Loading...
1/*
2 * Copyright (C) 2004 IBM Corporation
3 *
4 * Authors:
5 * Leendert van Doorn <leendert@watson.ibm.com>
6 * Dave Safford <safford@watson.ibm.com>
7 * Reiner Sailer <sailer@watson.ibm.com>
8 * Kylene Hall <kjhall@us.ibm.com>
9 *
10 * Maintained by: <tpmdd-devel@lists.sourceforge.net>
11 *
12 * Device driver for TCG/TCPA TPM (trusted platform module).
13 * Specifications at www.trustedcomputinggroup.org
14 *
15 * This program is free software; you can redistribute it and/or
16 * modify it under the terms of the GNU General Public License as
17 * published by the Free Software Foundation, version 2 of the
18 * License.
19 *
20 */
21#include <linux/module.h>
22#include <linux/delay.h>
23#include <linux/fs.h>
24#include <linux/mutex.h>
25#include <linux/sched.h>
26#include <linux/miscdevice.h>
27#include <linux/platform_device.h>
28#include <linux/io.h>
29#include <linux/tpm.h>
30
31enum tpm_timeout {
32 TPM_TIMEOUT = 5, /* msecs */
33};
34
35/* TPM addresses */
36enum tpm_addr {
37 TPM_SUPERIO_ADDR = 0x2E,
38 TPM_ADDR = 0x4E,
39};
40
41extern ssize_t tpm_show_pubek(struct device *, struct device_attribute *attr,
42 char *);
43extern ssize_t tpm_show_pcrs(struct device *, struct device_attribute *attr,
44 char *);
45extern ssize_t tpm_show_caps(struct device *, struct device_attribute *attr,
46 char *);
47extern ssize_t tpm_show_caps_1_2(struct device *, struct device_attribute *attr,
48 char *);
49extern ssize_t tpm_store_cancel(struct device *, struct device_attribute *attr,
50 const char *, size_t);
51extern ssize_t tpm_show_enabled(struct device *, struct device_attribute *attr,
52 char *);
53extern ssize_t tpm_show_active(struct device *, struct device_attribute *attr,
54 char *);
55extern ssize_t tpm_show_owned(struct device *, struct device_attribute *attr,
56 char *);
57extern ssize_t tpm_show_temp_deactivated(struct device *,
58 struct device_attribute *attr, char *);
59extern ssize_t tpm_show_durations(struct device *,
60 struct device_attribute *attr, char *);
61extern ssize_t tpm_show_timeouts(struct device *,
62 struct device_attribute *attr, char *);
63
64struct tpm_chip;
65
66struct tpm_vendor_specific {
67 const u8 req_complete_mask;
68 const u8 req_complete_val;
69 const u8 req_canceled;
70 void __iomem *iobase; /* ioremapped address */
71 unsigned long base; /* TPM base address */
72
73 int irq;
74 int probed_irq;
75
76 int region_size;
77 int have_region;
78
79 int (*recv) (struct tpm_chip *, u8 *, size_t);
80 int (*send) (struct tpm_chip *, u8 *, size_t);
81 void (*cancel) (struct tpm_chip *);
82 u8 (*status) (struct tpm_chip *);
83 void (*release) (struct device *);
84 struct miscdevice miscdev;
85 struct attribute_group *attr_group;
86 struct list_head list;
87 int locality;
88 unsigned long timeout_a, timeout_b, timeout_c, timeout_d; /* jiffies */
89 bool timeout_adjusted;
90 unsigned long duration[3]; /* jiffies */
91 bool duration_adjusted;
92
93 wait_queue_head_t read_queue;
94 wait_queue_head_t int_queue;
95};
96
97struct tpm_chip {
98 struct device *dev; /* Device stuff */
99
100 int dev_num; /* /dev/tpm# */
101 unsigned long is_open; /* only one allowed */
102 int time_expired;
103
