1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0-only
2*4882a593Smuzhiyun /*
3*4882a593Smuzhiyun * Copyright (C) 2004 IBM Corporation
4*4882a593Smuzhiyun * Copyright (C) 2014 Intel Corporation
5*4882a593Smuzhiyun *
6*4882a593Smuzhiyun * Authors:
7*4882a593Smuzhiyun * Leendert van Doorn <leendert@watson.ibm.com>
8*4882a593Smuzhiyun * Dave Safford <safford@watson.ibm.com>
9*4882a593Smuzhiyun * Reiner Sailer <sailer@watson.ibm.com>
10*4882a593Smuzhiyun * Kylene Hall <kjhall@us.ibm.com>
11*4882a593Smuzhiyun *
12*4882a593Smuzhiyun * Maintained by: <tpmdd-devel@lists.sourceforge.net>
13*4882a593Smuzhiyun *
14*4882a593Smuzhiyun * Device driver for TCG/TCPA TPM (trusted platform module).
15*4882a593Smuzhiyun * Specifications at www.trustedcomputinggroup.org
16*4882a593Smuzhiyun *
17*4882a593Smuzhiyun * Note, the TPM chip is not interrupt driven (only polling)
18*4882a593Smuzhiyun * and can have very long timeouts (minutes!). Hence the unusual
19*4882a593Smuzhiyun * calls to msleep.
20*4882a593Smuzhiyun */
21*4882a593Smuzhiyun
22*4882a593Smuzhiyun #include <linux/poll.h>
23*4882a593Smuzhiyun #include <linux/slab.h>
24*4882a593Smuzhiyun #include <linux/mutex.h>
25*4882a593Smuzhiyun #include <linux/spinlock.h>
26*4882a593Smuzhiyun #include <linux/suspend.h>
27*4882a593Smuzhiyun #include <linux/freezer.h>
28*4882a593Smuzhiyun #include <linux/tpm_eventlog.h>
29*4882a593Smuzhiyun
30*4882a593Smuzhiyun #include "tpm.h"
31*4882a593Smuzhiyun
32*4882a593Smuzhiyun /*
33*4882a593Smuzhiyun * Bug workaround - some TPM's don't flush the most
34*4882a593Smuzhiyun * recently changed pcr on suspend, so force the flush
35*4882a593Smuzhiyun * with an extend to the selected _unused_ non-volatile pcr.
36*4882a593Smuzhiyun */
37*4882a593Smuzhiyun static u32 tpm_suspend_pcr;
38*4882a593Smuzhiyun module_param_named(suspend_pcr, tpm_suspend_pcr, uint, 0644);
39*4882a593Smuzhiyun MODULE_PARM_DESC(suspend_pcr,
40*4882a593Smuzhiyun "PCR to use for dummy writes to facilitate flush on suspend.");
41*4882a593Smuzhiyun
42*4882a593Smuzhiyun /**
43*4882a593Smuzhiyun * tpm_calc_ordinal_duration() - calculate the maximum command duration
44*4882a593Smuzhiyun * @chip: TPM chip to use.
45*4882a593Smuzhiyun * @ordinal: TPM command ordinal.
46*4882a593Smuzhiyun *
47*4882a593Smuzhiyun * The function returns the maximum amount of time the chip could take
48*4882a593Smuzhiyun * to return the result for a particular ordinal in jiffies.
49*4882a593Smuzhiyun *
50*4882a593Smuzhiyun * Return: A maximal duration time for an ordinal in jiffies.
