19deb0eb7SJason Gunthorpe /* 29deb0eb7SJason Gunthorpe * Copyright (C) 2004 IBM Corporation 3afb5abc2SJarkko Sakkinen * Copyright (C) 2014 Intel Corporation 49deb0eb7SJason Gunthorpe * 59deb0eb7SJason Gunthorpe * Authors: 69deb0eb7SJason Gunthorpe * Leendert van Doorn <leendert@watson.ibm.com> 79deb0eb7SJason Gunthorpe * Dave Safford <safford@watson.ibm.com> 89deb0eb7SJason Gunthorpe * Reiner Sailer <sailer@watson.ibm.com> 99deb0eb7SJason Gunthorpe * Kylene Hall <kjhall@us.ibm.com> 109deb0eb7SJason Gunthorpe * 119deb0eb7SJason Gunthorpe * Maintained by: <tpmdd-devel@lists.sourceforge.net> 129deb0eb7SJason Gunthorpe * 139deb0eb7SJason Gunthorpe * Device driver for TCG/TCPA TPM (trusted platform module). 149deb0eb7SJason Gunthorpe * Specifications at www.trustedcomputinggroup.org 159deb0eb7SJason Gunthorpe * 169deb0eb7SJason Gunthorpe * This program is free software; you can redistribute it and/or 179deb0eb7SJason Gunthorpe * modify it under the terms of the GNU General Public License as 189deb0eb7SJason Gunthorpe * published by the Free Software Foundation, version 2 of the 199deb0eb7SJason Gunthorpe * License. 209deb0eb7SJason Gunthorpe * 219deb0eb7SJason Gunthorpe * Note, the TPM chip is not interrupt driven (only polling) 229deb0eb7SJason Gunthorpe * and can have very long timeouts (minutes!). Hence the unusual 239deb0eb7SJason Gunthorpe * calls to msleep. 249deb0eb7SJason Gunthorpe * 259deb0eb7SJason Gunthorpe */ 269deb0eb7SJason Gunthorpe 279deb0eb7SJason Gunthorpe #include <linux/poll.h> 289deb0eb7SJason Gunthorpe #include <linux/slab.h> 299deb0eb7SJason Gunthorpe #include <linux/mutex.h> 309deb0eb7SJason Gunthorpe #include <linux/spinlock.h> 319deb0eb7SJason Gunthorpe #include <linux/freezer.h> 32e74f2f76SWinkler, Tomas #include <linux/pm_runtime.h> 339deb0eb7SJason Gunthorpe 349deb0eb7SJason Gunthorpe #include "tpm.h" 359deb0eb7SJason Gunthorpe #include "tpm_eventlog.h" 369deb0eb7SJason Gunthorpe 379deb0eb7SJason Gunthorpe #define TPM_MAX_ORDINAL 243 389deb0eb7SJason Gunthorpe #define TSC_MAX_ORDINAL 12 399deb0eb7SJason Gunthorpe #define TPM_PROTECTED_COMMAND 0x00 409deb0eb7SJason Gunthorpe #define TPM_CONNECTION_COMMAND 0x40 419deb0eb7SJason Gunthorpe 429deb0eb7SJason Gunthorpe /* 439deb0eb7SJason Gunthorpe * Bug workaround - some TPM's don't flush the most 449deb0eb7SJason Gunthorpe * recently changed pcr on suspend, so force the flush 459deb0eb7SJason Gunthorpe * with an extend to the selected _unused_ non-volatile pcr. 469deb0eb7SJason Gunthorpe */ 479deb0eb7SJason Gunthorpe static int tpm_suspend_pcr; 489deb0eb7SJason Gunthorpe module_param_named(suspend_pcr, tpm_suspend_pcr, uint, 0644); 499deb0eb7SJason Gunthorpe MODULE_PARM_DESC(suspend_pcr, 5039f5712bSDmitry Torokhov "PCR to use for dummy writes to facilitate flush on suspend."); 519deb0eb7SJason Gunthorpe 529deb0eb7SJason Gunthorpe /* 539deb0eb7SJason Gunthorpe * Array with one entry per ordinal defining the maximum amount 549deb0eb7SJason Gunthorpe * of time the chip could take to return the result. The ordinal 559deb0eb7SJason Gunthorpe * designation of short, medium or long is defined in a table in 569deb0eb7SJason Gunthorpe * TCG Specification TPM Main Part 2 TPM Structures Section 17. The 579deb0eb7SJason Gunthorpe * values of the SHORT, MEDIUM, and LONG durations are retrieved 589deb0eb7SJason Gunthorpe * from the chip during initialization with a call to tpm_get_timeouts. 599deb0eb7SJason Gunthorpe */ 609deb0eb7SJason Gunthorpe static const u8 tpm_ordinal_duration[TPM_MAX_ORDINAL] = { 619deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 0 */ 629deb0eb7SJason Gunthorpe TPM_UNDEFINED, 639deb0eb7SJason Gunthorpe TPM_UNDEFINED, 649deb0eb7SJason Gunthorpe TPM_UNDEFINED, 659deb0eb7SJason Gunthorpe TPM_UNDEFINED, 669deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 5 */ 679deb0eb7SJason Gunthorpe TPM_UNDEFINED, 689deb0eb7SJason Gunthorpe TPM_UNDEFINED, 699deb0eb7SJason Gunthorpe TPM_UNDEFINED, 709deb0eb7SJason Gunthorpe TPM_UNDEFINED, 719deb0eb7SJason Gunthorpe TPM_SHORT, /* 10 */ 729deb0eb7SJason Gunthorpe TPM_SHORT, 739deb0eb7SJason Gunthorpe TPM_MEDIUM, 749deb0eb7SJason Gunthorpe TPM_LONG, 759deb0eb7SJason Gunthorpe TPM_LONG, 769deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 15 */ 779deb0eb7SJason Gunthorpe TPM_SHORT, 789deb0eb7SJason Gunthorpe TPM_SHORT, 799deb0eb7SJason Gunthorpe TPM_MEDIUM, 809deb0eb7SJason Gunthorpe TPM_LONG, 819deb0eb7SJason Gunthorpe TPM_SHORT, /* 20 */ 829deb0eb7SJason Gunthorpe TPM_SHORT, 839deb0eb7SJason Gunthorpe TPM_MEDIUM, 849deb0eb7SJason Gunthorpe TPM_MEDIUM, 859deb0eb7SJason Gunthorpe TPM_MEDIUM, 869deb0eb7SJason Gunthorpe TPM_SHORT, /* 25 */ 879deb0eb7SJason Gunthorpe TPM_SHORT, 889deb0eb7SJason Gunthorpe TPM_MEDIUM, 899deb0eb7SJason Gunthorpe TPM_SHORT, 909deb0eb7SJason Gunthorpe TPM_SHORT, 919deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 30 */ 929deb0eb7SJason Gunthorpe TPM_LONG, 939deb0eb7SJason Gunthorpe TPM_MEDIUM, 949deb0eb7SJason Gunthorpe TPM_SHORT, 959deb0eb7SJason Gunthorpe TPM_SHORT, 969deb0eb7SJason Gunthorpe TPM_SHORT, /* 35 */ 979deb0eb7SJason Gunthorpe TPM_MEDIUM, 989deb0eb7SJason Gunthorpe TPM_MEDIUM, 999deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1009deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1019deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 40 */ 1029deb0eb7SJason Gunthorpe TPM_LONG, 1039deb0eb7SJason Gunthorpe TPM_MEDIUM, 1049deb0eb7SJason Gunthorpe TPM_SHORT, 1059deb0eb7SJason Gunthorpe TPM_SHORT, 1069deb0eb7SJason Gunthorpe TPM_SHORT, /* 45 */ 1079deb0eb7SJason Gunthorpe TPM_SHORT, 1089deb0eb7SJason Gunthorpe TPM_SHORT, 1099deb0eb7SJason Gunthorpe TPM_SHORT, 1109deb0eb7SJason Gunthorpe TPM_LONG, 1119deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 50 */ 1129deb0eb7SJason Gunthorpe TPM_MEDIUM, 1139deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1149deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1159deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1169deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 55 */ 1179deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1189deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1199deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1209deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1219deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 60 */ 1229deb0eb7SJason Gunthorpe TPM_MEDIUM, 1239deb0eb7SJason Gunthorpe TPM_MEDIUM, 1249deb0eb7SJason Gunthorpe TPM_SHORT, 1259deb0eb7SJason Gunthorpe TPM_SHORT, 1269deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 65 */ 1279deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1289deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1299deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1309deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1319deb0eb7SJason Gunthorpe TPM_SHORT, /* 70 */ 1329deb0eb7SJason Gunthorpe TPM_SHORT, 1339deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1349deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1359deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1369deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 75 */ 1379deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1389deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1399deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1409deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1419deb0eb7SJason Gunthorpe TPM_LONG, /* 80 */ 1429deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1439deb0eb7SJason Gunthorpe TPM_MEDIUM, 1449deb0eb7SJason Gunthorpe TPM_LONG, 1459deb0eb7SJason Gunthorpe TPM_SHORT, 1469deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 85 */ 1479deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1489deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1499deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1509deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1519deb0eb7SJason Gunthorpe TPM_SHORT, /* 90 */ 1529deb0eb7SJason Gunthorpe TPM_SHORT, 1539deb0eb7SJason Gunthorpe TPM_SHORT, 1549deb0eb7SJason Gunthorpe TPM_SHORT, 1559deb0eb7SJason Gunthorpe TPM_SHORT, 1569deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 95 */ 1579deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1589deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1599deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1609deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1619deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 100 */ 1629deb0eb7SJason Gunthorpe TPM_SHORT, 1639deb0eb7SJason Gunthorpe TPM_SHORT, 1649deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1659deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1669deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 105 */ 1679deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1689deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1699deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1709deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1719deb0eb7SJason Gunthorpe TPM_SHORT, /* 110 */ 1729deb0eb7SJason Gunthorpe TPM_SHORT, 1739deb0eb7SJason Gunthorpe TPM_SHORT, 1749deb0eb7SJason Gunthorpe TPM_SHORT, 1759deb0eb7SJason Gunthorpe TPM_SHORT, 1769deb0eb7SJason Gunthorpe TPM_SHORT, /* 115 */ 1779deb0eb7SJason Gunthorpe TPM_SHORT, 1789deb0eb7SJason Gunthorpe TPM_SHORT, 1799deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1809deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1819deb0eb7SJason Gunthorpe TPM_LONG, /* 120 */ 1829deb0eb7SJason Gunthorpe TPM_LONG, 1839deb0eb7SJason Gunthorpe TPM_MEDIUM, 1849deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1859deb0eb7SJason Gunthorpe TPM_SHORT, 1869deb0eb7SJason Gunthorpe TPM_SHORT, /* 125 */ 1879deb0eb7SJason Gunthorpe TPM_SHORT, 1889deb0eb7SJason Gunthorpe TPM_LONG, 1899deb0eb7SJason Gunthorpe TPM_SHORT, 1909deb0eb7SJason Gunthorpe TPM_SHORT, 1919deb0eb7SJason Gunthorpe TPM_SHORT, /* 130 */ 1929deb0eb7SJason Gunthorpe TPM_MEDIUM, 1939deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1949deb0eb7SJason Gunthorpe TPM_SHORT, 1959deb0eb7SJason Gunthorpe TPM_MEDIUM, 1969deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 135 */ 1979deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1989deb0eb7SJason Gunthorpe TPM_UNDEFINED, 1999deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2009deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2019deb0eb7SJason Gunthorpe TPM_SHORT, /* 140 */ 2029deb0eb7SJason Gunthorpe TPM_SHORT, 2039deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2049deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2059deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2069deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 145 */ 2079deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2089deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2099deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2109deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2119deb0eb7SJason Gunthorpe TPM_SHORT, /* 150 */ 2129deb0eb7SJason Gunthorpe TPM_MEDIUM, 2139deb0eb7SJason Gunthorpe TPM_MEDIUM, 2149deb0eb7SJason Gunthorpe TPM_SHORT, 2159deb0eb7SJason Gunthorpe TPM_SHORT, 2169deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 155 */ 2179deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2189deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2199deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2209deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2219deb0eb7SJason Gunthorpe TPM_SHORT, /* 160 */ 2229deb0eb7SJason Gunthorpe TPM_SHORT, 2239deb0eb7SJason Gunthorpe TPM_SHORT, 2249deb0eb7SJason Gunthorpe TPM_SHORT, 2259deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2269deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 165 */ 2279deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2289deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2299deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2309deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2319deb0eb7SJason Gunthorpe TPM_LONG, /* 170 */ 2329deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2339deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2349deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2359deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2369deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 175 */ 2379deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2389deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2399deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2409deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2419deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 180 */ 2429deb0eb7SJason Gunthorpe TPM_SHORT, 2439deb0eb7SJason Gunthorpe TPM_MEDIUM, 2449deb0eb7SJason Gunthorpe TPM_MEDIUM, 2459deb0eb7SJason Gunthorpe TPM_MEDIUM, 2469deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 185 */ 2479deb0eb7SJason Gunthorpe TPM_SHORT, 2489deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2499deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2509deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2519deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 190 */ 2529deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2539deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2549deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2559deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2569deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 195 */ 2579deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2589deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2599deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2609deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2619deb0eb7SJason Gunthorpe TPM_SHORT, /* 200 */ 2629deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2639deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2649deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2659deb0eb7SJason Gunthorpe TPM_SHORT, 2669deb0eb7SJason Gunthorpe TPM_SHORT, /* 205 */ 2679deb0eb7SJason Gunthorpe TPM_SHORT, 2689deb0eb7SJason Gunthorpe TPM_SHORT, 2699deb0eb7SJason Gunthorpe TPM_SHORT, 2709deb0eb7SJason Gunthorpe TPM_SHORT, 2719deb0eb7SJason Gunthorpe TPM_MEDIUM, /* 210 */ 2729deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2739deb0eb7SJason Gunthorpe TPM_MEDIUM, 2749deb0eb7SJason Gunthorpe TPM_MEDIUM, 2759deb0eb7SJason Gunthorpe TPM_MEDIUM, 2769deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 215 */ 2779deb0eb7SJason Gunthorpe TPM_MEDIUM, 2789deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2799deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2809deb0eb7SJason Gunthorpe TPM_SHORT, 2819deb0eb7SJason Gunthorpe TPM_SHORT, /* 220 */ 2829deb0eb7SJason Gunthorpe TPM_SHORT, 2839deb0eb7SJason Gunthorpe TPM_SHORT, 2849deb0eb7SJason Gunthorpe TPM_SHORT, 2859deb0eb7SJason Gunthorpe TPM_SHORT, 2869deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 225 */ 2879deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2889deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2899deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2909deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2919deb0eb7SJason Gunthorpe TPM_SHORT, /* 230 */ 2929deb0eb7SJason Gunthorpe TPM_LONG, 2939deb0eb7SJason Gunthorpe TPM_MEDIUM, 2949deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2959deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2969deb0eb7SJason Gunthorpe TPM_UNDEFINED, /* 235 */ 2979deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2989deb0eb7SJason Gunthorpe TPM_UNDEFINED, 2999deb0eb7SJason Gunthorpe TPM_UNDEFINED, 3009deb0eb7SJason Gunthorpe TPM_UNDEFINED, 3019deb0eb7SJason Gunthorpe TPM_SHORT, /* 240 */ 3029deb0eb7SJason Gunthorpe TPM_UNDEFINED, 3039deb0eb7SJason Gunthorpe TPM_MEDIUM, 3049deb0eb7SJason Gunthorpe }; 3059deb0eb7SJason Gunthorpe 3069deb0eb7SJason Gunthorpe /* 3079deb0eb7SJason Gunthorpe * Returns max number of jiffies to wait 3089deb0eb7SJason Gunthorpe */ 3099deb0eb7SJason Gunthorpe unsigned long tpm_calc_ordinal_duration(struct tpm_chip *chip, 3109deb0eb7SJason Gunthorpe u32 ordinal) 3119deb0eb7SJason Gunthorpe { 3129deb0eb7SJason Gunthorpe int duration_idx = TPM_UNDEFINED; 3139deb0eb7SJason Gunthorpe int duration = 0; 3149deb0eb7SJason Gunthorpe 315f7286430SMartin Wilck /* 316f7286430SMartin Wilck * We only have a duration table for protected commands, where the upper 317f7286430SMartin Wilck * 16 bits are 0. For the few other ordinals the fallback will be used. 318f7286430SMartin Wilck */ 319f7286430SMartin Wilck if (ordinal < TPM_MAX_ORDINAL) 3209deb0eb7SJason Gunthorpe duration_idx = tpm_ordinal_duration[ordinal]; 3219deb0eb7SJason Gunthorpe 3229deb0eb7SJason Gunthorpe if (duration_idx != TPM_UNDEFINED) 323af782f33SChristophe Ricard duration = chip->duration[duration_idx]; 3249deb0eb7SJason Gunthorpe if (duration <= 0) 3259deb0eb7SJason Gunthorpe return 2 * 60 * HZ; 3269deb0eb7SJason Gunthorpe else 3279deb0eb7SJason Gunthorpe return duration; 3289deb0eb7SJason Gunthorpe } 3299deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_calc_ordinal_duration); 3309deb0eb7SJason Gunthorpe 331745b361eSJarkko Sakkinen static bool tpm_validate_command(struct tpm_chip *chip, 332745b361eSJarkko Sakkinen struct tpm_space *space, 