[PATCH 3/3] cmd: source: Support specifying config name

Simon Glass sjg at chromium.org
Fri Oct 14 17:56:33 CEST 2022


Hi Sean,

On Thu, 13 Oct 2022 at 12:28, Sean Anderson <sean.anderson at seco.com> wrote:
>
> As discussed previously [1,2], the source command is not safe to use with
> verified boot unless there is a key with required = "images" (which has its
> own problems). This is because if such a key is absent, signatures are
> verified but not required. It is assumed that configuration nodes will
> provide the signature. Because the source command does not use
> configurations to determine the image to source, effectively no
> verification takes place.
>
> To address this, allow specifying configuration nodes. We use the same
> syntax as the bootm command (helpfully provided for us by fit_parse_conf).
> By default, we first try the default config and then the default image. To
> force using a config, # must be present in the command (e.g. `source
> $loadaddr#my-conf`). For convenience, the config may be omitted, just like
> the address may be (e.g. `source \#`). This also works for images
> (`source \:` behaves exactly like `source` currently does).
>
> [1] https://lore.kernel.org/u-boot/7d711133-d513-5bcb-52f2-a9dbaa9eeded@prevas.dk/
> [2] https://lore.kernel.org/u-boot/042dcb34-f85f-351e-1b0e-513f89005fdd@gmail.com/
>
> Signed-off-by: Sean Anderson <sean.anderson at seco.com>
> ---
>
>  .../cmd_stm32prog/cmd_stm32prog.c             |  2 +-
>  boot/bootmeth_script.c                        |  2 +-
>  cmd/source.c                                  | 73 +++++++++++++------
>  doc/uImage.FIT/source_file_format.txt         |  3 +
>  drivers/usb/gadget/f_sdp.c                    |  2 +-
>  include/image.h                               | 19 +++--
>  6 files changed, 72 insertions(+), 29 deletions(-)

This looks right to me, but it desperately needs a test, like we have
for bootm, vboot, etc.

Regards,
SImon


More information about the U-Boot mailing list