51*4882a593Smuzhiyun */
tpm_calc_ordinal_duration(struct tpm_chip * chip,u32 ordinal)52*4882a593Smuzhiyun unsigned long tpm_calc_ordinal_duration(struct tpm_chip *chip, u32 ordinal)
53*4882a593Smuzhiyun {
54*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_TPM2)
55*4882a593Smuzhiyun return tpm2_calc_ordinal_duration(chip, ordinal);
56*4882a593Smuzhiyun else
57*4882a593Smuzhiyun return tpm1_calc_ordinal_duration(chip, ordinal);
58*4882a593Smuzhiyun }
59*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_calc_ordinal_duration);
60*4882a593Smuzhiyun
tpm_try_transmit(struct tpm_chip * chip,void * buf,size_t bufsiz)61*4882a593Smuzhiyun static ssize_t tpm_try_transmit(struct tpm_chip *chip, void *buf, size_t bufsiz)
62*4882a593Smuzhiyun {
63*4882a593Smuzhiyun struct tpm_header *header = buf;
64*4882a593Smuzhiyun int rc;
65*4882a593Smuzhiyun ssize_t len = 0;
66*4882a593Smuzhiyun u32 count, ordinal;
67*4882a593Smuzhiyun unsigned long stop;
68*4882a593Smuzhiyun
69*4882a593Smuzhiyun if (bufsiz < TPM_HEADER_SIZE)
70*4882a593Smuzhiyun return -EINVAL;
71*4882a593Smuzhiyun
72*4882a593Smuzhiyun if (bufsiz > TPM_BUFSIZE)
73*4882a593Smuzhiyun bufsiz = TPM_BUFSIZE;
74*4882a593Smuzhiyun
75*4882a593Smuzhiyun count = be32_to_cpu(header->length);
76*4882a593Smuzhiyun ordinal = be32_to_cpu(header->ordinal);
77*4882a593Smuzhiyun if (count == 0)
78*4882a593Smuzhiyun return -ENODATA;
79*4882a593Smuzhiyun if (count > bufsiz) {
80*4882a593Smuzhiyun dev_err(&chip->dev,
81*4882a593Smuzhiyun "invalid count value %x %zx\n", count, bufsiz);
82*4882a593Smuzhiyun return -E2BIG;
83*4882a593Smuzhiyun }
84*4882a593Smuzhiyun
85*4882a593Smuzhiyun rc = chip->ops->send(chip, buf, count);
86*4882a593Smuzhiyun if (rc < 0) {
87*4882a593Smuzhiyun if (rc != -EPIPE)
88*4882a593Smuzhiyun dev_err(&chip->dev,
89*4882a593Smuzhiyun "%s: send(): error %d\n", __func__, rc);
90*4882a593Smuzhiyun return rc;
91*4882a593Smuzhiyun }
92*4882a593Smuzhiyun
93*4882a593Smuzhiyun /* A sanity check. send() should just return zero on success e.g.
94*4882a593Smuzhiyun * not the command length.
95*4882a593Smuzhiyun */
96*4882a593Smuzhiyun if (rc > 0) {
97*4882a593Smuzhiyun dev_warn(&chip->dev,
98*4882a593Smuzhiyun "%s: send(): invalid value %d\n", __func__, rc);
99*4882a593Smuzhiyun rc = 0;
100*4882a593Smuzhiyun }
101*4882a593Smuzhiyun
102*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_IRQ)
103*4882a593Smuzhiyun goto out_recv;
104*4882a593Smuzhiyun
105*4882a593Smuzhiyun stop = jiffies + tpm_calc_ordinal_duration(chip, ordinal);
106*4882a593Smuzhiyun do {
107*4882a593Smuzhiyun u8 status = chip->ops->status(chip);
108*4882a593Smuzhiyun if ((status & chip->ops->req_complete_mask) ==
109*4882a593Smuzhiyun chip->ops->req_complete_val)
110*4882a593Smuzhiyun goto out_recv;
111*4882a593Smuzhiyun
112*4882a593Smuzhiyun if (chip->ops->req_canceled(chip, status)) {
113*4882a593Smuzhiyun dev_err(&chip->dev, "Operation Canceled\n");
114*4882a593Smuzhiyun return -ECANCELED;
115*4882a593Smuzhiyun }
116*4882a593Smuzhiyun
117*4882a593Smuzhiyun tpm_msleep(TPM_TIMEOUT_POLL);
118*4882a593Smuzhiyun rmb();
119*4882a593Smuzhiyun } while (time_before(jiffies, stop));
120*4882a593Smuzhiyun
121*4882a593Smuzhiyun chip->ops->cancel(chip);
122*4882a593Smuzhiyun dev_err(&chip->dev, "Operation Timed out\n");
123*4882a593Smuzhiyun return -ETIME;
124*4882a593Smuzhiyun
125*4882a593Smuzhiyun out_recv:
126*4882a593Smuzhiyun len = chip->ops->recv(chip, buf, bufsiz);
127*4882a593Smuzhiyun if (len < 0) {
128*4882a593Smuzhiyun rc = len;
129*4882a593Smuzhiyun dev_err(&chip->dev, "tpm_transmit: tpm_recv: error %d\n", rc);
130*4882a593Smuzhiyun } else if (len < TPM_HEADER_SIZE || len != be32_to_cpu(header->length))
131*4882a593Smuzhiyun rc = -EFAULT;
132*4882a593Smuzhiyun
133*4882a593Smuzhiyun return rc ? rc : len;
134*4882a593Smuzhiyun }
135*4882a593Smuzhiyun
136*4882a593Smuzhiyun /**
137*4882a593Smuzhiyun * tpm_transmit - Internal kernel interface to transmit TPM commands.
138*4882a593Smuzhiyun * @chip: a TPM chip to use
139*4882a593Smuzhiyun * @buf: a TPM command buffer
140*4882a593Smuzhiyun * @bufsiz: length of the TPM command buffer
141*4882a593Smuzhiyun *
142*4882a593Smuzhiyun * A wrapper around tpm_try_transmit() that handles TPM2_RC_RETRY returns from
143*4882a593Smuzhiyun * the TPM and retransmits the command after a delay up to a maximum wait of
144*4882a593Smuzhiyun * TPM2_DURATION_LONG.
145*4882a593Smuzhiyun *
146*4882a593Smuzhiyun * Note that TPM 1.x never returns TPM2_RC_RETRY so the retry logic is TPM 2.0
147*4882a593Smuzhiyun * only.
148*4882a593Smuzhiyun *
149*4882a593Smuzhiyun * Return:
150*4882a593Smuzhiyun * * The response length - OK
151*4882a593Smuzhiyun * * -errno - A system error
152*4882a593Smuzhiyun */
tpm_transmit(struct tpm_chip * chip,u8 * buf,size_t bufsiz)153*4882a593Smuzhiyun ssize_t tpm_transmit(struct tpm_chip *chip, u8 *buf, size_t bufsiz)
154*4882a593Smuzhiyun {
155*4882a593Smuzhiyun struct tpm_header *header = (struct tpm_header *)buf;
156*4882a593Smuzhiyun /* space for header and handles */
157*4882a593Smuzhiyun u8 save[TPM_HEADER_SIZE + 3*sizeof(u32)];
158*4882a593Smuzhiyun unsigned int delay_msec = TPM2_DURATION_SHORT;
159*4882a593Smuzhiyun u32 rc = 0;
160*4882a593Smuzhiyun ssize_t ret;
161*4882a593Smuzhiyun const size_t save_size = min(sizeof(save), bufsiz);
162*4882a593Smuzhiyun /* the command code is where the return code will be */
163*4882a593Smuzhiyun u32 cc = be32_to_cpu(header->return_code);
164*4882a593Smuzhiyun
165*4882a593Smuzhiyun /*
166*4882a593Smuzhiyun * Subtlety here: if we have a space, the handles will be
167*4882a593Smuzhiyun * transformed, so when we restore the header we also have to
168*4882a593Smuzhiyun * restore the handles.
169*4882a593Smuzhiyun */
170*4882a593Smuzhiyun memcpy(save, buf, save_size);
171*4882a593Smuzhiyun
172*4882a593Smuzhiyun for (;;) {
173*4882a593Smuzhiyun ret = tpm_try_transmit(chip, buf, bufsiz);
174*4882a593Smuzhiyun if (ret < 0)
175*4882a593Smuzhiyun break;
176*4882a593Smuzhiyun rc = be32_to_cpu(header->return_code);
177*4882a593Smuzhiyun if (rc != TPM2_RC_RETRY && rc != TPM2_RC_TESTING)
178*4882a593Smuzhiyun break;
179*4882a593Smuzhiyun /*
180*4882a593Smuzhiyun * return immediately if self test returns test
181*4882a593Smuzhiyun * still running to shorten boot time.
