2 * Copyright (C) 2004 IBM Corporation
5 * Leendert van Doorn <leendert@watson.ibm.com>
6 * Dave Safford <safford@watson.ibm.com>
7 * Reiner Sailer <sailer@watson.ibm.com>
8 * Kylene Hall <kjhall@us.ibm.com>
10 * Maintained by: <tpmdd_devel@lists.sourceforge.net>
12 * Device driver for TCG/TCPA TPM (trusted platform module).
13 * Specifications at www.trustedcomputinggroup.org
15 * This program is free software; you can redistribute it and/or
16 * modify it under the terms of the GNU General Public License as
17 * published by the Free Software Foundation, version 2 of the
20 * Note, the TPM chip is not interrupt driven (only polling)
21 * and can have very long timeouts (minutes!). Hence the unusual
26 #include <linux/sched.h>
27 #include <linux/poll.h>
28 #include <linux/spinlock.h>
32 TPM_MINOR
= 224, /* officially assigned */
34 TPM_NUM_DEVICES
= 256,
35 TPM_NUM_MASK_ENTRIES
= TPM_NUM_DEVICES
/ (8 * sizeof(int))
38 /* PCI configuration addresses */
39 enum tpm_pci_config_addr
{
40 PCI_GEN_PMCON_1
= 0xA0,
48 TPM_INTERUPT_REG
= 0x0A,
49 TPM_BASE_ADDR_LO
= 0x08,
50 TPM_BASE_ADDR_HI
= 0x09,
51 TPM_UNLOCK_VALUE
= 0x55,
52 TPM_LOCK_VALUE
= 0xAA,
53 TPM_DISABLE_INTERUPT_VALUE
= 0x00
57 static LIST_HEAD(tpm_chip_list
);
58 static DEFINE_SPINLOCK(driver_lock
);
59 static int dev_mask
[TPM_NUM_MASK_ENTRIES
];
61 static void user_reader_timeout(unsigned long ptr
)
63 struct tpm_chip
*chip
= (struct tpm_chip
*) ptr
;
65 down(&chip
->buffer_mutex
);
66 atomic_set(&chip
->data_pending
, 0);
67 memset(chip
->data_buffer
, 0, TPM_BUFSIZE
);
68 up(&chip
->buffer_mutex
);
72 * Initialize the LPC bus and enable the TPM ports
74 int tpm_lpc_bus_init(struct pci_dev
*pci_dev
, u16 base
)
79 switch (pci_dev
->vendor
) {
80 case PCI_VENDOR_ID_INTEL
:
81 switch (pci_dev
->device
) {
82 case PCI_DEVICE_ID_INTEL_82801CA_12
:
83 case PCI_DEVICE_ID_INTEL_82801DB_12
:
87 /* init ICH (enable LPC) */
88 pci_read_config_dword(pci_dev
, PCI_GEN1_DEC
, &lpcenable
);
89 lpcenable
|= 0x20000000;
90 pci_write_config_dword(pci_dev
, PCI_GEN1_DEC
, lpcenable
);
93 pci_read_config_dword(pci_dev
, PCI_GEN1_DEC
,
95 if ((lpcenable
& 0x20000000) == 0) {
96 dev_err(&pci_dev
->dev
,
97 "cannot enable LPC\n");
102 /* initialize TPM registers */
103 pci_read_config_dword(pci_dev
, PCI_GEN2_DEC
, &tmp
);
106 tmp
= (tmp
& 0xFFFF0000) | (base
& 0xFFF0);
109 (tmp
& 0xFFFF0000) | (base
& 0xFFF0) |
112 pci_write_config_dword(pci_dev
, PCI_GEN2_DEC
, tmp
);
115 pci_read_config_dword(pci_dev
, PCI_GEN_PMCON_1
,
117 tmp
|= 0x00000004; /* enable CLKRUN */
118 pci_write_config_dword(pci_dev
, PCI_GEN_PMCON_1
,
122 case PCI_VENDOR_ID_AMD
:
127 tpm_write_index(TPM_LOCK_REG
, TPM_UNLOCK_VALUE
);
128 tpm_write_index(TPM_INTERUPT_REG
, TPM_DISABLE_INTERUPT_VALUE
);
129 tpm_write_index(TPM_BASE_ADDR_LO
, base
);
130 tpm_write_index(TPM_BASE_ADDR_HI
, (base
