[SLOF] [PATCH 09/16] Add support for a TPM menu to control the state of the TPM
Stefan Berger
stefanb at linux.vnet.ibm.com
Sat Nov 14 01:38:43 AEDT 2015
On 11/09/2015 05:51 AM, Nikunj A Dadhania wrote:
> Stefan Berger <stefanb at linux.vnet.ibm.com> writes:
>
>> diff --git a/slof/fs/start-up.fs b/slof/fs/start-up.fs
>> index f1488fa..015e6c1 100644
>> --- a/slof/fs/start-up.fs
>> +++ b/slof/fs/start-up.fs
>> @@ -55,7 +55,15 @@
>> nvramlog-write-string-cr
>> ;
>>
>> +: (t-pressed) ( -- )
>> + vtpm-menu
>> +;
>> +
>> : (boot?) ( -- )
>> + \ before we boot (and after the TPM menu) make sure we give up
>> + \ physical presence on the TPM and lock it -> call vtpm-unassert-pp
>> + vtpm-unassert-pp
>> +
> 0) vtpm-unassert-pp returns uint32_t, that remains in the stack.
> 1) Why dont you check if TPM is available before calling this ?
All vtpm-* functions do that and result in no-ops if vtpm is not available.
Stefan
More information about the SLOF
mailing list