[S] Change in coreboot[master]: security/vboot: Add function to clear recovery request - coreboot-gerrit

14 Apr 2023


      Attention is currently required from: Michał Żygowski, Yu-Ping Wu.
Julius Werner has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/74343 )
Change subject: security/vboot: Add function to clear recovery request
......................................................................
Patch Set 3:
(2 comments)
File src/security/vboot/bootmode.c:
https://review.coreboot.org/c/coreboot/+/74343/comment/7a5b0265_517afed8 
PS3, Line 26: 	if (!vboot_recovery_mode_enabled())
FWIW in vb2api_kernel_phase2() we call it unconditionally without checking this first (it doesn't hurt in the non-recovery case). Probably best to do the same here for consistency (I think otherwise you can get the subcode stuck for longer than intended in some cases).
https://review.coreboot.org/c/coreboot/+/74343/comment/5c03931a_60ccc3f8 
PS3, Line 34: 		save_vbnv_flash(ctx->nvdata);
It would be good to not have to do this here. Currently this is called from BS_POST_DEVICE/ON_EXIT, so probably best to just make sure this gets called before that (e.g. POST_DEVICE/ON_ENTRY).
-- 
To view, visit https://review.coreboot.org/c/coreboot/+/74343
To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings

Gerrit-Project: coreboot
Gerrit-Branch: master
Gerrit-Change-Id: I7ffaf3e8f61a28a68c9802c184961b1b9bf9d617
Gerrit-Change-Number: 74343
Gerrit-PatchSet: 3
Gerrit-Owner: Michał Żygowski michal.zygowski@3mdeb.com
Gerrit-Reviewer: Julius Werner jwerner@chromium.org
Gerrit-Reviewer: Michał Kopeć michal.kopec@3mdeb.com
Gerrit-Reviewer: Yu-Ping Wu yupingso@google.com
Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org
Gerrit-Attention: Michał Żygowski michal.zygowski@3mdeb.com
Gerrit-Attention: Yu-Ping Wu yupingso@google.com
Gerrit-Comment-Date: Fri, 14 Apr 2023 00:27:27 +0000
Gerrit-HasComments: Yes
Gerrit-Has-Labels: No
Gerrit-MessageType: comment