[mirror_edk2.git] / SecurityPkg / Tcg / TcgSmm / TcgSmm.c

/** @file\r
  It updates TPM items in ACPI table and registers SMI callback\r
  functions for physical presence and ClearMemory.\r
\r
  Caution: This module requires additional review when modified.\r
  This driver will have external input - variable and ACPINvs data in SMM mode.\r
  This external input must be validated carefully to avoid security issue.\r
\r
  PhysicalPresenceCallback() and MemoryClearCallback() will receive untrusted input and do some check.\r
\r
Copyright (c) 2011 - 2016, Intel Corporation. All rights reserved.<BR>\r
This program and the accompanying materials \r
are licensed and made available under the terms and conditions of the BSD License \r
which accompanies this distribution.  The full text of the license may be found at \r
http://opensource.org/licenses/bsd-license.php\r
\r
THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
\r
**/\r
\r
#include "TcgSmm.h"\r
\r
EFI_SMM_VARIABLE_PROTOCOL  *mSmmVariable;\r
TCG_NVS                    *mTcgNvs;\r
\r
/**\r
  Software SMI callback for TPM physical presence which is called from ACPI method.\r
\r
  Caution: This function may receive untrusted input.\r
  Variable and ACPINvs are external input, so this function will validate\r
  its data structure to be valid value.\r
\r
  @param[in]      DispatchHandle  The unique handle assigned to this handler by SmiHandlerRegister().\r
  @param[in]      Context         Points to an optional handler context which was specified when the\r
                                  handler was registered.\r
  @param[in, out] CommBuffer      A pointer to a collection of data in memory that will\r
                                  be conveyed from a non-SMM environment into an SMM environment.\r
  @param[in, out] CommBufferSize  The size of the CommBuffer.\r
\r
  @retval EFI_SUCCESS             The interrupt was handled successfully.\r
\r
**/\r
EFI_STATUS\r
EFIAPI\r
PhysicalPresenceCallback (\r
  IN EFI_HANDLE                  DispatchHandle,\r
  IN CONST VOID                  *Context,\r
  IN OUT VOID                    *CommBuffer,\r
  IN OUT UINTN                   *CommBufferSize\r
  )\r
{\r
  EFI_STATUS                     Status;\r
  UINTN                          DataSize;\r
  EFI_PHYSICAL_PRESENCE          PpData;\r
  EFI_PHYSICAL_PRESENCE_FLAGS    Flags;\r
  BOOLEAN                        RequestConfirmed;\r
\r
  //\r
  // Get the Physical Presence variable\r
  //\r
  DataSize = sizeof (EFI_PHYSICAL_PRESENCE);\r
  Status = mSmmVariable->SmmGetVariable (\r
                           PHYSICAL_PRESENCE_VARIABLE,\r
                           &gEfiPhysicalPresenceGuid,\r
                           NULL,\r
                           &DataSize,\r
                           &PpData\r
                           );\r
\r
  DEBUG ((EFI_D_INFO, "[TPM] PP callback, Parameter = %x\n", mTcgNvs->PhysicalPresence.Parameter));\r
  if (mTcgNvs->PhysicalPresence.Parameter == ACPI_FUNCTION_RETURN_REQUEST_RESPONSE_TO_OS) {\r
    if (EFI_ERROR (Status)) {\r
      mTcgNvs->PhysicalPresence.ReturnCode  = PP_RETURN_TPM_OPERATION_RESPONSE_FAILURE;\r
      mTcgNvs->PhysicalPresence.LastRequest = 0;\r
      mTcgNvs->PhysicalPresence.Response    = 0;\r
      DEBUG ((EFI_D_ERROR, "[TPM] Get PP variable failure! Status = %r\n", Status));\r
      return EFI_SUCCESS;\r
    }\r
    mTcgNvs->PhysicalPresence.ReturnCode  = PP_RETURN_TPM_OPERATION_RESPONSE_SUCCESS;\r
    mTcgNvs->PhysicalPresence.LastRequest = PpData.LastPPRequest;\r
    mTcgNvs->PhysicalPresence.Response    = PpData.PPResponse;\r
  } else if ((mTcgNvs->PhysicalPresence.Parameter == ACPI_FUNCTION_SUBMIT_REQUEST_TO_BIOS) \r
          || (mTcgNvs->PhysicalPresence.Parameter == ACPI_FUNCTION_SUBMIT_REQUEST_TO_BIOS_2)) {\r
    if (EFI_ERROR (Status)) {\r
      mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_SUBMIT_REQUEST_TO_PREOS_GENERAL_FAILURE;\r
      DEBUG ((EFI_D_ERROR, "[TPM] Get PP variable failure! Status = %r\n", Status));\r
      return EFI_SUCCESS;\r
    }\r
    if (mTcgNvs->PhysicalPresence.Request == PHYSICAL_PRESENCE_SET_OPERATOR_AUTH) {\r
      //\r
      // This command requires UI to prompt user for Auth data.\r
      //\r
      mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_SUBMIT_REQUEST_TO_PREOS_NOT_IMPLEMENTED;\r
      return EFI_SUCCESS;\r
    }\r
\r
    if (PpData.PPRequest != mTcgNvs->PhysicalPresence.Request) {\r
      PpData.PPRequest = (UINT8) mTcgNvs->PhysicalPresence.Request;\r
      DataSize = sizeof (EFI_PHYSICAL_PRESENCE);\r
