Halaman utama Jelajahi Bantuan
Masuk
phreedom2600net
/
linux-libre
Liatin 2
Bintangi 0
Fork 0
Berkas Masalah 0 Tarik Permintaan 0 Wiki
Cabang: master
Ranting Tag
linux-libre
/
Documentation
/
devicetree
/
bindings
/
arm
/
secure.txt

secure.txt 2.8 KB
Permalink Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354 
  1. * ARM Secure world bindings
    2. 

  2. 

  3. ARM CPUs with TrustZone support have two distinct address spaces,
    4. 

  4. "Normal" and "Secure". Most devicetree consumers (including the Linux
    5. 

  5. kernel) are not TrustZone aware and run entirely in either the Normal
    6. 

  6. world or the Secure world. However some devicetree consumers are
    7. 

  7. TrustZone aware and need to be able to determine whether devices are
    8. 

  8. visible only in the Secure address space, only in the Normal address
    9. 

  9. space, or visible in both. (One example of that situation would be a
    10. 

  10. virtual machine which boots Secure firmware and wants to tell the
    11. 

  11. firmware about the layout of the machine via devicetree.)
    12. 

  12. 

  13. The general principle of the naming scheme for Secure world bindings
    14. 

  14. is that any property that needs a different value in the Secure world
    15. 

  15. can be supported by prefixing the property name with "secure-". So for
    16. 

  16. instance "secure-foo" would override "foo". For property names with
    17. 

  17. a vendor prefix, the Secure variant of "vendor,foo" would be
    18. 

  18. "vendor,secure-foo". If there is no "secure-" property then the Secure
    19. 

  19. world value is the same as specified for the Normal world by the
    20. 

  20. non-prefixed property. However, only the properties listed below may
    21. 

  21. validly have "secure-" versions; this list will be enlarged on a
    22. 

  22. case-by-case basis.
    23. 

  23. 

  24. Defining the bindings in this way means that a device tree which has
    25. 

  25. been annotated to indicate the presence of Secure-only devices can
    26. 

  26. still be processed unmodified by existing Non-secure software (and in
    27. 

  27. particular by the kernel).
    28. 

  28. 

  29. Note that it is still valid for bindings intended for purely Secure
    30. 

  30. world consumers (like kernels that run entirely in Secure) to simply
    31. 

  31. describe the view of Secure world using the standard bindings. These
    32. 

  32. secure- bindings only need to be used where both the Secure and Normal
    33. 

  33. world views need to be described in a single device tree.
    34. 

  34. 

  35. Valid Secure world properties:
    36. 

  36. 

  37. - secure-status : specifies whether the device is present and usable
    38. 

  38.   in the secure world. The combination of this with "status" allows
    39. 

  39.   the various possible combinations of device visibility to be
    40. 

  40.   specified. If "secure-status" is not specified it defaults to the
    41. 

  41.   same value as "status"; if "status" is not specified either then
    42. 

  42.   both default to "okay". This means the following combinations are
    43. 

  43.   possible:
    44. 

  44. 

  45.    /* Neither specified: default to visible in both S and NS */
    46. 

  46.    secure-status = "okay";                          /* visible in both */
    47. 

  47.    status = "okay";                                 /* visible in both */
    48. 

  48.    status = "okay"; secure-status = "okay";         /* visible in both */
    49. 

  49.    secure-status = "disabled";                      /* NS-only */
    50. 

  50.    status = "okay"; secure-status = "disabled";     /* NS-only */
    51. 

  51.    status = "disabled"; secure-status = "okay";     /* S-only */
    52. 

  52.    status = "disabled";                             /* disabled in both */
    53. 

  53.    status = "disabled"; secure-status = "disabled"; /* disabled in both */
    54. 

  54.