1. 24 Jul, 2013 1 commit
  2. 16 Jul, 2013 1 commit
  3. 12 Apr, 2013 1 commit
    • Che-liang Chiou's avatar
      tpm: Add TPM command library · 8732b070
      Che-liang Chiou authored and Simon Glass's avatar Simon Glass committed
      TPM command library implements a subset of TPM commands defined in TCG
      Main Specification 1.2 that are useful for implementing secure boot.
      More TPM commands could be added out of necessity.
      You may exercise these commands through the 'tpm' command.  However, the
      raw TPM commands are too primitive for writing secure boot in command
      interpreter scripts; so the 'tpm' command also provides helper functions
      to make scripting easier.
      For example, to define a counter in TPM non-volatile storage and
      initialize it to zero:
      $ tpm init
      $ tpm startup TPM_ST_CLEAR
      $ tpm nv_define d 0x1001 0x1
      $ tpm nv_write d 0x1001 0
      And then increment the counter by one:
      $ tpm nv_read d 0x1001 i
      $ setexpr.l i $i + 1
      $ tpm nv_write d 0x1001 $i
      Signed-off-by: default avatarChe-Liang Chiou <clchiou@chromium.org>
  4. 07 Dec, 2011 1 commit
    • Vadim Bendebury's avatar
      Introduce generic TPM support in u-boot · 5e124724
      Vadim Bendebury authored and Wolfgang Denk's avatar Wolfgang Denk committed
      TPM (Trusted Platform Module) is an integrated circuit and
      software platform that provides computer manufacturers with the
      core components of a subsystem used to assure authenticity,
      integrity and confidentiality.
      This driver supports version 1.2 of the TCG (Trusted Computing
      Group) specifications.
      The TCG specification defines several so called localities in a
      TPM chip, to be controlled by different software layers. When
      used on a typical x86 platform during the firmware phase, only
      locality 0 can be accessed by the CPU, so this driver even while
      supporting the locality concept presumes that only locality zero
      is used.
      This implementation is loosely based on the article "Writing a
      TPM Device Driver" published on http://ptgmedia.pearsoncmg.com
      Compiling this driver with DEBUG defined will generate trace of
      all accesses to TMP registers.
      This driver has been tested and is being used in three different
      functional ChromeOS machines (Pinetrail and Sandy Bridge Intel
      chipsets) all using the same Infineon SLB 9635 TT 1.2 device.
      A u-boot cli command allowing access to the TPM was also
      implemented and is being submitted as a second patch.
      Change-Id: I22a33c3e5b2e20eec9557a7621bd463b30389d73
      Signed-off-by: default avatarVadim Bendebury <vbendeb@chromium.org>
      CC: Wolfgang Denk <wd@denx.de>