TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TF-M / trusted-firmware-m / b9309b69b76b04fcdfe331fbd96d1fc5e040f85a / . / bl1 / Kconfig
blob: ce7e66c9c0601dea40d3af3ef65f2cd4d1a39a19 [file] [log] [blame]
Jianliang Shenf57c6a72023-02-20 14:04:38 +0800[diff] [blame]1#-------------------------------------------------------------------------------
Raef Coles439265a2024-12-09 17:19:19 +0000[diff] [blame]2# SPDX-FileCopyrightText: Copyright The TrustedFirmware-M Contributors
Jianliang Shenf57c6a72023-02-20 14:04:38 +0800[diff] [blame]3#
4# SPDX-License-Identifier: BSD-3-Clause
5#
6#-------------------------------------------------------------------------------
7
8menuconfig BL1
9 bool "BL1"
10 default n
11
12if BL1 && PLATFORM_DEFAULT_BL1
13
14config TFM_BL2_ENCRYPTION_KEY_PATH
15 string
16 default "$(TFM_SOURCE_DIR)/bl1/bl1_2/bl2_dummy_encryption_key.bin"
17 help
18 Path to binary key to use for encrypting BL2
19
20config TFM_GUK_PATH
21 string
22 default "$(TFM_SOURCE_DIR)/bl1/bl1_1/dummy_guk.bin"
23 help
24 Path to binary GUK key file to provision
25
26config TFM_BL2_IMAGE_FLASH_AREA_NUM
27 int "Which flash area BL2 is stored in"
28 default 0
29
Gergely Kovacs58841442025-06-06 08:20:55 +0000[diff] [blame]30config TFM_GENERATE_BL1_2_CM_SIGNING_KEY
31 bool "Generate new keypair or use TFM_BL2_CM_SIGNING_KEY_PATH for signing"
32 default n
33
34config TFM_GENERATE_BL1_2_DM_SIGNING_KEY
35 bool "Generate new keypair or use TFM_BL2_DM_SIGNING_KEY_PATH for signing"
36 default n
37
Raef Coles439265a2024-12-09 17:19:19 +0000[diff] [blame]38config TFM_BL2_CM_SIGNING_KEY_PATH
Jianliang Shenf57c6a72023-02-20 14:04:38 +0800[diff] [blame]39 string
40 default "$(TFM_SOURCE_DIR)/bl1/bl1_2/bl1_dummy_rotpk"
41 help
42 Path to binary BL2 signing private key
43
Raef Coles439265a2024-12-09 17:19:19 +0000[diff] [blame]44config TFM_BL2_SIGNING_ALG
45 string
46 default "LMS"
47 help
48 Path to binary BL2 signing private key
49
Jianliang Shenf57c6a72023-02-20 14:04:38 +0800[diff] [blame]50config TFM_BL1_MEMORY_MAPPED_FLASH
51 bool "BL1 Access flash content"
52 default y
53
Jianliang Shenf57c6a72023-02-20 14:04:38 +0800[diff] [blame]54config TFM_BL1_DEFAULT_OTP
55 bool
56 default y
57 help
58 Whether BL1_1 will use default OTP memory
59
60config TFM_BL1_DEFAULT_PROVISIONING
61 bool
62 default y
63 help
64 Whether BL1_1 will use default provisioning
65
66config TFM_BL1_SOFTWARE_CRYPTO
67 bool
68 default y
69 help
70 Whether BL1_1 will use software crypto
71
Raef Coles439265a2024-12-09 17:19:19 +0000[diff] [blame]72config TFM_BL1_2_ENABLE_LMS
Jianliang Shenf57c6a72023-02-20 14:04:38 +0800[diff] [blame]73 bool "Enable LMS PQ crypto for BL2 verification."
74 default n
75 help
Raef Coles439265a2024-12-09 17:19:19 +0000[diff] [blame]76 Enable LMS PQ crypto for BL2 verification.
77
78config TFM_BL1_2_ENABLE_ECDSA
79 bool "Enable ECDSA crypto for BL2 verification."
80 default n
81 help
82 Enable ECSDA crypto for BL2 verification.
Jianliang Shenf57c6a72023-02-20 14:04:38 +0800[diff] [blame]83
84config TFM_BL1_IMAGE_VERSION_BL2
85 string "Image version of BL2 image"
86 default "1.9.0+0"
87
88config TFM_BL1_IMAGE_SECURITY_COUNTER_BL2
89 int "Security counter value to include with BL2 image"
90 default 1
91
92config TFM_BL1_2_IN_OTP
93 bool "Whether BL1_2 is stored in OTP"
94 default y
95
Raef Colesf8426362024-01-15 12:38:10 +0000[diff] [blame]96config TFM_BL1_2_IN_FLASH
97 bool "Whether BL1_2 is stored in FLASH"
98 default n
99
Raef Coles4874aa62023-04-05 10:40:12 +0100[diff] [blame]100config BL1_2_BUILD_TYPE
101 string "BL1_2 build type"
102 default "$(CMAKE_BUILD_TYPE)"
103
Raef Coles4d4aa882024-05-16 10:22:55 +0100[diff] [blame]104config BL1_1_SHARED_SYMBOLS_PATH
Jianliang Shenc750f652023-08-09 11:16:17 +0800[diff] [blame]105 string "Path to list of symbols that BL1_1 that can be referenced from BL1_2"
106 default "${TFM_SOURCE_DIR}/bl1/bl1_1/bl1_1_shared_symbols.txt"
107
Jianliang Shenf57c6a72023-02-20 14:04:38 +0800[diff] [blame]108endif