Merge git://git.denx.de/u-boot-mpc85xx

author: Tom Rini <trini@konsulko.com> 2016-07-21 20:20:00 -0400
committer: Tom Rini <trini@konsulko.com> 2016-07-21 20:20:00 -0400
commit: 89ca873e2ddea859526f25f678fa53dda055e90f (patch)
tree: 3de5d39c9e3a257d50727b50057336ca41aac2db /doc
parent: 9f84da8de1873593d9b708aa4a8a24f46e67c744 (diff)
parent: b24a4f6247d867f1301edc1c6390aca79ecbe16b (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/doc/SPL/README.spl-secure-boot b/doc/SPL/README.spl-secure-boot
new file mode 100644
index 0000000000..f2f8d78883
--- /dev/null
+++ b/doc/SPL/README.spl-secure-boot
@@ -0,0 +1,18 @@
+Overview of SPL verified boot on powerpc/mpc85xx & arm/layerscape platforms
+===========================================================================
+
+Introduction
+------------
+
+This document provides an overview of how SPL verified boot works on powerpc/
+mpc85xx & arm/layerscape platforms.
+
+Methodology
+-----------
+
+The SPL image is responsible for loading the next stage boot loader, which is
+the main u-boot image. For secure boot process on these platforms ROM verifies
+SPL image, so to continue chain of trust SPL image verifies U-boot image using
+spl_validate_uboot(). This function uses QorIQ Trust Architecture header
+(appended to U-boot image) to validate the U-boot binary just before passing
+control to it.
author	Tom Rini <trini@konsulko.com>	2016-07-21 20:20:00 -0400
committer	Tom Rini <trini@konsulko.com>	2016-07-21 20:20:00 -0400
commit	89ca873e2ddea859526f25f678fa53dda055e90f (patch)
tree	3de5d39c9e3a257d50727b50057336ca41aac2db /doc
parent	9f84da8de1873593d9b708aa4a8a24f46e67c744 (diff)
parent	b24a4f6247d867f1301edc1c6390aca79ecbe16b (diff)