aboutsummaryrefslogtreecommitdiff
path: root/secure_fw
diff options
context:
space:
mode:
authorKevin Peng <kevin.peng@arm.com>2021-07-14 12:12:54 +0800
committerDavid Hu <david.hu@arm.com>2021-07-15 11:07:38 +0200
commitf5c66be2e9e76b2be193cd01ad611fd8c578de60 (patch)
treea48e3a201d276bb35013a859a08fd490e459139c /secure_fw
parent38bd4df98d53ff4f5daae003611c660ed0d79bf5 (diff)
downloadtrusted-firmware-m-f5c66be2e9e76b2be193cd01ad611fd8c578de60.tar.gz
SPM: Make boot data table only have enabled Partition
The access policy table for boot data should only have enabled Partition. Change-Id: I125e980f265df3798e6bcee7be8b0e9aa545b652 Signed-off-by: Kevin Peng <kevin.peng@arm.com>
Diffstat (limited to 'secure_fw')
-rw-r--r--secure_fw/spm/ffm/tfm_boot_data.c4
1 files changed, 4 insertions, 0 deletions
diff --git a/secure_fw/spm/ffm/tfm_boot_data.c b/secure_fw/spm/ffm/tfm_boot_data.c
index d7db3038cd..39cd00ad4c 100644
--- a/secure_fw/spm/ffm/tfm_boot_data.c
+++ b/secure_fw/spm/ffm/tfm_boot_data.c
@@ -69,8 +69,12 @@ struct boot_data_access_policy {
* (identified by major_type).
*/
static const struct boot_data_access_policy access_policy_table[] = {
+#ifdef TFM_PARTITION_INITIAL_ATTESTATION
{TFM_SP_INITIAL_ATTESTATION, TLV_MAJOR_IAS},
+#endif
+#ifdef TFM_PARTITION_FIRMWARE_UPDATE
{TFM_SP_FWU, TLV_MAJOR_FWU},
+#endif
};
/*!