104 /* Data passed to and from the tpm via the read/write calls */
105 u8 *data_buffer;
106 atomic_t data_pending;
107 struct mutex buffer_mutex;
108
109 struct timer_list user_read_timer; /* user needs to claim result */
110 struct work_struct work;
111 struct mutex tpm_mutex; /* tpm is processing */
112
113 struct tpm_vendor_specific vendor;
114
115 struct dentry **bios_dir;
116
117 struct list_head list;
118 void (*release) (struct device *);
119};
120
121#define to_tpm_chip(n) container_of(n, struct tpm_chip, vendor)
122
123static inline void tpm_chip_put(struct tpm_chip *chip)
124{
125 module_put(chip->dev->driver->owner);
126}
127
128static inline int tpm_read_index(int base, int index)
129{
130 outb(index, base);
131 return inb(base+1) & 0xFF;
132}
133
134static inline void tpm_write_index(int base, int index, int value)
135{
136 outb(index, base);
137 outb(value & 0xFF, base+1);
138}
139struct tpm_input_header {
140 __be16 tag;
141 __be32 length;
142 __be32 ordinal;
143}__attribute__((packed));
144
145struct tpm_output_header {
146 __be16 tag;
147 __be32 length;
148 __be32 return_code;
149}__attribute__((packed));
150
151struct stclear_flags_t {
152 __be16 tag;
153 u8 deactivated;
154 u8 disableForceClear;
155 u8 physicalPresence;
156 u8 physicalPresenceLock;
157 u8 bGlobalLock;
158}__attribute__((packed));
159
160struct tpm_version_t {
161 u8 Major;
162 u8 Minor;
163 u8 revMajor;
164 u8 revMinor;
165}__attribute__((packed));
166
167struct tpm_version_1_2_t {
168 __be16 tag;
169 u8 Major;
170 u8 Minor;
171 u8 revMajor;
172 u8 revMinor;
173}__attribute__((packed));
174
175struct timeout_t {
176 __be32 a;
177 __be32 b;
178 __be32 c;
179 __be32 d;
180}__attribute__((packed));
181
182struct duration_t {
183 __be32 tpm_short;
184 __be32 tpm_medium;
185 __be32 tpm_long;
186}__attribute__((packed));
187
188struct permanent_flags_t {
189 __be16 tag;
190 u8 disable;
191 u8 ownership;
192 u8 deactivated;
193 u8 readPubek;
194 u8 disableOwnerClear;
195 u8 allowMaintenance;
196 u8 physicalPresenceLifetimeLock;
197 u8 physicalPresenceHWEnable;
198 u8 physicalPresenceCMDEnable;
199 u8 CEKPUsed;
200 u8 TPMpost;
201 u8 TPMpostLock;
202 u8 FIPS;
203 u8 operator;
204 u8 enableRevokeEK;
205 u8 nvLocked;
206 u8 readSRKPub;
207 u8 tpmEstablished;
208 u8 maintenanceDone;
209 u8 disableFullDALogicInfo;
210}__attribute__((packed));
211
212typedef union {
213 struct permanent_flags_t perm_flags;
214 struct stclear_flags_t stclear_flags;
215 bool owned;
216 __be32 num_pcrs;
217 struct tpm_version_t tpm_version;
218 struct tpm_version_1_2_t tpm_version_1_2;
219 __be32 manufacturer_id;
220 struct timeout_t timeout;
221 struct duration_t duration;
222} cap_t;
223
224struct tpm_getcap_params_in {
225 __be32 cap;
226 __be32 subcap_size;
227 __be32 subcap;
228}__attribute__((packed));
229
230struct tpm_getcap_params_out {
231 __be32 cap_size;
232 cap_t cap;
233}__attribute__((packed));
234
235struct tpm_readpubek_params_out {
236 u8 algorithm[4];
237 u8 encscheme[2];
238 u8 sigscheme[2];
239 __be32 paramsize;
240 u8 parameters[12]; /*assuming RSA*/
241 __be32 keysize;
242 u8 modulus[256];
243 u8 checksum[20];
244}__attribute__((packed));
245
246typedef union {
247 struct tpm_input_header in;
