Skip to content

GitLab

Switch branch/tag
Find file Normal viewHistoryPermalink
tbbr_cot.c 20.3 KB
Newer Older
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
1 
/*
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
2 
 * Copyright (c) 2015-2019, ARM Limited and Contributors. All rights reserved.
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
3 
 *
dp-arm's avatar
Use SPDX license identifiers    
dp-arm committed
4 
 * SPDX-License-Identifier: BSD-3-Clause
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
5
6 
 */
Isla Mitchell's avatar
Fix order of #includes    
Isla Mitchell committed
7
8 
#include <stddef.h>
Antonio Nino Diaz's avatar
Sanitise includes across codebase    
Antonio Nino Diaz committed
9
10
11 
#include <platform_def.h>

#include <drivers/auth/auth_mod.h>
Masahiro Yamada's avatar
cert: move platform_oid.h to include/tools_share for all platforms    
Masahiro Yamada committed
12 
#if USE_TBBR_DEFS
Antonio Nino Diaz's avatar
Sanitise includes across codebase    
Antonio Nino Diaz committed
13 
#include <tools_share/tbbr_oid.h>
Masahiro Yamada's avatar
cert: move platform_oid.h to include/tools_share for all platforms    
Masahiro Yamada committed
14 
#else
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
15 
#include <platform_oid.h>
Masahiro Yamada's avatar
cert: move platform_oid.h to include/tools_share for all platforms    
Masahiro Yamada committed
16 
#endif
Isla Mitchell's avatar
Fix order of #includes    
Isla Mitchell committed
17
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
18
19
20
21
22 

/*
 * Maximum key and hash sizes (in DER format)
 */
#define PK_DER_LEN			294
Qixiang Xu's avatar
tbbr: Add build flag HASH_ALG to let the user to select the SHA    
Qixiang Xu committed
23 
#define HASH_DER_LEN			83
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
24
25
26
27
28
29 

/*
 * The platform must allocate buffers to store the authentication parameters
 * extracted from the certificates. In this case, because of the way the CoT is
 * established, we can reuse some of the buffers on different stages
 */
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
30
Juan Castillo's avatar
TBB: apply TBBR naming convention to certificates and extensions    
Juan Castillo committed
31 
static unsigned char tb_fw_hash_buf[HASH_DER_LEN];
Soby Mathew's avatar
Dynamic cfg: Add HW and TB_FW configs to CoT    
Soby Mathew committed
32
33 
static unsigned char tb_fw_config_hash_buf[HASH_DER_LEN];
static unsigned char hw_config_hash_buf[HASH_DER_LEN];
Juan Castillo's avatar
TBB: apply TBBR naming convention to certificates and extensions    
Juan Castillo committed
34 
static unsigned char scp_fw_hash_buf[HASH_DER_LEN];
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
35
36
37 
static unsigned char nt_world_bl_hash_buf[HASH_DER_LEN];

#ifdef IMAGE_BL2
Juan Castillo's avatar
TBB: apply TBBR naming convention to certificates and extensions    
Juan Castillo committed
38
39 
static unsigned char soc_fw_hash_buf[HASH_DER_LEN];
static unsigned char tos_fw_hash_buf[HASH_DER_LEN];
Summer Qin's avatar
Support Trusted OS firmware extra images in TF tools    
Summer Qin committed
40
41 
static unsigned char tos_fw_extra1_hash_buf[HASH_DER_LEN];
static unsigned char tos_fw_extra2_hash_buf[HASH_DER_LEN];
Juan Castillo's avatar
TBB: apply TBBR naming convention to certificates and extensions    
Juan Castillo committed
42
43
44 
static unsigned char trusted_world_pk_buf[PK_DER_LEN];
static unsigned char non_trusted_world_pk_buf[PK_DER_LEN];
static unsigned char content_pk_buf[PK_DER_LEN];
Soby Mathew's avatar
Dynamic cfg: Enable support on CoT for other configs    
Soby Mathew committed
45
46
47 
static unsigned char soc_fw_config_hash_buf[HASH_DER_LEN];
static unsigned char tos_fw_config_hash_buf[HASH_DER_LEN];
static unsigned char nt_fw_config_hash_buf[HASH_DER_LEN];
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
48 
#endif
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
49
50
51
52 

/*
 * Parameter type descriptors
 */
Juan Castillo's avatar
TBB: add non-volatile counter support    
Juan Castillo committed
53
54
55 
static auth_param_type_desc_t trusted_nv_ctr = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_NV_CTR, TRUSTED_FW_NVCOUNTER_OID);
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
56
57
58
59
60
61
62
63
64 
