7dce190808
Create an NVRAM counter in TPM 2.0 that survives owner clear and can be read and written without authorization. This counter allows to seal data with the TPM that can only be unsealed before the counter was incremented. It will be used during Chrome OS rollback to securely carry data across a TPM clear. Signed-off-by: Miriam Polzer <mpolzer@google.com> Change-Id: I511dba3b3461713ce20fb2bda9fced0fee6517e1 Reviewed-on: https://review.coreboot.org/c/coreboot/+/59097 Tested-by: build bot (Jenkins) <no-reply@coreboot.org> Reviewed-by: Julius Werner <jwerner@chromium.org> |
||
|---|---|---|
| .. | ||
| antirollback.h | ||
| bootmode.c | ||
| common.c | ||
| ec_sync.c | ||
| Kconfig | ||
| Makefile.inc | ||
| misc.h | ||
| mrc_cache_hash_tpm.c | ||
| mrc_cache_hash_tpm.h | ||
| secdata_mock.c | ||
| secdata_tpm.c | ||
| symbols.h | ||
| tpm_common.c | ||
| tpm_common.h | ||
| vbnv.c | ||
| vbnv.h | ||
| vbnv_cmos.c | ||
| vbnv_ec.c | ||
| vbnv_flash.c | ||
| vbnv_layout.h | ||
| vboot_common.c | ||
| vboot_common.h | ||
| vboot_lib.c | ||
| vboot_loader.c | ||
| vboot_logic.c | ||
| verstage.c | ||