- C 93.8%
- ASL 2.2%
- Makefile 1.1%
- C++ 0.5%
- Pawn 0.5%
- Other 1.8%
9bb822dbf8
Updating from commit id 3f94e2c7ed58: 2024-12-18 - Makefile: Allow cross-compilation for RISC-V to commit id 5c360ef458b0: 2026-03-10 - lib20: Add vb2api_verify_kernel_data back This brings in 182 new commits listed below. Build tests for AMD AGESA boards that I am maintaining with restore_agesa.sh - are successful. 5c360ef458b0 lib20: Add vb2api_verify_kernel_data back 24655cd2309e cbfstool: fix const-discarding warning in extract_config_value b9ea1075a7d2 firmware/2lib: Remove unused vb2_sha256_extend function 7934c1c9c991 firmware/2lib: Remove dead kernel verification function references 25083888d265 Add .editorconfig 3109519e8841 tests: Remove unused sha_tests.c 850cf0fbe5b5 tests/tpm_lite: Remove unused files 42f5313871c6 firmware: Do not allow for dev mode with oem_lock enabled c16e6afaced4 firmware: host: Add OEM Lock flag to nvstorage dev field ed6cb4054134 tests: add test cases for booting OTA recovery partition 606ca738a7d3 vboot: Implement Network Based Recovery (NBR) using OTA recovery partition 7529e2837c55 2lib: rename functions & variables related to MiniOS 6aba77a84c2b vboot: Add GPT_DISK_UUID_RECOVERY marker ec74b34cd6ce vboot: Add declaration of vb2ex_slice_disk() callback e388d1f93c95 futility: Print programmer in logs a1f54de5001c Skip ec.config if there is no space 5040bde7243f futility: Prioritize identity.csv over Android property ro.product.name a5f6ef5e327e sign_uefi: Use the v2 crdyshim key for signing crdyboot fa13af3ccc36 futility: Support model detection by Android property ro.product.name cca9e4a676f3 vb2_sha: Use uint64_t for total size in SHA-2 0ee734db27fe test: fix problem with load android test cases 5a45a5f32dcf Android.bp: allow libvboot_host to be built as a shared library 89b720193a09 tests: initialize cmdline for AVB verify data c851dfa1e384 tests: add vboot avb test cases 86e3d6b720cb tests: add test cases to boot android kernel 461398242604 Fix OpenSSL memory leaks and incorrect free() usage 7b8a96024b7c crossystem: Use libflashrom instead of flashrom CLI for USE_FLASHROM=1 dd0bab314680 futility/updater: Check FMAP compatibility 4f3a73dd50f0 tests/futility/test_update: Make FROM_IMAGE and TO_IMAGE same board 93711fc01e5a 2lib: Implement rollback protection for Android ad3b7b64283b sign_uefi: Update handling for presigned crdyboot builds 6e8977429f53 avb: adjust Makefile for changes in AVB repo f963a5069755 host/flashrom_drv: refactor flashrom initialization 1de7d46170ea tests/futility/test_update: Dynamically calculate image size ac9e57cffd22 tests/futility/run_test_scripts: Filter tests via FUTIL_TEST_SCRIPT b3780bbaaced crossystem: Fix crossystem lock file unlocking 6b8337fb608b Add 'runfutiltestscripts' make target 5d6a647a1f29 tests/vb2_avb_tests.c: add key validation tests d3f2d712c205 avb: Fix format specifier for debug messages 67fb9d2b799a futility: Add missing gscvd.c file to futility_srcs for Soong 4ce2c1a44c95 futility: add check-fwid flag to update command 3c47ec0a951b firmware/2lib: Move base DTB image into dtbo partition 0413878d374c futility: Support RO_GSCVD region for 'futility show' ffab62e169e8 futility: Add futil_valid_gscvd_header() 6c242361a867 sign_uefi: Skip crdyboot signing if already signed 7a2ba18765eb 2lib: remove partition_number variable 5f958f17f4b6 2lib: use correct structure for guid a11ad5ccdeae lib20: remove unused code f290e75b7441 futility: Utilize identity.csv for remote device 24e62a619e81 futility: Add --frid