Bug ID 760597: System integrity messages not logged

Last Modified: Oct 16, 2023

Affected Product(s):
BIG-IP TMOS(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5

Fixed In:
15.0.0, 14.1.0.6

Opened: Mar 06, 2019

Severity: 3-Major

Symptoms

On TPM-equipped platforms, log messages indicating recovery from a very rarely triggered condition, where the TPM chip needs to be cleared, are not being recorded in the logs on boot.

Impact

No message indicating the need to clear the TPM. Note: The need to clear the TPM does not affect the subsequent operation of system integrity checks.

Conditions

-- TPM-equipped platforms. -- Rarely triggered condition in which the TPM chip needs to be cleared.

Workaround

None. The TPM is automatically cleared on boot. Once cleared, it operates normally. Using remote attestation by submitting a QKview file to iHealth and checking the System Integrity status in the resulting report will reliably indicate any tampering in the BIOS or system startup files.

Fix Information

TPM needing to be cleared message is now logged.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips