]> git.ipfire.org Git - thirdparty/u-boot.git/blob - lib/tpm_api.c
projects / thirdparty / u-boot.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
tpm: rng: Add driver model interface for TPM RNG device
[thirdparty/u-boot.git] / lib / tpm_api.c
1 // SPDX-License-Identifier: GPL-2.0+
2 /*
3 * Copyright 2019 Google LLC
4 */
5
6 #include <common.h>
7 #include <dm.h>
8 #include <log.h>
9 #include <tpm_api.h>
10 #include <tpm-v1.h>
11 #include <tpm-v2.h>
12 #include <tpm_api.h>
13
14 u32 tpm_startup(struct udevice *dev, enum tpm_startup_type mode)
15 {
16 if (tpm_is_v1(dev)) {
17 return tpm1_startup(dev, mode);
18 } else if (tpm_is_v2(dev)) {
19 enum tpm2_startup_types type;
20
21 switch (mode) {
22 case TPM_ST_CLEAR:
23 type = TPM2_SU_CLEAR;
24 break;
25 case TPM_ST_STATE:
26 type = TPM2_SU_STATE;
27 break;
28 default:
29 case TPM_ST_DEACTIVATED:
30 return -EINVAL;
31 }
32 return tpm2_startup(dev, type);
33 } else {
34 return -ENOSYS;
35 }
36 }
37
38 u32 tpm_resume(struct udevice *dev)
39 {
40 if (tpm_is_v1(dev))
41 return tpm1_startup(dev, TPM_ST_STATE);
42 else if (tpm_is_v2(dev))
43 return tpm2_startup(dev, TPM2_SU_STATE);
44 else
45 return -ENOSYS;
46 }
47
48 u32 tpm_self_test_full(struct udevice *dev)
49 {
50 if (tpm_is_v1(dev))
51 return tpm1_self_test_full(dev);
52 else if (tpm_is_v2(dev))
53 return tpm2_self_test(dev, TPMI_YES);
54 else
55 return -ENOSYS;
56 }
57
58 u32 tpm_continue_self_test(struct udevice *dev)
59 {
60 if (tpm_is_v1(dev))
61 return tpm1_continue_self_test(dev);
62 else if (tpm_is_v2(dev))
63 return tpm2_self_test(dev, TPMI_NO);
64 else
65 return -ENOSYS;
66 }
67
68 u32 tpm_clear_and_reenable(struct udevice *dev)
69 {
70 u32 ret;
71
72 log_info("TPM: Clear and re-enable\n");
73 ret = tpm_force_clear(dev);
74 if (ret != TPM_SUCCESS) {
75 log_err("Can't initiate a force clear\n");
76 return ret;
77 }
78
79 if (tpm_is_v1(dev)) {
80 ret = tpm1_physical_enable(dev);
81 if (ret != TPM_SUCCESS) {
82 log_err("TPM: Can't set enabled state\n");
83 return ret;
84 }
85
86 ret = tpm1_physical_set_deactivated(dev, 0);
87 if (ret != TPM_SUCCESS) {
88 log_err("TPM: Can't set deactivated state\n");
89 return ret;
90 }
91 }
92
93 return TPM_SUCCESS;
94 }
95
96 u32 tpm_nv_enable_locking(struct udevice *dev)
97 {
98 if (tpm_is_v1(dev))
99 return tpm1_nv_define_space(dev, TPM_NV_INDEX_LOCK, 0, 0);
100 else if (tpm_is_v2(dev))
101 return -ENOSYS;
102 else
103 return -ENOSYS;
104 }
105
106 u32 tpm_nv_read_value(struct udevice *dev, u32 index, void *data, u32 count)
107 {
108 if (tpm_is_v1(dev))
109 return tpm1_nv_read_value(dev, index, data, count);
110 else if (tpm_is_v2(dev))
111 return tpm2_nv_read_value(dev, index, data, count);
112 else
113 return -ENOSYS;
114 }
115
116 u32 tpm_nv_write_value(struct udevice *dev, u32 index, const void *data,
117 u32 count)
118 {
119 if (tpm_is_v1(dev))
120 return tpm1_nv_write_value(dev, index, data, count);
121 else if (tpm_is_v2(dev))
122 return tpm2_nv_write_value(dev, index, data, count);
123 else
124 return -ENOSYS;
125 }
126
127 u32 tpm_set_global_lock(struct udevice *dev)
128 {
129 return tpm_nv_write_value(dev, TPM_NV_INDEX_0, NULL, 0);
130 }
131
132 u32 tpm_write_lock(struct udevice *dev, u32 index)
133 {
134 if (tpm_is_v1(dev))
135 return -ENOSYS;
136 else if (tpm_is_v2(dev))
137 return tpm2_write_lock(dev, index);
138 else
139 return -ENOSYS;
140 }
141
142 u32 tpm_pcr_extend(struct udevice *dev, u32 index, const void *in_digest,
143 void *out_digest)
144 {
145 if (tpm_is_v1(dev))
146 return tpm1_extend(dev, index, in_digest, out_digest);
147 else if (tpm_is_v2(dev))
148 return tpm2_pcr_extend(dev, index, TPM2_ALG_SHA256, in_digest,
149 TPM2_DIGEST_LEN);
150 else
151 return -ENOSYS;
152 }
153
154 u32 tpm_pcr_read(struct udevice *dev, u32 index, void *data, size_t count)
155 {
156 if (tpm_is_v1(dev))
157 return tpm1_pcr_read(dev, index, data, count);
158 else if (tpm_is_v2(dev))
159 return -ENOSYS;
160 else
161 return -ENOSYS;
162 }
163
164 u32 tpm_tsc_physical_presence(struct udevice *dev, u16 presence)
165 {
166 if (tpm_is_v1(dev))
167 return tpm1_tsc_physical_presence(dev, presence);
168
169 /*
170 * Nothing to do on TPM2 for this; use platform hierarchy availability
171 * instead.
