debug -DCOMPILER=GNUARM ../
$ cmake --build ./

...

Builds that include the bootloader result in a `tfm_full.bin` file in the
build folder, as well as a version signed by `imgtool.py` for use with
mcu-boot

When building without the bootloader (`-DBL2=false`), we need to merge the
secure and normal .axf files ourselves:

Code Block
languagebash
titleMerging .axf files
$ arm-none-eabi-objcopy -O ihex app/secure_fw/tfm_s.axf tfm_s.hex
$ arm-none-eabi-objcopy -O ihex app/tfm_ns.axf tfm_ns.hex
$ srec_cat tfm_s.hex -Intel tfm_ns.hex -Intel -o tfm_full.hex -Intel
$ ls *.hex
-rw-r--r-- 1 kevin staff 918K Jun 10 15:50 tfm_full.hex


Info

If `srec_cat` isn't already available on your system you can install it via

...

`$ sudo apt-get install srecord` on Ubuntu or `$ brew install srecord` on

...

OS X.

QEMU Support

ARMv8 support was added to QEMU 4.0, along with `machine` support for the
Musca and MPS2 development boards.

...

If you have an older version, see the appendix in this document on how to
build QEMU from source.

Running in QEMU

Tested using qemu 4.0.0 release (required for ARMv8 support),
and MPS2 `AN521` as a machine target.

Firmware images built using `-DCMAKE_BUILD_TYPE=Debug` as mentioned earlier in
this guide.

Code Block
languagebash
$ qemu-system-arm -M mps2-an521 -device loader,file=tfm_full.hex -serial stdio

...

Tested using qemu 4.0.0 release (required for ARMv8 support),
and MPS2 `AN521` as a machine target.

Firmware images built using `-DCMAKE_BUILD_TYPE=Debug` as mentioned earlier in
this guide.

To debug the binary image with `gdb`, run QEMU with the following
parameters:

Code Block
languagebash
$ qemu-system-arm -M mps2-an521 -device loader,file=tfm_full.hex -serial stdio -s -S

...

`gdb` can then be run in a new terminal instance:

Info

This example loads the symbols from `app/tfm_ns.axf`, but you can

...

alternatively load `app/secure_fx/tfm_s.axf` depending on your requirements.


Code Block
languagebash
$ gdb -s app/tfm_ns.axf -ex "target remote tcp:localhost:1234"
(gdb) break main
Breakpoint 1 at 0x10111c: file /Users/kevin/Dropbox/linaro/code/tfm/trusted-firmware-m/app/main_ns.c, line 115.
(gdb) layout asm
(gdb) continue

...

For Ubuntu 18.04, the following steps are required to build from source:

Info

This build process will take a reasonable amount of time to complete!


Code Block
languagebash
$ sudo apt-get install git libglib2.0-dev libfdt-dev libpixman-1-dev zlib1g-dev
$ sudo apt-get install libnfs-dev libiscsi-dev
$ git clone https://github.com/qemu/qemu.git
$ cd qemu
$ mkdir -p bin/debug/native
$ cd bin/debug/native
$ ../../../configure --enable-debug
$ make
$ cd ../../..
$ bin/debug/native/arm-softmmu/qemu-system-arm --version
QEMU emulator version 4.0.50 (v4.0.0-1170-g185b7ccc11-dirty)
Copyright (c) 2003-2019 Fabrice Bellard and the QEMU Project developers

You can see a list of support boards for `qemu-system-arm` via the following
command, noting `mps2-an521` and `musca-b1`:

...