Gitiles
Code Review Sign In
git01.mediatek.com / filogic / uboot / 42d7bdfca650b49dfb8fc61b6a7fe100d9e50a8e / . / lib / tpm_api.c
blob: 5b2c11a277cc9c4610d1f546f34d56b10dbd2128 [file] [log] [blame]
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]1// SPDX-License-Identifier: GPL-2.0+
2/*
3 * Copyright 2019 Google LLC
4 */
5
6#include <common.h>
7#include <dm.h>
8#include <log.h>
9#include <tpm_api.h>
10#include <tpm-v1.h>
11#include <tpm-v2.h>
12#include <tpm_api.h>
13
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]14u32 tpm_startup(struct udevice *dev, enum tpm_startup_type mode)
15{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]16 if (tpm_is_v1(dev)) {
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]17 return tpm1_startup(dev, mode);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]18 } else if (tpm_is_v2(dev)) {
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]19 enum tpm2_startup_types type;
20
21 switch (mode) {
22 case TPM_ST_CLEAR:
23 type = TPM2_SU_CLEAR;
24 break;
25 case TPM_ST_STATE:
26 type = TPM2_SU_STATE;
27 break;
28 default:
29 case TPM_ST_DEACTIVATED:
30 return -EINVAL;
31 }
32 return tpm2_startup(dev, type);
33 } else {
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]34 return -ENOSYS;
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]35 }
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]36}
37
Ilias Apalodimas42d7bdf2023-01-25 12:18:36 +0200[diff] [blame^]38u32 tpm_auto_start(struct udevice *dev)
39{
40 if (tpm_is_v2(dev))
41 return tpm2_auto_start(dev);
42
43 return -ENOSYS;
44}
45
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]46u32 tpm_resume(struct udevice *dev)
47{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]48 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]49 return tpm1_startup(dev, TPM_ST_STATE);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]50 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]51 return tpm2_startup(dev, TPM2_SU_STATE);
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]52 else
53 return -ENOSYS;
54}
55
56u32 tpm_self_test_full(struct udevice *dev)
57{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]58 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]59 return tpm1_self_test_full(dev);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]60 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]61 return tpm2_self_test(dev, TPMI_YES);
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]62 else
63 return -ENOSYS;
64}
65
66u32 tpm_continue_self_test(struct udevice *dev)
67{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]68 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]69 return tpm1_continue_self_test(dev);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]70 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]71 return tpm2_self_test(dev, TPMI_NO);
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]72 else
73 return -ENOSYS;
74}
75
76u32 tpm_clear_and_reenable(struct udevice *dev)
77{
78 u32 ret;
79
80 log_info("TPM: Clear and re-enable\n");
81 ret = tpm_force_clear(dev);
82 if (ret != TPM_SUCCESS) {
83 log_err("Can't initiate a force clear\n");
84 return ret;
85 }
86
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]87 if (tpm_is_v1(dev)) {
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]88 ret = tpm1_physical_enable(dev);
89 if (ret != TPM_SUCCESS) {
90 log_err("TPM: Can't set enabled state\n");
91 return ret;
92 }
93
94 ret = tpm1_physical_set_deactivated(dev, 0);
95 if (ret != TPM_SUCCESS) {
96 log_err("TPM: Can't set deactivated state\n");
97 return ret;
98 }
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]99 }
100
101 return TPM_SUCCESS;
102}
103
104u32 tpm_nv_enable_locking(struct udevice *dev)
105{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]106 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]107 return tpm1_nv_define_space(dev, TPM_NV_INDEX_LOCK, 0, 0);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]108 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]109 return -ENOSYS;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]110 else
111 return -ENOSYS;
112}
113
114u32 tpm_nv_read_value(struct udevice *dev, u32 index, void *data, u32 count)
115{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]116 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]117 return tpm1_nv_read_value(dev, index, data, count);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]118 else if (tpm_is_v2(dev))
Simon Glass3d930ed2021-02-06 14:23:40 -0700[diff] [blame]119 return tpm2_nv_read_value(dev, index, data, count);
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]120 else
121 return -ENOSYS;
122}
123
124u32 tpm_nv_write_value(struct udevice *dev, u32 index, const void *data,
125 u32 count)
126{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]127 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]128 return tpm1_nv_write_value(dev, index, data, count);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]129 else if (tpm_is_v2(dev))
Simon Glass3d930ed2021-02-06 14:23:40 -0700[diff] [blame]130 return tpm2_nv_write_value(dev, index, data, count);
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]131 else
132 return -ENOSYS;
133}
134
135u32 tpm_set_global_lock(struct udevice *dev)
136{
137 return tpm_nv_write_value(dev, TPM_NV_INDEX_0, NULL, 0);
138}
139
140u32 tpm_write_lock(struct udevice *dev, u32 index)
141{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]142 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]143 return -ENOSYS;
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]144 else if (tpm_is_v2(dev))
Simon Glasse9d3d592021-02-06 14:23:41 -0700[diff] [blame]145 return tpm2_write_lock(dev, index);
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]146 else
147 return -ENOSYS;
148}
149
150u32 tpm_pcr_extend(struct udevice *dev, u32 index, const void *in_digest,
Simon Glass4927f472022-08-30 21:05:32 -0600[diff] [blame]151 uint size, void *out_digest, const char *name)
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]152{
Simon Glass4927f472022-08-30 21:05:32 -0600[diff] [blame]153 if (tpm_is_v1(dev)) {
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]154 return tpm1_extend(dev, index, in_digest, out_digest);
Simon Glass4927f472022-08-30 21:05:32 -0600[diff] [blame]155 } else if (tpm_is_v2(dev)) {
