diff options
| author | Stefan Berger <stefanb@linux.vnet.ibm.com> | 2021-09-07 17:05:52 -0400 |
|---|---|---|
| committer | Kevin O'Connor <kevin@koconnor.net> | 2021-09-23 22:47:57 -0400 |
| commit | 64f37cc530f144e53c190c9e8209a51b58fd5c43 (patch) | |
| tree | 9dc7db62225d8ea6417c570a9738976f664bcafd /src | |
| parent | 54082c81d96028ba8c76fbe6784085cf1df76b20 (diff) | |
| download | seabios-64f37cc530f144e53c190c9e8209a51b58fd5c43.tar.gz | |
tcgbios: Disable platform hierarchy in case of failure
In the rare case of a TPM 2 failure, disable the platform hierarchy after
disabling the endorsement and owner hierarchies.
Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
Diffstat (limited to 'src')
| -rw-r--r-- | src/tcgbios.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/tcgbios.c b/src/tcgbios.c index 02921d8c..31f4d7b8 100644 --- a/src/tcgbios.c +++ b/src/tcgbios.c @@ -983,6 +983,7 @@ tpm_set_failure(void) case TPM_VERSION_2: tpm20_hierarchycontrol(TPM2_RH_ENDORSEMENT, TPM2_NO); tpm20_hierarchycontrol(TPM2_RH_OWNER, TPM2_NO); + tpm20_hierarchycontrol(TPM2_RH_PLATFORM, TPM2_NO); break; } |