248 struct tpm_output_header out;
249} tpm_cmd_header;
250
251#define TPM_DIGEST_SIZE 20
252struct tpm_pcrread_out {
253 u8 pcr_result[TPM_DIGEST_SIZE];
254}__attribute__((packed));
255
256struct tpm_pcrread_in {
257 __be32 pcr_idx;
258}__attribute__((packed));
259
260struct tpm_pcrextend_in {
261 __be32 pcr_idx;
262 u8 hash[TPM_DIGEST_SIZE];
263}__attribute__((packed));
264
265typedef union {
266 struct tpm_getcap_params_out getcap_out;
267 struct tpm_readpubek_params_out readpubek_out;
268 u8 readpubek_out_buffer[sizeof(struct tpm_readpubek_params_out)];
269 struct tpm_getcap_params_in getcap_in;
270 struct tpm_pcrread_in pcrread_in;
271 struct tpm_pcrread_out pcrread_out;
272 struct tpm_pcrextend_in pcrextend_in;
273} tpm_cmd_params;
274
275struct tpm_cmd_t {
276 tpm_cmd_header header;
277 tpm_cmd_params params;
278}__attribute__((packed));
279
280ssize_t tpm_getcap(struct device *, __be32, cap_t *, const char *);
281
282extern void tpm_get_timeouts(struct tpm_chip *);
283extern void tpm_gen_interrupt(struct tpm_chip *);
284extern void tpm_continue_selftest(struct tpm_chip *);
285extern unsigned long tpm_calc_ordinal_duration(struct tpm_chip *, u32);
286extern struct tpm_chip* tpm_register_hardware(struct device *,
287 const struct tpm_vendor_specific *);
288extern int tpm_open(struct inode *, struct file *);
289extern int tpm_release(struct inode *, struct file *);
290extern void tpm_dev_vendor_release(struct tpm_chip *);
291extern ssize_t tpm_write(struct file *, const char __user *, size_t,
292 loff_t *);
293extern ssize_t tpm_read(struct file *, char __user *, size_t, loff_t *);
294extern void tpm_remove_hardware(struct device *);
295extern int tpm_pm_suspend(struct device *, pm_message_t);
296extern int tpm_pm_resume(struct device *);
297
298#ifdef CONFIG_ACPI
299extern struct dentry ** tpm_bios_log_setup(char *);
300extern void tpm_bios_log_teardown(struct dentry **);
301#else
302static inline struct dentry ** tpm_bios_log_setup(char *name)
303{
304 return NULL;
305}
306static inline void tpm_bios_log_teardown(struct dentry **dir)
307{
308}
309#endif
1/* SPDX-License-Identifier: GPL-2.0-only */
2/*
3 * Copyright (C) 2004 IBM Corporation
4 * Copyright (C) 2015 Intel Corporation
5 *
6 * Authors:
7 * Leendert van Doorn <leendert@watson.ibm.com>
8 * Dave Safford <safford@watson.ibm.com>
9 * Reiner Sailer <sailer@watson.ibm.com>
10 * Kylene Hall <kjhall@us.ibm.com>
11 *
12 * Maintained by: <tpmdd-devel@lists.sourceforge.net>
13 *
14 * Device driver for TCG/TCPA TPM (trusted platform module).
15 * Specifications at www.trustedcomputinggroup.org
16 */
17
18#ifndef __TPM_H__
19#define __TPM_H__
20
21#include <linux/module.h>
22#include <linux/delay.h>
23#include <linux/mutex.h>
24#include <linux/sched.h>
25#include <linux/platform_device.h>
26#include <linux/io.h>
27#include <linux/tpm.h>
28#include <linux/tpm_eventlog.h>
29
30#ifdef CONFIG_X86
31#include <asm/intel-family.h>
32#endif
33
34#define TPM_MINOR 224 /* officially assigned */
35#define TPM_BUFSIZE 4096
36#define TPM_NUM_DEVICES 65536
37#define TPM_RETRY 50
38
39enum tpm_timeout {
40 TPM_TIMEOUT = 5, /* msecs */
41 TPM_TIMEOUT_RETRY = 100, /* msecs */
42 TPM_TIMEOUT_RANGE_US = 300, /* usecs */
