From patchwork Wed Apr 7 11:53:32 2021 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Sughosh Ganu X-Patchwork-Id: 416680 Delivered-To: patch@linaro.org Received: by 2002:a02:8562:0:0:0:0:0 with SMTP id g89csp393739jai; Wed, 7 Apr 2021 04:54:58 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzGYDZpvtIk8p2HSFypgwg7vbA8hi66GLYhyeTe6i/axbfUAs3x/a3GVcAYDJ60oaL2Ysyz X-Received: by 2002:a17:906:b20f:: with SMTP id p15mr108422ejz.64.1617796498130; Wed, 07 Apr 2021 04:54:58 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1617796498; cv=none; d=google.com; s=arc-20160816; b=xu+SLYtCiYbvu363KQXRExdW7v/zpZuaeSCaJ7jw72XF21FGyc7Q0op1I7hZgHKqNB 6+WA/OC+DB9B9TCboqjcBN+/zsnm/rXGnDPdtv/Og1SMJFpjEghQIQiQwNxhFMYHqcNJ cscGD0+RL23uN58rB6sVE3rAAj8rQJcP9/QBl5TO4rhFEHD1IlfkqiwuQwRLPMk1+7TP 0Xjliav9+x3gJY30be27V0Oz9S8XqzGzPWeCkRtiVPFyzDAR8t0cYcIQnmHuRuPlIWzw TFKpVnC4LDGUN5RRDtt2RS+Koe6pZUn2kdhvOOgirCHxiMG/G/Ab558Ehy+u4ebppESo 03VA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=sender:errors-to:list-subscribe:list-help:list-post:list-archive :list-unsubscribe:list-id:precedence:references:in-reply-to :message-id:date:subject:cc:to:from; bh=UO+zI44bv9eoBYDn2athkpJ6l6vpa7QbRJaIhESOB50=; b=K9g9nLptDbFA9y2vTlu1VAnmFv7NKGpj7UxMct5hJsRB8Q92vxcd1qDeos4/s/UTlZ Dhq/KwKna58cfsC3KUXir65sudHc8uwnop8/disaWEqcjsO8PS5CsMQ7Prg8oMFe4PvW 2Rfv87fjiFFvWeHfnvp4pYn0v8xy58Dg00dWof9wHVQfTt7UEC3Eu82A6GPtbdPK4zCy Uu/4YoJa8ask2nf3Pr++a4FEmudJPf0j4hkIZ2nUKFXB48Iv7nll0M/DAEraNjQCctRj Px+P9Rv86DNO8SamEJpl6CbJsMg2hn41EE62U6gVGE/HN2yuDxlOyrK5MZGOu/jOLwEP X+MA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of u-boot-bounces@lists.denx.de designates 85.214.62.61 as permitted sender) smtp.mailfrom=u-boot-bounces@lists.denx.de; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linaro.org Return-Path: Received: from phobos.denx.de (phobos.denx.de. [85.214.62.61]) by mx.google.com with ESMTPS id z16si19808221edd.298.2021.04.07.04.54.57 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 07 Apr 2021 04:54:58 -0700 (PDT) Received-SPF: pass (google.com: domain of u-boot-bounces@lists.denx.de designates 85.214.62.61 as permitted sender) client-ip=85.214.62.61; Authentication-Results: mx.google.com; spf=pass (google.com: domain of u-boot-bounces@lists.denx.de designates 85.214.62.61 as permitted sender) smtp.mailfrom=u-boot-bounces@lists.denx.de; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linaro.org Received: from h2850616.stratoserver.net (localhost [IPv6:::1]) by phobos.denx.de (Postfix) with ESMTP id 0F7E681693; Wed, 7 Apr 2021 13:54:30 +0200 (CEST) Authentication-Results: phobos.denx.de; dmarc=fail (p=none dis=none) header.from=linaro.org Authentication-Results: phobos.denx.de; spf=pass smtp.mailfrom=u-boot-bounces@lists.denx.de Received: by phobos.denx.de (Postfix, from userid 109) id C5D38812B2; Wed, 7 Apr 2021 13:54:24 +0200 (CEST) X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on phobos.denx.de X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,SPF_HELO_NONE autolearn=ham autolearn_force=no version=3.4.2 Received: from foss.arm.com (foss.arm.com [217.140.110.172]) by phobos.denx.de (Postfix) with ESMTP id 82313805B4 for ; Wed, 7 Apr 2021 13:54:20 +0200 (CEST) Authentication-Results: phobos.denx.de; dmarc=fail (p=none dis=none) header.from=linaro.org Authentication-Results: phobos.denx.de; spf=fail smtp.mailfrom=sughosh.ganu@linaro.org Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 3B81511FB; Wed, 7 Apr 2021 04:54:19 -0700 (PDT) Received: from a076522.blr.arm.com (a076522.blr.arm.com [10.162.16.44]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 2462B3F792; Wed, 7 Apr 2021 04:54:16 -0700 (PDT) From: Sughosh Ganu To: u-boot@lists.denx.de Cc: Heinrich Schuchardt , Alexander Graf , Simon Glass , Bin Meng , =?utf-8?q?Pali_Roh=C3=A1r?= , Sughosh Ganu Subject: [PATCH 2/5] efi_loader: Kconfig: Add symbols for embedding the public key into the platform's dtb Date: Wed, 7 Apr 2021 17:23:32 +0530 Message-Id: <20210407115335.8615-3-sughosh.ganu@linaro.org> X-Mailer: git-send-email 2.17.1 In-Reply-To: <20210407115335.8615-1-sughosh.ganu@linaro.org> References: <20210407115335.8615-1-sughosh.ganu@linaro.org> X-BeenThere: u-boot@lists.denx.de X-Mailman-Version: 2.1.34 Precedence: list List-Id: U-Boot discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" X-Virus-Scanned: clamav-milter 0.102.4 at phobos.denx.de X-Virus-Status: Clean Add config options EFI_PKEY_DTB_EMBED and EFI_PKEY_FILE which are to be used for embedding the public key to be used for capsule authentication into the platform's device tree. The embedding of the public key would take place during the platform build process. Signed-off-by: Sughosh Ganu --- lib/efi_loader/Kconfig | 15 +++++++++++++++ 1 file changed, 15 insertions(+) -- 2.17.1 diff --git a/lib/efi_loader/Kconfig b/lib/efi_loader/Kconfig index 0b99d7c774..de3083a979 100644 --- a/lib/efi_loader/Kconfig +++ b/lib/efi_loader/Kconfig @@ -179,6 +179,21 @@ config EFI_CAPSULE_AUTHENTICATE Select this option if you want to enable capsule authentication +config EFI_PKEY_DTB_EMBED + bool "Embed the public key in the Device Tree" + default n + depends on EFI_CAPSULE_AUTHENTICATE + help + Select this option if the public key used for capsule + authentication is to be embedded into the platform's + device tree. + +config EFI_PKEY_FILE + string "Public Key esl file to be embedded into the Device Tree" + help + Specify the absolute path of the public key esl file that is + to be embedded in the platform's device tree. + config EFI_CAPSULE_FIRMWARE_FIT bool "FMP driver for FIT image" depends on EFI_CAPSULE_FIRMWARE_MANAGEMENT