[deliverable/linux.git] / drivers / char / tpm / tpm_crb.c

/*
 * Copyright (C) 2014 Intel Corporation
 *
 * Authors:
 * Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
 *
 * Maintained by: <tpmdd-devel@lists.sourceforge.net>
 *
 * This device driver implements the TPM interface as defined in
 * the TCG CRB 2.0 TPM specification.
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; version 2
 * of the License.
 */

#include <linux/acpi.h>
#include <linux/highmem.h>
#include <linux/rculist.h>
#include <linux/module.h>
#include <linux/platform_device.h>
#include "tpm.h"

#define ACPI_SIG_TPM2 "TPM2"

static const u8 CRB_ACPI_START_UUID[] = {
	/* 0000 */ 0xAB, 0x6C, 0xBF, 0x6B, 0x63, 0x54, 0x14, 0x47,
	/* 0008 */ 0xB7, 0xCD, 0xF0, 0x20, 0x3C, 0x03, 0x68, 0xD4
};

enum crb_defaults {
	CRB_ACPI_START_REVISION_ID = 1,
	CRB_ACPI_START_INDEX = 1,
};

enum crb_start_method {
	CRB_SM_ACPI_START = 2,
	CRB_SM_CRB = 7,
	CRB_SM_CRB_WITH_ACPI_START = 8,
};

struct acpi_tpm2 {
	struct acpi_table_header hdr;
	u16 platform_class;
	u16 reserved;
	u64 control_area_pa;
	u32 start_method;
} __packed;

enum crb_ca_request {
	CRB_CA_REQ_GO_IDLE	= BIT(0),
	CRB_CA_REQ_CMD_READY	= BIT(1),
};

enum crb_ca_status {
	CRB_CA_STS_ERROR	= BIT(0),
	CRB_CA_STS_TPM_IDLE	= BIT(1),
};

enum crb_start {
	CRB_START_INVOKE	= BIT(0),
};

enum crb_cancel {
	CRB_CANCEL_INVOKE	= BIT(0),
};

struct crb_control_area {
	u32 req;
	u32 sts;
	u32 cancel;
	u32 start;
	u32 int_enable;
	u32 int_sts;
	u32 cmd_size;
	u64 cmd_pa;
	u32 rsp_size;
	u64 rsp_pa;
} __packed;

enum crb_status {
	CRB_STS_COMPLETE	= BIT(0),
};

enum crb_flags {
	CRB_FL_ACPI_START	= BIT(0),
	CRB_FL_CRB_START	= BIT(1),
};

struct crb_priv {
	unsigned int flags;
	struct crb_control_area __iomem *cca;
	u8 __iomem *cmd;
	u8 __iomem *rsp;
};

#ifdef CONFIG_PM_SLEEP
static int crb_resume(struct device *dev)
{
	int rc;
	struct tpm_chip *chip = dev_get_drvdata(dev);

	rc = tpm2_shutdown(chip, TPM2_SU_STATE);
	if (!rc)
		rc = tpm2_do_selftest(chip);

	return rc;
}

static SIMPLE_DEV_PM_OPS(crb_pm, tpm_pm_suspend, crb_resume);
#endif

static u8 crb_status(struct tpm_chip *chip)
{
	struct crb_priv *priv = chip->vendor.priv;
	u8 sts = 0;

	if ((le32_to_cpu(ioread32(&priv->cca->start)) & CRB_START_INVOKE) !=
	    CRB_START_INVOKE)
		sts |= CRB_STS_COMPLETE;

	return sts;
}

static int crb_recv(struct tpm_chip *chip, u8 *buf, size_t count)
{
	struct crb_priv *priv = chip->vendor.priv;
	unsigned int expected;

