mirror of
https://github.com/jiazhang0/meta-secure-core.git
synced 2026-01-11 16:50:12 +00:00
215174b60c
There exists only linux-yocto-tpm2.inc. BPN will resolve to linux-yocto-rt and linux-yocto-dev which don't have a recipe specific include files. Fixes bitbake recipe parsing errors like: ERROR: ParseError at /home/builder/src/build/../meta-secure-core/meta-tpm2/recipes-kernel/linux/linux-yocto-rt_5.%.bbappend:1: Could not include required file linux-yocto-rt-tpm2.inc ERROR: Parsing halted due to errors, see error messages above Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org>
TPM 2.0
This feature enables Trusted Platform Module (TPM 2.0) support, including kernel option changes to enable tpm drivers, and picking up TPM 2.0 packages.
Trusted Platform Module (TPM 2.0) is a microcontroller that stores keys, passwords, and digital certificates. A TPM 2.0 offers the capabilities as part of the overall platform security requirements.
Clear TPM
For TPM 2.0, the following typical steps can be performed to get the TPM ready for use:
- Clear and enable TPM from the BIOS or set the security jumper on the board.
- Take TPM ownership, setting Owner/Endorsement/Lockout passwords if necessary. These passwords are used for the authorization to certain TPM 2.0 commands.
# tpm2_takeownership -o <ownerPasswd> -e <endorsePasswd> -l <lockPasswd>
Then, you can use the TPM for a specific need, such as key generation, sealing encrypted data, etc.
Patches
Please submit any patches against the meta-tpm2 layer to the maintainer:
Maintainer: Jia Zhang zhang.jia@linux.alibaba.com