182*4882a593Smuzhiyun */
183*4882a593Smuzhiyun if (rc == TPM2_RC_TESTING && cc == TPM2_CC_SELF_TEST)
184*4882a593Smuzhiyun break;
185*4882a593Smuzhiyun
186*4882a593Smuzhiyun if (delay_msec > TPM2_DURATION_LONG) {
187*4882a593Smuzhiyun if (rc == TPM2_RC_RETRY)
188*4882a593Smuzhiyun dev_err(&chip->dev, "in retry loop\n");
189*4882a593Smuzhiyun else
190*4882a593Smuzhiyun dev_err(&chip->dev,
191*4882a593Smuzhiyun "self test is still running\n");
192*4882a593Smuzhiyun break;
193*4882a593Smuzhiyun }
194*4882a593Smuzhiyun tpm_msleep(delay_msec);
195*4882a593Smuzhiyun delay_msec *= 2;
196*4882a593Smuzhiyun memcpy(buf, save, save_size);
197*4882a593Smuzhiyun }
198*4882a593Smuzhiyun return ret;
199*4882a593Smuzhiyun }
200*4882a593Smuzhiyun
201*4882a593Smuzhiyun /**
202*4882a593Smuzhiyun * tpm_transmit_cmd - send a tpm command to the device
203*4882a593Smuzhiyun * @chip: a TPM chip to use
204*4882a593Smuzhiyun * @buf: a TPM command buffer
205*4882a593Smuzhiyun * @min_rsp_body_length: minimum expected length of response body
206*4882a593Smuzhiyun * @desc: command description used in the error message
207*4882a593Smuzhiyun *
208*4882a593Smuzhiyun * Return:
209*4882a593Smuzhiyun * * 0 - OK
210*4882a593Smuzhiyun * * -errno - A system error
211*4882a593Smuzhiyun * * TPM_RC - A TPM error
212*4882a593Smuzhiyun */
tpm_transmit_cmd(struct tpm_chip * chip,struct tpm_buf * buf,size_t min_rsp_body_length,const char * desc)213*4882a593Smuzhiyun ssize_t tpm_transmit_cmd(struct tpm_chip *chip, struct tpm_buf *buf,
214*4882a593Smuzhiyun size_t min_rsp_body_length, const char *desc)
215*4882a593Smuzhiyun {
216*4882a593Smuzhiyun const struct tpm_header *header = (struct tpm_header *)buf->data;
217*4882a593Smuzhiyun int err;
218*4882a593Smuzhiyun ssize_t len;
219*4882a593Smuzhiyun
220*4882a593Smuzhiyun len = tpm_transmit(chip, buf->data, PAGE_SIZE);
221*4882a593Smuzhiyun if (len < 0)
222*4882a593Smuzhiyun return len;
223*4882a593Smuzhiyun
224*4882a593Smuzhiyun err = be32_to_cpu(header->return_code);
225*4882a593Smuzhiyun if (err != 0 && err != TPM_ERR_DISABLED && err != TPM_ERR_DEACTIVATED
226*4882a593Smuzhiyun && err != TPM2_RC_TESTING && desc)
227*4882a593Smuzhiyun dev_err(&chip->dev, "A TPM error (%d) occurred %s\n", err,
228*4882a593Smuzhiyun desc);
229*4882a593Smuzhiyun if (err)
230*4882a593Smuzhiyun return err;
231*4882a593Smuzhiyun
232*4882a593Smuzhiyun if (len < min_rsp_body_length + TPM_HEADER_SIZE)
233*4882a593Smuzhiyun return -EFAULT;
234*4882a593Smuzhiyun
235*4882a593Smuzhiyun return 0;
236*4882a593Smuzhiyun }
237*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_transmit_cmd);
238*4882a593Smuzhiyun
tpm_get_timeouts(struct tpm_chip * chip)239*4882a593Smuzhiyun int tpm_get_timeouts(struct tpm_chip *chip)
240*4882a593Smuzhiyun {
241*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_HAVE_TIMEOUTS)
242*4882a593Smuzhiyun return 0;
243*4882a593Smuzhiyun
244*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_TPM2)
245*4882a593Smuzhiyun return tpm2_get_timeouts(chip);
246*4882a593Smuzhiyun else
247*4882a593Smuzhiyun return tpm1_get_timeouts(chip);
248*4882a593Smuzhiyun }
249*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_get_timeouts);
250*4882a593Smuzhiyun
251*4882a593Smuzhiyun /**
252*4882a593Smuzhiyun * tpm_is_tpm2 - do we a have a TPM2 chip?
