Support for TPM command line options
This patch adds support for TPM command line options.
The command line options supported here are
./qemu-... -tpmdev passthrough,path=<path to TPM device>,id=<id>
-device tpm-tis,tpmdev=<id>,id=<other id>
and
./qemu-... -tpmdev help
where the latter works similar to -soundhw help and shows a list of
available TPM backends (for example 'passthrough').
Using the type parameter, the backend is chosen, i.e., 'passthrough' for the
passthrough driver. The interpretation of the other parameters along
with determining whether enough parameters were provided is pushed into
the backend driver, which needs to implement the interface function
'create' and return a TPMDriverOpts structure if the VM can be started or
'NULL' if not enough or bad parameters were provided.
Monitor support for 'info tpm' has been added. It for example prints the
following:
(qemu) info tpm
TPM devices:
tpm0: model=tpm-tis
\ tpm0: type=passthrough,path=/dev/tpm0,cancel-path=/sys/devices/pnp0/00:09/cancel
Signed-off-by: Stefan Berger <stefanb@linux.vnet.ibm.com>
Reviewed-by: Corey Bryant <coreyb@linux.vnet.ibm.com>
Reviewed-by: Joel Schopp <jschopp@linux.vnet.ibm.com>
Message-id: 1361987275-26289-2-git-send-email-stefanb@linux.vnet.ibm.com
Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
2013-02-27 17:47:49 +00:00
|
|
|
/*
|
|
|
|
* TPM configuration
|
|
|
|
*
|
|
|
|
* Copyright (C) 2011-2013 IBM Corporation
|
|
|
|
*
|
|
|
|
* Authors:
|
|
|
|
* Stefan Berger <stefanb@us.ibm.com>
|
|
|
|
*
|
|
|
|
* This work is licensed under the terms of the GNU GPL, version 2 or later.
|
|
|
|
* See the COPYING file in the top-level directory.
|
|
|
|
*/
|
|
|
|
#ifndef TPM_TPM_INT_H
|
|
|
|
#define TPM_TPM_INT_H
|
|
|
|
|
|
|
|
#include "exec/memory.h"
|
|
|
|
#include "tpm/tpm_tis.h"
|
|
|
|
|
|
|
|
/* overall state of the TPM interface */
|
2013-04-02 20:14:51 +00:00
|
|
|
struct TPMState {
|
Support for TPM command line options
This patch adds support for TPM command line options.
The command line options supported here are
./qemu-... -tpmdev passthrough,path=<path to TPM device>,id=<id>
-device tpm-tis,tpmdev=<id>,id=<other id>
and
./qemu-... -tpmdev help
where the latter works similar to -soundhw help and shows a list of
available TPM backends (for example 'passthrough').
Using the type parameter, the backend is chosen, i.e., 'passthrough' for the
passthrough driver. The interpretation of the other parameters along
with determining whether enough parameters were provided is pushed into
the backend driver, which needs to implement the interface function
'create' and return a TPMDriverOpts structure if the VM can be started or
'NULL' if not enough or bad parameters were provided.
Monitor support for 'info tpm' has been added. It for example prints the
following:
(qemu) info tpm
TPM devices:
tpm0: model=tpm-tis
\ tpm0: type=passthrough,path=/dev/tpm0,cancel-path=/sys/devices/pnp0/00:09/cancel
Signed-off-by: Stefan Berger <stefanb@linux.vnet.ibm.com>
Reviewed-by: Corey Bryant <coreyb@linux.vnet.ibm.com>
Reviewed-by: Joel Schopp <jschopp@linux.vnet.ibm.com>
Message-id: 1361987275-26289-2-git-send-email-stefanb@linux.vnet.ibm.com
Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
2013-02-27 17:47:49 +00:00
|
|
|
ISADevice busdev;
|
|
|
|
MemoryRegion mmio;
|
|
|
|
|
|
|
|
union {
|
|
|
|
TPMTISEmuState tis;
|
|
|
|
} s;
|
|
|
|
|
|
|
|
uint8_t locty_number;
|
|
|
|
TPMLocality *locty_data;
|
|
|
|
|
|
|
|
char *backend;
|
|
|
|
TPMBackend *be_driver;
|
2013-04-02 20:14:51 +00:00
|
|
|
};
|
Support for TPM command line options
This patch adds support for TPM command line options.
