1a9d5c273SSandrine Bailleux /* 2a9d5c273SSandrine Bailleux * Copyright (c) 2020, Arm Limited. All rights reserved. 3a9d5c273SSandrine Bailleux * 4a9d5c273SSandrine Bailleux * SPDX-License-Identifier: BSD-3-Clause 5a9d5c273SSandrine Bailleux */ 6a9d5c273SSandrine Bailleux 7a9d5c273SSandrine Bailleux #ifndef DUALROOT_COT_H 8a9d5c273SSandrine Bailleux #define DUALROOT_COT_H 9a9d5c273SSandrine Bailleux 10a9d5c273SSandrine Bailleux /* Certificates. */ 11a9d5c273SSandrine Bailleux enum { 12a9d5c273SSandrine Bailleux /* Certificates owned by the silicon provider. */ 13a9d5c273SSandrine Bailleux TRUSTED_BOOT_FW_CERT, 14a9d5c273SSandrine Bailleux TRUSTED_KEY_CERT, 15a9d5c273SSandrine Bailleux SCP_FW_KEY_CERT, 16a9d5c273SSandrine Bailleux SCP_FW_CONTENT_CERT, 17a9d5c273SSandrine Bailleux SOC_FW_KEY_CERT, 18a9d5c273SSandrine Bailleux SOC_FW_CONTENT_CERT, 19a9d5c273SSandrine Bailleux TRUSTED_OS_FW_KEY_CERT, 20a9d5c273SSandrine Bailleux TRUSTED_OS_FW_CONTENT_CERT, 210792dd7dSManish Pandey SIP_SECURE_PARTITION_CONTENT_CERT, 22a9d5c273SSandrine Bailleux FWU_CERT, 23a9d5c273SSandrine Bailleux 24a9d5c273SSandrine Bailleux /* Certificates owned by the platform owner. */ 25a9d5c273SSandrine Bailleux NON_TRUSTED_FW_CONTENT_CERT, 26*23d5f03aSManish Pandey PLAT_SECURE_PARTITION_CONTENT_CERT, 27a9d5c273SSandrine Bailleux }; 28a9d5c273SSandrine Bailleux 29a9d5c273SSandrine Bailleux /* Certificate extensions. */ 30a9d5c273SSandrine Bailleux enum { 31a9d5c273SSandrine Bailleux /* Extensions used in certificates owned by the silicon provider. */ 32a9d5c273SSandrine Bailleux TRUSTED_FW_NVCOUNTER_EXT, 33a9d5c273SSandrine Bailleux TRUSTED_BOOT_FW_HASH_EXT, 34a9d5c273SSandrine Bailleux TRUSTED_BOOT_FW_CONFIG_HASH_EXT, 35a9d5c273SSandrine Bailleux HW_CONFIG_HASH_EXT, 369b3ca9b1SManish V Badarkhe FW_CONFIG_HASH_EXT, 37a9d5c273SSandrine Bailleux TRUSTED_WORLD_PK_EXT, 38a9d5c273SSandrine Bailleux SCP_FW_CONTENT_CERT_PK_EXT, 39a9d5c273SSandrine Bailleux SCP_FW_HASH_EXT, 40a9d5c273SSandrine Bailleux SOC_FW_CONTENT_CERT_PK_EXT, 41a9d5c273SSandrine Bailleux SOC_AP_FW_HASH_EXT, 42a9d5c273SSandrine Bailleux SOC_FW_CONFIG_HASH_EXT, 43a9d5c273SSandrine Bailleux TRUSTED_OS_FW_CONTENT_CERT_PK_EXT, 44a9d5c273SSandrine Bailleux TRUSTED_OS_FW_HASH_EXT, 45a9d5c273SSandrine Bailleux TRUSTED_OS_FW_EXTRA1_HASH_EXT, 46a9d5c273SSandrine Bailleux TRUSTED_OS_FW_EXTRA2_HASH_EXT, 47a9d5c273SSandrine Bailleux TRUSTED_OS_FW_CONFIG_HASH_EXT, 480792dd7dSManish Pandey SP_PKG1_HASH_EXT, 490792dd7dSManish Pandey SP_PKG2_HASH_EXT, 500792dd7dSManish Pandey SP_PKG3_HASH_EXT, 510792dd7dSManish Pandey SP_PKG4_HASH_EXT, 520792dd7dSManish Pandey SP_PKG5_HASH_EXT, 530792dd7dSManish Pandey SP_PKG6_HASH_EXT, 540792dd7dSManish Pandey SP_PKG7_HASH_EXT, 550792dd7dSManish Pandey SP_PKG8_HASH_EXT, 56a9d5c273SSandrine Bailleux SCP_FWU_CFG_HASH_EXT, 57a9d5c273SSandrine Bailleux AP_FWU_CFG_HASH_EXT, 58a9d5c273SSandrine Bailleux FWU_HASH_EXT, 59a9d5c273SSandrine Bailleux 60a9d5c273SSandrine Bailleux /* Extensions used in certificates owned by the platform owner. */ 61a9d5c273SSandrine Bailleux PROT_PK_EXT, 62a9d5c273SSandrine Bailleux NON_TRUSTED_FW_NVCOUNTER_EXT, 63a9d5c273SSandrine Bailleux NON_TRUSTED_FW_CONTENT_CERT_PK_EXT, 64a9d5c273SSandrine Bailleux NON_TRUSTED_WORLD_BOOTLOADER_HASH_EXT, 65a9d5c273SSandrine Bailleux NON_TRUSTED_FW_CONFIG_HASH_EXT, 66a9d5c273SSandrine Bailleux }; 67a9d5c273SSandrine Bailleux 68a9d5c273SSandrine Bailleux /* Keys. */ 69a9d5c273SSandrine Bailleux enum { 70a9d5c273SSandrine Bailleux /* Keys owned by the silicon provider. */ 71a9d5c273SSandrine Bailleux ROT_KEY, 72a9d5c273SSandrine Bailleux TRUSTED_WORLD_KEY, 73a9d5c273SSandrine Bailleux SCP_FW_CONTENT_CERT_KEY, 74a9d5c273SSandrine Bailleux SOC_FW_CONTENT_CERT_KEY, 75a9d5c273SSandrine Bailleux TRUSTED_OS_FW_CONTENT_CERT_KEY, 76a9d5c273SSandrine Bailleux 77a9d5c273SSandrine Bailleux /* Keys owned by the platform owner. */ 78a9d5c273SSandrine Bailleux PROT_KEY, 79a9d5c273SSandrine Bailleux }; 80a9d5c273SSandrine Bailleux 81a9d5c273SSandrine Bailleux #endif /* DUALROOT_COT_H */ 82