Trusted Platform Module 2.0

Page under construction... Informations on this page are not guaranteed !!

TPM 2.0 chips can be used with APF/OPOS SOMs. This page will summarize how to.

We suppose you have developed a docking board with a TPM 2.0 chip connected to the SPI bus of the i.MX6UL(L).

Installation

Kernel drivers

• Needed drivers are already installed with 4.17+ kernel on OPOS6UL(NANO)

Declare chip in device tree

buildroot/output/build/linux-4.17.4/arch/arm/boot/dts/imx6ul-imx6ull-opos6uldev.dtsi

&ecspi4 {
        pinctrl-names = "default";
        pinctrl-0 = <&pinctrl_ecspi4>;
        cs-gpios = <&gpio4 9 GPIO_ACTIVE_LOW>, <&gpio4 3 GPIO_ACTIVE_LOW>;
        status = "okay";

        tpm0: tpm_tis@0 {
                compatible = "st,st33htpm-spi";
                reg = <0>;
                spi-max-frequency = <1000000>;
                status = "okay";
        };
/*
        spidev1: spi@1 {
                compatible = "spidev";
                reg = <1>;
                spi-max-frequency = <5000000>;
        };
*/
};

Userspace tools

• TBDL

Usage

modprobe

Links

• https://www.youtube.com/watch?v=0qu9R7Tlw9o (Intel 2017)
• https://www.youtube.com/watch?v=KyDkZkRPawM (Guerri FOSDEM 2017)
• http://www.linux-magazine.com/Issues/2018/206/Trusted-Platform-Module
• http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.145.1218&rep=rep1&type=pdf (A PROOF OF CONCEPT IMPLEMENTATION OF EAP-TLS WITH TPM SUPPORT)