Attention is currently required from: Jason Glenesk, Raul Rangel, Matt DeVillier, Fred Reitberger, Karthik Ramasubramanian, Felix Held.

Hello build bot (Jenkins), Jason Glenesk, Raul Rangel, Matt DeVillier, Martin Roth, Fred Reitberger, Felix Held,

I'd like you to reexamine a change. Please visit

https://review.coreboot.org/c/coreboot/+/67259

to look at the new patch set (#3).

Change subject: soc/amd/mendocino: Add svc_set_fw_hash_table ......................................................................

soc/amd/mendocino: Add svc_set_fw_hash_table

Add new PSP svc call to pass psp firmware hash table to the PSP. psp_verstage will verify hash table and then pass them to the PSP. The PSP will check if signed firmware contents match these hashes. This will prevent anyone replacing signed firmware in the RW region.

BUG=b:203597980 TEST=Build and boot to OS in Skyrim.

Change-Id: I512d359967eae925098973e90250111d6f59dd39 Signed-off-by: Karthikeyan Ramasubramanian kramasub@google.com --- M src/soc/amd/mendocino/psp_verstage/svc.c M src/soc/amd/mendocino/psp_verstage/svc.h M src/vendorcode/amd/fsp/mendocino/include/bl_uapp/bl_syscall_public.h 3 files changed, 63 insertions(+), 0 deletions(-)

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/59/67259/3