Home Explore Help
Sign In
seokj
/
vboot
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: a609478d1a
Branches Tags
vboot
/
utility
/
chromeos-tpm-recovery

chromeos-tpm-recovery 4.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177 
  1. #!/bin/sh -u
    2. 

  2. # Copyright (c) 2010 The Chromium OS Authors. All rights reserved.
    3. 

  3. # Use of this source code is governed by a BSD-style license that can be
    4. 

  4. # found in the LICENSE file.
    5. 

  5. #
    6. 

  6. # Run TPM diagnostics in recovery mode, and attempt to fix problems.  This is
    7. 

  7. # specific to devices with chromeos firmware.
    8. 

  8. #
    9. 

  9. # Most of the diagnostics examine the TPM state and try to fix it.  This may
    10. 

  10. # require clearing TPM ownership.
    11. 

  11. 

  12. tpmc=${USR_BIN:=/usr/bin}/tpmc
    13. 

  13. crossystem=${USR_BIN}/crossystem
    14. 

  14. dot_recovery=${DOT_RECOVERY:=/mnt/stateful_partition/.recovery}
    15. 

  15. awk=/usr/bin/awk
    16. 

  16. initctl=/sbin/initctl
    17. 

  17. daemon_was_running=
    18. 

  18. err=0
    19. 

  19. 

  20. tpm2_target() {
    21. 

  21.   # This is not an ideal way to tell if we are running on a tpm2 target, but
    22. 

  22.   # it will have to do for now.
    23. 

  23.   if [ -f "/etc/init/trunksd.conf" ]; then
    24. 

  24.     return 0
    25. 

  25.   else
    26. 

  26.     return 1
    27. 

  27.   fi
    28. 

  28. }
    29. 

  29. 

  30. log() {
    31. 

  31.   echo "$*"
    32. 

  32. }
    33. 

  33. 

  34. quit() {
    35. 

  35.   log "ERROR: $*"
    36. 

  36.   restart_daemon_if_needed
    37. 

  37.   log "exiting"
    38. 

  38. 

  39.   exit 1
    40. 

  40. }
    41. 

  41. 

  42. log_tryfix() {
    43. 

  43.   log "$*: attempting to fix"
    44. 

  44. }
    45. 

  45. 

  46. log_error() {
    47. 

  47.   err=$((err + 1))
    48. 

  48.   log "ERROR: $*"
    49. 

  49. }
    50. 

  50. 

  51. 

  52. log_warn() {
    53. 

  53.   log "WARNING: $*"
    54. 

  54. }
    55. 

  55. 

  56. tpm_clear_and_reenable () {
    57. 

  57.   $tpmc clear
    58. 

  58. 

  59.   # The below commands are are no-op on tpm2, but let's keep them here for
    60. 

  60.   # both TPM versions in case they are implemented in the future for
    61. 

  61.   # version 2.
    62. 

  62.   $tpmc enable
    63. 

  63.   $tpmc activate
    64. 

  64. }
    65. 

  65. 

  66. reset_space () {
    67. 

  67.   local index=$1
    68. 

  68.   local permissions=$2
    69. 

  69.   local size=$3
    70. 

  70.   local bytes="$4"
    71. 

  71. 

  72.   if ! tpm2_target; then
    73. 

  73.     # definespace is not yet supported for tpm2 (crosbug.com/p/59361), let's
    74. 

  74.     # just rely on the firmware having created the required spaces for now.
    75. 

  75.     if ! $tpmc definespace $index $size $permissions; then
    76. 

  76.       log "could not redefine space $index"
    77. 

  77.       return 1
    78. 

  78.     fi
    79. 

  79.   fi
    80. 

  80. 

  81.   # do not quote "$bytes", as we mean to expand it here
    82. 

  82.   if ! $tpmc write $index $bytes; then
    83. 

  83.     log "writing to $index failed"
    84. 

  84.     return 1
    85. 

  85.   fi
    86. 

  86.   log "space $index was recreated successfully"
    87. 

  87. }
    88. 

  88. 

  89. restart_daemon_if_needed() {
    90. 

  90.   if [ "$daemon_was_running" = 1 ]; then
    91. 

