Home Explore Help
Sign In
coolsoul
/
u-boot
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 0680f1b1f7
Branches Tags
u-boot
/
arch
/
arm
/
include
/
asm
/
fsl_secure_boot.h

fsl_secure_boot.h 4.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145 
  1. /*
    2. 

  2.  * Copyright 2015 Freescale Semiconductor, Inc.
    3. 

  3.  *
    4. 

  4.  * SPDX-License-Identifier:	GPL-2.0+
    5. 

  5.  */
    6. 

  6. 

  7. #ifndef __FSL_SECURE_BOOT_H
    8. 

  8. #define __FSL_SECURE_BOOT_H
    9. 

  9. 

  10. #ifdef CONFIG_CHAIN_OF_TRUST
    11. 

  11. #define CONFIG_CMD_ESBC_VALIDATE
    12. 

  12. #define CONFIG_FSL_SEC_MON
    13. 

  13. #define CONFIG_SHA_HW_ACCEL
    14. 

  14. #define CONFIG_SHA_PROG_HW_ACCEL
    15. 

  15. 

  16. #ifdef CONFIG_SPL_BUILD
    17. 

  17. /*
    18. 

  18.  * Define the key hash for U-Boot here if public/private key pair used to
    19. 

  19.  * sign U-boot are different from the SRK hash put in the fuse
    20. 

  20.  * Example of defining KEY_HASH is
    21. 

  21.  * #define CONFIG_SPL_UBOOT_KEY_HASH \
    22. 

  22.  *      "41066b564c6ffcef40ccbc1e0a5d0d519604000c785d97bbefd25e4d288d1c8b"
    23. 

  23.  * else leave it defined as NULL
    24. 

  24.  */
    25. 

  25. 

  26. #define CONFIG_SPL_UBOOT_KEY_HASH	NULL
    27. 

  27. #endif /* ifdef CONFIG_SPL_BUILD */
    28. 

  28. 

  29. #define CONFIG_KEY_REVOCATION
    30. 

  30. 

  31. #ifndef CONFIG_SPL_BUILD
    32. 

  32. #define CONFIG_CMD_HASH
    33. 

  33. #ifndef CONFIG_SYS_RAMBOOT
    34. 

  34. /* The key used for verification of next level images
    35. 

  35.  * is picked up from an Extension Table which has
    36. 

  36.  * been verified by the ISBC (Internal Secure boot Code)
    37. 

  37.  * in boot ROM of the SoC.
    38. 

  38.  * The feature is only applicable in case of NOR boot and is
    39. 

  39.  * not applicable in case of RAMBOOT (NAND, SD, SPI).
    40. 

  40.  * For LS, this feature is available for all device if IE Table
    41. 

  41.  * is copied to XIP memory
    42. 

  42.  * Also, for LS, ISBC doesn't verify this table.
    43. 

  43.  */
    44. 

  44. #define CONFIG_FSL_ISBC_KEY_EXT
    45. 

  45. 

  46. #endif
    47. 

  47. 

  48. #if defined(CONFIG_FSL_LAYERSCAPE)
    49. 

  49. /*
    50. 

  50.  * For fsl layerscape based platforms, ESBC image Address in Header
    51. 

  51.  * is 64 bit.
    52. 

  52.  */
    53. 

  53. #define CONFIG_ESBC_ADDR_64BIT
    54. 

  54. #endif
    55. 

  55. 

  56. #ifdef CONFIG_ARCH_LS2080A
    57. 

  57. #define CONFIG_EXTRA_ENV \
    58. 

  58. 	"setenv fdt_high 0xa0000000;"	\
    59. 

  59. 	"setenv initrd_high 0xcfffffff;"	\
    60. 

  60. 	"setenv hwconfig \'fsl_ddr:ctlr_intlv=null,bank_intlv=null\';"
    61. 

  61. #else
    62. 

  62. #define CONFIG_EXTRA_ENV \
    63. 

  63. 	"setenv fdt_high 0xffffffff;"	\
    64. 

  64. 	"setenv initrd_high 0xffffffff;"	\
    65. 

  65. 	"setenv hwconfig \'fsl_ddr:ctlr_intlv=null,bank_intlv=null\';"
    66. 

  66. #endif
    67. 

  67. 

  68. /* Copying Bootscript and Header to DDR from NOR for LS2 and for rest, from
    69. 

  69.  * Non-XIP Memory (Nand/SD)*/
    70. 

  70. #if defined(CONFIG_SYS_RAMBOOT) || defined(CONFIG_FSL_LSCH3) || \
    71. 

  71. 	defined(CONFIG_SD_BOOT) || defined(CONFIG_NAND_BOOT)
    72. 

  72. #define CONFIG_BOOTSCRIPT_COPY_RAM
    73. 

  73. #endif
    74. 

  74. /* The address needs to be modified according to NOR, NAND, SD and
    75. 

  75.  * DDR memory map
    76. 

  76.  */
    77. 

  77. #ifdef CONFIG_FSL_LSCH3
    78. 

