!66 [sync] PR-63: Update to 2.12.1 for fix CVE-2024-7881 and CVE-2024-5660

From: @openeuler-sync-bot 
Reviewed-by: @cherry530 
Signed-off-by: @cherry530

arm-trusted-firmware.spec

@@ -1,14 +1,15 @@
 %global debug_package %{nil}
 
 Name:          arm-trusted-firmware
-Version:       2.9
+Version:       2.12.1
 Release:       1
 Summary:       ARM Trusted Firmware
-License:       BSD
+License:       BSD-3-clause
 URL:           https://github.com/ARM-software/arm-trusted-firmware/wiki
-Source0:       https://github.com/ARM-software/arm-trusted-firmware/archive/v%{version}/%{name}-%{version}.tar.gz
+Source0:       https://github.com/ARM-software/arm-trusted-firmware/archive/lts-v%{version}/%{name}-%{version}.tar.gz
 ExclusiveArch: aarch64
 BuildRequires: dtc
+BuildRequires: gcc openssl-devel
 
 %description
 Trusted Firmware-A is a reference implementation of secure world software
@@ -21,10 +22,11 @@ ARM Trusted Firmware for various ARMv8-A SoCs.
 
 
 %prep
-%autosetup -p1 -n %{name}-%{version}
+%autosetup -p1 -n %{name}-lts-v%{version}
 sed -i 's/arm-none-eabi-/arm-linux-gnu-/' plat/rockchip/rk3399/drivers/m0/Makefile
 
 %build
+export CC=gcc
 for soc in hikey hikey960 imx8qm imx8qx juno rk3368 rk3328 rpi3 sun50i_a64 sun50i_h6 zynqmp
 do
 make HOSTCC="%{CC} $RPM_OPT_FLAGS -fPIE -Wl,-z,relro,-z,now" CROSS_COMPILE="" PLAT=$(echo $soc) bl31
@@ -61,6 +63,59 @@ strip %{buildroot}/%{_datadir}/%{name}/rk3368/bl31.elf
 %{_datadir}/%{name}
 
 %changelog
+* Thu Mar 20 2025 yaoxin <1024769339@qq.com> - 2.12.1-1
+- Update to 2.12.1 for fix CVE-2024-7881 and CVE-2024-5660
+
+* Wed Nov 27 2024 yaoxin <yao_xin001@hoperun.com> - 2.12.0-1
+- Update to 2.12.0
+- Bootloader Images:
+    * remove unused plat_try_next_boot_source
+- Architecture:
+    *Branch Record Buffer Extension (FEAT_BRBE)
+    * allow RME builds with BRBE
+- Arm:
+    * avoid stripping kernel trampoline
+    * add DRAM memory regions that linux kernel can share
+    * add optee specific mem-size attribute
+    * add secure uart interrupt in device region
+    * enable FEAT_MTE2
+    * fix the FF-A optee manifest by adding the boot info node
+    * update the memory size allocated to optee at EL1
+- Intel:
+    * add cache invalidation during BL31 initialization
+    * add in JTAG ID for Linux FCS
+    * add in missing ECC register
+    * add in watchdog for QSPI driver
+    * bridge ack timing issue causing fpga config hung
+    * correct macro naming
+    * f2sdram bridge quick write thru failed
+    * fix bridge enable and disable function
+    * fix CCU for cache maintenance
+    * flush L1/L2/L3/Sys cache before HPS cold reset
+    * implement soc and lwsoc bridge control for burst speed
+    * refactor SDMMC driver for Altera products
+    * remove redundant BIT_32 macro
+    * software workaround for bridge timeout
+    * update Agilex5 BL2 init flow and other misc changes
+    * update Agilex5 warm reset subroutines
+    * update all the platforms hand-off data offset value
+    * update CCU configuration for Agilex5 platform
+    * update mailbox SDM printout message
+    * update memcpy to memcpy_s ([e264b55]
+    * update outdated code for Linux direct boot
+    * update preloaded_bl33_base for legacy product
+    * update sip smc config addr for agilex5
+    * update the size with addition 0x8000 0000 base
+
+* Tue Oct 15 2024 yaoxin <yao_xin001@hoperun.com> - 2.9-4
+- Fix CVE-2024-6287
+
+* Tue Jul 09 2024 zhangxianting <zhangxianting@uniontech.com> - 2.9-3
+- Fix CVE-2024-6563 CVE-2024-6564
+
+* Tue Jan 23 2024 yaoxin <yao_xin001@hoperun.com> - 2.9-2
+- Fix CVE-2023-49100
+
 * Fri Jul 07 2023 xu_ping <707078654@qq.com> -2.9-1
 - Upgrade to 2.9