static auth_param_type_desc_t subject_pk = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_PUB_KEY, 0);
static auth_param_type_desc_t sig = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_SIG, 0);
static auth_param_type_desc_t sig_alg = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_SIG_ALG, 0);
static auth_param_type_desc_t raw_data = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_RAW_DATA, 0);
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83 

static auth_param_type_desc_t tb_fw_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, TRUSTED_BOOT_FW_HASH_OID);
static auth_param_type_desc_t tb_fw_config_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, TRUSTED_BOOT_FW_CONFIG_HASH_OID);
static auth_param_type_desc_t hw_config_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, HW_CONFIG_HASH_OID);
#ifdef IMAGE_BL1
static auth_param_type_desc_t scp_bl2u_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, SCP_FWU_CFG_HASH_OID);
static auth_param_type_desc_t bl2u_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, AP_FWU_CFG_HASH_OID);
static auth_param_type_desc_t ns_bl2u_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, FWU_HASH_OID);
#endif /* IMAGE_BL1 */

#ifdef IMAGE_BL2
static auth_param_type_desc_t non_trusted_nv_ctr = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_NV_CTR, NON_TRUSTED_FW_NVCOUNTER_OID);
Juan Castillo's avatar
TBB: apply TBBR naming convention to certificates and extensions    
Juan Castillo committed
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99 
static auth_param_type_desc_t trusted_world_pk = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_PUB_KEY, TRUSTED_WORLD_PK_OID);
static auth_param_type_desc_t non_trusted_world_pk = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_PUB_KEY, NON_TRUSTED_WORLD_PK_OID);
static auth_param_type_desc_t scp_fw_content_pk = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_PUB_KEY, SCP_FW_CONTENT_CERT_PK_OID);
static auth_param_type_desc_t soc_fw_content_pk = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_PUB_KEY, SOC_FW_CONTENT_CERT_PK_OID);
static auth_param_type_desc_t tos_fw_content_pk = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_PUB_KEY, TRUSTED_OS_FW_CONTENT_CERT_PK_OID);
static auth_param_type_desc_t nt_fw_content_pk = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_PUB_KEY, NON_TRUSTED_FW_CONTENT_CERT_PK_OID);
static auth_param_type_desc_t scp_fw_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, SCP_FW_HASH_OID);
static auth_param_type_desc_t soc_fw_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, SOC_AP_FW_HASH_OID);
Soby Mathew's avatar
Dynamic cfg: Enable support on CoT for other configs    
Soby Mathew committed
100
101 
static auth_param_type_desc_t soc_fw_config_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, SOC_FW_CONFIG_HASH_OID);
Juan Castillo's avatar
TBB: apply TBBR naming convention to certificates and extensions    
Juan Castillo committed
102
103 
static auth_param_type_desc_t tos_fw_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, TRUSTED_OS_FW_HASH_OID);
Soby Mathew's avatar
Dynamic cfg: Enable support on CoT for other configs    
Soby Mathew committed
104
105 
static auth_param_type_desc_t tos_fw_config_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, TRUSTED_OS_FW_CONFIG_HASH_OID);
Summer Qin's avatar
Support Trusted OS firmware extra images in TF tools    
Summer Qin committed
106
107
108
109 
static auth_param_type_desc_t tos_fw_extra1_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, TRUSTED_OS_FW_EXTRA1_HASH_OID);
static auth_param_type_desc_t tos_fw_extra2_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, TRUSTED_OS_FW_EXTRA2_HASH_OID);
Juan Castillo's avatar
TBB: apply TBBR naming convention to certificates and extensions    
Juan Castillo committed
110
111 
static auth_param_type_desc_t nt_world_bl_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, NON_TRUSTED_WORLD_BOOTLOADER_HASH_OID);
Soby Mathew's avatar
Dynamic cfg: Enable support on CoT for other configs    
Soby Mathew committed
112
113 
static auth_param_type_desc_t nt_fw_config_hash = AUTH_PARAM_TYPE_DESC(
		AUTH_PARAM_HASH, NON_TRUSTED_FW_CONFIG_HASH_OID);
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
114
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
115
116
117 
#endif /* IMAGE_BL2 */
