Secure firmware TAs will have new UUIDs. Existing TPM data will become inaccessible.
ms-tpm-20-ref repository is no longer used, MSRSec repository is replacing it (also contains authenticated variable TA for UEFI)
Will need to update edk2-platforms and optee_os repo to match
Changes:
Moving to a new iteration of the firmware TPM (functionality mostly unchanged)
Adding non-volatile variable store to UEFI
Updating TAs:
To update TA binaries call make update_tas. This will place new TA binaries into edk2-platforms. (3rd party notices file still to be populated). The TAs can be built with either OpenSSL or WolfSSL. Default is to use OpenSSL since WolfSSL has additional licensing requirements
Breaking changes:
Changes:
Updating TAs: To update TA binaries call
make update_tas. This will place new TA binaries into edk2-platforms. (3rd party notices file still to be populated). The TAs can be built with either OpenSSL or WolfSSL. Default is to use OpenSSL since WolfSSL has additional licensing requirements