& 0xFF00) >> 8);
131 tpm_write_index(TPM_LOCK_REG
, TPM_LOCK_VALUE
);
136 EXPORT_SYMBOL_GPL(tpm_lpc_bus_init
);
139 * Internal kernel interface to transmit TPM commands
141 static ssize_t
tpm_transmit(struct tpm_chip
*chip
, const char *buf
,
148 count
= be32_to_cpu(*((__be32
*) (buf
+ 2)));
152 if (count
> bufsiz
) {
153 dev_err(&chip
->pci_dev
->dev
,
154 "invalid count value %x %zx \n", count
, bufsiz
);
158 down(&chip
->tpm_mutex
);
160 if ((len
= chip
->vendor
->send(chip
, (u8
*) buf
, count
)) < 0) {
161 dev_err(&chip
->pci_dev
->dev
,
162 "tpm_transmit: tpm_send: error %zd\n", len
);
166 stop
= jiffies
+ 2 * 60 * HZ
;
168 u8 status
= inb(chip
->vendor
->base
+ 1);
169 if ((status
& chip
->vendor
->req_complete_mask
) ==
170 chip
->vendor
->req_complete_val
) {
173 msleep(TPM_TIMEOUT
); /* CHECK */
175 } while (time_before(jiffies
, stop
));
178 chip
->vendor
->cancel(chip
);
179 dev_err(&chip
->pci_dev
->dev
, "Time expired\n");
180 up(&chip
->tpm_mutex
);
184 len
= chip
->vendor
->recv(chip
, (u8
*) buf
, bufsiz
);
186 dev_err(&chip
->pci_dev
->dev
,
187 "tpm_transmit: tpm_recv: error %zd\n", len
);
188 up(&chip
->tpm_mutex
);
192 #define TPM_DIGEST_SIZE 20
193 #define CAP_PCR_RESULT_SIZE 18
194 static const u8 cap_pcr
[] = {
195 0, 193, /* TPM_TAG_RQU_COMMAND */
196 0, 0, 0, 22, /* length */
197 0, 0, 0, 101, /* TPM_ORD_GetCapability */
203 #define READ_PCR_RESULT_SIZE 30
204 static const u8 pcrread
[] = {
205 0, 193, /* TPM_TAG_RQU_COMMAND */
206 0, 0, 0, 14, /* length */
207 0, 0, 0, 21, /* TPM_ORD_PcrRead */
208 0, 0, 0, 0 /* PCR index */
211 ssize_t
tpm_show_pcrs(struct device
*dev
, struct device_attribute
*attr
,
214 u8 data
[READ_PCR_RESULT_SIZE
];
220 struct tpm_chip
*chip
=
221 pci_get_drvdata(to_pci_dev(dev
));
225 memcpy(data
, cap_pcr
, sizeof(cap_pcr
));
226 if ((len
= tpm_transmit(chip
, data
, sizeof(data
)))
227 < CAP_PCR_RESULT_SIZE
)
230 num_pcrs
= be32_to_cpu(*((__be32
*) (data
+ 14)));
232 for (i
= 0; i
< num_pcrs
; i
++) {
233 memcpy(data
, pcrread
, sizeof(pcrread
));
234 index
= cpu_to_be32(i
);
235 memcpy(data
+ 10, &index
, 4);
236 if ((len
= tpm_transmit(chip
, data
, sizeof(data
)))
237 < READ_PCR_RESULT_SIZE
)
239 str
+= sprintf(str
, "PCR-%02d: ", i
);
240 for (j
= 0; j
< TPM_DIGEST_SIZE
; j
++)
241 str
+= sprintf(str
, "%02X ", *(data
+ 10 + j
));
242 str
+= sprintf(str
, "\n");
247 EXPORT_SYMBOL_GPL(tpm_show_pcrs
);
249 #define READ_PUBEK_RESULT_SIZE 314
250 static const u8 readpubek
[] = {
251 0, 193, /* TPM_TAG_RQU_COMMAND */
252 0, 0, 0, 30, /* length */
253 0, 0, 0, 124, /* TPM_ORD_ReadPubek */
256 ssize_t
tpm_show_pubek(struct device
*dev
, struct device_attribute
*attr
,
264 struct tpm_chip
*chip
=
265 pci_get_drvdata(to_pci_dev(dev
));
269 data
= kmalloc(READ_PUBEK_RESULT_SIZE
, GFP_KERNEL
);
273 memcpy(data
, readpubek
, sizeof(readpubek
));
274 memset(data
