ExternalVendorCode/heads
1
0
Fork 0
mirror of https://github.com/linuxboot/heads.git synced 2025-01-31 08:25:37 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
heads/initrd/bin/tpm-reset
Thierry Laurion 8da5d5d723
Add dual support for real bash and busybox's bash(ash) 
- modify bash to have it configured with -Os
2023-03-08 12:45:44 -05:00

41 lines
890 B
Bash
Executable File
Raw Blame History

#!/bin/bash
. /etc/functions
if [ "$CONFIG_TPM" = "y" ]; then
echo '*****'
echo '***** WARNING: This will erase all keys and secrets from the TPM'
echo '*****'
read -s -p "New TPM owner password: " key_password
echo
if [ -z "$key_password" ]; then
die "Empty owner password is not allowed"
fi
read -s -p "Repeat owner password: " key_password2
echo
if [ "$key_password" != "$key_password2" ]; then
die "Key passwords do not match"
fi
# Make sure the TPM is ready to be reset
tpm physicalpresence -s
tpm physicalenable
tpm physicalsetdeactivated -c
tpm forceclear
tpm physicalenable
tpm takeown -pwdo "$key_password"
# And now turn it all back on
tpm physicalpresence -s
tpm physicalenable
tpm physicalsetdeactivated -c
fi
if [ "$CONFIG_TPM2_TOOLS" = "y" ]; then
tpmr reset
fi
Reference in New Issue View Git Blame Copy Permalink