firmware/lib/rollback_index.c - Issue 3388008: Fix one-time init

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: firmware/lib/rollback_index.c

Issue 3388008: Fix one-time init (Closed) Base URL: http://git.chromium.org/git/vboot_reference.git

Patch Set: pflags.ownership means capable of being owned, not owned Created 10 years, 3 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: firmware/lib/rollback_index.c

diff --git a/firmware/lib/rollback_index.c b/firmware/lib/rollback_index.c

index fdd75c6f5f0d52573a305562acbb4bdc27123833..a9bcf9e8e3f3fa447ce9b6ade502dae3a5e9019a 100644

--- a/firmware/lib/rollback_index.c

+++ b/firmware/lib/rollback_index.c

@@ -107,22 +107,37 @@ static uint32_t OneTimeInitializeTPM(RollbackSpaceFirmware* rsf,

ROLLBACK_SPACE_FIRMWARE_VERSION, 0, 0, 0};

static const RollbackSpaceKernel rsk_init = {

ROLLBACK_SPACE_KERNEL_VERSION, ROLLBACK_SPACE_KERNEL_UID, 0, 0};

- uint8_t nvlocked = 0;

+ TPM_PERMANENT_FLAGS pflags;

+ uint32_t result;

VBDEBUG(("TPM: One-time initialization\n"));

- RETURN_ON_FAILURE(TlclFinalizePhysicalPresence());

+ result = TlclGetPermanentFlags(&pflags);

+ if (result != TPM_SUCCESS)

+ return result;

+ /* TPM may come from the factory without physical presence finalized. Fix

+ * if necessary. */

+ VBDEBUG(("TPM: physicalPresenceLifetimeLock=%d\n",

+ pflags.physicalPresenceLifetimeLock));

+ if (!pflags.physicalPresenceLifetimeLock) {

+ VBDEBUG(("TPM: Finalizing physical presence\n"));

+ RETURN_ON_FAILURE(TlclFinalizePhysicalPresence());

+ }

/* The TPM will not enforce the NV authorization restrictions until the

* execution of a TPM_NV_DefineSpace with the handle of TPM_NV_INDEX_LOCK.

* Here we create that space if it doesn't already exist. */

- RETURN_ON_FAILURE(TlclGetFlags(NULL, NULL, &nvlocked));

- VBDEBUG(("TPM: nvlocked=%d\n", nvlocked));

- if (!nvlocked) {

+ VBDEBUG(("TPM: nvLocked=%d\n", pflags.nvLocked));

+ if (!pflags.nvLocked) {

VBDEBUG(("TPM: Enabling NV locking\n"));

RETURN_ON_FAILURE(TlclSetNvLocked());

}

+ /* Clear TPM owner, in case the TPM is already owned for some reason. */

+ VBDEBUG(("TPM: Clearing owner\n"));

+ RETURN_ON_FAILURE(TlclForceClear());

/* Initializes the firmware and kernel spaces */

Memcpy(rsf, &rsf_init, sizeof(RollbackSpaceFirmware));

Memcpy(rsk, &rsk_init, sizeof(RollbackSpaceKernel));

« no previous file with comments | « no previous file | firmware/version.c » ('j') | no next file with comments »