+ sizeof(readpubek
), 0, 20); /* zero nonce */
276 if ((len
= tpm_transmit(chip
, data
, READ_PUBEK_RESULT_SIZE
)) <
277 READ_PUBEK_RESULT_SIZE
) {
283 ignore header 10 bytes
284 algorithm 32 bits (1 == RSA )
287 parameters (RSA 12->bytes: keybit, #primes, expbit)
290 ignore checksum 20 bytes
295 "Algorithm: %02X %02X %02X %02X\nEncscheme: %02X %02X\n"
296 "Sigscheme: %02X %02X\nParameters: %02X %02X %02X %02X"
297 " %02X %02X %02X %02X %02X %02X %02X %02X\n"
298 "Modulus length: %d\nModulus: \n",
299 data
[10], data
[11], data
[12], data
[13], data
[14],
300 data
[15], data
[16], data
[17], data
[22], data
[23],
301 data
[24], data
[25], data
[26], data
[27], data
[28],
302 data
[29], data
[30], data
[31], data
[32], data
[33],
303 be32_to_cpu(*((__be32
*) (data
+ 32))));
305 for (i
= 0; i
< 256; i
++) {
306 str
+= sprintf(str
, "%02X ", data
[i
+ 39]);
307 if ((i
+ 1) % 16 == 0)
308 str
+= sprintf(str
, "\n");
316 EXPORT_SYMBOL_GPL(tpm_show_pubek
);
318 #define CAP_VER_RESULT_SIZE 18
319 static const u8 cap_version
[] = {
320 0, 193, /* TPM_TAG_RQU_COMMAND */
321 0, 0, 0, 18, /* length */
322 0, 0, 0, 101, /* TPM_ORD_GetCapability */
327 #define CAP_MANUFACTURER_RESULT_SIZE 18
328 static const u8 cap_manufacturer
[] = {
329 0, 193, /* TPM_TAG_RQU_COMMAND */
330 0, 0, 0, 22, /* length */
331 0, 0, 0, 101, /* TPM_ORD_GetCapability */
337 ssize_t
tpm_show_caps(struct device
*dev
, struct device_attribute
*attr
,
340 u8 data
[sizeof(cap_manufacturer
)];
344 struct tpm_chip
*chip
=
345 pci_get_drvdata(to_pci_dev(dev
));
349 memcpy(data
, cap_manufacturer
, sizeof(cap_manufacturer
));
351 if ((len
= tpm_transmit(chip
, data
, sizeof(data
))) <
352 CAP_MANUFACTURER_RESULT_SIZE
)
355 str
+= sprintf(str
, "Manufacturer: 0x%x\n",
356 be32_to_cpu(*((__be32
*) (data
+ 14))));
358 memcpy(data
, cap_version
, sizeof(cap_version
));
360 if ((len
= tpm_transmit(chip
, data
, sizeof(data
))) <
365 sprintf(str
, "TCG version: %d.%d\nFirmware version: %d.%d\n",
366 (int) data
[14], (int) data
[15], (int) data
[16],
371 EXPORT_SYMBOL_GPL(tpm_show_caps
);
373 ssize_t
tpm_store_cancel(struct device
*dev
, struct device_attribute
*attr
,
374 const char *buf
, size_t count
)
376 struct tpm_chip
*chip
= dev_get_drvdata(dev
);
380 chip
->vendor
->cancel(chip
);
383 EXPORT_SYMBOL_GPL(tpm_store_cancel
);
387 * Device file system interface to the TPM
389 int tpm_open(struct inode
*inode
, struct file
*file
)
391 int rc
= 0, minor
= iminor(inode
);
392 struct tpm_chip
*chip
= NULL
, *pos
;
394 spin_lock(&driver_lock
);
396 list_for_each_entry(pos
, &tpm_chip_list
, list
) {
397 if (pos
->vendor
->miscdev
.minor
== minor
) {
408 if (chip
->num_opens
) {
409 dev_dbg(&chip
->pci_dev
->dev
,
410 "Another process owns this TPM\n");
416 pci_dev_get(chip
->pci_dev
);
418 spin_unlock(&driver_lock
);
420 chip
->data_buffer
= kmalloc(TPM_BUFSIZE