      Status = mSmmVariable->SmmSetVariable (\r
                               PHYSICAL_PRESENCE_VARIABLE,\r
                               &gEfiPhysicalPresenceGuid,\r
                               EFI_VARIABLE_NON_VOLATILE | EFI_VARIABLE_BOOTSERVICE_ACCESS | EFI_VARIABLE_RUNTIME_ACCESS,\r
                               DataSize,\r
                               &PpData\r
                               );\r
    }\r
\r
    if (EFI_ERROR (Status)) { \r
      mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_SUBMIT_REQUEST_TO_PREOS_GENERAL_FAILURE;\r
      return EFI_SUCCESS;\r
    }\r
    mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_SUBMIT_REQUEST_TO_PREOS_SUCCESS;\r
\r
    if (mTcgNvs->PhysicalPresence.Request >= TCG_PHYSICAL_PRESENCE_VENDOR_SPECIFIC_OPERATION) {\r
      DataSize = sizeof (EFI_PHYSICAL_PRESENCE_FLAGS);\r
      Status = mSmmVariable->SmmGetVariable (\r
                               PHYSICAL_PRESENCE_FLAGS_VARIABLE,\r
                               &gEfiPhysicalPresenceGuid,\r
                               NULL,\r
                               &DataSize,\r
                               &Flags\r
                               );\r
      if (EFI_ERROR (Status)) {\r
        Flags.PPFlags = TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_PROVISION;\r
      }\r
      mTcgNvs->PhysicalPresence.ReturnCode = TcgPpVendorLibSubmitRequestToPreOSFunction (mTcgNvs->PhysicalPresence.Request, Flags.PPFlags);\r
    }\r
  } else if (mTcgNvs->PhysicalPresence.Parameter == ACPI_FUNCTION_GET_USER_CONFIRMATION_STATUS_FOR_REQUEST) {\r
    if (EFI_ERROR (Status)) {\r
      mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_BLOCKED_BY_BIOS_CONFIGURATION;\r
      DEBUG ((EFI_D_ERROR, "[TPM] Get PP variable failure! Status = %r\n", Status));\r
      return EFI_SUCCESS;\r
    }\r
    //\r
    // Get the Physical Presence flags\r
    //\r
    DataSize = sizeof (EFI_PHYSICAL_PRESENCE_FLAGS);\r
    Status = mSmmVariable->SmmGetVariable (\r
                             PHYSICAL_PRESENCE_FLAGS_VARIABLE,\r
                             &gEfiPhysicalPresenceGuid,\r
                             NULL,\r
                             &DataSize,\r
                             &Flags\r
                             );\r
    if (EFI_ERROR (Status)) {\r
      mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_BLOCKED_BY_BIOS_CONFIGURATION;\r
      DEBUG ((EFI_D_ERROR, "[TPM] Get PP flags failure! Status = %r\n", Status));\r
      return EFI_SUCCESS;\r
    }\r
\r
    RequestConfirmed = FALSE;\r
\r
    switch (mTcgNvs->PPRequestUserConfirm) {\r
      case PHYSICAL_PRESENCE_ENABLE:\r
      case PHYSICAL_PRESENCE_DISABLE:\r
      case PHYSICAL_PRESENCE_ACTIVATE:\r
      case PHYSICAL_PRESENCE_DEACTIVATE:\r
      case PHYSICAL_PRESENCE_ENABLE_ACTIVATE:\r
      case PHYSICAL_PRESENCE_DEACTIVATE_DISABLE:\r
      case PHYSICAL_PRESENCE_SET_OWNER_INSTALL_TRUE:\r
      case PHYSICAL_PRESENCE_SET_OWNER_INSTALL_FALSE:\r
      case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_OWNER_TRUE:\r
      case PHYSICAL_PRESENCE_DEACTIVATE_DISABLE_OWNER_FALSE:\r
        if ((Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_PROVISION) != 0) {\r
          RequestConfirmed = TRUE;\r
        }\r
        break;\r
\r
      case PHYSICAL_PRESENCE_CLEAR:\r
      case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_CLEAR:\r
        if ((Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_CLEAR) != 0) {\r
          RequestConfirmed = TRUE;\r
        }\r
        break;\r
\r
      case PHYSICAL_PRESENCE_DEFERRED_PP_UNOWNERED_FIELD_UPGRADE:\r
        if ((Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_MAINTENANCE) != 0) {\r
          RequestConfirmed = TRUE;\r
        }\r
        break;\r
\r
      case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_CLEAR_ENABLE_ACTIVATE:\r
      case PHYSICAL_PRESENCE_CLEAR_ENABLE_ACTIVATE:\r
        if ((Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_CLEAR) != 0 && (Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_PROVISION) != 0) {\r
          RequestConfirmed = TRUE;\r
        }\r
        break;  \r
\r
      case PHYSICAL_PRESENCE_SET_NO_PPI_PROVISION_FALSE:\r
      case PHYSICAL_PRESENCE_SET_NO_PPI_CLEAR_FALSE:\r
      case PHYSICAL_PRESENCE_SET_NO_PPI_MAINTENANCE_FALSE:\r
      case PHYSICAL_PRESENCE_NO_ACTION:\r
        RequestConfirmed = TRUE;\r
        break;\r
\r
      case PHYSICAL_PRESENCE_SET_OPERATOR_AUTH:\r
        //\r
        // This command requires UI to prompt user for Auth data\r
        //\r
        mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_NOT_IMPLEMENTED; \r
        return EFI_SUCCESS;\r
      default:\r
        break;\r
    }\r
\r
    if (RequestConfirmed) {\r
      mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_ALLOWED_AND_PPUSER_NOT_REQUIRED;\r
    } else {\r
      mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_ALLOWED_AND_PPUSER_REQUIRED;\r
    }    \r
    if (mTcgNvs->PhysicalPresence.Request >= TCG_PHYSICAL_PRESENCE_VENDOR_SPECIFIC_OPERATION) {\r
      mTcgNvs->PhysicalPresence.ReturnCode = TcgPpVendorLibGetUserConfirmationStatusFunction (mTcgNvs->PhysicalPresence.Request, Flags.PPFlags);\r
    }\r
  } \r
\r
  return EFI_SUCCESS;\r
}\r
\r
\r
/**\r
  Software SMI callback for MemoryClear which is called from ACPI method.\r
\r
  Caution: This function may receive untrusted input.\r
  Variable and ACPINvs are external input, so this function will validate\r
  its data structure to be valid value.\r
\r
  @param[in]      DispatchHandle  The unique handle assigned to this handler by SmiHandlerRegister().\r
  @param[in]      Context         Points to an optional handler context which was specified when the\r
                                  handler was registered.\r
  @param[in, out] CommBuffer      A pointer to a collection of data in memory that will\r
                                  be conveyed from a non-SMM environment into an SMM environment.\r
  @param[in, out] CommBufferSize  The size of the CommBuffer.\r
\r
  @retval EFI_SUCCESS             The interrupt was handled successfully.\r
\r
**/\r
EFI_STATUS\r
EFIAPI\r
MemoryClearCallback (\r
  IN EFI_HANDLE                  DispatchHandle,\r
  IN CONST VOID                  *Context,\r
  IN OUT VOID                    *CommBuffer,\r
  IN OUT UINTN                   *CommBufferSize\r
  )\r
{\r
  EFI_STATUS                     Status;\r
  UINTN                          DataSize;\r
  UINT8                          MorControl;\r
\r
  mTcgNvs->MemoryClear.ReturnCode = MOR_REQUEST_SUCCESS;\r
  if (mTcgNvs->MemoryClear.Parameter == ACPI_FUNCTION_DSM_MEMORY_CLEAR_INTERFACE) {\r
    MorControl = (UINT8) mTcgNvs->MemoryClear.Request;\r
  } else if (mTcgNvs->MemoryClear.Parameter == ACPI_FUNCTION_PTS_CLEAR_MOR_BIT) {\r
    DataSize = sizeof (UINT8);\r
    Status = mSmmVariable->SmmGetVariable (\r
                             MEMORY_OVERWRITE_REQUEST_VARIABLE_NAME,\r
                             &gEfiMemoryOverwriteControlDataGuid,\r
                             NULL,\r
                             &DataSize,\r
                             &MorControl\r
                             );\r
    if (EFI_ERROR (Status)) {\r
      mTcgNvs->MemoryClear.ReturnCode = MOR_REQUEST_GENERAL_FAILURE;\r
      DEBUG ((EFI_D_ERROR, "[TPM] Get MOR variable failure! Status = %r\n", Status));\r
      return EFI_SUCCESS;\r
    }\r
\r
    if (MOR_CLEAR_MEMORY_VALUE (MorControl) == 0x0) {\r
      return EFI_SUCCESS;\r
    }\r
    MorControl &= ~MOR_CLEAR_MEMORY_BIT_MASK;\r
  }\r
\r
  DataSize = sizeof (UINT8);\r
  Status = mSmmVariable->SmmSetVariable (\r
                           MEMORY_OVERWRITE_REQUEST_VARIABLE_NAME,\r
                           &gEfiMemoryOverwriteControlDataGuid,\r
                           EFI_VARIABLE_NON_VOLATILE | EFI_VARIABLE_BOOTSERVICE_ACCESS | EFI_VARIABLE_RUNTIME_ACCESS,\r
                           DataSize,\r
                           &MorControl\r
                           );\r
  if (EFI_ERROR (Status)) { \r
    mTcgNvs->MemoryClear.ReturnCode = MOR_REQUEST_GENERAL_FAILURE;\r
    DEBUG ((EFI_D_ERROR, "[TPM] Set MOR variable failure! Status = %r\n", Status));\r
  }\r
\r
  return EFI_SUCCESS;\r
}\r
\r
/**\r
  Find the operation region in TCG ACPI table by given Name and Size,\r
  and initialize it if the region is found.\r
\r
  @param[in, out] Table          The TPM item in ACPI table.\r
  @param[in]      Name           The name string to find in TPM table.\r
  @param[in]      Size           The size of the region to find.\r
\r
  @return                        The allocated address for the found region.\r
\r
**/\r
VOID *\r
AssignOpRegion (\r
  EFI_ACPI_DESCRIPTION_HEADER    *Table,\r
  UINT32                         Name,\r
  UINT16                         Size\r
  )\r
{\r
  EFI_STATUS                     Status;\r
  AML_OP_REGION_32_8             *OpRegion;\r
  EFI_PHYSICAL_ADDRESS           MemoryAddress;\r
\r
  MemoryAddress = SIZE_4GB - 1;\r
\r
  //\r
  // Patch some pointers for the ASL code before loading the SSDT.\r
  //\r