  78. #define CONFIG_BS_HDR_ADDR_DEVICE	0x580d00000
    79. 

  79. #define CONFIG_BS_ADDR_DEVICE		0x580e00000
    80. 

  80. #define CONFIG_BS_HDR_ADDR_RAM		0xa0d00000
    81. 

  81. #define CONFIG_BS_ADDR_RAM		0xa0e00000
    82. 

  82. #define CONFIG_BS_HDR_SIZE		0x00002000
    83. 

  83. #define CONFIG_BS_SIZE			0x00001000
    84. 

  84. #else
    85. 

  85. #ifdef CONFIG_SD_BOOT
    86. 

  86. /* For SD boot address and size are assigned in terms of sector
    87. 

  87.  * offset and no. of sectors respectively.
    88. 

  88.  */
    89. 

  89. #if defined(CONFIG_ARCH_LS1043A) || defined(CONFIG_ARCH_LS1046A)
    90. 

  90. #define CONFIG_BS_HDR_ADDR_DEVICE	0x00000920
    91. 

  91. #else
    92. 

  92. #define CONFIG_BS_HDR_ADDR_DEVICE       0x00000900
    93. 

  93. #endif
    94. 

  94. #define CONFIG_BS_ADDR_DEVICE		0x00000940
    95. 

  95. #define CONFIG_BS_HDR_SIZE		0x00000010
    96. 

  96. #define CONFIG_BS_SIZE			0x00000008
    97. 

  97. #elif defined(CONFIG_NAND_BOOT)
    98. 

  98. #define CONFIG_BS_HDR_ADDR_DEVICE      0x00800000
    99. 

  99. #define CONFIG_BS_ADDR_DEVICE          0x00802000
    100. 

  100. #define CONFIG_BS_HDR_SIZE             0x00002000
    101. 

  101. #define CONFIG_BS_SIZE                 0x00001000
    102. 

  102. #elif defined(CONFIG_QSPI_BOOT)
    103. 

  103. #ifdef CONFIG_ARCH_LS1046A
    104. 

  104. #define CONFIG_BS_HDR_ADDR_DEVICE	0x40780000
    105. 

  105. #define CONFIG_BS_ADDR_DEVICE		0x40800000
    106. 

  106. #elif defined(CONFIG_ARCH_LS1012A)
    107. 

  107. #define CONFIG_BS_HDR_ADDR_DEVICE      0x400c0000
    108. 

  108. #define CONFIG_BS_ADDR_DEVICE          0x40060000
    109. 

  109. #else
    110. 

  110. #error "Platform not supported"
    111. 

  111. #endif
    112. 

  112. #define CONFIG_BS_HDR_SIZE		0x00002000
    113. 

  113. #define CONFIG_BS_SIZE			0x00001000
    114. 

  114. #else /* Default NOR Boot */
    115. 

  115. #define CONFIG_BS_HDR_ADDR_DEVICE	0x600a0000
    116. 

  116. #define CONFIG_BS_ADDR_DEVICE		0x60060000
    117. 

  117. #define CONFIG_BS_HDR_SIZE		0x00002000
    118. 

  118. #define CONFIG_BS_SIZE			0x00001000
    119. 

  119. #endif
    120. 

  120. #define CONFIG_BS_HDR_ADDR_RAM		0x81000000
    121. 

  121. #define CONFIG_BS_ADDR_RAM		0x81020000
    122. 

  122. #endif
    123. 

  123. 

  124. #ifdef CONFIG_BOOTSCRIPT_COPY_RAM
    125. 

  125. #define CONFIG_BOOTSCRIPT_HDR_ADDR	CONFIG_BS_HDR_ADDR_RAM
    126. 

  126. #define CONFIG_BOOTSCRIPT_ADDR		CONFIG_BS_ADDR_RAM
    127. 

  127. #else
    128. 

  128. #define CONFIG_BOOTSCRIPT_HDR_ADDR	CONFIG_BS_HDR_ADDR_DEVICE
    129. 

  129. /* BOOTSCRIPT_ADDR is not required */
    130. 

  130. #endif
    131. 

  131. 

  132. #ifdef CONFIG_FSL_LS_PPA
    133. 

  133. /* Define the key hash here if SRK used for signing PPA image is
    134. 

  134.  * different from SRK hash put in SFP used for U-Boot.
    135. 

  135.  * Example
    136. 

  136.  * #define PPA_KEY_HASH \
    137. 

  137.  *	"41066b564c6ffcef40ccbc1e0a5d0d519604000c785d97bbefd25e4d288d1c8b"
    138. 

  138.  */
    139. 

  139. #define PPA_KEY_HASH		NULL
    140. 

  140. #endif /* ifdef CONFIG_FSL_LS_PPA */
    141. 

  141. 

  142. #include <config_fsl_chain_trust.h>
    143. 

  143. #endif /* #ifndef CONFIG_SPL_BUILD */
    144. 

  144. #endif /* #ifdef CONFIG_CHAIN_OF_TRUST */
    145. 

  145. #endif
    146.