[mirror_edk2.git] / SecurityPkg / Tcg / Tcg2Config / Tcg2ConfigDriver.c

/** @file\r
  The module entry point for Tcg2 configuration module.\r
\r
Copyright (c) 2015 - 2016, Intel Corporation. All rights reserved.<BR>\r
This program and the accompanying materials \r
are licensed and made available under the terms and conditions of the BSD License \r
which accompanies this distribution.  The full text of the license may be found at \r
http://opensource.org/licenses/bsd-license.php\r
\r
THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
\r
**/\r
\r
#include "Tcg2ConfigImpl.h"\r
\r
extern TPM_INSTANCE_ID  mTpmInstanceId[TPM_DEVICE_MAX + 1];\r
\r
/**\r
  Update default PCR banks data.\r
\r
  @param[in]  HiiPackage        HII Package.\r
  @param[in]  HiiPackageSize    HII Package size.\r
  @param[in]  PCRBanks          PCR Banks data.\r
\r
**/\r
VOID\r
UpdateDefaultPCRBanks (\r
  IN VOID                           *HiiPackage,\r
  IN UINTN                          HiiPackageSize,\r
  IN UINT32                         PCRBanks\r
  )\r
{\r
  EFI_HII_PACKAGE_HEADER        *HiiPackageHeader;\r
  EFI_IFR_OP_HEADER             *IfrOpCodeHeader;\r
  EFI_IFR_CHECKBOX              *IfrCheckBox;\r
  EFI_IFR_DEFAULT               *IfrDefault;\r
\r
  HiiPackageHeader = (EFI_HII_PACKAGE_HEADER *)HiiPackage;\r
\r
  switch (HiiPackageHeader->Type) {\r
  case EFI_HII_PACKAGE_FORMS:\r
    IfrOpCodeHeader = (EFI_IFR_OP_HEADER *)(HiiPackageHeader + 1);\r
    while ((UINTN)IfrOpCodeHeader < (UINTN)HiiPackageHeader + HiiPackageHeader->Length) {\r
      switch (IfrOpCodeHeader->OpCode) {\r
      case EFI_IFR_CHECKBOX_OP:\r
        IfrCheckBox = (EFI_IFR_CHECKBOX *)IfrOpCodeHeader;\r
        if ((IfrCheckBox->Question.QuestionId >= KEY_TPM2_PCR_BANKS_REQUEST_0) && (IfrCheckBox->Question.QuestionId <= KEY_TPM2_PCR_BANKS_REQUEST_4)) {\r
          IfrDefault = (EFI_IFR_DEFAULT *)(IfrCheckBox + 1);\r
          ASSERT (IfrDefault->Header.OpCode == EFI_IFR_DEFAULT_OP);\r
          ASSERT (IfrDefault->Type == EFI_IFR_TYPE_BOOLEAN);\r
          IfrDefault->Value.b = (BOOLEAN)((PCRBanks >> (IfrCheckBox->Question.QuestionId - KEY_TPM2_PCR_BANKS_REQUEST_0)) & 0x1);\r
        }\r
        break;\r
      }\r
      IfrOpCodeHeader = (EFI_IFR_OP_HEADER *)((UINTN)IfrOpCodeHeader + IfrOpCodeHeader->Length);\r
    }\r
    break;\r
  }\r
  return ;\r
}\r
\r
/**\r
  The entry point for Tcg2 configuration driver.\r
\r
  @param[in]  ImageHandle        The image handle of the driver.\r
  @param[in]  SystemTable        The system table.\r
\r
  @retval EFI_ALREADY_STARTED    The driver already exists in system.\r
  @retval EFI_OUT_OF_RESOURCES   Fail to execute entry point due to lack of resources.\r
