Clevo W650SH and TPM module under Linux

Hi,

I have a Clevo W650SH clone with stock BIOS and a Linux booted in bios-mode.

In Clevo's service manual I see it has a TPM chip -- some Infineon SL9635/9655. Also rngd -l reports "TPM module found but disabled". And tpm-tis / tpm-infineon kernel modules refuse to work.

Stock BIOS doesn't have any option about "security chip" or similar.

It might well be that the chip is disabled in BIOS -- in my country "cryptography hardware" requires official "certification" and vendors may simply switch such hardware off instead of messing with government paper monkeys. Does anyone have a W650SH with unlocked BIOS to see what it says about its TPM?

Also I tried to switch to uefi-mode boot. Unfortunately, in uefi-mode it doesn't give me any boot options besides some "Windows 8" and network booting... Does anyone have a Linux booted in uefi-mode to check if the chip works this way?

 

I would double check the chip is actually on the motherboard. It is a factory option.

 

It is better to check for infineon TPM FW updates and I think its affected by security flaw and that might be the reason why OS has disabled dTPM.