Add firewall configurations to protect ATF and OP-TEE memory regions
from non-secure reads and writes in AM64x.
Signed-off-by: Suhaas Joshi <s-joshi@ti.com>
#address-cells = <1>;
images {
+ atf {
+ ti-secure {
+ auth-in-place = <0xa02>;
+
+ firewall-24-5 {
+ insert-template = <&firewall_armv8_atf_fg>;
+ id = <24>;
+ region = <5>;
+ };
+ };
+ };
+
+ tee {
+ ti-secure {
+ auth-in-place = <0xa02>;
+
+ firewall-1-0 {
+ insert-template = <&firewall_bg_3>;
+ id = <1>;
+ region = <0>;
+ };
+
+
+ firewall-1-1 {
+ insert-template = <&firewall_armv8_optee_fg>;
+ id = <1>;
+ region = <1>;
+ };
+ };
+ };
+
dm {
blob-ext {
filename = "/dev/null";
projects / thirdparty / u-boot.git / commitdiff
