im using a lenovo x230 with the bios version 2.77 and want to use aem. the thing with aem is, at version 2.77 it seems like its not compatible. because i cleared my secure chip and if i do tpm_clear -z it says authentication failed
if i downgrade bios to 2.70 it still works
i also tried to reset only tpm key on 2.70 and upgrade back to 2.77 but no chance to get it working with aem (tpm_clear -z or anti-evil-maid-tpm-setup -z)
also ive seen on the lenovo page the x230 is unsupported now, so there would be no newer bios updates anymore
how are you handling this? i mean the bios is one of the first things on the laptop which would load up if you boot your laptop / pc so this must be secure, if not the hole qubes os wouldnt help here out
and coreboot would be also not an option as i understand it here:
or does this mean im only out of luck if i used this me_cleaner?