	/* sanity check */
	if (count < 6)
		return -EIO;

	if (le32_to_cpu(ioread32(&priv->cca->sts)) & CRB_CA_STS_ERROR)
		return -EIO;

	memcpy_fromio(buf, priv->rsp, 6);
	expected = be32_to_cpup((__be32 *) &buf[2]);

	if (expected > count)
		return -EIO;

	memcpy_fromio(&buf[6], &priv->rsp[6], expected - 6);

	return expected;
}

static int crb_do_acpi_start(struct tpm_chip *chip)
{
	union acpi_object *obj;
	int rc;

	obj = acpi_evaluate_dsm(chip->acpi_dev_handle,
				CRB_ACPI_START_UUID,
				CRB_ACPI_START_REVISION_ID,
				CRB_ACPI_START_INDEX,
				NULL);
	if (!obj)
		return -ENXIO;
	rc = obj->integer.value == 0 ? 0 : -ENXIO;
	ACPI_FREE(obj);
	return rc;
}

static int crb_send(struct tpm_chip *chip, u8 *buf, size_t len)
{
	struct crb_priv *priv = chip->vendor.priv;
	int rc = 0;

	if (len > le32_to_cpu(ioread32(&priv->cca->cmd_size))) {
		dev_err(&chip->dev,
			"invalid command count value %x %zx\n",
			(unsigned int) len,
			(size_t) le32_to_cpu(ioread32(&priv->cca->cmd_size)));
		return -E2BIG;
	}

	memcpy_toio(priv->cmd, buf, len);

	/* Make sure that cmd is populated before issuing start. */
	wmb();

	if (priv->flags & CRB_FL_CRB_START)
		iowrite32(cpu_to_le32(CRB_START_INVOKE), &priv->cca->start);

	if (priv->flags & CRB_FL_ACPI_START)
		rc = crb_do_acpi_start(chip);

	return rc;
}

static void crb_cancel(struct tpm_chip *chip)
{
	struct crb_priv *priv = chip->vendor.priv;

	iowrite32(cpu_to_le32(CRB_CANCEL_INVOKE), &priv->cca->cancel);

	/* Make sure that cmd is populated before issuing cancel. */
	wmb();

	if ((priv->flags & CRB_FL_ACPI_START) && crb_do_acpi_start(chip))
		dev_err(&chip->dev, "ACPI Start failed\n");

	iowrite32(0, &priv->cca->cancel);
}

static bool crb_req_canceled(struct tpm_chip *chip, u8 status)
{
	struct crb_priv *priv = chip->vendor.priv;
	u32 cancel = le32_to_cpu(ioread32(&priv->cca->cancel));

	return (cancel & CRB_CANCEL_INVOKE) == CRB_CANCEL_INVOKE;
}

static const struct tpm_class_ops tpm_crb = {
	.status = crb_status,
	.recv = crb_recv,
	.send = crb_send,
	.cancel = crb_cancel,
	.req_canceled = crb_req_canceled,
	.req_complete_mask = CRB_STS_COMPLETE,
	.req_complete_val = CRB_STS_COMPLETE,
};

static int crb_acpi_add(struct acpi_device *device)
{
	struct tpm_chip *chip;
	struct acpi_tpm2 *buf;
	struct crb_priv *priv;
	struct device *dev = &device->dev;
	acpi_status status;
	u32 sm;
	u64 pa;
	int rc;

	chip = tpmm_chip_alloc(dev, &tpm_crb);
	if (IS_ERR(chip))
		return PTR_ERR(chip);

	chip->flags = TPM_CHIP_FLAG_TPM2;

	status = acpi_get_table(ACPI_SIG_TPM2, 1,
				(struct acpi_table_header **) &buf);
	if (ACPI_FAILURE(status)) {
		dev_err(dev, "failed to get TPM2 ACPI table\n");
		return -ENODEV;
	}

	if (buf->hdr.length < sizeof(struct acpi_tpm2)) {
		dev_err(dev, "TPM2 ACPI table has wrong size");
		return -EINVAL;
	}

	priv = (struct crb_priv *) devm_kzalloc(dev, sizeof(struct crb_priv),
						GFP_KERNEL);
	if (!priv) {
		dev_err(dev, "failed to devm_kzalloc for private data\n");
		return -ENOMEM;
	}

	sm = le32_to_cpu(buf->start_method);

