Startseite Erkunden Hilfe
Anmelden
OWEALs
/
arm-trusted-firmware
Mirror von https://github.com/ARM-software/arm-trusted-firmware
2
0
Fork 0
Dateien Issues 1 Wiki
Branch: master
Branches Tags
arm-trusted-fir...
/
plat
/
arm
/
board
/
common
/
board_common.mk

board_common.mk 4.9 KB
Permalink Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134 
  1. #
    2. 

  2. # Copyright (c) 2015-2023, Arm Limited and Contributors. All rights reserved.
    3. 

  3. #
    4. 

  4. # SPDX-License-Identifier: BSD-3-Clause
    5. 

  5. #
    6. 

  6. 

  7. PLAT_BL_COMMON_SOURCES	+=	drivers/arm/pl011/${ARCH}/pl011_console.S	\
    8. 

  8. 				plat/arm/board/common/${ARCH}/board_arm_helpers.S
    9. 

  9. 

  10. BL1_SOURCES		+=	drivers/cfi/v2m/v2m_flash.c
    11. 

  11. 

  12. BL2_SOURCES		+=	drivers/cfi/v2m/v2m_flash.c
    13. 

  13. 

  14. ifneq (${TRUSTED_BOARD_BOOT},0)
    15. 

  15. ARM_ROTPK_S = plat/arm/board/common/rotpk/arm_dev_rotpk.S
    16. 

  16. 

  17. # ROTPK hash location
    18. 

  18. ifeq (${ARM_ROTPK_LOCATION}, regs)
    19. 

  19. 	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_REGS_ID
    20. 

  20. else ifeq (${ARM_ROTPK_LOCATION}, devel_rsa)
    21. 

  21. 	CRYPTO_ALG=rsa
    22. 

  22. 	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_DEVEL_RSA_ID
    23. 

  23. 	ARM_ROTPK_HASH = plat/arm/board/common/rotpk/arm_rotpk_rsa_sha256.bin
    24. 

  24. $(eval $(call add_define_val,ARM_ROTPK_HASH,'"$(ARM_ROTPK_HASH)"'))
    25. 

  25. $(BUILD_PLAT)/bl2/arm_dev_rotpk.o : $(ARM_ROTPK_HASH)
    26. 

  26. $(warning Development keys support for FVP is deprecated. Use `regs` \
    27. 

  27. option instead)
    28. 

  28. else ifeq (${ARM_ROTPK_LOCATION}, devel_ecdsa)
    29. 

  29. 	CRYPTO_ALG=ec
    30. 

  30. 	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_DEVEL_ECDSA_ID
    31. 

  31. 	ARM_ROTPK_HASH = plat/arm/board/common/rotpk/arm_rotpk_ecdsa_sha256.bin
    32. 

  32. $(eval $(call add_define_val,ARM_ROTPK_HASH,'"$(ARM_ROTPK_HASH)"'))
    33. 

  33. $(BUILD_PLAT)/bl2/arm_dev_rotpk.o : $(ARM_ROTPK_HASH)
    34. 

  34. $(warning Development keys support for FVP is deprecated. Use `regs` \
    35. 

  35. option instead)
    36. 

  36. else ifeq (${ARM_ROTPK_LOCATION}, devel_full_dev_rsa_key)
    37. 

  37. 	CRYPTO_ALG=rsa
    38. 

  38. 	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_DEVEL_FULL_DEV_RSA_KEY_ID
    39. 

  39. 	ARM_ROTPK_S = plat/arm/board/common/rotpk/arm_full_dev_rsa_rotpk.S
    40. 

  40. $(warning Development keys support for FVP is deprecated. Use `regs` \
    41. 

  41. option instead)
    42. 

  42. else ifeq (${ARM_ROTPK_LOCATION}, devel_full_dev_ecdsa_key)
    43. 

  43. 	CRYPTO_ALG=ec
    44. 

  44. 	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_DEVEL_FULL_DEV_ECDSA_KEY_ID
    45. 

  45. ifeq (${KEY_SIZE},384)
    46. 

  46. 	ARM_ROTPK_S = plat/arm/board/common/rotpk/arm_full_dev_ecdsa_p384_rotpk.S
    47. 

  47. else
    48. 

  48. 	ARM_ROTPK_S = plat/arm/board/common/rotpk/arm_full_dev_ecdsa_p256_rotpk.S
    49. 

  49. endif
    50. 

  50. $(warning Development keys support for FVP is deprecated. Use `regs` \
    51. 

  51. option instead)
    52. 

  52. else
    53. 

  53. $(error "Unsupported ARM_ROTPK_LOCATION value")
    54. 

  54. endif
    55. 

  55. 

  56. $(eval $(call add_define,ARM_ROTPK_LOCATION_ID))
    57. 

  57. 

  58. ifeq (${ENABLE_RME}, 1)
    59. 

  59. COT	:=	cca
    60. 

  60. endif
    61. 

  61. 

  62. # Force generation of the new hash if ROT_KEY is specified
    63. 

  63. ifdef ROT_KEY
    64. 

  64. 	HASH_PREREQUISITES = $(ROT_KEY) FORCE
    65. 

  65. endif
    66. 

  66. 

  67. $(ARM_ROTPK_HASH) : $(HASH_PREREQUISITES)
    68. 

  68. ifndef ROT_KEY
    69. 

