- TF-M eRPC Test framework [1] is integrated.
- TF-M builtin key loader integration is reworked.
- Improved crypto library abstraction from TF-M Crypto service.
- :doc:`Kconfig system </configuration/kconfig_system>` is enhanced and finalized.
- Switch to upstream QCBOR [2].
- Enable PSA Authenticated Debug Access Control (ADAC) [3] support on Musca-B1 platform.
- Support Floating-Point (FP) with Arm Compiler.
- FF-M API uses signals to drive the partition scheduling instead of controlling partition context directly.
- MCUboot upgrade to v1.10.0.
- Mbed TLS upgrade to v3.4.0.
- Refine documentation restructure.
- It is optional to update copyright year in changes. Requirements of copyright note update is updated in :doc:`Contributing Process </contributing/contributing_process>`.
The following platforms are successfully tested in this release.
- AN519
- AN521
- AN555
- B-U585I-IOT02A
- Corstone-1000
- LPCXpresso55S69
- Musca-B1
- Musca-S1
- nRF9160
- nRF5340
- NUCLEO-L552ZE-Q
- PSoC 64
- RSS
- STM32L562E-DK
All measurements below are made for AN521 platform, built TF-Mv1.8.0-RC2 on Windows 10 using Armclang v6.18 and build type MinSizeRel.
All modules are measured in bytes. Some minor modules are not shown in the table below.
Note
Profile Medium-ARoT-less built with disabled Firmware Update service to algin with other TF-M Profiles.
| Module | Base | Small | ARoT-less | Medium | Large | |||||
|---|---|---|---|---|---|---|---|---|---|---|
| Flash | RAM | Flash | RAM | Flash | RAM | Flash | RAM | Flash | RAM | |
| Generated (stack, stc) | 112 | 3184 | 160 | 3184 | 160 | 3184 | 208 | 3184 | 272 | 3184 |
| Objects | 936 | 1064 | 1222 | 5464 | 1309 | 6152 | 1439 | 1544 | 1514 | 1544 |
| c_w.l | 190 | 0 | 568 | 0 | 808 | 0 | 808 | 0 | 808 | 0 |
| platform (Secure) | 5098 | 284 | 5530 | 284 | 5890 | 284 | 6256 | 284 | 6278 | 284 |
| SPM | 3694 | 1205 | 4560 | 577 | 4070 | 1205 | 5710 | 1261 | 5870 | 1266 |
| sprt | 254 | 0 | 1432 | 0 | 1270 | 0 | 2198 | 4 | 2198 | 4 |
| MbedCrypto | N/A | N/A | 24612 | 2292 | 46558 | 2296 | 46562 | 2296 | 80435 | 2408 |
| PROT_attestation | N/A | N/A | 2751 | 557 | 2981 | 1218 | 2981 | 3010 | 2981 | 3010 |
| PROT_crypto | N/A | N/A | 3686 | 2070 | 4240 | 16026 | 4240 | 22938 | 4368 | 24986 |
| PROT_ITS | N/A | N/A | 4826 | 80 | 4882 | 112 | 5056 | 1988 | 5068 | 2468 |
| PROT_platform | N/A | N/A | N/A | N/A | 480 | 0 | 522 | 1280 | 522 | 1280 |
| AROT_PS | N/A | N/A | N/A | N/A | N/A | N/A | 3340 | 6444 | 3340 | 6444 |
| Padding | 40 | 23 | 119 | 28 | 158 | 35 | 142 | 39 | 180 | 66 |
| Total incl. padding | 10324 | 5760 | 50576 | 14536 | 73916 | 30512 | 80572 | 44272 | 114924 | 46944 |
Some open issues are not fixed in this release.
| Descriptions | Issue links |
|---|---|
| Arm GNU toolchain version greater than 11.2 has a linker issue in syscall. | https://developer.trustedfirmware.org/T1029 |
| In SFN model, input data size value in structure psa_msg_t passed to RoT Services might decrease after psa_read() or psa_skip(). | https://developer.trustedfirmware.org/T1030 |
The following issues have been fixed since v1.7.0 release.
| Descriptions | Issue links |
|---|---|
| PSoC 64 platform builds and works well with ArmClang v6.13 and later. | Not tracked |
| LPCXpresso55S690 platform works well in profile small only. | Not tracked |
The following issues in v1.7.0 known issue list are closed. These issues are related to platform specific implementations or 3rd-party tools. Therefore they won't be fixed by TF-M.
| Descriptions | Issue links |
|---|---|
| Latest CMake (3.25) has an issue with PSA Arch test | ARM-software/psa-arch-tests#335 |
| [1] | TF-M eRPC Test Framework |
| [2] | QCBOR repository |
| [3] | Authenticated Debug Access Control Specification |
Copyright (c) 2023, Arm Limited. All rights reserved.