* [PATCH] ARM: i.MX: enable Master Identifier Unlock
@ 2020-05-28 12:56 Rouven Czerwinski
2020-06-02 6:24 ` Sascha Hauer
0 siblings, 1 reply; 2+ messages in thread
From: Rouven Czerwinski @ 2020-05-28 12:56 UTC (permalink / raw)
To: barebox; +Cc: Rouven Czerwinski
By default the HAB locks the Master Identifier (MID) to preconfigured
values. This is not a problem if Linux is running in the secure world,
however when running a secure world operating system such as OP-TEE, the
MID configuration should be done by the secure world operating system.
This causes no regressions for systems using no secure world operating
systems, since no MID value indicates that all normal/secure world
entities can access the peripherals supporting the MID.
Signed-off-by: Rouven Czerwinski <r.czerwinski@pengutronix.de>
---
arch/arm/mach-imx/include/mach/habv4-imx6-gencsf.h | 2 +-
arch/arm/mach-imx/include/mach/habv4-imx8-gencsf.h | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/arch/arm/mach-imx/include/mach/habv4-imx6-gencsf.h b/arch/arm/mach-imx/include/mach/habv4-imx6-gencsf.h
index 2961b97b79..17c4d79567 100644
--- a/arch/arm/mach-imx/include/mach/habv4-imx6-gencsf.h
+++ b/arch/arm/mach-imx/include/mach/habv4-imx6-gencsf.h
@@ -29,7 +29,7 @@ hab [Authenticate CSF]
hab [Unlock]
hab Engine = CAAM
-hab Features = RNG
+hab Features = RNG, MID
hab [Install Key]
/* verification key index in key store (0, 2...4) */
diff --git a/arch/arm/mach-imx/include/mach/habv4-imx8-gencsf.h b/arch/arm/mach-imx/include/mach/habv4-imx8-gencsf.h
index 9ed6893988..a3917cc74f 100644
--- a/arch/arm/mach-imx/include/mach/habv4-imx8-gencsf.h
+++ b/arch/arm/mach-imx/include/mach/habv4-imx8-gencsf.h
@@ -29,7 +29,7 @@ hab [Authenticate CSF]
hab [Unlock]
hab Engine = CAAM
-hab Features = RNG
+hab Features = RNG, MID
hab [Install Key]
/* verification key index in key store (0, 2...4) */
--
2.26.2
_______________________________________________
barebox mailing list
barebox@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/barebox
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [PATCH] ARM: i.MX: enable Master Identifier Unlock
2020-05-28 12:56 [PATCH] ARM: i.MX: enable Master Identifier Unlock Rouven Czerwinski
@ 2020-06-02 6:24 ` Sascha Hauer
0 siblings, 0 replies; 2+ messages in thread
From: Sascha Hauer @ 2020-06-02 6:24 UTC (permalink / raw)
To: Rouven Czerwinski; +Cc: barebox
On Thu, May 28, 2020 at 02:56:11PM +0200, Rouven Czerwinski wrote:
> By default the HAB locks the Master Identifier (MID) to preconfigured
> values. This is not a problem if Linux is running in the secure world,
> however when running a secure world operating system such as OP-TEE, the
> MID configuration should be done by the secure world operating system.
>
> This causes no regressions for systems using no secure world operating
> systems, since no MID value indicates that all normal/secure world
> entities can access the peripherals supporting the MID.
>
> Signed-off-by: Rouven Czerwinski <r.czerwinski@pengutronix.de>
> ---
> arch/arm/mach-imx/include/mach/habv4-imx6-gencsf.h | 2 +-
> arch/arm/mach-imx/include/mach/habv4-imx8-gencsf.h | 2 +-
> 2 files changed, 2 insertions(+), 2 deletions(-)
Applied, thanks
Sascha
--
Pengutronix e.K. | |
Steuerwalder Str. 21 | http://www.pengutronix.de/ |
31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |
_______________________________________________
barebox mailing list
barebox@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/barebox
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2020-06-02 6:24 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-05-28 12:56 [PATCH] ARM: i.MX: enable Master Identifier Unlock Rouven Czerwinski
2020-06-02 6:24 ` Sascha Hauer
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox