From 1f7526cce16058a6a6e3e705a848a49b2c833afb Mon Sep 17 00:00:00 2001 From: Mario Limonciello Date: Sun, 28 Aug 2022 18:30:46 -0500 Subject: [PATCH] tpm: Don't require uefi capsule updates for checking TPM PCR0 There isn't any reason that we need to have a system advertising a GUID with `main-system-firmware` in order to check that PCR0 reconstruction matches what the TPM actually has. Fixes: #4961 --- plugins/tpm/fu-plugin-tpm.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/plugins/tpm/fu-plugin-tpm.c b/plugins/tpm/fu-plugin-tpm.c index 599ea966a..e57d6efd7 100644 --- a/plugins/tpm/fu-plugin-tpm.c +++ b/plugins/tpm/fu-plugin-tpm.c @@ -159,7 +159,7 @@ fu_plugin_tpm_add_security_attr_eventlog(FuPlugin *plugin, FuSecurityAttrs *attr fu_security_attrs_append(attrs, attr); /* check reconstructed to PCR0 */ - if (priv->ev_items == NULL || priv->bios_device == NULL) { + if (priv->ev_items == NULL) { fwupd_security_attr_set_result(attr, FWUPD_SECURITY_ATTR_RESULT_NOT_FOUND); return; }