[U-Boot] [PATCH v5 13/14] SECURE BOOT: Halt execution when secure boot fail
York Sun
york.sun at nxp.com
Tue Mar 29 17:58:33 CEST 2016
On 03/22/2016 10:43 PM, Saksham Jain wrote:
> In case of fatal failure during secure boot execution (e.g. header not
> found), it is needed that the execution stops. Earlier, we assert reset
> request in case in case of failure. But if the RESET_REQ is not tied off
> to HRESET, this allows the execution to continue.
>
> This can either be taken care in bootscript (Execute esbc_halt command
> in case of image verification process) or it can be taken care in Uboot
> Code. In this commit, doing the latter via esbc_halt().
>
> Signed-off-by: Aneesh Bansal <aneesh.bansal at nxp.com>
> Signed-off-by: Saksham Jain <saksham.jain at nxp.com>
> ---
> Changes for v2:
> - No changes
> Changes for v3:
> - No changes
> Chnages for v4:
> - Cleaned up commit message
> Changes for v5:
> - Cleaned up commit message
>
> board/freescale/common/cmd_esbc_validate.c | 2 +-
> board/freescale/common/fsl_validate.c | 5 +++++
> include/fsl_validate.h | 3 +++
> 3 files changed, 9 insertions(+), 1 deletion(-)
>
Minor change to commit message.
Applied to u-boot-fsl-qoriq master. Awaiting upstream.
Thanks.
York
More information about the U-Boot
mailing list