Skip to content

docs/guides/redundancy.md: add ibg and cbfs verification #1248

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
SergiiDmytruk merged 2 commits into from
Mar 31, 2026
Merged

docs/guides/redundancy.md: add ibg and cbfs verification #1248

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
81b5ab4
docs/guides/redundancy.md: add ibg and cbfs verification
mkopec Mar 31, 2026
41a2f44
docs/guides/redundancy.md: use trustroot names
mkopec Mar 31, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
46 changes: 43 additions & 3 deletions docs/guides/redundancy.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -47,10 +47,50 @@ This command sequence writes the new firmware image into the appropriate regions
`attempt_slot_b` CMOS option to "Enable". This ensures that after the next
reboot, the system will boot from the newly updated slot.

## Security: Chain of Trust with TrustRoot and CBFS Verification

### Slot Integrity via CBFS Verification

Each redundancy slot is protected by **CBFS Verification**: the bootblock
contains cryptographic hashes of all other CBFS files, and each file's hash
is checked before it is loaded. This ensures that any corruption or tampering
within a slot is detected before the affected code runs, regardless of which
slot is active.

### Dasharo TrustRoot Integration

When TrustRoot is enabled, it extends the root of trust into hardware.
On every boot, the Boot Guard ACM — executed directly by the CPU before any
firmware code runs — cryptographically verifies the **bootblock** of the active
slot. Because the bootblock in turn holds the CBFS hashes, a single hardware
verification anchors the integrity of the entire slot.

The full chain of trust proceeds as follows:

1. **Boot Guard ACM** (hardware) verifies the active slot's bootblock.
2. **Bootblock** uses CBFS Verification to check and load `romstage`.
3. Each subsequent stage verifies the next until the **UEFI payload** is
reached.
4. **UEFI Secure Boot** takes over to verify OS boot loaders and drivers.

### Interaction with Top Swap

The Top Swap mechanism selects which bootblock the CPU presents to Boot Guard
at reset. Boot Guard verifies whichever bootblock is currently mapped (slot A
or slot B), so both slots must be signed with the same key for the platform to
boot successfully from either. A CMOS reset falls back to slot A, which is the
read-only golden copy — ensuring there is always a known-good, Boot Guard
verified image available for recovery.

!!! note

The CMOS-backed `attempt_slot_b` bit selects the active slot; physically
removing or shorting the CMOS battery resets this bit and unconditionally
restores slot A as the boot target.

## Further reading

For a more detailed documentation of the implementation, please read the
[upstream coreboot documentation](https://doc.coreboot.org/soc/intel)
(_"doc.coreboot.org/soc/intel/redundancy.html"_, not yet available as of
February 25th 2026, can also be viewed
[upstream coreboot documentation](https://doc.coreboot.org/soc/intel/redundancy.html)
(can also be viewed
[here](https://github.com/coreboot/coreboot/blob/main/Documentation/soc/intel/redundancy.md)).
Loading