projects / u-boot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 250ef11) | patch
MA-15321-3 Support secure unlock feature
authorJi Luo <ji.luo@nxp.com>
Thu, 15 Aug 2019 12:53:53 +0000 (20:53 +0800)
committerJi Luo <ji.luo@nxp.com>
Tue, 20 Aug 2019 02:11:13 +0000 (10:11 +0800)
commit631149fc0fc8ce035311949db643c2708e41435a
tree49901b2f6cbd189ab29128b2965c7041cc955568tree | snapshot
parent250ef119c1dc02908046113893df5eeb9ef40605commit | diff
MA-15321-3 Support secure unlock feature

Decrypt and verify the secure credential in keymaster TA, unlock
operation can only be allowed after secure credential verify pass.

Since the mppubk can only be generated on hab closed imx8q, so secure
unlock feature can only supported when hab is closed.

Test: secure unlock credential verify on hab closed imx8mm_evk.

Change-Id: I1ab5e24df28d1e75ff853de3adf29f34da1d0a71
Signed-off-by: Ji Luo <ji.luo@nxp.com>
drivers/fastboot/fb_fsl/fb_fsl_command.c diff | blob | history
include/fsl_avb.h diff | blob | history
include/interface/keymaster/keymaster.h diff | blob | history
include/trusty/keymaster.h diff | blob | history
include/trusty/keymaster_serializable.h diff | blob | history
lib/Kconfig diff | blob | history
lib/avb/fsl/fsl_avbkey.c diff | blob | history
lib/trusty/ql-tipc/keymaster.c diff | blob | history
lib/trusty/ql-tipc/keymaster_serializable.c diff | blob | history