  for (OpRegion  = (AML_OP_REGION_32_8 *) (Table + 1);\r
       OpRegion <= (AML_OP_REGION_32_8 *) ((UINT8 *) Table + Table->Length);\r
       OpRegion  = (AML_OP_REGION_32_8 *) ((UINT8 *) OpRegion + 1)) {\r
    if ((OpRegion->OpRegionOp  == AML_EXT_REGION_OP) && \r
        (OpRegion->NameString  == Name) &&\r
        (OpRegion->DWordPrefix == AML_DWORD_PREFIX) &&\r
        (OpRegion->BytePrefix  == AML_BYTE_PREFIX)) {\r
\r
      Status = gBS->AllocatePages(AllocateMaxAddress, EfiACPIMemoryNVS, EFI_SIZE_TO_PAGES (Size), &MemoryAddress);\r
      ASSERT_EFI_ERROR (Status);\r
      ZeroMem ((VOID *)(UINTN)MemoryAddress, Size);\r
      OpRegion->RegionOffset = (UINT32) (UINTN) MemoryAddress;\r
      OpRegion->RegionLen    = (UINT8) Size;\r
      break;\r
    }\r
  }\r
\r
  return (VOID *) (UINTN) MemoryAddress;\r
}\r
\r
/**\r
  Initialize and publish TPM items in ACPI table.\r
\r
  @retval   EFI_SUCCESS     The TCG ACPI table is published successfully.\r
  @retval   Others          The TCG ACPI table is not published.\r
\r
**/\r
EFI_STATUS\r
PublishAcpiTable (\r
  VOID\r
  )\r
{\r
  EFI_STATUS                     Status;\r
  EFI_ACPI_TABLE_PROTOCOL        *AcpiTable;\r
  UINTN                          TableKey;\r
  EFI_ACPI_DESCRIPTION_HEADER    *Table;\r
  UINTN                          TableSize;\r
\r
  Status = GetSectionFromFv (\r
             &gEfiCallerIdGuid,\r
             EFI_SECTION_RAW,\r
             0,\r
             (VOID **) &Table,\r
             &TableSize\r
             );\r
  ASSERT_EFI_ERROR (Status);\r
\r
\r
  //\r
  // Measure to PCR[0] with event EV_POST_CODE ACPI DATA\r
  //\r
  TpmMeasureAndLogData(\r
    0,\r
    EV_POST_CODE,\r
    EV_POSTCODE_INFO_ACPI_DATA,\r
    ACPI_DATA_LEN,\r
    Table,\r
    TableSize\r
    );\r
\r
\r
  ASSERT (Table->OemTableId == SIGNATURE_64 ('T', 'c', 'g', 'T', 'a', 'b', 'l', 'e'));\r
  CopyMem (Table->OemId, PcdGetPtr (PcdAcpiDefaultOemId), sizeof (Table->OemId) );\r
  mTcgNvs = AssignOpRegion (Table, SIGNATURE_32 ('T', 'N', 'V', 'S'), (UINT16) sizeof (TCG_NVS));\r
  ASSERT (mTcgNvs != NULL);\r
\r
  //\r
  // Publish the TPM ACPI table\r
  //\r
  Status = gBS->LocateProtocol (&gEfiAcpiTableProtocolGuid, NULL, (VOID **) &AcpiTable);\r
  ASSERT_EFI_ERROR (Status);\r
\r
  TableKey = 0;\r
  Status = AcpiTable->InstallAcpiTable (\r
                        AcpiTable,\r
                        Table,\r
                        TableSize,\r
                        &TableKey\r
                        );\r
  ASSERT_EFI_ERROR (Status);\r
\r
  return Status;\r
}\r
\r
/**\r
  The driver's entry point.\r
\r
  It install callbacks for TPM physical presence and MemoryClear, and locate \r
  SMM variable to be used in the callback function.\r
\r
  @param[in] ImageHandle  The firmware allocated handle for the EFI image.  \r
  @param[in] SystemTable  A pointer to the EFI System Table.\r
  \r
  @retval EFI_SUCCESS     The entry point is executed successfully.\r
  @retval Others          Some error occurs when executing this entry point.\r
\r
**/\r
EFI_STATUS\r
EFIAPI\r
InitializeTcgSmm (\r
  IN EFI_HANDLE                  ImageHandle,\r
  IN EFI_SYSTEM_TABLE            *SystemTable\r
  )\r
{\r
  EFI_STATUS                     Status;\r
  EFI_SMM_SW_DISPATCH2_PROTOCOL  *SwDispatch;\r
  EFI_SMM_SW_REGISTER_CONTEXT    SwContext;\r
  EFI_HANDLE                     SwHandle;\r
\r
  if (!CompareGuid (PcdGetPtr(PcdTpmInstanceGuid), &gEfiTpmDeviceInstanceTpm12Guid)){\r
    DEBUG ((EFI_D_ERROR, "No TPM12 instance required!\n"));\r
    return EFI_UNSUPPORTED;\r
  }\r
\r
  Status = PublishAcpiTable ();\r
  ASSERT_EFI_ERROR (Status);\r
\r
  //\r
  // Get the Sw dispatch protocol and register SMI callback functions.\r
  //\r
  Status = gSmst->SmmLocateProtocol (&gEfiSmmSwDispatch2ProtocolGuid, NULL, (VOID**)&SwDispatch);\r
  ASSERT_EFI_ERROR (Status);\r
  SwContext.SwSmiInputValue = (UINTN) -1;\r
  Status = SwDispatch->Register (SwDispatch, PhysicalPresenceCallback, &SwContext, &SwHandle);\r
  ASSERT_EFI_ERROR (Status);\r
  if (EFI_ERROR (Status)) {\r
    return Status;\r
  }\r
  mTcgNvs->PhysicalPresence.SoftwareSmi = (UINT8) SwContext.SwSmiInputValue;\r
\r
  SwContext.SwSmiInputValue = (UINTN) -1;\r
  Status = SwDispatch->Register (SwDispatch, MemoryClearCallback, &SwContext, &SwHandle);\r
  ASSERT_EFI_ERROR (Status);\r
  if (EFI_ERROR (Status)) {\r
    return Status;\r
  }\r
  mTcgNvs->MemoryClear.SoftwareSmi = (UINT8) SwContext.SwSmiInputValue;\r
  \r
  //\r
  // Locate SmmVariableProtocol.\r
  //\r
  Status = gSmst->SmmLocateProtocol (&gEfiSmmVariableProtocolGuid, NULL, (VOID**)&mSmmVariable);\r
