[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interf
|
From: |
Stefan Berger |
|
Subject: |
Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface |
|
Date: |
Fri, 22 Jun 2018 09:26:45 -0400 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 |
On 06/22/2018 05:03 AM, Igor Mammedov wrote:
I'd prefer a table format to describe layout, like in
docs/specs/acpi_nvdimm.txt or docs/specs/acpi_mem_hotplug.txt
diff --git a/docs/specs/tpm.txt b/docs/specs/tpm.txt
index c230c4c93e..5bf4e892a0 100644
--- a/docs/specs/tpm.txt
+++ b/docs/specs/tpm.txt
@@ -42,6 +42,76 @@ URL:
https://trustedcomputinggroup.org/tcg-acpi-specification/
+== ACPI PPI Interface ==
+
+QEMU supports the Physical Presence Interface (PPI) for TPM 1.2 and TPM
2. This
+interface requires ACPI and firmware support. The specification can be
found at
+the following URL:
+
+https://trustedcomputinggroup.org/resource/tcg-physical-presence-interface-specification/
+
+PPI enables a system administrator (root) to request a modification to the
+TPM upon reboot. The PPI specification defines the operation requests
and the
+actions the firmware has to take. The system administrator passes the
operation
+request number to the firmware through an ACPI interface which writes this
+number to a memory location that the firmware knows. Upon reboot, the
firmware
+finds the number and sends commands to the the TPM. The firmware writes
the TPM
+result code and the operation request number to a memory location that
ACPI can
+read from and pass the result on to the administrator.
+
+The PPI specification defines a set of mandatory and optional
operations for
+the firmware to implement. The ACPI interface also allows an
administrator to
+list the supported operations. In QEMU the ACPI code is generated by
QEMU, yet
+the firmware needs to implement support on a per-operations basis, and
+different firmwares may support a different subset. Therefore, QEMU
introduces
+the virtual memory device for PPI where the firmware can indicate which
+operations it supports and ACPI can enable the ones that are supported and
+disable all others. This interface lies in main memory and has the
following
+layout:
+
+ +----------+--------+--------+-------------------------------------------+
+ | Field | Length | Offset | Description |
+ +----------+--------+--------+-------------------------------------------+
+ | func | 0x100 | 0x000 | Firmware sets values for each
supported |
+ | | | | operation. See defined values
below. |
+ +----------+--------+--------+-------------------------------------------+
+ | ppin | 0x1 | 0x100 | SMI interrupt to use. Set by
firmware. |
+ | | | | Not
supported. |
+ +----------+--------+--------+-------------------------------------------+
+ | ppip | 0x4 | 0x101 | ACPI function index to pass to SMM
code. |
+ | | | | Set by ACPI. Not
supported. |
+ +----------+--------+--------+-------------------------------------------+
+ | pprp | 0x4 | 0x105 | Result of last executed operation.
Set by |
+ | | | |
firmware. |
+ +----------+--------+--------+-------------------------------------------+
+ | pprq | 0x4 | 0x109 | Operation request number to execute.
Set |
+ | | | | by
ACPI. |
+ +----------+--------+--------+-------------------------------------------+
+ | pprm | 0x4 | 0x10d | Operation request optional parameter.
Set |
+ | | | | by
ACPI. |
+ +----------+--------+--------+-------------------------------------------+
+ | lppr | 0x4 | 0x111 | Last execute request number. Set
by |
+ | | | |
firmware. |
+ +----------+--------+--------+-------------------------------------------+
+ | fret | 0x4 | 0x115 | Result code from SMM
function. |
+ | | | | Not
supported. |
+ +----------+--------+--------+-------------------------------------------+
+ | res1 | 0x40 | 0x119 | Reserved for future
use |
+ +----------+--------+--------+-------------------------------------------+
+ | next_step| 0x1 | 0x159 | Operation to execute after reboot
by |
+ | | | | firmware. Used by
firmware. |
+ +----------+--------+--------+-------------------------------------------+
+
+ The following values are supported for the 'func' field. They correspond
+ to the values used by ACPI function index 8.
+
+ #define TPM_PPI_FUNC_NOT_IMPLEMENTED (0 << 0)
+ #define TPM_PPI_FUNC_BIOS_ONLY (1 << 0)
+ #define TPM_PPI_FUNC_BLOCKED (2 << 0)
+ #define TPM_PPI_FUNC_ALLOWED_USR_REQ (3 << 0)
+ #define TPM_PPI_FUNC_ALLOWED_USR_NOT_REQ (4 << 0)
+ #define TPM_PPI_FUNC_MASK (7 << 0)
+
QEMU files related to TPM ACPI tables:
- hw/i386/acpi-build.c
- [Qemu-devel] [PATCH v4 2/5] tpm: implement virtual memory device for TPM PPI, (continued)
- [Qemu-devel] [PATCH v4 2/5] tpm: implement virtual memory device for TPM PPI, Marc-André Lureau, 2018/06/21
- [Qemu-devel] [PATCH v4 1/5] tpm: add a "ppi" boolean property, Marc-André Lureau, 2018/06/21
- [Qemu-devel] [PATCH v4 3/5] acpi: add fw_cfg file for TPM and PPI virtual memory device, Marc-André Lureau, 2018/06/21
- [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface, Marc-André Lureau, 2018/06/21
- Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface, Stefan Berger, 2018/06/21
- Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface, Igor Mammedov, 2018/06/22
- Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface,
Stefan Berger <=
- Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface, Igor Mammedov, 2018/06/22
- Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface, Stefan Berger, 2018/06/22
- Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface, Igor Mammedov, 2018/06/25
- Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface, Stefan Berger, 2018/06/25
- Re: [Qemu-devel] [PATCH v4 4/5] acpi: build TPM Physical Presence interface, Stefan Berger, 2018/06/25
[Qemu-devel] [PATCH v4 5/5] tpm: add a fake ACPI memory clear interface, Marc-André Lureau, 2018/06/21