From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mga04.intel.com (mga04.intel.com [192.55.52.120]) by mx.groups.io with SMTP id smtpd.web11.3442.1596674029695996418 for ; Wed, 05 Aug 2020 17:33:49 -0700 Authentication-Results: mx.groups.io; dkim=missing; spf=pass (domain: intel.com, ip: 192.55.52.120, mailfrom: qi1.zhang@intel.com) IronPort-SDR: ieMNh+oU6ikBFCNWsiBfVSWmB0oqqUYm9aZRIkXd/mwqqonUKxbu4+ZPfDDBrDyIeEbnkq6xbT FFHy0SIQBknA== X-IronPort-AV: E=McAfee;i="6000,8403,9704"; a="150152754" X-IronPort-AV: E=Sophos;i="5.75,439,1589266800"; d="scan'208";a="150152754" X-Amp-Result: SKIPPED(no attachment in message) X-Amp-File-Uploaded: False Received: from fmsmga007.fm.intel.com ([10.253.24.52]) by fmsmga104.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 05 Aug 2020 17:33:48 -0700 IronPort-SDR: Nem8scgo15JwzYebodoXZ5Iba0I3Bc0HMmVN5uBDUa5JPSB8bAs+G2BL96C+SgYOWnMqDhwQJ+ ml6+nhdsfcXw== X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.75,439,1589266800"; d="scan'208";a="274924357" Received: from shwdesssddpdqi.ccr.corp.intel.com ([10.239.9.10]) by fmsmga007.fm.intel.com with ESMTP; 05 Aug 2020 17:33:46 -0700 From: "Qi Zhang" To: devel@edk2.groups.io Cc: Qi Zhang , Jiewen Yao , Jian J Wang , Hao A Wu , Chasel Chiu , Nate DeSimone , Star Zeng Subject: [PATCH v2 0/9] Need add a FSP binary measurement Date: Thu, 6 Aug 2020 08:33:33 +0800 Message-Id: <20200806003342.17866-1-qi1.zhang@intel.com> X-Mailer: git-send-email 2.26.2.windows.1 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit REF: https://bugzilla.tianocore.org/show_bug.cgi?id=2376 The EDKII BIOS calls FSP API in FSP Wrapper Pkg. This FSP code need to be measured into TPM. We need add a generic module in FSP Wrapper Pkg code to measure: 1) FSP-T, FSP-M, FSP-S in API mode. 2) FSP-T in Dispatch-mode. The FSP-M and FSP-S will be reported as standard FV and they will be measured by TCG-PEI. Cc: Jiewen Yao Cc: Jian J Wang Cc: Hao A Wu Cc: Chasel Chiu Cc: Nate DeSimone Cc: Star Zeng Cc: Qi Zhang Jiewen Yao (8): MdeModulePkg/TpmMeasurementLib: Add new API to TpmMeasurmentLib. MdeModulePkg/NullTpmMeasurementLib: Add new API. SecurityPkg/DxeTpmMeasurementLib: Add new API. SecurityPkg/PeiTpmMeasurementLib: Add new API. IntelFsp2WrapperPkg/FspMeasurementLib: Add header file. IntelFsp2WrapperPkg/FspMeasurementLib: Add BaseFspMeasurementLib. IntelFsp2WraperPkg/Fsp{m|s}WrapperPeim: Add FspBin measurement. IntelFsp2Wrapper/dsc: Add FspTpmMeasurementLib and PcdFspMeasurementConfig. Qi Zhang (1): SecurityPkg/Tcg2: handle PRE HASH and LOG ONLY .../FspmWrapperPeim/FspmWrapperPeim.c | 90 ++++- .../FspmWrapperPeim/FspmWrapperPeim.inf | 20 +- .../FspsWrapperPeim/FspsWrapperPeim.c | 85 ++++- .../FspsWrapperPeim/FspsWrapperPeim.inf | 27 +- .../Include/Library/FspMeasurementLib.h | 39 ++ IntelFsp2WrapperPkg/IntelFsp2WrapperPkg.dec | 17 + IntelFsp2WrapperPkg/IntelFsp2WrapperPkg.dsc | 5 +- .../BaseFspMeasurementLib.inf | 54 +++ .../BaseFspMeasurementLib/FspMeasurementLib.c | 349 ++++++++++++++++++ .../Include/Library/TpmMeasurementLib.h | 48 ++- .../TpmMeasurementLibNull.c | 61 ++- .../TpmMeasurementLibNull.inf | 6 +- SecurityPkg/Include/Ppi/Tcg.h | 5 + .../DxeTpmMeasurementLib.inf | 6 +- .../DxeTpmMeasurementLib/EventLogRecord.c | 218 +++++++++++ .../PeiTpmMeasurementLib/EventLogRecord.c | 218 +++++++++++ .../PeiTpmMeasurementLib.inf | 4 + SecurityPkg/Tcg/Tcg2Pei/Tcg2Pei.c | 12 +- 18 files changed, 1233 insertions(+), 31 deletions(-) create mode 100644 IntelFsp2WrapperPkg/Include/Library/FspMeasurementLib.h create mode 100644 IntelFsp2WrapperPkg/Library/BaseFspMeasurementLib/BaseFspMeasurementLib.inf create mode 100644 IntelFsp2WrapperPkg/Library/BaseFspMeasurementLib/FspMeasurementLib.c create mode 100644 SecurityPkg/Library/DxeTpmMeasurementLib/EventLogRecord.c create mode 100644 SecurityPkg/Library/PeiTpmMeasurementLib/EventLogRecord.c -- 2.26.2.windows.1