  @retval EFI_SUCCES             All the related protocols are installed on the driver.\r
  @retval Others                 Fail to install protocols as indicated.\r
\r
**/\r
EFI_STATUS\r
EFIAPI\r
Tcg2ConfigDriverEntryPoint (\r
  IN EFI_HANDLE          ImageHandle,\r
  IN EFI_SYSTEM_TABLE    *SystemTable\r
  )\r
{\r
  EFI_STATUS                    Status;\r
  TCG2_CONFIG_PRIVATE_DATA      *PrivateData;\r
  TCG2_CONFIGURATION            Tcg2Configuration;\r
  TCG2_DEVICE_DETECTION         Tcg2DeviceDetection;\r
  UINTN                         Index;\r
  UINTN                         DataSize;\r
  EDKII_VARIABLE_LOCK_PROTOCOL  *VariableLockProtocol;\r
  UINT32                        CurrentActivePCRBanks;\r
\r
  Status = gBS->OpenProtocol (\r
                  ImageHandle,\r
                  &gEfiCallerIdGuid,\r
                  NULL,\r
                  ImageHandle,\r
                  ImageHandle,\r
                  EFI_OPEN_PROTOCOL_TEST_PROTOCOL\r
                  );\r
  if (!EFI_ERROR (Status)) {\r
    return EFI_ALREADY_STARTED;\r
  }\r
  \r
  //\r
  // Create a private data structure.\r
  //\r
  PrivateData = AllocateCopyPool (sizeof (TCG2_CONFIG_PRIVATE_DATA), &mTcg2ConfigPrivateDateTemplate);\r
  ASSERT (PrivateData != NULL);\r
  mTcg2ConfigPrivateDate = PrivateData;\r
  //\r
  // Install private GUID.\r
  //    \r
  Status = gBS->InstallMultipleProtocolInterfaces (\r
                  &ImageHandle,\r
                  &gEfiCallerIdGuid,\r
                  PrivateData,\r
                  NULL\r
                  );\r
  ASSERT_EFI_ERROR (Status);\r
\r
  Status = gBS->LocateProtocol (&gEfiTcg2ProtocolGuid, NULL, (VOID **) &PrivateData->Tcg2Protocol);\r
  ASSERT_EFI_ERROR (Status);\r
\r
  PrivateData->ProtocolCapability.Size = sizeof(PrivateData->ProtocolCapability);\r
  Status = PrivateData->Tcg2Protocol->GetCapability (\r
                                        PrivateData->Tcg2Protocol,\r
                                        &PrivateData->ProtocolCapability\r
                                        );\r
  ASSERT_EFI_ERROR (Status);\r
\r
  DataSize = sizeof(Tcg2Configuration);\r
  Status = gRT->GetVariable (\r
                  TCG2_STORAGE_NAME,\r
                  &gTcg2ConfigFormSetGuid,\r
                  NULL,\r
                  &DataSize,\r
                  &Tcg2Configuration\r
                  );\r
  if (EFI_ERROR (Status)) {\r
    //\r
    // Variable not ready, set default value\r
    //\r
    Tcg2Configuration.TpmDevice           = TPM_DEVICE_DEFAULT;\r
  }\r
\r
  //\r
  // Validation\r
  //\r
  if ((Tcg2Configuration.TpmDevice > TPM_DEVICE_MAX) || (Tcg2Configuration.TpmDevice < TPM_DEVICE_MIN)) {\r
