diff options
author | Alexei Fedorov <Alexei.Fedorov@arm.com> | 2019-03-13 11:05:07 +0000 |
---|---|---|
committer | Alexei Fedorov <Alexei.Fedorov@arm.com> | 2019-03-18 15:46:22 +0000 |
commit | 06715f85d15c5b9a6e58b87d6f2a3684d3bc6b28 (patch) | |
tree | fffc0502214a34a932b5354e4e318c7e2d7d14b8 /docs/firmware-design.rst | |
parent | 73050e6970673ea1bd05a54dd9c3c3fe0ebf41f8 (diff) | |
download | trusted-firmware-a-06715f85d15c5b9a6e58b87d6f2a3684d3bc6b28.tar.gz |
Declare PAuth for Secure world as experimental
Declare ENABLE_PAUTH and CTX_INCLUDE_PAUTH_REGS
build options as experimental.
Pointer Authentication is enabled for Non-secure world
irrespective of the value of these build flags if the
CPU supports it.
The patch also fixes the description of fiptool 'help' command.
Change-Id: I46de3228fbcce774a2624cd387798680d8504c38
Signed-off-by: Alexei Fedorov <Alexei.Fedorov@arm.com>
Diffstat (limited to 'docs/firmware-design.rst')
-rw-r--r-- | docs/firmware-design.rst | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/docs/firmware-design.rst b/docs/firmware-design.rst index 52520ea12d..66b16fa2e6 100644 --- a/docs/firmware-design.rst +++ b/docs/firmware-design.rst @@ -2565,11 +2565,16 @@ Armv8.3-A must be set to 1. This will add all pointer authentication system registers to the context that is saved when doing a world switch. - The Trusted Firmware itself has support for pointer authentication at runtime + The TF-A itself has support for pointer authentication at runtime that can be enabled by setting both options ``ENABLE_PAUTH`` and ``CTX_INCLUDE_PAUTH_REGS`` to 1. This enables pointer authentication in BL1, BL2, BL31, and the TSP if it is used. + These options are experimental features. + + Note that Pointer Authentication is enabled for Non-secure world irrespective + of the value of these build flags if the CPU supports it. + If ``ARM_ARCH_MAJOR == 8`` and ``ARM_ARCH_MINOR >= 3`` the code footprint of enabling PAuth is lower because the compiler will use the optimized PAuth instructions rather than the backwards-compatible ones. |