Claudio Carvalho comments

Repositories
Issues
Comments

Results 3 comments of


                                            Claudio Carvalho

Some P8/P9 platforms need to sign by default(STB verification fails due to unsigned images).

You seem to be running an old skiboot version. The opal log says that it found ibm,secureboot-v1, but latest is v2. Skiboot doesn't expect images to be signed if secure-mode...

Some P8/P9 platforms need to sign by default(STB verification fails due to unsigned images).

`log=0xffffffffffff8160`means that the hardware key hash test failed. At runtime, the secure ROM code reads the three hw keys form the container, concatenate them and calculate a hash. The hash...

Some P8/P9 platforms need to sign by default(STB verification fails due to unsigned images).

In `ibm,secureboot-v2` skiboot always try to verify images retrieved from PNOR, but enforce only when secure-mode is ON. 4 and 5 are working as expected for me. In 4, secure...