From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=40.107.8.128; helo=eur04-vi1-obe.outbound.protection.outlook.com; envelope-from=jorgefm@cirsa.com; receiver=edk2-devel@lists.01.org Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80128.outbound.protection.outlook.com [40.107.8.128]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ml01.01.org (Postfix) with ESMTPS id C5FF821A07A80 for ; Tue, 25 Sep 2018 22:46:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cirsa.onmicrosoft.com; s=selector1-cirsa-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1YQXuinmhGPlOmzregA520sm1AmSa+0yEsn1tNl77hs=; b=IcIbziw9QDhpguRR40bKw+4o6UaQ5A2B0ESj3Yr+Q1Wkkd5C6/dTA3OYKTEdNxim6+ZtV0LxokoiTJX8IJXk5Vgq4OnMPzgIruVA6EpnGhZZuOREqqvBhFgC3PaztIRLxc4AKvoej57hw/Ucap5nMxBMglZysK3E1Bp34TcfGCQ= Received: from AM4PR07MB3121.eurprd07.prod.outlook.com (10.171.188.30) by AM4PR07MB3409.eurprd07.prod.outlook.com (10.171.189.158) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1185.16; Wed, 26 Sep 2018 05:46:22 +0000 Received: from AM4PR07MB3121.eurprd07.prod.outlook.com ([fe80::84b3:fec7:9c3f:af4a]) by AM4PR07MB3121.eurprd07.prod.outlook.com ([fe80::84b3:fec7:9c3f:af4a%4]) with mapi id 15.20.1185.019; Wed, 26 Sep 2018 05:46:21 +0000 From: Jorge Fernandez Monteagudo To: "Zhang, Chao B" , "edk2-devel@lists.01.org" Thread-Topic: Tianocore and TPM2 pcr values Thread-Index: AQHUU+rT8A2Fo9tZ6UKOSIY+RzW2uqUA/67ggAAJuZSAAQa+Vw== Date: Wed, 26 Sep 2018 05:46:21 +0000 Message-ID: References: , , In-Reply-To: Accept-Language: es-ES, en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=jorgefm@cirsa.com; x-originating-ip: [195.76.51.172] x-ms-publictraffictype: Email x-microsoft-exchange-diagnostics: 1; AM4PR07MB3409; 6:fdjT9RubFte6nM32L6GJSdftY4BOfcxkzAFbNakkU8uWrLYBo0HKELtFhj90ews3Qfb637DKG+8zpnUHKGjMi0fENwmZW1fAsPZsIsR147aDk8hp7gU+zIchGE5x1nJOlKAvoam78JPbMNxe8N1J+E5t6vbn90lW6YP7p804HNsTw7qkffvFjbXqpezJ4Lj0NwetuMO+E9A5wOYPJUSrZ0bIfrH3a2B2iiK++EBBSc5HeZL1N2C3s/v9XHkJ51f7VEFP2QvTRrJ949NCPIug9Pf/KOsdPwPBKrD6nzzQaINFveylxRvZkqQM7pPhCTv5VvAiyRs19YC49ht0b6pCRYiZHjnb/nzedvXjJEEVG8nEXGHNb3BKPhlnEWV66zgWHAHlAddWwhVO4MbDUEAhG3IOlFQKplPlZUfN0FHZuC9RMSYBmMWfR5uZ+xuZTP4uy6pd2Ikaq4kP1PCP3Ip65w==; 5:vGGsHPDFaqswVkTTVhvL9rhjwtraLzdkvGQk86xdTu0fDmqrv3JhXclAbL5LqKtcfiiLtl80cu9agvE5Fl0PamUoJwkLOxcn9o/tk5Pv6MPa732xphEW5zLbe0ezIdB/kG+5zioBVJOnfiAlT5BvnbDq8Z+rS+clXoO3yml7c5Q=; 7:sCzSOmFaX+45iC8tyysFE+CkUkARzcneDGyqGQAoxEe4WnKof7ScB8fuhbEYgYrJg+RUUIZfkaMRiqvHoInSIWKnFNve5tZyUFAafg76nnHDZMzYgjH/xYHFhtQfQt40ftEMsBlFxhEb0G19pz0nD9N+ysnntJyUrnCO8qlxlkYdLoms7r7jCy76Nxwkxw4b74pIn+9YFm46WU12CgnY+OH6IJvrusVzTjtq0hYkwYBe8VrbrF7LTpmhj/LRuw0x x-ms-exchange-antispam-srfa-diagnostics: SOS; x-ms-office365-filtering-correlation-id: c7dd0076-ed2f-404a-f5f6-08d6237363ac x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534165)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(49563074)(7193020); SRVR:AM4PR07MB3409; x-ms-traffictypediagnostic: