From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mx0b-001b2d01.pphosted.com (mx0b-001b2d01.pphosted.com [148.163.158.5]) by mx.groups.io with SMTP id smtpd.web09.26985.1623656027835178177 for ; Mon, 14 Jun 2021 00:33:48 -0700 Authentication-Results: mx.groups.io; dkim=fail reason="body hash did not verify" header.i=@ibm.com header.s=pp1 header.b=LKIWRnMD; spf=pass (domain: linux.ibm.com, ip: 148.163.158.5, mailfrom: dovmurik@linux.ibm.com) Received: from pps.filterd (m0127361.ppops.net [127.0.0.1]) by mx0a-001b2d01.pphosted.com (8.16.0.43/8.16.0.43) with SMTP id 15E7XbC2088453; Mon, 14 Jun 2021 03:33:38 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ibm.com; h=subject : to : cc : references : from : message-id : date : in-reply-to : content-type : content-transfer-encoding : mime-version; s=pp1; bh=dHAjoZVduJFiWFYnqPT97m8KBq1lFtaTVnhvZcWaKqs=; b=LKIWRnMDmyT/hjSsKT+LJLdmgXJdr2DCYEkNTmt9VP2U+FbGGXGSjDw3vB7jXyC13M9o 3XZJQhJ1yVOTxLv0yuvS5w9+mM6zCQ/Hwaxhb8yTz4We4nHG+bMAYbCXrzUNtuVRzBy0 LH4XvaGiWyUa/2QvGXzutEpR2T1Tw1+BtCoA/8IafiIpmyY7AfqdC32bLKbgre7ptikF GxCSLNdWYYDW0iZqnRR5YS7rAC8S1BGvBsuuwpYj5edCsPwRjyJOSW76TPeAHs6dV5YY TRcEU8H865NGkHP53UQLPWMSeqrJsTif12+GqaanW14kdjA2KjR2wv7uFXsXrdO73YTW mw== Received: from pps.reinject (localhost [127.0.0.1]) by mx0a-001b2d01.pphosted.com with ESMTP id 3962ct0pjc-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 14 Jun 2021 03:33:37 -0400 Received: from m0127361.ppops.net (m0127361.ppops.net [127.0.0.1]) by pps.reinject (8.16.0.43/8.16.0.43) with SMTP id 15E7Xbkf088524; Mon, 14 Jun 2021 03:33:37 -0400 Received: from ppma01fra.de.ibm.com (46.49.7a9f.ip4.static.sl-reverse.com [159.122.73.70]) by mx0a-001b2d01.pphosted.com with ESMTP id 3962ct0pdu-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 14 Jun 2021 03:33:37 -0400 Received: from pps.filterd (ppma01fra.de.ibm.com [127.0.0.1]) by ppma01fra.de.ibm.com (8.16.1.2/8.16.1.2) with SMTP id 15E7WQI3012040; Mon, 14 Jun 2021 07:33:26 GMT Received: from b06avi18626390.portsmouth.uk.ibm.com (b06avi18626390.portsmouth.uk.ibm.com [9.149.26.192]) by ppma01fra.de.ibm.com with ESMTP id 395c3t86jc-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 14 Jun 2021 07:33:26 +0000 Received: from d06av21.portsmouth.uk.ibm.com (d06av21.portsmouth.uk.ibm.com [9.149.105.232]) by b06avi18626390.portsmouth.uk.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id 15E7WOxH30015914 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Mon, 14 Jun 2021 07:32:24 GMT Received: from d06av21.portsmouth.uk.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 6CF625205F; Mon, 14 Jun 2021 07:33:23 +0000 (GMT) Received: from [9.148.12.78] (unknown [9.148.12.78]) by d06av21.portsmouth.uk.ibm.com (Postfix) with ESMTP id 4E4D752059; Mon, 14 Jun 2021 07:33:22 +0000 (GMT) Subject: =?UTF-8?B?UmU6IOWbnuWkjTogW2VkazItZGV2ZWxdIFtQQVRDSCB2MSAwLzhdIE1lYXN1cmVkIFNFViBib290IHdpdGgga2VybmVsL2luaXRyZC9jbWRsaW5l?= To: gaoliming , devel@edk2.groups.io, lersek@redhat.com, "'Ard Biesheuvel'" Cc: "'Tobin Feldman-Fitzthum'" , "'Tobin Feldman-Fitzthum'" , "'Jim Cadden'" , "'James Bottomley'" , "'Hubertus Franke'" , "'Jordan Justen'" , "'Ashish Kalra'" , "'Brijesh Singh'" , "'Erdem Aktas'" , "'Jiewen Yao'" , "'Min Xu'" , "'Tom Lendacky'" References: <20210525053116.1533673-1-dovmurik@linux.ibm.com> <5d8c598e-31de-7973-df51-e913bba54587@redhat.com> <3cead34f-a736-3a5d-4933-cebc085ca868@redhat.com> <980736b6-2450-c695-98f5-84870c4ba3ee@redhat.com> <510c9680-c0c7-a413-5bac-80e54578d1df@linux.ibm.com> <30251804-1409-4469-af31-50cbea8703cb@redhat.com> <00b801d75dd9$28d5b6e0$7a8124a0$@byosoft.com.cn> From: "Dov Murik" Message-ID: <76bbe300-6dd8-77fb-dda3-560c2382f77f@linux.ibm.com> Date: Mon, 14 Jun 2021 10:33:22 +0300 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.11.0 In-Reply-To: <00b801d75dd9$28d5b6e0$7a8124a0$@byosoft.com.cn> X-TM-AS-GCONF: 00 X-Proofpoint-GUID: BpJ2KSnQ04rzkIEFA888aq5jc-6vq1i5 X-Proofpoint-ORIG-GUID: 5jA5W5aqykgshL81q98xT8vJQRTdK22K X-Proofpoint-UnRewURL: 0 URL was un-rewritten MIME-Version: 1.0 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391,18.0.761 definitions=2021-06-14_01:2021-06-11,2021-06-14 signatures=0 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 malwarescore=0 suspectscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 phishscore=0 adultscore=0 impostorscore=0 priorityscore=1501 mlxscore=0 bulkscore=0 mlxlogscore=999 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2104190000 definitions=main-2106140055 X-MIME-Autoconverted: from 8bit to quoted-printable by mx0a-001b2d01.pphosted.com id 15E7XbC2088453 Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: quoted-printable On 10/06/2021 12:15, gaoliming wrote: > Dov: > Can you submit one BZ for this new feature? I will add it into edk2 20= 2108 stable tag planning.=20 Submitted: https://bugzilla.tianocore.org/show_bug.cgi?id=3D3457 I'll add the BZ link to future versions of the patch series. Thanks, -Dov >=20 > Thanks > Liming >> -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- >> =E5=8F=91=E4=BB=B6=E4=BA=BA: devel@edk2.groups.io =E4=BB=A3=E8=A1=A8 Laszlo Ersek >> =E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B46=E6=9C=889=E6=97=A5= 21:54 >> =E6=94=B6=E4=BB=B6=E4=BA=BA: Dov Murik ; devel@= edk2.groups.io; Ard >> Biesheuvel >> =E6=8A=84=E9=80=81: Tobin Feldman-Fitzthum ; Tobin >> Feldman-Fitzthum ; Jim Cadden ; >> James Bottomley ; Hubertus Franke >> ; Jordan Justen ; Ashish >> Kalra ; Brijesh Singh ; >> Erdem Aktas ; Jiewen Yao >> ; Min Xu ; Tom Lendacky >> >> =E4=B8=BB=E9=A2=98: Re: [edk2-devel] [PATCH v1 0/8] Measured SEV boot w= ith >> kernel/initrd/cmdline >> >> On 06/09/21 14:25, Dov Murik wrote: >>> >>> >>> On 08/06/2021 18:59, Laszlo Ersek wrote: >>>> On 06/08/21 14:09, Dov Murik wrote: >>>>> On 08/06/2021 13:59, Laszlo Ersek wrote: >>>>>> On 06/08/21 11:57, Dov Murik wrote: >>>> >>> >>>>> >>>>> But if we go with (1) -- do you (and Ard) prefer: >>>>> >>>>> (a) leave X86QemuLoadImageLib as it is in master; >>>>> >>>>> -or- >>>>> >>>>> (b) modify X86QemuLoadImageLib the "main" path to use the >>>>> QemuKernelLoaderFs (what I started doing) and leave the "legacy" pat= h >>>>> with QemuFwCfg >>>>> >>>>> ? >>>> >>>> I prefer option (a), with the extension that we need to update the >>>> following file-top comment in the files under >>>> "OvmfPkg/Library/X86QemuLoadImageLib": >>>> >>>> X86 specific implementation of QemuLoadImageLib library class >> interface >>>> with support for loading mixed mode images and non-EFI stub images >>>> >>> >>> First attempt at this is submitted to the mailing list: >>> https://edk2.groups.io/g/devel/message/76265 >>> >>> >>>> We should add a warning there that this library instance (a) depends = on >>>> fw_cfg directly, and (b) is therefore unsuitable for blob verificatio= n >>>> purposes. >>> >>> I'll add the warning (b) when I add the blob verification feature. >> >> That makes sense to me, thanks. >> Laszlo >> >> >> >>=20 >> >=20 >=20 >=20