	/* The reason for the extra quirk is that the PTT in 4th Gen Core CPUs
	 * report only ACPI start but in practice seems to require both
	 * ACPI start and CRB start.
	 */
	if (sm == CRB_SM_CRB || sm == CRB_SM_CRB_WITH_ACPI_START ||
	    !strcmp(acpi_device_hid(device), "MSFT0101"))
		priv->flags |= CRB_FL_CRB_START;

	if (sm == CRB_SM_ACPI_START || sm == CRB_SM_CRB_WITH_ACPI_START)
		priv->flags |= CRB_FL_ACPI_START;

	priv->cca = (struct crb_control_area __iomem *)
		devm_ioremap_nocache(dev, buf->control_area_pa, 0x1000);
	if (!priv->cca) {
		dev_err(dev, "ioremap of the control area failed\n");
		return -ENOMEM;
	}

	memcpy_fromio(&pa, &priv->cca->cmd_pa, 8);
	pa = le64_to_cpu(pa);
	priv->cmd = devm_ioremap_nocache(dev, le64_to_cpu(pa),
					 ioread32(&priv->cca->cmd_size));
	if (!priv->cmd) {
		dev_err(dev, "ioremap of the command buffer failed\n");
		return -ENOMEM;
	}

	memcpy_fromio(&pa, &priv->cca->rsp_pa, 8);
	pa = le64_to_cpu(pa);
	priv->rsp = devm_ioremap_nocache(dev, le64_to_cpu(pa),
					 ioread32(&priv->cca->rsp_size));
	if (!priv->rsp) {
		dev_err(dev, "ioremap of the response buffer failed\n");
		return -ENOMEM;
	}

	chip->vendor.priv = priv;

	/* Default timeouts and durations */
	chip->vendor.timeout_a = msecs_to_jiffies(TPM2_TIMEOUT_A);
	chip->vendor.timeout_b = msecs_to_jiffies(TPM2_TIMEOUT_B);
	chip->vendor.timeout_c = msecs_to_jiffies(TPM2_TIMEOUT_C);
	chip->vendor.timeout_d = msecs_to_jiffies(TPM2_TIMEOUT_D);
	chip->vendor.duration[TPM_SHORT] =
		msecs_to_jiffies(TPM2_DURATION_SHORT);
	chip->vendor.duration[TPM_MEDIUM] =
		msecs_to_jiffies(TPM2_DURATION_MEDIUM);
	chip->vendor.duration[TPM_LONG] =
		msecs_to_jiffies(TPM2_DURATION_LONG);

	chip->acpi_dev_handle = device->handle;

	rc = tpm2_do_selftest(chip);
	if (rc)
		return rc;

	return tpm_chip_register(chip);
}

static int crb_acpi_remove(struct acpi_device *device)
{
	struct device *dev = &device->dev;
	struct tpm_chip *chip = dev_get_drvdata(dev);

	tpm_chip_unregister(chip);
	return 0;
}

static struct acpi_device_id crb_device_ids[] = {
	{"MSFT0101", 0},
	{"", 0},
};
MODULE_DEVICE_TABLE(acpi, crb_device_ids);

static struct acpi_driver crb_acpi_driver = {
	.name = "tpm_crb",
	.ids = crb_device_ids,
	.ops = {
		.add = crb_acpi_add,
		.remove = crb_acpi_remove,
	},
	.drv = {
		.pm = &crb_pm,
	},
};

