Gitiles
Code Review Sign In
review.coreboot.org / coreboot / 47e9e8cde1810ee9f249027b14ee9f82a7a52d84 / . / src / vendorcode / google / chromeos / tpm2.c
blob: 8823978de448e5d70bba8d4ecc06eceb358b449f [file] [log] [blame]
Angel Pons3ef916f2020-04-02 23:49:13 +0200[diff] [blame]1/* SPDX-License-Identifier: GPL-2.0-only */
Aaron Durbinf56c7782017-01-10 17:44:42 -0600[diff] [blame]2
3#include <bootstate.h>
4#include <console/console.h>
Philipp Deppenwiesed88fb362017-10-18 20:26:18 +0200[diff] [blame]5#include <security/tpm/tss.h>
Aaron Durbinf56c7782017-01-10 17:44:42 -0600[diff] [blame]6#include <vb2_api.h>
7
8static void disable_platform_hierarchy(void *unused)
9{
Jon Murphyd7b8dc92023-09-05 11:36:43 -0600[diff] [blame]10 tpm_result_t rc;
Aaron Durbinf56c7782017-01-10 17:44:42 -0600[diff] [blame]11
Julius Wernercd49cce2019-03-05 16:53:33 -0800[diff] [blame]12 if (!CONFIG(TPM2))
Aaron Durbinf56c7782017-01-10 17:44:42 -0600[diff] [blame]13 return;
14
Julius Wernercd49cce2019-03-05 16:53:33 -0800[diff] [blame]15 if (!CONFIG(RESUME_PATH_SAME_AS_BOOT))
Aaron Durbinf56c7782017-01-10 17:44:42 -0600[diff] [blame]16 return;
17
Jon Murphy24604812023-09-05 10:37:05 -0600[diff] [blame]18 rc = tlcl_lib_init();
Aaron Durbinf56c7782017-01-10 17:44:42 -0600[diff] [blame]19
Jon Murphyd7b8dc92023-09-05 11:36:43 -0600[diff] [blame]20 if (rc != TPM_SUCCESS) {
Jon Murphy53fc6672023-09-26 21:05:37 -0600[diff] [blame]21 printk(BIOS_ERR, "tlcl_lib_init() failed: %#x\n", rc);
Aaron Durbinf56c7782017-01-10 17:44:42 -0600[diff] [blame]22 return;
23 }
24
Sergii Dmytruk47e9e8c2022-11-02 00:50:03 +0200[diff] [blame^]25 /* In case both families are enabled, but TPM1 is in use. */
26 if (tlcl_get_family() != TPM_2)
27 return;
28
Sergii Dmytruk094a0512022-10-31 18:41:52 +0200[diff] [blame]29 rc = tlcl2_disable_platform_hierarchy();
Jon Murphy24604812023-09-05 10:37:05 -0600[diff] [blame]30 if (rc != TPM_SUCCESS)
Jon Murphy53fc6672023-09-26 21:05:37 -0600[diff] [blame]31 printk(BIOS_ERR, "Platform hierarchy disablement failed: %#x\n",
Jon Murphy24604812023-09-05 10:37:05 -0600[diff] [blame]32 rc);
Aaron Durbinf56c7782017-01-10 17:44:42 -0600[diff] [blame]33}
34
35BOOT_STATE_INIT_ENTRY(BS_OS_RESUME, BS_ON_ENTRY, disable_platform_hierarchy,
36 NULL);