Allow dynamic overriding of ROTPK verification A production ROM with TBB enabled must have the ability to boot test software before a real ROTPK is deployed (e.g. manufacturing mode). Previously the function plat_get_rotpk_info() must return a valid ROTPK for TBB to succeed. This patch adds an additional bit `ROTPK_NOT_DEPLOYED` in the output `flags` parameter from plat_get_rotpk_info(). If this bit is set, then the ROTPK in certificate is used without verifying against the platform value. Fixes ARM-software/tf-issues#381 Change-Id: Icbbffab6bff8ed76b72431ee21337f550d8fdbbb

commit: 04943d33cf379868a1dfa3971c2c2250526f0670 [log] [tgz]
author: Soby Mathew <soby.mathew@arm.com> Tue May 24 15:05:15 2016 +0100
committer: Soby Mathew <soby.mathew@arm.com> Fri Jun 03 18:27:36 2016 +0100
tree: e006817db9467446e932182739c9f25bcb702c3c
parent: a7e530331d7cf4b58618f0715e61b5a872176f07 [diff] [blame]
diff --git a/include/plat/common/platform.h b/include/plat/common/platform.h
index a08a12e..390721f 100644
--- a/include/plat/common/platform.h
+++ b/include/plat/common/platform.h

@@ -49,6 +49,9 @@
  * plat_get_rotpk_info() flags
  ******************************************************************************/
 #define ROTPK_IS_HASH			(1 << 0)
+/* Flag used to skip verification of the certificate ROTPK while the platform
+   ROTPK is not deployed */
+#define ROTPK_NOT_DEPLOYED		(1 << 1)
 
 /*******************************************************************************
  * Function declarations
commit	04943d33cf379868a1dfa3971c2c2250526f0670	[log] [tgz]
author	Soby Mathew <soby.mathew@arm.com>	Tue May 24 15:05:15 2016 +0100
committer	Soby Mathew <soby.mathew@arm.com>	Fri Jun 03 18:27:36 2016 +0100
tree	e006817db9467446e932182739c9f25bcb702c3c
parent	a7e530331d7cf4b58618f0715e61b5a872176f07 [diff] [blame]