253*4882a593Smuzhiyun * @chip: a &struct tpm_chip instance, %NULL for the default chip
254*4882a593Smuzhiyun *
255*4882a593Smuzhiyun * Return:
256*4882a593Smuzhiyun * 1 if we have a TPM2 chip.
257*4882a593Smuzhiyun * 0 if we don't have a TPM2 chip.
258*4882a593Smuzhiyun * A negative number for system errors (errno).
259*4882a593Smuzhiyun */
tpm_is_tpm2(struct tpm_chip * chip)260*4882a593Smuzhiyun int tpm_is_tpm2(struct tpm_chip *chip)
261*4882a593Smuzhiyun {
262*4882a593Smuzhiyun int rc;
263*4882a593Smuzhiyun
264*4882a593Smuzhiyun chip = tpm_find_get_ops(chip);
265*4882a593Smuzhiyun if (!chip)
266*4882a593Smuzhiyun return -ENODEV;
267*4882a593Smuzhiyun
268*4882a593Smuzhiyun rc = (chip->flags & TPM_CHIP_FLAG_TPM2) != 0;
269*4882a593Smuzhiyun
270*4882a593Smuzhiyun tpm_put_ops(chip);
271*4882a593Smuzhiyun
272*4882a593Smuzhiyun return rc;
273*4882a593Smuzhiyun }
274*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_is_tpm2);
275*4882a593Smuzhiyun
276*4882a593Smuzhiyun /**
277*4882a593Smuzhiyun * tpm_pcr_read - read a PCR value from SHA1 bank
278*4882a593Smuzhiyun * @chip: a &struct tpm_chip instance, %NULL for the default chip
279*4882a593Smuzhiyun * @pcr_idx: the PCR to be retrieved
280*4882a593Smuzhiyun * @digest: the PCR bank and buffer current PCR value is written to
281*4882a593Smuzhiyun *
282*4882a593Smuzhiyun * Return: same as with tpm_transmit_cmd()
283*4882a593Smuzhiyun */
tpm_pcr_read(struct tpm_chip * chip,u32 pcr_idx,struct tpm_digest * digest)284*4882a593Smuzhiyun int tpm_pcr_read(struct tpm_chip *chip, u32 pcr_idx,
285*4882a593Smuzhiyun struct tpm_digest *digest)
286*4882a593Smuzhiyun {
287*4882a593Smuzhiyun int rc;
288*4882a593Smuzhiyun
289*4882a593Smuzhiyun chip = tpm_find_get_ops(chip);
290*4882a593Smuzhiyun if (!chip)
291*4882a593Smuzhiyun return -ENODEV;
292*4882a593Smuzhiyun
293*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_TPM2)
294*4882a593Smuzhiyun rc = tpm2_pcr_read(chip, pcr_idx, digest, NULL);
295*4882a593Smuzhiyun else
296*4882a593Smuzhiyun rc = tpm1_pcr_read(chip, pcr_idx, digest->digest);
297*4882a593Smuzhiyun
298*4882a593Smuzhiyun tpm_put_ops(chip);
299*4882a593Smuzhiyun return rc;
300*4882a593Smuzhiyun }
301*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_pcr_read);
302*4882a593Smuzhiyun
303*4882a593Smuzhiyun /**
304*4882a593Smuzhiyun * tpm_pcr_extend - extend a PCR value in SHA1 bank.
305*4882a593Smuzhiyun * @chip: a &struct tpm_chip instance, %NULL for the default chip
306*4882a593Smuzhiyun * @pcr_idx: the PCR to be retrieved
307*4882a593Smuzhiyun * @digests: array of tpm_digest structures used to extend PCRs
308*4882a593Smuzhiyun *
309*4882a593Smuzhiyun * Note: callers must pass a digest for every allocated PCR bank, in the same
310*4882a593Smuzhiyun * order of the banks in chip->allocated_banks.
