6 comments:
File Documentation/security/vboot/measured_boot.md:
what does it mean?
Patch Set #33, Line 43: #### CBFS files (stages, blobs)
only if EC is in same boot flash
File src/drivers/intel/fsp1_0/fastboot_cache.c:
Patch Set #33, Line 64: if (vboot_measure_fmap(&rdev, "RW_MRC_CACHE")) {
would be possibly measured twice, once on read and once before update.
File src/drivers/mrc_cache/mrc_cache.c:
Patch Set #33, Line 317: return -1;
why does it return on error? it's not in verified mode, is it? Applies to all calls to this function.
File src/drivers/smmstore/store.c:
Patch Set #33, Line 103: if (vboot_measure_fmap(&store, CONFIG_SMMSTORE_REGION))
that would cause to code to run on every call to SMM store. What happens if TPM is in use by operating system?
Patch Set #33, Line 101: return -1;
seams unrelated.
To view, visit change 31597. To unsubscribe, or for help writing mail filters, visit settings.