Skip to content

GitLab

Switch branch/tag
Find file Normal viewHistoryPermalink
fip-secure-partitions.puml 2.12 KB
Newer Older
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15 
/'
 ' Copyright (c) 2020, ARM Limited and Contributors. All rights reserved.
 '
 ' SPDX-License-Identifier: BSD-3-Clause
 '/

@startuml

folder SP_vendor_1 {
 artifact sp_binary_1
 artifact sp_manifest_1 [
 sp_manifest_1
 ===
 UUID = xxx
 load_address = 0xaaa
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
16 
 owner = "Sip"
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
17
18
19
20
21
22
23
24
25
26
27 
 ...
 ]
}

folder SP_vendor_2 {
 artifact sp_binary_2
 artifact sp_manifest_2 [
 sp_manifest_2
 ===
 UUID = yyy
 load_address = 0xbbb
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
28 
 owner = "Plat"
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
29
30
31 
 ]
}
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47 
artifact tb_fw_config.dts [
 tb_fw_config.dts
 ----
 secure-partitions
 ===
 spkg_1 UUID
 spkg_1 load_address
 ---
 spkg_2 UUID
 spkg_2 load_address
 ---
 ...
 ===
 ...<rest of the nodes>
]
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66 
artifact config.json [
 SP_LAYOUT.json
 ===
 path to sp_binary_1
 path to sp_manifest_1
 ---
 path to sp_binary_2
 path to sp_manifest_2
 ---
 ...
]

control sp_mk_generator

artifact sp_gen [
 sp_gen.mk
 ===
 FDT_SOURCE = ...
 SPTOOL_ARGS = ...
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
67
68 
 FIP_ARGS = ...
 CRT_ARGS = ...
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
69
70
71
72
73 
]

control dtc
control sptool
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
74 
artifact tb_fw_config.dtb
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
75
76 

artifact spkg_1 [
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
77 
 sp1.pkg
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
78
79
80
81
82
83
84
85
86 
 ===
 <i>header</i>
 ---
 manifest
 ---
 binary
]

artifact spkg_2 [
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113 
 sp2.pkg
 ===
 <i>header</i>
 ---
 manifest
 ---
 binary
]

artifact signed_tb_fw_config.dtb [
 tb_fw_config.dtb (signed)
]

artifact signed_spkg_1 [
 sp1.pkg (signed)
 ===
 <i>header</i>
 ---
 manifest
 ---
 binary
 ---
 <i>signature</I>
]

artifact signed_spkg_2 [
 sp2.pkg (signed)
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
114
115
116
117
118
119 
 ===
 <i>header</i>
 ---
 manifest
 ---
 binary
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
120
121 
 ---
 <i>signature</I>
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
122
123 
]
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
124 
control crttool
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
125
126
127
128
129 
control fiptool

artifact fip [
 fip.bin
 ===
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
130 
 tb_fw_config.dtb (signed)
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
131
132
133 
 ---
 ...
 ---
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
134 
 sp1.pkg  (signed & SiP owned)
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
135 
 ---
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
136 
 sp2.pkg  (signed & Platform owned)
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
137
138
139
140
141
142
143
144 
 ---
 ...
]

config.json .up.> SP_vendor_1
config.json .up.> SP_vendor_2
config.json --> sp_mk_generator
sp_mk_generator --> sp_gen
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
145
146 
sp_gen --> fiptool
sp_gen --> cert_create
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
147 
sp_gen --> sptool
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
148
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
149
150
151 
sptool --> spkg_1
sptool --> spkg_2
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
152
153
154
155 
spkg_1 --> cert_create
spkg_2 --> cert_create
cert_create --> signed_spkg_1
cert_create --> signed_spkg_2
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
156
Manish V Badarkhe's avatar
docs: Update the FIP generation process using SP images    
Manish V Badarkhe committed
157
158
159
160
161
162
163
164 
tb_fw_config.dts --> dtc
dtc --> tb_fw_config.dtb
tb_fw_config.dtb --> cert_create
cert_create --> signed_tb_fw_config.dtb

signed_tb_fw_config.dtb --> fiptool
signed_spkg_1 -down-> fiptool
signed_spkg_2 -down-> fiptool
Olivier Deprez's avatar
doc: secure partition manager design    
Olivier Deprez committed
165
166
167 
fiptool -down-> fip

@enduml