  ASSERT_EFI_ERROR (Status);\r
\r
  return EFI_SUCCESS;\r
}\r
\r
Commit	Line	Data
0c18794e	1	/** @file\r
	2	It updates TPM items in ACPI table and registers SMI callback\r
	3	functions for physical presence and ClearMemory.\r
	4	\r
dc204d5a JY	5	Caution: This module requires additional review when modified.\r
	6	This driver will have external input - variable and ACPINvs data in SMM mode.\r
	7	This external input must be validated carefully to avoid security issue.\r
	8	\r
	9	PhysicalPresenceCallback() and MemoryClearCallback() will receive untrusted input and do some check.\r
	10	\r
053f31e3	11	Copyright (c) 2011 - 2016, Intel Corporation. All rights reserved.<BR>\r
0c18794e	12	This program and the accompanying materials \r
	13	are licensed and made available under the terms and conditions of the BSD License \r
	14	which accompanies this distribution. The full text of the license may be found at \r
	15	http://opensource.org/licenses/bsd-license.php\r
	16	\r
	17	THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
	18	WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
	19	\r
	20	**/\r
	21	\r
82a1e09c	22	#include "TcgSmm.h"\r
0c18794e	23	\r
	24	EFI_SMM_VARIABLE_PROTOCOL *mSmmVariable;\r
	25	TCG_NVS *mTcgNvs;\r
	26	\r
	27	/**\r
	28	Software SMI callback for TPM physical presence which is called from ACPI method.\r
	29	\r
dc204d5a JY	30	Caution: This function may receive untrusted input.\r
	31	Variable and ACPINvs are external input, so this function will validate\r
	32	its data structure to be valid value.\r
	33	\r
0c18794e	34	@param[in] DispatchHandle The unique handle assigned to this handler by SmiHandlerRegister().\r
	35	@param[in] Context Points to an optional handler context which was specified when the\r
	36	handler was registered.\r
	37	@param[in, out] CommBuffer A pointer to a collection of data in memory that will\r
	38	be conveyed from a non-SMM environment into an SMM environment.\r
	39	@param[in, out] CommBufferSize The size of the CommBuffer.\r
	40	\r
	41	@retval EFI_SUCCESS The interrupt was handled successfully.\r
	42	\r
	43	**/\r
	44	EFI_STATUS\r
	45	EFIAPI\r
	46	PhysicalPresenceCallback (\r
	47	IN EFI_HANDLE DispatchHandle,\r
	48	IN CONST VOID *Context,\r
	49	IN OUT VOID *CommBuffer,\r
	50	IN OUT UINTN *CommBufferSize\r
	51	)\r
	52	{\r
	53	EFI_STATUS Status;\r
	54	UINTN DataSize;\r
	55	EFI_PHYSICAL_PRESENCE PpData;\r
4610b23a	56	EFI_PHYSICAL_PRESENCE_FLAGS Flags;\r
0c18794e	57	BOOLEAN RequestConfirmed;\r
	58	\r
	59	//\r
	60	// Get the Physical Presence variable\r
	61	//\r
	62	DataSize = sizeof (EFI_PHYSICAL_PRESENCE);\r
	63	Status = mSmmVariable->SmmGetVariable (\r
	64	PHYSICAL_PRESENCE_VARIABLE,\r
	65	&gEfiPhysicalPresenceGuid,\r
	66	NULL,\r
	67	&DataSize,\r
	68	&PpData\r
	69	);\r
0c18794e	70	\r
0c18794e	71	DEBUG ((EFI_D_INFO, "[TPM] PP callback, Parameter = %x\n", mTcgNvs->PhysicalPresence.Parameter));\r
82a1e09c	72	if (mTcgNvs->PhysicalPresence.Parameter == ACPI_FUNCTION_RETURN_REQUEST_RESPONSE_TO_OS) {\r
4610b23a JY	73	if (EFI_ERROR (Status)) {\r
	74	mTcgNvs->PhysicalPresence.ReturnCode = PP_RETURN_TPM_OPERATION_RESPONSE_FAILURE;\r
	75	mTcgNvs->PhysicalPresence.LastRequest = 0;\r
	76	mTcgNvs->PhysicalPresence.Response = 0;\r
	77	DEBUG ((EFI_D_ERROR, "[TPM] Get PP variable failure! Status = %r\n", Status));\r
	78	return EFI_SUCCESS;\r
	79	}\r
	80	mTcgNvs->PhysicalPresence.ReturnCode = PP_RETURN_TPM_OPERATION_RESPONSE_SUCCESS;\r
0c18794e	81	mTcgNvs->PhysicalPresence.LastRequest = PpData.LastPPRequest;\r
0c18794e	82	mTcgNvs->PhysicalPresence.Response = PpData.PPResponse;\r
82a1e09c	83	} else if ((mTcgNvs->PhysicalPresence.Parameter == ACPI_FUNCTION_SUBMIT_REQUEST_TO_BIOS) \r
82a1e09c	84	\|\| (mTcgNvs->PhysicalPresence.Parameter == ACPI_FUNCTION_SUBMIT_REQUEST_TO_BIOS_2)) {\r
4610b23a JY	85	if (EFI_ERROR (Status)) {\r
	86	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_SUBMIT_REQUEST_TO_PREOS_GENERAL_FAILURE;\r
	87	DEBUG ((EFI_D_ERROR, "[TPM] Get PP variable failure! Status = %r\n", Status));\r
	88	return EFI_SUCCESS;\r
	89	}\r
607599bf	90	if (mTcgNvs->PhysicalPresence.Request == PHYSICAL_PRESENCE_SET_OPERATOR_AUTH) {\r
0c18794e	91	//\r
82a1e09c	92	// This command requires UI to prompt user for Auth data.\r
0c18794e	93	//\r
4610b23a	94	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_SUBMIT_REQUEST_TO_PREOS_NOT_IMPLEMENTED;\r
0c18794e	95	return EFI_SUCCESS;\r
	96	}\r
	97	\r
	98	if (PpData.PPRequest != mTcgNvs->PhysicalPresence.Request) {\r
	99	PpData.PPRequest = (UINT8) mTcgNvs->PhysicalPresence.Request;\r