    Tcg2Configuration.TpmDevice   = TPM_DEVICE_DEFAULT;\r
  }\r
\r
  //\r
  // Set value for Tcg2CurrentActivePCRBanks\r
  // Search Tcg2ConfigBin[] and update default value there\r
  //\r
  Status = PrivateData->Tcg2Protocol->GetActivePcrBanks (PrivateData->Tcg2Protocol, &CurrentActivePCRBanks);\r
  ASSERT_EFI_ERROR (Status);\r
  PrivateData->PCRBanksDesired = CurrentActivePCRBanks;\r
  UpdateDefaultPCRBanks (Tcg2ConfigBin + sizeof(UINT32), ReadUnaligned32((UINT32 *)Tcg2ConfigBin) - sizeof(UINT32), CurrentActivePCRBanks);\r
\r
  //\r
  // Sync data from PCD to variable, so that we do not need detect again in S3 phase.\r
  //\r
  Tcg2DeviceDetection.TpmDeviceDetected = TPM_DEVICE_NULL;\r
  for (Index = 0; Index < sizeof(mTpmInstanceId)/sizeof(mTpmInstanceId[0]); Index++) {\r
    if (CompareGuid (PcdGetPtr(PcdTpmInstanceGuid), &mTpmInstanceId[Index].TpmInstanceGuid)) {\r
      Tcg2DeviceDetection.TpmDeviceDetected = mTpmInstanceId[Index].TpmDevice;\r
      break;\r
    }\r
  }\r
\r
  PrivateData->TpmDeviceDetected = Tcg2DeviceDetection.TpmDeviceDetected;\r
  Tcg2Configuration.TpmDevice = Tcg2DeviceDetection.TpmDeviceDetected;\r
\r
  //\r
  // Save to variable so platform driver can get it.\r
  //\r
  Status = gRT->SetVariable (\r
                  TCG2_DEVICE_DETECTION_NAME,\r
                  &gTcg2ConfigFormSetGuid,\r
                  EFI_VARIABLE_NON_VOLATILE | EFI_VARIABLE_BOOTSERVICE_ACCESS,\r
                  sizeof(Tcg2DeviceDetection),\r
                  &Tcg2DeviceDetection\r
                  );\r
  if (EFI_ERROR (Status)) {\r
    DEBUG ((EFI_D_ERROR, "Tcg2ConfigDriver: Fail to set TCG2_DEVICE_DETECTION_NAME\n"));\r
    Status = gRT->SetVariable (\r
                    TCG2_DEVICE_DETECTION_NAME,\r
                    &gTcg2ConfigFormSetGuid,\r
                    EFI_VARIABLE_NON_VOLATILE | EFI_VARIABLE_BOOTSERVICE_ACCESS,\r
                    0,\r
                    NULL\r
                    );\r
    ASSERT_EFI_ERROR (Status);\r
  }\r
\r
  //\r
  // Save to variable so platform driver can get it.\r
  //\r
  Status = gRT->SetVariable (\r
                  TCG2_STORAGE_NAME,\r
                  &gTcg2ConfigFormSetGuid,\r
                  EFI_VARIABLE_NON_VOLATILE | EFI_VARIABLE_BOOTSERVICE_ACCESS,\r
                  sizeof(Tcg2Configuration),\r
                  &Tcg2Configuration\r
                  );\r
  if (EFI_ERROR (Status)) {\r
    DEBUG ((EFI_D_ERROR, "Tcg2ConfigDriver: Fail to set TCG2_STORAGE_NAME\n"));\r
  }\r
\r
  //\r
  // We should lock Tcg2DeviceDetection, because it contains information needed at S3.\r
  //\r
  Status = gBS->LocateProtocol (&gEdkiiVariableLockProtocolGuid, NULL, (VOID **)&VariableLockProtocol);\r
  if (!EFI_ERROR (Status)) {\r
