This series adds support to use a custom key provided via Make during build for signing the bootloader binaries, and updates the k3-binman to use it.
This parameter is optional and not using it will simply cause the build to fallback to the key provided in the filename property (e.g the example keys in arch/arm/mach-k3/keys/custMpk.pem for k3 SoCs) for signing. Any existing methods for replacing the example keys stil remain same and can be used. For supplying a key at build, the full path to the key file needs to be provided while running make to the parameter SIGNING_KEY: make SIGNING_KEY=<path to a key> [other make options] Signed-off-by: T Pratham <[email protected]> --- T Pratham (2): binman: introduce signing-key-path etype arm: dts: k3-binman: update custMpk to use signing-key-path node Makefile | 1 + arch/arm/dts/k3-binman.dtsi | 2 +- tools/binman/entries.rst | 23 ++++++++++++++++++++ tools/binman/etype/signing_key_path.py | 30 ++++++++++++++++++++++++++ tools/binman/ftest.py | 7 ++++++ tools/binman/test/351_signing_key.dts | 12 +++++++++++ 6 files changed, 74 insertions(+), 1 deletion(-) create mode 100644 tools/binman/etype/signing_key_path.py create mode 100644 tools/binman/test/351_signing_key.dts -- 2.34.1