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
118
119
120 
	/*
	 * BL2
	 */
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
121
122
123
124 
static const auth_img_desc_t trusted_boot_fw_cert = {
	.img_id = TRUSTED_BOOT_FW_CERT_ID,
	.img_type = IMG_CERT,
	.parent = NULL,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
125 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
126
127
128
129
130
131
132 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &subject_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
133
134 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
135
136
137
138
139 
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &trusted_nv_ctr,
				.plat_nv_ctr = &trusted_nv_ctr
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
140
141
142 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
143 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162 
		[0] = {
			.type_desc = &tb_fw_hash,
			.data = {
				.ptr = (void *)tb_fw_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
			}
		},
		[1] = {
			.type_desc = &tb_fw_config_hash,
			.data = {
				.ptr = (void *)tb_fw_config_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
			}
		},
		[2] = {
			.type_desc = &hw_config_hash,
			.data = {
				.ptr = (void *)hw_config_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
163
164 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
165
166
167
168
169
170
171 
	}
	};
#ifdef IMAGE_BL1
static const auth_img_desc_t bl2_image = {
	.img_id = BL2_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &trusted_boot_fw_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
172 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
173
174
175
176
177 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &tb_fw_hash
Soby Mathew's avatar
Dynamic cfg: Add HW and TB_FW configs to CoT    
Soby Mathew committed
178
179 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
180
181
182
183
184
185
186
187 
	}
};
#endif /* IMAGE_BL1 */
/* HW Config */
static const auth_img_desc_t hw_config = {
	.img_id = HW_CONFIG_ID,
	.img_type = IMG_RAW,
	.parent = &trusted_boot_fw_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
188 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
189
190
191
192
193 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &hw_config_hash
Soby Mathew's avatar
Dynamic cfg: Add HW and TB_FW configs to CoT    
Soby Mathew committed
194
195 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
196
197
198
199
200
201
202
203 
	}
};
/* TB FW Config */
#ifdef IMAGE_BL1
static const auth_img_desc_t tb_fw_config = {
	.img_id = TB_FW_CONFIG_ID,
	.img_type = IMG_RAW,
	.parent = &trusted_boot_fw_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
204 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &tb_fw_config_hash
			}
		}
	}
};
#endif /* IMAGE_BL1 */
#ifdef IMAGE_BL2
/*
 * Trusted key certificate
 */
static const auth_img_desc_t trusted_key_cert = {
	.img_id = TRUSTED_KEY_CERT_ID,
	.img_type = IMG_CERT,
	.parent = NULL,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
223 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
224
225
226
227
228
229
230 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &subject_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
231
232 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
233
234
235
236
237 
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &trusted_nv_ctr,
				.plat_nv_ctr = &trusted_nv_ctr
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
238
239
240 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
241 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
242
243
244
245
246 
		[0] = {
			.type_desc = &trusted_world_pk,
			.data = {
				.ptr = (void *)trusted_world_pk_buf,
				.len = (unsigned int)PK_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
247
248 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
249
250
251
252
253 
		[1] = {
			.type_desc = &non_trusted_world_pk,
			.data = {
				.ptr = (void *)non_trusted_world_pk_buf,
				.len = (unsigned int)PK_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
254
255 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
256
257
258
259
260
261
262
263
264 
	}
};
/*
 * SCP Firmware
 */
static const auth_img_desc_t scp_fw_key_cert = {
	.img_id = SCP_FW_KEY_CERT_ID,
	.img_type = IMG_CERT,
