OvmfPkg/AmdSev: reserve MEMFD space for for firmware config hashes

[mirror_edk2.git] / OvmfPkg / ResetVector / Ia16 / ResetVectorVtf0.asm

diff --git a/OvmfPkg/ResetVector/Ia16/ResetVectorVtf0.asm b/OvmfPkg/ResetVector/Ia16/ResetVectorVtf0.asm
index 9c0b5853a46fd4f78d54e5278881ab288d533521..7ec3c6e980c39f255ff9b8d8f842d116d5a33ea9 100644 (file)
--- a/OvmfPkg/ResetVector/Ia16/ResetVectorVtf0.asm
+++ b/OvmfPkg/ResetVector/Ia16/ResetVectorVtf0.asm
@@ -47,7 +47,27 @@ TIMES (15 - ((guidedStructureEnd - guidedStructureStart + 15) % 16)) DB 0
 ;\r
 guidedStructureStart:\r
 \r
+; SEV Hash Table Block\r
 ;\r
+; This describes the guest ram area where the hypervisor should\r
+; install a table describing the hashes of certain firmware configuration\r
+; device files that would otherwise be passed in unchecked.  The current\r
+; use is for the kernel, initrd and command line values, but others may be\r
+; added.  The data format is:\r
+;\r
+; base physical address (32 bit word)\r
+; table length (32 bit word)\r
+;\r
+; GUID (SEV FW config hash block): 7255371f-3a3b-4b04-927b-1da6efa8d454\r
+;\r
+sevFwHashBlockStart:\r
+    DD      SEV_FW_HASH_BLOCK_BASE\r
+    DD      SEV_FW_HASH_BLOCK_SIZE\r
+    DW      sevFwHashBlockEnd - sevFwHashBlockStart\r
+    DB      0x1f, 0x37, 0x55, 0x72, 0x3b, 0x3a, 0x04, 0x4b\r
+    DB      0x92, 0x7b, 0x1d, 0xa6, 0xef, 0xa8, 0xd4, 0x54\r
+sevFwHashBlockEnd:\r
+\r
 ; SEV Secret block\r
 ;\r
 ; This describes the guest ram area where the hypervisor should\r