Enable secure memory support for FVPs - Use the TrustZone controller on Base FVP to program DRAM access permissions. By default no access to DRAM is allowed if 'secure memory' is enabled on the Base FVP. - The Foundation FVP does not have a TrustZone controller but instead has fixed access permissions. - Update FDTs for Linux to use timers at the correct security level. - Starting the FVPs with 'secure memory' disabled is also supported. Limitations: Virtio currently uses a reserved NSAID. This will be corrected in future FVP releases. Change-Id: I0b6c003a7b5982267815f62bcf6eb82aa4c50a31

commit: f2199d95d931826be7f87af0935ac536812d0488 [log] [tgz]
author: Harry Liebel <Harry.Liebel@arm.com> Tue Apr 01 19:27:38 2014 +0100
committer: Harry Liebel <Harry.Liebel@arm.com> Thu Apr 24 14:08:01 2014 +0100
tree: 273cea29e9d7fea8bb38cc36a86385cc66b02098
parent: cd116d177b76dbb333ed2aa0cb47a0c17678f0c2 [diff] [blame]
diff --git a/plat/fvp/bl2_plat_setup.c b/plat/fvp/bl2_plat_setup.c
index 4d57ed5..da6a485 100644
--- a/plat/fvp/bl2_plat_setup.c
+++ b/plat/fvp/bl2_plat_setup.c

@@ -122,6 +122,14 @@
  ******************************************************************************/
 void bl2_platform_setup()
 {
+	/*
+	 * Do initial security configuration to allow DRAM/device access. On
+	 * Base FVP only DRAM security is programmable (via TrustZone), but
+	 * other platforms might have more programmable security devices
+	 * present.
+	 */
+	plat_security_setup();
+
 	/* Initialise the IO layer and register platform IO devices */
 	io_setup();
commit	f2199d95d931826be7f87af0935ac536812d0488	[log] [tgz]
author	Harry Liebel <Harry.Liebel@arm.com>	Tue Apr 01 19:27:38 2014 +0100
committer	Harry Liebel <Harry.Liebel@arm.com>	Thu Apr 24 14:08:01 2014 +0100
tree	273cea29e9d7fea8bb38cc36a86385cc66b02098
parent	cd116d177b76dbb333ed2aa0cb47a0c17678f0c2 [diff] [blame]