git.ipfire.org Git - thirdparty/grub.git/commit

author	Michał Grzelak <mchl.grzlk@gmail.com>
	Thu, 15 Jun 2023 22:39:47 +0000 (00:39 +0200)
committer	Daniel Kiper <daniel.kiper@oracle.com>
	Thu, 22 Jun 2023 22:50:38 +0000 (00:50 +0200)
commit	afdef4a563c32c65b32cc2e5e3b6d6f22fef7dda
tree	4ec354b2b99d48cdfd548c9d3081334bfbcf5cdc	tree
parent	5c7578e7277013c62a210810bdf116dd641355de	commit \| diff

tpm: Enable boot despite unknown firmware failure

Currently booting the system is prevented when call to EFI firmware
hash_log_extend_event() returns unknown error. Solve this by following
convention used in commit a4356538d (commands/tpm: Don't propagate
measurement failures to the verifiers layer).

Let the system to be bootable by default when unknown TPM error is
encountered. Check environment variable tpm_fail_fatal to fallback to
previous behaviour.

Signed-off-by: Michał Grzelak <mchl.grzlk@gmail.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>

docs/grub.texi		diff \| blob \| blame \| history
grub-core/commands/efi/tpm.c		diff \| blob \| blame \| history
grub-core/commands/tpm.c		diff \| blob \| blame \| history
include/grub/tpm.h		diff \| blob \| blame \| history