Change in ...coreboot[master]: security: Add memory subfolder - coreboot-gerrit

5 Mar 2019


      Paul Menzel has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/31548 )
Change subject: security: Add memory subfolder
......................................................................
Patch Set 5:
(8 comments)
https://review.coreboot.org/#/c/31548/5//COMMIT_MSG 
Commit Message:
https://review.coreboot.org/#/c/31548/5//COMMIT_MSG@10 
PS5, Line 10: Introduce Kconfig PLATFORM_HAS_DRAM_CLEAR that is to be selected by
            : platforms, that are able to clear all DRAM.
            : 
            : Introduce Kconfig SECURITY_CLEAR_DRAM_ON_REGULAR_BOOT that is user
            : selectable to always clear DRAM on non S3 boot.
            : 
            : The function security_clear_dram_request tells the calling platform when
            : to wipe all DRAM. Will be extended by TEE frameworks.
            : 
            : Add Documentation for the new security API.
Enumerate these items?
https://review.coreboot.org/#/c/31548/5/Documentation/security/memory_cleari... 
File Documentation/security/memory_clearing.md:
https://review.coreboot.org/#/c/31548/5/Documentation/security/memory_cleari... 
PS5, Line 14: bringup
bring-up?
https://review.coreboot.org/#/c/31548/5/Documentation/security/memory_cleari... 
PS5, Line 15: SoC
device?
https://review.coreboot.org/#/c/31548/5/Documentation/security/memory_cleari... 
PS5, Line 22: 4. All DRAM is cleared with zeros
Can you elaborate, why 0 is the way to go and not something random?
https://review.coreboot.org/#/c/31548/5/Documentation/security/memory_cleari... 
PS5, Line 26: platforms
singular
https://review.coreboot.org/#/c/31548/5/Documentation/security/memory_cleari... 
PS5, Line 27: call
calls
https://review.coreboot.org/#/c/31548/5/src/security/memory/Kconfig 
File src/security/memory/Kconfig:
https://review.coreboot.org/#/c/31548/5/src/security/memory/Kconfig@30 
PS5, Line 30: 	  of additional security implementations in use.
Please add a blank line below.
https://review.coreboot.org/#/c/31548/5/src/security/memory/memory.c 
File src/security/memory/memory.c:
https://review.coreboot.org/#/c/31548/5/src/security/memory/memory.c@28 
PS5, Line 28: 	return 1;
            : 
            : 	/* TODO: Add TEE environments here */
            : 
            : 	return 0;
Use `true` and `false` as the type is `bool`? The macros are defined in `stdint.h`.
-- 
To view, visit https://review.coreboot.org/c/coreboot/+/31548
To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings

Gerrit-Project: coreboot
Gerrit-Branch: master
Gerrit-Change-Id: Ifba25bfdd1057049f5cbae8968501bd9be487110
Gerrit-Change-Number: 31548
Gerrit-PatchSet: 5
Gerrit-Owner: Patrick Rudolph patrick.rudolph@9elements.com
Gerrit-Reviewer: Aaron Durbin adurbin@chromium.org
Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com
Gerrit-Reviewer: Jens Drenhaus jens.drenhaus@9elements.com
Gerrit-Reviewer: Martin Roth martinroth@google.com
Gerrit-Reviewer: Nico Huber nico.h@gmx.de
Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com
Gerrit-Reviewer: Patrick Rudolph patrick.rudolph@9elements.com
Gerrit-Reviewer: Philipp Deppenwiese zaolin.daisuki@gmail.com
Gerrit-Reviewer: Roy Wen rgzwen@arista.com
Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org
Gerrit-CC: Paul Menzel paulepanter@users.sourceforge.net
Gerrit-Comment-Date: Tue, 05 Mar 2019 10:33:33 +0000
Gerrit-HasComments: Yes
Gerrit-Has-Labels: No
Gerrit-MessageType: comment