The command line options supported here are
./qemu-... -tpmdev passthrough,path=<path to TPM device>,id=<id>
-device tpm-tis,tpmdev=<id>,id=<other id>
and
./qemu-... -tpmdev help
where the latter works similar to -soundhw help and shows a list of
available TPM backends (for example 'passthrough').
Using the type parameter, the backend is chosen, i.e., 'passthrough' for the
passthrough driver. The interpretation of the other parameters along
with determining whether enough parameters were provided is pushed into
the backend driver, which needs to implement the interface function
'create' and return a TPMDriverOpts structure if the VM can be started or
'NULL' if not enough or bad parameters were provided.
Monitor support for 'info tpm' has been added. It for example prints the
following:
(qemu) info tpm
TPM devices:
tpm0: model=tpm-tis
\ tpm0: type=passthrough,path=/dev/tpm0,cancel-path=/sys/devices/pnp0/00:09/cancel
Signed-off-by: Stefan Berger <stefanb@linux.vnet.ibm.com>
Reviewed-by: Corey Bryant <coreyb@linux.vnet.ibm.com>
Reviewed-by: Joel Schopp <jschopp@linux.vnet.ibm.com>
Message-id: 1361987275-26289-2-git-send-email-stefanb@linux.vnet.ibm.com
Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
2013-02-27 17:47:49 +00:00
|
|
|
|
|
|
|
#define TPM(obj) OBJECT_CHECK(TPMState, (obj), TYPE_TPM_TIS)
|
|
|
|
|
|
|
|
struct TPMDriverOps {
|
|
|
|
enum TpmType type;
|
|
|
|
/* get a descriptive text of the backend to display to the user */
|
|
|
|
const char *(*desc)(void);
|
|
|
|
|
|
|
|
TPMBackend *(*create)(QemuOpts *opts, const char *id);
|
|
|
|
void (*destroy)(TPMBackend *t);
|
|
|
|
|
|
|
|
/* initialize the backend */
|
|
|
|
int (*init)(TPMBackend *t, TPMState *s, TPMRecvDataCB *datacb);
|
|
|
|
/* start up the TPM on the backend */
|
|
|
|
int (*startup_tpm)(TPMBackend *t);
|
|
|
|
/* returns true if nothing will ever answer TPM requests */
|
|
|
|
bool (*had_startup_error)(TPMBackend *t);
|
|
|
|
|
|
|
|
size_t (*realloc_buffer)(TPMSizedBuffer *sb);
|
|
|
|
|
|
|
|
void (*deliver_request)(TPMBackend *t);
|
|
|
|
|
|
|
|
void (*reset)(TPMBackend *t);
|
|
|
|
|
|
|
|
void (*cancel_cmd)(TPMBackend *t);
|
|
|
|
|
|
|
|
bool (*get_tpm_established_flag)(TPMBackend *t);
|
|
|
|
};
|
|
|
|
|
2013-02-27 17:47:53 +00:00
|
|
|
struct tpm_req_hdr {
|
|
|
|
uint16_t tag;
|
|
|
|
uint32_t len;
|
|
|
|
uint32_t ordinal;
|
|
|
|
} QEMU_PACKED;
|
|
|
|
|
|
|
|
struct tpm_resp_hdr {
|
|
|
|
uint16_t tag;
|
|
|
|
uint32_t len;
|
|
|
|
uint32_t errcode;
|
|
|
|
} QEMU_PACKED;
|
|
|
|
|
|
|
|
#define TPM_TAG_RQU_COMMAND 0xc1
|
|
|
|
#define TPM_TAG_RQU_AUTH1_COMMAND 0xc2
|
|
|
|
#define TPM_TAG_RQU_AUTH2_COMMAND 0xc3
|
|
|
|
|
|
|
|
#define TPM_TAG_RSP_COMMAND 0xc4
|
|
|
|
#define TPM_TAG_RSP_AUTH1_COMMAND 0xc5
|
|
|
|
#define TPM_TAG_RSP_AUTH2_COMMAND 0xc6
|
|
|
|
|
|
|
|
#define TPM_FAIL 9
|
|
|
|
|
|
|
|
#define TPM_ORD_GetTicks 0xf1
|
|
|
|
|
Support for TPM command line options
This patch adds support for TPM command line options.
