[PATCH] SecurityPkg: TcgPei: Sync TCG PP lifetime lock state

[PATCH] SecurityPkg: TcgPei: Sync TCG PP lifetime lock state

[Zhang, Chao B]

Sync TCG lifetime lock state after performing PP command.
Later logic checks such state.

Cc: Long Qin <qin.long@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Chao Zhang <chao.b.zhang@intel.com>
---
 SecurityPkg/Tcg/TcgPei/TcgPei.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/SecurityPkg/Tcg/TcgPei/TcgPei.c b/SecurityPkg/Tcg/TcgPei/TcgPei.c
index 25724a6..63807f4 100644
--- a/SecurityPkg/Tcg/TcgPei/TcgPei.c
+++ b/SecurityPkg/Tcg/TcgPei/TcgPei.c
@@ -1,7 +1,7 @@
 /** @file
   Initialize TPM device and measure FVs before handing off control to DXE.
 
-Copyright (c) 2005 - 2016, Intel Corporation. All rights reserved.<BR>
+Copyright (c) 2005 - 2017, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials 
 are licensed and made available under the terms and conditions of the BSD License 
 which accompanies this distribution.  The full text of the license may be found at 
@@ -591,6 +591,7 @@ PhysicalPresencePpiNotifyCallback (
     // Lock TPM LifetimeLock is required, and LifetimeLock is not locked yet. 
     //
     PhysicalPresenceValue = TPM_PHYSICAL_PRESENCE_LIFETIME_LOCK;
+    TpmPermanentFlags.physicalPresenceLifetimeLock = TRUE;
 
     if (PcdGetBool (PcdPhysicalPresenceCmdEnable)) {
       PhysicalPresenceValue |= TPM_PHYSICAL_PRESENCE_CMD_ENABLE;
-- 
1.9.5.msysgit.1

Re: [PATCH] SecurityPkg: TcgPei: Sync TCG PP lifetime lock state

[Long, Qin]

Reviewed-by: Qin Long <qin.long@intel.com>


> -----Original Message-----
> From: Zhang, Chao B
> Sent: Friday, January 06, 2017 9:33 AM
> To: edk2-devel@lists.01.org
> Cc: Long, Qin; Zhang, Chao B
> Subject: [PATCH] SecurityPkg: TcgPei: Sync TCG PP lifetime lock state
> 
> Sync TCG lifetime lock state after performing PP command.
> Later logic checks such state.
> 
> Cc: Long Qin <qin.long@intel.com>
> Contributed-under: TianoCore Contribution Agreement 1.0
> Signed-off-by: Chao Zhang <chao.b.zhang@intel.com>
> ---
>  SecurityPkg/Tcg/TcgPei/TcgPei.c | 3 ++-
>  1 file changed, 2 insertions(+), 1 deletion(-)
> 
> diff --git a/SecurityPkg/Tcg/TcgPei/TcgPei.c
> b/SecurityPkg/Tcg/TcgPei/TcgPei.c index 25724a6..63807f4 100644
> --- a/SecurityPkg/Tcg/TcgPei/TcgPei.c
> +++ b/SecurityPkg/Tcg/TcgPei/TcgPei.c
> @@ -1,7 +1,7 @@
>  /** @file
>    Initialize TPM device and measure FVs before handing off control to DXE.
> 
> -Copyright (c) 2005 - 2016, Intel Corporation. All rights reserved.<BR>
> +Copyright (c) 2005 - 2017, Intel Corporation. All rights reserved.<BR>
>  This program and the accompanying materials  are licensed and made
> available under the terms and conditions of the BSD License  which
> accompanies this distribution.  The full text of the license may be found at
> @@ -591,6 +591,7 @@ PhysicalPresencePpiNotifyCallback (
>      // Lock TPM LifetimeLock is required, and LifetimeLock is not locked yet.
>      //
>      PhysicalPresenceValue = TPM_PHYSICAL_PRESENCE_LIFETIME_LOCK;
> +    TpmPermanentFlags.physicalPresenceLifetimeLock = TRUE;
> 
>      if (PcdGetBool (PcdPhysicalPresenceCmdEnable)) {
>        PhysicalPresenceValue |= TPM_PHYSICAL_PRESENCE_CMD_ENABLE;
> --
> 1.9.5.msysgit.1