Gitiles

review.coreboot.org / coreboot / 445d553af805c5ce50527513ae6889a3f9b4a22a / . / src / security / tpm / tss_error_messages.h

/* Copyright (c) 2010 The Chromium OS Authors. All rights reserved. | |

* Use of this source code is governed by a BSD-style license that can be | |

* found in the LICENSE file. | |

*/ | |

/* TPM error codes. | |

* | |

* Copy-pasted and lightly edited from TCG TPM Main Part 2 TPM Structures | |

* Version 1.2 Level 2 Revision 103 26 October 2006 Draft. | |

*/ | |

#ifndef TSS_ERROR_MESSAGES_H_ | |

#define TSS_ERROR_MESSAGES_H_ | |

#define TPM_E_BASE 0x0 | |

#define TPM_E_NON_FATAL 0x800 | |

typedef struct tpm_error_info { | |

const char *name; | |

uint32_t code; | |

const char *description; | |

} tpm_error_info; | |

tpm_error_info tpm_error_table[] = { | |

{"TPM_AUTHFAIL", TPM_E_BASE + 1, | |

"Authentication failed"}, | |

{"TPM_BADINDEX", TPM_E_BASE + 2, | |

"The index to a PCR, DIR or other register is incorrect"}, | |

{"TPM_BAD_PARAMETER", TPM_E_BASE + 3, | |

"One or more parameter is bad"}, | |

{"TPM_AUDITFAILURE", TPM_E_BASE + 4, | |

"An operation completed successfully\n\ | |

but the auditing of that operation failed"}, | |

{"TPM_CLEAR_DISABLED", TPM_E_BASE + 5, | |

"The clear disable flag is set and all clear operations now require\n\ | |

physical access"}, | |

{"TPM_DEACTIVATED", TPM_E_BASE + 6, | |

"The TPM is deactivated"}, | |

{"TPM_DISABLED", TPM_E_BASE + 7, | |

"The TPM is disabled"}, | |

{"TPM_DISABLED_CMD", TPM_E_BASE + 8, | |

"The target command has been disabled"}, | |

{"TPM_FAIL", TPM_E_BASE + 9, | |

"The operation failed"}, | |

{"TPM_BAD_ORDINAL", TPM_E_BASE + 10, | |

"The ordinal was unknown or inconsistent"}, | |

{"TPM_INSTALL_DISABLED", TPM_E_BASE + 11, | |

"The ability to install an owner is disabled"}, | |

{"TPM_INVALID_KEYHANDLE", TPM_E_BASE + 12, | |

"The key handle can not be interpreted"}, | |

{"TPM_KEYNOTFOUND", TPM_E_BASE + 13, | |

"The key handle points to an invalid key"}, | |

{"TPM_INAPPROPRIATE_ENC", TPM_E_BASE + 14, | |

"Unacceptable encryption scheme"}, | |

{"TPM_MIGRATEFAIL", TPM_E_BASE + 15, | |

"Migration authorization failed"}, | |

{"TPM_INVALID_PCR_INFO", TPM_E_BASE + 16, | |

"PCR information could not be interpreted"}, | |

{"TPM_NOSPACE", TPM_E_BASE + 17, | |

"No room to load key"}, | |

{"TPM_NOSRK", TPM_E_BASE + 18, | |

"There is no SRK set"}, | |

{"TPM_NOTSEALED_BLOB", TPM_E_BASE + 19, | |

"An encrypted blob is invalid or was not created by this TPM"}, | |

{"TPM_OWNER_SET", TPM_E_BASE + 20, | |

"There is already an Owner"}, | |

{"TPM_RESOURCES", TPM_E_BASE + 21, | |

"The TPM has insufficient internal resources to perform the requested \ | |

action"}, | |

{"TPM_SHORTRANDOM", TPM_E_BASE + 22, | |

"A random string was too short"}, | |

{"TPM_SIZE", TPM_E_BASE + 23, | |

"The TPM does not have the space to perform the operation"}, | |

{"TPM_WRONGPCRVAL", TPM_E_BASE + 24, | |

