Gitiles
Code Review Sign In
git01.mediatek.com / filogic / uboot / 0ce8543db864929f7ffc5d3d25b00ee5d64b86bd
commit0ce8543db864929f7ffc5d3d25b00ee5d64b86bd[log] [tgz]
authorAndrew Davis <afd@ti.com>Fri Jul 15 11:34:35 2022 -0500
committerTom Rini <trini@konsulko.com>Thu Aug 04 15:32:20 2022 -0400
tree9e15d9e6ef79fc1dfd4f56e112a81bc25ea6f7b9
parent2045cf1cd85d647d4f48c26fbc15cd2600ceb5a3 [diff]
arm: mach-k3: security: Remove certificate if detected on GP device

If the device is a GP and we detect a signing certificate then remove it.
It would fail to authenticate otherwise as the device is GP and has no
secure authentication services in SYSFW.

This shouldn't happen often as trying to boot signed images on GP devices
doesn't make much sense, but if we run into a signed image we should at
least try to ignore the certificate and boot the image anyway. This could
help with users of GP devices who only have HS images available.

If this does happen, print a nice big warning.

Signed-off-by: Andrew Davis <afd@ti.com>
Reviewed-by: Tom Rini <trini@konsulko.com>
1 file changed
tree: 9e15d9e6ef79fc1dfd4f56e112a81bc25ea6f7b9
  1. .github/
  2. api/
  3. arch/
  4. board/
  5. boot/
  6. cmd/
  7. common/
  8. configs/
  9. disk/
  10. doc/
  11. drivers/
  12. dts/
  13. env/
  14. examples/
  15. fs/
  16. include/
  17. lib/
  18. Licenses/
  19. net/
  20. post/
  21. scripts/
  22. test/
  23. tools/
  24. .azure-pipelines.yml
  25. .checkpatch.conf
  26. .get_maintainer.conf
  27. .gitattributes
  28. .gitignore
  29. .gitlab-ci.yml
  30. .mailmap
  31. .readthedocs.yml
  32. config.mk
  33. Kbuild
  34. Kconfig
  35. MAINTAINERS
  36. Makefile
  37. README