GNUBoot
/
coreboot-kgpe-d16
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

security/tpm: Change POWER_OFF_ON_CR50_UPDATE so it can be disabled 

Modify the POWER_OFF_ON_CR50_UPDATE Kconfig option so that specific
mainboard implementations can disable the option.

BUG=b:126632503
BRANCH=none
TEST=Build coreboot on sarien/arcada.
TEST=Perform Cr50 firmware update on Sarien, confirm the platform boots
normally after sending TURN_UPDATE_ON to the Cr50.

Change-Id: I3beefaae21de61e53ae232dbdc8ea9dbb2c78cd5
Signed-off-by: Keith Short <keithshort@chromium.org>
Reviewed-on: https://review.coreboot.org/c/coreboot/+/32435
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Duncan Laurie <dlaurie@chromium.org>
Reviewed-by: Furquan Shaikh <furquan@google.com>
This commit is contained in:
Keith Short 2019-04-23 17:27:36 -06:00 committed by Duncan Laurie
parent 1a1fe6e384
commit 97f8029ad4
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/security/tpm/tss/vendor/cr50/Kconfig vendored
View File

@ -16,12 +16,12 @@
config TPM_CR50 config TPM_CR50
bool bool
default y if MAINBOARD_HAS_I2C_TPM_CR50 || MAINBOARD_HAS_SPI_TPM_CR50 default y if MAINBOARD_HAS_I2C_TPM_CR50 || MAINBOARD_HAS_SPI_TPM_CR50
select POWER_OFF_ON_CR50_UPDATE if ARCH_X86
if TPM_CR50 if TPM_CR50
config POWER_OFF_ON_CR50_UPDATE config POWER_OFF_ON_CR50_UPDATE
bool bool
default y if ARCH_X86
help help
Power off machine while waiting for CR50 update to take effect. Power off machine while waiting for CR50 update to take effect.