]> git.dujemihanovic.xyz Git - u-boot.git/commit
efi_loader: Implement EFI variable handling via OP-TEE
authorIlias Apalodimas <ilias.apalodimas@linaro.org>
Sun, 17 May 2020 19:25:44 +0000 (22:25 +0300)
committerHeinrich Schuchardt <xypron.glpk@gmx.de>
Sun, 17 May 2020 19:59:53 +0000 (21:59 +0200)
commitf042e47e8fb433a7a1f8a25d997ba0fe74e2db53
tree9772c55dc5d60b5997b689d6ad112b7f5a62bf28
parent23a397d2e2fb136e9b352b6aa0627262314e44a2
efi_loader: Implement EFI variable handling via OP-TEE

In OP-TEE we can run EDK2's StandAloneMM on a secure partition.
StandAloneMM is responsible for the UEFI variable support. In
combination with OP-TEE and it's U-Boot supplicant, variables are
authenticated/validated in secure world and stored on an RPMB partition.

So let's add a new config option in U-Boot implementing the necessary
calls to OP-TEE for the variable management.

Signed-off-by: Ilias Apalodimas <ilias.apalodimas@linaro.org>
Signed-off-by: Pipat Methavanitpong <pipat1010@gmail.com>
Signed-off-by: Sughosh Ganu <sughosh.ganu@linaro.org>
Reviewed-by: Heinrich Schuchardt <xypron.glpk@gmx.de>
lib/efi_loader/Kconfig
lib/efi_loader/Makefile
lib/efi_loader/efi_variable_tee.c [new file with mode: 0644]