From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <jagadeesh.ujja@arm.com>
Received-SPF: Pass (sender SPF authorized) identity=mailfrom;
 client-ip=217.140.101.70; helo=foss.arm.com;
 envelope-from=jagadeesh.ujja@arm.com; receiver=edk2-devel@lists.01.org 
Received: from foss.arm.com (foss.arm.com [217.140.101.70])
 by ml01.01.org (Postfix) with ESMTP id 3B7EE211D6171
 for <edk2-devel@lists.01.org>; Tue, 12 Mar 2019 09:06:49 -0700 (PDT)
Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.72.51.249])
 by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 22928165C;
 Tue, 12 Mar 2019 09:06:49 -0700 (PDT)
Received: from usa.arm.com (a075556-lin.blr.arm.com [10.162.2.22])
 by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPA id C0B8B3F71D;
 Tue, 12 Mar 2019 09:06:47 -0700 (PDT)
From: Jagadeesh Ujja <jagadeesh.ujja@arm.com>
To: edk2-devel@lists.01.org, leif.lindholm@linaro.org,
 ard.biesheuvel@linaro.org
Date: Tue, 12 Mar 2019 21:36:32 +0530
Message-Id: <1552406795-16588-1-git-send-email-jagadeesh.ujja@arm.com>
X-Mailer: git-send-email 2.7.4
Subject: [PATCH edk2-platforms v2 0/3] Platform/ARM/SgiPkg: Implement StandaloneMm based secure boot
X-BeenThere: edk2-devel@lists.01.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: EDK II Development  <edk2-devel.lists.01.org>
List-Unsubscribe: <https://lists.01.org/mailman/options/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=unsubscribe>
List-Archive: <http://lists.01.org/pipermail/edk2-devel/>
List-Post: <mailto:edk2-devel@lists.01.org>
List-Help: <mailto:edk2-devel-request@lists.01.org?subject=help>
List-Subscribe: <https://lists.01.org/mailman/listinfo/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000
X-List-Received-Date: Tue, 12 Mar 2019 16:06:50 -0000

Changes since v1:
- Addressed all the comments from Ard Biesheuvel.

Integrating various pieces together so that the authenticated variable store
runs entirely in standalone MM context residing in a secure partition.
This primarily involves adding all required library and drivers to platform
specific .DSC and .FDF files. This creates separate Nor flash region which
is visible to only StandaoneMm drivers, this Nor Flash will co-exist along
with general Nor flash region.

Jagadeesh Ujja (3):
  Platform/ARM/Sgi: define nor2 flash controller memory map
  Platform/ARM/Sgi: allow MM_STANDALONE modules to use
    NorFlashPlatformLib
  Platform/ARM/SgiPkg: add MM based UEFI secure boot support

 Platform/ARM/SgiPkg/Include/SgiPlatform.h                           |  4 ++
 Platform/ARM/SgiPkg/Library/NorFlashLib/StandaloneMmNorFlashLib.c   | 63 ++++++++++++++++++++
 Platform/ARM/SgiPkg/Library/NorFlashLib/StandaloneMmNorFlashLib.inf | 33 ++++++++++
 Platform/ARM/SgiPkg/PlatformStandaloneMm.dsc                        | 34 ++++++++++-
 Platform/ARM/SgiPkg/PlatformStandaloneMm.fdf                        |  5 ++
 Platform/ARM/SgiPkg/SgiPlatform.dsc                                 | 18 +++++-
 Platform/ARM/SgiPkg/SgiPlatform.fdf                                 |  7 ++-
 7 files changed, 161 insertions(+), 3 deletions(-)
 create mode 100644 Platform/ARM/SgiPkg/Library/NorFlashLib/StandaloneMmNorFlashLib.c
 create mode 100644 Platform/ARM/SgiPkg/Library/NorFlashLib/StandaloneMmNorFlashLib.inf

-- 
2.7.4

In-Reply-To: