• Home
  • Raw
  • Download

Lines Matching refs:NV

549 NV Counters .......................................................................................…
990 {NV}
993 to indicate that the command may result in an update of NV memory and be subject to rate
994 throttling by the TPM. If the command code does not have this notation, then a write to NV
996 NOTE Any command that uses authorization may cause a write to NV if there is an authorization
997 failure. A TPM may use the occasion of command execution to update the NV
1005 TPM when the command completes. This may be combined with the {NV} modifier but not with the
1011 {NV F}
1020 context likely will be required. This may be combined with the {NV} modifier but not with the {F}
1026 {NV E}
1073 If the handle references an NV Index, then the allowed authorizations are determined by the
1074 settings of the attributes of the NV Index as described in Part 2, "TPMA_NV (NV Index Attributes)."
1255 3) If the handle references an NV Index, then
1262 the hierarchy associated with the existing NV Index is not disabled (TPM_RC_HANDLE).
1271 NV
1398 c) If the object or NV Index is subject to DA protection, and the authorization is with an HMAC or
1402 An object is subject to DA protection if its noDA attribute is CLEAR. An NV Index is subject to
1429 2) If the entity being authorized is an NV Index, then the associated authorization session is a po…
1434 commands that operate on objects and NV Indices.
1453 2) If the entity being authorized is an NV Index;
1457 (a) the TPMA_NV_POLICYWRITE attribute of the NV Index is SET if the command modifies
1458 the NV Index data (TPM_RC_AUTH_UNAVAILABLE);
1459 (b) the TPMA_NV_POLICYREAD attribute of the NV Index is SET if the command reads the
1460 NV Index data (TPM_RC_AUTH_UNAVAILABLE);
1465 (a) the TPMA_NV_AUTHWRITE attribute of the NV Index is SET if the command modifies
1466 the NV Index data (TPM_RC_AUTH_UNAVAILABLE);
1467 (b) the TPMA_NV_AUTHREAD attribute of the NV Index is SET if the command reads the
1468 NV Index data (TPM_RC_AUTH_UNAVAILABLE).
1825 This response code indicates that the TPM is rate-limiting writes to the NV
1827 that explicity writes to NV or commands that incidentally use NV such as a
1834 NV memory is currently not available and the command is not allowed to proceed
1835 until it is. This would occur in a system where the NV memory used by the TPM
2142 // Initialize NV environment
2388 TPM_CC_Startup {NV}
2513 // The command needs NV update. Check if NV is available.
2636 // Read persistent data from NV
2664 // in NV index
2698 For a shutdownType of any type, the volatile portion of Clock is saved to NV memory and the orderly
2699 shutdown indication is SET. NV with the TPMA_NV_ORDERY attribute will be updated.
2739 Some values may be either derived from other values or saved to NV memory.
2780 TPM_CC_Shutdown {NV}
2901 // The command needs NV update. Check if NV is available.
2917 // Save RAM backed NV index data
3073 TPM_CC_SelfTest {NV}
3243 TPM_CC_IncrementalSelfTest {NV}
6478 This command may not be used to change the authorization value for an NV Index or a Primary Object.
6481 If an NV Index is to have a new authorization, it is done with TPM2_NV_ChangeAuth().
11159 TPM_CC_StirRandom {NV}
12475 TPM_CC_EventSequenceComplete {NV F}
14222 TPM_CC_GetCommandAuditDigest {NV}
16322 TPM_CC_SetCommandCodeAuditStatus {NV}
16470 // The command needs NV update. Check if NV is available.
16491 // Save the change of command audit data (this sets g_updateNV so that NV
16505 // if change was made to command list, update NV
16507 // this sets g_updateNV so that NV will be updagted on exit.
16713 TPM_CC_PCR_Extend {NV}
16865 // If PCR is state saved and we need to update orderlyState, check NV
16958 TPM_CC_PCR_Event {NV}
17108 // If PCR is state saved and we need to update orderlyState, check NV
17383 TPM_CC_PCR_Allocate {NV}
17514 // The command needs NV update. Check if NV is available.
17615 TPM_CC_PCR_SetAuthPolicy {NV}
17748 // The command needs NV update. Check if NV is available.
17764 // Save new policy to NV
17947 // state clear data. If this is the case, Check if NV is available.
18026 TPM_CC_PCR_Reset {NV}
18136 // If PCR is state saved and we need to update orderlyState, check NV
19630 authValue. This includes the reserved handles (for example, Platform, Storage, and Endorsement), NV
21325 This command is used to cause conditional gating of a policy based on the contents of an NV Index.
21329 An authorization session providing authorization to read the NV Index shall be provided.
21335 If TPMA_NV_WRITTEN is not SET in the NV Index, the TPM shall return TPM_RC_NV_UNINITIALIZED.
21336 The TPM will validate that the size of operandB plus offset is not greater than the size of the NV
21338 The TPM will perform the indicated arithmetic check on the indicated portion of the selected NV Ind…
21358 offset from the start of the NV Index data to start the comparison
21365 The value of args and the Name of the NV Index are extended to policySession→policyDigest by
21383 the Name of the NV Index
21386 Magnitude comparisons assume that the octet at offset zero in the referenced NV location and in
21391 written. It is possible to use this change in the NV Index to create a write-once Index.
21440 the NV Index of the area to read
21460 the offset in the NV Index for the start of operand A
21518 // Include NV support routine for read access check
21523 NV index authorization type is not correct
21527 NV index read locked
21531 the NV index has not been initialized
21535 the comparison to the NV contents failed
21617 // Get NV index information
21624 // NV Read access check. NV index should be allowed for read. A
21629 // Valid NV data size should not be smaller than input operandB size
21633 // Get NV data. The size of NV data equals the input operand B size
22195 // NV is unavailable.
24781 YES if NV Index is required to have been written
24782 NO if NV Index is required not to have been written
24827 Make an NV Index policy dependent on the state of the TPMA_NV_WRITTEN attribute of the index.
24915 // Set session attributes so that the NV Index needs to be checked
25366 This command enables and disables use of a hierarchy and its associated NV storage. The command
25382 When this command is used to CLEAR shEnable, the TPM will disable access to any NV index that has
25383 TPMA_NV_PLATFORMCREATE CLEAR (indicating that the NV Index was defined using ownerAuth). As
25385 operate upon an NV index that has TPMA_NV_PLATFORMCREATE CLEAR.
25386 When this command is used to CLEAR phEnableNV, the TPM will disable access to any NV index that
25387 has TPMA_NV_PLATFORMCREATE SET (indicating that the NV Index was defined using platformAuth).
25389 attempts to operate upon an NV index that has TPMA_NV_PLATFORMCREATE SET.
25424 TPM_CC_HierarchyControl {NV E}
25706 // Before changing the internal state, make sure that NV is available.
25707 // Only need to update NV if changing the orderly state
25710 // The command needs NV update. Check if NV is available.
25717 // state is changing and NV is available so modify
25789 TPM_CC_SetPrimaryPolicy {NV}
25935 // The command need NV update for OWNER and ENDORSEMENT hierarchy, and
25937 // Check if NV is available. A TPM_RC_NV_UNAVAILABLE or TPM_RC_NV_RATE
26003 This command does not clear any NV Index values.
26043 TPM_CC_ChangePPS {NV E}
26164 // Check if NV is available. A TPM_RC_NV_UNAVAILABLE or TPM_RC_NV_RATE
26181 // Flush platform evict object and index in NV
26183 // Save hierarchy changes to NV
26259 TPM_CC_ChangeEPS {NV E}
26380 // The command needs NV update. Check if NV is available.
26403 // Flush evict object of endorsement hierarchy stored in NV
26405 // Save hierarchy changes to NV
26442 delete any NV Index with TPMA_NV_PLATFORMCREATE == CLEAR;
26523 TPM_CC_Clear {NV E}
26650 // The command needs NV update. Check if NV is available.
26679 // Flush owner and endorsement object and owner index in NV
26730 // Save hierarchy changes to NV
26746 // Update the DRBG state whenever writing orderly state to NV
26821 TPM_CC_ClearControl {NV}
26930 // The command needs NV update. Check if NV is available.
26944 // Record the change to NV
27014 TPM_CC_HierarchyChangeAuth {NV}
27142 // The command needs NV update. Check if NV is available.
27210 Authorizations for objects and NV Index values in the Platform hierarchy are never locked out.
27264 TPM_CC_DictionaryAttackLockReset {NV}
27359 // The command needs NV update. Check if NV is available.
27367 // Record the changes to NV
27439 TPM_CC_DictionaryAttackParameters {NV}
27559 // The command needs NV update. Check if NV is available.
27571 // Record the changes to NV
27661 TPM_CC_PP_Commands {NV}
27781 // The command needs NV update. Check if NV is available.
27872 TPM_CC_SetAlgorithmSet {NV}
27965 // The command needs NV update. Check if NV is available.
27972 // Write the algorithm set changes to NV
28114 NV Index allocations and contents;
28377 TPM_CC_FieldUpgradeData {NV}
28865 // the update of state reset data. If this is the case, check if NV is
28869 // The command needs NV update. Check if NV is available.
29529 // the update of state reset data. If this is the case, check if NV is
29584 // The command needs NV update. Check if NV is available.
29971 TPM_CC_EvictControl {NV}
30060 no space in NV to make evictHandle persistent
30127 // The command needs NV update. Check if NV is available.
30257 // Delete the persistent object in NV
30473 TPM_CC_ClockSet {NV}
31010 If the MSO of property is TPM_HT_NV_INDEX, then the TPM will return a list of NV Index
31306 // Get list of defined NV index
31647 The NV commands are used to create, update, read, and delete allocations of space in NV memory.
31655 TPMA_NV_PPREAD and TPMA_NV_PPWRITE indicate if reading or writing of the NV Index may be
31657 TPMA_NV_OWNERREAD and TPMA_NV_OWNERWRITE indicate if reading or writing of the NV Index
31659 If an operation on an NV index requires authorization, and the authHandle parameter is the handle o…
31660 NV Index, then the nvIndex parameter must have the same value or the TPM will return
31664 This check ensures that the authorization that was provided is associated with the NV Index being
31676 If an Index has been defined and not written, then any operation on the NV Index that requires read
31678 authorization checks but shall be performed before checking the NV Index authValue. An authorization
31679 failure due to the NV Index not having been written shall not be logged by the dictionary attack lo…
31689 …to interface with an implementationdependent library that allows access to NV memory. The actions …
31690 structure of the NV data.
31691 Only one NV Index may be directly referenced in a command.
31694 This means that, if authHandle references an NV Index, then nvIndex will have the same value.
31696 number of NV Indexes might be relocated as a result of deleting or adding a NV Ind ex.
31713 NV Counters
31717 When an NV counter is created, the TPM shall initialize the 8-octet counter value with a number tha…
31718 greater than any count value for any NV counter on the TPM since the time of TPM manufacture.
31719 An NV counter may be defined with the TPMA_NV_ORDERLY attribute to indicate that the NV Index is
31725 Before an NV counter can be used, the TPM shall validate that the count is not less than a previous…
31732 Because the TPM would have updated the NV Index if the difference between the count values was
31733 equal to MAX_ORDERLY_COUNT + 1, the highest value that could have been in the NV Index is
31738 The TPM may implement the RAM portion of the counter such that the effective value of the NV
31740 RAM version of the counter to MAX_ORDERLY_COUNT and no update of NV is necessary.
31744 When a new NV counter is created, the TPM may search all the counters to determine which has the
31767 This command defines the attributes of an NV Index and causes the TPM to reserve space to hold the
31768 data associated with the NV Index. If a definition already exists at the NV Index, the TPM will ret…
31790 If the NV Index is an ordinary Index and publicInfo→dataSize is larger than supported by the TPM
31795 has TPMA_NV_ORDERLY SET, then the maximum size of an ordin ary NV Index may be less than
31796 the size of an ordinary NV Index that has TPMA_NV_ORDERLY CLEAR.
31848 After the successful completion of this command, the NV Index exists but TPMA_NV_WRITTEN will be
31849 CLEAR. Any access of the NV data will return TPM_RC_NV_UINITIALIZED.
31864 In some implementations, an NV Index with the TPMA_NV_COUNTER attribute may require special TPM
31865 resources that provide higher endurance than regular NV. For those implementations, if this command
31868 of the digest produced by the NV Index's nameAlg (TPM_RC_SIZE).
31903 TPM_CC_NV_DefineSpace {NV}
31923 the public parameters of the NV area
32053 // Check if NV is available. NvIsAvailable may return TPM_RC_NV_UNAVAILABLE
32292 // If the NV index is used as a PCR, the data size must match the digest
32371 TPM_CC_NV_UndefineSpace {NV}
32385 the NV Index to remove from NV space
32491 // The command needs NV update. Check if NV is available.
32497 // Get NV index info
32509 // Call implementation dependent internal routine to delete NV index
32532 This command allows removal of a platform-created NV Index that has TPMA_NV_POLICY_DELETE
32534 This command requires that the policy of the NV Index be satisfied before the NV Index may be delet…
32599 TPM_CC_NV_UndefineSpaceSpecial {NV}
32710 // The command needs NV update. Check if NV is available.
32717 // Get NV index info
32723 // Call implementation dependent internal routine to delete NV index
32746 This command is used to read the public area and Name of an NV Index. The public area of an Index is
32788 the NV Index
32816 the public area of the NV Index
32883 // Get NV index info
32887 // Compute NV name
32910 This command writes a value to an area in NV memory that was previously defined by
32914 authPolicy of the NV Index.
32915 If the TPMA_NV_WRITELOCKED attribute of the NV Index is SET, then the TPM shall return
32919 If authorization sessions are present, they are checked before checks to see if writes to the NV
32922 If TPMA_NV_COUNTER, TPMA_NV_BITS or TPMA_NV_EXTEND of the NV Index is SET, then the
32925 the NV Index data, the TPM shall return TPM_RC_NV_RANGE and not write any data to the NV Index.
32926 If the TPMA_NV_WRITEALL attribute of the NV Index is SET, then the TPM shall return
32928 of the NV Index.
32930 starting at nvIndex→data[offset]. If the NV memory is implemented with a technology that has endura…
32931 …itations, the TPM shall check that the merged data is different from the current contents of the NV
32932 Index and only perform a write to NV memory if they differ.
32933 After successful completion of this command, TPMA_NV_WRITTEN for the NV Index will be SET.
32936 Once SET, TPMA_NV_WRITTEN remains SET until the NV Index is undefined or the NV Index is
32972 TPM_CC_NV_Write {NV}
32986 the NV Index of the area to write
32999 the offset into the NV Area
33126 // Get NV index info
33151 // attribute if it has not already been SET. If NV isn't available, an error
33192 This command is used to increment the value in an NV Index that has TPMA_NV_COUNTER SET. The
33193 data value of the NV Index is incremented by one.
33196 The NV Index counter is an unsigned value.
33213 NV
33237 An allowed implementation would keep a counter value in NV and a resettable counter in RAM. The
33238 reported value of the NV Index would be the sum of the two values. When the RAM count increments
33275 TPM_CC_NV_Increment {NV}
33289 the NV Index to increment
33337 NV index is not a counter
33421 // Get NV index info
33431 // Read NV data in native format for TPM CPU.
33436 // write to NV to proceed. This check is done here, because NvWriteIndexData()
33445 // Need to force an NV update
33471 // Write NV data back. A TPM_RC_NV_UNAVAILABLE or TPM_RC_NV_RATE error may
33495 This command extends a value to an area in NV memory that was previously defined by
33499 TPMA_NV_OWNERWRITE, TPMA_NV_AUTHWRITE, and the authPolicy of the NV Index.
33500 After successful completion of this command, TPMA_NV_WRITTEN for the NV Index will be SET.
33503 Once SET, TPMA_NV_WRITTEN remains SET until the NV Index is undefined or the NV Index is
33506 If the TPMA_NV_WRITELOCKED attribute of the NV Index is SET, then the TPM shall return
33510 If authorization sessions are present, they are checked before checks to see if writes to the NV
33513 The data.buffer parameter may be larger than the defined size of the NV Index.
33528 the value of the data field in the NV Index
33571 TPM_CC_NV_Extend {NV}
33585 the NV Index to extend
33729 // Get NV index info
33734 // If the Index is not-orderly, or if this is the first write, NV will
33740 // Check if NV is available. NvIsAvailable may return TPM_RC_NV_UNAVAILABLE
33827 This command is used to SET bits in an NV Index that was created as a bit field. Any number of bits…
33828 0 to 64 may be SET. The contents of data are ORed with the current contents of the NV Index startin…
33830 If TPMA_NV_WRITTEN is not SET, then, for the purposes of this command, the NV Index is considered
33833 After successful completion of this command, TPMA_NV_WRITTEN for the NV Index will be SET.
33874 TPM_CC_NV_SetBits {NV}
33888 NV Index of the area in which the bit is to be set
34029 // Get NV index info
34034 // If the Index is not-orderly, or if this is the first write, NV will
34040 // Check if NV is available. NvIsAvailable may return TPM_RC_NV_UNAVAILABLE
34102 If the TPMA_NV_WRITEDEFINE or TPMA_NV_WRITE_STCLEAR attributes of an NV location are SET,
34103 then this command may be used to inhibit further writes of the NV Index.
34105 TPMA_NV_OWNERWRITE, TPMA_NV_AUTHWRITE, and the authPolicy of the NV Index.
34106 It is not an error if TPMA_NV_WRITELOCKED for the NV Index is already SET.
34107 If neither TPMA_NV_WRITEDEFINE nor TPMA_NV_WRITE_STCLEAR of the NV Index is SET, then the
34110 is SET, then the TPM shall SET TPMA_NV_WRITELOCKED for the NV Index.
34150 TPM_CC_NV_WriteLock {NV}
34164 the NV Index of the area to lock
34287 // The command needs NV update. Check if NV is available.
34305 // Get NV index info
34371 command will permanently lock the NV Index for writing.
34506 // The command needs NV update. Check if NV is available.
34549 NV
34560 TPMA_NV_OWNERREAD, TPMA_NV_AUTHREAD, and the authPolicy of the NV Index.
34561 If TPMA_NV_READLOCKED of the NV Index is SET, then the TPM shall return TPM_RC_NV_LOCKED.
34564 If authorization sessions are present, they are checked before the read -lock status of the NV Index
34567 …he size parameter plus the offset parameter adds to a value that is greater than the size of the NV
34568 Index data area, the TPM shall return TPM_RC_NV_RANGE and not read any data from the NV Index.
34569 If the NV Index has been defined but the TPMA_NV_WRITTEN attribute is CLEAR, then this command
34624 the NV Index to be read
34766 // Get NV index info
34804 reads of the NV Index until the next TPM2_Startup (TPM_SU_CLEAR).
34806 TPMA_NV_OWNERREAD, TPMA_NV_AUTHREAD, and the authPolicy of the NV Index.
34809 Only an entity that may read an Index is allowed to lock the NV Index for read.
34811 If the command is properly authorized and TPMA_NV_READ_STCLEAR of the NV Index is SET, then the
34812 TPM shall SET TPMA_NV_READLOCKED for the NV Index. If TPMA_NV_READ_STCLEAR of the NV
34869 the NV Index to be locked
34992 // The command needs NV update. Check if NV is available.
35012 // Get NV index info
35020 // Write NV info back
35043 This command allows the authorization secret for an NV Index to be changed.
35044 If successful, the authorization secret (authValue) of the NV Index associated with nvIndex is chan…
35054 The size of the newAuth value may be no larger than the size of authorization indicated when the NV
35056 Since the NV Index authorization is changed before the response HMAC is calculated, the newAuth val…
35095 TPM_CC_NV_ChangeAuth {NV}
35211 // Check if NV is available. NvIsAvailable may return TPM_RC_NV_UNAVAILABLE
35215 // Read index info from NV
35226 // Write index info back to NV
35249 The purpose of this command is to certify the contents of an NV Index or portion of an NV Index.
35250 If proper authorization for reading the NV Index is provided, the portion of the NV Index selected …
35308 for the NV Index
35504 // the reporting of clock info. If this is the case, check if NV is
35508 // The command needs NV update. Check if NV is available.
35516 // Get NV index info
35612 // NV certify specific fields