* sizeof(u8
), GFP_KERNEL
);
421 if (chip
->data_buffer
== NULL
) {
423 pci_dev_put(chip
->pci_dev
);
427 atomic_set(&chip
->data_pending
, 0);
429 file
->private_data
= chip
;
433 spin_unlock(&driver_lock
);
437 EXPORT_SYMBOL_GPL(tpm_open
);
439 int tpm_release(struct inode
*inode
, struct file
*file
)
441 struct tpm_chip
*chip
= file
->private_data
;
443 file
->private_data
= NULL
;
445 spin_lock(&driver_lock
);
447 del_singleshot_timer_sync(&chip
->user_read_timer
);
448 atomic_set(&chip
->data_pending
, 0);
450 pci_dev_put(chip
->pci_dev
);
454 EXPORT_SYMBOL_GPL(tpm_release
);
456 ssize_t
tpm_write(struct file
* file
, const char __user
* buf
,
457 size_t size
, loff_t
* off
)
459 struct tpm_chip
*chip
= file
->private_data
;
460 int in_size
= size
, out_size
;
462 /* cannot perform a write until the read has cleared
463 either via tpm_read or a user_read_timer timeout */
464 while (atomic_read(&chip
->data_pending
) != 0)
467 down(&chip
->buffer_mutex
);
469 if (in_size
> TPM_BUFSIZE
)
470 in_size
= TPM_BUFSIZE
;
473 (chip
->data_buffer
, (void __user
*) buf
, in_size
)) {
474 up(&chip
->buffer_mutex
);
478 /* atomic tpm command send and result receive */
479 out_size
= tpm_transmit(chip
, chip
->data_buffer
, TPM_BUFSIZE
);
481 atomic_set(&chip
->data_pending
, out_size
);
482 up(&chip
->buffer_mutex
);
484 /* Set a timeout by which the reader must come claim the result */
485 mod_timer(&chip
->user_read_timer
, jiffies
+ (60 * HZ
));
490 EXPORT_SYMBOL_GPL(tpm_write
);
492 ssize_t
tpm_read(struct file
* file
, char __user
* buf
,
493 size_t size
, loff_t
* off
)
495 struct tpm_chip
*chip
= file
->private_data
;
498 del_singleshot_timer_sync(&chip
->user_read_timer
);
499 ret_size
= atomic_read(&chip
->data_pending
);
500 atomic_set(&chip
->data_pending
, 0);
501 if (ret_size
> 0) { /* relay data */
505 down(&chip
->buffer_mutex
);
507 ((void __user
*) buf
, chip
->data_buffer
, ret_size
))
509 up(&chip
->buffer_mutex
);
515 EXPORT_SYMBOL_GPL(tpm_read
);
517 void __devexit
tpm_remove(struct pci_dev
*pci_dev
)
519 struct tpm_chip
*chip
= pci_get_drvdata(pci_dev
);
522 dev_err(&pci_dev
->dev
, "No device data found\n");
526 spin_lock(&driver_lock
);
528 list_del(&chip
->list
);
530 spin_unlock(&driver_lock
);
532 pci_set_drvdata(pci_dev
, NULL
);
533 misc_deregister(&chip
->vendor
->miscdev
);
535 sysfs_remove_group(&pci_dev
->dev
.kobj
, chip
->vendor
->attr_group
);
537 pci_disable_device(pci_dev
);
539 dev_mask
[chip
->dev_num
/ TPM_NUM_MASK_ENTRIES
] &= !(1 << (chip
->dev_num
% TPM_NUM_MASK_ENTRIES
));
543 pci_dev_put(pci_dev
);
546 EXPORT_SYMBOL_GPL(tpm_remove
);
548 static u8 savestate
[] = {
549 0, 193, /* TPM_TAG_RQU_COMMAND */
550 0, 0, 0, 10, /* blob length (in bytes) */
551 0, 0, 0, 152 /* TPM_ORD_SaveState */
555 * We are about to suspend. Save the TPM state
556 * so that it can be restored.
