TI secure devices chain-of-trust depends on FIT image processing,
enable it by default on these devices. This also reduces the delta
between the secure and non-secure defconfig files.
Signed-off-by: Andrew Davis <a...@ti.com>
---
boot/Kconfig | 2 ++
1 file changed, 2 insertions(+)
diff --git a/boot/Kconfig b/boot/Kconfig
index 9780473190..dff4d23b88 100644
--- a/boot/Kconfig
+++ b/boot/Kconfig
@@ -123,6 +123,7 @@ config FIT_BEST_MATCH
config FIT_IMAGE_POST_PROCESS
bool "Enable post-processing of FIT artifacts after loading by U-Boot"
depends on TI_SECURE_DEVICE || SOCFPGA_SECURE_VAB_AUTH
+ default y if TI_SECURE_DEVICE
help
Allows doing any sort of manipulation to blobs after they got
extracted
from FIT images like stripping off headers or modifying the size of
the
@@ -254,6 +255,7 @@ config SPL_LOAD_FIT_FULL
config SPL_FIT_IMAGE_POST_PROCESS
bool "Enable post-processing of FIT artifacts after loading by the SPL"
depends on SPL_LOAD_FIT
+ default y if TI_SECURE_DEVICE
help
Allows doing any sort of manipulation to blobs after they got
extracted
from the U-Boot FIT image like stripping off headers or modifying the
--
2.36.0