311*4882a593Smuzhiyun *
312*4882a593Smuzhiyun * Return: same as with tpm_transmit_cmd()
313*4882a593Smuzhiyun */
tpm_pcr_extend(struct tpm_chip * chip,u32 pcr_idx,struct tpm_digest * digests)314*4882a593Smuzhiyun int tpm_pcr_extend(struct tpm_chip *chip, u32 pcr_idx,
315*4882a593Smuzhiyun struct tpm_digest *digests)
316*4882a593Smuzhiyun {
317*4882a593Smuzhiyun int rc;
318*4882a593Smuzhiyun int i;
319*4882a593Smuzhiyun
320*4882a593Smuzhiyun chip = tpm_find_get_ops(chip);
321*4882a593Smuzhiyun if (!chip)
322*4882a593Smuzhiyun return -ENODEV;
323*4882a593Smuzhiyun
324*4882a593Smuzhiyun for (i = 0; i < chip->nr_allocated_banks; i++) {
325*4882a593Smuzhiyun if (digests[i].alg_id != chip->allocated_banks[i].alg_id) {
326*4882a593Smuzhiyun rc = -EINVAL;
327*4882a593Smuzhiyun goto out;
328*4882a593Smuzhiyun }
329*4882a593Smuzhiyun }
330*4882a593Smuzhiyun
331*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_TPM2) {
332*4882a593Smuzhiyun rc = tpm2_pcr_extend(chip, pcr_idx, digests);
333*4882a593Smuzhiyun goto out;
334*4882a593Smuzhiyun }
335*4882a593Smuzhiyun
336*4882a593Smuzhiyun rc = tpm1_pcr_extend(chip, pcr_idx, digests[0].digest,
337*4882a593Smuzhiyun "attempting extend a PCR value");
338*4882a593Smuzhiyun
339*4882a593Smuzhiyun out:
340*4882a593Smuzhiyun tpm_put_ops(chip);
341*4882a593Smuzhiyun return rc;
342*4882a593Smuzhiyun }
343*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_pcr_extend);
344*4882a593Smuzhiyun
345*4882a593Smuzhiyun /**
346*4882a593Smuzhiyun * tpm_send - send a TPM command
347*4882a593Smuzhiyun * @chip: a &struct tpm_chip instance, %NULL for the default chip
348*4882a593Smuzhiyun * @cmd: a TPM command buffer
349*4882a593Smuzhiyun * @buflen: the length of the TPM command buffer
350*4882a593Smuzhiyun *
351*4882a593Smuzhiyun * Return: same as with tpm_transmit_cmd()
352*4882a593Smuzhiyun */
tpm_send(struct tpm_chip * chip,void * cmd,size_t buflen)353*4882a593Smuzhiyun int tpm_send(struct tpm_chip *chip, void *cmd, size_t buflen)
354*4882a593Smuzhiyun {
355*4882a593Smuzhiyun struct tpm_buf buf;
356*4882a593Smuzhiyun int rc;
357*4882a593Smuzhiyun
358*4882a593Smuzhiyun chip = tpm_find_get_ops(chip);
359*4882a593Smuzhiyun if (!chip)
360*4882a593Smuzhiyun return -ENODEV;
361*4882a593Smuzhiyun
362*4882a593Smuzhiyun buf.data = cmd;
363*4882a593Smuzhiyun rc = tpm_transmit_cmd(chip, &buf, 0, "attempting to a send a command");
364*4882a593Smuzhiyun
365*4882a593Smuzhiyun tpm_put_ops(chip);
366*4882a593Smuzhiyun return rc;
367*4882a593Smuzhiyun }
368*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_send);
369*4882a593Smuzhiyun
tpm_auto_startup(struct tpm_chip * chip)370*4882a593Smuzhiyun int tpm_auto_startup(struct tpm_chip *chip)
371*4882a593Smuzhiyun {
372*4882a593Smuzhiyun int rc;
373*4882a593Smuzhiyun
374*4882a593Smuzhiyun if (!(chip->ops->flags & TPM_OPS_AUTO_STARTUP))
375*4882a593Smuzhiyun return 0;
376*4882a593Smuzhiyun
377*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_TPM2)
378*4882a593Smuzhiyun rc = tpm2_auto_startup(chip);
379*4882a593Smuzhiyun else
380*4882a593Smuzhiyun rc = tpm1_auto_startup(chip);
381*4882a593Smuzhiyun
382*4882a593Smuzhiyun return rc;
383*4882a593Smuzhiyun }
384*4882a593Smuzhiyun
385*4882a593Smuzhiyun /*
386*4882a593Smuzhiyun * We are about to suspend. Save the TPM state
387*4882a593Smuzhiyun * so that it can be restored.
