andrius
/
arm-trusted-firmware
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
arm-trusted-firmware/drivers
History
Sandrine Bailleux 5ab8b7170e Introduce a new "dualroot" chain of trust 
This new chain of trust defines 2 independent signing domains:

1) One for the silicon firmware (BL1, BL2, BL31) and optionally the
   Trusted OS. It is rooted in the Silicon ROTPK, just as in the TBBR
   CoT.

2) One for the Normal World Bootloader (BL33). It is rooted in a new key
   called Platform ROTPK, or PROTPK for short.

In terms of certificates chain,

- Signing domain 1) is similar to what TBBR advocates (see page 21 of
  the TBBR specification), except that the Non-Trusted World Public Key
  has been removed from the Trusted Key Certificate.

- Signing domain 2) only contains the Non-Trusted World Content
  certificate, which provides the hash of the Non-Trusted World
  Bootloader. Compared to the TBBR CoT, there's no Non-Trusted World
  Key certificate for simplicity.

Change-Id: I62f1e952522d84470acc360cf5ee63e4c4b0b4d9
Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>
 		2020-02-24 11:01:39 +01:00
..
allwinner allwinner: Convert AXP803 regulator setup code into a driver 2019-12-13 19:22:34 -06:00
amlogic amlogic: sha_dma: Move register mappings to platform header 2019-09-18 10:22:31 +01:00
arm drivers/arm/scmi: allow use of multiple SCMI channels 2020-02-07 19:24:17 +05:30
auth Introduce a new "dualroot" chain of trust 2020-02-24 11:01:39 +01:00
cadence/uart/aarch64 Remove MULTI_CONSOLE_API flag and references to it 2019-06-28 10:52:48 +01:00
cfi/v2m coverity: fix MISRA violations 2020-02-18 10:47:46 -06:00
console coverity: Fix MISRA null pointer violations 2020-02-05 14:53:02 -06:00
coreboot/cbmem_console/aarch64 Console: remove deprecated finish_console_register 2019-04-03 14:55:18 +01:00
delay_timer include: move MHZ_TICKS_PER_SEC to utils_def.h 2020-02-20 09:25:45 -08:00
gpio Sanitise includes across codebase 2019-01-04 10:43:17 +00:00
imx Replace __ASSEMBLY__ with compiler-builtin __ASSEMBLER__ 2019-08-01 13:14:12 -07:00
intel/soc/stratix10/io io: change seek offset to signed long long 2020-01-10 21:14:57 +01:00
io Add raw NAND framework 2020-01-20 11:32:59 +01:00
marvell plat: marvell: armada: add support for loading MG CM3 images 2020-01-30 23:13:07 +01:00
mentor/i2c Enable -Wlogical-op always 2019-11-19 08:53:21 -06:00
mmc mmc: increase delay between ACMD41 retries 2019-10-03 11:17:31 +02:00
mtd Add SPI-NOR framework 2020-01-20 11:32:59 +01:00
partition drivers: partition: support different block size 2019-09-18 18:18:20 +08:00
renesas/rcar rcar_gen3: drivers: ddr: Update DDR setting for H3, M3, M3N 2020-02-15 10:46:00 +01:00
rpi3 rpi3: Move rng driver to drivers 2019-09-13 16:54:21 +01:00
st spi: stm32_qspi: Add QSPI support 2020-01-20 11:32:59 +01:00
synopsys Merge changes from topic "jc/shift-overflow" into integration 2019-07-16 10:11:27 +00:00
ti/uart console: 16550: Prepare for skipping initialisation 2019-12-30 11:40:08 +00:00
ufs drivers: ufs: Extend the delay after reset to wait for some slower chips 2019-05-13 17:11:07 -07:00