From 30cf14ff3fdd9fbbaa3ffb841359c2ee1a0bfcad Mon Sep 17 00:00:00 2001
From: Werner Zeh <werner.zeh@siemens.com>
Date: Tue, 23 Oct 2018 07:40:08 +0200
Subject: security/tpm: Add function to measure a region device

Add a new function which can hash a given region device and extend a PCR
in the TPM with the result. The needed SHA algorithms are included from
3rdparty/vboot and thus not duplicated in the coreboot tree.

For now VB2_LIB is not usable in postcar stage. Follow-up commits will
add the ability to use the lib in postcar as well. Once this feature is
ready, the library will be included in postcar stage to make this
function available in every stage.

Change-Id: I126cc3500fd039d63743db78002a04d201ab18aa
Signed-off-by: Werner Zeh <werner.zeh@siemens.com>
Reviewed-on: https://review.coreboot.org/29234
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Philipp Deppenwiese <zaolin.daisuki@gmail.com>
---
 src/security/tpm/tss_errors.h | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'src/security/tpm/tss_errors.h')

diff --git a/src/security/tpm/tss_errors.h b/src/security/tpm/tss_errors.h
index e2f1486315..c80ffa15f3 100644
--- a/src/security/tpm/tss_errors.h
+++ b/src/security/tpm/tss_errors.h
@@ -38,5 +38,7 @@
 #define TPM_E_READ_EMPTY             ((uint32_t)0x00005009)  /* vboot local */
 #define TPM_E_READ_FAILURE           ((uint32_t)0x0000500a)  /* vboot local */
 #define TPM_E_NV_DEFINED             ((uint32_t)0x0000500b)  /* vboot local */
+#define TPM_E_INVALID_ARG            ((uint32_t)0x0000500c)
+#define TPM_E_HASH_ERROR             ((uint32_t)0x0000500d)
 
 #endif /* TSS_ERRORS_H_ */
-- 
cgit v1.2.3