diff options
| author | Chris Kay <chris.kay@arm.com> | 2022-09-29 16:21:24 +0100 |
|---|---|---|
| committer | Chris Kay <chris.kay@arm.com> | 2022-10-05 14:17:02 +0100 |
| commit | 274a69e7ca7769065efbc1b72fe16e1723269f54 (patch) | |
| tree | f81b19b441bc4ee2392976632b73d96ba64fc80a /Makefile | |
| parent | 2ddb5415ca0e5642f16bd0eee6f8f29a95d15c34 (diff) | |
| download | arm-trusted-firmware-274a69e7ca7769065efbc1b72fe16e1723269f54.tar.gz | |
build: forbid `ENABLE_RME=1` when `SEPARATE_CODE_AND_RODATA=0`
This change mitigates against read-only data being used for malicious
execution on platforms utilizing the RME/CCA.
Change-Id: I0068535aeaa5d2515c7c54ee0dc19200c7a86ba5
Signed-off-by: Chris Kay <chris.kay@arm.com>
Diffstat (limited to 'Makefile')
| -rw-r--r-- | Makefile | 6 |
1 files changed, 6 insertions, 0 deletions
@@ -842,6 +842,12 @@ ifeq ($(DRTM_SUPPORT),1) $(info DRTM_SUPPORT is an experimental feature) endif +ifeq (${ENABLE_RME},1) + ifneq (${SEPARATE_CODE_AND_RODATA},1) + $(error `ENABLE_RME=1` requires `SEPARATE_CODE_AND_RODATA=1`) + endif +endif + ################################################################################ # Process platform overrideable behaviour ################################################################################ |