Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp3888090pxb; Mon, 1 Feb 2021 07:13:33 -0800 (PST) X-Google-Smtp-Source: ABdhPJyQ9tUqoMPsDe7tBnhNuMIS9G57vdea5IOr6JVGsyjeFY3rXbENqNwXXBzCnDcm5n6M9NoI X-Received: by 2002:aa7:c407:: with SMTP id j7mr6523882edq.28.1612192413635; Mon, 01 Feb 2021 07:13:33 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1612192413; cv=none; d=google.com; s=arc-20160816; b=C6Ww0wYYUbzSMbYNvq3ZqRAqLXfVYZSOXISv9FsXSFhS6HHyiFhj07OK9doltiAzqR Y6ZkWhxY7vBkSbn795xgfmlJzwOFCNXLPTgddAS+no7hcGY2cecNfOhpUUT2b4d/aX+T RTl5XJGQi+9AOo3HKqDFZ8L4Qdby5cDHK9VzDlOHjBWRmN6wK4eTepKomygms1be1kCO hFdlbuu+JrT2PNx0smsYRxTmLgRTpL0S1nDXgFCPR7GTsBSPwOb4Dq4mlhWANHQjR3Uk D09P5P8L7Tmk8cR9aOg2aBKYxbRUozxx1KFCo+YdCCBty0QCKqAMk+fuXkGIZWso1Wv0 hUgg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:references:in-reply-to:message-id:date:subject :cc:to:from:ironport-sdr:ironport-sdr; bh=azXn6r5kwU+i6qsZLnrbRycUcOxI40JrbioeDLzyrUI=; b=AEhZtdEz9/UnG9RT7lUoBGQXAJVzDzsRHosr5wjeIBVB+AhSzNjQfPgz0vki6K1v1q XfBTQzZ41zR/kNPOUT+Gp5hJf3zpEdnz7xlTAUasqDd6gFbNpMNv1yAZvcdny15wS9xq QiG0SD5EXXPhHTOssG/ArEHjzCn1IlKV/lacj9G0vjMLDQ2cDv2A0Tx/dtGtFYhTq2pg U4GZlB7GvHujBNTvQUTHsRjaQSx4DZUrsdMZgS20cCaNqFB9xpGQqg0shUg1fDqWupjo T9LwJxRrl3KjJX2FftUA8ZC+jHm0IX5lJrPOMiXkJaTQbWSTqY/YwW4BxphS1IDedRIq Di8Q== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id o18si7356395ejn.667.2021.02.01.07.13.04; Mon, 01 Feb 2021 07:13:33 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231376AbhBAPLI (ORCPT + 99 others); Mon, 1 Feb 2021 10:11:08 -0500 Received: from mga06.intel.com ([134.134.136.31]:33931 "EHLO mga06.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229786AbhBAPEA (ORCPT ); Mon, 1 Feb 2021 10:04:00 -0500 IronPort-SDR: E0FLsjojSzS9M617j7D5VNPdrkyCnrB4gIO9ax4yLMq9vahepIhouUfU6bwKC1yj2Wd0s3MS8w pqbyZDulhRPA== X-IronPort-AV: E=McAfee;i="6000,8403,9882"; a="242214675" X-IronPort-AV: E=Sophos;i="5.79,392,1602572400"; d="scan'208";a="242214675" Received: from fmsmga008.fm.intel.com ([10.253.24.58]) by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 01 Feb 2021 07:02:31 -0800 IronPort-SDR: 2ARkCyIwXa+X+eu0ld0ayvFlJlLt0OEvdfW1qzsXICfxmEdOvOLHRoS6SnwNqwLD/1sGy7L9ui w/nn0OxQTjEQ== X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.79,392,1602572400"; d="scan'208";a="369891571" Received: from marshy.an.intel.com ([10.122.105.143]) by fmsmga008.fm.intel.com with ESMTP; 01 Feb 2021 07:02:31 -0800 From: richard.gong@linux.intel.com To: mdf@kernel.org, trix@redhat.com, gregkh@linuxfoundation.org, linux-fpga@vger.kernel.org, linux-kernel@vger.kernel.org Cc: Richard Gong Subject: [PATCHv4 3/6] fpga: fpga-mgr: add FPGA_MGR_BITSTREAM_AUTHENTICATE flag Date: Mon, 1 Feb 2021 09:21:56 -0600 Message-Id: <1612192919-4069-4-git-send-email-richard.gong@linux.intel.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: <1612192919-4069-1-git-send-email-richard.gong@linux.intel.com> References: <1612192919-4069-1-git-send-email-richard.gong@linux.intel.com> Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Richard Gong Add FPGA_MGR_BITSTREAM_AUTHENTICATE flag for FPGA bitstream authentication, which makes sure a signed bitstream has valid signatures. Except for the actual configuration of the device, the authentication works the same way as FPGA configuration does. If the authentication passes, the bitstream will be programmed into QSPI flash and will be expected to boot without issues. Signed-off-by: Richard Gong --- v4: s/FPGA_MGR_BITSTREM_AUTHENTICATION/FPGA_MGR_BITSTREAM_AUTHENTICATE v3: no change v2: align all FPGA_MGR_* flags update the commit messages --- include/linux/fpga/fpga-mgr.h | 3 +++ 1 file changed, 3 insertions(+) diff --git a/include/linux/fpga/fpga-mgr.h b/include/linux/fpga/fpga-mgr.h index 2bc3030..a81b3a7 100644 --- a/include/linux/fpga/fpga-mgr.h +++ b/include/linux/fpga/fpga-mgr.h @@ -67,12 +67,15 @@ enum fpga_mgr_states { * %FPGA_MGR_BITSTREAM_LSB_FIRST: SPI bitstream bit order is LSB first * * %FPGA_MGR_COMPRESSED_BITSTREAM: FPGA bitstream is compressed + * + * %FPGA_MGR_BITSTREAM_AUTHENTICATE: do FPGA bitstream authentication only */ #define FPGA_MGR_PARTIAL_RECONFIG BIT(0) #define FPGA_MGR_EXTERNAL_CONFIG BIT(1) #define FPGA_MGR_ENCRYPTED_BITSTREAM BIT(2) #define FPGA_MGR_BITSTREAM_LSB_FIRST BIT(3) #define FPGA_MGR_COMPRESSED_BITSTREAM BIT(4) +#define FPGA_MGR_BITSTREAM_AUTHENTICATE BIT(5) /** * struct fpga_image_info - information specific to a FPGA image -- 2.7.4