module_acpi_driver(crb_acpi_driver);
MODULE_AUTHOR("Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>");
MODULE_DESCRIPTION("TPM2 Driver");
MODULE_VERSION("0.1");
MODULE_LICENSE("GPL");
Commit	Line	Data
30fc8d13 JS	1	/*
	2	* Copyright (C) 2014 Intel Corporation
	3	*
	4	* Authors:
	5	* Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
	6	*
	7	* Maintained by: <tpmdd-devel@lists.sourceforge.net>
	8	*
	9	* This device driver implements the TPM interface as defined in
	10	* the TCG CRB 2.0 TPM specification.
	11	*
	12	* This program is free software; you can redistribute it and/or
	13	* modify it under the terms of the GNU General Public License
	14	* as published by the Free Software Foundation; version 2
	15	* of the License.
	16	*/
	17
	18	#include <linux/acpi.h>
	19	#include <linux/highmem.h>
	20	#include <linux/rculist.h>
	21	#include <linux/module.h>
	22	#include <linux/platform_device.h>
	23	#include "tpm.h"
	24
	25	#define ACPI_SIG_TPM2 "TPM2"
	26
	27	static const u8 CRB_ACPI_START_UUID[] = {
	28	/* 0000 */ 0xAB, 0x6C, 0xBF, 0x6B, 0x63, 0x54, 0x14, 0x47,
	29	/* 0008 */ 0xB7, 0xCD, 0xF0, 0x20, 0x3C, 0x03, 0x68, 0xD4
	30	};
	31
	32	enum crb_defaults {
	33	CRB_ACPI_START_REVISION_ID = 1,
	34	CRB_ACPI_START_INDEX = 1,
	35	};
	36
	37	enum crb_start_method {
	38	CRB_SM_ACPI_START = 2,
	39	CRB_SM_CRB = 7,
	40	CRB_SM_CRB_WITH_ACPI_START = 8,
	41	};
	42
	43	struct acpi_tpm2 {
	44	struct acpi_table_header hdr;
	45	u16 platform_class;
	46	u16 reserved;
	47	u64 control_area_pa;
	48	u32 start_method;
	49	} __packed;
	50
	51	enum crb_ca_request {
	52	CRB_CA_REQ_GO_IDLE = BIT(0),
	53	CRB_CA_REQ_CMD_READY = BIT(1),
	54	};
	55
	56	enum crb_ca_status {
	57	CRB_CA_STS_ERROR = BIT(0),
	58	CRB_CA_STS_TPM_IDLE = BIT(1),
	59	};
	60
	61	enum crb_start {
	62	CRB_START_INVOKE = BIT(0),
	63	};
	64
65	enum crb_cancel {
66	CRB_CANCEL_INVOKE = BIT(0),
67	};
68
69	struct crb_control_area {
70	u32 req;
71	u32 sts;
72	u32 cancel;
73	u32 start;
74	u32 int_enable;
75	u32 int_sts;
76	u32 cmd_size;
77	u64 cmd_pa;
78	u32 rsp_size;
79	u64 rsp_pa;
80	} __packed;
81
82	enum crb_status {
83	CRB_STS_COMPLETE = BIT(0),
84	};
85
86	enum crb_flags {
87	CRB_FL_ACPI_START = BIT(0),
88	CRB_FL_CRB_START = BIT(1),
89	};
90
91	struct crb_priv {
92	unsigned int flags;
93	struct crb_control_area __iomem *cca;
94	u8 __iomem *cmd;
95	u8 __iomem *rsp;
96	};
97
98	#ifdef CONFIG_PM_SLEEP
99	static int crb_resume(struct device *dev)
100	{
101	int rc;
102	struct tpm_chip *chip = dev_get_drvdata(dev);
103
104	rc = tpm2_shutdown(chip, TPM2_SU_STATE);
105	if (!rc)
106	rc = tpm2_do_selftest(chip);
107
108	return rc;
109	}
110
111	static SIMPLE_DEV_PM_OPS(crb_pm, tpm_pm_suspend, crb_resume);
112	#endif
113
114	static u8 crb_status(struct tpm_chip *chip)
115	{
116	struct crb_priv *priv = chip->vendor.priv;
117	u8 sts = 0;
118
119	if ((le32_to_cpu(ioread32(&priv->cca->start)) & CRB_START_INVOKE) !=
120	CRB_START_INVOKE)
121	sts \|= CRB_STS_COMPLETE;
122
123	return sts;
124	}
125
126	static int crb_recv(struct tpm_chip chip, u8 buf, size_t count)
127	{
128	struct crb_priv *priv = chip->vendor.priv;