388*4882a593Smuzhiyun */
tpm_pm_suspend(struct device * dev)389*4882a593Smuzhiyun int tpm_pm_suspend(struct device *dev)
390*4882a593Smuzhiyun {
391*4882a593Smuzhiyun struct tpm_chip *chip = dev_get_drvdata(dev);
392*4882a593Smuzhiyun int rc = 0;
393*4882a593Smuzhiyun
394*4882a593Smuzhiyun if (!chip)
395*4882a593Smuzhiyun return -ENODEV;
396*4882a593Smuzhiyun
397*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_ALWAYS_POWERED)
398*4882a593Smuzhiyun goto suspended;
399*4882a593Smuzhiyun
400*4882a593Smuzhiyun if ((chip->flags & TPM_CHIP_FLAG_FIRMWARE_POWER_MANAGED) &&
401*4882a593Smuzhiyun !pm_suspend_via_firmware())
402*4882a593Smuzhiyun goto suspended;
403*4882a593Smuzhiyun
404*4882a593Smuzhiyun rc = tpm_try_get_ops(chip);
405*4882a593Smuzhiyun if (!rc) {
406*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_TPM2)
407*4882a593Smuzhiyun tpm2_shutdown(chip, TPM2_SU_STATE);
408*4882a593Smuzhiyun else
409*4882a593Smuzhiyun rc = tpm1_pm_suspend(chip, tpm_suspend_pcr);
410*4882a593Smuzhiyun
411*4882a593Smuzhiyun tpm_put_ops(chip);
412*4882a593Smuzhiyun }
413*4882a593Smuzhiyun
414*4882a593Smuzhiyun suspended:
415*4882a593Smuzhiyun return rc;
416*4882a593Smuzhiyun }
417*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_pm_suspend);
418*4882a593Smuzhiyun
419*4882a593Smuzhiyun /*
420*4882a593Smuzhiyun * Resume from a power safe. The BIOS already restored
421*4882a593Smuzhiyun * the TPM state.
422*4882a593Smuzhiyun */
tpm_pm_resume(struct device * dev)423*4882a593Smuzhiyun int tpm_pm_resume(struct device *dev)
424*4882a593Smuzhiyun {
425*4882a593Smuzhiyun struct tpm_chip *chip = dev_get_drvdata(dev);
426*4882a593Smuzhiyun
427*4882a593Smuzhiyun if (chip == NULL)
428*4882a593Smuzhiyun return -ENODEV;
429*4882a593Smuzhiyun
430*4882a593Smuzhiyun return 0;
431*4882a593Smuzhiyun }
432*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_pm_resume);
433*4882a593Smuzhiyun
434*4882a593Smuzhiyun /**
435*4882a593Smuzhiyun * tpm_get_random() - get random bytes from the TPM's RNG
436*4882a593Smuzhiyun * @chip: a &struct tpm_chip instance, %NULL for the default chip
437*4882a593Smuzhiyun * @out: destination buffer for the random bytes
438*4882a593Smuzhiyun * @max: the max number of bytes to write to @out
439*4882a593Smuzhiyun *
440*4882a593Smuzhiyun * Return: number of random bytes read or a negative error value.