333745b361eSJarkko Sakkinen const u8 *cmd, 33458472f5cSJarkko Sakkinen size_t len) 33558472f5cSJarkko Sakkinen { 33658472f5cSJarkko Sakkinen const struct tpm_input_header *header = (const void *)cmd; 33758472f5cSJarkko Sakkinen int i; 33858472f5cSJarkko Sakkinen u32 cc; 33958472f5cSJarkko Sakkinen u32 attrs; 34058472f5cSJarkko Sakkinen unsigned int nr_handles; 34158472f5cSJarkko Sakkinen 34258472f5cSJarkko Sakkinen if (len < TPM_HEADER_SIZE) 34358472f5cSJarkko Sakkinen return false; 34458472f5cSJarkko Sakkinen 345745b361eSJarkko Sakkinen if (!space) 346745b361eSJarkko Sakkinen return true; 347745b361eSJarkko Sakkinen 34858472f5cSJarkko Sakkinen if (chip->flags & TPM_CHIP_FLAG_TPM2 && chip->nr_commands) { 34958472f5cSJarkko Sakkinen cc = be32_to_cpu(header->ordinal); 35058472f5cSJarkko Sakkinen 35158472f5cSJarkko Sakkinen i = tpm2_find_cc(chip, cc); 35258472f5cSJarkko Sakkinen if (i < 0) { 35358472f5cSJarkko Sakkinen dev_dbg(&chip->dev, "0x%04X is an invalid command\n", 35458472f5cSJarkko Sakkinen cc); 35558472f5cSJarkko Sakkinen return false; 35658472f5cSJarkko Sakkinen } 35758472f5cSJarkko Sakkinen 35858472f5cSJarkko Sakkinen attrs = chip->cc_attrs_tbl[i]; 35958472f5cSJarkko Sakkinen nr_handles = 36058472f5cSJarkko Sakkinen 4 * ((attrs >> TPM2_CC_ATTR_CHANDLES) & GENMASK(2, 0)); 36158472f5cSJarkko Sakkinen if (len < TPM_HEADER_SIZE + 4 * nr_handles) 36258472f5cSJarkko Sakkinen goto err_len; 36358472f5cSJarkko Sakkinen } 36458472f5cSJarkko Sakkinen 36558472f5cSJarkko Sakkinen return true; 36658472f5cSJarkko Sakkinen err_len: 36758472f5cSJarkko Sakkinen dev_dbg(&chip->dev, 36858472f5cSJarkko Sakkinen "%s: insufficient command length %zu", __func__, len); 36958472f5cSJarkko Sakkinen return false; 37058472f5cSJarkko Sakkinen } 37158472f5cSJarkko Sakkinen 372f865c196SWinkler, Tomas /** 373f865c196SWinkler, Tomas * tmp_transmit - Internal kernel interface to transmit TPM commands. 374f865c196SWinkler, Tomas * 375f865c196SWinkler, Tomas * @chip: TPM chip to use 376f865c196SWinkler, Tomas * @buf: TPM command buffer 377f865c196SWinkler, Tomas * @bufsiz: length of the TPM command buffer 378f865c196SWinkler, Tomas * @flags: tpm transmit flags - bitmap 379f865c196SWinkler, Tomas * 380f865c196SWinkler, Tomas * Return: 381f865c196SWinkler, Tomas * 0 when the operation is successful. 382f865c196SWinkler, Tomas * A negative number for system errors (errno). 3839deb0eb7SJason Gunthorpe */ 384745b361eSJarkko Sakkinen ssize_t tpm_transmit(struct tpm_chip *chip, struct tpm_space *space, 385745b361eSJarkko Sakkinen u8 *buf, size_t bufsiz, unsigned int flags) 3869deb0eb7SJason Gunthorpe { 387745b361eSJarkko Sakkinen struct tpm_output_header *header = (void *)buf; 388745b361eSJarkko Sakkinen int rc; 389745b361eSJarkko Sakkinen ssize_t len = 0; 3909deb0eb7SJason Gunthorpe u32 count, ordinal; 3919deb0eb7SJason Gunthorpe unsigned long stop; 392877c57d0SJarkko Sakkinen bool need_locality; 3939deb0eb7SJason Gunthorpe 394745b361eSJarkko Sakkinen if (!tpm_validate_command(chip, space, buf, bufsiz)) 395ebfd7532SJarkko Sakkinen return -EINVAL; 396ebfd7532SJarkko Sakkinen 3979deb0eb7SJason Gunthorpe if (bufsiz > TPM_BUFSIZE) 3989deb0eb7SJason Gunthorpe bufsiz = TPM_BUFSIZE; 3999deb0eb7SJason Gunthorpe 4009deb0eb7SJason Gunthorpe count = be32_to_cpu(*((__be32 *) (buf + 2))); 4019deb0eb7SJason Gunthorpe ordinal = be32_to_cpu(*((__be32 *) (buf + 6))); 4029deb0eb7SJason Gunthorpe if (count == 0) 4039deb0eb7SJason Gunthorpe return -ENODATA; 4049deb0eb7SJason Gunthorpe if (count > bufsiz) { 4058cfffc9dSJason Gunthorpe dev_err(&chip->dev, 4069deb0eb7SJason Gunthorpe "invalid count value %x %zx\n", count, bufsiz); 4079deb0eb7SJason Gunthorpe return -E2BIG; 4089deb0eb7SJason Gunthorpe } 4099deb0eb7SJason Gunthorpe 410d4816edfSJarkko Sakkinen if (!(flags & TPM_TRANSMIT_UNLOCKED)) 4119deb0eb7SJason Gunthorpe mutex_lock(&chip->tpm_mutex); 4129deb0eb7SJason Gunthorpe 4136804f6bbSStefan Berger if (chip->dev.parent) 414e74f2f76SWinkler, Tomas pm_runtime_get_sync(chip->dev.parent); 415e74f2f76SWinkler, Tomas 416877c57d0SJarkko Sakkinen /* Store the decision as chip->locality will be changed. */ 417877c57d0SJarkko Sakkinen need_locality = chip->locality == -1; 418877c57d0SJarkko Sakkinen 419877c57d0SJarkko Sakkinen if (need_locality && chip->ops->request_locality) { 420877c57d0SJarkko Sakkinen rc = chip->ops->request_locality(chip, 0); 421877c57d0SJarkko Sakkinen if (rc < 0) 422877c57d0SJarkko Sakkinen goto out_no_locality; 423877c57d0SJarkko Sakkinen chip->locality = rc; 424877c57d0SJarkko Sakkinen } 425877c57d0SJarkko Sakkinen 426745b361eSJarkko Sakkinen rc = tpm2_prepare_space(chip, space, ordinal, buf); 427745b361eSJarkko Sakkinen if (rc) 428745b361eSJarkko Sakkinen goto out; 429745b361eSJarkko Sakkinen 4305f82e9f0SJason Gunthorpe rc = chip->ops->send(chip, (u8 *) buf, count); 4319deb0eb7SJason Gunthorpe if (rc < 0) { 432*402149c6SStefan Berger if (rc != -EPIPE) 4338cfffc9dSJason Gunthorpe dev_err(&chip->dev, 434*402149c6SStefan Berger "%s: tpm_send: error %d\n", __func__, rc); 4359deb0eb7SJason Gunthorpe goto out; 4369deb0eb7SJason Gunthorpe } 4379deb0eb7SJason Gunthorpe 438570a3609SChristophe Ricard if (chip->flags & TPM_CHIP_FLAG_IRQ) 4399deb0eb7SJason Gunthorpe goto out_recv; 4409deb0eb7SJason Gunthorpe 4417a1d7e6dSJarkko Sakkinen if (chip->flags & TPM_CHIP_FLAG_TPM2) 4427a1d7e6dSJarkko Sakkinen stop = jiffies + tpm2_calc_ordinal_duration(chip, ordinal); 4437a1d7e6dSJarkko Sakkinen else 4449deb0eb7SJason Gunthorpe stop = jiffies + tpm_calc_ordinal_duration(chip, ordinal); 4459deb0eb7SJason Gunthorpe do { 4465f82e9f0SJason Gunthorpe u8 status = chip->ops->status(chip); 4475f82e9f0SJason Gunthorpe if ((status & chip->ops->req_complete_mask) == 4485f82e9f0SJason Gunthorpe chip->ops->req_complete_val) 4499deb0eb7SJason Gunthorpe goto out_recv; 4509deb0eb7SJason Gunthorpe 4515f82e9f0SJason Gunthorpe if (chip->ops->req_canceled(chip, status)) { 4528cfffc9dSJason Gunthorpe dev_err(&chip->dev, "Operation Canceled\n"); 4539deb0eb7SJason Gunthorpe rc = -ECANCELED; 4549deb0eb7SJason Gunthorpe goto out; 4559deb0eb7SJason Gunthorpe } 4569deb0eb7SJason Gunthorpe 4579deb0eb7SJason Gunthorpe msleep(TPM_TIMEOUT); /* CHECK */ 4589deb0eb7SJason Gunthorpe rmb(); 4599deb0eb7SJason Gunthorpe } while (time_before(jiffies, stop)); 4609deb0eb7SJason Gunthorpe 4615f82e9f0SJason Gunthorpe chip->ops->cancel(chip); 4628cfffc9dSJason Gunthorpe dev_err(&chip->dev, "Operation Timed out\n"); 4639deb0eb7SJason Gunthorpe rc = -ETIME; 4649deb0eb7SJason Gunthorpe goto out; 4659deb0eb7SJason Gunthorpe 4669deb0eb7SJason Gunthorpe out_recv: 467745b361eSJarkko Sakkinen len = chip->ops->recv(chip, (u8 *) buf, bufsiz); 468745b361eSJarkko Sakkinen if (len < 0) { 469745b361eSJarkko Sakkinen rc = len; 4708cfffc9dSJason Gunthorpe dev_err(&chip->dev, 471745b361eSJarkko Sakkinen "tpm_transmit: tpm_recv: error %d\n", rc); 472a147918eSJarkko Sakkinen goto out; 473745b361eSJarkko Sakkinen } else if (len < TPM_HEADER_SIZE) { 474a147918eSJarkko Sakkinen rc = -EFAULT; 475a147918eSJarkko Sakkinen goto out; 476a147918eSJarkko Sakkinen } 477a147918eSJarkko Sakkinen 478745b361eSJarkko Sakkinen if (len != be32_to_cpu(header->length)) { 479745b361eSJarkko Sakkinen rc = -EFAULT; 480a147918eSJarkko Sakkinen goto out; 481745b361eSJarkko Sakkinen } 482745b361eSJarkko Sakkinen 483745b361eSJarkko Sakkinen rc = tpm2_commit_space(chip, space, ordinal, buf, &len); 484a147918eSJarkko Sakkinen 4859deb0eb7SJason Gunthorpe out: 486877c57d0SJarkko Sakkinen if (need_locality && chip->ops->relinquish_locality) { 487877c57d0SJarkko Sakkinen chip->ops->relinquish_locality(chip, chip->locality); 488877c57d0SJarkko Sakkinen chip->locality = -1; 489877c57d0SJarkko Sakkinen } 490877c57d0SJarkko Sakkinen out_no_locality: 4916804f6bbSStefan Berger if (chip->dev.parent) 492e74f2f76SWinkler, Tomas pm_runtime_put_sync(chip->dev.parent); 493e74f2f76SWinkler, Tomas 494d4816edfSJarkko Sakkinen if (!(flags & TPM_TRANSMIT_UNLOCKED)) 4959deb0eb7SJason Gunthorpe mutex_unlock(&chip->tpm_mutex); 496745b361eSJarkko Sakkinen return rc ? rc : len; 4979deb0eb7SJason Gunthorpe } 4989deb0eb7SJason Gunthorpe 499f865c196SWinkler, Tomas /** 500f865c196SWinkler, Tomas * tmp_transmit_cmd - send a tpm command to the device 501f865c196SWinkler, Tomas * The function extracts tpm out header return code 502f865c196SWinkler, Tomas * 503f865c196SWinkler, Tomas * @chip: TPM chip to use 504c659af78SStefan Berger * @buf: TPM command buffer 505c659af78SStefan Berger * @bufsiz: length of the buffer 506c659af78SStefan Berger * @min_rsp_body_length: minimum expected length of response body 507f865c196SWinkler, Tomas * @flags: tpm transmit flags - bitmap 508f865c196SWinkler, Tomas * @desc: command description used in the error message 509f865c196SWinkler, Tomas * 510f865c196SWinkler, Tomas * Return: 511f865c196SWinkler, Tomas * 0 when the operation is successful. 