coreboot

History

Vadim Bendebury 2f859335df tpm2: implement locking firmware rollback counter TPM1.2 is using the somewhat misnamed tlcl_set_global_lock() command function to lock the hardware rollback counter. For TPM2 let's implement and use the TPM2 command to lock an NV Ram location (TPM2_NV_WriteLock). BRANCH=none BUG=chrome-os-partner:50645 TEST=verified that TPM2_NV_WriteLock command is invoked before RO firmware starts RW, and succeeds. Change-Id: I62f22b9991522d4309cccc44180a5ebd4dca488d Signed-off-by: Vadim Bendebury <vbendeb@chromium.org> Reviewed-on: https://chromium-review.googlesource.com/358097 Reviewed-by: Aaron Durbin <adurbin@chromium.org> Reviewed-by: Darren Krahn <dkrahn@chromium.org>	2016-07-07 22:14:26 -07:00
..
tlcl.h	tpm2: implement locking firmware rollback counter	2016-07-07 22:14:26 -07:00
tss_constants.h	vboot2: copy tlcl from vboot_reference as a preparation for vboot2 integration	2015-01-27 01:43:57 +01:00

Vadim Bendebury 2f859335df tpm2: implement locking firmware rollback counter

TPM1.2 is using the somewhat misnamed tlcl_set_global_lock() command
function to lock the hardware rollback counter. For TPM2 let's
implement and use the TPM2 command to lock an NV Ram location
(TPM2_NV_WriteLock).

BRANCH=none
BUG=chrome-os-partner:50645
TEST=verified that TPM2_NV_WriteLock command is invoked before RO
     firmware starts RW, and succeeds.

Change-Id: I62f22b9991522d4309cccc44180a5ebd4dca488d
Signed-off-by: Vadim Bendebury <vbendeb@chromium.org>
Reviewed-on: https://chromium-review.googlesource.com/358097
Reviewed-by: Aaron Durbin <adurbin@chromium.org>
Reviewed-by: Darren Krahn <dkrahn@chromium.org>

2016-07-07 22:14:26 -07:00

tlcl.h

tpm2: implement locking firmware rollback counter

2016-07-07 22:14:26 -07:00

tss_constants.h

vboot2: copy tlcl from vboot_reference as a preparation for vboot2 integration

2015-01-27 01:43:57 +01:00