2018-02-22 14:20:58 +01:00
|
|
|
/** @file
|
2018-03-09 19:54:20 +01:00
|
|
|
Set TPM device type
|
2018-02-22 14:20:58 +01:00
|
|
|
|
2018-03-09 19:54:20 +01:00
|
|
|
In SecurityPkg, this module initializes the TPM device type based on a UEFI
|
|
|
|
variable and/or hardware detection. In OvmfPkg, the module only performs TPM2
|
|
|
|
hardware detection.
|
2018-02-22 14:20:58 +01:00
|
|
|
|
2018-03-09 19:54:20 +01:00
|
|
|
Copyright (c) 2015, Intel Corporation. All rights reserved.<BR>
|
|
|
|
Copyright (C) 2018, Red Hat, Inc.
|
2018-02-22 14:20:58 +01:00
|
|
|
|
2019-04-04 01:06:33 +02:00
|
|
|
SPDX-License-Identifier: BSD-2-Clause-Patent
|
2018-02-22 14:20:58 +01:00
|
|
|
**/
|
|
|
|
|
|
|
|
|
|
|
|
#include <PiPei.h>
|
|
|
|
|
|
|
|
#include <Guid/TpmInstance.h>
|
|
|
|
#include <Library/DebugLib.h>
|
|
|
|
#include <Library/PeiServicesLib.h>
|
|
|
|
#include <Library/Tpm2DeviceLib.h>
|
2020-02-26 16:24:30 +01:00
|
|
|
#include <Library/Tpm12DeviceLib.h>
|
|
|
|
#include <Library/Tpm12CommandLib.h>
|
2018-02-22 14:20:58 +01:00
|
|
|
#include <Ppi/TpmInitialized.h>
|
|
|
|
|
|
|
|
STATIC CONST EFI_PEI_PPI_DESCRIPTOR mTpmSelectedPpi = {
|
|
|
|
(EFI_PEI_PPI_DESCRIPTOR_PPI | EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST),
|
|
|
|
&gEfiTpmDeviceSelectedGuid,
|
|
|
|
NULL
|
|
|
|
};
|
|
|
|
|
|
|
|
STATIC CONST EFI_PEI_PPI_DESCRIPTOR mTpmInitializationDonePpiList = {
|
|
|
|
EFI_PEI_PPI_DESCRIPTOR_PPI | EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,
|
|
|
|
&gPeiTpmInitializationDonePpiGuid,
|
|
|
|
NULL
|
|
|
|
};
|
|
|
|
|
2020-02-26 16:24:30 +01:00
|
|
|
#pragma pack (1)
|
|
|
|
|
|
|
|
typedef struct {
|
|
|
|
TPM_RSP_COMMAND_HDR Hdr;
|
|
|
|
TPM_CURRENT_TICKS CurrentTicks;
|
|
|
|
} TPM_RSP_GET_TICKS;
|
|
|
|
|
|
|
|
#pragma pack ()
|
|
|
|
|
|
|
|
/**
|
|
|
|
Probe for the TPM for 1.2 version, by sending TPM1.2 GetTicks
|
|
|
|
|
|
|
|
Sending a TPM1.2 command to a TPM2 should return a TPM1.2
|
|
|
|
header (tag = 0xc4) and error code (TPM_BADTAG = 0x1e)
|
|
|
|
**/
|
|
|
|
static
|
|
|
|
EFI_STATUS
|
|
|
|
TestTpm12 (
|
|
|
|
)
|
|
|
|
{
|
|
|
|
EFI_STATUS Status;
|
|
|
|
TPM_RQU_COMMAND_HDR Command;
|
|
|
|
TPM_RSP_GET_TICKS Response;
|
|
|
|
UINT32 Length;
|
|
|
|
|
|
|
|
Command.tag = SwapBytes16 (TPM_TAG_RQU_COMMAND);
|
|
|
|
Command.paramSize = SwapBytes32 (sizeof (Command));
|
|
|
|
Command.ordinal = SwapBytes32 (TPM_ORD_GetTicks);
|
|
|
|
|
|
|
|
Length = sizeof (Response);
|
|
|
|
Status = Tpm12SubmitCommand (sizeof (Command), (UINT8 *)&Command, &Length, (UINT8 *)&Response);
|
|
|
|
if (EFI_ERROR (Status)) {
|
|
|
|
return Status;
|
|
|
|
}
|
|
|
|
|
|
|
|
return EFI_SUCCESS;
|
|
|
|
}
|
|
|
|
|
2018-02-22 14:20:58 +01:00
|
|
|
/**
|
|
|
|
The entry point for Tcg2 configuration driver.
