From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bounce+27952+119556+7686176+12367111@groups.io>
Received: from mail05.groups.io (mail05.groups.io [45.79.224.7])
	by spool.mail.gandi.net (Postfix) with ESMTPS id 9EB3AD801B3
	for <rebecca@openfw.io>; Wed, 12 Jun 2024 04:39:39 +0000 (UTC)
DKIM-Signature: a=rsa-sha256; bh=Rh9/nsr5m5l9MaSGe1t+ohI3Z6HyVOz2qZT5sUIunU4=;
 c=relaxed/simple; d=groups.io;
 h=MIME-Version:From:Date:Message-ID:Subject:To:Cc:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Resent-Date:Resent-From:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Type;
 s=20240206; t=1718167179; v=1;
 b=ZBMGvi/jGspC8eE/O8oW0VjPuEMBMpXBEd6DWbpKln4mGz02xJmsySFha44efmogVViCfezb
 iNUz2rorK9yw+1aeX/8otxYHajZTPOCQHaGZzRqrbxLPLthB0B5XcdmYeHfauf2vURwObEiB9QU
 GhagMmr9ffE6jW2++3dLPesSa398mmOeyFLEhTPinbAYS12ZbK/83xHtloGH8Tu4mKxggKjQcS7
 ncAXoN2D4BkivxFQaDrzAQCJ4B9jYLpEwsUwgA+X7eNPIlH1BrTj/HLiwGvEvsIrqDpRM0rSJSm
 X9HFqeJXB/wAzd1ZtnxRdZtq7BkwRZrZUUTHWtTUwyJew==
X-Received: by 127.0.0.2 with SMTP id J331YY7687511xho0xoKdvR9; Tue, 11 Jun 2024 21:39:38 -0700
X-Received: from mail-ua1-f44.google.com (mail-ua1-f44.google.com [209.85.222.44])
 by mx.groups.io with SMTP id smtpd.web10.2687.1718084576894984042
 for <devel@edk2.groups.io>;
 Mon, 10 Jun 2024 22:42:57 -0700
X-Received: by mail-ua1-f44.google.com with SMTP id a1e0cc1a2514c-80b8689775fso854759241.1
        for <devel@edk2.groups.io>; Mon, 10 Jun 2024 22:42:56 -0700 (PDT)
X-Gm-Message-State: PUgl8PYzGzdoJBQyCcMT5o9cx7686176AA=
X-Google-Smtp-Source: AGHT+IGbA6h5d5jpNBHLpYM7AUsaiq9FIHhpJ57vN8Gy70TKE3OTuzD3Z1IEUOsdTfOUz4gyT2R1vVagu8ltWHGDRdA=
X-Received: by 2002:a05:6102:370e:b0:48c:2c3c:46bc with SMTP id
 ada2fe7eead31-48c2c3c4762mr12950724137.34.1718084575655; Mon, 10 Jun 2024
 22:42:55 -0700 (PDT)
MIME-Version: 1.0
From: "Alistair Francis" <alistair23@gmail.com>
Date: Tue, 11 Jun 2024 15:42:29 +1000
Message-ID: <CAKmqyKObJJWXfwWQOoi8rfb_VAVz6X8oHSrdGEKhBdw3FYvD6w@mail.gmail.com>
Subject: [edk2-devel] mDeviceSecurityProtocol with SPDM
To: devel@edk2.groups.io
Cc: zhiqiang.zhao@intel.com, qi1.zhang@intel.com, 
	"Yao, Jiewen" <jiewen.yao@intel.com>, wenxing.hou@intel.com
Precedence: Bulk
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Resent-Date: Tue, 11 Jun 2024 21:39:32 -0700
Resent-From: alistair23@gmail.com
Reply-To: devel@edk2.groups.io,alistair23@gmail.com
List-Unsubscribe-Post: List-Unsubscribe=One-Click
List-Unsubscribe: <https://edk2.groups.io/g/devel/leave/12367111/7686176/1913456212/plugh>
Content-Type: text/plain; charset="UTF-8"
X-GND-Status: LEGIT
Authentication-Results: spool.mail.gandi.net;
	dkim=pass header.d=groups.io header.s=20240206 header.b="ZBMGvi/j";
	spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 45.79.224.7 as permitted sender) smtp.mailfrom=bounce@groups.io;
	dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=gmail.com (policy=none)

Hello,

I'm trying to use SPDM over DOE as a EDKII_DEVICE_SECURITY_PROTOCOL
implementation.

I'm using the DeviceSecurity fork from staging, with my own DOE
implementation [5].

First I load `DeviceSecurityPolicyStub` [1], which consumes
`gEdkiiDeviceIdentifierTypePci
Guid` and produces
`gEdkiiDeviceSecurityPolicyProtocolGuid`.

Then I am loading `SpdmDeviceSecurityDxe` [2], which consumes
`gEdkiiDeviceSecurityPolicyProtocolGuid` and produces
`gEdkiiDeviceSecurityProtocolGuid`.

At which point I think the `gEdkiiDeviceSecurityProtocolGuid` should
work in PciBus [3]. Except the problem is that the PCIe bus is already
probed as `DeviceSecurityPolicyStub` consumes
`gEdkiiDeviceIdentifierTypePciGuid`. So I get stuck in a circular
loop.

Does anyone know how I can re-probe the `PciBusDxe` or somehow avoid
the circular dependency?

Or asking another way, is there a way to call the
`AuthenticatePciDevice()` [4] function after probing a PCIe device and
determining that the PCIe device supports DOE and SPDM? I don't see
any users of `gEfiDevicePathProtocolGuid` in upstream EDK2.

1: https://github.com/tianocore/edk2-staging/blob/DeviceSecurity/DeviceSecurityTestPkg/Test/DeviceSecurityPolicyStub/DeviceSecurityPolicyStub.inf#L36
2: https://github.com/tianocore/edk2-staging/blob/DeviceSecurity/DeviceSecurityTestPkg/SpdmDeviceSecurityDxe/SpdmDeviceSecurityDxe.inf#L56
3: https://github.com/tianocore/edk2-staging/blob/DeviceSecurity/MdeModulePkg/Bus/Pci/PciBusDxe/PciBus.c#L299
4: https://github.com/tianocore/edk2-staging/blob/DeviceSecurity/MdeModulePkg/Bus/Pci/PciBusDxe/PciEnumeratorSupport.c#L2085
5: https://github.com/tianocore/edk2/pull/5715

PS: This is the second mail, the first didn't make it to the list

Alistair


-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#119556): https://edk2.groups.io/g/devel/message/119556
Mute This Topic: https://groups.io/mt/106627087/7686176
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io]
-=-=-=-=-=-=-=-=-=-=-=-