公开(公告)号：US20230099455A1

公开(公告)日：2023-03-30

申请号：US17490303

申请日：2021-09-30

Applicant: ATI Technologies ULC

Inventor： Kamraan Nasim ,  Erez Koelewyn ,  Shadi Dashmiz

IPC: G06F9/4401 ,  H04L9/32

Abstract: Techniques described herein provide users with the ability to persistently adjust settings for boot-time features (BTF) of a computing device. A user requests a particular BTF configuration adjustment for a device via a device driver. The driver instructs trusted firmware of the device to store a boot override record in persistent storage accessible by a bootloader for the device. Upon implementation of the boot sequence for the device, the bootloader applies the changes reflected in the record to BTF configuration data. The boot override information is persistently available to the bootloader, which ensures that the configuration changes that the boot override record(s) represent are applied to the BTFs of the device until the boot override record(s) are cleared or invalidated. Further, to ensure the security of boot override record(s), the trusted firmware generates, for each record, an HMAC tag using an HMAC key derived from a Chip Endorsement Fused Secret from the hardware.

公开(公告)号：US11966748B2

公开(公告)日：2024-04-23

申请号：US17490303

申请日：2021-09-30

Applicant: ATI Technologies ULC

Inventor： Kamraan Nasim ,  Erez Koelewyn ,  Shadi Dashmiz

IPC: G06F15/177 ,  G06F9/4401 ,  H04L9/32

CPC classification number: G06F9/4403 ,  H04L9/3242 ,  G06F9/4401 ,  G06F9/4411

Abstract: Techniques described herein provide users with the ability to persistently adjust settings for boot-time features (BTF) of a computing device. A user requests a particular BTF configuration adjustment for a device via a device driver. The driver instructs trusted firmware of the device to store a boot override record in persistent storage accessible by a bootloader for the device. Upon implementation of the boot sequence for the device, the bootloader applies the changes reflected in the record to BTF configuration data. The boot override information is persistently available to the bootloader, which ensures that the configuration changes that the boot override record(s) represent are applied to the BTFs of the device until the boot override record(s) are cleared or invalidated. Further, to ensure the security of boot override record(s), the trusted firmware generates, for each record, an HMAC tag using an HMAC key derived from a Chip Endorsement Fused Secret from the hardware.