Skip to content

coreboot implementation for Intel #70

New issue
New issue
Open
Open
coreboot implementation for Intel#70
Labels
P: defaultPriority: default. Default priority for new issues, to be replaced given sufficient information.T: taskType: task. An action item that is neither a bug nor an enhancement.W: todoWorkflow: todo. The issue is in the initial to do state.
Milestone
DRTM between coreboot and UEFI payload
@krystian-hebel

Description

@krystian-hebel
krystian-hebel
opened on Jul 4, 2025

This task will implement support for performing DRTM between coreboot and its payload, in this case edk2. While the implementation of dynamic launch will be in coreboot, the payload must be able to handle unusual state after the hand-off. It also has to carefully manage the access to memory, as well as control when and how other cores are allowed to be started. Finally, the payload binary must contain information that would tell coreboot that it can be started through dynamic launch.

  • Build with SINIT ACM (does the license allow for redistributing ACMs?)
  • Validate TXT capabilities
  • Fill TXT heap structures
  • Properly set MTRRs for TXT
  • Perform AP rendezvous, including setting MTTRs
  • TPM - provisioning, event log
  • Documentation in coreboot: description of payload requirements (TXT-specific)
  • Send patches to upstream coreboot

Form: PR to https://github.com/Dasharo/coreboot
Proof: logs from entry to debug version of edk2

Metadata

Metadata

Assignees

No one assigned

    Labels

    P: defaultPriority: default. Default priority for new issues, to be replaced given sufficient information.T: taskType: task. An action item that is neither a bug nor an enhancement.W: todoWorkflow: todo. The issue is in the initial to do state.

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions