aboutsummaryrefslogtreecommitdiffstats
path: root/xen/arch/x86/tboot.c
diff options
context:
space:
mode:
authorKeir Fraser <keir.fraser@citrix.com>2009-01-29 11:36:09 +0000
committerKeir Fraser <keir.fraser@citrix.com>2009-01-29 11:36:09 +0000
commite73ef5b21d71ad83afb3f098d21a6a9f6b03bfa8 (patch)
tree81538a3d9536b907f3e7d6c439e45626a2399b62 /xen/arch/x86/tboot.c
parent4d41b00276a6730da899563366654eebaf20bcb6 (diff)
downloadxen-e73ef5b21d71ad83afb3f098d21a6a9f6b03bfa8.tar.gz
xen-e73ef5b21d71ad83afb3f098d21a6a9f6b03bfa8.tar.bz2
xen-e73ef5b21d71ad83afb3f098d21a6a9f6b03bfa8.zip
tboot: hypervisor integrity on S3
When launched from tboot, utilise tboot interface to provide integrity protection to the hypervisor during S3 Signed-off-by: Joseph Cihula <joseph.cihula@intel.com> ACKed-by: Shane Wang <shane.wang@intel.com>
Diffstat (limited to 'xen/arch/x86/tboot.c')
-rw-r--r--xen/arch/x86/tboot.c21
1 files changed, 21 insertions, 0 deletions
diff --git a/xen/arch/x86/tboot.c b/xen/arch/x86/tboot.c
index 9e1419646d..1952ad5db1 100644
--- a/xen/arch/x86/tboot.c
+++ b/xen/arch/x86/tboot.c
@@ -17,6 +17,8 @@ tboot_shared_t *g_tboot_shared;
static const uuid_t tboot_shared_uuid = TBOOT_SHARED_UUID;
+extern char __init_begin[], __per_cpu_start[], __per_cpu_end[], __bss_start[];
+
void __init tboot_probe(void)
{
tboot_shared_t *tboot_shared;
@@ -59,6 +61,25 @@ void tboot_shutdown(uint32_t shutdown_type)
local_irq_disable();
+ /* if this is S3 then set regions to MAC */
+ if ( shutdown_type == TB_SHUTDOWN_S3 ) {
+ g_tboot_shared->num_mac_regions = 4;
+ /* S3 resume code (and other real mode trampoline code) */
+ g_tboot_shared->mac_regions[0].start =
+ (uint64_t)bootsym_phys(trampoline_start);
+ g_tboot_shared->mac_regions[0].end =
+ (uint64_t)bootsym_phys(trampoline_end);
+ /* hypervisor code + data */
+ g_tboot_shared->mac_regions[1].start = (uint64_t)__pa(&_stext);
+ g_tboot_shared->mac_regions[1].end = (uint64_t)__pa(&__init_begin);
+ /* per-cpu data */
+ g_tboot_shared->mac_regions[2].start = (uint64_t)__pa(&__per_cpu_start);
+ g_tboot_shared->mac_regions[2].end = (uint64_t)__pa(&__per_cpu_end);
+ /* bss */
+ g_tboot_shared->mac_regions[3].start = (uint64_t)__pa(&__bss_start);
+ g_tboot_shared->mac_regions[3].end = (uint64_t)__pa(&_end);
+ }
+
/* Create identity map for tboot shutdown code. */
map_base = PFN_DOWN(g_tboot_shared->tboot_base);
map_size = PFN_UP(g_tboot_shared->tboot_size);
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-13 18:43:30 +0000