I've recently flashed coreboot with SeaBIOS and discovered that you folks have added some support in the boot menu to configure the TPM since I last used SeaBIOS.
Now, I never had any direct contact to TPM and only know roughly what it does. As far as I know it's used as a cryptographic coprocessor among other things.
The menu's options confuse me: d. Disable the TPM v. Deactivate the TPM p. Prevent installation of an owner
Why would I want to activate or deactivate it? What's the difference between disabling and deactivating? And who's the owner? What's this good for?
The only thing I'm concerned about is that some troll could do something fishy with this when having access to the machine.
Would I suffer negative consequences if I disabled TPM support in SeaBIOS config before building?
Cheers P.