blob: 2c29107ca1846b318a8ded67c4658186e71d6a1d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
|
##
##
## SPDX-License-Identifier: GPL-2.0-only
menu "Verified Boot (verified_boot)"
config VENDORCODE_ELTAN_VBOOT
bool "Enable Verified Boot"
depends on !VBOOT
default n
select VBOOT_LIB
config VENDORCODE_ELTAN_VBOOT_SIGNED_MANIFEST
bool "Enable Signed Manifest"
depends on VENDORCODE_ELTAN_VBOOT
default n
config VENDORCODE_ELTAN_VBOOT_USE_SHA512
bool "SHA512 hashes"
depends on VENDORCODE_ELTAN_VBOOT
default n
help
Use SHA512 for the vboot operations, this applies to the digest in
the manifest and the manifest digest.
config VENDORCODE_ELTAN_OEM_MANIFEST_LOC
hex "Manifest Location"
default 0xFFFFF840
config VENDORCODE_ELTAN_VBOOT_MANIFEST
string "Verified boot manifest file"
default "mainboard/$(MAINBOARD_DIR)/manifest.h"
config VENDORCODE_ELTAN_OEM_MANIFEST_ITEMS
int "Manifest Items"
default 12
config VENDORCODE_ELTAN_OEM_MANIFEST_ITEM_SIZE
int
default 64 if VENDORCODE_ELTAN_VBOOT_USE_SHA512
default 32
config VENDORCODE_ELTAN_VBOOT_KEY_LOCATION
hex "Verified boot Key Location"
depends on VENDORCODE_ELTAN_VBOOT_SIGNED_MANIFEST
default 0xFFFFF500
config VENDORCODE_ELTAN_VBOOT_KEY_FILE
string "Verified boot Key File"
depends on VENDORCODE_ELTAN_VBOOT_SIGNED_MANIFEST
default "3rdparty/eltan/verified_boot/Keys/key.vbpubk"
config VENDORCODE_ELTAN_VBOOT_KEY_SIZE
int
default 552
endmenu # Verified Boot (verified_boot)
|
