SAFE public projects git trees. - safe/jmp/linux-2.6/commit

author	Joseph Cihula <joseph.cihula@intel.com>
	Wed, 1 Jul 2009 02:31:02 +0000 (19:31 -0700)
committer	H. Peter Anvin <hpa@zytor.com>
	Tue, 21 Jul 2009 18:49:31 +0000 (11:49 -0700)
commit	840c2baf2d4cdf35ecc3b7fcbba7740f97de30a4
tree	e20e6d3809dbab60507ccb71dac74a4f02d4330f	tree \| snapshot
parent	3162534069597e34dd0ac9eb711be8dc23835ae7	commit \| diff

x86, intel_txt: Intel TXT reboot/halt shutdown support

Support for graceful handling of kernel reboots after an Intel(R) TXT launch.

Without this patch, attempting to reboot or halt the system will cause the
TXT hardware to lock memory upon system restart because the secrets-in-memory
flag that was set on launch was never cleared.  This will in turn cause BIOS
to execute a TXT Authenticated Code Module (ACM) that will scrub all of memory
and then unlock it.  Depending on the amount of memory in the system and its type,
this may take some time.

This patch creates a 1:1 address mapping to the tboot module and then calls back
into tboot so that it may properly and securely clean up system state and clear
the secrets-in-memory flag.  When it has completed these steps, the tboot module
will reboot or halt the system.

arch/x86/kernel/reboot.c |    8 ++++++++
init/main.c              |    3 +++
2 files changed, 11 insertions(+)

Signed-off-by: Joseph Cihula <joseph.cihula@intel.com>
Signed-off-by: Shane Wang <shane.wang@intel.com>
Signed-off-by: H. Peter Anvin <hpa@zytor.com>

arch/x86/kernel/reboot.c		diff \| blob \| history
init/main.c		diff \| blob \| history