	.parent = &trusted_key_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
265 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
266
267
268
269
270
271
272 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &trusted_world_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
273
274 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
275
276
277
278
279 
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &trusted_nv_ctr,
				.plat_nv_ctr = &trusted_nv_ctr
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
280
281
282 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
283 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
284
285
286
287
288 
		[0] = {
			.type_desc = &scp_fw_content_pk,
			.data = {
				.ptr = (void *)content_pk_buf,
				.len = (unsigned int)PK_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
289
290 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
291
292
293
294
295
296 
	}
};
static const auth_img_desc_t scp_fw_content_cert = {
	.img_id = SCP_FW_CONTENT_CERT_ID,
	.img_type = IMG_CERT,
	.parent = &scp_fw_key_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
297 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
298
299
300
301
302
303
304 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &scp_fw_content_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
305
306 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
307
308
309
310
311 
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &trusted_nv_ctr,
				.plat_nv_ctr = &trusted_nv_ctr
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
312
313
314 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
315 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
316
317
318
319
320
321
322
323
324
325
326
327
328 
		[0] = {
			.type_desc = &scp_fw_hash,
			.data = {
				.ptr = (void *)scp_fw_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
			}
		}
	}
};
static const auth_img_desc_t scp_bl2_image = {
	.img_id = SCP_BL2_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &scp_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
329 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &scp_fw_hash
			}
		}
	}
};
/*
 * SoC Firmware
 */
static const auth_img_desc_t soc_fw_key_cert = {
	.img_id = SOC_FW_KEY_CERT_ID,
	.img_type = IMG_CERT,
	.parent = &trusted_key_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
346 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
347
348
349
350
351
352
353 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &trusted_world_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
354
355 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
356
357
358
359
360 
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &trusted_nv_ctr,
				.plat_nv_ctr = &trusted_nv_ctr
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
361
362
363 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
364 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
365
366
367
368
369 
		[0] = {
			.type_desc = &soc_fw_content_pk,
			.data = {
				.ptr = (void *)content_pk_buf,
				.len = (unsigned int)PK_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
370
371 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
372
373
374
375
376
377 
	}
};
static const auth_img_desc_t soc_fw_content_cert = {
	.img_id = SOC_FW_CONTENT_CERT_ID,
	.img_type = IMG_CERT,
	.parent = &soc_fw_key_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
378 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
379
380
381
382
383
384
385
386
387
388
389
390
391
392 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &soc_fw_content_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
			}
		},
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &trusted_nv_ctr,
				.plat_nv_ctr = &trusted_nv_ctr
Soby Mathew's avatar
Dynamic cfg: Enable support on CoT for other configs    
Soby Mathew committed
393
394
395 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
396 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
397
398
399
400
401 
		[0] = {
			.type_desc = &soc_fw_hash,
			.data = {
				.ptr = (void *)soc_fw_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
402
403 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
404
405
406
407
408 
		[1] = {
			.type_desc = &soc_fw_config_hash,
			.data = {
				.ptr = (void *)soc_fw_config_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
409