    Status = VariableLockProtocol->RequestToLock (\r
                                     VariableLockProtocol,\r
                                     TCG2_DEVICE_DETECTION_NAME,\r
                                     &gTcg2ConfigFormSetGuid\r
                                     );\r
    ASSERT_EFI_ERROR (Status);\r
  }\r
  \r
  //\r
  // Install Tcg2 configuration form\r
  //\r
  Status = InstallTcg2ConfigForm (PrivateData);\r
  if (EFI_ERROR (Status)) {\r
    goto ErrorExit;\r
  }\r
\r
  return EFI_SUCCESS;\r
\r
ErrorExit:\r
  if (PrivateData != NULL) {\r
    UninstallTcg2ConfigForm (PrivateData);\r
  }  \r
  \r
  return Status;\r
}\r
\r
/**\r
  Unload the Tcg2 configuration form.\r
\r
  @param[in]  ImageHandle         The driver's image handle.\r
\r
  @retval     EFI_SUCCESS         The Tcg2 configuration form is unloaded.\r
  @retval     Others              Failed to unload the form.\r
\r
**/\r
EFI_STATUS\r
EFIAPI\r
Tcg2ConfigDriverUnload (\r
  IN EFI_HANDLE  ImageHandle\r
  )\r
{\r
  EFI_STATUS                  Status;\r
  TCG2_CONFIG_PRIVATE_DATA    *PrivateData;\r
\r
  Status = gBS->HandleProtocol (\r
                  ImageHandle,\r
                  &gEfiCallerIdGuid,\r
                  (VOID **) &PrivateData\r
                  );  \r
  if (EFI_ERROR (Status)) {\r
    return Status;  \r
  }\r
  \r
  ASSERT (PrivateData->Signature == TCG2_CONFIG_PRIVATE_DATA_SIGNATURE);\r
\r
  gBS->UninstallMultipleProtocolInterfaces (\r
         &ImageHandle,\r
         &gEfiCallerIdGuid,\r
         PrivateData,\r
         NULL\r
         );\r
  \r
  UninstallTcg2ConfigForm (PrivateData);\r
\r
  return EFI_SUCCESS;\r
}\r
Commit	Line	Data
1abfa4ce JY	1	/** @file\r
	2	The module entry point for Tcg2 configuration module.\r
	3	\r
518b6f65	4	Copyright (c) 2015 - 2016, Intel Corporation. All rights reserved.<BR>\r
1abfa4ce JY	5	This program and the accompanying materials \r
	6	are licensed and made available under the terms and conditions of the BSD License \r
	7	which accompanies this distribution. The full text of the license may be found at \r
	8	http://opensource.org/licenses/bsd-license.php\r
	9	\r
	10	THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
	11	WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
	12	\r
	13	**/\r
	14	\r
	15	#include "Tcg2ConfigImpl.h"\r
	16	\r
	17	extern TPM_INSTANCE_ID mTpmInstanceId[TPM_DEVICE_MAX + 1];\r
	18	\r
	19	/**\r
	20	Update default PCR banks data.\r
	21	\r
	22	@param[in] HiiPackage HII Package.\r
	23	@param[in] HiiPackageSize HII Package size.\r
	24	@param[in] PCRBanks PCR Banks data.\r
	25	\r
	26	**/\r
	27	VOID\r
	28	UpdateDefaultPCRBanks (\r
	29	IN VOID *HiiPackage,\r
	30	IN UINTN HiiPackageSize,\r