558 int tpm_pm_suspend(struct pci_dev
*pci_dev
, pm_message_t pm_state
)
560 struct tpm_chip
*chip
= pci_get_drvdata(pci_dev
);
564 tpm_transmit(chip
, savestate
, sizeof(savestate
));
568 EXPORT_SYMBOL_GPL(tpm_pm_suspend
);
571 * Resume from a power safe. The BIOS already restored
574 int tpm_pm_resume(struct pci_dev
*pci_dev
)
576 struct tpm_chip
*chip
= pci_get_drvdata(pci_dev
);
581 spin_lock(&driver_lock
);
582 tpm_lpc_bus_init(pci_dev
, chip
->vendor
->base
);
583 spin_unlock(&driver_lock
);
588 EXPORT_SYMBOL_GPL(tpm_pm_resume
);
591 * Called from tpm_<specific>.c probe function only for devices
592 * the driver has determined it should claim. Prior to calling
593 * this function the specific probe function has called pci_enable_device
594 * upon errant exit from this function specific probe function should call
597 int tpm_register_hardware(struct pci_dev
*pci_dev
,
598 struct tpm_vendor_specific
*entry
)
601 struct tpm_chip
*chip
;
604 /* Driver specific per-device data */
605 chip
= kmalloc(sizeof(*chip
), GFP_KERNEL
);
609 memset(chip
, 0, sizeof(struct tpm_chip
));
611 init_MUTEX(&chip
->buffer_mutex
);
612 init_MUTEX(&chip
->tpm_mutex
);
613 INIT_LIST_HEAD(&chip
->list
);
615 init_timer(&chip
->user_read_timer
);
616 chip
->user_read_timer
.function
= user_reader_timeout
;
617 chip
->user_read_timer
.data
= (unsigned long) chip
;
619 chip
->vendor
= entry
;
623 for (i
= 0; i
< TPM_NUM_MASK_ENTRIES
; i
++)
624 for (j
= 0; j
< 8 * sizeof(int); j
++)
625 if ((dev_mask
[i
] & (1 << j
)) == 0) {
627 i
* TPM_NUM_MASK_ENTRIES
+ j
;
628 dev_mask
[i
] |= 1 << j
;
629 goto dev_num_search_complete
;
632 dev_num_search_complete
:
633 if (chip
->dev_num
< 0) {
634 dev_err(&pci_dev
->dev
,
635 "No available tpm device numbers\n");
638 } else if (chip
->dev_num
== 0)
639 chip
->vendor
->miscdev
.minor
= TPM_MINOR
;
641 chip
->vendor
->miscdev
.minor
= MISC_DYNAMIC_MINOR
;
643 snprintf(devname
, sizeof(devname
), "%s%d", "tpm", chip
->dev_num
);
644 chip
->vendor
->miscdev
.name
= devname
;
646 chip
->vendor
->miscdev
.dev
= &(pci_dev
->dev
);
647 chip
->pci_dev
= pci_dev_get(pci_dev
);
649 if (misc_register(&chip
->vendor
->miscdev
)) {
650 dev_err(&chip
->pci_dev
->dev
,
651 "unable to misc_register %s, minor %d\n",
652 chip
->vendor
->miscdev
.name
,
653 chip
->vendor
->miscdev
.minor
);
654 pci_dev_put(pci_dev
);
656 dev_mask
[i
] &= !(1 << j
);
660 pci_set_drvdata(pci_dev
, chip
);
662 list_add(&chip
->list
, &tpm_chip_list
);
664 sysfs_create_group(&pci_dev
->dev
.kobj
, chip
->vendor
->attr_group
);
669 EXPORT_SYMBOL_GPL(tpm_register_hardware
);
671 MODULE_AUTHOR("Leendert van Doorn (leendert@watson.ibm.com)");
672 MODULE_DESCRIPTION("TPM Driver");
673 MODULE_VERSION("2.0");
674 MODULE_LICENSE("GPL");
projects / deliverable / linux.git / blob