Gitiles
Code Review Sign In
git01.mediatek.com / filogic / atf / 2c9bff8e0587fc5b7a4b1cc2cf9fea601a6e2f94^1..2c9bff8e0587fc5b7a4b1cc2cf9fea601a6e2f94 / .
commit2c9bff8e0587fc5b7a4b1cc2cf9fea601a6e2f94[log] [tgz]
authorSandrine Bailleux <sandrine.bailleux@arm.com>Tue Jul 05 10:21:36 2022 +0200
committerTrustedFirmware Code Review <review@review.trustedfirmware.org>Tue Jul 05 10:21:36 2022 +0200
tree0c1fd814a792089311758441793e5da3c4a2f010
parent2a01e7343fffeb8ff9433ee1e46e187e35e65a7f [diff]
parent2af9c393d078e60508cf9c2a8944f86d793bcd6a [diff]
Merge "feat(arm): forbid running RME-enlightened BL31 from DRAM" into integration

diff --git a/plat/arm/common/arm_common.mk b/plat/arm/common/arm_common.mk
index 290b4ee..bd59ec0 100644
--- a/plat/arm/common/arm_common.mk
+++ b/plat/arm/common/arm_common.mk

@@ -73,6 +73,14 @@
 $(eval $(call assert_boolean,ARM_BL31_IN_DRAM))
 $(eval $(call add_define,ARM_BL31_IN_DRAM))
 
+# As per CCA security model, all root firmware must execute from on-chip secure
+# memory. This means we must not run BL31 from TZC-protected DRAM.
+ifeq (${ARM_BL31_IN_DRAM},1)
+  ifeq (${ENABLE_RME},1)
+    $(error "BL31 must not run from DRAM on RME-systems. Please set ARM_BL31_IN_DRAM to 0")
+  endif
+endif
+
 # Process ARM_PLAT_MT flag
 ARM_PLAT_MT			:=	0
 $(eval $(call assert_boolean,ARM_PLAT_MT))