512f865c196SWinkler, Tomas * A negative number for system errors (errno). 513f865c196SWinkler, Tomas * A positive number for a TPM error. 514f865c196SWinkler, Tomas */ 515745b361eSJarkko Sakkinen ssize_t tpm_transmit_cmd(struct tpm_chip *chip, struct tpm_space *space, 516745b361eSJarkko Sakkinen const void *buf, size_t bufsiz, 517745b361eSJarkko Sakkinen size_t min_rsp_body_length, unsigned int flags, 518745b361eSJarkko Sakkinen const char *desc) 5199deb0eb7SJason Gunthorpe { 520a147918eSJarkko Sakkinen const struct tpm_output_header *header = buf; 5219deb0eb7SJason Gunthorpe int err; 522c659af78SStefan Berger ssize_t len; 5239deb0eb7SJason Gunthorpe 524745b361eSJarkko Sakkinen len = tpm_transmit(chip, space, (u8 *)buf, bufsiz, flags); 5259deb0eb7SJason Gunthorpe if (len < 0) 5269deb0eb7SJason Gunthorpe return len; 52787155b73SJarkko Sakkinen 52887155b73SJarkko Sakkinen err = be32_to_cpu(header->return_code); 5299deb0eb7SJason Gunthorpe if (err != 0 && desc) 5308cfffc9dSJason Gunthorpe dev_err(&chip->dev, "A TPM error (%d) occurred %s\n", err, 53171ed848fSJarkko Sakkinen desc); 532c659af78SStefan Berger if (err) 5339deb0eb7SJason Gunthorpe return err; 534c659af78SStefan Berger 535c659af78SStefan Berger if (len < min_rsp_body_length + TPM_HEADER_SIZE) 536c659af78SStefan Berger return -EFAULT; 537c659af78SStefan Berger 538c659af78SStefan Berger return 0; 5399deb0eb7SJason Gunthorpe } 5409deb0eb7SJason Gunthorpe 541f865c196SWinkler, Tomas #define TPM_DIGEST_SIZE 20 542f865c196SWinkler, Tomas #define TPM_RET_CODE_IDX 6 5439deb0eb7SJason Gunthorpe #define TPM_INTERNAL_RESULT_SIZE 200 544a69faebfSRoberto Sassu #define TPM_ORD_GET_CAP 101 545a69faebfSRoberto Sassu #define TPM_ORD_GET_RANDOM 70 5469deb0eb7SJason Gunthorpe 5479deb0eb7SJason Gunthorpe static const struct tpm_input_header tpm_getcap_header = { 54806e93279SRoberto Sassu .tag = cpu_to_be16(TPM_TAG_RQU_COMMAND), 5499deb0eb7SJason Gunthorpe .length = cpu_to_be32(22), 550a69faebfSRoberto Sassu .ordinal = cpu_to_be32(TPM_ORD_GET_CAP) 5519deb0eb7SJason Gunthorpe }; 5529deb0eb7SJason Gunthorpe 55384fda152SJarkko Sakkinen ssize_t tpm_getcap(struct tpm_chip *chip, u32 subcap_id, cap_t *cap, 554c659af78SStefan Berger const char *desc, size_t min_cap_length) 5559deb0eb7SJason Gunthorpe { 556124bdcf4SJarkko Sakkinen struct tpm_buf buf; 5579deb0eb7SJason Gunthorpe int rc; 5589deb0eb7SJason Gunthorpe 559124bdcf4SJarkko Sakkinen rc = tpm_buf_init(&buf, TPM_TAG_RQU_COMMAND, TPM_ORD_GET_CAP); 560124bdcf4SJarkko Sakkinen if (rc) 561124bdcf4SJarkko Sakkinen return rc; 562124bdcf4SJarkko Sakkinen 56384fda152SJarkko Sakkinen if (subcap_id == TPM_CAP_VERSION_1_1 || 56484fda152SJarkko Sakkinen subcap_id == TPM_CAP_VERSION_1_2) { 565124bdcf4SJarkko Sakkinen tpm_buf_append_u32(&buf, subcap_id); 566124bdcf4SJarkko Sakkinen tpm_buf_append_u32(&buf, 0); 5679deb0eb7SJason Gunthorpe } else { 5689deb0eb7SJason Gunthorpe if (subcap_id == TPM_CAP_FLAG_PERM || 5699deb0eb7SJason Gunthorpe subcap_id == TPM_CAP_FLAG_VOL) 570124bdcf4SJarkko Sakkinen tpm_buf_append_u32(&buf, TPM_CAP_FLAG); 5719deb0eb7SJason Gunthorpe else 572124bdcf4SJarkko Sakkinen tpm_buf_append_u32(&buf, TPM_CAP_PROP); 573124bdcf4SJarkko Sakkinen 574124bdcf4SJarkko Sakkinen tpm_buf_append_u32(&buf, 4); 575124bdcf4SJarkko Sakkinen tpm_buf_append_u32(&buf, subcap_id); 5769deb0eb7SJason Gunthorpe } 577124bdcf4SJarkko Sakkinen rc = tpm_transmit_cmd(chip, NULL, buf.data, PAGE_SIZE, 578c659af78SStefan Berger min_cap_length, 0, desc); 5799deb0eb7SJason Gunthorpe if (!rc) 580124bdcf4SJarkko Sakkinen *cap = *(cap_t *)&buf.data[TPM_HEADER_SIZE + 4]; 581124bdcf4SJarkko Sakkinen 582124bdcf4SJarkko Sakkinen tpm_buf_destroy(&buf); 5839deb0eb7SJason Gunthorpe return rc; 5849deb0eb7SJason Gunthorpe } 585eb5854e7SJarkko Sakkinen EXPORT_SYMBOL_GPL(tpm_getcap); 5869deb0eb7SJason Gunthorpe 587a69faebfSRoberto Sassu #define TPM_ORD_STARTUP 153 5889deb0eb7SJason Gunthorpe #define TPM_ST_CLEAR cpu_to_be16(1) 5899deb0eb7SJason Gunthorpe #define TPM_ST_STATE cpu_to_be16(2) 5909deb0eb7SJason Gunthorpe #define TPM_ST_DEACTIVATED cpu_to_be16(3) 5919deb0eb7SJason Gunthorpe static const struct tpm_input_header tpm_startup_header = { 59206e93279SRoberto Sassu .tag = cpu_to_be16(TPM_TAG_RQU_COMMAND), 5939deb0eb7SJason Gunthorpe .length = cpu_to_be32(12), 594a69faebfSRoberto Sassu .ordinal = cpu_to_be32(TPM_ORD_STARTUP) 5959deb0eb7SJason Gunthorpe }; 5969deb0eb7SJason Gunthorpe 5979deb0eb7SJason Gunthorpe static int tpm_startup(struct tpm_chip *chip, __be16 startup_type) 5989deb0eb7SJason Gunthorpe { 5999deb0eb7SJason Gunthorpe struct tpm_cmd_t start_cmd; 6009deb0eb7SJason Gunthorpe start_cmd.header.in = tpm_startup_header; 6017a1d7e6dSJarkko Sakkinen 6029deb0eb7SJason Gunthorpe start_cmd.params.startup_in.startup_type = startup_type; 603745b361eSJarkko Sakkinen return tpm_transmit_cmd(chip, NULL, &start_cmd, 604745b361eSJarkko Sakkinen TPM_INTERNAL_RESULT_SIZE, 0, 605c659af78SStefan Berger 0, "attempting to start the TPM"); 6069deb0eb7SJason Gunthorpe } 6079deb0eb7SJason Gunthorpe 6089deb0eb7SJason Gunthorpe int tpm_get_timeouts(struct tpm_chip *chip) 6099deb0eb7SJason Gunthorpe { 610aaa6f7f6SEd Swierk cap_t cap; 6111d70fe9dSMaciej S. Szmigiero unsigned long timeout_old[4], timeout_chip[4], timeout_eff[4]; 6129deb0eb7SJason Gunthorpe ssize_t rc; 6139deb0eb7SJason Gunthorpe 614d1d253cfSJason Gunthorpe if (chip->flags & TPM_CHIP_FLAG_HAVE_TIMEOUTS) 615d1d253cfSJason Gunthorpe return 0; 616d1d253cfSJason Gunthorpe 61725112048SJason Gunthorpe if (chip->flags & TPM_CHIP_FLAG_TPM2) { 61825112048SJason Gunthorpe /* Fixed timeouts for TPM2 */ 619af782f33SChristophe Ricard chip->timeout_a = msecs_to_jiffies(TPM2_TIMEOUT_A); 620af782f33SChristophe Ricard chip->timeout_b = msecs_to_jiffies(TPM2_TIMEOUT_B); 621af782f33SChristophe Ricard chip->timeout_c = msecs_to_jiffies(TPM2_TIMEOUT_C); 622af782f33SChristophe Ricard chip->timeout_d = msecs_to_jiffies(TPM2_TIMEOUT_D); 623af782f33SChristophe Ricard chip->duration[TPM_SHORT] = 62425112048SJason Gunthorpe msecs_to_jiffies(TPM2_DURATION_SHORT); 625af782f33SChristophe Ricard chip->duration[TPM_MEDIUM] = 62625112048SJason Gunthorpe msecs_to_jiffies(TPM2_DURATION_MEDIUM); 627af782f33SChristophe Ricard chip->duration[TPM_LONG] = 62825112048SJason Gunthorpe msecs_to_jiffies(TPM2_DURATION_LONG); 629d1d253cfSJason Gunthorpe 630d1d253cfSJason Gunthorpe chip->flags |= TPM_CHIP_FLAG_HAVE_TIMEOUTS; 63125112048SJason Gunthorpe return 0; 63225112048SJason Gunthorpe } 63325112048SJason Gunthorpe 634c659af78SStefan Berger rc = tpm_getcap(chip, TPM_CAP_PROP_TIS_TIMEOUT, &cap, NULL, 635c659af78SStefan Berger sizeof(cap.timeout)); 6369deb0eb7SJason Gunthorpe if (rc == TPM_ERR_INVALID_POSTINIT) { 6379deb0eb7SJason Gunthorpe /* The TPM is not started, we are the first to talk to it. 6389deb0eb7SJason Gunthorpe Execute a startup command. */ 639aaa6f7f6SEd Swierk dev_info(&chip->dev, "Issuing TPM_STARTUP\n"); 6409deb0eb7SJason Gunthorpe if (tpm_startup(chip, TPM_ST_CLEAR)) 6419deb0eb7SJason Gunthorpe return rc; 6429deb0eb7SJason Gunthorpe 643aaa6f7f6SEd Swierk rc = tpm_getcap(chip, TPM_CAP_PROP_TIS_TIMEOUT, &cap, 644c659af78SStefan Berger "attempting to determine the timeouts", 645c659af78SStefan Berger sizeof(cap.timeout)); 6469deb0eb7SJason Gunthorpe } 647c659af78SStefan Berger 64862bfdacbSJason Gunthorpe if (rc) { 64962bfdacbSJason Gunthorpe dev_err(&chip->dev, 65062bfdacbSJason Gunthorpe "A TPM error (%zd) occurred attempting to determine the timeouts\n", 65162bfdacbSJason Gunthorpe rc); 652aaa6f7f6SEd Swierk return rc; 65362bfdacbSJason Gunthorpe } 6549deb0eb7SJason Gunthorpe 6551d70fe9dSMaciej S. Szmigiero timeout_old[0] = jiffies_to_usecs(chip->timeout_a); 6561d70fe9dSMaciej S. Szmigiero timeout_old[1] = jiffies_to_usecs(chip->timeout_b); 6571d70fe9dSMaciej S. Szmigiero timeout_old[2] = jiffies_to_usecs(chip->timeout_c); 6581d70fe9dSMaciej S. Szmigiero timeout_old[3] = jiffies_to_usecs(chip->timeout_d); 6591d70fe9dSMaciej S. Szmigiero timeout_chip[0] = be32_to_cpu(cap.timeout.a); 6601d70fe9dSMaciej S. Szmigiero timeout_chip[1] = be32_to_cpu(cap.timeout.b); 6611d70fe9dSMaciej S. Szmigiero timeout_chip[2] = be32_to_cpu(cap.timeout.c); 6621d70fe9dSMaciej S. Szmigiero timeout_chip[3] = be32_to_cpu(cap.timeout.d); 6631d70fe9dSMaciej S. Szmigiero memcpy(timeout_eff, timeout_chip, sizeof(timeout_eff)); 6648e54caf4SJason Gunthorpe 6658e54caf4SJason Gunthorpe /* 6668e54caf4SJason Gunthorpe * Provide ability for vendor overrides of timeout values in case 6678e54caf4SJason Gunthorpe * of misreporting. 