From 13fa86c62f500e3cc70a6bc5117c8a890f14d942 Mon Sep 17 00:00:00 2001 From: Milan Broz Date: Tue, 21 May 2024 11:27:14 +0200 Subject: [PATCH] bitlk: Ignore TPM key metadata Using TPM entry on Linux is impossible, as we will never have the same PCRs, so we can quietly ignore these entries without warnings. --- lib/bitlk/bitlk.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/lib/bitlk/bitlk.c b/lib/bitlk/bitlk.c index 230e7101..67491f50 100644 --- a/lib/bitlk/bitlk.c +++ b/lib/bitlk/bitlk.c @@ -356,6 +356,9 @@ static int parse_vmk_entry(struct crypt_device *cd, uint8_t *data, int start, in /* no idea what this is, lets hope it's not important */ } else if (key_entry_value == BITLK_ENTRY_VALUE_USE_KEY && (*vmk)->protection == BITLK_PROTECTION_STARTUP_KEY) { ; + /* quietly ignore unsupported TPM key */ + } else if (key_entry_value == BITLK_ENTRY_VALUE_TPM_KEY && (*vmk)->protection == BITLK_PROTECTION_TPM) { + ; } else { if (supported) { log_err(cd, _("Unexpected metadata entry value '%u' found when parsing supported Volume Master Key."), key_entry_value);