[coreboot-gerrit] [M] Change in coreboot[main]: security/tpm: Add TPM2 NV_ReadPublic command support

Attention is currently required from: Arthur Heymans, Christian Walter, Felix Held, Filip Lewiński, Krystian Hebel, Martin Roth, Matt DeVillier, Michał Kopeć.

Hello Arthur Heymans, Christian Walter, Felix Held, Krystian Hebel, Martin Roth, Matt DeVillier, Michał Kopeć, Michał Żygowski, build bot (Jenkins),

I'd like you to reexamine a change. Please visit

https://review.coreboot.org/c/coreboot/+/82037?usp=email

to look at the new patch set (#17).

The following approvals got outdated and were removed: Code-Review+2 by Krystian Hebel, Verified+1 by build bot (Jenkins)

Change subject: security/tpm: Add TPM2 NV_ReadPublic command support ......................................................................

security/tpm: Add TPM2 NV_ReadPublic command support

Adds support for `tpm2_nvreadpublic`, which allows to read the public area and attributes of a TPM2 Non-Volatile (NV) index.

The use case is to check for indices required by Intel TXT to avoid a reset loop caused by BIOS ACM SCHECK.

TEST=Read Intel TXT TPM2 NV indices in Intel TXT driver.

Change-Id: I3c032b4f88d445372beebbe354f458a061a63bb9 Signed-off-by: Michał Żygowski michal.zygowski@3mdeb.com --- M src/security/tpm/tss.h M src/security/tpm/tss/tcg-2.0/tss.c M src/security/tpm/tss/tcg-2.0/tss_marshaling.c M src/security/tpm/tss/tcg-2.0/tss_structures.h 4 files changed, 152 insertions(+), 0 deletions(-)

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/37/82037/17