6688e54caf4SJason Gunthorpe */ 6698e54caf4SJason Gunthorpe if (chip->ops->update_timeouts != NULL) 670af782f33SChristophe Ricard chip->timeout_adjusted = 6711d70fe9dSMaciej S. Szmigiero chip->ops->update_timeouts(chip, timeout_eff); 6728e54caf4SJason Gunthorpe 673af782f33SChristophe Ricard if (!chip->timeout_adjusted) { 6741d70fe9dSMaciej S. Szmigiero /* Restore default if chip reported 0 */ 6758e54caf4SJason Gunthorpe int i; 6768e54caf4SJason Gunthorpe 6771d70fe9dSMaciej S. Szmigiero for (i = 0; i < ARRAY_SIZE(timeout_eff); i++) { 6781d70fe9dSMaciej S. Szmigiero if (timeout_eff[i]) 6791d70fe9dSMaciej S. Szmigiero continue; 6801d70fe9dSMaciej S. Szmigiero 6811d70fe9dSMaciej S. Szmigiero timeout_eff[i] = timeout_old[i]; 6821d70fe9dSMaciej S. Szmigiero chip->timeout_adjusted = true; 6831d70fe9dSMaciej S. Szmigiero } 6841d70fe9dSMaciej S. Szmigiero 6851d70fe9dSMaciej S. Szmigiero if (timeout_eff[0] != 0 && timeout_eff[0] < 1000) { 6869deb0eb7SJason Gunthorpe /* timeouts in msec rather usec */ 6871d70fe9dSMaciej S. Szmigiero for (i = 0; i != ARRAY_SIZE(timeout_eff); i++) 6881d70fe9dSMaciej S. Szmigiero timeout_eff[i] *= 1000; 689af782f33SChristophe Ricard chip->timeout_adjusted = true; 6909deb0eb7SJason Gunthorpe } 6918e54caf4SJason Gunthorpe } 6928e54caf4SJason Gunthorpe 6938e54caf4SJason Gunthorpe /* Report adjusted timeouts */ 694af782f33SChristophe Ricard if (chip->timeout_adjusted) { 6958cfffc9dSJason Gunthorpe dev_info(&chip->dev, 6968e54caf4SJason Gunthorpe HW_ERR "Adjusting reported timeouts: A %lu->%luus B %lu->%luus C %lu->%luus D %lu->%luus\n", 6971d70fe9dSMaciej S. Szmigiero timeout_chip[0], timeout_eff[0], 6981d70fe9dSMaciej S. Szmigiero timeout_chip[1], timeout_eff[1], 6991d70fe9dSMaciej S. Szmigiero timeout_chip[2], timeout_eff[2], 7001d70fe9dSMaciej S. Szmigiero timeout_chip[3], timeout_eff[3]); 7018e54caf4SJason Gunthorpe } 7028e54caf4SJason Gunthorpe 7031d70fe9dSMaciej S. Szmigiero chip->timeout_a = usecs_to_jiffies(timeout_eff[0]); 7041d70fe9dSMaciej S. Szmigiero chip->timeout_b = usecs_to_jiffies(timeout_eff[1]); 7051d70fe9dSMaciej S. Szmigiero chip->timeout_c = usecs_to_jiffies(timeout_eff[2]); 7061d70fe9dSMaciej S. Szmigiero chip->timeout_d = usecs_to_jiffies(timeout_eff[3]); 7079deb0eb7SJason Gunthorpe 708aaa6f7f6SEd Swierk rc = tpm_getcap(chip, TPM_CAP_PROP_TIS_DURATION, &cap, 709c659af78SStefan Berger "attempting to determine the durations", 710c659af78SStefan Berger sizeof(cap.duration)); 7119deb0eb7SJason Gunthorpe if (rc) 7129deb0eb7SJason Gunthorpe return rc; 7139deb0eb7SJason Gunthorpe 714af782f33SChristophe Ricard chip->duration[TPM_SHORT] = 715aaa6f7f6SEd Swierk usecs_to_jiffies(be32_to_cpu(cap.duration.tpm_short)); 716af782f33SChristophe Ricard chip->duration[TPM_MEDIUM] = 717aaa6f7f6SEd Swierk usecs_to_jiffies(be32_to_cpu(cap.duration.tpm_medium)); 718af782f33SChristophe Ricard chip->duration[TPM_LONG] = 719aaa6f7f6SEd Swierk usecs_to_jiffies(be32_to_cpu(cap.duration.tpm_long)); 7209deb0eb7SJason Gunthorpe 7219deb0eb7SJason Gunthorpe /* The Broadcom BCM0102 chipset in a Dell Latitude D820 gets the above 7229deb0eb7SJason Gunthorpe * value wrong and apparently reports msecs rather than usecs. So we 7239deb0eb7SJason Gunthorpe * fix up the resulting too-small TPM_SHORT value to make things work. 7249deb0eb7SJason Gunthorpe * We also scale the TPM_MEDIUM and -_LONG values by 1000. 7259deb0eb7SJason Gunthorpe */ 726af782f33SChristophe Ricard if (chip->duration[TPM_SHORT] < (HZ / 100)) { 727af782f33SChristophe Ricard chip->duration[TPM_SHORT] = HZ; 728af782f33SChristophe Ricard chip->duration[TPM_MEDIUM] *= 1000; 729af782f33SChristophe Ricard chip->duration[TPM_LONG] *= 1000; 730af782f33SChristophe Ricard chip->duration_adjusted = true; 7318cfffc9dSJason Gunthorpe dev_info(&chip->dev, "Adjusting TPM timeout parameters."); 7329deb0eb7SJason Gunthorpe } 733d1d253cfSJason Gunthorpe 734d1d253cfSJason Gunthorpe chip->flags |= TPM_CHIP_FLAG_HAVE_TIMEOUTS; 7359deb0eb7SJason Gunthorpe return 0; 7369deb0eb7SJason Gunthorpe } 7379deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_get_timeouts); 7389deb0eb7SJason Gunthorpe 7399deb0eb7SJason Gunthorpe #define TPM_ORD_CONTINUE_SELFTEST 83 7409deb0eb7SJason Gunthorpe #define CONTINUE_SELFTEST_RESULT_SIZE 10 7419deb0eb7SJason Gunthorpe 7420014777fSJulia Lawall static const struct tpm_input_header continue_selftest_header = { 74306e93279SRoberto Sassu .tag = cpu_to_be16(TPM_TAG_RQU_COMMAND), 7449deb0eb7SJason Gunthorpe .length = cpu_to_be32(10), 7459deb0eb7SJason Gunthorpe .ordinal = cpu_to_be32(TPM_ORD_CONTINUE_SELFTEST), 7469deb0eb7SJason Gunthorpe }; 7479deb0eb7SJason Gunthorpe 7489deb0eb7SJason Gunthorpe /** 7499deb0eb7SJason Gunthorpe * tpm_continue_selftest -- run TPM's selftest 7509deb0eb7SJason Gunthorpe * @chip: TPM chip to use 7519deb0eb7SJason Gunthorpe * 7529deb0eb7SJason Gunthorpe * Returns 0 on success, < 0 in case of fatal error or a value > 0 representing 7539deb0eb7SJason Gunthorpe * a TPM error code. 7549deb0eb7SJason Gunthorpe */ 7559deb0eb7SJason Gunthorpe static int tpm_continue_selftest(struct tpm_chip *chip) 7569deb0eb7SJason Gunthorpe { 7579deb0eb7SJason Gunthorpe int rc; 7589deb0eb7SJason Gunthorpe struct tpm_cmd_t cmd; 7599deb0eb7SJason Gunthorpe 7609deb0eb7SJason Gunthorpe cmd.header.in = continue_selftest_header; 761745b361eSJarkko Sakkinen rc = tpm_transmit_cmd(chip, NULL, &cmd, CONTINUE_SELFTEST_RESULT_SIZE, 762745b361eSJarkko Sakkinen 0, 0, "continue selftest"); 7639deb0eb7SJason Gunthorpe return rc; 7649deb0eb7SJason Gunthorpe } 7659deb0eb7SJason Gunthorpe 766a69faebfSRoberto Sassu #define TPM_ORDINAL_PCRREAD 21 7679deb0eb7SJason Gunthorpe #define READ_PCR_RESULT_SIZE 30 768c659af78SStefan Berger #define READ_PCR_RESULT_BODY_SIZE 20 7690014777fSJulia Lawall static const struct tpm_input_header pcrread_header = { 77006e93279SRoberto Sassu .tag = cpu_to_be16(TPM_TAG_RQU_COMMAND), 7719deb0eb7SJason Gunthorpe .length = cpu_to_be32(14), 772a69faebfSRoberto Sassu .ordinal = cpu_to_be32(TPM_ORDINAL_PCRREAD) 7739deb0eb7SJason Gunthorpe }; 7749deb0eb7SJason Gunthorpe 775000a07b0SJason Gunthorpe int tpm_pcr_read_dev(struct tpm_chip *chip, int pcr_idx, u8 *res_buf) 7769deb0eb7SJason Gunthorpe { 7779deb0eb7SJason Gunthorpe int rc; 7789deb0eb7SJason Gunthorpe struct tpm_cmd_t cmd; 7799deb0eb7SJason Gunthorpe 7809deb0eb7SJason Gunthorpe cmd.header.in = pcrread_header; 7819deb0eb7SJason Gunthorpe cmd.params.pcrread_in.pcr_idx = cpu_to_be32(pcr_idx); 782745b361eSJarkko Sakkinen rc = tpm_transmit_cmd(chip, NULL, &cmd, READ_PCR_RESULT_SIZE, 783c659af78SStefan Berger READ_PCR_RESULT_BODY_SIZE, 0, 7849deb0eb7SJason Gunthorpe "attempting to read a pcr value"); 7859deb0eb7SJason Gunthorpe 7869deb0eb7SJason Gunthorpe if (rc == 0) 7879deb0eb7SJason Gunthorpe memcpy(res_buf, cmd.params.pcrread_out.pcr_result, 7889deb0eb7SJason Gunthorpe TPM_DIGEST_SIZE); 7899deb0eb7SJason Gunthorpe return rc; 7909deb0eb7SJason Gunthorpe } 7919deb0eb7SJason Gunthorpe 7929deb0eb7SJason Gunthorpe /** 793954650efSJarkko Sakkinen * tpm_is_tpm2 - is the chip a TPM2 chip? 794954650efSJarkko Sakkinen * @chip_num: tpm idx # or ANY 795954650efSJarkko Sakkinen * 796954650efSJarkko Sakkinen * Returns < 0 on error, and 1 or 0 on success depending whether the chip 797954650efSJarkko Sakkinen * is a TPM2 chip. 798954650efSJarkko Sakkinen */ 799954650efSJarkko Sakkinen int tpm_is_tpm2(u32 chip_num) 800954650efSJarkko Sakkinen { 801954650efSJarkko Sakkinen struct tpm_chip *chip; 802954650efSJarkko Sakkinen int rc; 803954650efSJarkko Sakkinen 804954650efSJarkko Sakkinen chip = tpm_chip_find_get(chip_num); 805954650efSJarkko Sakkinen if (chip == NULL) 806954650efSJarkko Sakkinen return -ENODEV; 807954650efSJarkko Sakkinen 808954650efSJarkko Sakkinen rc = (chip->flags & TPM_CHIP_FLAG_TPM2) != 0; 809954650efSJarkko Sakkinen 8104e26195fSJason Gunthorpe tpm_put_ops(chip); 811954650efSJarkko Sakkinen 812954650efSJarkko Sakkinen return rc; 813954650efSJarkko Sakkinen } 814954650efSJarkko Sakkinen EXPORT_SYMBOL_GPL(tpm_is_tpm2); 815954650efSJarkko Sakkinen 816954650efSJarkko Sakkinen /** 8179deb0eb7SJason Gunthorpe * tpm_pcr_read - read a pcr value 8189deb0eb7SJason Gunthorpe * @chip_num: tpm idx # or ANY 8199deb0eb7SJason Gunthorpe * @pcr_idx: pcr idx to retrieve 8209deb0eb7SJason Gunthorpe * @res_buf: TPM_PCR value 8219deb0eb7SJason Gunthorpe * size of res_buf is 20 bytes (or NULL if you don't care) 8229deb0eb7SJason Gunthorpe * 8239deb0eb7SJason Gunthorpe * The TPM driver should be built-in, but for whatever reason it 8249deb0eb7SJason Gunthorpe * isn't, protect against the chip disappearing, by incrementing 8259deb0eb7SJason Gunthorpe * the module usage count. 