441*4882a593Smuzhiyun */
tpm_get_random(struct tpm_chip * chip,u8 * out,size_t max)442*4882a593Smuzhiyun int tpm_get_random(struct tpm_chip *chip, u8 *out, size_t max)
443*4882a593Smuzhiyun {
444*4882a593Smuzhiyun int rc;
445*4882a593Smuzhiyun
446*4882a593Smuzhiyun if (!out || max > TPM_MAX_RNG_DATA)
447*4882a593Smuzhiyun return -EINVAL;
448*4882a593Smuzhiyun
449*4882a593Smuzhiyun chip = tpm_find_get_ops(chip);
450*4882a593Smuzhiyun if (!chip)
451*4882a593Smuzhiyun return -ENODEV;
452*4882a593Smuzhiyun
453*4882a593Smuzhiyun if (chip->flags & TPM_CHIP_FLAG_TPM2)
454*4882a593Smuzhiyun rc = tpm2_get_random(chip, out, max);
455*4882a593Smuzhiyun else
456*4882a593Smuzhiyun rc = tpm1_get_random(chip, out, max);
457*4882a593Smuzhiyun
458*4882a593Smuzhiyun tpm_put_ops(chip);
459*4882a593Smuzhiyun return rc;
460*4882a593Smuzhiyun }
461*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(tpm_get_random);
462*4882a593Smuzhiyun
tpm_init(void)463*4882a593Smuzhiyun static int __init tpm_init(void)
464*4882a593Smuzhiyun {
465*4882a593Smuzhiyun int rc;
466*4882a593Smuzhiyun
467*4882a593Smuzhiyun tpm_class = class_create(THIS_MODULE, "tpm");
468*4882a593Smuzhiyun if (IS_ERR(tpm_class)) {
469*4882a593Smuzhiyun pr_err("couldn't create tpm class\n");
470*4882a593Smuzhiyun return PTR_ERR(tpm_class);
471*4882a593Smuzhiyun }
472*4882a593Smuzhiyun
473*4882a593Smuzhiyun tpmrm_class = class_create(THIS_MODULE, "tpmrm");
474*4882a593Smuzhiyun if (IS_ERR(tpmrm_class)) {
475*4882a593Smuzhiyun pr_err("couldn't create tpmrm class\n");
476*4882a593Smuzhiyun rc = PTR_ERR(tpmrm_class);
477*4882a593Smuzhiyun goto out_destroy_tpm_class;
478*4882a593Smuzhiyun }
479*4882a593Smuzhiyun
480*4882a593Smuzhiyun rc = alloc_chrdev_region(&tpm_devt, 0, 2*TPM_NUM_DEVICES, "tpm");
481*4882a593Smuzhiyun if (rc < 0) {
482*4882a593Smuzhiyun pr_err("tpm: failed to allocate char dev region\n");
483*4882a593Smuzhiyun goto out_destroy_tpmrm_class;
484*4882a593Smuzhiyun }
485*4882a593Smuzhiyun
486*4882a593Smuzhiyun rc = tpm_dev_common_init();
487*4882a593Smuzhiyun if (rc) {
488*4882a593Smuzhiyun pr_err("tpm: failed to allocate char dev region\n");
489*4882a593Smuzhiyun goto out_unreg_chrdev;
490*4882a593Smuzhiyun }
491*4882a593Smuzhiyun
492*4882a593Smuzhiyun return 0;
493*4882a593Smuzhiyun
494*4882a593Smuzhiyun out_unreg_chrdev:
495*4882a593Smuzhiyun unregister_chrdev_region(tpm_devt, 2 * TPM_NUM_DEVICES);
496*4882a593Smuzhiyun out_destroy_tpmrm_class:
497*4882a593Smuzhiyun class_destroy(tpmrm_class);
498*4882a593Smuzhiyun out_destroy_tpm_class:
499*4882a593Smuzhiyun class_destroy(tpm_class);
500*4882a593Smuzhiyun
501*4882a593Smuzhiyun return rc;
502*4882a593Smuzhiyun }
503*4882a593Smuzhiyun
tpm_exit(void)504*4882a593Smuzhiyun static void __exit tpm_exit(void)
505*4882a593Smuzhiyun {
506*4882a593Smuzhiyun idr_destroy(&dev_nums_idr);
507*4882a593Smuzhiyun class_destroy(tpm_class);
508*4882a593Smuzhiyun class_destroy(tpmrm_class);
509*4882a593Smuzhiyun unregister_chrdev_region(tpm_devt, 2*TPM_NUM_DEVICES);
510*4882a593Smuzhiyun tpm_dev_common_exit();
511*4882a593Smuzhiyun }
512*4882a593Smuzhiyun
513*4882a593Smuzhiyun subsys_initcall(tpm_init);
514*4882a593Smuzhiyun module_exit(tpm_exit);
515*4882a593Smuzhiyun
516*4882a593Smuzhiyun MODULE_AUTHOR("Leendert van Doorn (leendert@watson.ibm.com)");
517*4882a593Smuzhiyun MODULE_DESCRIPTION("TPM Driver");
518*4882a593Smuzhiyun MODULE_VERSION("2.0");
519*4882a593Smuzhiyun MODULE_LICENSE("GPL");
520