diff options
author | Nick Bofferding <bofferdn@us.ibm.com> | 2017-04-20 16:33:39 -0500 |
---|---|---|
committer | Daniel M. Crowell <dcrowell@us.ibm.com> | 2017-04-28 14:18:34 -0400 |
commit | f30075299ce2c078705192b1835b70eff4f08fc1 (patch) | |
tree | f8d45e2052765457bee020e7b9b3b60d37f5b6a4 /src/include/securerom | |
parent | 21187e0ac2c55cd238b915a0d1c9e80ff2fbaacd (diff) | |
download | talos-hostboot-f30075299ce2c078705192b1835b70eff4f08fc1.tar.gz talos-hostboot-f30075299ce2c078705192b1835b70eff4f08fc1.zip |
Support setting security mode based on SBE key indicator bit
Change-Id: I9db3857b73116db5761b55eb3aa6ec7e47dd4c3d
RTC: 170650
Reviewed-on: http://ralgit01.raleigh.ibm.com/gerrit1/39515
Tested-by: Jenkins Server <pfd-jenkins+hostboot@us.ibm.com>
Reviewed-by: Michael Baiocchi <mbaiocch@us.ibm.com>
Tested-by: Jenkins OP Build CI <op-jenkins+hostboot@us.ibm.com>
Reviewed-by: Stephen M. Cprek <smcprek@us.ibm.com>
Tested-by: FSP CI Jenkins <fsp-CI-jenkins+hostboot@us.ibm.com>
Reviewed-by: Daniel M. Crowell <dcrowell@us.ibm.com>
Diffstat (limited to 'src/include/securerom')
-rw-r--r-- | src/include/securerom/ROM.H | 22 |
1 files changed, 16 insertions, 6 deletions
diff --git a/src/include/securerom/ROM.H b/src/include/securerom/ROM.H index 9e3d7d4ca..9d928de28 100644 --- a/src/include/securerom/ROM.H +++ b/src/include/securerom/ROM.H @@ -248,6 +248,7 @@ enum HW_SB_FLAGS HB_FW_FLAG = 0x80000000, OPAL_FLAG = 0x40000000, PHYP_FLAG = 0x20000000, + LAB_OVERRIDE_FLAG = 0x00080000, KEY_TRANSITION_FLAG = 0x00000001 }; @@ -260,12 +261,21 @@ enum SW_SB_FLAGS // Structure to store all hw and sw flag values in a container header struct sb_flags_t { - sb_flags_t() : hw_hb_fw(false), hw_opal(false), hw_phyp(false), - hw_key_transition(false) {} - bool hw_hb_fw; - bool hw_opal; - bool hw_phyp; - bool hw_key_transition; + sb_flags_t() : + hw_hb_fw(false), + hw_opal(false), + hw_phyp(false), + hw_lab_override(false), + hw_key_transition(false) + { + } + + bool hw_hb_fw; ///< Signed using HB keys + bool hw_opal; ///< Signed using OPAL keys + bool hw_phyp; ///< Signed using PHyp keys + bool hw_lab_override; ///< Whether to enable lab security override; + ///< Only applicable for SBE partition + bool hw_key_transition; ///< Indicates this is a key transition container }; |