and --sku-id arguments f80af2766ecb firmware: GBB flag to ignore rollback applies to kernel too 34431212e1e9 futility: Update --model help text a086faa63858 vboot: Rename vb2ex_get_android_bootmode to vb2ex_handle_android_misc_partition f90a1c7ab168 tests/vb2_host_flashrom_tests: Fix missing '\0' for strncpy call ed024e5cc5a7 Makefile: fix runtests fails when USE_FLASHROM=0 9cce699aa655 host/lib/flashrom_drv: Change the return type from int to vb2_error_t 14cee0b25665 make_dev_ssd: Add crash_kexec_post_notifiers with kdump 5659718d037e avb: Use hardware-accelerated SHA256 a549dc16e50a 2lib: Rename vboot_cmdline related buffers 5ffc2321290d Makefile: include vb2_host_nvdata_flashrom_tests in run2tests target 59cb8b6e6dbf Makefile: include vb2_host_flashrom_tests in run2tests target 60c75230ab6f Makefile: include vb2_recovery_reasons_tests in run2tests target f344c1f022fe make_dev_ssd: Add --minios_key 9daff4f9319e avb/vboot_avb_ops: Refactor reserve_buffers to reduce code duplication b97b60477b60 2api: Add support to load DTB/DTBO images from GPT partitions 90e322680f66 Reland "firmware/lib/cgptlib: Add GPT partition name for DTB/DTBO partitions" 2aae1741d8b8 avb/vboot_avb_ops: Continue without buffer for optional partitions 136e1229054c futility: Add unit tests for misc 47fa4d7227de treewide: Remove the space before labels dd3c8066cda7 2load_android_kernel: Fix VB2_GBB_FLAG_FORCE_UNLOCK_FASTBOOT usage 3f578eceb517 Revert "2api: Add support to load DTB/DTBO images from GPT partitions" a3e0e039a9a4 Revert "firmware/lib/cgptlib: Add GPT partition name for DTB/DTBO partitions" 0ed3061c8343 futility: Extract unit test utils into separate header 9fbd15cce715 2api: Add support to load DTB/DTBO images from GPT partitions 2f200d714993 firmware/lib/cgptlib: Add GPT partition name for DTB/DTBO partitions db4e4c16938c gpt: Cleanup GPT constants e4e2a4648678 host: Add error messages to NV read/write d3bdaba00d45 futility: Add unit tests for updater utils e0cef21436af crossystem/GetAcpiSysfsPath: Add stat check for current_path 05353d26e826 cgptlib: Expose GptModified as external API 63ebdf94d2ef futility/updater: Utilize identity.csv or crosid for --detect-model-only b10850ad6e19 futility/updater: Support model identification with identity.csv 30e5f1a11302 Update kernel command line with `cros_part_hash` for specific partitions c37d42900911 Delete `resign_kernel_partition.sh` 8f7b522a4b72 Remove deprecated stateful partition vblock update 015c6eedb91e Fix array iteration in `ensure_no_nonrelease_files.sh` b20dfa89a76b Always mount ESP as read-write 485bf8061f51 futility: remove unused variable 9510c7f8eeb0 Reorder recovery kernel hash updates after MiniOS resigning 42a6ca910398 Remove engeg@ from scripts/OWNERS 26130316a50b futility/archive: Add libziparchive support on Android 87401a655f5c futility: Extract archive implementations to separate files 9b362962860c cgptlib: Make IsBootableEntry available for depthcharge ac6cc721c1ef 2lib: Get Android boot mode 9863e6ea9410 2lib: Introduce FORCE_UNLOCK_FASTBOOT GBB flag 6cf177721568 cgptlib: Move cgptlib.h to firmware/include dir 4ab8d0085e8d futility/updater: Add load_system_frid() and get_model_from_frid() f5e37de5b6b8 host/lib/flashrom: Free image data on flashrom_read_* failure 85ace4b96d6a futility/updater_dut: Introduce DUT_PROP_SKU_ID 6b93d66ec4a6 futility/updater_dut: Extend property type from int to int64_t de036f432202 common: make optional arg actually optional e8e6493e1f92 2lib: Modify logic of setting secdata kernel version 3d5855fa8da3 2lib: Move kernel secdata update to vb2api_load_kernel() d89559b1f1fa gpt_misc: Validate pointer before usage ee209148a4ff host/crossystem: Introduce VbGetSystemSkuId() e3f41133afcb host/arch/arm/crossystem: Fix return type of ReadFdtInt c8facc216cec host/arch/stub/crossystem: Fix "const char* name" 10316632b505 host: crossystem: gpio: Use correct GPIO controller offset dcf300d273f2 OWNERS: Add bernacki f1619fa67e15 futility/cmd_gbb_utility: add --verbose 92c264a42bed gpio_uapi: remove unused variable 68ec7968e66e Android.bp: Fix vb2_sha256_x86_tests target config 88ac12115cb1 crossystem: Remove wpsw_cur fallback to VDAT_INT_HW_WPSW_BOOT f1f6b42aa4e0 crossystem: x86: Remove deprecated GPIO SYSFS code d35aee8d15fc crossystem: host: Add support for reading GPIO from /dev/gpiochipX 2e1ed1f914ed dts: Add cc_test for x86 sha tests 8bf055106225 dts: add filegroup for devkeys 42e098dc402c avb: Implement unaligned read in load_partition cb9f18bcfbca futility/updater: Add warning for full firmware update without WP 357561a2a82e futility/update: Assume WP is off for all remote operations 50bb82087123 avb: Add pvmfw verification and loading to memory. a0a2affafcc0 2api: Expand vb2_kernel_params for pvmfw loading b5fb33f01c34 tlcl: Increase TPM buffer size dbdf50adc5e6 2load_android_kernel: Set VB2_SD_FLAG_KERNEL_SIGNED on verify success 9080ef62a9c9 uefi: add --keyform engine for pkcs11 c67404f06dfb swap_ec_rw: Support legacy EC image 9bd1a6dab45e Revert "Handle both RW_FW and EC_RW sections" fcbc0a884ddd Update crdyshim keygen script to use ECDSA af71ac87e4a4 host: Fix compilation error with GCC c5ac68e4d273 futility: updater: Allow --quirks=preserve_me=2 to force preserving ME ec4d7436be0c vb21: load private key before signing 39f6104b29e1 swap_ec_rw: Support giving a raw EC RW image b7adaa2b97fe 2lib: Add androidboot parameters b3b414cc307f 2lib: Drop unused ramdisk fragments based on BCB command 093e3608a529 2lib: Load Android kernel a682da7d92db 2lib: Rearrange buffers with android partitions 076d4d38f9f6 2lib: Load and verify android partitions f1df391e6d05 avb: Get preloaded partitions 45176543c260 avb: Add callback for public key verification 6dc845b9b4c9 avb: Add avb_ops for IO operations 911e5a6e4603 avb: Implement basic AVB callbacks 1fe2d7b5e555 futility: Fix load_firmware_image() for empty file name 44dc81ca128b 2lib: Make need_valid_keyblock() function global 35ea5c842733 2lib: Rename kernel type macros c51cbc4ace85 tests: fix build errors with USE_FLASHROM=0 3f36817a50e3 cgptlib: Allow to boot from Android vbmeta 34cb9f619615 cgptlib: Add helper functions for partition loading 0130a541cb06 android: Port image headers definition af0a2547170e vboot.rc: Fix TMPFS mounting and unmounting ea4986b060ad cgpt: Add Gpt prefix to StrToGuid() function 015ee35a494c cgpt: Move GuidToStr to firmware code 2df1fe56f588 cgpt: Reformat code using clang-format e9d7bd044a43 sign_gsc_firmware.sh: sing ECDSA only image for NT 8c2235b52196 crossystem: Add support for additional GPIO communities 2955db3c48bd futility: dump_fmap: Fix gap calculation 4134ab60ea70 tests/futility/test_dump_fmap: Allow easier expected output updates 1655f1a9f9a2 swap_ec_rw: Extract ecrw version to correct file 1c7a767b3353 Handle both RW_FW and EC_RW sections 8786d36c388c sign_gsc_firmware: extend to support signing NT images 4a9586937f19 swap_ec_rw: Support swap from AP image 44db1807c246 gsc: fix typo in calling out to script 06d58e2132d3 swap_ec_rw: Check ecrw.version/config exist before