diff options
author | Nick Bofferding <bofferdn@us.ibm.com> | 2017-01-06 10:47:27 -0600 |
---|---|---|
committer | Daniel M. Crowell <dcrowell@us.ibm.com> | 2017-01-19 10:52:18 -0500 |
commit | 830c7309c1ffdab538d70c1b604b387a00e6a610 (patch) | |
tree | f0bd536cc16c63acf5928a74e71b4a149a737aba | |
parent | a5a49f952a488a2726781b5060e32f6421abb669 (diff) | |
download | talos-hostboot-830c7309c1ffdab538d70c1b604b387a00e6a610.tar.gz talos-hostboot-830c7309c1ffdab538d70c1b604b387a00e6a610.zip |
SECUREBOOT: Support simulation setup for secure mode
- Modified simics startup script to configure logical secure jumpers
Change-Id: I7fa793bd3ca25e9539216e6e3470bf1995b70529
Reviewed-on: http://ralgit01.raleigh.ibm.com/gerrit1/34574
Tested-by: Jenkins Server <pfd-jenkins+hostboot@us.ibm.com>
Tested-by: FSP CI Jenkins <fsp-CI-jenkins+hostboot@us.ibm.com>
Tested-by: Jenkins OP Build CI <op-jenkins+hostboot@us.ibm.com>
Reviewed-by: Stephen M. Cprek <smcprek@us.ibm.com>
Reviewed-by: Michael Baiocchi <mbaiocch@us.ibm.com>
Reviewed-by: Daniel M. Crowell <dcrowell@us.ibm.com>
-rwxr-xr-x | src/build/simics/startup.simics | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/src/build/simics/startup.simics b/src/build/simics/startup.simics index 409526589..985d3fbda 100755 --- a/src/build/simics/startup.simics +++ b/src/build/simics/startup.simics @@ -47,7 +47,35 @@ try { run-python-file (lookup-file hbfw/hb-simdebug.py) } except { echo "ERROR: Failed to load Hostboot debug tools." } +# Determine security state +$hw_security=(shell "echo $SECURITY_HW_POLICY") +if($hw_security == "") { + # Assume default (no HW security) if not specified + $hw_security = "0" +} + +if(($hw_security != "1") and ($hw_security != "0")) { + # Emit warning and assume default + echo ("SECURITY: WARNING! Bad value "+ + $hw_security+" for HW security policy, defaulting to 0") + $hw_security = "0" +} +echo "SECURITY: HW security policy set to "+$hw_security +# Translate security state to SIMICS jumper state +$jumperApplied=TRUE +if($hw_security == "1") { + $jumperApplied=FALSE +} + +# Load jumper state to each processor +foreach $procX in (get-object-list p9_proc) { + + # Set logical jumper state in SIMICS based on HW policy + # "TRUE"=jumper applied(security disabled, default) + # "FALSE"=jumper removed(security enabled) + (($procX)->secure_jumper=$jumperApplied) +} ########################### WORKAROUNDS #################################### # Setup the mailbox. |