| Message ID | 20210128001521.266883-1-joel@jms.id.au |
|---|---|
| Headers | show |
| Series | FIT verification | expand |
On Thu, 28 Jan 2021 at 00:15, Joel Stanley <joel@jms.id.au> wrote: > > As part of our effort to enable secure boot in openbmc, this turns on > FIT verification in the SPL and u-boot. > > It adjusts the SRAM layout to accommodate the extra code size, moving > the heap to the non-parity checked 24KB of SRAM. > > It also modifies the way the SPL is built, including disabling features. > > v3 Reorders the patches to put the size reduction changes first, and > then enables signature verification to ensure the build can be bisected. > > The ymodem disable patch is dropped, as we fit cleanly under the 64KB > boundary with the feature enabled. > > The general cleanup patch is dropped, except for the DOS_PARTITION > change which was added to the SPL cleanup patch. These cleanups will be > posted separately at a later date. > > Size Delta > HEAD 44054 > patch 1 43442 -612 > patch 2 42337 -1105 > patch 3 42337 0 > patch 4 63378 +21041 I've merged this series into the v2019.04-aspeed-openbmc branch and submitted a bump to gerrit: https://gerrit.openbmc-project.xyz/c/openbmc/openbmc/+/40076 Cheers, Joel
As part of our effort to enable secure boot in openbmc, this turns on FIT verification in the SPL and u-boot. It adjusts the SRAM layout to accommodate the extra code size, moving the heap to the non-parity checked 24KB of SRAM. It also modifies the way the SPL is built, including disabling features. v3 Reorders the patches to put the size reduction changes first, and then enables signature verification to ensure the build can be bisected. The ymodem disable patch is dropped, as we fit cleanly under the 64KB boundary with the feature enabled. The general cleanup patch is dropped, except for the DOS_PARTITION change which was added to the SPL cleanup patch. These cleanups will be posted separately at a later date. Size Delta HEAD 44054 patch 1 43442 -612 patch 2 42337 -1105 patch 3 42337 0 patch 4 63378 +21041 Joel Stanley (4): ast2600: Allow selection of SPL boot devices config: ast2600: Reduce SPL image size ast2600: Modify SPL SRAM layout config: ast2600: Enable FIT signature verification arch/arm/mach-aspeed/ast2600/Kconfig | 12 ++++++++++++ arch/arm/mach-aspeed/ast2600/spl_boot.c | 9 +++++++++ configs/ast2600_openbmc_spl_emmc_defconfig | 9 ++++++++- include/configs/evb_ast2600a1_spl.h | 4 ++-- 4 files changed, 31 insertions(+), 3 deletions(-)