From c2c1d59ff28f4fe965dcfbd37174bea6ba3d868e Mon Sep 17 00:00:00 2001 From: Milan Broz Date: Tue, 21 May 2024 11:27:14 +0200 Subject: [PATCH] bitlk: Ignore TPM key metadata Using TPM entry on Linux is impossible, as we will never have the same PCRs, so we can quietly ignore these entries without warnings. --- lib/bitlk/bitlk.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/lib/bitlk/bitlk.c b/lib/bitlk/bitlk.c index 2fe423a1..64e658d2 100644 --- a/lib/bitlk/bitlk.c +++ b/lib/bitlk/bitlk.c @@ -356,6 +356,9 @@ static int parse_vmk_entry(struct crypt_device *cd, uint8_t *data, int start, in /* no idea what this is, lets hope it's not important */ } else if (key_entry_value == BITLK_ENTRY_VALUE_USE_KEY && (*vmk)->protection == BITLK_PROTECTION_STARTUP_KEY) { ; + /* quietly ignore unsupported TPM key */ + } else if (key_entry_value == BITLK_ENTRY_VALUE_TPM_KEY && (*vmk)->protection == BITLK_PROTECTION_TPM) { + ; } else { if (supported) { log_err(cd, _("Unexpected metadata entry value '%u' found when parsing supported Volume Master Key."), key_entry_value);