8269deb0eb7SJason Gunthorpe */ 8279deb0eb7SJason Gunthorpe int tpm_pcr_read(u32 chip_num, int pcr_idx, u8 *res_buf) 8289deb0eb7SJason Gunthorpe { 8299deb0eb7SJason Gunthorpe struct tpm_chip *chip; 8309deb0eb7SJason Gunthorpe int rc; 8319deb0eb7SJason Gunthorpe 8329deb0eb7SJason Gunthorpe chip = tpm_chip_find_get(chip_num); 8339deb0eb7SJason Gunthorpe if (chip == NULL) 8349deb0eb7SJason Gunthorpe return -ENODEV; 8357a1d7e6dSJarkko Sakkinen if (chip->flags & TPM_CHIP_FLAG_TPM2) 8367a1d7e6dSJarkko Sakkinen rc = tpm2_pcr_read(chip, pcr_idx, res_buf); 8377a1d7e6dSJarkko Sakkinen else 838000a07b0SJason Gunthorpe rc = tpm_pcr_read_dev(chip, pcr_idx, res_buf); 8394e26195fSJason Gunthorpe tpm_put_ops(chip); 8409deb0eb7SJason Gunthorpe return rc; 8419deb0eb7SJason Gunthorpe } 8429deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_pcr_read); 8439deb0eb7SJason Gunthorpe 844a69faebfSRoberto Sassu #define TPM_ORD_PCR_EXTEND 20 845ca6d4580SWinkler, Tomas #define EXTEND_PCR_RESULT_SIZE 34 84651b0be64SStefan Berger #define EXTEND_PCR_RESULT_BODY_SIZE 20 847ca6d4580SWinkler, Tomas static const struct tpm_input_header pcrextend_header = { 84806e93279SRoberto Sassu .tag = cpu_to_be16(TPM_TAG_RQU_COMMAND), 849ca6d4580SWinkler, Tomas .length = cpu_to_be32(34), 850a69faebfSRoberto Sassu .ordinal = cpu_to_be32(TPM_ORD_PCR_EXTEND) 851ca6d4580SWinkler, Tomas }; 852ca6d4580SWinkler, Tomas 853175d5b2aSRoberto Sassu static int tpm1_pcr_extend(struct tpm_chip *chip, int pcr_idx, const u8 *hash, 854175d5b2aSRoberto Sassu char *log_msg) 855175d5b2aSRoberto Sassu { 856175d5b2aSRoberto Sassu struct tpm_buf buf; 857175d5b2aSRoberto Sassu int rc; 858175d5b2aSRoberto Sassu 859175d5b2aSRoberto Sassu rc = tpm_buf_init(&buf, TPM_TAG_RQU_COMMAND, TPM_ORD_PCR_EXTEND); 860175d5b2aSRoberto Sassu if (rc) 861175d5b2aSRoberto Sassu return rc; 862175d5b2aSRoberto Sassu 863175d5b2aSRoberto Sassu tpm_buf_append_u32(&buf, pcr_idx); 864175d5b2aSRoberto Sassu tpm_buf_append(&buf, hash, TPM_DIGEST_SIZE); 865175d5b2aSRoberto Sassu 866175d5b2aSRoberto Sassu rc = tpm_transmit_cmd(chip, NULL, buf.data, EXTEND_PCR_RESULT_SIZE, 867175d5b2aSRoberto Sassu EXTEND_PCR_RESULT_BODY_SIZE, 0, log_msg); 868175d5b2aSRoberto Sassu tpm_buf_destroy(&buf); 869175d5b2aSRoberto Sassu return rc; 870175d5b2aSRoberto Sassu } 871175d5b2aSRoberto Sassu 8729deb0eb7SJason Gunthorpe /** 8739deb0eb7SJason Gunthorpe * tpm_pcr_extend - extend pcr value with hash 8749deb0eb7SJason Gunthorpe * @chip_num: tpm idx # or AN& 8759deb0eb7SJason Gunthorpe * @pcr_idx: pcr idx to extend 8769deb0eb7SJason Gunthorpe * @hash: hash value used to extend pcr value 8779deb0eb7SJason Gunthorpe * 8789deb0eb7SJason Gunthorpe * The TPM driver should be built-in, but for whatever reason it 8799deb0eb7SJason Gunthorpe * isn't, protect against the chip disappearing, by incrementing 8809deb0eb7SJason Gunthorpe * the module usage count. 8819deb0eb7SJason Gunthorpe */ 8829deb0eb7SJason Gunthorpe int tpm_pcr_extend(u32 chip_num, int pcr_idx, const u8 *hash) 8839deb0eb7SJason Gunthorpe { 8849deb0eb7SJason Gunthorpe int rc; 8859deb0eb7SJason Gunthorpe struct tpm_chip *chip; 886c1f92b4bSNayna Jain struct tpm2_digest digest_list[ARRAY_SIZE(chip->active_banks)]; 887c1f92b4bSNayna Jain u32 count = 0; 888c1f92b4bSNayna Jain int i; 8899deb0eb7SJason Gunthorpe 8909deb0eb7SJason Gunthorpe chip = tpm_chip_find_get(chip_num); 8919deb0eb7SJason Gunthorpe if (chip == NULL) 8929deb0eb7SJason Gunthorpe return -ENODEV; 8939deb0eb7SJason Gunthorpe 8947a1d7e6dSJarkko Sakkinen if (chip->flags & TPM_CHIP_FLAG_TPM2) { 895c1f92b4bSNayna Jain memset(digest_list, 0, sizeof(digest_list)); 896c1f92b4bSNayna Jain 89770ea1636SDan Carpenter for (i = 0; i < ARRAY_SIZE(chip->active_banks) && 89870ea1636SDan Carpenter chip->active_banks[i] != TPM2_ALG_ERROR; i++) { 899c1f92b4bSNayna Jain digest_list[i].alg_id = chip->active_banks[i]; 900c1f92b4bSNayna Jain memcpy(digest_list[i].digest, hash, TPM_DIGEST_SIZE); 901c1f92b4bSNayna Jain count++; 902c1f92b4bSNayna Jain } 903c1f92b4bSNayna Jain 904c1f92b4bSNayna Jain rc = tpm2_pcr_extend(chip, pcr_idx, count, digest_list); 9054e26195fSJason Gunthorpe tpm_put_ops(chip); 9067a1d7e6dSJarkko Sakkinen return rc; 9077a1d7e6dSJarkko Sakkinen } 9087a1d7e6dSJarkko Sakkinen 909175d5b2aSRoberto Sassu rc = tpm1_pcr_extend(chip, pcr_idx, hash, 9109deb0eb7SJason Gunthorpe "attempting extend a PCR value"); 9114e26195fSJason Gunthorpe tpm_put_ops(chip); 9129deb0eb7SJason Gunthorpe return rc; 9139deb0eb7SJason Gunthorpe } 9149deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_pcr_extend); 9159deb0eb7SJason Gunthorpe 9169deb0eb7SJason Gunthorpe /** 9179deb0eb7SJason Gunthorpe * tpm_do_selftest - have the TPM continue its selftest and wait until it 9189deb0eb7SJason Gunthorpe * can receive further commands 9199deb0eb7SJason Gunthorpe * @chip: TPM chip to use 9209deb0eb7SJason Gunthorpe * 9219deb0eb7SJason Gunthorpe * Returns 0 on success, < 0 in case of fatal error or a value > 0 representing 9229deb0eb7SJason Gunthorpe * a TPM error code. 9239deb0eb7SJason Gunthorpe */ 9249deb0eb7SJason Gunthorpe int tpm_do_selftest(struct tpm_chip *chip) 9259deb0eb7SJason Gunthorpe { 9269deb0eb7SJason Gunthorpe int rc; 9279deb0eb7SJason Gunthorpe unsigned int loops; 9289deb0eb7SJason Gunthorpe unsigned int delay_msec = 100; 9299deb0eb7SJason Gunthorpe unsigned long duration; 9300c541332SJarkko Sakkinen u8 dummy[TPM_DIGEST_SIZE]; 9319deb0eb7SJason Gunthorpe 9329deb0eb7SJason Gunthorpe duration = tpm_calc_ordinal_duration(chip, TPM_ORD_CONTINUE_SELFTEST); 9339deb0eb7SJason Gunthorpe 9349deb0eb7SJason Gunthorpe loops = jiffies_to_msecs(duration) / delay_msec; 9359deb0eb7SJason Gunthorpe 9369deb0eb7SJason Gunthorpe rc = tpm_continue_selftest(chip); 9379deb0eb7SJason Gunthorpe /* This may fail if there was no TPM driver during a suspend/resume 9389deb0eb7SJason Gunthorpe * cycle; some may return 10 (BAD_ORDINAL), others 28 (FAILEDSELFTEST) 9399deb0eb7SJason Gunthorpe */ 9409deb0eb7SJason Gunthorpe if (rc) 9419deb0eb7SJason Gunthorpe return rc; 9429deb0eb7SJason Gunthorpe 9439deb0eb7SJason Gunthorpe do { 9449deb0eb7SJason Gunthorpe /* Attempt to read a PCR value */ 9450c541332SJarkko Sakkinen rc = tpm_pcr_read_dev(chip, 0, dummy); 9460c541332SJarkko Sakkinen 9479deb0eb7SJason Gunthorpe /* Some buggy TPMs will not respond to tpm_tis_ready() for 9489deb0eb7SJason Gunthorpe * around 300ms while the self test is ongoing, keep trying 9499deb0eb7SJason Gunthorpe * until the self test duration expires. */ 9509deb0eb7SJason Gunthorpe if (rc == -ETIME) { 9518cfffc9dSJason Gunthorpe dev_info( 9528cfffc9dSJason Gunthorpe &chip->dev, HW_ERR 9538cfffc9dSJason Gunthorpe "TPM command timed out during continue self test"); 9549deb0eb7SJason Gunthorpe msleep(delay_msec); 9559deb0eb7SJason Gunthorpe continue; 9569deb0eb7SJason Gunthorpe } 9579deb0eb7SJason Gunthorpe 9589deb0eb7SJason Gunthorpe if (rc == TPM_ERR_DISABLED || rc == TPM_ERR_DEACTIVATED) { 9598cfffc9dSJason Gunthorpe dev_info(&chip->dev, 9609deb0eb7SJason Gunthorpe "TPM is disabled/deactivated (0x%X)\n", rc); 9619deb0eb7SJason Gunthorpe /* TPM is disabled and/or deactivated; driver can 9629deb0eb7SJason Gunthorpe * proceed and TPM does handle commands for 9639deb0eb7SJason Gunthorpe * suspend/resume correctly 9649deb0eb7SJason Gunthorpe */ 9659deb0eb7SJason Gunthorpe return 0; 9669deb0eb7SJason Gunthorpe } 9679deb0eb7SJason Gunthorpe if (rc != TPM_WARN_DOING_SELFTEST) 9689deb0eb7SJason Gunthorpe return rc; 9699deb0eb7SJason Gunthorpe msleep(delay_msec); 9709deb0eb7SJason Gunthorpe } while (--loops > 0); 9719deb0eb7SJason Gunthorpe 9729deb0eb7SJason Gunthorpe return rc; 9739deb0eb7SJason Gunthorpe } 9749deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_do_selftest); 9759deb0eb7SJason Gunthorpe 976cae8b441SJason Gunthorpe /** 977cae8b441SJason Gunthorpe * tpm1_auto_startup - Perform the standard automatic TPM initialization 978cae8b441SJason Gunthorpe * sequence 979cae8b441SJason Gunthorpe * @chip: TPM chip to use 980cae8b441SJason Gunthorpe * 981cae8b441SJason Gunthorpe * Returns 0 on success, < 0 in case of fatal error. 