	100	DataSize = sizeof (EFI_PHYSICAL_PRESENCE);\r
	101	Status = mSmmVariable->SmmSetVariable (\r
	102	PHYSICAL_PRESENCE_VARIABLE,\r
	103	&gEfiPhysicalPresenceGuid,\r
	104	EFI_VARIABLE_NON_VOLATILE \| EFI_VARIABLE_BOOTSERVICE_ACCESS \| EFI_VARIABLE_RUNTIME_ACCESS,\r
	105	DataSize,\r
	106	&PpData\r
	107	);\r
	108	}\r
	109	\r
	110	if (EFI_ERROR (Status)) { \r
4610b23a	111	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_SUBMIT_REQUEST_TO_PREOS_GENERAL_FAILURE;\r
0c18794e	112	return EFI_SUCCESS;\r
0c18794e	113	}\r
4610b23a JY	114	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_SUBMIT_REQUEST_TO_PREOS_SUCCESS;\r
	115	\r
	116	if (mTcgNvs->PhysicalPresence.Request >= TCG_PHYSICAL_PRESENCE_VENDOR_SPECIFIC_OPERATION) {\r
	117	DataSize = sizeof (EFI_PHYSICAL_PRESENCE_FLAGS);\r
	118	Status = mSmmVariable->SmmGetVariable (\r
	119	PHYSICAL_PRESENCE_FLAGS_VARIABLE,\r
	120	&gEfiPhysicalPresenceGuid,\r
	121	NULL,\r
	122	&DataSize,\r
	123	&Flags\r
	124	);\r
	125	if (EFI_ERROR (Status)) {\r
	126	Flags.PPFlags = TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_PROVISION;\r
	127	}\r
	128	mTcgNvs->PhysicalPresence.ReturnCode = TcgPpVendorLibSubmitRequestToPreOSFunction (mTcgNvs->PhysicalPresence.Request, Flags.PPFlags);\r
	129	}\r
82a1e09c	130	} else if (mTcgNvs->PhysicalPresence.Parameter == ACPI_FUNCTION_GET_USER_CONFIRMATION_STATUS_FOR_REQUEST) {\r
4610b23a JY	131	if (EFI_ERROR (Status)) {\r
	132	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_BLOCKED_BY_BIOS_CONFIGURATION;\r
	133	DEBUG ((EFI_D_ERROR, "[TPM] Get PP variable failure! Status = %r\n", Status));\r
	134	return EFI_SUCCESS;\r
	135	}\r
ed094569 DG	136	//\r
	137	// Get the Physical Presence flags\r
	138	//\r
4610b23a	139	DataSize = sizeof (EFI_PHYSICAL_PRESENCE_FLAGS);\r
ed094569 DG	140	Status = mSmmVariable->SmmGetVariable (\r
	141	PHYSICAL_PRESENCE_FLAGS_VARIABLE,\r
	142	&gEfiPhysicalPresenceGuid,\r
	143	NULL,\r
	144	&DataSize,\r
	145	&Flags\r
	146	);\r
	147	if (EFI_ERROR (Status)) {\r
4610b23a	148	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_BLOCKED_BY_BIOS_CONFIGURATION;\r
8a8c6c96	149	DEBUG ((EFI_D_ERROR, "[TPM] Get PP flags failure! Status = %r\n", Status));\r
ed094569 DG	150	return EFI_SUCCESS;\r
	151	}\r
	152	\r
0c18794e	153	RequestConfirmed = FALSE;\r
0c18794e	154	\r
053f31e3	155	switch (mTcgNvs->PPRequestUserConfirm) {\r
607599bf	156	case PHYSICAL_PRESENCE_ENABLE:\r
	157	case PHYSICAL_PRESENCE_DISABLE:\r
	158	case PHYSICAL_PRESENCE_ACTIVATE:\r
	159	case PHYSICAL_PRESENCE_DEACTIVATE:\r
	160	case PHYSICAL_PRESENCE_ENABLE_ACTIVATE:\r
	161	case PHYSICAL_PRESENCE_DEACTIVATE_DISABLE:\r
	162	case PHYSICAL_PRESENCE_SET_OWNER_INSTALL_TRUE:\r
	163	case PHYSICAL_PRESENCE_SET_OWNER_INSTALL_FALSE:\r
	164	case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_OWNER_TRUE:\r
	165	case PHYSICAL_PRESENCE_DEACTIVATE_DISABLE_OWNER_FALSE:\r
4610b23a	166	if ((Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_PROVISION) != 0) {\r
0c18794e	167	RequestConfirmed = TRUE;\r
	168	}\r
	169	break;\r
	170	\r
607599bf	171	case PHYSICAL_PRESENCE_CLEAR:\r
607599bf	172	case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_CLEAR:\r
4610b23a	173	if ((Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_CLEAR) != 0) {\r
0c18794e	174	RequestConfirmed = TRUE;\r
	175	}\r
	176	break;\r
	177	\r
607599bf	178	case PHYSICAL_PRESENCE_DEFERRED_PP_UNOWNERED_FIELD_UPGRADE:\r
4610b23a	179	if ((Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_MAINTENANCE) != 0) {\r
0c18794e	180	RequestConfirmed = TRUE;\r
	181	}\r
	182	break;\r
	183	\r
607599bf	184	case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_CLEAR_ENABLE_ACTIVATE:\r
607599bf	185	case PHYSICAL_PRESENCE_CLEAR_ENABLE_ACTIVATE:\r
4610b23a	186	if ((Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_CLEAR) != 0 && (Flags.PPFlags & TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_PROVISION) != 0) {\r
0c18794e	187	RequestConfirmed = TRUE;\r
	188	}\r
	189	break; \r
	190	\r
607599bf	191	case PHYSICAL_PRESENCE_SET_NO_PPI_PROVISION_FALSE:\r
	192	case PHYSICAL_PRESENCE_SET_NO_PPI_CLEAR_FALSE:\r
	193	case PHYSICAL_PRESENCE_SET_NO_PPI_MAINTENANCE_FALSE:\r
	194	case PHYSICAL_PRESENCE_NO_ACTION:\r
0c18794e	195	RequestConfirmed = TRUE;\r
	196	break;\r
	197	\r
607599bf	198	case PHYSICAL_PRESENCE_SET_OPERATOR_AUTH:\r
0c18794e	199	//\r
0c18794e	200	// This command requires UI to prompt user for Auth data\r
0c18794e	201	//\r
4610b23a	202	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_NOT_IMPLEMENTED; \r
0c18794e	203	return EFI_SUCCESS;\r
