xref: /rk3399_ARM-atf/plat/arm/board/common/board_common.mk (revision 76ed32236aa396cb0e15eb049bea03710ca1992d) 
1#
2# Copyright (c) 2015-2022, ARM Limited and Contributors. All rights reserved.
3#
4# SPDX-License-Identifier: BSD-3-Clause
5#
6
7PLAT_BL_COMMON_SOURCES	+=	drivers/arm/pl011/${ARCH}/pl011_console.S	\
8				plat/arm/board/common/${ARCH}/board_arm_helpers.S
9
10BL1_SOURCES		+=	drivers/cfi/v2m/v2m_flash.c
11
12BL2_SOURCES		+=	drivers/cfi/v2m/v2m_flash.c
13
14ifneq (${TRUSTED_BOARD_BOOT},0)
15ifneq (${ARM_CRYPTOCELL_INTEG}, 1)
16# ROTPK hash location
17ifeq (${ARM_ROTPK_LOCATION}, regs)
18	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_REGS_ID
19else ifeq (${ARM_ROTPK_LOCATION}, devel_rsa)
20	CRYPTO_ALG=rsa
21	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_DEVEL_RSA_ID
22	ARM_ROTPK_HASH = plat/arm/board/common/rotpk/arm_rotpk_rsa_sha256.bin
23	ARM_ROTPK_S = plat/arm/board/common/rotpk/arm_dev_rotpk.S
24$(eval $(call add_define_val,ARM_ROTPK_HASH,'"$(ARM_ROTPK_HASH)"'))
25$(BUILD_PLAT)/bl2/arm_dev_rotpk.o : $(ARM_ROTPK_HASH)
26$(warning Development keys support for FVP is deprecated. Use `regs` \
27option instead)
28else ifeq (${ARM_ROTPK_LOCATION}, devel_ecdsa)
29	CRYPTO_ALG=ec
30	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_DEVEL_ECDSA_ID
31	ARM_ROTPK_HASH = plat/arm/board/common/rotpk/arm_rotpk_ecdsa_sha256.bin
32	ARM_ROTPK_S = plat/arm/board/common/rotpk/arm_dev_rotpk.S
33$(eval $(call add_define_val,ARM_ROTPK_HASH,'"$(ARM_ROTPK_HASH)"'))
34$(BUILD_PLAT)/bl2/arm_dev_rotpk.o : $(ARM_ROTPK_HASH)
35$(warning Development keys support for FVP is deprecated. Use `regs` \
36option instead)
37else ifeq (${ARM_ROTPK_LOCATION}, devel_full_dev_rsa_key)
38	CRYPTO_ALG=rsa
39	ARM_ROTPK_LOCATION_ID = ARM_ROTPK_DEVEL_FULL_DEV_RSA_KEY_ID
40	ARM_ROTPK_S = plat/arm/board/common/rotpk/arm_full_dev_rsa_rotpk.S
41$(warning Development keys support for FVP is deprecated. Use `regs` \
42option instead)
43else
44$(error "Unsupported ARM_ROTPK_LOCATION value")
45endif
46
47$(eval $(call add_define,ARM_ROTPK_LOCATION_ID))
48
49ifeq (${ENABLE_RME}, 1)
50COT	:=	cca
51endif
52
53# Force generation of the new hash if ROT_KEY is specified
54ifdef ROT_KEY
55	HASH_PREREQUISITES = $(ROT_KEY) FORCE
56else
57	HASH_PREREQUISITES = $(ROT_KEY)
58endif
59
60$(ARM_ROTPK_HASH) : $(HASH_PREREQUISITES)
61ifndef ROT_KEY
62	$(error Cannot generate hash: no ROT_KEY defined)
63endif
64	${OPENSSL_BIN_PATH}/openssl ${CRYPTO_ALG} -in $< -pubout -outform DER | \
65	${OPENSSL_BIN_PATH}/openssl dgst -sha256 -binary > $@
66
67# Certificate NV-Counters. Use values corresponding to tied off values in
68# ARM development platforms
69TFW_NVCTR_VAL	?=	31
70NTFW_NVCTR_VAL	?=	223
71else
72# Certificate NV-Counters when CryptoCell is integrated. For development
73# platforms we set the counter to first valid value.
