Add support for signature verification routines Enabled high level logic flow for the PNOR signed image signature validation routines. Includes reading hash type, key type from Manifest file. Change-Id: I00280fff5a61291852c1f2d5f6fd8aec3dd62bf0 Signed-off-by: Jayanth Othayoth <ojayanth@in.ibm.com>

commit: 70804dcd6b6d4f2d5c2eda4dd80741da0471510e [log] [tgz]
author: Jayanth Othayoth <ojayanth@in.ibm.com> Tue Mar 20 06:31:59 2018 -0500
committer: Adriana Kobylak <anoo@us.ibm.com> Fri Mar 23 11:15:35 2018 -0500
tree: ab2e663eb2d305ec515144493a76b0b104f992ea
parent: 643e730e3b9818bdd878eebee209b268c234fc65 [diff] [blame]
diff --git a/configure.ac b/configure.ac
index 0c95c57..f9f8d37 100755
--- a/configure.ac
+++ b/configure.ac

@@ -76,6 +76,29 @@
 AS_IF([test "x$MANIFEST_FILE" == "x"], [MANIFEST_FILE="MANIFEST"])
 AC_DEFINE_UNQUOTED([MANIFEST_FILE], ["$MANIFEST_FILE"], [The path to the MANIFEST file])
 
+AC_ARG_VAR(PUBLICKEY_FILE_NAME, [The name of the public key file])
+AS_IF([test "x$PUBLICKEY_FILE_NAME" == "x"], [PUBLICKEY_FILE_NAME="publickey"])
+AC_DEFINE_UNQUOTED([PUBLICKEY_FILE_NAME], ["$PUBLICKEY_FILE_NAME"], [The name of the public key file])
+
+AC_ARG_VAR(HASH_FILE_NAME, [Hash file name])
+AS_IF([test "x$HASH_FILE_NAME" == "x"], [HASH_FILE_NAME="hashfunc"])
+AC_DEFINE_UNQUOTED([HASH_FILE_NAME], ["$HASH_FILE_NAME"], [The name of the hash file])
+
+AC_ARG_VAR(PNOR_SIGNED_IMAGE_CONF_PATH, [Path of PNOR image public key and hash function files])
+AS_IF([test "x$PNOR_SIGNED_IMAGE_CONF_PATH" == "x"], [PNOR_SIGNED_IMAGE_CONF_PATH="/etc/activationdata/"])
+AC_DEFINE_UNQUOTED([PNOR_SIGNED_IMAGE_CONF_PATH], ["$PNOR_SIGNED_IMAGE_CONF_PATH"], [Path of PNOR image public key and hash function files])
+
+AC_ARG_VAR(SIGNATURE_FILE_EXT, [The extension of the Signature file])
+AS_IF([test "x$SIGNATURE_FILE_EXT" == "x"], [SIGNATURE_FILE_EXT=".sig"])
+AC_DEFINE_UNQUOTED([SIGNATURE_FILE_EXT], ["$SIGNATURE_FILE_EXT"], [The extension of the Signature file])
+
+# setup signature verification
+AC_ARG_ENABLE([verify_signature],
+    AS_HELP_STRING([--enable-verify_signature], [Enable image signature validation.]))
+AS_IF([test "x$enable_verify_signature" == "xyes"], \
+    [AC_DEFINE([WANT_SIGNATURE_VERIFY],[],[Enable image signature validation.])])
+AM_CONDITIONAL([WANT_SIGNATURE_VERIFY_BUILD], [test "x$enable_verify_signature" == "xyes"])
+
 AC_DEFINE(CHASSIS_STATE_PATH, "/xyz/openbmc_project/state/chassis0",
     [The chassis state path.])
 AC_DEFINE(CHASSIS_STATE_OBJ, "xyz.openbmc_project.State.Chassis",
commit	70804dcd6b6d4f2d5c2eda4dd80741da0471510e	[log] [tgz]
author	Jayanth Othayoth <ojayanth@in.ibm.com>	Tue Mar 20 06:31:59 2018 -0500
committer	Adriana Kobylak <anoo@us.ibm.com>	Fri Mar 23 11:15:35 2018 -0500
tree	ab2e663eb2d305ec515144493a76b0b104f992ea
parent	643e730e3b9818bdd878eebee209b268c234fc65 [diff] [blame]