410 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
411
412
413
414
415
416 
	}
};
static const auth_img_desc_t bl31_image = {
	.img_id = BL31_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &soc_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
417 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
418
419
420
421
422
423
424
425
426
427
428
429
430
431 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &soc_fw_hash
			}
		}
	}
};
/* SOC FW Config */
static const auth_img_desc_t soc_fw_config = {
	.img_id = SOC_FW_CONFIG_ID,
	.img_type = IMG_RAW,
	.parent = &soc_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
432 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &soc_fw_config_hash
			}
		}
	}
};
/*
 * Trusted OS Firmware
 */
static const auth_img_desc_t trusted_os_fw_key_cert = {
	.img_id = TRUSTED_OS_FW_KEY_CERT_ID,
	.img_type = IMG_CERT,
	.parent = &trusted_key_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
449 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
450
451
452
453
454
455
456 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &trusted_world_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
457
458 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
459
460
461
462
463 
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &trusted_nv_ctr,
				.plat_nv_ctr = &trusted_nv_ctr
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
464
465
466 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
467 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
468
469
470
471
472 
		[0] = {
			.type_desc = &tos_fw_content_pk,
			.data = {
				.ptr = (void *)content_pk_buf,
				.len = (unsigned int)PK_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
473
474 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
475
476
477
478
479
480 
	}
};
static const auth_img_desc_t trusted_os_fw_content_cert = {
	.img_id = TRUSTED_OS_FW_CONTENT_CERT_ID,
	.img_type = IMG_CERT,
	.parent = &trusted_os_fw_key_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
481 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
482
483
484
485
486
487
488
489
490
491
492
493
494
495 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &tos_fw_content_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
			}
		},
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &trusted_nv_ctr,
				.plat_nv_ctr = &trusted_nv_ctr
Summer Qin's avatar
Support Trusted OS firmware extra images in TF tools    
Summer Qin committed
496
497
498 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
499 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525 
		[0] = {
			.type_desc = &tos_fw_hash,
			.data = {
				.ptr = (void *)tos_fw_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
			}
		},
		[1] = {
			.type_desc = &tos_fw_extra1_hash,
			.data = {
				.ptr = (void *)tos_fw_extra1_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
			}
		},
		[2] = {
			.type_desc = &tos_fw_extra2_hash,
			.data = {
				.ptr = (void *)tos_fw_extra2_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
			}
		},
		[3] = {
			.type_desc = &tos_fw_config_hash,
			.data = {
				.ptr = (void *)tos_fw_config_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
Summer Qin's avatar
Support Trusted OS firmware extra images in TF tools    
Summer Qin committed
526
527 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
528
529
530
531
532
533 
	}
};
static const auth_img_desc_t bl32_image = {
	.img_id = BL32_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &trusted_os_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
534 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
535
536
537
538
539 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &tos_fw_hash
Soby Mathew's avatar
Dynamic cfg: Enable support on CoT for other configs    
Soby Mathew committed
540
541 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
542
543
544
545
546
547 
	}
};
static const auth_img_desc_t bl32_extra1_image = {
	.img_id = BL32_EXTRA1_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &trusted_os_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
548 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
549
550
551
552
553
554
555
556
557
558
559
560
561 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &tos_fw_extra1_hash
			}
		}
	}
};
static const auth_img_desc_t bl32_extra2_image = {
