From e898872637b4cf66ca076f95360ffea561da5ab8 Mon Sep 17 00:00:00 2001
From: Stefan Berger <stefanb@linux.ibm.com>
Date: Fri, 13 Sep 2024 16:08:27 -0400
Subject: [PATCH] tpm2: Adjust selection of StateFormatLevel

When a non-modifyable profile is chosen then copy the StateFormatLevel
(SFL) from the internal profile as before. A reason for copying the SFL
is also because the user is not allowed to make modifications to this
type of profile. Otherwise, if the user chooses a modifyable profile,
then let the user choose the StateFormatLevel.

Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
---
 src/tpm2/RuntimeProfile.c | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/src/tpm2/RuntimeProfile.c b/src/tpm2/RuntimeProfile.c
index a90bb31f8..758f3ace7 100644
--- a/src/tpm2/RuntimeProfile.c
+++ b/src/tpm2/RuntimeProfile.c
@@ -714,15 +714,23 @@ RuntimeProfileSet(struct RuntimeProfile *RuntimeProfile,
     }
 
     if (jsonProfileIsFromUser || stateFormatLevelJSON == STATE_FORMAT_LEVEL_UNKNOWN) {
-	RuntimeProfile->stateFormatLevel = rp->stateFormatLevel;
 	if (!rp->allowModifications) {
+	    /* StateFormatLevels are controlled by internal profile */
 	    maxStateFormatLevel = rp->stateFormatLevel;
+	    RuntimeProfile->stateFormatLevel = rp->stateFormatLevel;
 	} else {
 	    if (stateFormatLevelJSON != STATE_FORMAT_LEVEL_UNKNOWN) {
+		if (stateFormatLevelJSON < 2) {
+		    TPMLIB_LogTPM2Error("The minimum required StateFormatLevel for '%s' profile is '2'\n",
+					profileName);
+		    goto error;
+		}
 		maxStateFormatLevel = stateFormatLevelJSON;
 	    } else {
 		maxStateFormatLevel = ~0;
 	    }
+	    /* User has some control over StateFormatLevel */
+	    RuntimeProfile->stateFormatLevel = stateFormatLevelJSON;
 	}
     } else {
 	/* JSON was from TPM 2 state */