From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bounce+27952+117087+7686176+12367111@groups.io>
Received: from mail02.groups.io (mail02.groups.io [66.175.222.108])
	by spool.mail.gandi.net (Postfix) with ESMTPS id BD4ED941CC3
	for <rebecca@openfw.io>; Mon, 25 Mar 2024 15:29:12 +0000 (UTC)
DKIM-Signature: a=rsa-sha256; bh=fV/heFoIzPyy9kBSUMS6TcJmhg7iJEsbjK4gwqQ44Oo=;
 c=relaxed/simple; d=groups.io;
 h=MIME-Version:References:In-Reply-To:From:Date:Message-ID:Subject:To:Cc:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Resent-Date:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Type:Content-Transfer-Encoding;
 s=20240206; t=1711380551; v=1;
 b=VugLJzNSWy0VnBrvHcRfWTElhyJEjdVuWCR7RDvvUSjsUxUPLaxy3G81i0lJlksw+TgyO1OG
 sMZU/MbmYRJ5h5FAgh8kDF+S4nKKn88urRiJ9vYfY0QgOQCstq2xqAH/Q1QjMW8OQwZE3VsUSz3
 pto6xJzRskplbWzgIszfJA7Bm+GmPwGg7U/XCCE6iupgjL5uQjAYEtda4eZOZpJff0sX8xIrQ+5
 VVtbmHUPU9c/R/E0pPN7+5Gafk89lPQ+doBsav7EriuIXWUtlryQEh2omNt7aM4v1IFKBMiAZ6R
 XKSKirwxcAs3dQfdDeEE+yk/Ym7B9BCAxABYifFaYru1w==
X-Received: by 127.0.0.2 with SMTP id vpBOYY7687511xGM1TOxLbY6; Mon, 25 Mar 2024 08:29:11 -0700
X-Received: from mail-ed1-f49.google.com (mail-ed1-f49.google.com [209.85.208.49])
 by mx.groups.io with SMTP id smtpd.web10.55414.1711380550406741207
 for <devel@edk2.groups.io>;
 Mon, 25 Mar 2024 08:29:10 -0700
X-Received: by mail-ed1-f49.google.com with SMTP id 4fb4d7f45d1cf-56beb6e68aeso12037a12.1
        for <devel@edk2.groups.io>; Mon, 25 Mar 2024 08:29:10 -0700 (PDT)
X-Forwarded-Encrypted: i=1; AJvYcCXWOqMxTwIpnpN8LN9tvJEpizgw7M0CNMN/tOlqXHHrZzdOMOeFR/Yeas5oQTE45oImJ8ffoTQ1jJFLgg9qX7tq4vh0Rw==
X-Gm-Message-State: Hq8R1OJC4LdiLfTL3iNZK5jix7686176AA=
X-Google-Smtp-Source: AGHT+IFpqflVgVTUXihee3xrpVsWhSlvEH1aIPr32YOZa4JnoRA/iVmWC9sloN6Yf0ZWfeod3zX7SsfL6RJ+Wf6Hars=
X-Received: by 2002:aa7:c441:0:b0:56c:d96:8db2 with SMTP id
 n1-20020aa7c441000000b0056c0d968db2mr148005edr.6.1711380548383; Mon, 25 Mar
 2024 08:29:08 -0700 (PDT)
MIME-Version: 1.0
References: <94521f20aa2872c1b8f018b7db31eca4a2b8222d.1711039409.git.qinkun@google.com>
 <CAAH4kHbAi=Jn7Lw82idGGmQYnAhJnhoS9u8wBMOZsp7iLiOWxw@mail.gmail.com>
 <PH0PR11MB587959168F72B20E0AC836438C312@PH0PR11MB5879.namprd11.prod.outlook.com>
 <u76teout4bwpg5yoklah6xfkrpcn4lw5nosw5lmph7sfjipqnz@gagzyh3xrkie>
 <CAAH4kHbeGborxwDOzxeMbTjU4Xo79v-OVSHXYWQiJxg-yWQfWQ@mail.gmail.com> <ZgF3ACjFj8LtUWgv@himmelriiki>
In-Reply-To: <ZgF3ACjFj8LtUWgv@himmelriiki>
From: "Dionna Glaze via groups.io" <dionnaglaze=google.com@groups.io>
Date: Mon, 25 Mar 2024 08:28:54 -0700
Message-ID: <CAAH4kHbqpaCgZJpF55x2NGWL22rz1ucRewYmR=K2chw2kP6sKA@mail.gmail.com>
Subject: Re: [edk2-devel] [RFC PATCH] OvmfPkg/SecurityPkg: Add build option for coexistance of vTPM and RTMR.
To: Mikko Ylinen <mikko.ylinen@linux.intel.com>
Cc: Gerd Hoffmann <kraxel@redhat.com>, "Yao, Jiewen" <jiewen.yao@intel.com>, 
	qinkun Bao <qinkun@google.com>, "devel@edk2.groups.io" <devel@edk2.groups.io>, 
	"linux-coco@lists.linux.dev" <linux-coco@lists.linux.dev>, "Aktas, Erdem" <erdemaktas@google.com>, 
	Ard Biesheuvel <ardb@kernel.org>, Peter Gonda <pgonda@google.com>, 
	James Bottomley <jejb@linux.ibm.com>, Tom Lendacky <thomas.lendacky@amd.com>, 
	Michael Roth <michael.roth@amd.com>
Precedence: Bulk
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Resent-Date: Mon, 25 Mar 2024 08:29:10 -0700
Reply-To: devel@edk2.groups.io,dionnaglaze@google.com
List-Unsubscribe-Post: List-Unsubscribe=One-Click
List-Unsubscribe: <https://edk2.groups.io/g/devel/leave/12367111/7686176/1913456212/plugh>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-GND-Status: LEGIT
Authentication-Results: spool.mail.gandi.net;
	dkim=pass header.d=groups.io header.s=20240206 header.b=VugLJzNS;
	dmarc=pass (policy=none) header.from=groups.io;
	spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io

On Mon, Mar 25, 2024 at 6:07=E2=80=AFAM Mikko Ylinen
<mikko.ylinen@linux.intel.com> wrote:
>
> > >
> > > Looking at systemd-boot I see it will likewise not measure to both RT=
MR
> > > and vTPM, but with reversed priority (use vTPM not RTMR in case both =
are
> > > present).
> > >
> >
> > Interesting. Thanks for this report. We'll push for the changed
> > semantics here if the spec is indeed changed, and request partner
> > distros in the CCC to include the updated systemd-boot.
>
> FWIW, my RTMRs patch to systemd was merged quite recently so it's not
> included in any systemd release yet. (It was mainly implemented for the
> UKI case that allows TDVF to boot a UKI image directly and then have the
> image sections measured separately.)
>

Thank you, I've proposed a change in
https://github.com/systemd/systemd/pull/31939


--=20
-Dionna Glaze, PhD (she/her)


-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#117087): https://edk2.groups.io/g/devel/message/117087
Mute This Topic: https://groups.io/mt/105070442/7686176
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io]
-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-