xref: /rk3399_ARM-atf/fdts/stm32mp1-cot-descriptors.dtsi (revision 928fa66272a0985c900c996912b54904c64d0520) 
1*928fa662SLionel Debieve/*
2*928fa662SLionel Debieve * Copyright (c) 2020-2022, ARM Limited. All rights reserved.
3*928fa662SLionel Debieve *
4*928fa662SLionel Debieve * SPDX-License-Identifier: BSD-3-Clause
5*928fa662SLionel Debieve */
6*928fa662SLionel Debieve
7*928fa662SLionel Debieve#include <common/nv_cntr_ids.h>
8*928fa662SLionel Debieve#include <common/tbbr/tbbr_img_def.h>
9*928fa662SLionel Debieve#include <tools_share/tbbr_oid.h>
10*928fa662SLionel Debieve
11*928fa662SLionel Debievecot {
12*928fa662SLionel Debieve	manifests {
13*928fa662SLionel Debieve		compatible = "arm, cert-descs";
14*928fa662SLionel Debieve
15*928fa662SLionel Debieve		stm32mp_cfg_cert: stm32mp_cfg_cert {
16*928fa662SLionel Debieve			root-certificate;
17*928fa662SLionel Debieve			image-id = <STM32MP_CONFIG_CERT_ID>;
18*928fa662SLionel Debieve			antirollback-counter = <&trusted_nv_counter>;
19*928fa662SLionel Debieve
20*928fa662SLionel Debieve			hw_config_hash: hw_config_hash {
21*928fa662SLionel Debieve				oid = HW_CONFIG_HASH_OID;
22*928fa662SLionel Debieve			};
23*928fa662SLionel Debieve
24*928fa662SLionel Debieve			fw_config_hash: fw_config_hash {
25*928fa662SLionel Debieve				oid = FW_CONFIG_HASH_OID;
26*928fa662SLionel Debieve			};
27*928fa662SLionel Debieve		};
28*928fa662SLionel Debieve
29*928fa662SLionel Debieve		trusted_key_cert: trusted_key_cert {
30*928fa662SLionel Debieve			root-certificate;
31*928fa662SLionel Debieve			image-id = <TRUSTED_KEY_CERT_ID>;
32*928fa662SLionel Debieve			antirollback-counter = <&trusted_nv_counter>;
33*928fa662SLionel Debieve
34*928fa662SLionel Debieve			trusted_world_pk: trusted_world_pk {
35*928fa662SLionel Debieve				oid = TRUSTED_WORLD_PK_OID;
36*928fa662SLionel Debieve			};
37*928fa662SLionel Debieve			non_trusted_world_pk: non_trusted_world_pk {
38*928fa662SLionel Debieve				oid = NON_TRUSTED_WORLD_PK_OID;
39*928fa662SLionel Debieve			};
40*928fa662SLionel Debieve		};
41*928fa662SLionel Debieve
42*928fa662SLionel Debieve		trusted_os_fw_key_cert: trusted_os_fw_key_cert {
43*928fa662SLionel Debieve			image-id = <TRUSTED_OS_FW_KEY_CERT_ID>;
44*928fa662SLionel Debieve			parent = <&trusted_key_cert>;
45*928fa662SLionel Debieve			signing-key = <&trusted_world_pk>;
46*928fa662SLionel Debieve			antirollback-counter = <&trusted_nv_counter>;
47*928fa662SLionel Debieve
48*928fa662SLionel Debieve			tos_fw_content_pk: tos_fw_content_pk {
49*928fa662SLionel Debieve				oid = TRUSTED_OS_FW_CONTENT_CERT_PK_OID;
50*928fa662SLionel Debieve			};
51*928fa662SLionel Debieve		};
52*928fa662SLionel Debieve
53*928fa662SLionel Debieve		trusted_os_fw_content_cert: trusted_os_fw_content_cert {
54*928fa662SLionel Debieve			image-id = <TRUSTED_OS_FW_CONTENT_CERT_ID>;
55*928fa662SLionel Debieve			parent = <&trusted_os_fw_key_cert>;
56*928fa662SLionel Debieve			signing-key = <&tos_fw_content_pk>;
57*928fa662SLionel Debieve			antirollback-counter = <&trusted_nv_counter>;
58*928fa662SLionel Debieve
59*928fa662SLionel Debieve			tos_fw_hash: tos_fw_hash {
60*928fa662SLionel Debieve				oid = TRUSTED_OS_FW_HASH_OID;
61*928fa662SLionel Debieve			};
62*928fa662SLionel Debieve			tos_fw_extra1_hash: tos_fw_extra1_hash {
63*928fa662SLionel Debieve				oid = TRUSTED_OS_FW_EXTRA1_HASH_OID;
64*928fa662SLionel Debieve			};
65*928fa662SLionel Debieve			tos_fw_extra2_hash: tos_fw_extra2_hash {
66*928fa662SLionel Debieve				oid = TRUSTED_OS_FW_EXTRA2_HASH_OID;
67*928fa662SLionel Debieve			};
68*928fa662SLionel Debieve			tos_fw_config_hash: tos_fw_config_hash {
69*928fa662SLionel Debieve				oid = TRUSTED_OS_FW_CONFIG_HASH_OID;
70*928fa662SLionel Debieve			};
71*928fa662SLionel Debieve		};
72*928fa662SLionel Debieve
73*928fa662SLionel Debieve		non_trusted_fw_key_cert: non_trusted_fw_key_cert {
74*928fa662SLionel Debieve			image-id = <NON_TRUSTED_FW_KEY_CERT_ID>;
75*928fa662SLionel Debieve			parent = <&trusted_key_cert>;