"The named PCR value does not match the current PCR value"}, | |

{"TPM_BAD_PARAM_SIZE", TPM_E_BASE + 25, | |

"The paramSize argument to the command has the incorrect value"}, | |

{"TPM_SHA_THREAD", TPM_E_BASE + 26, | |

"There is no existing SHA-1 thread"}, | |

{"TPM_SHA_ERROR", TPM_E_BASE + 27, | |

"The calculation is unable to proceed because the existing SHA-1\n\ | |

thread has already encountered an error"}, | |

{"TPM_FAILEDSELFTEST", TPM_E_BASE + 28, | |

"Self-test has failed and the TPM has shutdown"}, | |

{"TPM_AUTH2FAIL", TPM_E_BASE + 29, | |

"The authorization for the second key in a 2 key function\n\ | |

failed authorization"}, | |

{"TPM_BADTAG", TPM_E_BASE + 30, | |

"The tag value sent to for a command is invalid"}, | |

{"TPM_IOERROR", TPM_E_BASE + 31, | |

"An IO error occurred transmitting information to the TPM"}, | |

{"TPM_ENCRYPT_ERROR", TPM_E_BASE + 32, | |

"The encryption process had a problem"}, | |

{"TPM_DECRYPT_ERROR", TPM_E_BASE + 33, | |

"The decryption process did not complete"}, | |

{"TPM_INVALID_AUTHHANDLE", TPM_E_BASE + 34, | |

"An invalid handle was used"}, | |

{"TPM_NO_ENDORSEMENT", TPM_E_BASE + 35, | |

"The TPM does not a EK installed"}, | |

{"TPM_INVALID_KEYUSAGE", TPM_E_BASE + 36, | |

"The usage of a key is not allowed"}, | |

{"TPM_WRONG_ENTITYTYPE", TPM_E_BASE + 37, | |

"The submitted entity type is not allowed"}, | |

{"TPM_INVALID_POSTINIT", TPM_E_BASE + 38, | |

"The command was received in the wrong sequence relative to TPM_Init\n\ | |

and a subsequent TPM_Startup"}, | |

{"TPM_INAPPROPRIATE_SIG", TPM_E_BASE + 39, | |

"Signed data cannot include additional DER information"}, | |

{"TPM_BAD_KEY_PROPERTY", TPM_E_BASE + 40, | |

"The key properties in TPM_KEY_PARMs are not supported by this TPM"}, | |

{"TPM_BAD_MIGRATION", TPM_E_BASE + 41, | |

"The migration properties of this key are incorrect"}, | |

{"TPM_BAD_SCHEME", TPM_E_BASE + 42, | |

"The signature or encryption scheme for this key is incorrect or not\n\ | |

permitted in this situation"}, | |

{"TPM_BAD_DATASIZE", TPM_E_BASE + 43, | |

"The size of the data (or blob) parameter is bad or inconsistent\n\ | |

with the referenced key"}, | |

{"TPM_BAD_MODE", TPM_E_BASE + 44, | |

"A mode parameter is bad, such as capArea or subCapArea for\n\ | |

TPM_GetCapability, physicalPresence parameter for TPM_PhysicalPresence,\n\ | |

or migrationType for, TPM_CreateMigrationBlob"}, | |

{"TPM_BAD_PRESENCE", TPM_E_BASE + 45, | |

"Either the physicalPresence or physicalPresenceLock bits\n\ | |

have the wrong value"}, | |

{"TPM_BAD_VERSION", TPM_E_BASE + 46, | |

"The TPM cannot perform this version of the capability"}, | |

{"TPM_NO_WRAP_TRANSPORT", TPM_E_BASE + 47, | |

"The TPM does not allow for wrapped transport sessions"}, | |

{"TPM_AUDITFAIL_UNSUCCESSFUL", TPM_E_BASE + 48, | |

"TPM audit construction failed and the underlying command\n\ | |

was returning a failure code also"}, | |

{"TPM_AUDITFAIL_SUCCESSFUL", TPM_E_BASE + 49, | |