The command line options supported here are
./qemu-... -tpmdev passthrough,path=<path to TPM device>,id=<id>
-device tpm-tis,tpmdev=<id>,id=<other id>
and
./qemu-... -tpmdev help
where the latter works similar to -soundhw help and shows a list of
available TPM backends (for example 'passthrough').
Using the type parameter, the backend is chosen, i.e., 'passthrough' for the
passthrough driver. The interpretation of the other parameters along
with determining whether enough parameters were provided is pushed into
the backend driver, which needs to implement the interface function
'create' and return a TPMDriverOpts structure if the VM can be started or
'NULL' if not enough or bad parameters were provided.
Monitor support for 'info tpm' has been added. It for example prints the
following:
(qemu) info tpm
TPM devices:
tpm0: model=tpm-tis
\ tpm0: type=passthrough,path=/dev/tpm0,cancel-path=/sys/devices/pnp0/00:09/cancel
Signed-off-by: Stefan Berger <stefanb@linux.vnet.ibm.com>
Reviewed-by: Corey Bryant <coreyb@linux.vnet.ibm.com>
Reviewed-by: Joel Schopp <jschopp@linux.vnet.ibm.com>
Message-id: 1361987275-26289-2-git-send-email-stefanb@linux.vnet.ibm.com
Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
2013-02-27 17:47:49 +00:00
|
|
|
TPMBackend *qemu_find_tpm(const char *id);
|
|
|
|
int tpm_register_model(enum TpmModel model);
|
|
|
|
int tpm_register_driver(const TPMDriverOps *tdo);
|
|
|
|
void tpm_display_backend_drivers(void);
|
|
|
|
const TPMDriverOps *tpm_get_backend_driver(const char *type);
|
2013-02-27 17:47:53 +00:00
|
|
|
void tpm_write_fatal_error_response(uint8_t *out, uint32_t out_len);
|
|
|
|
|
|
|
|
extern const TPMDriverOps tpm_passthrough_driver;
|
Support for TPM command line options
This patch adds support for TPM command line options.
The command line options supported here are
./qemu-... -tpmdev passthrough,path=<path to TPM device>,id=<id>
-device tpm-tis,tpmdev=<id>,id=<other id>
and
./qemu-... -tpmdev help
where the latter works similar to -soundhw help and shows a list of
available TPM backends (for example 'passthrough').
Using the type parameter, the backend is chosen, i.e., 'passthrough' for the
passthrough driver. The interpretation of the other parameters along
with determining whether enough parameters were provided is pushed into
the backend driver, which needs to implement the interface function
'create' and return a TPMDriverOpts structure if the VM can be started or
'NULL' if not enough or bad parameters were provided.
Monitor support for 'info tpm' has been added. It for example prints the
following:
(qemu) info tpm
TPM devices:
tpm0: model=tpm-tis
\ tpm0: type=passthrough,path=/dev/tpm0,cancel-path=/sys/devices/pnp0/00:09/cancel
Signed-off-by: Stefan Berger <stefanb@linux.vnet.ibm.com>
Reviewed-by: Corey Bryant <coreyb@linux.vnet.ibm.com>
Reviewed-by: Joel Schopp <jschopp@linux.vnet.ibm.com>
Message-id: 1361987275-26289-2-git-send-email-stefanb@linux.vnet.ibm.com
Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
2013-02-27 17:47:49 +00:00
|
|
|
|
|
|
|
#endif /* TPM_TPM_INT_H */
|