public inbox for devel@edk2.groups.io
 help / color / mirror / Atom feed
From: "James Bottomley" <James.Bottomley@HansenPartnership.com>
To: devel@edk2.groups.io
Subject: Does anyone know why the measured boot log seems to be recording the hash of PEIFV wrongly?
Date: Wed, 30 Mar 2022 18:11:34 -0400	[thread overview]
Message-ID: <837f212035fd289560225646e6ef7fd72f369a32.camel@HansenPartnership.com> (raw)

When I do a measured boot of OVMF, I get a load of records including
the two EV_EFI_PLATFORM_FIRMWARE_BLOB events, which, according to the
code in Tcg2Pei.c are supposed to be measuring PEIFV and DXEFV from the
uncompressed MEMFD.  However, when I compare the hashes against the
build artifacts, the DXEFV matches, so is correctly measured.  However
the PEIFV doesn't match ... it's like something modified the contents
before the Tcg2Pei.c measurement is taken.

Does anyone know what this modification to PEIFV is?  My next step
would be to go digging in the PEIFV at the time of measurement to see
if I can find the change, but I figured that asking first might be a
lot less work ...

Thanks,

James



                 reply	other threads:[~2022-03-30 22:11 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-list from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=837f212035fd289560225646e6ef7fd72f369a32.camel@HansenPartnership.com \
    --to=devel@edk2.groups.io \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox