Add a TPM separator during host start_payload

Change-Id: I11736ebe4b44e54584febc05e1dea50dd5304fa4
RTC: 155301
Reviewed-on: http://ralgit01.raleigh.ibm.com/gerrit1/30996
Tested-by: Jenkins Server <pfd-jenkins+hostboot@us.ibm.com>
Tested-by: FSP CI Jenkins <fsp-CI-jenkins+hostboot@us.ibm.com>
Reviewed-by: Christopher J. Engel <cjengel@us.ibm.com>
Reviewed-by: William G. Hoffa <wghoffa@us.ibm.com>

1 files changed, 11 insertions, 0 deletions

diff --git a/src/include/usr/secureboot/trustedbootif.H b/src/include/usr/secureboot/trustedbootif.H
index 21ab262a6..ae6d183af 100644
--- a/src/include/usr/secureboot/trustedbootif.H
+++ b/src/include/usr/secureboot/trustedbootif.H
@@ -71,9 +71,12 @@ namespace TRUSTEDBOOT
     {
         PCR_0     = 0,
         PCR_1     = 1,
+        PCR_2     = 2,
+        PCR_3     = 3,
         PCR_4     = 4,
         PCR_5     = 5,
         PCR_6     = 6,
+        PCR_7     = 7,
         PCR_DEBUG = 16,
         PLATFORM_PCR = 24, ///< The number of PCR required by the platform spec
         IMPLEMENTATION_PCR = 24, ///< The number of PCRs implemented by TPM
@@ -109,6 +112,14 @@ namespace TRUSTEDBOOT
                          bool i_sendAsync = true);
 
     /**
+     * @brief Extend a separator into the TPMs and log atomically
+     * @param[in] i_sendAsync Perform extension asynchronously, default true
+     * @return errlHndl_t NULL if successful, otherwise a pointer to the
+     *      error log.
+     */
+    errlHndl_t pcrExtendSeparator(bool i_sendAsync = true);
+
+    /**
      * @brief Return a set of information related to every unique
      *        functional TPM in the system
      *