Attention is currently required from: Christian Walter, Eric Lai, Kapil Porwal, Nick Vaccaro, Paz Zcharya, Shelley Chen, Subrata Banik, Tim Van Patten.

Hello Christian Walter, Eric Lai, Kapil Porwal, Nick Vaccaro, Paz Zcharya, Shelley Chen, Tim Van Patten, build bot (Jenkins),

I'd like you to reexamine a change. Please visit

https://review.coreboot.org/c/coreboot/+/79736?usp=email

to look at the new patch set (#4).

The following approvals got outdated and were removed: Code-Review+1 by Tim Van Patten, Verified+1 by build bot (Jenkins)

Change subject: security/tpm: Retrieve factory configuration for device w/ Google TPM ......................................................................

security/tpm: Retrieve factory configuration for device w/ Google TPM

This patch enables retrieval of factory configuration data from Google TPM devices (both Cr50 and Ti50).

This patch utilizes vendor-specific command TPM2_CR50_SUB_CMD_GET_FACTORY_CONFIG (68).

The factory config space is a 64-bit, one-time programmable. For the unprovisioned one, the read will be 0x0.

BUG=b:317880956 TEST=Able to retrieve the factory config from google/screebo.

Change-Id: Ifd0e850770152a03aa46d7f8bbb76f7520a59081 Signed-off-by: Subrata Banik subratabanik@google.com --- M src/security/tpm/tss/tcg-2.0/tss_marshaling.c M src/security/tpm/tss/tcg-2.0/tss_structures.h M src/security/tpm/tss/vendor/cr50/cr50.c M src/security/tpm/tss/vendor/cr50/cr50.h 4 files changed, 58 insertions(+), 0 deletions(-)

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/36/79736/4