  91.     log "Restarting ${DAEMON}..."
    92. 

  92.     $initctl start "${DAEMON}" >/dev/null
    93. 

  93.   fi
    94. 

  94. }
    95. 

  95. 

  96. # ------------
    97. 

  97. # MAIN PROGRAM
    98. 

  98. # ------------
    99. 

  99. 

  100. # Sanity check: are we executing in a recovery image?
    101. 

  101. 

  102. if [ -e $dot_recovery ]; then
    103. 

  103.   quit "This is a developer utility, it should never run on a (production) recovery image"
    104. 

  104. fi
    105. 

  105. 

  106. # Did the firmware keep the TPM unlocked?
    107. 

  107. 

  108. if ! $($crossystem mainfw_type?recovery); then
    109. 

  109.   quit "You must put a test image on a USB stick and boot it in recovery mode to run this"
    110. 

  110. fi
    111. 

  111. 

  112. if tpm2_target; then
    113. 

  113.   DAEMON="trunksd"
    114. 

  114. else
    115. 

  115.   DAEMON="tcsd"
    116. 

  116. fi
    117. 

  117. 

  118. # TPM daemon may or may not be running
    119. 

  119. 

  120. log "Stopping ${DAEMON}..."
    121. 

  121. if $initctl stop "${DAEMON}" >/dev/null 2>/dev/null; then
    122. 

  122.   daemon_was_running=1
    123. 

  123.   log "done"
    124. 

  124. else
    125. 

  125.   daemon_was_running=0
    126. 

  126.   log "(was not running)"
    127. 

  127. fi
    128. 

  128. 

  129. # Is the state of the PP enable flags correct?
    130. 

  130. 

  131. if ! tpm2_target; then
    132. 

  132.   if ! ($tpmc getpf | grep -q "physicalPresenceLifetimeLock 1" &&
    133. 

  133.       $tpmc getpf | grep -q "physicalPresenceHWEnable 0" &&
    134. 

  134.       $tpmc getpf | grep -q "physicalPresenceCMDEnable 1"); then
    135. 

  135.     log_tryfix "bad state of physical presence enable flags"
    136. 

  136.     if $tpmc ppfin; then
    137. 

  137.       log "physical presence enable flags are now correctly set"
    138. 

  138.     else
    139. 

  139.       quit "could not set physical presence enable flags"
    140. 

  140.     fi
    141. 

  141.   fi
    142. 

  142. 

  143.   # Is physical presence turned on?
    144. 

  144. 

  145.   if $tpmc getvf | grep -q "physicalPresence 0"; then
    146. 

  146.     log_tryfix "physical presence is OFF, expected ON"
    147. 

  147.     # attempt to turn on physical presence
    148. 

  148.     if $tpmc ppon; then
    149. 

  149.       log "physical presence is now on"
    150. 

  150.     else
    151. 

  151.       quit "could not turn physical presence on"
    152. 

  152.     fi
    153. 

  153.   fi
    154. 

  154. else
    155. 

  155.   if ! $tpmc getvf | grep -q 'phEnable 1'; then
    156. 

  156.     quit "Platform Hierarchy is disabled, TPM can't be recovered"
    157. 

  157.   fi
    158. 

  158. fi
    159. 

  159. 

  160. # I never learned what this does, but it's probably good just in case...
    161. 

  161. tpm_clear_and_reenable
    162. 

  162. 

  163. # Reset firmware and kernel spaces to default (rollback version 1/1)
    164. 

  164. reset_space 0x1007 0x8001 0xa "02  00  01 00 01 00  00 00 00  4f" || \
    165. 

  165.   log_error "could not fix firmware space"
    166. 

  166. reset_space 0x1008 0x1 0xd "02  4c 57 52 47  01 00 01 00  00 00 00  55" || \
    167. 

  167.   log_error "could not fix kernel space"
    168. 

  168. 

  169. restart_daemon_if_needed
    170. 

  170. 

  171. if [ "$err" -eq 0 ]; then
    172. 

  172.   log "TPM has successfully been reset to factory defaults"
    173. 

  173. else
    174. 

  174.   log_error "TPM was not fully recovered."
    175. 

  175.   exit 1
    176. 

  176. fi
    177. 

  177.