Changes between Version 7 and Version 8 of tpm


Ignore:
Timestamp:
03/19/2024 03:24:26 PM (8 weeks ago)
Author:
Tim Harvey
Comment:

uboot: replace tpm2 with tpm (if TPMV2 is enabled instead of TPMV1 they are one and the same) and fix some typos

Legend:

Unmodified
Added
Removed
Modified

  • tpm

    v7 v8  
    134134Usage Example:
    135135{{{#!bash
    136 u-boot=> tpm2 device
     136u-boot=> tpm device
    137137device 0: tpm@0 v2.0: VendorID 0x1114, DeviceID 0x3205, RevisionID 0x01 [open]
    138 u-boot=> tpm2 info
    139 tpm@0 v2.0: VendorID 0x1114, DeviceID 0x3205, RevisionID 0x01 [open]u-boot=> tpm2 init
    140 u-boot=> tpm2 init
    141 u-boot=> tpm2 startup TPM2_SU_CLEAR
    142 u-boot=> tpm2 self_test full                 
    143 u-boot=> tpm2 self_test continue
     138u-boot=> tpm info
     139tpm@0 v2.0: VendorID 0x1114, DeviceID 0x3205, RevisionID 0x01 [open]
     140u-boot=> tpm init
     141u-boot=> tpm startup TPM2_SU_CLEAR
     142u-boot=> tpm self_test full                 
     143u-boot=> tpm self_test continue
    144144}}}
    145145
    146 # now we can pursue measured boot (see https://bootlin.com/blog/measured-boot-with-a-tpm-2-0-in-u-boot/)
    147 # extend the PCR as needed giving the PCR number and the address where the digtest is stored
    148 u-boot=> tpm2 extend 0 $loadaddr # extend PCR 0 using digest loaded to $loadaddr
    149 ^^^ what's the digest? I think this refers to whatever you are using for key/auth the next phase
     146At this point you can pursue [https://bootlin.com/blog/measured-boot-with-a-tpm-2-0-in-u-boot/ measured boot] byt extending the PCR as needed:
     147{{{#!bash
     148u-boot=> tpm extend 0 $loadaddr # extend PCR 0 using digest loaded to $loadaddr
     149}}}
    150150
    151151see also: