From 0babea93d314159314c7d7094436b436d3261f2d Mon Sep 17 00:00:00 2001 From: Sandrine Bailleux Date: Tue, 27 May 2014 13:03:54 +0100 Subject: [PATCH] juno: Limit BL3-1 read/write access to SRAM At present BL3-1 has access to all of the SRAM, including regions that are mapped as read-only and non-cacheable by other firmware images. This patch restricts BL3-1 to only be able to read/write from memory used for its own data sections Change-Id: I32126adaa93d8e42f4cea5a8f676b3efe3eb04f6 --- plat/juno/bl31_plat_setup.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/plat/juno/bl31_plat_setup.c b/plat/juno/bl31_plat_setup.c index 5edc6af88..b16ef05f0 100644 --- a/plat/juno/bl31_plat_setup.c +++ b/plat/juno/bl31_plat_setup.c @@ -138,8 +138,8 @@ void bl31_platform_setup(void) ******************************************************************************/ void bl31_plat_arch_setup() { - configure_mmu_el3(TZRAM_BASE, - TZRAM_SIZE, + configure_mmu_el3(BL31_RO_BASE, + BL31_COHERENT_RAM_LIMIT - BL31_RO_BASE, BL31_RO_BASE, BL31_RO_LIMIT, BL31_COHERENT_RAM_BASE, -- GitLab