"TPM audit construction failed and the underlying command\n\ | |

was returning success"}, | |

{"TPM_NOTRESETABLE", TPM_E_BASE + 50, | |

"Attempt to reset a PCR register that does not have the resettable \ | |

attribute"}, | |

{"TPM_NOTLOCAL", TPM_E_BASE + 51, | |

"Attempt to reset a PCR register that requires locality\n\ | |

and locality modifier not part of command transport"}, | |

{"TPM_BAD_TYPE", TPM_E_BASE + 52, | |

"Make identity blob not properly typed"}, | |

{"TPM_INVALID_RESOURCE", TPM_E_BASE + 53, | |

"When saving context identified resource type does not match actual \ | |

resource"}, | |

{"TPM_NOTFIPS", TPM_E_BASE + 54, | |

"The TPM is attempting to execute a command only available when in \ | |

FIPS mode"}, | |

{"TPM_INVALID_FAMILY", TPM_E_BASE + 55, | |

"The command is attempting to use an invalid family ID"}, | |

{"TPM_NO_NV_PERMISSION", TPM_E_BASE + 56, | |

"The permission to manipulate the NV storage is not available"}, | |

{"TPM_REQUIRES_SIGN", TPM_E_BASE + 57, | |

"The operation requires a signed command"}, | |

{"TPM_KEY_NOTSUPPORTED", TPM_E_BASE + 58, | |

"Wrong operation to load an NV key"}, | |

{"TPM_AUTH_CONFLICT", TPM_E_BASE + 59, | |

"NV_LoadKey blob requires both owner and blob authorization"}, | |

{"TPM_AREA_LOCKED", TPM_E_BASE + 60, | |

"The NV area is locked and not writable"}, | |

{"TPM_BAD_LOCALITY", TPM_E_BASE + 61, | |

"The locality is incorrect for the attempted operation"}, | |

{"TPM_READ_ONLY", TPM_E_BASE + 62, | |

"The NV area is read only and can't be written to"}, | |

{"TPM_PER_NOWRITE", TPM_E_BASE + 63, | |

"There is no protection on the write to the NV area"}, | |

{"TPM_FAMILYCOUNT", TPM_E_BASE + 64, | |

"The family count value does not match"}, | |

{"TPM_WRITE_LOCKED", TPM_E_BASE + 65, | |

"The NV area has already been written to"}, | |

{"TPM_BAD_ATTRIBUTES", TPM_E_BASE + 66, | |

"The NV area attributes conflict"}, | |

{"TPM_INVALID_STRUCTURE", TPM_E_BASE + 67, | |

"The structure tag and version are invalid or inconsistent"}, | |

{"TPM_KEY_OWNER_CONTROL", TPM_E_BASE + 68, | |

"The key is under control of the TPM Owner and can only be evicted\n\ | |

by the TPM Owner"}, | |

{"TPM_BAD_COUNTER", TPM_E_BASE + 69, | |

"The counter handle is incorrect"}, | |

{"TPM_NOT_FULLWRITE", TPM_E_BASE + 70, | |

"The write is not a complete write of the area"}, | |

{"TPM_CONTEXT_GAP", TPM_E_BASE + 71, | |

"The gap between saved context counts is too large"}, | |

{"TPM_MAXNVWRITES", TPM_E_BASE + 72, | |

"The maximum number of NV writes without an owner has been exceeded"}, | |

{"TPM_NOOPERATOR", TPM_E_BASE + 73, | |

"No operator AuthData value is set"}, | |

{"TPM_RESOURCEMISSING", TPM_E_BASE + 74, | |

"The resource pointed to by context is not loaded"}, | |

{"TPM_DELEGATE_LOCK", TPM_E_BASE + 75, | |

"The delegate administration is locked"}, | |

{"TPM_DELEGATE_FAMILY", TPM_E_BASE + 76, | |

"Attempt to manage a family other then the delegated family"}, | |