129	unsigned int expected;
130
131	/* sanity check */
132	if (count < 6)
133	return -EIO;
134
135	if (le32_to_cpu(ioread32(&priv->cca->sts)) & CRB_CA_STS_ERROR)
136	return -EIO;
137
138	memcpy_fromio(buf, priv->rsp, 6);
139	expected = be32_to_cpup((__be32 *) &buf[2]);
140
141	if (expected > count)
142	return -EIO;
143
144	memcpy_fromio(&buf[6], &priv->rsp[6], expected - 6);
145
146	return expected;
147	}
148
149	static int crb_do_acpi_start(struct tpm_chip *chip)
150	{
151	union acpi_object *obj;
152	int rc;
153
154	obj = acpi_evaluate_dsm(chip->acpi_dev_handle,
155	CRB_ACPI_START_UUID,
156	CRB_ACPI_START_REVISION_ID,
157	CRB_ACPI_START_INDEX,
158	NULL);
159	if (!obj)
160	return -ENXIO;
161	rc = obj->integer.value == 0 ? 0 : -ENXIO;
162	ACPI_FREE(obj);
163	return rc;
164	}
165
166	static int crb_send(struct tpm_chip chip, u8 buf, size_t len)
167	{
168	struct crb_priv *priv = chip->vendor.priv;
169	int rc = 0;
170
171	if (len > le32_to_cpu(ioread32(&priv->cca->cmd_size))) {
172	dev_err(&chip->dev,
173	"invalid command count value %x %zx\n",
174	(unsigned int) len,
175	(size_t) le32_to_cpu(ioread32(&priv->cca->cmd_size)));
176	return -E2BIG;
177	}
178
179	memcpy_toio(priv->cmd, buf, len);
180
181	/* Make sure that cmd is populated before issuing start. */
182	wmb();
183
184	if (priv->flags & CRB_FL_CRB_START)
185	iowrite32(cpu_to_le32(CRB_START_INVOKE), &priv->cca->start);
186
187	if (priv->flags & CRB_FL_ACPI_START)
188	rc = crb_do_acpi_start(chip);
189
190	return rc;
191	}
192
193	static void crb_cancel(struct tpm_chip *chip)
194	{
195	struct crb_priv *priv = chip->vendor.priv;
196
197	iowrite32(cpu_to_le32(CRB_CANCEL_INVOKE), &priv->cca->cancel);
198
199	/* Make sure that cmd is populated before issuing cancel. */
200	wmb();
201
202	if ((priv->flags & CRB_FL_ACPI_START) && crb_do_acpi_start(chip))
203	dev_err(&chip->dev, "ACPI Start failed\n");
204
205	iowrite32(0, &priv->cca->cancel);
206	}
207
208	static bool crb_req_canceled(struct tpm_chip *chip, u8 status)
209	{
210	struct crb_priv *priv = chip->vendor.priv;
211	u32 cancel = le32_to_cpu(ioread32(&priv->cca->cancel));
212
213	return (cancel & CRB_CANCEL_INVOKE) == CRB_CANCEL_INVOKE;
214	}
215
216	static const struct tpm_class_ops tpm_crb = {
217	.status = crb_status,
218	.recv = crb_recv,
219	.send = crb_send,
220	.cancel = crb_cancel,
221	.req_canceled = crb_req_canceled,
222	.req_complete_mask = CRB_STS_COMPLETE,
223	.req_complete_val = CRB_STS_COMPLETE,
224	};
225
226	static int crb_acpi_add(struct acpi_device *device)
227	{
228	struct tpm_chip *chip;
229	struct acpi_tpm2 *buf;
230	struct crb_priv *priv;
231	struct device *dev = &device->dev;
232	acpi_status status;
233	u32 sm;
234	u64 pa;
235	int rc;
236
237	chip = tpmm_chip_alloc(dev, &tpm_crb);
238	if (IS_ERR(chip))
239	return PTR_ERR(chip);
240
241	chip->flags = TPM_CHIP_FLAG_TPM2;
242
243	status = acpi_get_table(ACPI_SIG_TPM2, 1,
244	(struct acpi_table_header **) &buf);
245	if (ACPI_FAILURE(status)) {
246	dev_err(dev, "failed to get TPM2 ACPI table\n");
247	return -ENODEV;
248	}
249
250	if (buf->hdr.length < sizeof(struct acpi_tpm2)) {
