From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail03.groups.io (mail03.groups.io [45.79.227.220]) by spool.mail.gandi.net (Postfix) with ESMTPS id 66964D8067E for ; Thu, 11 Apr 2024 14:07:50 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=TYqKe5D/JK+Fk2WhUfLepZksdJ1ypAVTb2+zoSKUuhM=; c=relaxed/simple; d=groups.io; h=Message-ID:Date:User-Agent:Subject:To:Cc:References:From:In-Reply-To:MIME-Version:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Resent-Date:Resent-From:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Language:Content-Type:Content-Transfer-Encoding; s=20240206; t=1712844469; v=1; b=CdvnaBMLreL+LnNTuyNOpjLxVCHD3v57jYZyJjvuI9WW+LvhUfr/SjFtCapvOBgNsxUvdXmc orbO7NldZa21tlv9Od0M25pwOenIqpij9JI66lNnVL4YCPu54SXVrR9DIOCDZWtePeCEJ5dGtPe e9JihDPZgJPPty6X6eu4DIYfQo8MM3OwM9T1qXR3/+DJ7JbulbNWfyn/bMe/SbYsXA/csHjWemk Nxg0f0Thtp6aIots4qw1FKUy/N+iNyepruwZ1yiIer0X10bZprc+DszeC46QMCyafKtGJ7aDr7j P0U6Tjz4rIO8zJMKX/bnldRhvmPBcj6hkTRXvoPpUBH6g== X-Received: by 127.0.0.2 with SMTP id Rnj3YY7687511xY4f79ZH4eE; Thu, 11 Apr 2024 07:07:49 -0700 X-Received: from NAM10-DM6-obe.outbound.protection.outlook.com (NAM10-DM6-obe.outbound.protection.outlook.com [40.107.93.60]) by mx.groups.io with SMTP id smtpd.web10.19006.1712844463336617579 for ; Thu, 11 Apr 2024 07:07:43 -0700 X-Received: from BL1PR12MB5732.namprd12.prod.outlook.com (2603:10b6:208:387::17) by SJ2PR12MB8941.namprd12.prod.outlook.com (2603:10b6:a03:542::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7409.48; Thu, 11 Apr 2024 14:07:41 +0000 X-Received: from BL1PR12MB5732.namprd12.prod.outlook.com ([fe80::1032:4da5:7572:508]) by BL1PR12MB5732.namprd12.prod.outlook.com ([fe80::1032:4da5:7572:508%6]) with mapi id 15.20.7409.042; Thu, 11 Apr 2024 14:07:40 +0000 Message-ID: <226ff307-991d-693a-1bca-837931d08604@amd.com> Date: Thu, 11 Apr 2024 09:07:37 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.15.1 Subject: Re: [edk2-devel] [RFC PATCH] OvmfPkg/SecurityPkg: Add build option for coexistance of vTPM and RTMR. To: Ard Biesheuvel , devel@edk2.groups.io, kraxel@redhat.com Cc: jiewen.yao@intel.com, Dionna Amalie Glaze , Mikko Ylinen , James Bottomley , Michael Roth , qinkun Bao , "linux-coco@lists.linux.dev" , "Aktas, Erdem" , Peter Gonda , "Johnson, Simon P" , "Xiang, Qinglan" References: From: "Lendacky, Thomas via groups.io" In-Reply-To: X-ClientProxiedBy: SA1P222CA0179.NAMP222.PROD.OUTLOOK.COM (2603:10b6:806:3c4::9) To BL1PR12MB5732.namprd12.prod.outlook.com (2603:10b6:208:387::17) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: BL1PR12MB5732:EE_|SJ2PR12MB8941:EE_ X-MS-Office365-Filtering-Correlation-Id: cc33eb82-e3db-42c2-995a-08dc5a30c00a X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam-Message-Info: vXG2Q291b7vDAL5v+kM3eMOKjFmht7GygFVl0qHoOMrZSfb1HjL/zPY8rQ14DtyhbIk8I9PTLNdcwNXNzgDUmSCgOf7Lf7VB9fcZyLsshZxSR7/7u6euUYKQgtpZDw9pz7gzEu44mhjL8FTajCLXJJA06Wm6C9g10mayDmbjZqGJ8hQFhW0nT6xzxMjcNyTK0o7D5SfKMOQrXQFLaCCvJyhRTFNuG6M6IjmHeGDMmRJLQOXffxY3Zu0Qggwtf3uZK8FWjKuyCbFx0SY9brkUEH7ZaEPCji6KFwh8QJcLBfaVIJHAVOjZCRN03gcrIfNb0EgzsJeHKR6XPYTCd78tHv4KhO3irqH7jAFMMhnPolaSQYTgq4zsGP3HNlpuLEok7/9GpzwU7qSdzH3tACX49vLkcQPEvHgKcX2pr6cALtUDI2MfVuxuSFk/IGgqn81Ul007su/6erFMqWnOWQ6qJqQyme+A2yK+1cbr4vJNEF49Q4D4IiuuPHn2cirNnTf9ixbtu8G4q0nTg6cDC+Z4x1O47ueEds/A4vUGfHMY2YbZDMt+NllrO9/vMMCTskiAAEOaEmR3Ag8aVltLf/TljohcYS3sBpkKVHMYM83hGFhv7avaGN46BzT/miszk7T8fYVZgpMwZ7VV0kBVd//DTUa1BsTR/hKMbZUn3e+YmqY= X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?TXp2WklCbE9kdjdMaklxd2tlZ0grTi9hY25ERlRNSnlPbHg2bXcwNVlkWklQ?= =?utf-8?B?b25KdkJLeVpoTVlZaGpjV2RNRHRhZ2NoQnpGQ21EbXJIcXNpMHJUQm1QVTVU?= =?utf-8?B?V21XVGVieExZUHlnUVFQelpRNnFPNDJ4b1dHWE1nT1FwV21XMzFwNTFnQkJD?= =?utf-8?B?OFdmVEhGTzdnQllTMFpjZVRLbEFCdVJUdE1XdW53ZWcrdVg1VjJjN1o2cjR4?= =?utf-8?B?eSsvYi9vZ3lQWUtrd0lkZjJkclhDNjFYcHdPQTVZenAxdUE2N0pLQ0l4VCt1?= =?utf-8?B?Tjd5K0xZWm1GU2F5WVo5VXFOSGRueEJhY2F6Rzl5RXNMWFUwNEh4NkxVdGVQ?= =?utf-8?B?UnRwcDd0bXZhQ3F3OS9tTm8zcFhzbW1sRUpob0J4QlRUSFdKd2JEeE5qUXhY?= =?utf-8?B?NHNCT1lqbXF1UDRiWEl2MkxsQ0FEWW9uVVB3S1BFcDRlS3FGZjFUQjJHREpB?= =?utf-8?B?SFBRVlBiWnE4alRRNW1FMWdxRVRQOVJTSFFlalYzQzF6V3NYTTJjVVU2MUpi?= =?utf-8?B?Y25JQ1ZkOWdjak9ZanppekY3VVN0WUkrQnVPUkpNWjh4Tnh0cmVIcmRMSUpT?= =?utf-8?B?VVN4SnBZZlA2azlTT3RkUklBaVREdWdLVUM3Z0ZZeU5HMUpXTjVoR0Q5SDNV?= =?utf-8?B?TkpSTWlRV2tRa2FDSXdHZ1VUUWphTWM2Q3ZXV29UNFRLeEgvZi9lUWFBanRx?= =?utf-8?B?UStOSHdNS0NGWFVrbUNxWEgwSklOMC85WGxydXY5a2ZrS0RQbEJvOXBabExP?= =?utf-8?B?ZFlHVTdESEQrc3ltZWRkMUR1dmY0Qi92aUhwdHhId1JDOVlkV2tyaVFYWXZF?= =?utf-8?B?cjFRM2hsZ3hsc0dUQ0twTUU4dnlhNXFvQnhyVjdNYTZONU1oN0l4ZkFJVzFZ?= =?utf-8?B?cnBoMVUyL1Z0QW85WDdZT2Y2bWtVZzF5aWpIOGxVNC9pajRjZU1TRzl5VndY?= =?utf-8?B?bVhBaStJSFNLNjNORlZBVjlLZFQwZVp3UUY2SzJPTncwSUZRK05qVkFVNTZr?= =?utf-8?B?anRXZjZpcFl2YkE1dEp2WkZRSXpnNWdnTDBkMFN4cG1WNGoySEQzYlJJWmFl?= =?utf-8?B?SEJzUjloVS8yZXVoL1VqN1M3VjM5bTdMaTROVlhPV2FyL0RJdUJNczB0VUJN?= =?utf-8?B?TE9wR05VMllFZzgxRXl4VHB5WTA5MFRjRnRqUzNvS0x6aWJjYnFodG5ySmNR?= =?utf-8?B?TzhRbGlvajhwV0NHTE5vNU1tVytiZXpMc250ZEFyeExFU3Z5MEJ0aDI3SW9s?= =?utf-8?B?Y1BpUUhac2RaOTQzME14NFE1akxRbGhxdUwxMlY2aGxNQWpPOTNBTTBuME04?= =?utf-8?B?Z0g0a0twS1QwT2MxL1B2Y3dFY1JwYkx0NXZ6TmVaZXpYc2JDNlF5ekVtYUJB?= =?utf-8?B?TWJ2Tm1MZ3g4dW92MUJKcG5qOXdMaTlGYytWRi9QRnk2WllRM0YvUkQ4R2o4?= =?utf-8?B?YVpPOC83K2M3d3NmbDRQTml0Q3J4VVdIekFQd1JJZC9KajZTMWttdjZlU0Ft?= =?utf-8?B?VTUrOHpsUmNGNmtpK2piZ1FWZWdlM0c3aStYdE9FNTY2RmJ5KzBCOXR0cktq?= =?utf-8?B?aVd1L01pY0FUTG1xdkNhRkVOMjZhNkc2VGs3TllNaEdwL2tXU0JwcmRVZEhh?= =?utf-8?B?UmxPaHZSSHozWmNhNG5LMHkwUnQ1dk02WWVQbmw1aXVCZHZLY080TVAyeG04?= =?utf-8?B?ek44TnY4M2g2bXF5UE9XbDlWRlcyV2paKzJ5S2gxZ1lzSDhnWk9veWZrNVF4?= =?utf-8?B?Y1poMllFRHlNRG9aKyt2QVprYURuMElaNUtZemhuVjNCWFI2clM4MkZSVFBx?= =?utf-8?B?UzJycUJURXNzQllMUXdobm9PT01FUkFaZm9YM1hxVlVlNGNuMFp4SjhRWURO?