Change in coreboot[master]: security/intel/txt/romstage.c: Unlock memory when SCLEAN not needed - coreboot-gerrit

22 Nov 2021


      Attention is currently required from: Patrick Rudolph.
Michał Żygowski has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/59521 )
Change subject: security/intel/txt/romstage.c: Unlock memory when SCLEAN not needed
......................................................................
Patch Set 2:
(1 comment)
Commit Message:
https://review.coreboot.org/c/coreboot/+/59521/comment/59c51990_f4b34c6c 
PS2, Line 10: memory on a TXT enabled platform. Previosuly on Sandybridge raminit the
...
this MSR is actually written in init_dram_ddr3(). […]
Since TXT is optional, we would still need to have this fragment just in case the memory controller would be locked. Having it in the TXT driver allows to use it in a controlled manner, i.e. only when TXT is checked to be supported by the chipset and CPU. By the way, this MSR should generate #GP when CPU or chipset is not TXT capable, we do not guard this in src/northbridge/intel/sandybridge/raminit.c. have you experienced such issues?
-- 
To view, visit https://review.coreboot.org/c/coreboot/+/59521
To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings

Gerrit-Project: coreboot
Gerrit-Branch: master
Gerrit-Change-Id: Idd29d163a2310f0b574fc72d575f23088ab1d11d
Gerrit-Change-Number: 59521
Gerrit-PatchSet: 2
Gerrit-Owner: Michał Żygowski michal.zygowski@3mdeb.com
Gerrit-Reviewer: Patrick Rudolph siro@das-labor.org
Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org
Gerrit-Attention: Patrick Rudolph siro@das-labor.org
Gerrit-Comment-Date: Mon, 22 Nov 2021 11:51:00 +0000
Gerrit-HasComments: Yes
Gerrit-Has-Labels: No
Comment-In-Reply-To: Patrick Rudolph siro@das-labor.org
Gerrit-MessageType: comment