core: Add support to access a TPM event log in secure memory.

Support for OPTEE to be able to receive a TPM event log through a DTB so it can forward it to a TA (such as a TPM service) in order to extend the measurements. CFG_CORE_TPM_EVENT_LOG enables this feature. CFG_TPM_LOG_BASE_ADDR hardcodes the phys address of the event log in case CFG_DT is not set. CFG_TPM_MAX_LOG_SIZE harcodes the size of the event log in case CFG_DT is not set. When this feature is enabled, the PTA_SYSTEM_GET_TPM_EVENT_LOG command is available to any TA. Signed-off-by: Javier Almansa Sobrino <javier.almansasobrino@arm.com> Reviewed-by: Jerome Forissier <jerome@forissier.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org>
author: Javier Almansa Sobrino <javier.almansasobrino@arm.com> 2020-01-20 14:03:29 +0000
committer: Jérôme Forissier <jerome@forissier.org> 2020-02-19 12:44:57 +0100
commit: dd333f03ab1978903f4c98cee84547391bd4d21a (patch)
tree: 797757e91d6491fa4654400936f515ad972d0a58 /mk
parent: 9742eed4c9f48b886bd9bd40e7cbd80213baee00 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/mk/config.mk b/mk/config.mk
index cdfcd8dd..911ec2fd 100644
--- a/mk/config.mk
+++ b/mk/config.mk
@@ -546,3 +546,8 @@ CFG_CORE_HUK_SUBKEY_COMPAT ?= y
 # Compress and encode conf.mk into the TEE core, and show the encoded string on
 # boot (with severity TRACE_INFO).
 CFG_SHOW_CONF_ON_BOOT ?= n
+
+# Enables support for passing a TPM Event Log stored in secure memory
+# to a TA, so a TPM Service could use it to extend any measurement
+# taken before the service was up and running.
+CFG_CORE_TPM_EVENT_LOG ?= n
author	Javier Almansa Sobrino <javier.almansasobrino@arm.com>	2020-01-20 14:03:29 +0000
committer	Jérôme Forissier <jerome@forissier.org>	2020-02-19 12:44:57 +0100
commit	dd333f03ab1978903f4c98cee84547391bd4d21a (patch)
tree	797757e91d6491fa4654400936f515ad972d0a58 /mk
parent	9742eed4c9f48b886bd9bd40e7cbd80213baee00 (diff)