GNUBoot/coreboot-kgpe-d16
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
coreboot-kgpe-d16/src/security
History
Michał Żygowski ff7725e742 drivers/intel/ptt: Use the correct detection method 
On some platforms the HFSTS4 bit 19 does not indicate active PTT.
Instead of ME HFSTS4, use TXT FTIF register to check active TPM for
the current boot. Discrete TPM shall be deactivated when PTT is
enabled so this always should return true value of PTT state.

Leave the old method for backwards compatibility if TXT FTIF would not
be applicable for older microarchitectures.

Based on DOC #560297.

TEST=Check if PTT is detected as active on MSI PRO Z690-A DDR4 WIFI

Signed-off-by: Michał Żygowski <michal.zygowski@3mdeb.com>
Change-Id: I3a55c9f38f5bb94fb1186592446a28e675c1207c
Reviewed-on: https://review.coreboot.org/c/coreboot/+/63956
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Krystian Hebel <krystian.hebel@3mdeb.com>
2022-09-12 12:23:19 +00:00
..
intel drivers/intel/ptt: Use the correct detection method 2022-09-12 12:23:19 +00:00
lockdown security/intel: Add option to enable SMM flash access only 2021-06-21 08:11:11 +00:00
memory security/memory/memory.c: Include 'stdbool' instead of 'stdint' 2022-01-04 14:56:37 +00:00
tpm cbfs/vboot: Adapt to new vb2_digest API 2022-09-02 23:51:29 +00:00
vboot security/vboot/tpm: Avoid duplicate vb2api_secdata_firmware_create calls 2022-09-04 14:50:00 +00:00
Kconfig cbfs: Add verification for RO CBFS metadata hash 2020-12-03 00:11:08 +00:00
Makefile.inc security: Add common boot media write protection 2020-04-28 01:19:32 +00:00