[coreboot-gerrit] Change in coreboot[master]: security/tpm: Add option to init TPM in bootblock

Attention is currently required from: Philipp Deppenwiese, Martin Roth, Paul Menzel, Christian Walter, Julius Werner. Hello Philipp Deppenwiese, build bot (Jenkins), Patrick Georgi, Martin Roth, Christian Walter, Julius Werner,

I'd like you to reexamine a change. Please visit

https://review.coreboot.org/c/coreboot/+/51923

to look at the new patch set (#5).

Change subject: security/tpm: Add option to init TPM in bootblock ......................................................................

security/tpm: Add option to init TPM in bootblock

When using a hardware assisted root of trust measurement, like Intel TXT/CBnT, the TPM init needs to happen inside the bootblock to form a proper chain of trust.

Change-Id: Ifacba5d9ab19b47968b4f2ed5731ded4aac55022 Signed-off-by: Arthur Heymans arthur@aheymans.xyz --- M src/drivers/pc80/tpm/Makefile.inc M src/drivers/tpm/Kconfig M src/lib/bootblock.c M src/security/intel/cbnt/Kconfig M src/security/tpm/Kconfig M src/security/tpm/tspi/tspi.c 6 files changed, 24 insertions(+), 2 deletions(-)

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/23/51923/5