TCMPEI

Overview

TCMPEI is a PEI module implementing TCM (Trusted Cryptography Module) support, the Chinese national standard TPM alternative (GM/T 002-2012). It provides TCM startup, self-test, physical presence management, and hash operations using the SM3 cryptographic hash algorithm. This module enables TPM-compatible trusted boot on platforms that use TCM instead of a standard TPM.

Key Functions

• sub_FFE2DB38 -- TCM Startup (ST_CLEAR) followed by ContinueSelfTest
• sub_FFE2DB71 -- TCM Startup (ST_STATE) followed by ContinueSelfTest
• sub_FFE2DBAA -- TCM Physical Enable and Set Active
• sub_FFE2DC22 -- TCM Set Deactivate and Physical Disable
• sub_FFE2DC5A -- TCM Force Clear
• sub_FFE2DCBD -- TCM Get Permanent Flags (Pflag) and Volatile Flags (Vflag)
• sub_FFE2E03C -- SM3 hash initialization and processing (SM3 Chinese hash standard)
• sub_FFE2E0D4 -- TCM PCR Extend command construction
• sub_FFE2DD6D -- SM3 block compression function (64 rounds)
• sub_FFE2E406 -- TCM command/response transport via LPC/FIFO interface

Dependencies

• PiPei, Uefi base libraries
• TCM device (memory-mapped at FED4xxxx range)
• SM3 hash algorithm (implemented in-module)
• TCG PPI for PCR and event log operations

Platform

• Architecture: IA-32 (x86)
• Subsystem: EFI_BOOT_SERVICE_DRIVER (0x0B)
• Linker: MSVS 2015