diff options
| author | Manish V Badarkhe <Manish.Badarkhe@arm.com> | 2021-09-14 23:12:42 +0100 |
|---|---|---|
| committer | Manish V Badarkhe <Manish.Badarkhe@arm.com> | 2021-10-12 17:53:48 +0100 |
| commit | 48ba0345f7b42880ec4442d7e90e3e1af95feadd (patch) | |
| tree | 6298b40f0e8e30b0b687d2a82ee0e3e08e2bb68f /common | |
| parent | efa6521878ccb613919a1043537a6108f5ea59ed (diff) | |
| download | arm-trusted-firmware-48ba0345f7b42880ec4442d7e90e3e1af95feadd.tar.gz | |
feat(measured_boot): image hash measurement and recording in BL1
It looks safer and cleaner approach to record the measurement taken by
BL1 straightaway in TCG Event Log instead of deferring these recordings
to BL2.
Hence pull in the full-fledged measured boot driver into BL1 that
replaces the former ad-hoc platform interfaces i.e.
bl1_plat_set_bl2_hash, bl2_plat_get_hash.
As a result of this change the BL1 of Arm FVP platform now do the
measurements and recordings of below images:
1. FW_CONFIG
2. TB_FW_CONFIG
3. BL2
Change-Id: I798c20336308b5e91b547da4f8ed57c24d490731
Signed-off-by: Manish V Badarkhe <Manish.Badarkhe@arm.com>
Diffstat (limited to 'common')
| -rw-r--r-- | common/bl_common.c | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/common/bl_common.c b/common/bl_common.c index 3c37bcfa2..eb2352a77 100644 --- a/common/bl_common.c +++ b/common/bl_common.c @@ -203,7 +203,6 @@ static int load_auth_image_recursive(unsigned int image_id, } if (is_parent_image == 0) { -#if IMAGE_BL2 /* * Measure the image. * We do not measure its parents because these only play a role @@ -212,11 +211,11 @@ static int load_auth_image_recursive(unsigned int image_id, * TODO: Change this code if we change our minds about measuring * certificates. */ - rc = plat_mboot_measure_image(image_id); + rc = plat_mboot_measure_image(image_id, image_data); if (rc != 0) { return rc; } -#endif + /* * Flush the image to main memory so that it can be executed * later by any CPU, regardless of cache and MMU state. This |