Hi Jiewen
You are right, use case 1 is about TPM2 Field Upgrade in UEFI BIOS environment.
Additionally to TPM2_SetPrimaryPolicy command it would be good to have TPM2
commands that can be used to authorize the platformPolicy in a TPM_SE_POLICY
session. The minimum set of commands for platformPoli
Hi Jiewen,
Thanks for your reply. I'll try to describe the 2 use cases shortly:
1 - Firmware upgrade:
platformPolicy authorizes firmware upgrade (see Part3, chapter 27.1). That
means OEM/BIOS (owner of platformPolicy) controls whether firmware can be
upgraded or not. OEM/BIOS needs to set a platf
Hi Lee,
TPM2_SetPrimaryPolicy can be used with password authorization (same as
TPM2_HierarchyControl)
Regards,
Stefan
From: Rosenbaum, Lee G [mailto:lee.g.rosenb...@intel.com]
Sent: Friday, November 14, 2014 8:57 PM
To: edk2-devel@lists.sourceforge.net
Subject: Re: [edk2] SecurityPkg: TPM2_SetPr
Hello!
Would it be possible to add the command TPM2_SetPrimaryPolicy to
Tpm2CommandLib? The command is required to set platformPolicy and use cases are:
* OEM/BIOS sets platformPolicy to authorize TPM firmware upgrade.
* OEM/BIOS delegates the TPM_RH_PLATFORM role for a specific TPM co
Thanks for your replies. I will use %lx instead.
Regards,
Stefan
From: Andrew Fish [mailto:af...@apple.com]
Sent: Friday, October 17, 2014 5:06 PM
To: edk2-devel@lists.sourceforge.net
Subject: Re: [edk2] Print(L"0x%.16x", Value) not working as expected
On Oct 17, 2014, at 3:22 AM,
stefan.kae...
Hi,
I tried to print a UINT64 value as follows and hoped to get output
"0x1122334455667788":
{
UINT64 Value = 0x1122334455667788;
Print(L"0x%.16x", Value);
}
The actual output is "0x55667788" though. The leading 4 bytes seem to
get lost in cast to unsigned int in BasePrintLibVSPrint,
