src/vendorcode/google/chromeos/tpm2.c


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36

/* SPDX-License-Identifier: GPL-2.0-only */

#include <bootstate.h>
#include <console/console.h>
#include <security/tpm/tss.h>
#include <vb2_api.h>

static void disable_platform_hierarchy(void *unused)
{
	tpm_result_t rc;

	if (!CONFIG(TPM2))
		return;

	if (!CONFIG(RESUME_PATH_SAME_AS_BOOT))
		return;

	rc = tlcl_lib_init();

	if (rc != TPM_SUCCESS) {
		printk(BIOS_ERR, "tlcl_lib_init() failed: %#x\n", rc);
		return;
	}

	/* In case both families are enabled, but TPM1 is in use. */
	if (tlcl_get_family() != TPM_2)
		return;

	rc = tlcl2_disable_platform_hierarchy();
	if (rc != TPM_SUCCESS)
		printk(BIOS_ERR, "Platform hierarchy disablement failed: %#x\n",
			rc);
}

BOOT_STATE_INIT_ENTRY(BS_OS_RESUME, BS_ON_ENTRY, disable_platform_hierarchy,
			NULL);