summaryrefslogtreecommitdiff
path: root/doc
diff options
context:
space:
mode:
authorSumit Garg <sumit.garg@nxp.com>2016-07-14 12:27:53 -0400
committerYork Sun <york.sun@nxp.com>2016-07-21 11:11:29 -0700
commitebfc066e6f755da373d503608249f77ac298fb5e (patch)
treeaeeded9ca849c8d96a9d6f9e353a6c39ef1b4928 /doc
parentaa36c84edfcfd8c7d0348511e7b0fbb43514cd35 (diff)
downloadu-boot-ebfc066e6f755da373d503608249f77ac298fb5e.tar.gz
doc: SPL: Add README for secure boot support
Adds information regarding SPL handling validation process of main u-boot image on power/mpc85xx and arm/layerscape platforms. Signed-off-by: Sumit Garg <sumit.garg@nxp.com> Reviewed-by: Simon Glass <sjg@chromium.org> Reviewed-by: York Sun <york.sun@nxp.com>
Diffstat (limited to 'doc')
-rw-r--r--doc/SPL/README.spl-secure-boot18
1 files changed, 18 insertions, 0 deletions
diff --git a/doc/SPL/README.spl-secure-boot b/doc/SPL/README.spl-secure-boot
new file mode 100644
index 0000000000..f2f8d78883
--- /dev/null
+++ b/doc/SPL/README.spl-secure-boot
@@ -0,0 +1,18 @@
+Overview of SPL verified boot on powerpc/mpc85xx & arm/layerscape platforms
+===========================================================================
+
+Introduction
+------------
+
+This document provides an overview of how SPL verified boot works on powerpc/
+mpc85xx & arm/layerscape platforms.
+
+Methodology
+-----------
+
+The SPL image is responsible for loading the next stage boot loader, which is
+the main u-boot image. For secure boot process on these platforms ROM verifies
+SPL image, so to continue chain of trust SPL image verifies U-boot image using
+spl_validate_uboot(). This function uses QorIQ Trust Architecture header
+(appended to U-boot image) to validate the U-boot binary just before passing
+control to it.