Attention is currently required from: Miriam Polzer, Andrey Pronin, Yu-Ping Wu. Hello build bot (Jenkins), Andrey Pronin, Julius Werner, Yu-Ping Wu,
I'd like you to reexamine a change. Please visit
https://review.coreboot.org/c/coreboot/+/59097
to look at the new patch set (#3).
Change subject: security/vboot: Add NVRAM counter for TPM 2.0 ......................................................................
security/vboot: Add NVRAM counter for TPM 2.0
Create an NVRAM counter in TPM 2.0 that survives owner clear and can be read and written without authorization. This counter allows to seal data with the TPM that can only be unsealed before the counter was incremented. It will be used during Chrome OS rollback to securely carry data across a TPM clear.
Signed-off-by: Miriam Polzer mpolzer@google.com Change-Id: I511dba3b3461713ce20fb2bda9fced0fee6517e1 --- M src/security/vboot/antirollback.h M src/security/vboot/secdata_mock.c M src/security/vboot/secdata_tpm.c 3 files changed, 46 insertions(+), 0 deletions(-)
git pull ssh://review.coreboot.org:29418/coreboot refs/changes/97/59097/3