Gitiles
Code Review Sign In
git01.mediatek.com / filogic / atf / f676ff3f64e43417887fc0a632aff1bc489ead05
commitf676ff3f64e43417887fc0a632aff1bc489ead05[log] [tgz]
authorStefan Kerkmann <s.kerkmann@pengutronix.de>Mon Mar 04 12:00:24 2024 +0100
committerStefan Kerkmann <s.kerkmann@pengutronix.de>Tue Mar 12 17:36:11 2024 +0100
treebb7dde3e6a3f49be42d29a117c7249e9a356fae5
parentb8c107c89f92cc8613ed7e38c80ac26711e0830f [diff]
feat(imx8mm): set and lock almost all peripherals as non-secure

This sets and locks all peripheral type-1 masters, except CAAM, access
as non-secure, so that they can't access secure world resources from the
normal world.

The CAAM itself is TrustZone aware and handles memory access between the
normal world and the secure world on its own. Pinning it as non-secure
access results in bus aborts if the secure memory region is protected by
the TZASC380.

Change-Id: Idba4d8a491ccce0491489c61e73545baab1889c4
Signed-off-by: Stefan Kerkmann <s.kerkmann@pengutronix.de>
1 file changed
tree: bb7dde3e6a3f49be42d29a117c7249e9a356fae5
  1. .husky/
  2. bl1/
  3. bl2/
  4. bl2u/
  5. bl31/
  6. bl32/
  7. common/
  8. docs/
  9. drivers/
  10. fdts/
  11. include/
  12. lib/
  13. licenses/
  14. make_helpers/
  15. plat/
  16. services/
  17. tools/
  18. .checkpatch.conf
  19. .commitlintrc.js
  20. .cz.json
  21. .editorconfig
  22. .gitignore
  23. .gitreview
  24. .nvmrc
  25. .readthedocs.yaml
  26. .versionrc.cjs
  27. changelog.yaml
  28. dco.txt
  29. license.rst
  30. Makefile
  31. package-lock.json
  32. package.json
  33. poetry.lock
  34. pyproject.toml
  35. readme.rst