|
|
|
|
|
|
|
|
@param FileHandle Handle of the file being invoked.
|
|
|
|
@param PeiServices Describes the list of possible PEI Services.
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
|
|
|
EFIAPI
|
|
|
|
Tcg2ConfigPeimEntryPoint (
|
|
|
|
IN EFI_PEI_FILE_HANDLE FileHandle,
|
|
|
|
IN CONST EFI_PEI_SERVICES **PeiServices
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN Size;
|
|
|
|
EFI_STATUS Status;
|
|
|
|
|
|
|
|
DEBUG ((DEBUG_INFO, "%a\n", __FUNCTION__));
|
|
|
|
|
2020-02-26 16:24:30 +01:00
|
|
|
Status = Tpm12RequestUseTpm ();
|
|
|
|
if (!EFI_ERROR (Status) && !EFI_ERROR (TestTpm12 ())) {
|
|
|
|
DEBUG ((DEBUG_INFO, "%a: TPM1.2 detected\n", __FUNCTION__));
|
|
|
|
Size = sizeof (gEfiTpmDeviceInstanceTpm12Guid);
|
2018-03-09 19:54:20 +01:00
|
|
|
Status = PcdSetPtrS (
|
|
|
|
PcdTpmInstanceGuid,
|
|
|
|
&Size,
|
2020-02-26 16:24:30 +01:00
|
|
|
&gEfiTpmDeviceInstanceTpm12Guid
|
2018-03-09 19:54:20 +01:00
|
|
|
);
|
|
|
|
ASSERT_EFI_ERROR (Status);
|
2018-02-22 14:20:58 +01:00
|
|
|
} else {
|
2020-02-26 16:24:30 +01:00
|
|
|
Status = Tpm2RequestUseTpm ();
|
|
|
|
if (!EFI_ERROR (Status)) {
|
|
|
|
DEBUG ((DEBUG_INFO, "%a: TPM2 detected\n", __FUNCTION__));
|
|
|
|
Size = sizeof (gEfiTpmDeviceInstanceTpm20DtpmGuid);
|
|
|
|
Status = PcdSetPtrS (
|
|
|
|
PcdTpmInstanceGuid,
|
|
|
|
&Size,
|
|
|
|
&gEfiTpmDeviceInstanceTpm20DtpmGuid
|
|
|
|
);
|
|
|
|
ASSERT_EFI_ERROR (Status);
|
|
|
|
} else {
|
|
|
|
DEBUG ((DEBUG_INFO, "%a: no TPM detected\n", __FUNCTION__));
|
|
|
|
//
|
|
|
|
// If no TPM2 was detected, we still need to install
|
|
|
|
// TpmInitializationDonePpi. Namely, Tcg2Pei will exit early upon seeing
|
|
|
|
// the default (all-bits-zero) contents of PcdTpmInstanceGuid, thus we have
|
|
|
|
// to install the PPI in its place, in order to unblock any dependent
|
|
|
|
// PEIMs.
|
|
|
|
//
|
|
|
|
Status = PeiServicesInstallPpi (&mTpmInitializationDonePpiList);
|
|
|
|
ASSERT_EFI_ERROR (Status);
|
|
|
|
}
|
2018-02-22 14:20:58 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Selection done
|
|
|
|
//
|
|
|
|
Status = PeiServicesInstallPpi (&mTpmSelectedPpi);
|
|
|
|
ASSERT_EFI_ERROR (Status);
|
|
|
|
|
|
|
|
return Status;
|
|
|
|
}
|