	.img_id = BL32_EXTRA2_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &trusted_os_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
562 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
563
564
565
566
567
568
569
570
571
572
573
574
575
576 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &tos_fw_extra2_hash
			}
		}
	}
};
/* TOS FW Config */
static const auth_img_desc_t tos_fw_config = {
	.img_id = TOS_FW_CONFIG_ID,
	.img_type = IMG_RAW,
	.parent = &trusted_os_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
577 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &tos_fw_config_hash
			}
		}
	}
};
/*
 * Non-Trusted Firmware
 */
static const auth_img_desc_t non_trusted_fw_key_cert = {
	.img_id = NON_TRUSTED_FW_KEY_CERT_ID,
	.img_type = IMG_CERT,
	.parent = &trusted_key_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
594 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
595
596
597
598
599
600
601 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &non_trusted_world_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
602
603 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
604
605
606
607
608 
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &non_trusted_nv_ctr,
				.plat_nv_ctr = &non_trusted_nv_ctr
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
609
610
611 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
612 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
613
614
615
616
617
618
619
620
621
622
623
624
625 
		[0] = {
			.type_desc = &nt_fw_content_pk,
			.data = {
				.ptr = (void *)content_pk_buf,
				.len = (unsigned int)PK_DER_LEN
			}
		}
	}
};
static const auth_img_desc_t non_trusted_fw_content_cert = {
	.img_id = NON_TRUSTED_FW_CONTENT_CERT_ID,
	.img_type = IMG_CERT,
	.parent = &non_trusted_fw_key_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
626 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
627
628
629
630
631
632
633 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &nt_fw_content_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
634
635 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
636
637
638
639
640 
		[1] = {
			.type = AUTH_METHOD_NV_CTR,
			.param.nv_ctr = {
				.cert_nv_ctr = &non_trusted_nv_ctr,
				.plat_nv_ctr = &non_trusted_nv_ctr
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
641
642
643 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
644 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
645
646
647
648
649
650
651
652
653
654
655
656 
		[0] = {
			.type_desc = &nt_world_bl_hash,
			.data = {
				.ptr = (void *)nt_world_bl_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
			}
		},
		[1] = {
			.type_desc = &nt_fw_config_hash,
			.data = {
				.ptr = (void *)nt_fw_config_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
657
658 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
659
660
661
662
663
664 
	}
};
static const auth_img_desc_t bl33_image = {
	.img_id = BL33_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &non_trusted_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
665 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
666
667
668
669
670
671
672
673
674
675
676
677
678
679 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &nt_world_bl_hash
			}
		}
	}
};
/* NT FW Config */
static const auth_img_desc_t nt_fw_config = {
	.img_id = NT_FW_CONFIG_ID,
	.img_type = IMG_RAW,
	.parent = &non_trusted_fw_content_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
680 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &nt_fw_config_hash
			}
		}
	}
};
#else  /* IMAGE_BL2 */
/*
 * FWU auth descriptor.
 */
static const auth_img_desc_t fwu_cert = {
	.img_id = FWU_CERT_ID,
	.img_type = IMG_CERT,
	.parent = NULL,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
698 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
699
700
701
702
703
704
705 
		[0] = {
			.type = AUTH_METHOD_SIG,
			.param.sig = {
				.pk = &subject_pk,
				.sig = &sig,
				.alg = &sig_alg,
				.data = &raw_data
Soby Mathew's avatar
Dynamic cfg: Enable support on CoT for other configs    
Soby Mathew committed
706
707
708 
			}
		}
	},
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
709 
	.authenticated_data = (const auth_param_desc_t[COT_MAX_VERIFIED_PARAMS]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
710
711
712
713
714 
		[0] = {
			.type_desc = &scp_bl2u_hash,
			.data = {
