Gitiles
Code Review Sign In
git01.mediatek.com / filogic / atf / 29d6856c36e1374229a6cf257c17712804dc389e
commit29d6856c36e1374229a6cf257c17712804dc389e[log] [tgz]
authorStefan Kerkmann <s.kerkmann@pengutronix.de>Mon Mar 04 11:54:37 2024 +0100
committerStefan Kerkmann <s.kerkmann@pengutronix.de>Tue Mar 12 17:36:33 2024 +0100
tree37bfbcda848d829fbb05b966426ada9375a488c4
parent3dc50cad05b18e9cef69c19e74752c06d2a85696 [diff]
feat(imx8mp): set and lock almost all peripherals as non-secure

This sets and locks all peripheral type-1 masters, except CAAM, access
as non-secure, so that they can't access secure world resources from the
normal world.

The CAAM itself is TrustZone aware and handles memory access between the
normal world and the secure world on its own. Pinning it as non-secure
access results in bus aborts if the secure memory region is protected by
the TZASC380.

Change-Id: Iedf3d67481dc35d56aa7b291749b999a56d6e85e
Signed-off-by: Stefan Kerkmann <s.kerkmann@pengutronix.de>
1 file changed
tree: 37bfbcda848d829fbb05b966426ada9375a488c4
  1. .husky/
  2. bl1/
  3. bl2/
  4. bl2u/
  5. bl31/
  6. bl32/
  7. common/
  8. docs/
  9. drivers/
  10. fdts/
  11. include/
  12. lib/
  13. licenses/
  14. make_helpers/
  15. plat/
  16. services/
  17. tools/
  18. .checkpatch.conf
  19. .commitlintrc.js
  20. .cz.json
  21. .editorconfig
  22. .gitignore
  23. .gitreview
  24. .nvmrc
  25. .readthedocs.yaml
  26. .versionrc.cjs
  27. changelog.yaml
  28. dco.txt
  29. license.rst
  30. Makefile
  31. package-lock.json
  32. package.json
  33. poetry.lock
  34. pyproject.toml
  35. readme.rst