diff --git a/boards/nitropad-ns50/nitropad-ns50.config b/boards/nitropad-ns50/nitropad-ns50.config index 1aa9ddc5..8a165060 100644 --- a/boards/nitropad-ns50/nitropad-ns50.config +++ b/boards/nitropad-ns50/nitropad-ns50.config @@ -13,6 +13,8 @@ CONFIG_NITROKEY_BLOBS=y #Enable DEBUG output #export CONFIG_DEBUG_OUTPUT=y #export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y +#Enable TPM2 pcap output under /tmp +#export CONFIG_TPM2_CAPTURE_PCAP=y #On-demand hardware support (modules.cpio) CONFIG_LINUX_USB=y @@ -36,12 +38,15 @@ CONFIG_MSRTOOLS=y # TPM2 requirements CONFIG_TPM2_TSS=y CONFIG_OPENSSL=y +#Remote Attestation common tools CONFIG_POPT=y CONFIG_QRENCODE=y CONFIG_TPMTOTP=y #HOTP based remote attestation for supported USB Security dongle #With/Without TPM support CONFIG_HOTPKEY=y +#Nitrokey Storage admin tool (deprecated) +#CONFIG_NKSTORECLI=n #GUI Support #Console based Whiptail support(Console based, no FB): #CONFIG_SLANG=y @@ -49,7 +54,6 @@ CONFIG_HOTPKEY=y #FBWhiptail based (Graphical): CONFIG_CAIRO=y CONFIG_FBWHIPTAIL=y - #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y @@ -57,7 +61,7 @@ CONFIG_DROPBEAR=y #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 -# TPM2 requirements +#TPM2 requirements export CONFIG_TPM2_TOOLS=y export CONFIG_PRIMARY_KEY_TYPE=ecc #TPM1 requirements @@ -70,3 +74,4 @@ export CONFIG_BOOT_KERNEL_REMOVE="intel_iommu=on intel_iommu=igfx_off" export CONFIG_BOOT_DEV="/dev/nvme0n1" export CONFIG_BOARD_NAME="Nitropad NS50" export CONFIG_FLASHROM_OPTIONS="--force --noverify-all -p internal" +export CONFIG_AUTO_BOOT_TIMEOUT=5 diff --git a/boards/nitropad-nv41/nitropad-nv41.config b/boards/nitropad-nv41/nitropad-nv41.config index f7a7aac2..3a6d157c 100644 --- a/boards/nitropad-nv41/nitropad-nv41.config +++ b/boards/nitropad-nv41/nitropad-nv41.config @@ -13,6 +13,8 @@ CONFIG_NITROKEY_BLOBS=y #Enable DEBUG output #export CONFIG_DEBUG_OUTPUT=y #export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y +#Enable TPM2 pcap output under /tmp +#export CONFIG_TPM2_CAPTURE_PCAP=y #On-demand hardware support (modules.cpio) CONFIG_LINUX_USB=y @@ -36,12 +38,15 @@ CONFIG_MSRTOOLS=y # TPM2 requirements CONFIG_TPM2_TSS=y CONFIG_OPENSSL=y +#Remote Attestation common tools CONFIG_POPT=y CONFIG_QRENCODE=y CONFIG_TPMTOTP=y #HOTP based remote attestation for supported USB Security dongle #With/Without TPM support CONFIG_HOTPKEY=y +#Nitrokey Storage admin tool (deprecated) +#CONFIG_NKSTORECLI=n #GUI Support #Console based Whiptail support(Console based, no FB): #CONFIG_SLANG=y @@ -49,7 +54,6 @@ CONFIG_HOTPKEY=y #FBWhiptail based (Graphical): CONFIG_CAIRO=y CONFIG_FBWHIPTAIL=y - #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y @@ -70,3 +74,4 @@ export CONFIG_BOOT_KERNEL_REMOVE="intel_iommu=on intel_iommu=igfx_off" export CONFIG_BOOT_DEV="/dev/nvme0n1" export CONFIG_BOARD_NAME="Nitropad NV41" export CONFIG_FLASHROM_OPTIONS="--force --noverify-all -p internal" +export