[coreboot-gerrit] Patch merged into coreboot/master: tpm2: implement tlcl layer

gerrit at coreboot.org gerrit at coreboot.org
Mon Jul 11 23:43:06 CEST 2016 

the following patch was just integrated into master:
commit 245d4577d507c0b45067d2e520ae94b283a91567
Author: Vadim Bendebury <vbendeb at chromium.org>
Date:   Tue Apr 5 16:01:57 2016 -0700

    tpm2: implement tlcl layer
    
    This is the first approximation of implementing TPM2 support in
    coreboot. It is very clearly incomplete, some of the larger missing
    pieces being:
    
     - PCR(s) modification
     - protection NVRAM spaces from unauthorized deletion/modification.
     - resume handling
     - cr50 specific factory initialization
    
    The existing TPM1.2 firmware API is being implemented for TPM2. Some
    functions are not required at all, some do not map fully, but the API
    is not yet being changed, many functions are just stubs.
    
    An addition to the API is the new tlcl_define_space() function. It
    abstracts TMP internals allowing the caller to specify the privilege
    level of the space to be defined. Two privilege levels are defined,
    higher for the RO firmware and lower for RW firmware, they determine
    who can write into the spaces.
    
    BRANCH=none
    BUG=chrome-os-partner:50645
    TEST=with the rest of the patches applied Kevin/Gru devices can
         initialize and use firmware and kernel spaces
    
    Change-Id: Ife3301cf161ce38d61f11e4b60f1b43cab9a4eba
    Signed-off-by: Martin Roth <martinroth at chromium.org>
    Original-Commit-Id: bcc8e62604c705798ca106e7995a0960b92b3f35
    Original-Change-Id: Ib340fa8e7db51c10e5080973c16a19b0ebbb61e6
    Original-Signed-off-by: Vadim Bendebury <vbendeb at chromium.org>
    Original-Reviewed-on: https://chromium-review.googlesource.com/353914
    Original-Commit-Ready: Martin Roth <martinroth at chromium.org>
    Original-Reviewed-by: Duncan Laurie <dlaurie at chromium.org>
    Reviewed-on: https://review.coreboot.org/15569
    Tested-by: build bot (Jenkins)
    Reviewed-by: Furquan Shaikh <furquan at google.com>
    Reviewed-by: Philipp Deppenwiese <zaolin.daisuki at googlemail.com>


See https://review.coreboot.org/15569 for details.

-gerrit

More information about the coreboot-gerrit mailing list