				.ptr = (void *)scp_fw_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
Yatharth Kochar's avatar
FWU: Add Generic Firmware Update framework support in BL1    
Yatharth Kochar committed
715
716 
			}
		},
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
717
718
719
720
721
722
723
724
725
726
727
728 
		[1] = {
			.type_desc = &bl2u_hash,
			.data = {
				.ptr = (void *)tb_fw_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
			}
		},
		[2] = {
			.type_desc = &ns_bl2u_hash,
			.data = {
				.ptr = (void *)nt_world_bl_hash_buf,
				.len = (unsigned int)HASH_DER_LEN
Yatharth Kochar's avatar
FWU: Add Generic Firmware Update framework support in BL1    
Yatharth Kochar committed
729
730 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
731
732
733
734
735
736
737
738
739 
	}
};
/*
 * SCP_BL2U
 */
static const auth_img_desc_t scp_bl2u_image = {
	.img_id = SCP_BL2U_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &fwu_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
740 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
741
742
743
744
745 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &scp_bl2u_hash
Yatharth Kochar's avatar
FWU: Add Generic Firmware Update framework support in BL1    
Yatharth Kochar committed
746
747 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
748
749
750
751
752
753
754
755
756 
	}
};
/*
 * BL2U
 */
static const auth_img_desc_t bl2u_image = {
	.img_id = BL2U_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &fwu_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
757 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
758
759
760
761
762 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &bl2u_hash
Yatharth Kochar's avatar
FWU: Add Generic Firmware Update framework support in BL1    
Yatharth Kochar committed
763
764 
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
765
766
767
768
769
770
771
772
773 
	}
};
/*
 * NS_BL2U
 */
static const auth_img_desc_t ns_bl2u_image = {
	.img_id = NS_BL2U_IMAGE_ID,
	.img_type = IMG_RAW,
	.parent = &fwu_cert,
Joel Hutton's avatar
cot-desc: optimise memory further    
Joel Hutton committed
774 
	.img_auth_methods = (const auth_method_desc_t[AUTH_METHOD_NUM]) {
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
775
776
777
778
779 
		[0] = {
			.type = AUTH_METHOD_HASH,
			.param.hash = {
				.data = &raw_data,
				.hash = &ns_bl2u_hash
Yatharth Kochar's avatar
FWU: Add Generic Firmware Update framework support in BL1    
Yatharth Kochar committed
780
781
782 
				}
			}
		}
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821 
	};
#endif /* IMAGE_BL2 */
/*
 * TBBR Chain of trust definition
 */

#ifdef IMAGE_BL1
static const auth_img_desc_t * const cot_desc[] = {
	[TRUSTED_BOOT_FW_CERT_ID]		=	&trusted_boot_fw_cert,
	[BL2_IMAGE_ID]				=	&bl2_image,
	[HW_CONFIG_ID]				=	&hw_config,
	[TB_FW_CONFIG_ID]			=	&tb_fw_config,
	[FWU_CERT_ID]				=	&fwu_cert,
	[SCP_BL2U_IMAGE_ID]			=	&scp_bl2u_image,
	[BL2U_IMAGE_ID]				=	&bl2u_image,
	[NS_BL2U_IMAGE_ID]			=	&ns_bl2u_image
};
#else /* IMAGE_BL2 */
static const auth_img_desc_t * const cot_desc[] = {
	[TRUSTED_BOOT_FW_CERT_ID]		=	&trusted_boot_fw_cert,
	[HW_CONFIG_ID]				=	&hw_config,
	[TRUSTED_KEY_CERT_ID]			=	&trusted_key_cert,
	[SCP_FW_KEY_CERT_ID]			=	&scp_fw_key_cert,
	[SCP_FW_CONTENT_CERT_ID]		=	&scp_fw_content_cert,
	[SCP_BL2_IMAGE_ID]			=	&scp_bl2_image,
	[SOC_FW_KEY_CERT_ID]			=	&soc_fw_key_cert,
	[SOC_FW_CONTENT_CERT_ID]		=	&soc_fw_content_cert,
	[BL31_IMAGE_ID]				=	&bl31_image,
	[SOC_FW_CONFIG_ID]			=	&soc_fw_config,
	[TRUSTED_OS_FW_KEY_CERT_ID]		=	&trusted_os_fw_key_cert,
	[TRUSTED_OS_FW_CONTENT_CERT_ID]		=	&trusted_os_fw_content_cert,
	[BL32_IMAGE_ID]				=	&bl32_image,
	[BL32_EXTRA1_IMAGE_ID]			=	&bl32_extra1_image,
	[BL32_EXTRA2_IMAGE_ID]			=	&bl32_extra2_image,
	[TOS_FW_CONFIG_ID]			=	&tos_fw_config,
	[NON_TRUSTED_FW_KEY_CERT_ID]		=	&non_trusted_fw_key_cert,
	[NON_TRUSTED_FW_CONTENT_CERT_ID]	=	&non_trusted_fw_content_cert,
	[BL33_IMAGE_ID]				=	&bl33_image,
	[NT_FW_CONFIG_ID]			=	&nt_fw_config,
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
822 
};
Joel Hutton's avatar
Reduce memory needed for CoT description    
Joel Hutton committed
823 
#endif
Juan Castillo's avatar
TBB: add TBBR Chain of Trust    
Juan Castillo committed
824
825
826 

/* Register the CoT in the authentication module */
REGISTER_COT(cot_desc);