2019-11-05 17:00:22 -06:00
// SPDX-License-Identifier: GPL-2.0
/*
* Copyright ( C ) 2019 IBM Corporation
* Author : Nayna Jain
*/
# include <linux/types.h>
# include <linux/of.h>
# include <asm/secure_boot.h>
static struct device_node * get_ppc_fw_sb_node ( void )
{
static const struct of_device_id ids [ ] = {
{ . compatible = " ibm,secureboot " , } ,
{ . compatible = " ibm,secureboot-v1 " , } ,
{ . compatible = " ibm,secureboot-v2 " , } ,
{ } ,
} ;
return of_find_matching_node ( NULL , ids ) ;
}
bool is_ppc_secureboot_enabled ( void )
{
struct device_node * node ;
bool enabled = false ;
2020-07-15 07:52:01 -04:00
u32 secureboot ;
2019-11-05 17:00:22 -06:00
node = get_ppc_fw_sb_node ( ) ;
enabled = of_property_read_bool ( node , " os-secureboot-enforcing " ) ;
of_node_put ( node ) ;
2020-07-15 07:52:01 -04:00
if ( enabled )
goto out ;
if ( ! of_property_read_u32 ( of_root , " ibm,secure-boot " , & secureboot ) )
enabled = ( secureboot > 1 ) ;
out :
2019-11-05 17:00:22 -06:00
pr_info ( " Secure boot mode %s \n " , enabled ? " enabled " : " disabled " ) ;
return enabled ;
}
2019-11-05 17:02:07 -06:00
bool is_ppc_trustedboot_enabled ( void )
{
struct device_node * node ;
bool enabled = false ;
2020-07-15 07:52:01 -04:00
u32 trustedboot ;
2019-11-05 17:02:07 -06:00
node = get_ppc_fw_sb_node ( ) ;
enabled = of_property_read_bool ( node , " trusted-enabled " ) ;
of_node_put ( node ) ;
2020-07-15 07:52:01 -04:00
if ( enabled )
goto out ;
if ( ! of_property_read_u32 ( of_root , " ibm,trusted-boot " , & trustedboot ) )
enabled = ( trustedboot > 0 ) ;
out :
2019-11-05 17:02:07 -06:00
pr_info ( " Trusted boot mode %s \n " , enabled ? " enabled " : " disabled " ) ;
return enabled ;
}