251	dev_err(dev, "TPM2 ACPI table has wrong size");
252	return -EINVAL;
253	}
254
255	priv = (struct crb_priv *) devm_kzalloc(dev, sizeof(struct crb_priv),
256	GFP_KERNEL);
257	if (!priv) {
258	dev_err(dev, "failed to devm_kzalloc for private data\n");
259	return -ENOMEM;
260	}
261
262	sm = le32_to_cpu(buf->start_method);
263
264	/* The reason for the extra quirk is that the PTT in 4th Gen Core CPUs
265	* report only ACPI start but in practice seems to require both
266	* ACPI start and CRB start.
267	*/
268	if (sm == CRB_SM_CRB \|\| sm == CRB_SM_CRB_WITH_ACPI_START \|\|
269	!strcmp(acpi_device_hid(device), "MSFT0101"))
270	priv->flags \|= CRB_FL_CRB_START;
271
272	if (sm == CRB_SM_ACPI_START \|\| sm == CRB_SM_CRB_WITH_ACPI_START)
273	priv->flags \|= CRB_FL_ACPI_START;
274
275	priv->cca = (struct crb_control_area __iomem *)
276	devm_ioremap_nocache(dev, buf->control_area_pa, 0x1000);
277	if (!priv->cca) {
278	dev_err(dev, "ioremap of the control area failed\n");
279	return -ENOMEM;
280	}
281
282	memcpy_fromio(&pa, &priv->cca->cmd_pa, 8);
283	pa = le64_to_cpu(pa);
284	priv->cmd = devm_ioremap_nocache(dev, le64_to_cpu(pa),
285	ioread32(&priv->cca->cmd_size));
286	if (!priv->cmd) {
287	dev_err(dev, "ioremap of the command buffer failed\n");
288	return -ENOMEM;
289	}
290
291	memcpy_fromio(&pa, &priv->cca->rsp_pa, 8);
292	pa = le64_to_cpu(pa);
293	priv->rsp = devm_ioremap_nocache(dev, le64_to_cpu(pa),
294	ioread32(&priv->cca->rsp_size));
295	if (!priv->rsp) {
296	dev_err(dev, "ioremap of the response buffer failed\n");
297	return -ENOMEM;
298	}
299
300	chip->vendor.priv = priv;
301
302	/* Default timeouts and durations */
303	chip->vendor.timeout_a = msecs_to_jiffies(TPM2_TIMEOUT_A);
304	chip->vendor.timeout_b = msecs_to_jiffies(TPM2_TIMEOUT_B);
305	chip->vendor.timeout_c = msecs_to_jiffies(TPM2_TIMEOUT_C);
306	chip->vendor.timeout_d = msecs_to_jiffies(TPM2_TIMEOUT_D);
307	chip->vendor.duration[TPM_SHORT] =
308	msecs_to_jiffies(TPM2_DURATION_SHORT);
309	chip->vendor.duration[TPM_MEDIUM] =
310	msecs_to_jiffies(TPM2_DURATION_MEDIUM);
311	chip->vendor.duration[TPM_LONG] =
312	msecs_to_jiffies(TPM2_DURATION_LONG);
313
314	chip->acpi_dev_handle = device->handle;
315
316	rc = tpm2_do_selftest(chip);
317	if (rc)
318	return rc;
319
320	return tpm_chip_register(chip);
321	}
322
323	static int crb_acpi_remove(struct acpi_device *device)
324	{
325	struct device *dev = &device->dev;
326	struct tpm_chip *chip = dev_get_drvdata(dev);
327
328	tpm_chip_unregister(chip);
329	return 0;
330	}
331
332	static struct acpi_device_id crb_device_ids[] = {
333	{"MSFT0101", 0},
334	{"", 0},
335	};
336	MODULE_DEVICE_TABLE(acpi, crb_device_ids);
337
338	static struct acpi_driver crb_acpi_driver = {
339	.name = "tpm_crb",
340	.ids = crb_device_ids,
341	.ops = {
342	.add = crb_acpi_add,
343	.remove = crb_acpi_remove,
344	},
345	.drv = {
346	.pm = &crb_pm,
347	},
348	};
349
350	module_acpi_driver(crb_acpi_driver);
351	MODULE_AUTHOR("Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>");
352	MODULE_DESCRIPTION("TPM2 Driver");
353	MODULE_VERSION("0.1");
354	MODULE_LICENSE("GPL");