982cae8b441SJason Gunthorpe */ 983cae8b441SJason Gunthorpe int tpm1_auto_startup(struct tpm_chip *chip) 984cae8b441SJason Gunthorpe { 985cae8b441SJason Gunthorpe int rc; 986cae8b441SJason Gunthorpe 987cae8b441SJason Gunthorpe rc = tpm_get_timeouts(chip); 988cae8b441SJason Gunthorpe if (rc) 989cae8b441SJason Gunthorpe goto out; 990cae8b441SJason Gunthorpe rc = tpm_do_selftest(chip); 991cae8b441SJason Gunthorpe if (rc) { 992cae8b441SJason Gunthorpe dev_err(&chip->dev, "TPM self test failed\n"); 993cae8b441SJason Gunthorpe goto out; 994cae8b441SJason Gunthorpe } 995cae8b441SJason Gunthorpe 996cae8b441SJason Gunthorpe return rc; 997cae8b441SJason Gunthorpe out: 998cae8b441SJason Gunthorpe if (rc > 0) 999cae8b441SJason Gunthorpe rc = -ENODEV; 1000cae8b441SJason Gunthorpe return rc; 1001cae8b441SJason Gunthorpe } 1002cae8b441SJason Gunthorpe 10039deb0eb7SJason Gunthorpe int tpm_send(u32 chip_num, void *cmd, size_t buflen) 10049deb0eb7SJason Gunthorpe { 10059deb0eb7SJason Gunthorpe struct tpm_chip *chip; 10069deb0eb7SJason Gunthorpe int rc; 10079deb0eb7SJason Gunthorpe 10089deb0eb7SJason Gunthorpe chip = tpm_chip_find_get(chip_num); 10099deb0eb7SJason Gunthorpe if (chip == NULL) 10109deb0eb7SJason Gunthorpe return -ENODEV; 10119deb0eb7SJason Gunthorpe 1012745b361eSJarkko Sakkinen rc = tpm_transmit_cmd(chip, NULL, cmd, buflen, 0, 0, 1013745b361eSJarkko Sakkinen "attempting tpm_cmd"); 10144e26195fSJason Gunthorpe tpm_put_ops(chip); 10159deb0eb7SJason Gunthorpe return rc; 10169deb0eb7SJason Gunthorpe } 10179deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_send); 10189deb0eb7SJason Gunthorpe 10199deb0eb7SJason Gunthorpe static bool wait_for_tpm_stat_cond(struct tpm_chip *chip, u8 mask, 10209deb0eb7SJason Gunthorpe bool check_cancel, bool *canceled) 10219deb0eb7SJason Gunthorpe { 10225f82e9f0SJason Gunthorpe u8 status = chip->ops->status(chip); 10239deb0eb7SJason Gunthorpe 10249deb0eb7SJason Gunthorpe *canceled = false; 10259deb0eb7SJason Gunthorpe if ((status & mask) == mask) 10269deb0eb7SJason Gunthorpe return true; 10275f82e9f0SJason Gunthorpe if (check_cancel && chip->ops->req_canceled(chip, status)) { 10289deb0eb7SJason Gunthorpe *canceled = true; 10299deb0eb7SJason Gunthorpe return true; 10309deb0eb7SJason Gunthorpe } 10319deb0eb7SJason Gunthorpe return false; 10329deb0eb7SJason Gunthorpe } 10339deb0eb7SJason Gunthorpe 10349deb0eb7SJason Gunthorpe int wait_for_tpm_stat(struct tpm_chip *chip, u8 mask, unsigned long timeout, 10359deb0eb7SJason Gunthorpe wait_queue_head_t *queue, bool check_cancel) 10369deb0eb7SJason Gunthorpe { 10379deb0eb7SJason Gunthorpe unsigned long stop; 10389deb0eb7SJason Gunthorpe long rc; 10399deb0eb7SJason Gunthorpe u8 status; 10409deb0eb7SJason Gunthorpe bool canceled = false; 10419deb0eb7SJason Gunthorpe 10429deb0eb7SJason Gunthorpe /* check current status */ 10435f82e9f0SJason Gunthorpe status = chip->ops->status(chip); 10449deb0eb7SJason Gunthorpe if ((status & mask) == mask) 10459deb0eb7SJason Gunthorpe return 0; 10469deb0eb7SJason Gunthorpe 10479deb0eb7SJason Gunthorpe stop = jiffies + timeout; 10489deb0eb7SJason Gunthorpe 1049570a3609SChristophe Ricard if (chip->flags & TPM_CHIP_FLAG_IRQ) { 10509deb0eb7SJason Gunthorpe again: 10519deb0eb7SJason Gunthorpe timeout = stop - jiffies; 10529deb0eb7SJason Gunthorpe if ((long)timeout <= 0) 10539deb0eb7SJason Gunthorpe return -ETIME; 10549deb0eb7SJason Gunthorpe rc = wait_event_interruptible_timeout(*queue, 10559deb0eb7SJason Gunthorpe wait_for_tpm_stat_cond(chip, mask, check_cancel, 10569deb0eb7SJason Gunthorpe &canceled), 10579deb0eb7SJason Gunthorpe timeout); 10589deb0eb7SJason Gunthorpe if (rc > 0) { 10599deb0eb7SJason Gunthorpe if (canceled) 10609deb0eb7SJason Gunthorpe return -ECANCELED; 10619deb0eb7SJason Gunthorpe return 0; 10629deb0eb7SJason Gunthorpe } 10639deb0eb7SJason Gunthorpe if (rc == -ERESTARTSYS && freezing(current)) { 10649deb0eb7SJason Gunthorpe clear_thread_flag(TIF_SIGPENDING); 10659deb0eb7SJason Gunthorpe goto again; 10669deb0eb7SJason Gunthorpe } 10679deb0eb7SJason Gunthorpe } else { 10689deb0eb7SJason Gunthorpe do { 10699deb0eb7SJason Gunthorpe msleep(TPM_TIMEOUT); 10705f82e9f0SJason Gunthorpe status = chip->ops->status(chip); 10719deb0eb7SJason Gunthorpe if ((status & mask) == mask) 10729deb0eb7SJason Gunthorpe return 0; 10739deb0eb7SJason Gunthorpe } while (time_before(jiffies, stop)); 10749deb0eb7SJason Gunthorpe } 10759deb0eb7SJason Gunthorpe return -ETIME; 10769deb0eb7SJason Gunthorpe } 10779deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(wait_for_tpm_stat); 10789deb0eb7SJason Gunthorpe 1079a69faebfSRoberto Sassu #define TPM_ORD_SAVESTATE 152 10809deb0eb7SJason Gunthorpe #define SAVESTATE_RESULT_SIZE 10 10819deb0eb7SJason Gunthorpe 10820014777fSJulia Lawall static const struct tpm_input_header savestate_header = { 108306e93279SRoberto Sassu .tag = cpu_to_be16(TPM_TAG_RQU_COMMAND), 10849deb0eb7SJason Gunthorpe .length = cpu_to_be32(10), 1085a69faebfSRoberto Sassu .ordinal = cpu_to_be32(TPM_ORD_SAVESTATE) 10869deb0eb7SJason Gunthorpe }; 10879deb0eb7SJason Gunthorpe 10889deb0eb7SJason Gunthorpe /* 10899deb0eb7SJason Gunthorpe * We are about to suspend. Save the TPM state 10909deb0eb7SJason Gunthorpe * so that it can be restored. 10919deb0eb7SJason Gunthorpe */ 10929deb0eb7SJason Gunthorpe int tpm_pm_suspend(struct device *dev) 10939deb0eb7SJason Gunthorpe { 1094ec03c50bSStefan Berger struct tpm_chip *chip = dev_get_drvdata(dev); 10959deb0eb7SJason Gunthorpe struct tpm_cmd_t cmd; 10969deb0eb7SJason Gunthorpe int rc, try; 10979deb0eb7SJason Gunthorpe 10989deb0eb7SJason Gunthorpe u8 dummy_hash[TPM_DIGEST_SIZE] = { 0 }; 10999deb0eb7SJason Gunthorpe 11009deb0eb7SJason Gunthorpe if (chip == NULL) 11019deb0eb7SJason Gunthorpe return -ENODEV; 11029deb0eb7SJason Gunthorpe 110374d6b3ceSJarkko Sakkinen if (chip->flags & TPM_CHIP_FLAG_TPM2) { 110474d6b3ceSJarkko Sakkinen tpm2_shutdown(chip, TPM2_SU_STATE); 110574d6b3ceSJarkko Sakkinen return 0; 110674d6b3ceSJarkko Sakkinen } 110730fc8d13SJarkko Sakkinen 11089deb0eb7SJason Gunthorpe /* for buggy tpm, flush pcrs with extend to selected dummy */ 1109175d5b2aSRoberto Sassu if (tpm_suspend_pcr) 1110175d5b2aSRoberto Sassu rc = tpm1_pcr_extend(chip, tpm_suspend_pcr, dummy_hash, 11119deb0eb7SJason Gunthorpe "extending dummy pcr before suspend"); 11129deb0eb7SJason Gunthorpe 11139deb0eb7SJason Gunthorpe /* now do the actual savestate */ 11149deb0eb7SJason Gunthorpe for (try = 0; try < TPM_RETRY; try++) { 11159deb0eb7SJason Gunthorpe cmd.header.in = savestate_header; 1116745b361eSJarkko Sakkinen rc = tpm_transmit_cmd(chip, NULL, &cmd, SAVESTATE_RESULT_SIZE, 1117745b361eSJarkko Sakkinen 0, 0, NULL); 11189deb0eb7SJason Gunthorpe 11199deb0eb7SJason Gunthorpe /* 11209deb0eb7SJason Gunthorpe * If the TPM indicates that it is too busy to respond to 11219deb0eb7SJason Gunthorpe * this command then retry before giving up. It can take 11229deb0eb7SJason Gunthorpe * several seconds for this TPM to be ready. 11239deb0eb7SJason Gunthorpe * 11249deb0eb7SJason Gunthorpe * This can happen if the TPM has already been sent the 11259deb0eb7SJason Gunthorpe * SaveState command before the driver has loaded. TCG 1.2 11269deb0eb7SJason Gunthorpe * specification states that any communication after SaveState 11279deb0eb7SJason Gunthorpe * may cause the TPM to invalidate previously saved state. 11289deb0eb7SJason Gunthorpe */ 11299deb0eb7SJason Gunthorpe if (rc != TPM_WARN_RETRY) 11309deb0eb7SJason Gunthorpe break; 11319deb0eb7SJason Gunthorpe msleep(TPM_TIMEOUT_RETRY); 11329deb0eb7SJason Gunthorpe } 11339deb0eb7SJason Gunthorpe 11349deb0eb7SJason Gunthorpe if (rc) 11358cfffc9dSJason Gunthorpe dev_err(&chip->dev, 11369deb0eb7SJason Gunthorpe "Error (%d) sending savestate before suspend\n", rc); 11379deb0eb7SJason Gunthorpe else if (try > 0) 11388cfffc9dSJason Gunthorpe dev_warn(&chip->dev, "TPM savestate took %dms\n", 11399deb0eb7SJason Gunthorpe try * TPM_TIMEOUT_RETRY); 11409deb0eb7SJason Gunthorpe 11419deb0eb7SJason Gunthorpe return rc; 11429deb0eb7SJason Gunthorpe } 11439deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_pm_suspend); 11449deb0eb7SJason Gunthorpe 11459deb0eb7SJason Gunthorpe /* 11469deb0eb7SJason Gunthorpe * Resume from a power safe. The BIOS already restored 11479deb0eb7SJason Gunthorpe * the TPM state. 