CONFIG_AUTO_BOOT_TIMEOUT=5 diff --git a/boards/qemu-coreboot-fbwhiptail-tpm1-hotp/qemu-coreboot-fbwhiptail-tpm1-hotp.config b/boards/qemu-coreboot-fbwhiptail-tpm1-hotp/qemu-coreboot-fbwhiptail-tpm1-hotp.config index 61668b2c..da5e200f 100644 --- a/boards/qemu-coreboot-fbwhiptail-tpm1-hotp/qemu-coreboot-fbwhiptail-tpm1-hotp.config +++ b/boards/qemu-coreboot-fbwhiptail-tpm1-hotp/qemu-coreboot-fbwhiptail-tpm1-hotp.config @@ -28,6 +28,8 @@ export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y CONFIG_LINUX_USB=y CONFIG_LINUX_E1000=y #CONFIG_MOBILE_TETHERING=y +#Runtime on-demand additional hardware support (modules.cpio) +export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y @@ -35,6 +37,7 @@ CONFIG_LINUX_E1000=y ifeq "$(CONFIG_UROOT)" "y" CONFIG_BUSYBOX=n else +#Modules packed into tools.cpio CONFIG_CRYPTSETUP2=y CONFIG_FLASHROM=y CONFIG_FLASHTOOLS=y @@ -45,8 +48,8 @@ CONFIG_LVM2=y CONFIG_MBEDTLS=y CONFIG_PCIUTILS=y #Runtime tools to write to EC/MSR -CONFIG_IOTOOLS=y -CONFIG_MSRTOOLS=y +#CONFIG_IOTOOLS=y +#CONFIG_MSRTOOLS=y #Remote attestation support # TPM2 requirements #CONFIG_TPM2_TSS=y @@ -61,21 +64,17 @@ CONFIG_HOTPKEY=y #Nitrokey Storage admin tool (deprecated) #CONFIG_NKSTORECLI=n #GUI Support +#Console based Whiptail support(Console based, no FB): +#CONFIG_SLANG=y +#CONFIG_NEWT=y #FBWhiptail based (Graphical): CONFIG_CAIRO=y CONFIG_FBWHIPTAIL=y -#text-based init (generic-init and gui-init) -#CONFIG_NEWT=y -#CONFIG_SLANG=y #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y endif -#Runtime on-demand additional hardware support (modules.cpio) -export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y - - #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 @@ -94,5 +93,7 @@ export CONFIG_BOOT_KERNEL_ADD="console=ttyS0 console=tty systemd.zram=0" export CONFIG_BOOT_KERNEL_REMOVE="quiet rhgb splash" export CONFIG_BOOT_DEV="/dev/vda1" export CONFIG_BOARD_NAME="qemu-coreboot-fbwhiptail-tpm1-hotp" +#export CONFIG_FLASHROM_OPTIONS="-p internal" +export CONFIG_AUTO_BOOT_TIMEOUT=5 BOARD_TARGETS := qemu diff --git a/boards/qemu-coreboot-fbwhiptail-tpm1/qemu-coreboot-fbwhiptail-tpm1.config b/boards/qemu-coreboot-fbwhiptail-tpm1/qemu-coreboot-fbwhiptail-tpm1.config index f02c7333..fe12a429 100644 --- a/boards/qemu-coreboot-fbwhiptail-tpm1/qemu-coreboot-fbwhiptail-tpm1.config +++ b/boards/qemu-coreboot-fbwhiptail-tpm1/qemu-coreboot-fbwhiptail-tpm1.config @@ -26,6 +26,8 @@ export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y CONFIG_LINUX_USB=y CONFIG_LINUX_E1000=y #CONFIG_MOBILE_TETHERING=y +#Runtime on-demand additional hardware support (modules.cpio) +export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y @@ -33,6 +35,7 @@ CONFIG_LINUX_E1000=y ifeq "$(CONFIG_UROOT)" "y" CONFIG_BUSYBOX=n else +#Modules packed into tools.cpio CONFIG_CRYPTSETUP2=y CONFIG_FLASHROM=y CONFIG_FLASHTOOLS=y @@ -59,21 +62,17 @@ CONFIG_TPMTOTP=y #Nitrokey Storage admin tool (deprecated) #CONFIG_NKSTORECLI=n #GUI Support +#Console based Whiptail support(Console based, no FB): +#CONFIG_SLANG=y +#CONFIG_NEWT=y #FBWhiptail based (Graphical): CONFIG_CAIRO=y CONFIG_FBWHIPTAIL=y -#text-based init (generic-init and gui-init) -#CONFIG_NEWT=y -#CONFIG_SLANG=y #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y endif -#Runtime on-demand additional hardware support (modules.cpio) -export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y - - #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 @@ -92,5 +91,7 @@ export CONFIG_BOOT_KERNEL_ADD="console=ttyS0 console=tty systemd.zram=0" export CONFIG_BOOT_KERNEL_REMOVE="quiet rhgb splash" export CONFIG_BOOT_DEV="/dev/vda1" export CONFIG_BOARD_NAME="qemu-coreboot-fbwhiptail-tpm1" +#export CONFIG_FLASHROM_OPTIONS="-p internal" +#export CONFIG_AUTO_BOOT_TIMEOUT=5 BOARD_TARGETS := qemu diff --git a/boards/qemu-coreboot-fbwhiptail-tpm2-hotp/qemu-coreboot-fbwhiptail-tpm2-hotp.config b/boards/qemu-coreboot-fbwhiptail-tpm2-hotp/qemu-coreboot-fbwhiptail-tpm2-hotp.config index 36094e59..0e158c57 100644 --- a/boards/qemu-coreboot-fbwhiptail-tpm2-hotp/qemu-coreboot-fbwhiptail-tpm2-hotp.config +++ b/boards/qemu-coreboot-fbwhiptail-tpm2-hotp/qemu-coreboot-fbwhiptail-tpm2-hotp.config @@ -27,6 +27,8 @@ export CONFIG_TPM2_CAPTURE_PCAP=y CONFIG_LINUX_USB=y CONFIG_LINUX_E1000=y #CONFIG_MOBILE_TETHERING=y +#Runtime on-demand additional hardware support (modules.cpio) +export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y @@ -34,6 +36,7 @@ CONFIG_LINUX_E1000=y ifeq "$(CONFIG_UROOT)" "y" CONFIG_BUSYBOX=n else +#Modules packed into tools.cpio CONFIG_CRYPTSETUP2=y CONFIG_FLASHROM=y CONFIG_FLASHTOOLS=y @@ -60,21 +63,17 @@ CONFIG_HOTPKEY=y #Nitrokey Storage admin tool (deprecated) #CONFIG_NKSTORECLI=n #GUI Support +#Console based Whiptail support(Console based, no FB): +#CONFIG_SLANG=y +#CONFIG_NEWT=y #FBWhiptail based (Graphical): CONFIG_CAIRO=y CONFIG_FBWHIPTAIL=y -#text-based init (generic-init and gui-init) -#CONFIG_NEWT=y -#CONFIG_SLANG=y #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y endif -#Runtime on-demand additional hardware support (modules.cpio) -export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y - - #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 @@ -93,5 +92,7 @@ export CONFIG_BOOT_KERNEL_ADD="console=ttyS0 console=tty systemd.zram=0" export CONFIG_BOOT_KERNEL_REMOVE="quiet rhgb splash" export CONFIG_BOOT_DEV="/dev/vda1" export CONFIG_BOARD_NAME="qemu-coreboot-fbwhiptail-tpm2-hotp" +#export CONFIG_FLASHROM_OPTIONS="-p internal" +export CONFIG_AUTO_BOOT_TIMEOUT=5 BOARD_TARGETS := qemu diff --git a/boards/qemu-coreboot-fbwhiptail-tpm2/qemu-coreboot-fbwhiptail-tpm2.config b/boards/qemu-coreboot-fbwhiptail-tpm2/qemu-coreboot-fbwhiptail-tpm2.config index c382c0d7..cf5b2d01 100644 --- a/boards/qemu-coreboot-fbwhiptail-tpm2/qemu-coreboot-fbwhiptail-tpm2.config +++ b/boards/qemu-coreboot-fbwhiptail-tpm2/qemu-coreboot-fbwhiptail-tpm2.config @@ -26,6 +26,8 @@ export CONFIG_TPM2_CAPTURE_PCAP=y CONFIG_LINUX_USB=y CONFIG_LINUX_E1000=y #CONFIG_MOBILE_TETHERING=y +#Runtime on-demand additional hardware support (modules.cpio) +export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y @@ -33,6 +35,7 @@ CONFIG_LINUX_E1000=y ifeq "$(CONFIG_UROOT)" "y" CONFIG_BUSYBOX=n else +#Modules packed into tools.cpio CONFIG_CRYPTSETUP2=y CONFIG_FLASHROM=y CONFIG_FLASHTOOLS=y @@ -59,21 +62,17 @@ CONFIG_TPMTOTP=y #Nitrokey Storage admin tool (deprecated) #CONFIG_NKSTORECLI=n #GUI Support +#Console based Whiptail support(Console based, no FB): +#CONFIG_SLANG=y +#CONFIG_NEWT=y #FBWhiptail based (Graphical): CONFIG_CAIRO=y CONFIG_FBWHIPTAIL=y -#text-based init (generic-init and gui-init) -#CONFIG_NEWT=y -#CONFIG_SLANG=y #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y endif -#Runtime on-demand additional hardware support (modules.cpio) -export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y - - #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 @@ -92,5 +91,7 @@ export CONFIG_BOOT_KERNEL_ADD="console=ttyS0 console=tty systemd.zram=0" export CONFIG_BOOT_KERNEL_REMOVE="quiet rhgb splash" export CONFIG_BOOT_DEV="/dev/vda1" export CONFIG_BOARD_NAME="qemu-coreboot-fbwhiptail-tpm2" +#export CONFIG_FLASHROM_OPTIONS="-p internal" +#export CONFIG_AUTO_BOOT_TIMEOUT=5 BOARD_TARGETS := qemu diff --git a/boards/qemu-coreboot-whiptail-tpm1-hotp/qemu-coreboot-whiptail-tpm1-hotp.config b/boards/qemu-coreboot-whiptail-tpm1-hotp/qemu-coreboot-whiptail-tpm1-hotp.config index 38315372..44326367 100644 --- a/boards/qemu-coreboot-whiptail-tpm1-hotp/qemu-coreboot-whiptail-tpm1-hotp.config +++ b/boards/qemu-coreboot-whiptail-tpm1-hotp/qemu-coreboot-whiptail-tpm1-hotp.config @@ -28,6 +28,8 @@ export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y CONFIG_LINUX_USB=y CONFIG_LINUX_E1000=y #CONFIG_MOBILE_TETHERING=y +#Runtime on-demand additional hardware support (modules.cpio) +export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y @@ -35,6 +37,7 @@ CONFIG_LINUX_E1000=y ifeq "$(CONFIG_UROOT)" "y" CONFIG_BUSYBOX=n else +#Modules packed into tools.cpio CONFIG_CRYPTSETUP2=y CONFIG_FLASHROM=y CONFIG_FLASHTOOLS=y @@ -61,21 +64,17 @@ CONFIG_HOTPKEY=y #Nitrokey Storage admin tool (deprecated) #CONFIG_NKSTORECLI=n #GUI Support +#Console based Whiptail support(Console based, no FB): +CONFIG_SLANG=y +CONFIG_NEWT=y #FBWhiptail based (Graphical): #CONFIG_CAIRO=y #CONFIG_FBWHIPTAIL=y -#text-based init (generic-init and gui-init) -CONFIG_NEWT=y -CONFIG_SLANG=y #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y endif -#Runtime on-demand additional hardware support (modules.cpio) -export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y - - #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 @@ -94,5 +93,7 @@ export CONFIG_BOOT_KERNEL_ADD="console=ttyS0 console=tty systemd.zram=0" export CONFIG_BOOT_KERNEL_REMOVE="quiet rhgb splash" export CONFIG_BOOT_DEV="/dev/vda1" export