76*928fa662SLionel Debieve			signing-key = <&non_trusted_world_pk>;
77*928fa662SLionel Debieve			antirollback-counter = <&non_trusted_nv_counter>;
78*928fa662SLionel Debieve
79*928fa662SLionel Debieve			nt_fw_content_pk: nt_fw_content_pk {
80*928fa662SLionel Debieve				oid = NON_TRUSTED_FW_CONTENT_CERT_PK_OID;
81*928fa662SLionel Debieve			};
82*928fa662SLionel Debieve		};
83*928fa662SLionel Debieve
84*928fa662SLionel Debieve		non_trusted_fw_content_cert: non_trusted_fw_content_cert {
85*928fa662SLionel Debieve			image-id = <NON_TRUSTED_FW_CONTENT_CERT_ID>;
86*928fa662SLionel Debieve			parent = <&non_trusted_fw_key_cert>;
87*928fa662SLionel Debieve			signing-key = <&nt_fw_content_pk>;
88*928fa662SLionel Debieve			antirollback-counter = <&non_trusted_nv_counter>;
89*928fa662SLionel Debieve
90*928fa662SLionel Debieve			nt_world_bl_hash: nt_world_bl_hash {
91*928fa662SLionel Debieve				oid = NON_TRUSTED_WORLD_BOOTLOADER_HASH_OID;
92*928fa662SLionel Debieve			};
93*928fa662SLionel Debieve		};
94*928fa662SLionel Debieve	};
95*928fa662SLionel Debieve
96*928fa662SLionel Debieve	images {
97*928fa662SLionel Debieve		compatible = "arm, img-descs";
98*928fa662SLionel Debieve
99*928fa662SLionel Debieve		hw_config {
100*928fa662SLionel Debieve			image-id = <HW_CONFIG_ID>;
101*928fa662SLionel Debieve			parent = <&stm32mp_cfg_cert>;
102*928fa662SLionel Debieve			hash = <&hw_config_hash>;
103*928fa662SLionel Debieve		};
104*928fa662SLionel Debieve
105*928fa662SLionel Debieve		fw_config {
106*928fa662SLionel Debieve			image-id = <FW_CONFIG_ID>;
107*928fa662SLionel Debieve			parent = <&stm32mp_cfg_cert>;
108*928fa662SLionel Debieve			hash = <&fw_config_hash>;
109*928fa662SLionel Debieve		};
110*928fa662SLionel Debieve
111*928fa662SLionel Debieve		bl32_image {
112*928fa662SLionel Debieve			image-id = <BL32_IMAGE_ID>;
113*928fa662SLionel Debieve			parent = <&trusted_os_fw_content_cert>;
114*928fa662SLionel Debieve			hash = <&tos_fw_hash>;
115*928fa662SLionel Debieve		};
116*928fa662SLionel Debieve
117*928fa662SLionel Debieve		bl32_extra1_image {
118*928fa662SLionel Debieve			image-id = <BL32_EXTRA1_IMAGE_ID>;
119*928fa662SLionel Debieve			parent = <&trusted_os_fw_content_cert>;
120*928fa662SLionel Debieve			hash = <&tos_fw_extra1_hash>;
121*928fa662SLionel Debieve		};
122*928fa662SLionel Debieve
123*928fa662SLionel Debieve		bl32_extra2_image {
124*928fa662SLionel Debieve			image-id = <BL32_EXTRA2_IMAGE_ID>;
125*928fa662SLionel Debieve			parent = <&trusted_os_fw_content_cert>;
126*928fa662SLionel Debieve			hash = <&tos_fw_extra2_hash>;
127*928fa662SLionel Debieve		};
128*928fa662SLionel Debieve
129*928fa662SLionel Debieve		tos_fw_config {
130*928fa662SLionel Debieve			image-id = <TOS_FW_CONFIG_ID>;
131*928fa662SLionel Debieve			parent = <&trusted_os_fw_content_cert>;
132*928fa662SLionel Debieve			hash = <&tos_fw_config_hash>;
133*928fa662SLionel Debieve		};
134*928fa662SLionel Debieve
135*928fa662SLionel Debieve		bl33_image {
136*928fa662SLionel Debieve			image-id = <BL33_IMAGE_ID>;
137*928fa662SLionel Debieve			parent = <&non_trusted_fw_content_cert>;
138*928fa662SLionel Debieve			hash = <&nt_world_bl_hash>;
139*928fa662SLionel Debieve		};
140*928fa662SLionel Debieve	};
141*928fa662SLionel Debieve};
142*928fa662SLionel Debieve
143*928fa662SLionel Debievenon_volatile_counters: non_volatile_counters {
144*928fa662SLionel Debieve	#address-cells = <1>;
145*928fa662SLionel Debieve	#size-cells = <0>;
146*928fa662SLionel Debieve
147*928fa662SLionel Debieve	trusted_nv_counter: trusted_nv_counter {
148*928fa662SLionel Debieve		id  = <TRUSTED_NV_CTR_ID>;
149*928fa662SLionel Debieve		oid = TRUSTED_FW_NVCOUNTER_OID;
150*928fa662SLionel Debieve	};
151*928fa662SLionel Debieve
152*928fa662SLionel Debieve	non_trusted_nv_counter: non_trusted_nv_counter {
153*928fa662SLionel Debieve		id  = <NON_TRUSTED_NV_CTR_ID>;
154*928fa662SLionel Debieve		oid = NON_TRUSTED_FW_NVCOUNTER_OID;
155*928fa662SLionel Debieve	};
156*928fa662SLionel Debieve};
157