Skip to content

GitLab

"vscode:/vscode.git/clone" did not exist on "e4dbdb8c246941186e6509aed99ae98cc66757b8"
Commit 468f808c authored by danh-arm's avatar danh-arm
Browse files

Merge pull request #368 from jcastillo-arm/jc/genfw/1126 

TBB: abort boot if BL3-2 cannot be authenticated
parents 42ed52d2 fedbc049
Hide whitespace changes
Inline Side-by-side
bl2/bl2_main.c
View file @ 468f808c
...@@ -238,8 +238,14 @@ void bl2_main(void) ...@@ -238,8 +238,14 @@ void bl2_main(void)
} }
e = load_bl32(bl2_to_bl31_params); e = load_bl32(bl2_to_bl31_params);
if (e) if (e) {
WARN("Failed to load BL3-2 (%i)\n", e); if (e == LOAD_AUTH_ERR) {
ERROR("Failed to authenticate BL3-2\n");
panic();
} else {
WARN("Failed to load BL3-2 (%i)\n", e);
}
}
e = load_bl33(bl2_to_bl31_params); e = load_bl33(bl2_to_bl31_params);
if (e) { if (e) {
......
common/bl_common.c
View file @ 468f808c
...@@ -37,6 +37,7 @@ ...@@ -37,6 +37,7 @@
#include <errno.h> #include <errno.h>
#include <io_storage.h> #include <io_storage.h>
#include <platform.h> #include <platform.h>
#include <string.h>
unsigned long page_align(unsigned long value, unsigned dir) unsigned long page_align(unsigned long value, unsigned dir)
{ {
...@@ -331,7 +332,7 @@ int load_auth_image(meminfo_t *mem_layout, ...@@ -331,7 +332,7 @@ int load_auth_image(meminfo_t *mem_layout,
if (rc == 0) { if (rc == 0) {
rc = load_auth_image(mem_layout, parent_id, image_base, rc = load_auth_image(mem_layout, parent_id, image_base,
image_data, NULL); image_data, NULL);
if (rc != IO_SUCCESS) { if (rc != LOAD_SUCCESS) {
return rc; return rc;
} }
} }
...@@ -341,7 +342,7 @@ int load_auth_image(meminfo_t *mem_layout, ...@@ -341,7 +342,7 @@ int load_auth_image(meminfo_t *mem_layout,
rc = load_image(mem_layout, image_id, image_base, image_data, rc = load_image(mem_layout, image_id, image_base, image_data,
entry_point_info); entry_point_info);
if (rc != IO_SUCCESS) { if (rc != IO_SUCCESS) {
return rc; return LOAD_ERR;
} }
#if TRUSTED_BOARD_BOOT #if TRUSTED_BOARD_BOOT
...@@ -350,7 +351,11 @@ int load_auth_image(meminfo_t *mem_layout, ...@@ -350,7 +351,11 @@ int load_auth_image(meminfo_t *mem_layout,
(void *)image_data->image_base, (void *)image_data->image_base,
image_data->image_size); image_data->image_size);
if (rc != 0) { if (rc != 0) {
return IO_FAIL; memset((void *)image_data->image_base, 0x00,
image_data->image_size);
flush_dcache_range(image_data->image_base,
image_data->image_size);
return LOAD_AUTH_ERR;
} }
/* After working with data, invalidate the data cache */ /* After working with data, invalidate the data cache */
...@@ -358,5 +363,5 @@ int load_auth_image(meminfo_t *mem_layout, ...@@ -358,5 +363,5 @@ int load_auth_image(meminfo_t *mem_layout,
(size_t)image_data->image_size); (size_t)image_data->image_size);
#endif /* TRUSTED_BOARD_BOOT */ #endif /* TRUSTED_BOARD_BOOT */
return IO_SUCCESS; return LOAD_SUCCESS;
} }
include/common/bl_common.h
View file @ 468f808c
...@@ -202,6 +202,15 @@ typedef struct bl31_params { ...@@ -202,6 +202,15 @@ typedef struct bl31_params {
image_info_t *bl33_image_info; image_info_t *bl33_image_info;
} bl31_params_t; } bl31_params_t;
/*
* load_auth_image() return values
*/
enum {
LOAD_SUCCESS, /* Load + authentication success */
LOAD_ERR, /* Load error */
LOAD_AUTH_ERR /* Authentication error */
};
/* /*
* Compile time assertions related to the 'entry_point_info' structure to * Compile time assertions related to the 'entry_point_info' structure to
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment