WiP: galp5 build based on librem_11 (GOP based iGPU)

.circleci/config.yml

@@ -240,6 +240,14 @@ workflows:
           requires:
             - x230-hotp-maximized
 
+      # coreboot system76
+      - build_and_persist:
+          name: galp5
+          target: galp5
+          subcommand: ""
+          requires:
+            - librem_14
+
       # coreboot nitropad
       # Nitropads depending on x230-hotp-maximized cache since kernel is 6.x and coreboot is git is unshared
       # We use nitropad's coreboot's fork crossgcc

BOARD_TESTERS.md

@@ -40,6 +40,9 @@ Librems:
 - [ ] Librem 15v3 (Skylake): @JonathonHall-Purism
 - [ ] Librem 15v4 (Kabylake): @JonathonHall-Purism
 
+System76:
+- [ ] Galago Pro 5 (Tiger Lake-U, Intel 11th Gen CPU, iGPU): @loftlifter31
+
 Clevo:
 ===
 - [ ] Nitropad NS50 (AlderLake) : @daringer

Makefile

@@ -881,6 +881,7 @@ real.remove_canary_files-extract_patch_rebuild_what_changed:
 	@echo "Only a minimal time is needed for rebuilding, which is also good for your SSD."
 	@echo "*** USE THIS APPROACH FIRST ***"
 	find ./build/ -type f -name ".canary" -print -delete
+	find ./build/ -type f -name ".patched" -print -delete
 	find ./install/*/* -print -exec rm -rf {} +
 
 real.gitclean_keep_packages_and_build:

boards/galp5/galp5.config

@@ -0,0 +1,89 @@
+# Configuration System76 Galago Pro 5 https://tech-docs.system76.com/models/galp5/README.html
+CONFIG_LINUX_CONFIG=config/linux-galp5.config
+CONFIG_COREBOOT_CONFIG=config/coreboot-galp5.config
+
+export CONFIG_COREBOOT=y
+export CONFIG_COREBOOT_VERSION=system76
+export CONFIG_LINUX_VERSION=6.1.8
+
+#Enable only one RESTRICTED/BASIC boot modes below to test them manually (we cannot inject config under QEMU (no internal flashing)
+#export CONFIG_RESTRICTED_BOOT=y
+#export CONFIG_BASIC=y
+
+#Enable HAVE_GPG_KEY_BACKUP to test GPG key backup drive (we cannot inject config under QEMU (no internal flashing))
+#export CONFIG_HAVE_GPG_KEY_BACKUP=y
+
+#Enable DEBUG output
+#export CONFIG_DEBUG_OUTPUT=y
+#export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y
+#Enable TPM2 pcap output under /tmp
+#export CONFIG_TPM2_CAPTURE_PCAP=y
+
+#On-demand hardware support (modules.cpio)
+CONFIG_LINUX_USB=y
+CONFIG_LINUX_E1000=y
+CONFIG_MOBILE_TETHERING=y
+#Runtime on-demand additional hardware support (modules.cpio)
+#export CONFIG_LINUX_USB_COMPANION_CONTROLLER=y
+#Pack but not use USB keyboard support by default (Needs runtime+ flash under config menu)
+export CONFIG_SUPPORT_USB_KEYBOARD=y
+
+
+
+#Modules packed into tools.cpio
+CONFIG_CRYPTSETUP2=y
+CONFIG_FLASHROM=y
+CONFIG_FLASHTOOLS=y
+CONFIG_GPG2=y
+CONFIG_KEXEC=y
+CONFIG_UTIL_LINUX=y
+CONFIG_LVM2=y
+CONFIG_MBEDTLS=y
+CONFIG_PCIUTILS=y
+#Runtime tools to write to MSR
+CONFIG_MSRTOOLS=y
+#Remote attestation support
+# TPM2 requirements
+CONFIG_TPM2_TSS=y
+CONFIG_OPENSSL=y
+#Remote Attestation common tools
+CONFIG_POPT=y
+CONFIG_QRENCODE=y
+CONFIG_TPMTOTP=y
+#HOTP based remote attestation for supported USB Security dongle
+#With/Without TPM support
+CONFIG_HOTPKEY=y
+#Nitrokey Storage admin tool (deprecated)
+#CONFIG_NKSTORECLI=n
+#GUI Support
+#Console based Whiptail support(Console based, no FB):
+#CONFIG_SLANG=y
+#CONFIG_NEWT=y
+#FBWhiptail based (Graphical):
+CONFIG_CAIRO=y
+CONFIG_FBWHIPTAIL=y
+#Additional tools (tools.cpio):
+#SSH server (requires ethernet drivers, eg: CONFIG_LINUX_E1000E)
+#CONFIG_DROPBEAR=y
+
+
+#Runtime configuration
+#Automatically boot if HOTP is valid
+export CONFIG_AUTO_BOOT_TIMEOUT=5
+#TPM2 requirements
+export CONFIG_TPM2_TOOLS=y
+export CONFIG_PRIMARY_KEY_TYPE=ecc
+#TPM1 requirements
+#export CONFIG_TPM=y
+export CONFIG_BOOTSCRIPT=/bin/gui-init
+#text-based original init:
+#export CONFIG_BOOTSCRIPT=/bin/generic-init
+export CONFIG_BOOT_REQ_HASH=n
+export CONFIG_BOOT_REQ_ROLLBACK=n
+export CONFIG_BOOT_KERNEL_ADD=""
+export CONFIG_BOOT_KERNEL_REMOVE=""
+export CONFIG_BOOT_DEV="/dev/nvme0n1p1"
+export CONFIG_BOARD_NAME="Galago Pro 5"
+export CONFIG_FLASHROM_OPTIONS="-p internal"
+
+export CONFIG_AUTO_BOOT_TIMEOUT=5