	31	IN UINT32 PCRBanks\r
	32	)\r
	33	{\r
	34	EFI_HII_PACKAGE_HEADER *HiiPackageHeader;\r
	35	EFI_IFR_OP_HEADER *IfrOpCodeHeader;\r
	36	EFI_IFR_CHECKBOX *IfrCheckBox;\r
	37	EFI_IFR_DEFAULT *IfrDefault;\r
	38	\r
	39	HiiPackageHeader = (EFI_HII_PACKAGE_HEADER *)HiiPackage;\r
	40	\r
	41	switch (HiiPackageHeader->Type) {\r
	42	case EFI_HII_PACKAGE_FORMS:\r
	43	IfrOpCodeHeader = (EFI_IFR_OP_HEADER *)(HiiPackageHeader + 1);\r
	44	while ((UINTN)IfrOpCodeHeader < (UINTN)HiiPackageHeader + HiiPackageHeader->Length) {\r
	45	switch (IfrOpCodeHeader->OpCode) {\r
	46	case EFI_IFR_CHECKBOX_OP:\r
	47	IfrCheckBox = (EFI_IFR_CHECKBOX *)IfrOpCodeHeader;\r
	48	if ((IfrCheckBox->Question.QuestionId >= KEY_TPM2_PCR_BANKS_REQUEST_0) && (IfrCheckBox->Question.QuestionId <= KEY_TPM2_PCR_BANKS_REQUEST_4)) {\r
	49	IfrDefault = (EFI_IFR_DEFAULT *)(IfrCheckBox + 1);\r
	50	ASSERT (IfrDefault->Header.OpCode == EFI_IFR_DEFAULT_OP);\r
	51	ASSERT (IfrDefault->Type == EFI_IFR_TYPE_BOOLEAN);\r
	52	IfrDefault->Value.b = (BOOLEAN)((PCRBanks >> (IfrCheckBox->Question.QuestionId - KEY_TPM2_PCR_BANKS_REQUEST_0)) & 0x1);\r
	53	}\r
	54	break;\r
	55	}\r
	56	IfrOpCodeHeader = (EFI_IFR_OP_HEADER *)((UINTN)IfrOpCodeHeader + IfrOpCodeHeader->Length);\r
	57	}\r
	58	break;\r
	59	}\r
	60	return ;\r
	61	}\r
	62	\r
	63	/**\r
	64	The entry point for Tcg2 configuration driver.\r
	65	\r
	66	@param[in] ImageHandle The image handle of the driver.\r
	67	@param[in] SystemTable The system table.\r
	68	\r
69	@retval EFI_ALREADY_STARTED The driver already exists in system.\r
70	@retval EFI_OUT_OF_RESOURCES Fail to execute entry point due to lack of resources.\r
71	@retval EFI_SUCCES All the related protocols are installed on the driver.\r
72	@retval Others Fail to install protocols as indicated.\r
73	\r
74	**/\r
75	EFI_STATUS\r
76	EFIAPI\r
77	Tcg2ConfigDriverEntryPoint (\r
78	IN EFI_HANDLE ImageHandle,\r
79	IN EFI_SYSTEM_TABLE *SystemTable\r
80	)\r
81	{\r
82	EFI_STATUS Status;\r
83	TCG2_CONFIG_PRIVATE_DATA *PrivateData;\r
84	TCG2_CONFIGURATION Tcg2Configuration;\r
85	TCG2_DEVICE_DETECTION Tcg2DeviceDetection;\r
86	UINTN Index;\r
87	UINTN DataSize;\r
88	EDKII_VARIABLE_LOCK_PROTOCOL *VariableLockProtocol;\r
89	UINT32 CurrentActivePCRBanks;\r
90	\r
91	Status = gBS->OpenProtocol (\r
92	ImageHandle,\r
93	&gEfiCallerIdGuid,\r
94	NULL,\r
95	ImageHandle,\r
96	ImageHandle,\r
97	EFI_OPEN_PROTOCOL_TEST_PROTOCOL\r
98	);\r
99	if (!EFI_ERROR (Status)) {\r
100	return EFI_ALREADY_STARTED;\r
101	}\r
102	\r
103	//\r
104	// Create a private data structure.\r
105	//\r
106	PrivateData = AllocateCopyPool (sizeof (TCG2_CONFIG_PRIVATE_DATA), &mTcg2ConfigPrivateDateTemplate);\r
107	ASSERT (PrivateData != NULL);\r