  69. 	$(error Cannot generate hash: no ROT_KEY defined)
    70. 

  70. endif
    71. 

  71. 	${OPENSSL_BIN_PATH}/openssl ${CRYPTO_ALG} -in $< -pubout -outform DER | \
    72. 

  72. 	${OPENSSL_BIN_PATH}/openssl dgst -sha256 -binary > $@
    73. 

  73. 

  74. # Certificate NV-Counters. Use values corresponding to tied off values in
    75. 

  75. # ARM development platforms
    76. 

  76. TFW_NVCTR_VAL	?=	31
    77. 

  77. NTFW_NVCTR_VAL	?=	223
    78. 

  78. # The CCA Non-Volatile Counter only exists on some Arm development platforms.
    79. 

  79. # On others, we mock it by aliasing it to the Trusted Firmware Non-Volatile counter,
    80. 

  80. # hence we set both counters to the same default value.
    81. 

  81. CCAFW_NVCTR_VAL	?=	31
    82. 

  82. 

  83. BL1_SOURCES		+=	plat/arm/board/common/board_arm_trusted_boot.c \
    84. 

  84. 				${ARM_ROTPK_S}
    85. 

  85. BL2_SOURCES		+=	plat/arm/board/common/board_arm_trusted_boot.c \
    86. 

  86. 				${ARM_ROTPK_S}
    87. 

  87. 

  88. # Allows platform code to provide implementation variants depending on the
    89. 

  89. # selected chain of trust.
    90. 

  90. $(eval $(call add_define,ARM_COT_${COT}))
    91. 

  91. 

  92. ifeq (${COT},dualroot)
    93. 

  93. # Platform Root of Trust key files.
    94. 

  94. ARM_PROT_KEY		:=	plat/arm/board/common/protpk/arm_protprivk_rsa.pem
    95. 

  95. ARM_PROTPK_HASH		:=	plat/arm/board/common/protpk/arm_protpk_rsa_sha256.bin
    96. 

  96. 

  97. # Provide the private key to cert_create tool. It needs it to sign the images.
    98. 

  98. PROT_KEY		:=	${ARM_PROT_KEY}
    99. 

  99. 

  100. $(eval $(call add_define_val,ARM_PROTPK_HASH,'"$(ARM_PROTPK_HASH)"'))
    101. 

  101. 

  102. BL1_SOURCES		+=	plat/arm/board/common/protpk/arm_dev_protpk.S
    103. 

  103. BL2_SOURCES		+=	plat/arm/board/common/protpk/arm_dev_protpk.S
    104. 

  104. 

  105. $(BUILD_PLAT)/bl1/arm_dev_protpk.o: $(ARM_PROTPK_HASH)
    106. 

  106. $(BUILD_PLAT)/bl2/arm_dev_protpk.o: $(ARM_PROTPK_HASH)
    107. 

  107. endif
    108. 

  108. 

  109. ifeq (${COT},cca)
    110. 

  110. # Platform and Secure World Root of Trust key files.
    111. 

  111. ARM_PROT_KEY		:=	plat/arm/board/common/protpk/arm_protprivk_rsa.pem
    112. 

  112. ARM_PROTPK_HASH		:=	plat/arm/board/common/protpk/arm_protpk_rsa_sha256.bin
    113. 

  113. ARM_SWD_ROT_KEY		:=	plat/arm/board/common/swd_rotpk/arm_swd_rotprivk_rsa.pem
    114. 

  114. ARM_SWD_ROTPK_HASH	:=	plat/arm/board/common/swd_rotpk/arm_swd_rotpk_rsa_sha256.bin
    115. 

  115. 

  116. # Provide the private keys to cert_create tool. It needs them to sign the images.
    117. 

  117. PROT_KEY		:=	${ARM_PROT_KEY}
    118. 

  118. SWD_ROT_KEY		:=	${ARM_SWD_ROT_KEY}
    119. 

  119. 

  120. $(eval $(call add_define_val,ARM_PROTPK_HASH,'"$(ARM_PROTPK_HASH)"'))
    121. 

  121. $(eval $(call add_define_val,ARM_SWD_ROTPK_HASH,'"$(ARM_SWD_ROTPK_HASH)"'))
    122. 

  122. 

  123. BL1_SOURCES		+=	plat/arm/board/common/protpk/arm_dev_protpk.S \
    124. 

  124. 				plat/arm/board/common/swd_rotpk/arm_dev_swd_rotpk.S
    125. 

  125. BL2_SOURCES		+=	plat/arm/board/common/protpk/arm_dev_protpk.S \
    126. 

  126. 				plat/arm/board/common/swd_rotpk/arm_dev_swd_rotpk.S
    127. 

  127. 

  128. $(BUILD_PLAT)/bl1/arm_dev_protpk.o: $(ARM_PROTPK_HASH)
    129. 

  129. $(BUILD_PLAT)/bl1/arm_dev_swd_rotpk.o: $(ARM_SWD_ROTPK_HASH)
    130. 

  130. $(BUILD_PLAT)/bl2/arm_dev_protpk.o: $(ARM_PROTPK_HASH)
    131. 

  131. $(BUILD_PLAT)/bl2/arm_dev_swd_rotpk.o: $(ARM_SWD_ROTPK_HASH)
    132. 

  132. endif
    133. 

  133. 

  134. endif
    135.