TcgStorageSecurity

Index: 0077 | Size: 49152 bytes | Arch: x64 | Phase: DXE

Overview

This DXE driver implements the TCG Storage Security protocol for UEFI, providing TCG OPAL/Pyrite/Enterprise SSC security operations for storage devices. It attaches to storage controllers through the UEFI driver binding model and handles Level 0 Discovery data retrieval and parsing, TCG TPER session management, Admin SP sessions with MSID authority, SID credential management (Block SID, Set C_PIN_SID), locking range configuration (ReadLock, WriteLock, ReadWrite), and S3 resume data buffering for PCI config space restoration. At approximately 49 KB, it is the second-largest TCG module.

Key Functions

• ModuleEntryPoint -- Entry point; initializes globals and installs the driver binding protocol
• DriverBindingSupported -- Tests whether the driver supports a given controller
• DriverBindingStart -- Attaches to a storage controller and initializes TCG storage security
• DriverBindingStop -- Detaches from a storage controller and releases resources
• TcgLevel0Discovery -- Retrieves and parses TCG Level 0 Discovery data from a storage device
• TperSessionManagement -- Manages TCG TPER sessions for OPAL/Pyrite/Enterprise SSC
• OpenAdminSpSession -- Opens Admin SP sessions using MSID authority
• SidCredentialManagement -- Manages SID credentials including Block SID and Set C_PIN_SID operations
• LockingRangeConfigure -- Configures locking ranges (ReadLock, WriteLock, ReadWrite)
• S3ResumeDataBuffer -- Buffers PCI config space data for S3 resume restoration

Protocols / Dependencies

• TCG Storage Protocol (gEfiTcgStorageProtocolGuid)
• Block SID Protocol (gEfiBlockSidProtocolGuid)
• Storage Security Command Protocol (gEfiStorageSecurityCommandProtocolGuid)
• UEFI Driver Binding Protocol

Platform

HR650X (AMI BIOS, AmiModulePkg/TcgStorageSecurity)