From 67f121772d60dda8304fd3b8579864b3da13e5bf Mon Sep 17 00:00:00 2001
From: Mark Zhang <markz@nvidia.com>
Date: Sun, 4 Jun 2023 18:43:38 +0800
Subject: [PATCH] dts: optee: Add fTPM nodes

This patch adds several fTPM device tree nodes. These nodes are to pass
4 things from MB2 to OP-TEE:
- Silicon identity private key
- Silicon identity public key
- MB2 event log signature
- TOS event log signature

Bug 3960022

Change-Id: Id02dbcc4d92968eb93420bf327b243e5255ef16e
Reviewed-on: https://git-master.nvidia.com/r/c/device/hardware/nvidia/soc/t23x/+/2915245
Reviewed-on: https://git-master.nvidia.com/r/c/device/hardware/nvidia/t23x-public-dts/+/2978522
Reviewed-by: Nitin Kumbhar <nkumbhar@nvidia.com>
GVS: Gerrit_Virtual_Submit <buildbot_gerritrpt@nvidia.com>
Tested-by: Mark Zhang <markz@nvidia.com>
---
 optee-dts/tegra234-optee.dts | 49 +++++++++++++++++++++++++++++++++++-
 1 file changed, 48 insertions(+), 1 deletion(-)

diff --git a/optee-dts/tegra234-optee.dts b/optee-dts/tegra234-optee.dts
index 0f80678..f9ff555 100644
--- a/optee-dts/tegra234-optee.dts
+++ b/optee-dts/tegra234-optee.dts
@@ -1,7 +1,7 @@
 /*
  * SPDX-License-Identifier: BSD-2-Clause
  *
- * Copyright (c) 2021-2022, NVIDIA CORPORATION. All rights reserved.
+ * Copyright (c) 2021-2023, NVIDIA CORPORATION. All rights reserved.
  */
 
 /dts-v1/;
@@ -74,6 +74,53 @@
 			};
 		};
 
+		/*
+		 * The fTPM node is created to pass fTPM information from MB2 to OP-TEE.
+		 * The reg attribute indicates the address and the size of the component,
+		 * which will be filled by MB2 at runtime. All addresses are inside TZDRAM.
+		 * The status of the nodes below will always be set to disabled and the
+		 * secure-status will be set to okay by MB2 at runtime.
+		 */
+		ftpm {
+			compatible = "nvidia,ftpm-contents";
+			status = "disabled";
+			secure-status = "disabled";
+			#address-cells = <2>;
+			#size-cells = <2>;
+
+			/* This is the Silicon ID private key. */
+			silicon-id-privkey@0 {
+				compatible = "nvidia,ftpm-silicon-id-privkey";
+				reg = <0 0 0 0>;
+				status = "disabled";
+				secure-status = "disabled";
+			};
+
+			/* This is the Silicon ID public key. */
+			silicon-id-pubkey@0 {
+				compatible = "nvidia,ftpm-silicon-id-pubkey";
+				reg = <0 0 0 0>;
+				status = "disabled";
+				secure-status = "disabled";
+			};
+
+			/* This is the signature of the MB2 measurement. */
+			mb2-event-log-sig@0 {
+				compatible = "nvidia,ftpm-mb2-event-log-sig";
+				reg = <0 0 0 0>;
+				status = "disabled";
+				secure-status = "disabled";
+			};
+
+			/* This is the signature of the TOS image measurement. */
+			tos-event-log-sig@0 {
+				compatible = "nvidia,ftpm-tos-event-log-sig";
+				reg = <0 0 0 0>;
+				status = "disabled";
+				secure-status = "disabled";
+			};
+		};
+
 		/* MB2 will fill the address and size of EKB blob. */
 		ekb-blob@0 {
 			compatible = "jetson-ekb-blob";