74TFW_NVCTR_VAL	?=	0
75NTFW_NVCTR_VAL	?=	0
76endif
77BL1_SOURCES		+=	plat/arm/board/common/board_arm_trusted_boot.c \
78				${ARM_ROTPK_S}
79BL2_SOURCES		+=	plat/arm/board/common/board_arm_trusted_boot.c \
80				${ARM_ROTPK_S}
81
82# Allows platform code to provide implementation variants depending on the
83# selected chain of trust.
84$(eval $(call add_define,ARM_COT_${COT}))
85
86ifeq (${COT},dualroot)
87# Platform Root of Trust key files.
88ARM_PROT_KEY		:=	plat/arm/board/common/protpk/arm_protprivk_rsa.pem
89ARM_PROTPK_HASH		:=	plat/arm/board/common/protpk/arm_protpk_rsa_sha256.bin
90
91# Provide the private key to cert_create tool. It needs it to sign the images.
92PROT_KEY		:=	${ARM_PROT_KEY}
93
94$(eval $(call add_define_val,ARM_PROTPK_HASH,'"$(ARM_PROTPK_HASH)"'))
95
96BL1_SOURCES		+=	plat/arm/board/common/protpk/arm_dev_protpk.S
97BL2_SOURCES		+=	plat/arm/board/common/protpk/arm_dev_protpk.S
98
99$(BUILD_PLAT)/bl1/arm_dev_protpk.o: $(ARM_PROTPK_HASH)
100$(BUILD_PLAT)/bl2/arm_dev_protpk.o: $(ARM_PROTPK_HASH)
101endif
102
103ifeq (${COT},cca)
104# Platform and Secure World Root of Trust key files.
105ARM_PROT_KEY		:=	plat/arm/board/common/protpk/arm_protprivk_rsa.pem
106ARM_PROTPK_HASH		:=	plat/arm/board/common/protpk/arm_protpk_rsa_sha256.bin
107ARM_SWD_ROT_KEY		:=	plat/arm/board/common/swd_rotpk/arm_swd_rotprivk_rsa.pem
108ARM_SWD_ROTPK_HASH	:=	plat/arm/board/common/swd_rotpk/arm_swd_rotpk_rsa_sha256.bin
109
110# Provide the private keys to cert_create tool. It needs them to sign the images.
111PROT_KEY		:=	${ARM_PROT_KEY}
112SWD_ROT_KEY		:=	${ARM_SWD_ROT_KEY}
113
114$(eval $(call add_define_val,ARM_PROTPK_HASH,'"$(ARM_PROTPK_HASH)"'))
115$(eval $(call add_define_val,ARM_SWD_ROTPK_HASH,'"$(ARM_SWD_ROTPK_HASH)"'))
116
117BL1_SOURCES		+=	plat/arm/board/common/protpk/arm_dev_protpk.S \
118				plat/arm/board/common/swd_rotpk/arm_dev_swd_rotpk.S
119BL2_SOURCES		+=	plat/arm/board/common/protpk/arm_dev_protpk.S \
120				plat/arm/board/common/swd_rotpk/arm_dev_swd_rotpk.S
121
122$(BUILD_PLAT)/bl1/arm_dev_protpk.o: $(ARM_PROTPK_HASH)
123$(BUILD_PLAT)/bl1/arm_dev_swd_rotpk.o: $(ARM_SWD_ROTPK_HASH)
124$(BUILD_PLAT)/bl2/arm_dev_protpk.o: $(ARM_PROTPK_HASH)
125$(BUILD_PLAT)/bl2/arm_dev_swd_rotpk.o: $(ARM_SWD_ROTPK_HASH)
126endif
127
128endif
129