= =?utf-8?B?SFpDdU9xbTFGUFNJdWl0cG1MQWRjMFVCT3VTY2p3QmFuT1JBRGRtWVZuMmRE?= =?utf-8?B?amRPTU1IWUpVL3RldDM5VjlOdGFJcEdFM2t1NzZwLzVTQXlUUm02ckNodUxZ?= =?utf-8?B?d2Viclh3dEU4Tkd1MWF2cTh4cysxUCtwK2gxWEw0dDAwYnFxWDNjQmlXbVB0?= =?utf-8?B?b0dSUVlMcEQ1Q20rSW1WWStKNDB0cmtPOUUyQklwK1RYWC9ndzE5dUpsZVM1?= =?utf-8?Q?p3o5hvhm+KjwGWLRqtesoWvLW?= X-OriginatorOrg: amd.com X-MS-Exchange-CrossTenant-Network-Message-Id: cc33eb82-e3db-42c2-995a-08dc5a30c00a X-MS-Exchange-CrossTenant-AuthSource: BL1PR12MB5732.namprd12.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 11 Apr 2024 14:07:40.8226 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: h5N1Bw1pAkVgNxECm2dVR1JZx5Mrq5WZYNJE5ynQ9V/q8ZlydeA8MJ9lLAOkOOcGZsqqFn2e5XPpD3Km8ARN8g== X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ2PR12MB8941 Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Resent-Date: Thu, 11 Apr 2024 07:07:43 -0700 Resent-From: thomas.lendacky@amd.com Reply-To: devel@edk2.groups.io,thomas.lendacky@amd.com List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: 1QMfxkrzuUUdkPCNBzFVzPZjx7686176AA= Content-Language: en-US Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: quoted-printable X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20240206 header.b=CdvnaBML; spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 45.79.227.220 as permitted sender) smtp.mailfrom=bounce@groups.io; dmarc=pass (policy=none) header.from=groups.io On 4/11/24 05:33, Ard Biesheuvel wrote: > On Thu, 11 Apr 2024 at 12:29, Gerd Hoffmann wrote: >> >> On Thu, Apr 11, 2024 at 09:56:48AM +0000, Yao, Jiewen wrote: >>> Please allow me to clarify what you are proposing: >>> Do you mean in vTPM case, we extend both, but we only need TCG event lo= g, NOT CC event log? >> >> Elsewhere in this thread it was mentioned that writing both vTPM and >> RTMR events to the event log is problematic because the event log format >> has no field to specify whenever a given event was measured to vTPM or >> RTMR. >> >> If the firmware can make sure all events are measured to both vTPM and >> RTMR the need to trace them separately goes away. >> >> So, yes, in case a vTPM is present the firmware would: >> (a) expose EFI_TCG2_PROTOCOL, measure to both vTPM + RTMR >> (b) not expose EFI_CC_MEASUREMENT_PROTOCOL >> (c) log measurements to TCG event log >> >=20 > A TDX attestation would require the PCR to RTMR mapping used by the > firmware in order to reconstruct the RTMR values from the TCG event > log, but that seems feasible to me. >=20 > In any case, I think it should be the guest firmware's job to abstract > away the difference. Agreed, this approach seems to be the best way forward. Thanks, Tom -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#117633): https://edk2.groups.io/g/devel/message/117633 Mute This Topic: https://groups.io/mt/105070442/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-