From b3ad5819f9cbed67ceb0fa74d28d2f93227bbbcb Mon Sep 17 00:00:00 2001
From: Nick Bofferding <bofferdn@us.ibm.com>
Date: Fri, 11 Aug 2017 15:29:05 -0500
Subject: Secure Boot: Support secure load of MEMD partition

- Added secure load of MEMD partition in istep 7
- Added sha512 header to MEMD partition
- Marked MEMD as enforced secureboot section in PNOR code and image generator

Change-Id: I5de934da7e50ad0de6674e2674869d1356f5232d
RTC: 176189
Reviewed-on: http://ralgit01.raleigh.ibm.com/gerrit1/44606
Tested-by: Jenkins Server <pfd-jenkins+hostboot@us.ibm.com>
Reviewed-by: Marshall J. Wilks <mjwilks@us.ibm.com>
Tested-by: FSP CI Jenkins <fsp-CI-jenkins+hostboot@us.ibm.com>
Reviewed-by: Stephen M. Cprek <smcprek@us.ibm.com>
Reviewed-by: Michael Baiocchi <mbaiocch@us.ibm.com>
Tested-by: Jenkins OP Build CI <op-jenkins+hostboot@us.ibm.com>
Tested-by: Jenkins OP HW <op-hw-jenkins+hostboot@us.ibm.com>
Reviewed-by: Daniel M. Crowell <dcrowell@us.ibm.com>
---
 src/build/buildpnor/defaultPnorLayout.xml | 1 +
 src/build/buildpnor/genPnorImages.pl      | 1 +
 src/build/buildpnor/pnorLayoutFSP.xml     | 1 +
 3 files changed, 3 insertions(+)

(limited to 'src/build/buildpnor')

diff --git a/src/build/buildpnor/defaultPnorLayout.xml b/src/build/buildpnor/defaultPnorLayout.xml
index 4e7078c9f..414652c78 100644
--- a/src/build/buildpnor/defaultPnorLayout.xml
+++ b/src/build/buildpnor/defaultPnorLayout.xml
@@ -274,6 +274,7 @@ Layout Description
         <physicalOffset>0x38A1000</physicalOffset>
         <physicalRegionSize>0x6000</physicalRegionSize>
         <side>sideless</side>
+        <sha512Version/>
         <ecc/>
     </section>
 </pnor>
diff --git a/src/build/buildpnor/genPnorImages.pl b/src/build/buildpnor/genPnorImages.pl
index 709b51f48..b56de0273 100755
--- a/src/build/buildpnor/genPnorImages.pl
+++ b/src/build/buildpnor/genPnorImages.pl
@@ -551,6 +551,7 @@ sub manipulateImages
         # enabled for secureboot actions on these partitions to occur.
         my $isNormalSecure = ($eyeCatch eq "HBBL");
         $isNormalSecure ||= ($eyeCatch eq "SBE");
+        $isNormalSecure ||= ($eyeCatch eq "MEMD");
         $isNormalSecure ||= ($eyeCatch eq "HBRT");
         $isNormalSecure ||= ($eyeCatch eq "PAYLOAD");
         $isNormalSecure ||= ($eyeCatch eq "OCC");
diff --git a/src/build/buildpnor/pnorLayoutFSP.xml b/src/build/buildpnor/pnorLayoutFSP.xml
index d46a24e80..adc8e8fc2 100644
--- a/src/build/buildpnor/pnorLayoutFSP.xml
+++ b/src/build/buildpnor/pnorLayoutFSP.xml
@@ -275,6 +275,7 @@ Layout Description - Used when building an FSP driver
         <physicalOffset>0x3781000</physicalOffset>
         <physicalRegionSize>0x6000</physicalRegionSize>
         <side>sideless</side>
+        <sha512Version/>
         <ecc/>
     </section>
 </pnor>
-- 
cgit v1.2.1