Add page tables to read only partitions

Changed partitions (WOFDATA, MEMD) to be signed with a hash page table bit. This generates a hash page table in the protected payload which will be used to validate pages in the unprotected payload Change-Id: I9be4b1f6e65b9a52a8b6ba23affdacc4d89f5295 RTC: 179519 Reviewed-on: http://rchgit01.rchland.ibm.com/gerrit1/72776 Tested-by: Jenkins Server <pfd-jenkins+hostboot@us.ibm.com> Reviewed-by: Nicholas E. Bofferding <bofferdn@us.ibm.com> Tested-by: Jenkins OP Build CI <op-jenkins+hostboot@us.ibm.com> Tested-by: FSP CI Jenkins <fsp-CI-jenkins+hostboot@us.ibm.com> Tested-by: Jenkins OP HW <op-hw-jenkins+hostboot@us.ibm.com> Reviewed-by: Michael Baiocchi <mbaiocch@us.ibm.com> Reviewed-by: Daniel M. Crowell <dcrowell@us.ibm.com>
author: Chen Du <duchen@us.ibm.com> 2019-03-04 10:56:19 -0600
committer: Daniel M. Crowell <dcrowell@us.ibm.com> 2019-05-09 16:10:29 -0500
commit: bbbd68a140c9b34ccded9273d91e6b5bc97d0f28 (patch)
tree: 930afab97b728563743d597510fe3e473bd998b3 /src/include/securerom
parent: 6aeba3917d4d42f6b99a059eeacc57c850dca6b9 (diff)
download: talos-hostboot-bbbd68a140c9b34ccded9273d91e6b5bc97d0f28.tar.gz
talos-hostboot-bbbd68a140c9b34ccded9273d91e6b5bc97d0f28.zip
1 files changed, 5 insertions, 3 deletions
diff --git a/src/include/securerom/ROM.H b/src/include/securerom/ROM.H
index f4cf76528..0d97537e0 100644
--- a/src/include/securerom/ROM.H
+++ b/src/include/securerom/ROM.H
@@ -5,7 +5,7 @@
 /*                                                                        */
 /* OpenPOWER HostBoot Project                                             */
 /*                                                                        */
-/* Contributors Listed Below - COPYRIGHT 2016,2018                        */
+/* Contributors Listed Below - COPYRIGHT 2016,2019                        */
 /* [+] International Business Machines Corp.                              */
 /*                                                                        */
 /*                                                                        */
@@ -284,7 +284,7 @@ enum HW_SB_FLAGS
 // SW Security Flags
 enum SW_SB_FLAGS
 {
-    // placeholder
+    HASH_PAGE_TABLE_FLAG = 0x80000000
 };
 
 // Structure to store all hw and sw flag values in a container header
@@ -295,7 +295,8 @@ struct sb_flags_t
         hw_opal(false),
         hw_phyp(false),
         hw_lab_override(false),
-        hw_key_transition(false)
+        hw_key_transition(false),
+        sw_hash(false)
     {
     }
 
@@ -305,6 +306,7 @@ struct sb_flags_t
     bool hw_lab_override;   ///< Whether to enable lab security override;
                             ///< Only applicable for SBE partition
     bool hw_key_transition; ///< Indicates this is a key transition container
+    bool sw_hash;           ///< Indicates presence of hash page table
 };
 
 /**
author	Chen Du <duchen@us.ibm.com>	2019-03-04 10:56:19 -0600
committer	Daniel M. Crowell <dcrowell@us.ibm.com>	2019-05-09 16:10:29 -0500
commit	bbbd68a140c9b34ccded9273d91e6b5bc97d0f28 (patch)
tree	930afab97b728563743d597510fe3e473bd998b3 /src/include/securerom
parent	6aeba3917d4d42f6b99a059eeacc57c850dca6b9 (diff)
download	talos-hostboot-bbbd68a140c9b34ccded9273d91e6b5bc97d0f28.tar.gz talos-hostboot-bbbd68a140c9b34ccded9273d91e6b5bc97d0f28.zip