Boot

Gen 8 platforms implement Secure Boot.

This feature enforces validation of the digital signature of the signed Boot Code image in Boot Flash. It uses a pre-programmed public key HASH inside the CPU-internal-fuses to ensure authenticity and integrity of the code prior to proceeding with the boot sequence.

In addition to POST, boot includes the following steps after POST is complete:

1. The digital signature of the signed image in Boot Flash flash code is validated against a pre-programmed public key in the CPU to ensure integrity of the code prior to proceeding with the boot sequence.
2. Universal port configuration is performed.
3. Links are initialized.
4. The fabric is analyzed. If any ports are connected to other switches, the device participates in a fabric configuration.
5. The device obtains a domain ID and assigns port addresses.
6. Unicast routing tables are constructed.
7. Normal port operation is enabled.