43 TPM_TIMEOUT_POLL = 1, /* msecs */
44 TPM_TIMEOUT_USECS_MIN = 100, /* usecs */
45 TPM_TIMEOUT_USECS_MAX = 500 /* usecs */
46};
47
48/* TPM addresses */
49enum tpm_addr {
50 TPM_SUPERIO_ADDR = 0x2E,
51 TPM_ADDR = 0x4E,
52};
53
54#define TPM_WARN_RETRY 0x800
55#define TPM_WARN_DOING_SELFTEST 0x802
56#define TPM_ERR_DEACTIVATED 0x6
57#define TPM_ERR_DISABLED 0x7
58#define TPM_ERR_INVALID_POSTINIT 38
59
60#define TPM_TAG_RQU_COMMAND 193
61
62/* TPM2 specific constants. */
63#define TPM2_SPACE_BUFFER_SIZE 16384 /* 16 kB */
64
65struct stclear_flags_t {
66 __be16 tag;
67 u8 deactivated;
68 u8 disableForceClear;
69 u8 physicalPresence;
70 u8 physicalPresenceLock;
71 u8 bGlobalLock;
72} __packed;
73
74struct tpm1_version {
75 u8 major;
76 u8 minor;
77 u8 rev_major;
78 u8 rev_minor;
79} __packed;
80
81struct tpm1_version2 {
82 __be16 tag;
83 struct tpm1_version version;
84} __packed;
85
86struct timeout_t {
87 __be32 a;
88 __be32 b;
89 __be32 c;
90 __be32 d;
91} __packed;
92
93struct duration_t {
94 __be32 tpm_short;
95 __be32 tpm_medium;
96 __be32 tpm_long;
97} __packed;
98
99struct permanent_flags_t {
100 __be16 tag;
101 u8 disable;
102 u8 ownership;
103 u8 deactivated;
104 u8 readPubek;
105 u8 disableOwnerClear;
106 u8 allowMaintenance;
107 u8 physicalPresenceLifetimeLock;
108 u8 physicalPresenceHWEnable;
109 u8 physicalPresenceCMDEnable;
110 u8 CEKPUsed;
111 u8 TPMpost;
112 u8 TPMpostLock;
113 u8 FIPS;
114 u8 operator;
115 u8 enableRevokeEK;
116 u8 nvLocked;
117 u8 readSRKPub;
118 u8 tpmEstablished;
119 u8 maintenanceDone;
120 u8 disableFullDALogicInfo;
121} __packed;
122
123typedef union {
124 struct permanent_flags_t perm_flags;
125 struct stclear_flags_t stclear_flags;
126 __u8 owned;
127 __be32 num_pcrs;
128 struct tpm1_version version1;
129 struct tpm1_version2 version2;
130 __be32 manufacturer_id;
131 struct timeout_t timeout;
132 struct duration_t duration;
133} cap_t;
134
135enum tpm_capabilities {
136 TPM_CAP_FLAG = 4,
137 TPM_CAP_PROP = 5,
138 TPM_CAP_VERSION_1_1 = 0x06,
139 TPM_CAP_VERSION_1_2 = 0x1A,
140};
141
142enum tpm_sub_capabilities {
143 TPM_CAP_PROP_PCR = 0x101,
144 TPM_CAP_PROP_MANUFACTURER = 0x103,
145 TPM_CAP_FLAG_PERM = 0x108,
146 TPM_CAP_FLAG_VOL = 0x109,
147 TPM_CAP_PROP_OWNER = 0x111,
148 TPM_CAP_PROP_TIS_TIMEOUT = 0x115,
149 TPM_CAP_PROP_TIS_DURATION = 0x120,
150};
151
152
153/* 128 bytes is an arbitrary cap. This could be as large as TPM_BUFSIZE - 18
154 * bytes, but 128 is still a relatively large number of random bytes and
155 * anything much bigger causes users of struct tpm_cmd_t to start getting
156 * compiler warnings about stack frame size. */
157#define TPM_MAX_RNG_DATA 128
158
159extern struct class *tpm_class;
160extern struct class *tpmrm_class;
161extern dev_t tpm_devt;
162extern const struct file_operations tpm_fops;
163extern const struct file_operations tpmrm_fops;
164extern struct idr dev_nums_idr;
165
166ssize_t tpm_transmit(struct tpm_chip *chip, u8 *buf, size_t bufsiz);
167ssize_t tpm_transmit_cmd(struct tpm_chip *chip, struct tpm_buf *buf,
168 size_t min_rsp_body_length, const char *desc);
169int tpm_get_timeouts(struct tpm_chip *);
170int tpm_auto_startup(struct tpm_chip *chip);
171
