Commit 5eb35220b2cbeac79af8d73c696f5930a755c5bd
1 parent
0683fb7242
Exists in
smarc_8mq_lf_v2020.04
and in
17 other branches
env: Migrate CONFIG_ENV_AES to Kconfig and deprecate
The underlying implementation for ENV_AES has security complications and is not recommended for use. Please see CVE-2017-3225 and CVE-2017-3226 for more details. Mark this as deprecated now and delete this in the medium term if no one comes forward to re-work the support. Signed-off-by: Tom Rini <trini@konsulko.com>
Showing 2 changed files with 8 additions and 1 deletions Side-by-side Diff
env/Kconfig
... | ... | @@ -375,6 +375,14 @@ |
375 | 375 | |
376 | 376 | endchoice |
377 | 377 | |
378 | +config ENV_AES | |
379 | + bool "AES-128 encryption for stored environment (DEPRECATED)" | |
380 | + help | |
381 | + Enable this to have the on-device stored environment be encrypted | |
382 | + with AES-128. The implementation here however has security | |
383 | + complications and is not recommended for use. Please see | |
384 | + CVE-2017-3225 and CVE-2017-3226 for more details. | |
385 | + | |
378 | 386 | config ENV_FAT_INTERFACE |
379 | 387 | string "Name of the block device for the environment" |
380 | 388 | depends on ENV_IS_IN_FAT |