removal a57167e79e4b pkcs11: add ID field d6e67ecf0824 gsc: add env var support 8eea96333f62 2secdata_kernel: Improve log about incomplete secdata_kernel bf4b21294a1c Include ec.config when swapping 9038039fbb32 futility: updater: Cap try count to 15 ae6ceb20d5e2 Android.bp: Make crossystem default to /vendor partition 2dde4ce9badc cgpt: repair: handle drive size expansion 993e0bf7bdbc cgpt: create: calculate Last Usable LBA in DriveLastUsableLBA() 3a37ae87f637 firmware/2lib: Refactor ec_sync_phase1 for clarity 6caf4cd6225f firmware/2lib: Remove redundant EC sync check in recovery 1f8153d95a93 scripts/image_signing/swap_ec_rw: Print the versions of the AP image 6f63b28162cd Makefile: Optimize dirname invocation 177c0582ad4f Makefile: Remove $(shell) invocations from CFLAGS 621899d6e89f vboot: modify GptNextKernelEntry function 993ef3126919 uefi: only check for key existence in local key mode 7fdca50ac14f Introduce new entry type for vbmeta 2e00eae8f9a0 firmware/2lib: Add a log for try_count used up 7e5bda8a8210 futility: updater: Increase try count from 13 to 17 3498c54d26a9 signing: add condition for flexor c3f20ccfcf30 Makefile: Export swap_ec_rw script to OS image Change-Id: Iad381e717ccf3db6cb5f0a3d408e0033fdba0538 Signed-off-by: Mike Banon <mikebdp2@gmail.com> Reviewed-on: https://review.coreboot.org/c/coreboot/+/91640 Reviewed-by: Frans Hendriks <fhendriks@eltan.com> Reviewed-by: Erik van den Bogaert <ebogaert@eltan.com> Tested-by: build bot (Jenkins) <no-reply@coreboot.org> Reviewed-by: Yu-Ping Wu <yupingso@google.com> |
||
|---|---|---|
| 3rdparty | ||
| configs | ||
| Documentation | ||
| LICENSES | ||
| payloads | ||
| spd | ||
| src | ||
| tests | ||
| util | ||
| .checkpatch.conf | ||
| .clang-format | ||
| .editorconfig | ||
| .gitignore | ||
| .gitmodules | ||
| .gitreview | ||
| .mailmap | ||
| AUTHORS | ||
| COPYING | ||
| gnat.adc | ||
| MAINTAINERS | ||
| Makefile | ||
| Makefile.mk | ||
| README.md | ||
| toolchain.mk | ||
coreboot README
coreboot is a Free Software project aimed at replacing the proprietary firmware (BIOS/UEFI) found in most computers. coreboot performs the required hardware initialization to configure the system, then passes control to a different executable, referred to in coreboot as the payload. Most often, the primary function of the payload is to boot the operating system (OS).
With the separation of hardware initialization and later boot logic, coreboot is perfect for a wide variety of situations. It can be used for specialized applications that run directly in the firmware, running operating systems from flash, loading custom bootloaders, or implementing firmware standards, like PC BIOS services or UEFI. This flexibility allows coreboot systems to include only the features necessary in the target application, reducing the amount of code and flash space required.
Source code
All source code for coreboot is stored in git. It is downloaded with the command:
git clone https://review.coreboot.org/coreboot.git.
Code reviews are done in the project's Gerrit instance.
The code may be browsed via coreboot's Gitiles instance.
The coreboot project also maintains a mirror of the project on github. This is read-only, as coreboot does not accept github pull requests, but allows browsing and downloading the coreboot source.
Payloads
After the basic initialization of the hardware has been performed, any desired "payload" can be started by coreboot.
See https://doc.coreboot.org/payloads.html for a list of some of coreboot's supported payloads.
