Introduce the new PCD
gEfiSecurityPkgTokenSpaceGuid.PcdRandomizePlatformHierarchy.
We need it for TpmPlatformHierarchyLib.
Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
Reviewed-by: Jiewen Yao <jiewen.yao@intel.com>
MdeModulePkg/MdeModulePkg.dec\r
SecurityPkg/SecurityPkg.dec\r
CryptoPkg/CryptoPkg.dec\r
MdeModulePkg/MdeModulePkg.dec\r
SecurityPkg/SecurityPkg.dec\r
CryptoPkg/CryptoPkg.dec\r
- MinPlatformPkg/MinPlatformPkg.dec\r
\r
[Sources]\r
PeiDxeTpmPlatformHierarchyLib.c\r
\r
[Pcd]\r
\r
[Sources]\r
PeiDxeTpmPlatformHierarchyLib.c\r
\r
[Pcd]\r
- gMinPlatformPkgTokenSpaceGuid.PcdRandomizePlatformHierarchy\r
+ gEfiSecurityPkgTokenSpaceGuid.PcdRandomizePlatformHierarchy\r
# @Prompt Physical presence of the platform operator.\r
gEfiSecurityPkgTokenSpaceGuid.PcdTpmPhysicalPresence|TRUE|BOOLEAN|0x00010001\r
\r
# @Prompt Physical presence of the platform operator.\r
gEfiSecurityPkgTokenSpaceGuid.PcdTpmPhysicalPresence|TRUE|BOOLEAN|0x00010001\r
\r
+ ## Indicates whether the TPM2 platform hierarchy will be disabled by using\r
+ # a random password or by disabling the hierarchy\r
+ # TRUE - A random password will be used\r
+ # FALSE - The hierarchy will be disabled\r
+ gEfiSecurityPkgTokenSpaceGuid.PcdRandomizePlatformHierarchy|TRUE|BOOLEAN|0x00010024\r
+\r
[PcdsFixedAtBuild, PcdsPatchableInModule, PcdsDynamic, PcdsDynamicEx]\r
## Indicates whether TPM physical presence is locked during platform initialization.\r
# Once it is locked, it can not be unlocked for TPM life time.<BR><BR>\r
[PcdsFixedAtBuild, PcdsPatchableInModule, PcdsDynamic, PcdsDynamicEx]\r
## Indicates whether TPM physical presence is locked during platform initialization.\r
# Once it is locked, it can not be unlocked for TPM life time.<BR><BR>\r