dasharo/coreboot
0
0
Fork 0
mirror of https://github.com/Dasharo/coreboot.git synced 2026-03-06 14:43:26 -08:00
Code Issues Packages Projects Releases Wiki Activity
59,504 Commits 161 Branches 472 Tags
lvfs_script
Commit Graph

59504 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michał Kopeć
4ab443248d capsule_cabinet.sh: make it work independent of .config 
Extract the coreboot config from the capsule itself, in order to be able
to use the script on any coreboot capsules.

Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I49f2fb91423b912d98d55ca5e0e008b483d1322c
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-30 11:22:59 +01:00
Michał Kopeć
1d079685b6 configs/config.novacustom_v5*0tu: bump version to final v1.0.1 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I1039c06dd19a671011f43a98d31a4273b094d2a5
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-28 16:58:51 +01:00
Michał Kopeć
020318e29f configs/config.novacustom_v5*0tnx: bump version to final v1.0.0 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I1cf9e9b29b62f4b7418fead91ad5dc3f94954da1
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-28 14:30:14 +01:00
Filip Lewiński
7d8567bf87 configs/config.protectli_vp66xx: bump to rc4 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: Ia09a6fc16cfa40374bb192f71dd6eeeb6fe299fe
Signed-off-by: Filip Lewiński <filip.lewinski@3mdeb.com>
protectli_vault_adl_v0.9.3-rc4 		2026-01-23 15:50:41 +01:00
Michał Kopeć
00b6cf767e configs/config.protectli_vp66xx: enable CBnT stauts menu 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I4fc08ebc834a676bd1782d4a77a85d483c7cd451
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:36:47 +01:00
Michał Kopeć
e5aa7af71b security/intel: drop redundant TS region definitions 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: Ice02f181e23b18db105b6cf59374e3e80b37a29b
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:44 +01:00
Michał Kopeć
a0a41c94be mb/protectli/vault_adl_p/top_swap.fmd: rearrange to fill space 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: Ib9cb65dc0fbb97dd401dac7fe190569a930eb19b
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:44 +01:00
Michał Kopeć
84767f7603 mb/protectli/vault_adl_p/Kconfig: set default TSBB size to 1M 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I1406c21b7aeb6b97ac9e27ec487838855e4cfc24
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:44 +01:00
Michał Kopeć
aedffffdaa configs/config.protectli_vp66xx: set TSBS size and enable CBnT logging 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I7eb8805c9e6c74d71ff0af0d98ad3e60670d684e
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:44 +01:00
Michał Kopeć
12c12eb7c4 mb/protectli/vault_adl_p/top_swap.fmd: set TSBS size to 1M 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I15021d070687259abcfe1930534a3910ef12867e
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:44 +01:00
Michał Kopeć
9221df9068 cpu/intel/fit/Makefile.mk: set TS_MCU_REGION=COREBOOT_TS only once 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: Ia7d91db301db4984e9662304045a12d193cc4e85
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:44 +01:00
Michał Kopeć
28b2a896b3 security/intel/cbnt/Makefile.mk: Place KM in topswap blocks only if redudnancy enabled 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I944c18c41a103ae9c380d6102bd41394be6ad923
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:44 +01:00
Michał Kopeć
3b152fa834 configs/config.protectli_vp66xx: enable CBnT 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I03e9d3fff221961921ecf08bb8b6eab3a71c5135
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:44 +01:00
Michał Kopeć
25bd7833a7 security/intel/txt/ramstage.c: don't unconditionally map ACM from bootmedia 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I437818568cb1ae951a91c1de4a955ef21587cc9c
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:43 +01:00
Michał Kopeć
81a6626b04 security/intel/cbnt/Makefile.mk: Place BPM in topswap blocks only if redudnancy enabled 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: Id6bb4f2f6dff76cafca8636aa64ca45fd5ce66bb
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:43 +01:00
Michał Kopeć
db7d338b8b lib/cbfs.c: cbfs_unverified_area_lookup: add missing return 
Upstream-Status: Pending
Change-Id: I7803072aa0f04499c802c258d9b69ef27cd57227
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:43 +01:00
Michał Kopeć
cde0a4b7d9 util/cbfstool/ifittool.c: Use relative addresses when adding FIT entries 
This is needed to properly set addresses of objects located in the Top
Swap region of the flash, when Top Swap-based redundancy is enabled.

Upstream-Status: Pending
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:43 +01:00
Michał Kopeć
efa239c1c6 cpu/intel/fit/Makefile.mk: make TS FIT point to ucode in slot B 
To enable updates of microcode when slot B is active.

Upstream-Status: Inappropriate [Dasharo downstream]
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:43 +01:00
Michał Kopeć
1022543812 mb/protectli/vault_adl_p/romstage_fsp_params.c: map BIOS ACM properly with TS 
Upstream-Status: Inappropriate [Dasharo downstream]
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:43 +01:00
Michał Kopeć
d6059b3d72 security/intel/cbnt/Makefile.mk: add KM to TS FIT 
Upstream-Status: Inappropriate [Dasharo downstream]
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:43 +01:00
Michał Kopeć
086d8936ac mb/protectli/vault_adl_p: enable Boot Guard and add fixes for ACM placement in TS blocks 
Enable CBnT for the Vault ADL-P series.

Upstream-Status: Inappropriate [Dasharo downstream]
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:43 +01:00
Michał Kopeć
707660a59d security/intel/cbnt/Makefile.mk: include manifests in topswap blocks 
Per BTG BWG, they have to be included in the top-swap blocks.

Upstream-Status: Inappropriate [Dasharo downstream]
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:42 +01:00
Michał Kopeć
99c43448ab security/intel/acm/Makefile.mk: Fix including ACMs in topswap regions 
Upstream-Status: Inappropriate [Dasharo downstream]
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:42 +01:00
Michał Kopeć
61db5ed3f5 protectli/vault_adl_p/cmos.layout: define CBNT CMOS data 
CBnT implementation requires that this be defined in cmos.layout, if the
CMOS option backend is used.

Upstream-Status: Inappropriate [Dasharo downstream]
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:42 +01:00
Michał Kopeć
be3ac2f33f security/intel/acm/Makefile.mk: add ACMs to appropriate redundancy regions 
Upstream-Status: Inappropriate [Dasharo downstream]
Change-Id: I1184990592abe1140e26959456c9ad4acba3089c
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2026-01-23 15:33:42 +01:00