diff options
author | Sumit Garg <sumit.garg@nxp.com> | 2016-07-14 12:27:53 -0400 |
---|---|---|
committer | York Sun <york.sun@nxp.com> | 2016-07-21 11:11:29 -0700 |
commit | ebfc066e6f755da373d503608249f77ac298fb5e (patch) | |
tree | aeeded9ca849c8d96a9d6f9e353a6c39ef1b4928 /doc | |
parent | aa36c84edfcfd8c7d0348511e7b0fbb43514cd35 (diff) | |
download | u-boot-ebfc066e6f755da373d503608249f77ac298fb5e.tar.gz |
doc: SPL: Add README for secure boot support
Adds information regarding SPL handling validation process of main u-boot
image on power/mpc85xx and arm/layerscape platforms.
Signed-off-by: Sumit Garg <sumit.garg@nxp.com>
Reviewed-by: Simon Glass <sjg@chromium.org>
Reviewed-by: York Sun <york.sun@nxp.com>
Diffstat (limited to 'doc')
-rw-r--r-- | doc/SPL/README.spl-secure-boot | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/doc/SPL/README.spl-secure-boot b/doc/SPL/README.spl-secure-boot new file mode 100644 index 0000000000..f2f8d78883 --- /dev/null +++ b/doc/SPL/README.spl-secure-boot @@ -0,0 +1,18 @@ +Overview of SPL verified boot on powerpc/mpc85xx & arm/layerscape platforms +=========================================================================== + +Introduction +------------ + +This document provides an overview of how SPL verified boot works on powerpc/ +mpc85xx & arm/layerscape platforms. + +Methodology +----------- + +The SPL image is responsible for loading the next stage boot loader, which is +the main u-boot image. For secure boot process on these platforms ROM verifies +SPL image, so to continue chain of trust SPL image verifies U-boot image using +spl_validate_uboot(). This function uses QorIQ Trust Architecture header +(appended to U-boot image) to validate the U-boot binary just before passing +control to it. |