172int tpm1_pm_suspend(struct tpm_chip *chip, u32 tpm_suspend_pcr);
173int tpm1_auto_startup(struct tpm_chip *chip);
174int tpm1_do_selftest(struct tpm_chip *chip);
175int tpm1_get_timeouts(struct tpm_chip *chip);
176unsigned long tpm1_calc_ordinal_duration(struct tpm_chip *chip, u32 ordinal);
177int tpm1_pcr_extend(struct tpm_chip *chip, u32 pcr_idx, const u8 *hash,
178 const char *log_msg);
179int tpm1_pcr_read(struct tpm_chip *chip, u32 pcr_idx, u8 *res_buf);
180ssize_t tpm1_getcap(struct tpm_chip *chip, u32 subcap_id, cap_t *cap,
181 const char *desc, size_t min_cap_length);
182int tpm1_get_random(struct tpm_chip *chip, u8 *out, size_t max);
183int tpm1_get_pcr_allocation(struct tpm_chip *chip);
184unsigned long tpm_calc_ordinal_duration(struct tpm_chip *chip, u32 ordinal);
185int tpm_pm_suspend(struct device *dev);
186int tpm_pm_resume(struct device *dev);
187
188static inline void tpm_msleep(unsigned int delay_msec)
189{
190 usleep_range((delay_msec * 1000) - TPM_TIMEOUT_RANGE_US,
191 delay_msec * 1000);
192};
193
194int tpm_chip_start(struct tpm_chip *chip);
195void tpm_chip_stop(struct tpm_chip *chip);
196struct tpm_chip *tpm_find_get_ops(struct tpm_chip *chip);
197__must_check int tpm_try_get_ops(struct tpm_chip *chip);
198void tpm_put_ops(struct tpm_chip *chip);
199
200struct tpm_chip *tpm_chip_alloc(struct device *dev,
201 const struct tpm_class_ops *ops);
202struct tpm_chip *tpmm_chip_alloc(struct device *pdev,
203 const struct tpm_class_ops *ops);
204int tpm_chip_register(struct tpm_chip *chip);
205void tpm_chip_unregister(struct tpm_chip *chip);
206
207void tpm_sysfs_add_device(struct tpm_chip *chip);
208
209
210#ifdef CONFIG_ACPI
211extern void tpm_add_ppi(struct tpm_chip *chip);
212#else
213static inline void tpm_add_ppi(struct tpm_chip *chip)
214{
215}
216#endif
217
218int tpm2_get_timeouts(struct tpm_chip *chip);
219int tpm2_pcr_read(struct tpm_chip *chip, u32 pcr_idx,
220 struct tpm_digest *digest, u16 *digest_size_ptr);
221int tpm2_pcr_extend(struct tpm_chip *chip, u32 pcr_idx,
222 struct tpm_digest *digests);
223int tpm2_get_random(struct tpm_chip *chip, u8 *dest, size_t max);
224ssize_t tpm2_get_tpm_pt(struct tpm_chip *chip, u32 property_id,
225 u32 *value, const char *desc);
226
227ssize_t tpm2_get_pcr_allocation(struct tpm_chip *chip);
228int tpm2_auto_startup(struct tpm_chip *chip);
229void tpm2_shutdown(struct tpm_chip *chip, u16 shutdown_type);
230unsigned long tpm2_calc_ordinal_duration(struct tpm_chip *chip, u32 ordinal);
231int tpm2_probe(struct tpm_chip *chip);
232int tpm2_get_cc_attrs_tbl(struct tpm_chip *chip);
233int tpm2_find_cc(struct tpm_chip *chip, u32 cc);
234int tpm2_init_space(struct tpm_space *space, unsigned int buf_size);
235void tpm2_del_space(struct tpm_chip *chip, struct tpm_space *space);
236void tpm2_flush_space(struct tpm_chip *chip);
237int tpm2_prepare_space(struct tpm_chip *chip, struct tpm_space *space, u8 *cmd,
238 size_t cmdsiz);
239int tpm2_commit_space(struct tpm_chip *chip, struct tpm_space *space, void *buf,
240 size_t *bufsiz);
241
242void tpm_bios_log_setup(struct tpm_chip *chip);
243void tpm_bios_log_teardown(struct tpm_chip *chip);
244int tpm_dev_common_init(void);
245void tpm_dev_common_exit(void);
246#endif