Add TPM version checking Change-Id: Ic32b7bcf0bc5501e21dc84e79419a256d9b0d095 R=semenzato@chromium.org,reinauer@chromium.org BUG=chrome-os-partner:2832 TEST=manual crossystem tpm_fwver tpm_kernver On a debug system, this will return 0x00010001 0x00010001 Review URL: http://codereview.chromium.org/6685075

commit: 5ac39bfff0d9e2ad2c3e1fe9b3fd3f314b50a472 [log] [tgz]
author: Randall Spangler <rspangler@chromium.org> Thu Mar 17 17:58:56 2011 -0700
committer: Randall Spangler <rspangler@chromium.org> Thu Mar 17 17:58:56 2011 -0700
tree: b92352d8dfb4e721ec9127efdb142e77c182187b
parent: f4ba19d81d4fefa0dba4efbdd57dc863138fde3a [diff] [blame]
diff --git a/firmware/lib/vboot_kernel.c b/firmware/lib/vboot_kernel.c
index e50fd0f..204874f 100644
--- a/firmware/lib/vboot_kernel.c
+++ b/firmware/lib/vboot_kernel.c

@@ -232,6 +232,12 @@
       /* Ignore return code, since we need to boot recovery mode to
        * fix the TPM. */
     }
+
+    /* Read the key indices from the TPM; ignore any errors */
+    if (shared) {
+      RollbackFirmwareRead(&shared->fw_version_tpm);
+      RollbackKernelRead(&shared->kernel_version_tpm);
+    }
   } else {
     /* Use the kernel subkey passed from LoadFirmware(). */
     kernel_subkey = &shared->kernel_subkey;
@@ -247,6 +253,8 @@
         recovery = VBNV_RECOVERY_RW_TPM_ERROR;
       goto LoadKernelExit;
     }
+    if (shared)
+      shared->kernel_version_tpm = tpm_version;
   }
 
   do {
@@ -521,6 +529,8 @@
             recovery = VBNV_RECOVERY_RW_TPM_ERROR;
           goto LoadKernelExit;
         }
+        if (shared)
+          shared->kernel_version_tpm = (uint32_t)lowest_version;
       }
     }
commit	5ac39bfff0d9e2ad2c3e1fe9b3fd3f314b50a472	[log] [tgz]
author	Randall Spangler <rspangler@chromium.org>	Thu Mar 17 17:58:56 2011 -0700
committer	Randall Spangler <rspangler@chromium.org>	Thu Mar 17 17:58:56 2011 -0700
tree	b92352d8dfb4e721ec9127efdb142e77c182187b
parent	f4ba19d81d4fefa0dba4efbdd57dc863138fde3a [diff] [blame]