AM4PR07MB3409: x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(162533806227266)(228905959029699); x-ms-exchange-senderadcheck: 1 x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(10201501046)(3002001)(93006095)(93001095)(3231355)(944501410)(52105095)(149066)(150055)(6041310)(20161123558120)(20161123562045)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(201708071742011)(7699051); SRVR:AM4PR07MB3409; BCL:0; PCL:0; RULEID:; SRVR:AM4PR07MB3409; x-forefront-prvs: 08076ABC99 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(39860400002)(396003)(346002)(136003)(376002)(189003)(199004)(53754006)(13464003)(2900100001)(186003)(3846002)(6116002)(256004)(14444005)(5024004)(102836004)(6246003)(53546011)(6506007)(8936002)(26005)(575784001)(86362001)(66066001)(99286004)(68736007)(76176011)(606006)(5250100002)(81166006)(2501003)(8676002)(81156014)(7696005)(53936002)(33656002)(478600001)(110136005)(99936001)(486006)(476003)(229853002)(97736004)(106356001)(71190400001)(71200400001)(105586002)(14454004)(6436002)(966005)(19627405001)(54896002)(6306002)(236005)(9686003)(55016002)(316002)(5660300001)(25786009)(2906002)(34290500001)(446003)(7736002)(6606003)(74316002)(11346002); DIR:OUT; SFP:1102; SCL:1; SRVR:AM4PR07MB3409; H:AM4PR07MB3121.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: cirsa.com does not designate permitted sender hosts) x-microsoft-antispam-message-info: NgLW2mmhc6It2aLhTufuioWy0ksmA3NxMk66D9dYmPDQ0tePGDhzK+7U+5gntHjqapWbJv+mdCtBJc82inDZLs/Ln1t+r0fu26dLHjo8Tj8ofItbQsN0GY/c07H12mLb9K/0ksP9HhR9vbwRsLgdkedQ9DwW1ypKwIBSr26gpz5w5qXfZxd2IytGnxSFsys2/vrC0zPX+KnfG69FYSU9M8mBpRhtITwBi0aTfXPPIVxUewuOrj6atZ2O1IwH/tXZcOhzSUP52DmKTKasg1Ku9Z3wK87mfhoI1ZIFAbRF5fB6097PfDqaaJdh66EbVl0ahF9Jnc4s18eTcl7fBcKWnY72mckoPxmr7nGrWDjcpIE= spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM MIME-Version: 1.0 X-OriginatorOrg: cirsa.com X-MS-Exchange-CrossTenant-Network-Message-Id: c7dd0076-ed2f-404a-f5f6-08d6237363ac X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Sep 2018 05:46:21.9324 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: e6d255d9-7bfe-42f2-a01e-09634cc3a03b X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR07MB3409 X-Content-Filtered-By: Mailman/MimeDel 2.1.29 Subject: Re: Tianocore and TPM2 pcr values X-BeenThere: edk2-devel@lists.01.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: EDK II Development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Sep 2018 05:46:28 -0000 Content-Language: es-ES Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hi Chao! Maybe the traces I get from the debug build and gEfiMdePkgTokenSpaceGuid.PcdReportStatusCodePropertyMask|0x7 gEfiMdePkgTokenSpaceGuid.PcdDebugPrintErrorLevel|0x800A044F gEfiMdePkgTokenSpaceGuid.PcdDebugPropertyMask|0x2F can help. ________________________________ De: edk2-devel en nombre de Jorge Fernand= ez Monteagudo Enviado: martes, 25 de septiembre de 