{"TPM_DELEGATE_ADMIN", TPM_E_BASE + 77, | |

"Delegation table management not enabled"}, | |

{"TPM_TRANSPORT_NOTEXCLUSIVE", TPM_E_BASE + 78, | |

"There was a command executed outside of an exclusive transport \ | |

session"}, | |

{"TPM_OWNER_CONTROL", TPM_E_BASE + 79, | |

"Attempt to context save a owner evict controlled key"}, | |

{"TPM_DAA_RESOURCES", TPM_E_BASE + 80, | |

"The DAA command has no resources available to execute the command"}, | |

{"TPM_DAA_INPUT_DATA0", TPM_E_BASE + 81, | |

"The consistency check on DAA parameter inputData0 has failed"}, | |

{"TPM_DAA_INPUT_DATA1", TPM_E_BASE + 82, | |

"The consistency check on DAA parameter inputData1 has failed"}, | |

{"TPM_DAA_ISSUER_SETTINGS", TPM_E_BASE + 83, | |

"The consistency check on DAA_issuerSettings has failed"}, | |

{"TPM_DAA_TPM_SETTINGS", TPM_E_BASE + 84, | |

"The consistency check on DAA_tpmSpecific has failed"}, | |

{"TPM_DAA_STAGE", TPM_E_BASE + 85, | |

"The atomic process indicated by the submitted DAA command is not\n\ | |

the expected process"}, | |

{"TPM_DAA_ISSUER_VALIDITY", TPM_E_BASE + 86, | |

"The issuer's validity check has detected an inconsistency"}, | |

{"TPM_DAA_WRONG_W", TPM_E_BASE + 87, | |

"The consistency check on w has failed"}, | |

{"TPM_BAD_HANDLE", TPM_E_BASE + 88, | |

"The handle is incorrect"}, | |

{"TPM_BAD_DELEGATE", TPM_E_BASE + 89, | |

"Delegation is not correct"}, | |

{"TPM_BADCONTEXT", TPM_E_BASE + 90, | |

"The context blob is invalid"}, | |

{"TPM_TOOMANYCONTEXTS", TPM_E_BASE + 91, | |

"Too many contexts held by the TPM"}, | |

{"TPM_MA_TICKET_SIGNATURE", TPM_E_BASE + 92, | |

"Migration authority signature validation failure"}, | |

{"TPM_MA_DESTINATION", TPM_E_BASE + 93, | |

"Migration destination not authenticated"}, | |

{"TPM_MA_SOURCE", TPM_E_BASE + 94, | |

"Migration source incorrect"}, | |

{"TPM_MA_AUTHORITY", TPM_E_BASE + 95, | |

"Incorrect migration authority"}, | |

{"TPM_PERMANENTEK", TPM_E_BASE + 97, | |

"Attempt to revoke the EK and the EK is not revocable"}, | |

{"TPM_BAD_SIGNATURE", TPM_E_BASE + 98, | |

"Bad signature of CMK ticket"}, | |

{"TPM_NOCONTEXTSPACE", TPM_E_BASE + 99, | |

"There is no room in the context list for additional contexts"}, | |

{"TPM_RETRY", TPM_E_BASE + TPM_E_NON_FATAL, | |

"The TPM is too busy to respond to the command immediately, but\n\ | |

the command could be resubmitted at a later time. The TPM MAY\n\ | |

return TPM_RETRY for any command at any time"}, | |

{"TPM_NEEDS_SELFTEST", TPM_E_BASE + TPM_E_NON_FATAL + 1, | |

"TPM_ContinueSelfTest has not been run"}, | |

{"TPM_DOING_SELFTEST", TPM_E_BASE + TPM_E_NON_FATAL + 2, | |

"The TPM is currently executing the actions of TPM_ContinueSelfTest\n\ | |

because the ordinal required resources that have not been tested"}, | |

{"TPM_DEFEND_LOCK_RUNNING", TPM_E_BASE + TPM_E_NON_FATAL + 3, | |

"The TPM is defending against dictionary attacks and is in some\n\ | |

time-out period"}, | |

}; | |

#endif /* TSS_ERROR_MESSAGES_H_ */ |