Supported Hardware
The coreboot project supports a wide range of architectures, chipsets, devices, and mainboards. While not all of these are documented, you can find some information in the Architecture-specific documentation or the SOC-specific documentation.
For details about the specific mainboard devices that coreboot supports, please consult the Mainboard-specific documentation or the Board Status pages.
Releases
Releases are currently done by coreboot every quarter. The release archives contain the entire coreboot codebase from the time of the release, along with any external submodules. The submodules containing binaries are separated from the general release archives. All of the packages required to build the coreboot toolchains are also kept at coreboot.org in case the websites change, or those specific packages become unavailable in the future.
All releases are available on the coreboot download page.
Please note that the coreboot releases are best considered as snapshots of the codebase, and do not currently guarantee any sort of extra stability.
Build Requirements and building coreboot
The coreboot build, associated utilities and payloads require many additional tools and packages to build. The actual coreboot binary is typically built using a coreboot-controlled toolchain to provide reproducibility across various platforms. It is also possible, though not recommended, to make it directly with your system toolchain. Operating systems and distributions come with an unknown variety of system tools and utilities installed. Because of this, it isn't reasonable to list all the required packages to do a build, but the documentation lists the requirements for a few different Linux distributions.
To see the list of tools and libraries, along with a list of instructions to get started building coreboot, go to the Starting from scratch tutorial page.
That same page goes through how to use QEMU to boot the build and see the output.
Website and Mailing List
Further details on the project, as well as links to documentation and more can be found on the coreboot website:
You can contact us directly on the coreboot mailing list:
https://doc.coreboot.org/community/forums.html
Copyrights and Licenses
Uncopyrightable files
There are many files in the coreboot tree that we feel are not copyrightable due to a lack of creative content.
"In order to qualify for copyright protection in the United States, a work must satisfy the originality requirement, which has two parts. The work must have “at least a modicum” of creativity, and it must be the independent creation of its author."
https://guides.lib.umich.edu/copyrightbasics/copyrightability
Similar terms apply to other locations.
These uncopyrightable files include:
- Empty files or files with only a comment explaining their existence. These may be required to exist as part of the build process but are not needed for the particular project.
- Configuration files either in binary or text form. Examples would be files such as .vbt files describing graphics configuration, .apcb files containing configuration parameters for AMD firmware binaries, and spd files as binary .spd or text *spd*.hex representing memory chip configuration.
- Machine-generated files containing version numbers, dates, hash values or other "non-creative" content.
As non-creative content, these files are in the public domain by default. As such, the coreboot project excludes them from the project's general license even though they may be included in a final binary.
If there are questions or concerns about this policy, please get in touch with the coreboot project via the mailing list.
Copyrights
The copyright on coreboot is owned by quite a large number of individual developers and companies. A list of companies and individuals with known copyright claims is present at the top level of the coreboot source tree in the 'AUTHORS' file. Please check the git history of each of the source files for details.
Licenses
Because of the way coreboot began, using a significant amount of source code from the Linux kernel, it's licensed the same way as the Linux Kernel, with GNU General Public License (GPL) Version 2. Individual files are licensed under various licenses, though all are compatible with GPLv2. The resulting coreboot image is licensed under the GPL, version 2. All source files should have an SPDX license identifier at the top for clarification.
Files under coreboot/Documentation/ are licensed under CC-BY 4.0 terms. As an exception, files under Documentation/ with a history older than 2017-05-24 might be under different licenses.
Files in the coreboot/src/commonlib/bsd directory are all licensed with the BSD-3-clause license. Many are also dual-licensed GPL-2.0-only or GPL-2.0-or-later. These files are intended to be shared with libpayload or other BSD licensed projects.
The libpayload project contained in coreboot/payloads/libpayload may be licensed as BSD or GPL, depending on the code pulled in during the build process. All GPL source code should be excluded unless the Kconfig option to include it is set.
The Software Freedom Conservancy
Since 2017, coreboot has been a member of The Software Freedom Conservancy, a nonprofit organization devoted to ethical technology and driving initiatives to make technology more inclusive. The conservancy acts as coreboot's fiscal sponsor and legal advisor.