Attention is currently required from: Kapil Porwal, Subrata Banik, Tarun Tuli.
Pratikkumar V Prajapati has uploaded this change for review. ( https://review.coreboot.org/c/coreboot/+/75626?usp=email )
Change subject: [WIP] soc/intel/meteorlake: Set UPDs for TME exclusion range and new key on each reboot ......................................................................
[WIP] soc/intel/meteorlake: Set UPDs for TME exclusion range and new key on each reboot
WIP DO NOT MERGE. For test only.
Bug=b:276120526 TEST=TBD
Signed-off-by: Pratikkumar Prajapati pratikkumar.v.prajapati@intel.com Change-Id: Ib8d33f470977ce8db2fd137bab9c63e325b4a32d --- M src/soc/intel/meteorlake/romstage/fsp_params.c 1 file changed, 13 insertions(+), 0 deletions(-)
git pull ssh://review.coreboot.org:29418/coreboot refs/changes/26/75626/1
diff --git a/src/soc/intel/meteorlake/romstage/fsp_params.c b/src/soc/intel/meteorlake/romstage/fsp_params.c index bdc4f7a..a1d8825 100644 --- a/src/soc/intel/meteorlake/romstage/fsp_params.c +++ b/src/soc/intel/meteorlake/romstage/fsp_params.c @@ -8,6 +8,7 @@ #include <drivers/wifi/generic/wifi.h> #include <fsp/fsp_debug_event.h> #include <fsp/util.h> +#include <intelbasecode/ramtop.h> #include <intelblocks/cpulib.h> #include <intelblocks/pcie_rp.h> #include <option.h> @@ -179,6 +180,18 @@ /* Disable BIOS Guard */ m_cfg->BiosGuard = 0; m_cfg->TmeEnable = CONFIG(INTEL_TME) && is_tme_supported(); + + if (m_cfg->TmeEnable) { + m_cfg->GenerateNewTmeKey = CONFIG(INTEL_TME_GEN_NEW_KEY_EACH_REBOOT); + if (CONFIG(INTEL_TME_EXCLUDE_CBMEM)) { + m_cfg->TmeExcludeBase = (get_ramtop_addr() - 16*MiB); + m_cfg->TmeExcludeSize = 16*MiB; + } + } + printk(BIOS_DEBUG, "TmeEnable = %d\n", m_cfg->TmeEnable); + printk(BIOS_DEBUG, "Tme GenerateNewTmeKey = %d\n", m_cfg->GenerateNewTmeKey); + printk(BIOS_DEBUG, "TmeExcludeBase = 0x%llx\n", m_cfg->TmeExcludeBase); + printk(BIOS_DEBUG, "TmeExcludeSize = 0x%llx\n", m_cfg->TmeExcludeSize); }
static void fill_fspm_uart_params(FSP_M_CONFIG *m_cfg,