Closed BaochengSu closed 1 year ago
Change in V2:
optee-rpmb
command default to u-boot config, since optee build is controlled, expose this command would not bring risks.Let me finish the isar-cip-core review and integration of Sven's patches. We don't want to rebase again here (or worse) but rather consume an upstream-accepted revision.
Let me finish the isar-cip-core review and integration of Sven's patches. We don't want to rebase again here (or worse) but rather consume an upstream-accepted revision.
Fine, schedule-wise I will continue work on this branch for the further topics, such as Key enrolling. To me, the EDK2 part of Sven's patch seems acceptable except the git clone takes too long and occupies too much space. So once there is a final state of the upstream patch I will update here accordingly, since that part takes only one commit in my patch set, it should not produce too many troubles by then.
Change in V3:
UEFI key enrolling is on the way.
This PR is partially obsoleted by #426, the rest will be obsoleted by upcoming disk encryption integration.
Enable eMMC RPMB support and OPTee driver in u-boot so that secure storage could be usable in u-boot.
Also add the RPMB key paring support in u-boot.