4610b23a JY	204	default:\r
4610b23a JY	205	break;\r
0c18794e	206	}\r
	207	\r
	208	if (RequestConfirmed) {\r
4610b23a	209	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_ALLOWED_AND_PPUSER_NOT_REQUIRED;\r
0c18794e	210	} else {\r
4610b23a	211	mTcgNvs->PhysicalPresence.ReturnCode = TCG_PP_GET_USER_CONFIRMATION_ALLOWED_AND_PPUSER_REQUIRED;\r
0c18794e	212	} \r
4610b23a JY	213	if (mTcgNvs->PhysicalPresence.Request >= TCG_PHYSICAL_PRESENCE_VENDOR_SPECIFIC_OPERATION) {\r
	214	mTcgNvs->PhysicalPresence.ReturnCode = TcgPpVendorLibGetUserConfirmationStatusFunction (mTcgNvs->PhysicalPresence.Request, Flags.PPFlags);\r
	215	}\r
0c18794e	216	} \r
	217	\r
	218	return EFI_SUCCESS;\r
	219	}\r
	220	\r
	221	\r
	222	/**\r
	223	Software SMI callback for MemoryClear which is called from ACPI method.\r
	224	\r
dc204d5a JY	225	Caution: This function may receive untrusted input.\r
	226	Variable and ACPINvs are external input, so this function will validate\r
	227	its data structure to be valid value.\r
	228	\r
0c18794e	229	@param[in] DispatchHandle The unique handle assigned to this handler by SmiHandlerRegister().\r
	230	@param[in] Context Points to an optional handler context which was specified when the\r
	231	handler was registered.\r
	232	@param[in, out] CommBuffer A pointer to a collection of data in memory that will\r
	233	be conveyed from a non-SMM environment into an SMM environment.\r
	234	@param[in, out] CommBufferSize The size of the CommBuffer.\r
	235	\r
	236	@retval EFI_SUCCESS The interrupt was handled successfully.\r
	237	\r
	238	**/\r
	239	EFI_STATUS\r
	240	EFIAPI\r
	241	MemoryClearCallback (\r
	242	IN EFI_HANDLE DispatchHandle,\r
	243	IN CONST VOID *Context,\r
	244	IN OUT VOID *CommBuffer,\r
	245	IN OUT UINTN *CommBufferSize\r
	246	)\r
	247	{\r
	248	EFI_STATUS Status;\r
	249	UINTN DataSize;\r
	250	UINT8 MorControl;\r
	251	\r
82a1e09c	252	mTcgNvs->MemoryClear.ReturnCode = MOR_REQUEST_SUCCESS;\r
82a1e09c	253	if (mTcgNvs->MemoryClear.Parameter == ACPI_FUNCTION_DSM_MEMORY_CLEAR_INTERFACE) {\r
0c18794e	254	MorControl = (UINT8) mTcgNvs->MemoryClear.Request;\r
82a1e09c	255	} else if (mTcgNvs->MemoryClear.Parameter == ACPI_FUNCTION_PTS_CLEAR_MOR_BIT) {\r
0c18794e	256	DataSize = sizeof (UINT8);\r
	257	Status = mSmmVariable->SmmGetVariable (\r
	258	MEMORY_OVERWRITE_REQUEST_VARIABLE_NAME,\r
	259	&gEfiMemoryOverwriteControlDataGuid,\r
	260	NULL,\r
	261	&DataSize,\r
	262	&MorControl\r
	263	);\r
	264	if (EFI_ERROR (Status)) {\r
8a8c6c96 DG	265	mTcgNvs->MemoryClear.ReturnCode = MOR_REQUEST_GENERAL_FAILURE;\r
8a8c6c96 DG	266	DEBUG ((EFI_D_ERROR, "[TPM] Get MOR variable failure! Status = %r\n", Status));\r
0c18794e	267	return EFI_SUCCESS;\r
	268	}\r
	269	\r
	270	if (MOR_CLEAR_MEMORY_VALUE (MorControl) == 0x0) {\r
	271	return EFI_SUCCESS;\r
	272	}\r
	273	MorControl &= ~MOR_CLEAR_MEMORY_BIT_MASK;\r
	274	}\r
	275	\r
	276	DataSize = sizeof (UINT8);\r
	277	Status = mSmmVariable->SmmSetVariable (\r
	278	MEMORY_OVERWRITE_REQUEST_VARIABLE_NAME,\r
	279	&gEfiMemoryOverwriteControlDataGuid,\r
	280	EFI_VARIABLE_NON_VOLATILE \| EFI_VARIABLE_BOOTSERVICE_ACCESS \| EFI_VARIABLE_RUNTIME_ACCESS,\r
	281	DataSize,\r
	282	&MorControl\r
	283	);\r
82a1e09c	284	if (EFI_ERROR (Status)) { \r
82a1e09c	285	mTcgNvs->MemoryClear.ReturnCode = MOR_REQUEST_GENERAL_FAILURE;\r
8a8c6c96	286	DEBUG ((EFI_D_ERROR, "[TPM] Set MOR variable failure! Status = %r\n", Status));\r
82a1e09c	287	}\r
0c18794e	288	\r
	289	return EFI_SUCCESS;\r
	290	}\r
	291	\r
	292	/**\r
	293	Find the operation region in TCG ACPI table by given Name and Size,\r
	294	and initialize it if the region is found.\r
	295	\r
	296	@param[in, out] Table The TPM item in ACPI table.\r
	297	@param[in] Name The name string to find in TPM table.\r
	298	@param[in] Size The size of the region to find.\r
	299	\r
	300	@return The allocated address for the found region.\r
	301	\r
	302	**/\r
	303	VOID *\r
	304	AssignOpRegion (\r
	305	EFI_ACPI_DESCRIPTION_HEADER *Table,\r
	306	UINT32 Name,\r
	307	UINT16 Size\r
	308	)\r
	309	{\r
	310	EFI_STATUS Status;\r
	311	AML_OP_REGION_32_8 *OpRegion;\r
	312	EFI_PHYSICAL_ADDRESS MemoryAddress;\r
	313	\r
	314	MemoryAddress = SIZE_4GB - 1;\r
	315	\r
	316	//\r
	317	// Patch some pointers for the ASL code before loading the SSDT.\r
	318	//\r
	319	for (OpRegion = (AML_OP_REGION_32_8 *) (Table + 1);\r
	320	OpRegion <= (AML_OP_REGION_32_8 ) ((UINT8 ) Table + Table->Length);\r
	321	OpRegion = (AML_OP_REGION_32_8 ) ((UINT8 ) OpRegion + 1)) {\r
209e6e31	322	if ((OpRegion->OpRegionOp == AML_EXT_REGION_OP) && \r