172 */
173 else if (tpm_is_v2(dev))
174 return 0;
175 else
176 return -ENOSYS;
177 }
178
179 u32 tpm_finalise_physical_presence(struct udevice *dev)
180 {
181 if (tpm_is_v1(dev))
182 return tpm1_finalise_physical_presence(dev);
183
184 /* Nothing needs to be done with tpm2 */
185 else if (tpm_is_v2(dev))
186 return 0;
187 else
188 return -ENOSYS;
189 }
190
191 u32 tpm_read_pubek(struct udevice *dev, void *data, size_t count)
192 {
193 if (tpm_is_v1(dev))
194 return tpm1_read_pubek(dev, data, count);
195 else if (tpm_is_v2(dev))
196 return -ENOSYS; /* not implemented yet */
197 else
198 return -ENOSYS;
199 }
200
201 u32 tpm_force_clear(struct udevice *dev)
202 {
203 if (tpm_is_v1(dev))
204 return tpm1_force_clear(dev);
205 else if (tpm_is_v2(dev))
206 return tpm2_clear(dev, TPM2_RH_PLATFORM, NULL, 0);
207 else
208 return -ENOSYS;
209 }
210
211 u32 tpm_physical_enable(struct udevice *dev)
212 {
213 if (tpm_is_v1(dev))
214 return tpm1_physical_enable(dev);
215
216 /* Nothing needs to be done with tpm2 */
217 else if (tpm_is_v2(dev))
218 return 0;
219 else
220 return -ENOSYS;
221 }
222
223 u32 tpm_physical_disable(struct udevice *dev)
224 {
225 if (tpm_is_v1(dev))
226 return tpm1_physical_disable(dev);
227
228 /* Nothing needs to be done with tpm2 */
229 else if (tpm_is_v2(dev))
230 return 0;
231 else
232 return -ENOSYS;
233 }
234
235 u32 tpm_physical_set_deactivated(struct udevice *dev, u8 state)
236 {
237 if (tpm_is_v1(dev))
238 return tpm1_physical_set_deactivated(dev, state);
239 /* Nothing needs to be done with tpm2 */
240 else if (tpm_is_v2(dev))
241 return 0;
242 else
243 return -ENOSYS;
244 }
245
246 u32 tpm_get_capability(struct udevice *dev, u32 cap_area, u32 sub_cap,
247 void *cap, size_t count)
248 {
249 if (tpm_is_v1(dev))
250 return tpm1_get_capability(dev, cap_area, sub_cap, cap, count);
251 else if (tpm_is_v2(dev))
252 return tpm2_get_capability(dev, cap_area, sub_cap, cap, count);
253 else
254 return -ENOSYS;
255 }
256
257 u32 tpm_get_permissions(struct udevice *dev, u32 index, u32 *perm)
258 {
259 if (tpm_is_v1(dev))
260 return tpm1_get_permissions(dev, index, perm);
261 else if (tpm_is_v2(dev))
262 return -ENOSYS; /* not implemented yet */
263 else
264 return -ENOSYS;
265 }
266
267 u32 tpm_get_random(struct udevice *dev, void *data, u32 count)
268 {
269 if (tpm_is_v1(dev))
270 return tpm1_get_random(dev, data, count);
271 else if (tpm_is_v2(dev))
272 return tpm2_get_random(dev, data, count);
273
274 return -ENOSYS;
275 }
"Das U-Boot" Source Tree