Attention is currently required from: Arthur Heymans, Elyes Haouas, Sergii Dmytruk.

Hello Elyes Haouas, Krystian Hebel, Martin L Roth, Michał Żygowski, build bot (Jenkins),

I'd like you to reexamine a change. Please visit

https://review.coreboot.org/c/coreboot/+/67065?usp=email

to look at the new patch set (#40).

Change subject: 3rdparty/open-power-signing-utils: add SecureBoot utility for OpenPOWER ......................................................................

3rdparty/open-power-signing-utils: add SecureBoot utility for OpenPOWER

Signing is performed with test keys by default, set CONFIG_SIGNING_KEYS_DIR to a non-empty value to use other keys.

Depending on the version of the Talos II firmware this alone might not allow booting because coreboot replaces only part of the stock firmware and its newer versions enable secure boot by default (not to be confused with SecureBoot in EFI). The signing performed in this commit is still a prerequisite and might as well be done on its own. Fixing operation with newer stock firmware will be done in a follow-up change.

Change-Id: Id88baef5ecb1f8ffd74a7f464bbbaaaea0ca643d Signed-off-by: Michał Żygowski michal.zygowski@3mdeb.com Signed-off-by: Sergii Dmytruk sergii.dmytruk@3mdeb.com --- M .gitmodules A 3rdparty/open-power-signing-utils M Makefile.mk M src/soc/ibm/power9/Kconfig M src/soc/ibm/power9/Makefile.mk 5 files changed, 51 insertions(+), 5 deletions(-)

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/65/67065/40