0c18794e	323	(OpRegion->NameString == Name) &&\r
0c18794e	324	(OpRegion->DWordPrefix == AML_DWORD_PREFIX) &&\r
	325	(OpRegion->BytePrefix == AML_BYTE_PREFIX)) {\r
	326	\r
	327	Status = gBS->AllocatePages(AllocateMaxAddress, EfiACPIMemoryNVS, EFI_SIZE_TO_PAGES (Size), &MemoryAddress);\r
	328	ASSERT_EFI_ERROR (Status);\r
	329	ZeroMem ((VOID *)(UINTN)MemoryAddress, Size);\r
	330	OpRegion->RegionOffset = (UINT32) (UINTN) MemoryAddress;\r
82a1e09c	331	OpRegion->RegionLen = (UINT8) Size;\r
0c18794e	332	break;\r
	333	}\r
	334	}\r
	335	\r
	336	return (VOID *) (UINTN) MemoryAddress;\r
	337	}\r
	338	\r
	339	/**\r
	340	Initialize and publish TPM items in ACPI table.\r
	341	\r
	342	@retval EFI_SUCCESS The TCG ACPI table is published successfully.\r
	343	@retval Others The TCG ACPI table is not published.\r
	344	\r
	345	**/\r
	346	EFI_STATUS\r
	347	PublishAcpiTable (\r
	348	VOID\r
	349	)\r
	350	{\r
	351	EFI_STATUS Status;\r
	352	EFI_ACPI_TABLE_PROTOCOL *AcpiTable;\r
	353	UINTN TableKey;\r
	354	EFI_ACPI_DESCRIPTION_HEADER *Table;\r
	355	UINTN TableSize;\r
	356	\r
	357	Status = GetSectionFromFv (\r
	358	&gEfiCallerIdGuid,\r
	359	EFI_SECTION_RAW,\r
	360	0,\r
	361	(VOID **) &Table,\r
	362	&TableSize\r
	363	);\r
	364	ASSERT_EFI_ERROR (Status);\r
	365	\r
a332cfd3	366	\r
	367	//\r
	368	// Measure to PCR[0] with event EV_POST_CODE ACPI DATA\r
	369	//\r
	370	TpmMeasureAndLogData(\r
	371	0,\r
	372	EV_POST_CODE,\r
	373	EV_POSTCODE_INFO_ACPI_DATA,\r
	374	ACPI_DATA_LEN,\r
	375	Table,\r
	376	TableSize\r
	377	);\r
	378	\r
	379	\r
0c18794e	380	ASSERT (Table->OemTableId == SIGNATURE_64 ('T', 'c', 'g', 'T', 'a', 'b', 'l', 'e'));\r
e84f07b5	381	CopyMem (Table->OemId, PcdGetPtr (PcdAcpiDefaultOemId), sizeof (Table->OemId) );\r
0f7f6d23	382	mTcgNvs = AssignOpRegion (Table, SIGNATURE_32 ('T', 'N', 'V', 'S'), (UINT16) sizeof (TCG_NVS));\r
0c18794e	383	ASSERT (mTcgNvs != NULL);\r
	384	\r
	385	//\r
	386	// Publish the TPM ACPI table\r
	387	//\r
	388	Status = gBS->LocateProtocol (&gEfiAcpiTableProtocolGuid, NULL, (VOID **) &AcpiTable);\r
	389	ASSERT_EFI_ERROR (Status);\r
	390	\r
	391	TableKey = 0;\r
	392	Status = AcpiTable->InstallAcpiTable (\r
	393	AcpiTable,\r
	394	Table,\r
	395	TableSize,\r
	396	&TableKey\r
	397	);\r
	398	ASSERT_EFI_ERROR (Status);\r
	399	\r
	400	return Status;\r
	401	}\r
	402	\r
	403	/**\r
	404	The driver's entry point.\r
	405	\r
	406	It install callbacks for TPM physical presence and MemoryClear, and locate \r
	407	SMM variable to be used in the callback function.\r
	408	\r
	409	@param[in] ImageHandle The firmware allocated handle for the EFI image. \r
	410	@param[in] SystemTable A pointer to the EFI System Table.\r
	411	\r
	412	@retval EFI_SUCCESS The entry point is executed successfully.\r
	413	@retval Others Some error occurs when executing this entry point.\r
	414	\r
	415	**/\r
	416	EFI_STATUS\r
	417	EFIAPI\r
	418	InitializeTcgSmm (\r
	419	IN EFI_HANDLE ImageHandle,\r
	420	IN EFI_SYSTEM_TABLE *SystemTable\r
	421	)\r
	422	{\r
	423	EFI_STATUS Status;\r
	424	EFI_SMM_SW_DISPATCH2_PROTOCOL *SwDispatch;\r
	425	EFI_SMM_SW_REGISTER_CONTEXT SwContext;\r
	426	EFI_HANDLE SwHandle;\r
	427	\r
c1d93242 JY	428	if (!CompareGuid (PcdGetPtr(PcdTpmInstanceGuid), &gEfiTpmDeviceInstanceTpm12Guid)){\r
	429	DEBUG ((EFI_D_ERROR, "No TPM12 instance required!\n"));\r
	430	return EFI_UNSUPPORTED;\r
	431	}\r
	432	\r
0c18794e	433	Status = PublishAcpiTable ();\r
	434	ASSERT_EFI_ERROR (Status);\r
	435	\r
	436	//\r
	437	// Get the Sw dispatch protocol and register SMI callback functions.\r
	438	//\r
	439	Status = gSmst->SmmLocateProtocol (&gEfiSmmSwDispatch2ProtocolGuid, NULL, (VOID**)&SwDispatch);\r
	440	ASSERT_EFI_ERROR (Status);\r
	441	SwContext.SwSmiInputValue = (UINTN) -1;\r
	442	Status = SwDispatch->Register (SwDispatch, PhysicalPresenceCallback, &SwContext, &SwHandle);\r
	443	ASSERT_EFI_ERROR (Status);\r
	444	if (EFI_ERROR (Status)) {\r
	445	return Status;\r
	446	}\r
	447	mTcgNvs->PhysicalPresence.SoftwareSmi = (UINT8) SwContext.SwSmiInputValue;\r
	448	\r
	449	SwContext.SwSmiInputValue = (UINTN) -1;\r
	450	Status = SwDispatch->Register (SwDispatch, MemoryClearCallback, &SwContext, &SwHandle);\r
	451	ASSERT_EFI_ERROR (Status);\r
	452	if (EFI_ERROR (Status)) {\r
	453	return Status;\r
	454	}\r
	455	mTcgNvs->MemoryClear.SoftwareSmi = (UINT8) SwContext.SwSmiInputValue;\r
	456	\r
	457	//\r
	458	// Locate SmmVariableProtocol.\r
	459	//\r
	460	Status = gSmst->SmmLocateProtocol (&gEfiSmmVariableProtocolGuid, NULL, (VOID**)&mSmmVariable);\r
	461	ASSERT_EFI_ERROR (Status);\r
	462	\r
	463	return EFI_SUCCESS;\r
	464	}\r
	465	\r