2018 16:09:31 Para: Zhang, Chao B; edk2-devel@lists.01.org Asunto: Re: [edk2] Tianocore and TPM2 pcr values Hi Chao! PCR0 has not changed in any of the test I've done! What info do you need? I'm using: coreboot: ae05d095b36ac835a6b1a221e6858065e5486888, master branch tianocore: 07ecd98ac18d6792181856faca7d4bed1b587261, coreboot branch Attached are the changes I've done to tianocore to get TPM2 support and no = console. PCR0 is always 3d458cfe55cc03ea1f443f1562beec8df51c75e14a9fcf9a7234a13f198e= 7969 Thanks! ________________________________ De: Zhang, Chao B Enviado: martes, 25 de septiembre de 2018 15:41:45 Para: Jorge Fernandez Monteagudo; edk2-devel@lists.01.org Cc: You, Benjamin Asunto: RE: Tianocore and TPM2 pcr values Hi Jorge: PCR 0 should change if you use different core boot payload + UEFI. So = your case seems to be an issue. Can you provide more detailed info? -----Original Message----- From: edk2-devel [mailto:edk2-devel-bounces@lists.01.org] On Behalf Of Jorg= e Fernandez Monteagudo Sent: Monday, September 24, 2018 5:57 PM To: edk2-devel@lists.01.org Subject: [edk2] Tianocore and TPM2 pcr values Hi all, This is my first message in this list. I'm using tianocore as a payload for= a Coreboot in order to boot a custom board I'm working on it. Finally I've been able to enable the= TPM2 support in coreboot and in tianocore but I have some questions regarding the values I'= m seeing in the PCRs. I'm using Tianocore master branch as is selected by coreboot menuconfig and= x64 architecture. Once the system is running I can read the PCRs and, if I'm not wrong, PCRs = 0 to 7 are handled by the Tianocore/Coreboot. I've flashed a coreboot+tianocore in release mod= e and a coreboot+ tianocore in debug mode and the PCRs are the same. Is it ok? I thought that= any change in the coreboot.rom will made the PCR values to change... pcr0: 3d458cfe55cc03ea1f443f1562beec8df51c75e14a9fcf9a7234a13f198e7969 pcr1: a3a3552caa68c6d9db64bf1ed4dca08080f99b59f1b26debc9abefa59ee8ca28 pcr2: 3d458cfe55cc03ea1f443f1562beec8df51c75e14a9fcf9a7234a13f198e7969 pcr3: 3d458cfe55cc03ea1f443f1562beec8df51c75e14a9fcf9a7234a13f198e7969 pcr4: 74a35102770e65ab94b35135a4bf54c411134ae8059e03df41060a33f573871f pcr5: dfa65561584cb8604b1675c869f3341d0c99c642ce9d91353380361126235ad8 pcr6: 3d458cfe55cc03ea1f443f1562beec8df51c75e14a9fcf9a7234a13f198e7969 pcr7: b5710bf57d25623e4019027da116821fa99f5c81e9e38b87671cc574f9281439 Another test I've done is using the Tianocore stable branch as selected by = coreboot (STABLE_COMMIT_ID=3D315d9d08fd77db1024ccc5307823da8aaed85e2f) and I get the= same values from release and build coreboot.roms except that PCR1 has the = same value as PCR0, 2, 3 and 6, it seems it's not used in this version. Is this the expected behavior? Thanks! Jorge _______________________________________________ edk2-devel mailing list edk2-devel@lists.01.org https://lists.01.org/mailman/listinfo/edk2-devel