108	mTcg2ConfigPrivateDate = PrivateData;\r
109	//\r
110	// Install private GUID.\r
111	// \r
112	Status = gBS->InstallMultipleProtocolInterfaces (\r
113	&ImageHandle,\r
114	&gEfiCallerIdGuid,\r
115	PrivateData,\r
116	NULL\r
117	);\r
118	ASSERT_EFI_ERROR (Status);\r
119	\r
120	Status = gBS->LocateProtocol (&gEfiTcg2ProtocolGuid, NULL, (VOID **) &PrivateData->Tcg2Protocol);\r
121	ASSERT_EFI_ERROR (Status);\r
122	\r
123	PrivateData->ProtocolCapability.Size = sizeof(PrivateData->ProtocolCapability);\r
124	Status = PrivateData->Tcg2Protocol->GetCapability (\r
125	PrivateData->Tcg2Protocol,\r
126	&PrivateData->ProtocolCapability\r
127	);\r
128	ASSERT_EFI_ERROR (Status);\r
129	\r
130	DataSize = sizeof(Tcg2Configuration);\r
131	Status = gRT->GetVariable (\r
132	TCG2_STORAGE_NAME,\r
133	&gTcg2ConfigFormSetGuid,\r
134	NULL,\r
135	&DataSize,\r
136	&Tcg2Configuration\r
137	);\r
138	if (EFI_ERROR (Status)) {\r
139	//\r
140	// Variable not ready, set default value\r
141	//\r
142	Tcg2Configuration.TpmDevice = TPM_DEVICE_DEFAULT;\r
143	}\r
144	\r
145	//\r
146	// Validation\r
147	//\r
148	if ((Tcg2Configuration.TpmDevice > TPM_DEVICE_MAX) \|\| (Tcg2Configuration.TpmDevice < TPM_DEVICE_MIN)) {\r
149	Tcg2Configuration.TpmDevice = TPM_DEVICE_DEFAULT;\r
150	}\r
151	\r
152	//\r
153	// Set value for Tcg2CurrentActivePCRBanks\r
154	// Search Tcg2ConfigBin[] and update default value there\r
155	//\r
156	Status = PrivateData->Tcg2Protocol->GetActivePcrBanks (PrivateData->Tcg2Protocol, &CurrentActivePCRBanks);\r
157	ASSERT_EFI_ERROR (Status);\r
158	PrivateData->PCRBanksDesired = CurrentActivePCRBanks;\r
159	UpdateDefaultPCRBanks (Tcg2ConfigBin + sizeof(UINT32), ReadUnaligned32((UINT32 *)Tcg2ConfigBin) - sizeof(UINT32), CurrentActivePCRBanks);\r
160	\r
1abfa4ce JY	161	//\r
	162	// Sync data from PCD to variable, so that we do not need detect again in S3 phase.\r
	163	//\r
	164	Tcg2DeviceDetection.TpmDeviceDetected = TPM_DEVICE_NULL;\r
	165	for (Index = 0; Index < sizeof(mTpmInstanceId)/sizeof(mTpmInstanceId[0]); Index++) {\r
	166	if (CompareGuid (PcdGetPtr(PcdTpmInstanceGuid), &mTpmInstanceId[Index].TpmInstanceGuid)) {\r
	167	Tcg2DeviceDetection.TpmDeviceDetected = mTpmInstanceId[Index].TpmDevice;\r
	168	break;\r
	169	}\r
	170	}\r
	171	\r
	172	PrivateData->TpmDeviceDetected = Tcg2DeviceDetection.TpmDeviceDetected;\r
518b6f65	173	Tcg2Configuration.TpmDevice = Tcg2DeviceDetection.TpmDeviceDetected;\r
1abfa4ce JY	174	\r
	175	//\r
	176	// Save to variable so platform driver can get it.\r
	177	//\r
	178	Status = gRT->SetVariable (\r
	179	TCG2_DEVICE_DETECTION_NAME,\r
	180	&gTcg2ConfigFormSetGuid,\r
	181	EFI_VARIABLE_NON_VOLATILE \| EFI_VARIABLE_BOOTSERVICE_ACCESS,\r
	182	sizeof(Tcg2DeviceDetection),\r
