GNUBoot
/
coreboot-kgpe-d16
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
coreboot-kgpe-d16/src/security
History
Miriam Polzer 7dce190808 security/vboot: Add NVRAM counter for TPM 2.0 
Create an NVRAM counter in TPM 2.0 that survives owner clear and can be
read and written without authorization. This counter allows to seal data
with the TPM that can only be unsealed before the counter was
incremented. It will be used during Chrome OS rollback to securely carry
data across a TPM clear.

Signed-off-by: Miriam Polzer <mpolzer@google.com>
Change-Id: I511dba3b3461713ce20fb2bda9fced0fee6517e1
Reviewed-on: https://review.coreboot.org/c/coreboot/+/59097
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Julius Werner <jwerner@chromium.org>
 		2021-11-19 17:19:50 +00:00
..
intel Rename ECAM-specific MMCONF Kconfigs 2021-11-10 17:24:16 +00:00
lockdown security/intel: Add option to enable SMM flash access only 2021-06-21 08:11:11 +00:00
memory src/mainboard to src/security: Fix spelling errors 2021-10-05 18:06:52 +00:00
tpm security/tpm/tcg-2.0: Handle TPM_RC_NV_RANGE return code 2021-11-17 23:05:11 +00:00
vboot security/vboot: Add NVRAM counter for TPM 2.0 2021-11-19 17:19:50 +00:00
Kconfig cbfs: Add verification for RO CBFS metadata hash 2020-12-03 00:11:08 +00:00
Makefile.inc