CONFIG_BOARD_NAME="qemu-coreboot-whiptail-tpm1-hotp" +#export CONFIG_FLASHROM_OPTIONS="-p internal" +export CONFIG_AUTO_BOOT_TIMEOUT=5 BOARD_TARGETS := qemu diff --git a/boards/qemu-coreboot-whiptail-tpm1/qemu-coreboot-whiptail-tpm1.config b/boards/qemu-coreboot-whiptail-tpm1/qemu-coreboot-whiptail-tpm1.config index 61066716..3365eea4 100644 --- a/boards/qemu-coreboot-whiptail-tpm1/qemu-coreboot-whiptail-tpm1.config +++ b/boards/qemu-coreboot-whiptail-tpm1/qemu-coreboot-whiptail-tpm1.config @@ -26,6 +26,8 @@ export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y CONFIG_LINUX_USB=y CONFIG_LINUX_E1000=y #CONFIG_MOBILE_TETHERING=y +#Runtime on-demand additional hardware support (modules.cpio) +export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y @@ -33,6 +35,7 @@ CONFIG_LINUX_E1000=y ifeq "$(CONFIG_UROOT)" "y" CONFIG_BUSYBOX=n else +#Modules packed into tools.cpio CONFIG_CRYPTSETUP2=y CONFIG_FLASHROM=y CONFIG_FLASHTOOLS=y @@ -59,21 +62,17 @@ CONFIG_TPMTOTP=y #Nitrokey Storage admin tool (deprecated) #CONFIG_NKSTORECLI=n #GUI Support +#Console based Whiptail support(Console based, no FB): +CONFIG_SLANG=y +CONFIG_NEWT=y #FBWhiptail based (Graphical): #CONFIG_CAIRO=y #CONFIG_FBWHIPTAIL=y -#text-based init (generic-init and gui-init) -CONFIG_NEWT=y -CONFIG_SLANG=y #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y endif -#Runtime on-demand additional hardware support (modules.cpio) -export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y - - #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 @@ -92,5 +91,7 @@ export CONFIG_BOOT_KERNEL_ADD="console=ttyS0 console=tty systemd.zram=0" export CONFIG_BOOT_KERNEL_REMOVE="quiet rhgb splash" export CONFIG_BOOT_DEV="/dev/vda1" export CONFIG_BOARD_NAME="qemu-coreboot-whiptail-tpm1" +#export CONFIG_FLASHROM_OPTIONS="-p internal" +#export CONFIG_AUTO_BOOT_TIMEOUT=5 BOARD_TARGETS := qemu diff --git a/boards/qemu-coreboot-whiptail-tpm2-hotp/qemu-coreboot-whiptail-tpm2-hotp.config b/boards/qemu-coreboot-whiptail-tpm2-hotp/qemu-coreboot-whiptail-tpm2-hotp.config index e5b2bddf..a6095cae 100644 --- a/boards/qemu-coreboot-whiptail-tpm2-hotp/qemu-coreboot-whiptail-tpm2-hotp.config +++ b/boards/qemu-coreboot-whiptail-tpm2-hotp/qemu-coreboot-whiptail-tpm2-hotp.config @@ -27,6 +27,8 @@ export CONFIG_TPM2_CAPTURE_PCAP=y CONFIG_LINUX_USB=y CONFIG_LINUX_E1000=y #CONFIG_MOBILE_TETHERING=y +#Runtime on-demand additional hardware support (modules.cpio) +export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y @@ -34,6 +36,7 @@ CONFIG_LINUX_E1000=y ifeq "$(CONFIG_UROOT)" "y" CONFIG_BUSYBOX=n else +#Modules packed into tools.cpio CONFIG_CRYPTSETUP2=y CONFIG_FLASHROM=y CONFIG_FLASHTOOLS=y @@ -44,8 +47,8 @@ CONFIG_LVM2=y CONFIG_MBEDTLS=y CONFIG_PCIUTILS=y #Runtime tools to write to EC/MSR -CONFIG_IOTOOLS=y -CONFIG_MSRTOOLS=y +#CONFIG_IOTOOLS=y +#CONFIG_MSRTOOLS=y #Remote attestation support # TPM2 requirements CONFIG_TPM2_TSS=y @@ -60,21 +63,17 @@ CONFIG_HOTPKEY=y #Nitrokey Storage admin tool (deprecated) #CONFIG_NKSTORECLI=n #GUI Support +#Console based Whiptail support(Console based, no FB): +CONFIG_SLANG=y +CONFIG_NEWT=y #FBWhiptail based (Graphical): #CONFIG_CAIRO=y #CONFIG_FBWHIPTAIL=y -#text-based init (generic-init and gui-init) -CONFIG_NEWT=y -CONFIG_SLANG=y #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y endif -#Runtime on-demand additional hardware support (modules.cpio) -export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y - - #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 @@ -93,5 +92,7 @@ export CONFIG_BOOT_KERNEL_ADD="console=ttyS0 console=tty systemd.zram=0" export CONFIG_BOOT_KERNEL_REMOVE="quiet rhgb splash" export CONFIG_BOOT_DEV="/dev/vda1" export CONFIG_BOARD_NAME="qemu-coreboot-whiptail-tpm2-hotp" +#export CONFIG_FLASHROM_OPTIONS="-p internal" +export CONFIG_AUTO_BOOT_TIMEOUT=5 BOARD_TARGETS := qemu diff --git a/boards/qemu-coreboot-whiptail-tpm2/qemu-coreboot-whiptail-tpm2.config b/boards/qemu-coreboot-whiptail-tpm2/qemu-coreboot-whiptail-tpm2.config index 076f0169..881342ed 100644 --- a/boards/qemu-coreboot-whiptail-tpm2/qemu-coreboot-whiptail-tpm2.config +++ b/boards/qemu-coreboot-whiptail-tpm2/qemu-coreboot-whiptail-tpm2.config @@ -26,6 +26,8 @@ export CONFIG_TPM2_CAPTURE_PCAP=y CONFIG_LINUX_USB=y CONFIG_LINUX_E1000=y #CONFIG_MOBILE_TETHERING=y +#Runtime on-demand additional hardware support (modules.cpio) +export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y @@ -33,6 +35,7 @@ CONFIG_LINUX_E1000=y ifeq "$(CONFIG_UROOT)" "y" CONFIG_BUSYBOX=n else +#Modules packed into tools.cpio CONFIG_CRYPTSETUP2=y CONFIG_FLASHROM=y CONFIG_FLASHTOOLS=y @@ -43,8 +46,8 @@ CONFIG_LVM2=y CONFIG_MBEDTLS=y CONFIG_PCIUTILS=y #Runtime tools to write to EC/MSR -CONFIG_IOTOOLS=y -CONFIG_MSRTOOLS=y +#CONFIG_IOTOOLS=y +#CONFIG_MSRTOOLS=y #Remote attestation support # TPM2 requirements CONFIG_TPM2_TSS=y @@ -59,21 +62,17 @@ CONFIG_TPMTOTP=y #Nitrokey Storage admin tool (deprecated) #CONFIG_NKSTORECLI=n #GUI Support +#Console based Whiptail support(Console based, no FB): +CONFIG_SLANG=y +CONFIG_NEWT=y #FBWhiptail based (Graphical): #CONFIG_CAIRO=y #CONFIG_FBWHIPTAIL=y -#text-based init (generic-init and gui-init) -CONFIG_NEWT=y -CONFIG_SLANG=y #Additional tools (tools.cpio): #SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E) CONFIG_DROPBEAR=y endif -#Runtime on-demand additional hardware support (modules.cpio) -export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y - - #Runtime configuration #Automatically boot if HOTP is valid export CONFIG_AUTO_BOOT_TIMEOUT=5 @@ -92,5 +91,7 @@ export CONFIG_BOOT_KERNEL_ADD="console=ttyS0 console=tty systemd.zram=0" export CONFIG_BOOT_KERNEL_REMOVE="quiet rhgb splash" export CONFIG_BOOT_DEV="/dev/vda1" export CONFIG_BOARD_NAME="qemu-coreboot-whiptail-tpm2" +#export CONFIG_FLASHROM_OPTIONS="-p internal" +#export CONFIG_AUTO_BOOT_TIMEOUT=5 BOARD_TARGETS := qemu