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]156 return tpm2_pcr_extend(dev, index, TPM2_ALG_SHA256, in_digest,
157 TPM2_DIGEST_LEN);
Simon Glass4927f472022-08-30 21:05:32 -0600[diff] [blame]158 /* @name is ignored as we do not support the TPM log here */
159 } else {
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]160 return -ENOSYS;
Simon Glass4927f472022-08-30 21:05:32 -0600[diff] [blame]161 }
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]162}
163
164u32 tpm_pcr_read(struct udevice *dev, u32 index, void *data, size_t count)
165{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]166 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]167 return tpm1_pcr_read(dev, index, data, count);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]168 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]169 return -ENOSYS;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]170 else
171 return -ENOSYS;
172}
173
174u32 tpm_tsc_physical_presence(struct udevice *dev, u16 presence)
175{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]176 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]177 return tpm1_tsc_physical_presence(dev, presence);
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]178
179 /*
180 * Nothing to do on TPM2 for this; use platform hierarchy availability
181 * instead.
182 */
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]183 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]184 return 0;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]185 else
186 return -ENOSYS;
187}
188
189u32 tpm_finalise_physical_presence(struct udevice *dev)
190{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]191 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]192 return tpm1_finalise_physical_presence(dev);
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]193
194 /* Nothing needs to be done with tpm2 */
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]195 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]196 return 0;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]197 else
198 return -ENOSYS;
199}
200
201u32 tpm_read_pubek(struct udevice *dev, void *data, size_t count)
202{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]203 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]204 return tpm1_read_pubek(dev, data, count);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]205 else if (tpm_is_v2(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]206 return -ENOSYS; /* not implemented yet */
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]207 else
208 return -ENOSYS;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]209}
210
211u32 tpm_force_clear(struct udevice *dev)
212{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]213 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]214 return tpm1_force_clear(dev);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]215 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]216 return tpm2_clear(dev, TPM2_RH_PLATFORM, NULL, 0);
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]217 else
218 return -ENOSYS;
219}
220
221u32 tpm_physical_enable(struct udevice *dev)
222{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]223 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]224 return tpm1_physical_enable(dev);
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]225
226 /* Nothing needs to be done with tpm2 */
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]227 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]228 return 0;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]229 else
230 return -ENOSYS;
231}
232
233u32 tpm_physical_disable(struct udevice *dev)
234{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]235 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]236 return tpm1_physical_disable(dev);
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]237
238 /* Nothing needs to be done with tpm2 */
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]239 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]240 return 0;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]241 else
242 return -ENOSYS;
243}
244
245u32 tpm_physical_set_deactivated(struct udevice *dev, u8 state)
246{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]247 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]248 return tpm1_physical_set_deactivated(dev, state);
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]249 /* Nothing needs to be done with tpm2 */
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]250 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]251 return 0;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]252 else
253 return -ENOSYS;
254}
255
256u32 tpm_get_capability(struct udevice *dev, u32 cap_area, u32 sub_cap,
257 void *cap, size_t count)
258{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]259 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]260 return tpm1_get_capability(dev, cap_area, sub_cap, cap, count);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]261 else if (tpm_is_v2(dev))
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]262 return tpm2_get_capability(dev, cap_area, sub_cap, cap, count);
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]263 else
264 return -ENOSYS;
265}
266
267u32 tpm_get_permissions(struct udevice *dev, u32 index, u32 *perm)
268{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]269 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]270 return tpm1_get_permissions(dev, index, perm);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]271 else if (tpm_is_v2(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]272 return -ENOSYS; /* not implemented yet */
Simon Glass1f1eb342021-02-06 14:23:37 -0700[diff] [blame]273 else
274 return -ENOSYS;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]275}
276
277u32 tpm_get_random(struct udevice *dev, void *data, u32 count)
278{
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]279 if (tpm_is_v1(dev))
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]280 return tpm1_get_random(dev, data, count);
Simon Glass8f2ecaf2022-07-22 21:32:02 +0530[diff] [blame]281 else if (tpm_is_v2(dev))
Sughosh Ganu9737fab2022-07-22 21:32:04 +0530[diff] [blame]282 return tpm2_get_random(dev, data, count);
283
284 return -ENOSYS;
Simon Glassc036ebd2021-02-06 14:23:35 -0700[diff] [blame]285}