11489deb0eb7SJason Gunthorpe */ 11499deb0eb7SJason Gunthorpe int tpm_pm_resume(struct device *dev) 11509deb0eb7SJason Gunthorpe { 1151ec03c50bSStefan Berger struct tpm_chip *chip = dev_get_drvdata(dev); 11529deb0eb7SJason Gunthorpe 11539deb0eb7SJason Gunthorpe if (chip == NULL) 11549deb0eb7SJason Gunthorpe return -ENODEV; 11559deb0eb7SJason Gunthorpe 11569deb0eb7SJason Gunthorpe return 0; 11579deb0eb7SJason Gunthorpe } 11589deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_pm_resume); 11599deb0eb7SJason Gunthorpe 11609deb0eb7SJason Gunthorpe #define TPM_GETRANDOM_RESULT_SIZE 18 11610014777fSJulia Lawall static const struct tpm_input_header tpm_getrandom_header = { 116206e93279SRoberto Sassu .tag = cpu_to_be16(TPM_TAG_RQU_COMMAND), 11639deb0eb7SJason Gunthorpe .length = cpu_to_be32(14), 1164a69faebfSRoberto Sassu .ordinal = cpu_to_be32(TPM_ORD_GET_RANDOM) 11659deb0eb7SJason Gunthorpe }; 11669deb0eb7SJason Gunthorpe 11679deb0eb7SJason Gunthorpe /** 11689deb0eb7SJason Gunthorpe * tpm_get_random() - Get random bytes from the tpm's RNG 11699deb0eb7SJason Gunthorpe * @chip_num: A specific chip number for the request or TPM_ANY_NUM 11709deb0eb7SJason Gunthorpe * @out: destination buffer for the random bytes 11719deb0eb7SJason Gunthorpe * @max: the max number of bytes to write to @out 11729deb0eb7SJason Gunthorpe * 11739deb0eb7SJason Gunthorpe * Returns < 0 on error and the number of bytes read on success 11749deb0eb7SJason Gunthorpe */ 11759deb0eb7SJason Gunthorpe int tpm_get_random(u32 chip_num, u8 *out, size_t max) 11769deb0eb7SJason Gunthorpe { 11779deb0eb7SJason Gunthorpe struct tpm_chip *chip; 11789deb0eb7SJason Gunthorpe struct tpm_cmd_t tpm_cmd; 1179c659af78SStefan Berger u32 recd, num_bytes = min_t(u32, max, TPM_MAX_RNG_DATA), rlength; 11809deb0eb7SJason Gunthorpe int err, total = 0, retries = 5; 11819deb0eb7SJason Gunthorpe u8 *dest = out; 11829deb0eb7SJason Gunthorpe 11833e14d83eSJarkko Sakkinen if (!out || !num_bytes || max > TPM_MAX_RNG_DATA) 11843e14d83eSJarkko Sakkinen return -EINVAL; 11853e14d83eSJarkko Sakkinen 11869deb0eb7SJason Gunthorpe chip = tpm_chip_find_get(chip_num); 11879deb0eb7SJason Gunthorpe if (chip == NULL) 11889deb0eb7SJason Gunthorpe return -ENODEV; 11899deb0eb7SJason Gunthorpe 11907a1d7e6dSJarkko Sakkinen if (chip->flags & TPM_CHIP_FLAG_TPM2) { 11917a1d7e6dSJarkko Sakkinen err = tpm2_get_random(chip, out, max); 11924e26195fSJason Gunthorpe tpm_put_ops(chip); 11937a1d7e6dSJarkko Sakkinen return err; 11947a1d7e6dSJarkko Sakkinen } 11957a1d7e6dSJarkko Sakkinen 11969deb0eb7SJason Gunthorpe do { 11979deb0eb7SJason Gunthorpe tpm_cmd.header.in = tpm_getrandom_header; 11989deb0eb7SJason Gunthorpe tpm_cmd.params.getrandom_in.num_bytes = cpu_to_be32(num_bytes); 11999deb0eb7SJason Gunthorpe 1200745b361eSJarkko Sakkinen err = tpm_transmit_cmd(chip, NULL, &tpm_cmd, 12019deb0eb7SJason Gunthorpe TPM_GETRANDOM_RESULT_SIZE + num_bytes, 1202c659af78SStefan Berger offsetof(struct tpm_getrandom_out, 1203c659af78SStefan Berger rng_data), 1204d4816edfSJarkko Sakkinen 0, "attempting get random"); 12059deb0eb7SJason Gunthorpe if (err) 12069deb0eb7SJason Gunthorpe break; 12079deb0eb7SJason Gunthorpe 12089deb0eb7SJason Gunthorpe recd = be32_to_cpu(tpm_cmd.params.getrandom_out.rng_data_len); 1209c659af78SStefan Berger 1210c659af78SStefan Berger rlength = be32_to_cpu(tpm_cmd.header.out.length); 1211c659af78SStefan Berger if (rlength < offsetof(struct tpm_getrandom_out, rng_data) + 1212c659af78SStefan Berger recd) { 1213c659af78SStefan Berger total = -EFAULT; 1214c659af78SStefan Berger break; 1215c659af78SStefan Berger } 12169deb0eb7SJason Gunthorpe memcpy(dest, tpm_cmd.params.getrandom_out.rng_data, recd); 12179deb0eb7SJason Gunthorpe 12189deb0eb7SJason Gunthorpe dest += recd; 12199deb0eb7SJason Gunthorpe total += recd; 12209deb0eb7SJason Gunthorpe num_bytes -= recd; 12219deb0eb7SJason Gunthorpe } while (retries-- && total < max); 12229deb0eb7SJason Gunthorpe 12234e26195fSJason Gunthorpe tpm_put_ops(chip); 12249deb0eb7SJason Gunthorpe return total ? total : -EIO; 12259deb0eb7SJason Gunthorpe } 12269deb0eb7SJason Gunthorpe EXPORT_SYMBOL_GPL(tpm_get_random); 12279deb0eb7SJason Gunthorpe 1228954650efSJarkko Sakkinen /** 1229954650efSJarkko Sakkinen * tpm_seal_trusted() - seal a trusted key 1230954650efSJarkko Sakkinen * @chip_num: A specific chip number for the request or TPM_ANY_NUM 1231954650efSJarkko Sakkinen * @options: authentication values and other options 1232954650efSJarkko Sakkinen * @payload: the key data in clear and encrypted form 1233954650efSJarkko Sakkinen * 1234954650efSJarkko Sakkinen * Returns < 0 on error and 0 on success. At the moment, only TPM 2.0 chips 1235954650efSJarkko Sakkinen * are supported. 1236954650efSJarkko Sakkinen */ 1237954650efSJarkko Sakkinen int tpm_seal_trusted(u32 chip_num, struct trusted_key_payload *payload, 1238954650efSJarkko Sakkinen struct trusted_key_options *options) 1239954650efSJarkko Sakkinen { 1240954650efSJarkko Sakkinen struct tpm_chip *chip; 1241954650efSJarkko Sakkinen int rc; 1242954650efSJarkko Sakkinen 1243954650efSJarkko Sakkinen chip = tpm_chip_find_get(chip_num); 1244954650efSJarkko Sakkinen if (chip == NULL || !(chip->flags & TPM_CHIP_FLAG_TPM2)) 1245954650efSJarkko Sakkinen return -ENODEV; 1246954650efSJarkko Sakkinen 1247954650efSJarkko Sakkinen rc = tpm2_seal_trusted(chip, payload, options); 1248954650efSJarkko Sakkinen 12494e26195fSJason Gunthorpe tpm_put_ops(chip); 1250954650efSJarkko Sakkinen return rc; 1251954650efSJarkko Sakkinen } 1252954650efSJarkko Sakkinen EXPORT_SYMBOL_GPL(tpm_seal_trusted); 1253954650efSJarkko Sakkinen 1254954650efSJarkko Sakkinen /** 1255954650efSJarkko Sakkinen * tpm_unseal_trusted() - unseal a trusted key 1256954650efSJarkko Sakkinen * @chip_num: A specific chip number for the request or TPM_ANY_NUM 1257954650efSJarkko Sakkinen * @options: authentication values and other options 1258954650efSJarkko Sakkinen * @payload: the key data in clear and encrypted form 1259954650efSJarkko Sakkinen * 1260954650efSJarkko Sakkinen * Returns < 0 on error and 0 on success. At the moment, only TPM 2.0 chips 1261954650efSJarkko Sakkinen * are supported. 1262954650efSJarkko Sakkinen */ 1263954650efSJarkko Sakkinen int tpm_unseal_trusted(u32 chip_num, struct trusted_key_payload *payload, 1264954650efSJarkko Sakkinen struct trusted_key_options *options) 1265954650efSJarkko Sakkinen { 1266954650efSJarkko Sakkinen struct tpm_chip *chip; 1267954650efSJarkko Sakkinen int rc; 1268954650efSJarkko Sakkinen 1269954650efSJarkko Sakkinen chip = tpm_chip_find_get(chip_num); 1270954650efSJarkko Sakkinen if (chip == NULL || !(chip->flags & TPM_CHIP_FLAG_TPM2)) 1271954650efSJarkko Sakkinen return -ENODEV; 1272954650efSJarkko Sakkinen 1273954650efSJarkko Sakkinen rc = tpm2_unseal_trusted(chip, payload, options); 1274954650efSJarkko Sakkinen 12754e26195fSJason Gunthorpe tpm_put_ops(chip); 12764e26195fSJason Gunthorpe 1277954650efSJarkko Sakkinen return rc; 1278954650efSJarkko Sakkinen } 1279954650efSJarkko Sakkinen EXPORT_SYMBOL_GPL(tpm_unseal_trusted); 1280954650efSJarkko Sakkinen 1281313d21eeSJarkko Sakkinen static int __init tpm_init(void) 1282313d21eeSJarkko Sakkinen { 1283313d21eeSJarkko Sakkinen int rc; 1284313d21eeSJarkko Sakkinen 1285313d21eeSJarkko Sakkinen tpm_class = class_create(THIS_MODULE, "tpm"); 1286313d21eeSJarkko Sakkinen if (IS_ERR(tpm_class)) { 1287313d21eeSJarkko Sakkinen pr_err("couldn't create tpm class\n"); 1288313d21eeSJarkko Sakkinen return PTR_ERR(tpm_class); 1289313d21eeSJarkko Sakkinen } 1290313d21eeSJarkko Sakkinen 1291fdc915f7SJames Bottomley tpmrm_class = class_create(THIS_MODULE, "tpmrm"); 1292fdc915f7SJames Bottomley if (IS_ERR(tpmrm_class)) { 1293fdc915f7SJames Bottomley pr_err("couldn't create tpmrm class\n"); 1294fdc915f7SJames Bottomley class_destroy(tpm_class); 1295fdc915f7SJames Bottomley return PTR_ERR(tpmrm_class); 1296fdc915f7SJames Bottomley } 1297fdc915f7SJames Bottomley 1298fdc915f7SJames Bottomley rc = alloc_chrdev_region(&tpm_devt, 0, 2*TPM_NUM_DEVICES, "tpm"); 1299313d21eeSJarkko Sakkinen if (rc < 0) { 1300313d21eeSJarkko Sakkinen pr_err("tpm: failed to allocate char dev region\n"); 1301fdc915f7SJames Bottomley class_destroy(tpmrm_class); 1302313d21eeSJarkko Sakkinen class_destroy(tpm_class); 1303313d21eeSJarkko Sakkinen return rc; 1304313d21eeSJarkko Sakkinen } 1305313d21eeSJarkko Sakkinen 1306313d21eeSJarkko Sakkinen return 0; 1307313d21eeSJarkko Sakkinen } 1308313d21eeSJarkko Sakkinen 1309313d21eeSJarkko Sakkinen static void __exit tpm_exit(void) 1310313d21eeSJarkko Sakkinen { 131115516788SStefan Berger idr_destroy(&dev_nums_idr); 1312313d21eeSJarkko Sakkinen class_destroy(tpm_class); 1313fdc915f7SJames Bottomley class_destroy(tpmrm_class); 1314fdc915f7SJames Bottomley unregister_chrdev_region(tpm_devt, 2*TPM_NUM_DEVICES); 1315313d21eeSJarkko Sakkinen } 1316313d21eeSJarkko Sakkinen 1317313d21eeSJarkko Sakkinen subsys_initcall(tpm_init); 1318313d21eeSJarkko Sakkinen module_exit(tpm_exit); 1319313d21eeSJarkko Sakkinen 13209deb0eb7SJason Gunthorpe MODULE_AUTHOR("Leendert van Doorn (leendert@watson.ibm.com)"); 13219deb0eb7SJason Gunthorpe MODULE_DESCRIPTION("TPM Driver"); 13229deb0eb7SJason Gunthorpe MODULE_VERSION("2.0"); 13239deb0eb7SJason Gunthorpe MODULE_LICENSE("GPL"); 1324