diff options
author | Chen Du <duchen@us.ibm.com> | 2019-03-04 10:56:19 -0600 |
---|---|---|
committer | Daniel M. Crowell <dcrowell@us.ibm.com> | 2019-05-09 16:10:29 -0500 |
commit | bbbd68a140c9b34ccded9273d91e6b5bc97d0f28 (patch) | |
tree | 930afab97b728563743d597510fe3e473bd998b3 /src/include/securerom | |
parent | 6aeba3917d4d42f6b99a059eeacc57c850dca6b9 (diff) | |
download | talos-hostboot-bbbd68a140c9b34ccded9273d91e6b5bc97d0f28.tar.gz talos-hostboot-bbbd68a140c9b34ccded9273d91e6b5bc97d0f28.zip |
Add page tables to read only partitions
Changed partitions (WOFDATA, MEMD)
to be signed with a hash page table bit. This generates
a hash page table in the protected payload which will be
used to validate pages in the unprotected payload
Change-Id: I9be4b1f6e65b9a52a8b6ba23affdacc4d89f5295
RTC: 179519
Reviewed-on: http://rchgit01.rchland.ibm.com/gerrit1/72776
Tested-by: Jenkins Server <pfd-jenkins+hostboot@us.ibm.com>
Reviewed-by: Nicholas E. Bofferding <bofferdn@us.ibm.com>
Tested-by: Jenkins OP Build CI <op-jenkins+hostboot@us.ibm.com>
Tested-by: FSP CI Jenkins <fsp-CI-jenkins+hostboot@us.ibm.com>
Tested-by: Jenkins OP HW <op-hw-jenkins+hostboot@us.ibm.com>
Reviewed-by: Michael Baiocchi <mbaiocch@us.ibm.com>
Reviewed-by: Daniel M. Crowell <dcrowell@us.ibm.com>
Diffstat (limited to 'src/include/securerom')
-rw-r--r-- | src/include/securerom/ROM.H | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/src/include/securerom/ROM.H b/src/include/securerom/ROM.H index f4cf76528..0d97537e0 100644 --- a/src/include/securerom/ROM.H +++ b/src/include/securerom/ROM.H @@ -5,7 +5,7 @@ /* */ /* OpenPOWER HostBoot Project */ /* */ -/* Contributors Listed Below - COPYRIGHT 2016,2018 */ +/* Contributors Listed Below - COPYRIGHT 2016,2019 */ /* [+] International Business Machines Corp. */ /* */ /* */ @@ -284,7 +284,7 @@ enum HW_SB_FLAGS // SW Security Flags enum SW_SB_FLAGS { - // placeholder + HASH_PAGE_TABLE_FLAG = 0x80000000 }; // Structure to store all hw and sw flag values in a container header @@ -295,7 +295,8 @@ struct sb_flags_t hw_opal(false), hw_phyp(false), hw_lab_override(false), - hw_key_transition(false) + hw_key_transition(false), + sw_hash(false) { } @@ -305,6 +306,7 @@ struct sb_flags_t bool hw_lab_override; ///< Whether to enable lab security override; ///< Only applicable for SBE partition bool hw_key_transition; ///< Indicates this is a key transition container + bool sw_hash; ///< Indicates presence of hash page table }; /** |