	183	&Tcg2DeviceDetection\r
	184	);\r
	185	if (EFI_ERROR (Status)) {\r
	186	DEBUG ((EFI_D_ERROR, "Tcg2ConfigDriver: Fail to set TCG2_DEVICE_DETECTION_NAME\n"));\r
	187	Status = gRT->SetVariable (\r
	188	TCG2_DEVICE_DETECTION_NAME,\r
	189	&gTcg2ConfigFormSetGuid,\r
	190	EFI_VARIABLE_NON_VOLATILE \| EFI_VARIABLE_BOOTSERVICE_ACCESS,\r
	191	0,\r
	192	NULL\r
	193	);\r
	194	ASSERT_EFI_ERROR (Status);\r
	195	}\r
	196	\r
518b6f65 JY	197	//\r
	198	// Save to variable so platform driver can get it.\r
	199	//\r
	200	Status = gRT->SetVariable (\r
	201	TCG2_STORAGE_NAME,\r
	202	&gTcg2ConfigFormSetGuid,\r
	203	EFI_VARIABLE_NON_VOLATILE \| EFI_VARIABLE_BOOTSERVICE_ACCESS,\r
	204	sizeof(Tcg2Configuration),\r
	205	&Tcg2Configuration\r
	206	);\r
	207	if (EFI_ERROR (Status)) {\r
	208	DEBUG ((EFI_D_ERROR, "Tcg2ConfigDriver: Fail to set TCG2_STORAGE_NAME\n"));\r
	209	}\r
	210	\r
1abfa4ce JY	211	//\r
	212	// We should lock Tcg2DeviceDetection, because it contains information needed at S3.\r
	213	//\r
	214	Status = gBS->LocateProtocol (&gEdkiiVariableLockProtocolGuid, NULL, (VOID **)&VariableLockProtocol);\r
	215	if (!EFI_ERROR (Status)) {\r
	216	Status = VariableLockProtocol->RequestToLock (\r
	217	VariableLockProtocol,\r
	218	TCG2_DEVICE_DETECTION_NAME,\r
	219	&gTcg2ConfigFormSetGuid\r
	220	);\r
	221	ASSERT_EFI_ERROR (Status);\r
	222	}\r
	223	\r
	224	//\r
	225	// Install Tcg2 configuration form\r
	226	//\r
	227	Status = InstallTcg2ConfigForm (PrivateData);\r
	228	if (EFI_ERROR (Status)) {\r
	229	goto ErrorExit;\r
	230	}\r
	231	\r
	232	return EFI_SUCCESS;\r
	233	\r
	234	ErrorExit:\r
	235	if (PrivateData != NULL) {\r
	236	UninstallTcg2ConfigForm (PrivateData);\r
	237	} \r
	238	\r
	239	return Status;\r
	240	}\r
	241	\r
	242	/**\r
	243	Unload the Tcg2 configuration form.\r
	244	\r
	245	@param[in] ImageHandle The driver's image handle.\r
	246	\r
	247	@retval EFI_SUCCESS The Tcg2 configuration form is unloaded.\r
	248	@retval Others Failed to unload the form.\r
	249	\r
	250	**/\r
	251	EFI_STATUS\r
	252	EFIAPI\r
	253	Tcg2ConfigDriverUnload (\r
	254	IN EFI_HANDLE ImageHandle\r
	255	)\r
	256	{\r
	257	EFI_STATUS Status;\r
	258	TCG2_CONFIG_PRIVATE_DATA *PrivateData;\r
	259	\r
	260	Status = gBS->HandleProtocol (\r
	261	ImageHandle,\r
	262	&gEfiCallerIdGuid,\r
	263	(VOID **) &PrivateData\r
	264	); \r
	265	if (EFI_ERROR (Status)) {\r
	266	return Status; \r
	267	}\r
	268	\r
	269	ASSERT (PrivateData->Signature == TCG2_CONFIG_PRIVATE_DATA_SIGNATURE);\r
	270	\r
	271	gBS->UninstallMultipleProtocolInterfaces (\r
	272	&ImageHandle,\r
	273	&gEfiCallerIdGuid,\r
	274	PrivateData,\r
275	NULL\r
276	);\r
277	\r
278	UninstallTcg2ConfigForm (PrivateData);\r
279	\r
280	return EFI_SUCCESS;\r
281	}\r