secure_boot: enable chain of trust for ARM platforms Chain of Trust is enabled for ARM platforms (LS1021 and LS1043). In board_late_init(), fsl_setenv_chain_of_trust() is called which will perform the following: - If boot mode is non-secure, return (No Change) - If boot mode is secure, set the following environmet variables: bootdelay = 0 (To disable Boot Prompt) bootcmd = CONFIG_CHAIN_BOOT_CMD (Validate and execute Boot script) Signed-off-by: Aneesh Bansal <aneesh.bansal@nxp.com> Acked-by: Ruchika Gupta <ruchika.gupta@nxp.com> Reviewed-by: York Sun <york.sun@nxp.com>

commit: 39d5b3b4b23bf4b7831d2f91c37863363c47dc37 [log] [tgz]
author: Aneesh Bansal <aneesh.bansal@nxp.com> Fri Jan 22 16:37:26 2016 +0530
committer: York Sun <york.sun@nxp.com> Wed Jan 27 08:12:49 2016 -0800
tree: 8498d20c471b0fec63aa95a1250b0e1d08d35130
parent: c4713ec44daad13c88a8fa70cb3384d0e5831bb6 [diff] [blame]
diff --git a/arch/arm/cpu/armv8/fsl-layerscape/soc.c b/arch/arm/cpu/armv8/fsl-layerscape/soc.c
index 23d6b73..d97a445 100644
--- a/arch/arm/cpu/armv8/fsl-layerscape/soc.c
+++ b/arch/arm/cpu/armv8/fsl-layerscape/soc.c

@@ -12,6 +12,9 @@
 #include <asm/io.h>
 #include <asm/global_data.h>
 #include <asm/arch-fsl-layerscape/config.h>
+#ifdef CONFIG_CHAIN_OF_TRUST
+#include <fsl_validate.h>
+#endif
 
 DECLARE_GLOBAL_DATA_PTR;
 
@@ -241,6 +244,9 @@
 #ifdef CONFIG_SCSI_AHCI_PLAT
 	sata_init();
 #endif
+#ifdef CONFIG_CHAIN_OF_TRUST
+	fsl_setenv_chain_of_trust();
+#endif
 
 	return 0;
 }
commit	39d5b3b4b23bf4b7831d2f91c37863363c47dc37	[log] [tgz]
author	Aneesh Bansal <aneesh.bansal@nxp.com>	Fri Jan 22 16:37:26 2016 +0530
committer	York Sun <york.sun@nxp.com>	Wed Jan 27 08:12:49 2016 -0800
tree	8498d20c471b0fec63aa95a1250b0e1d08d35130
parent	c4713ec44daad13c88a8fa70cb3384d0e5831bb6 [diff] [blame]