From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-wm1-f51.google.com (mail-wm1-f51.google.com [209.85.128.51]) by mx.groups.io with SMTP id smtpd.web09.8585.1583311940407904807 for ; Wed, 04 Mar 2020 00:52:20 -0800 Authentication-Results: mx.groups.io; dkim=pass header.i=@linaro.org header.s=google header.b=qa3VlShT; spf=pass (domain: linaro.org, ip: 209.85.128.51, mailfrom: ard.biesheuvel@linaro.org) Received: by mail-wm1-f51.google.com with SMTP id u9so949418wml.3 for ; Wed, 04 Mar 2020 00:52:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=TBDJUTpQY7DAFhcBwCeB49Vej4hUy/07azKtLTm5X/4=; b=qa3VlShT/gqQMJTmUgNgaTsx4GRSlzGjLTlcZHDuH5FAlqul5SsPIjxJJSJyS09ELx nJvKqhnWWEJQQ92LsuyW6+qAI8rSXf5X6f+q9mWp7H9zLuM9BYkIoKLBXYj5rRTfctnJ vEwyVpEmR6jjq/VY2fdxLJlA3+rv/Gd/J1dImQmhAZIhVpku/jSjXtSaKAFqeodhgnCq FW8xHLOaR4Dxqjlyngu4Uwyu2AqMqHWHd8uX+nl6HA1erHfqLcphI4koaUiBjT/dZlkK Ffy93KL9TyTCykWTXGGmWftM5DhlZf4VAtSZP8SqVy0XimJlYXpNFdVwCKm5H+d7r8UX g0zw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=TBDJUTpQY7DAFhcBwCeB49Vej4hUy/07azKtLTm5X/4=; b=r44RObcykyFOz6bJJM23KRwFGeHBHsm+mJgT9xgEYZITIfGnpNoiAeYL0oddgPUb4P DGw31+sz5g/IZoHHAsXmdQWQZxogp4mcicQgGUrVbdQNPD1vEkElWwCJZfPp4Vks7wQg 5diXNc/iHVPoNOEOxsrTSet7AsUMlcY70DTQULaUCSqlJ45OoutdzCIC9rBuktlaB0XV Ef+nIzjSpFulL5lgNw/KwOpveazsCXuCvMvgwCu4+xl7NqewR/64vwEaV2BNv7fevXNA Hb7+7UU7kxGVLPsHaJVvqbhgPiefF6KSfKxeXNOHl328EcferxrJe1DJbb2Briv2ZmIO R3xw== X-Gm-Message-State: ANhLgQ2IYyYIRKmSKE012sq/2Dlacp0gF0AOTgHq2BE/1DYDr06lxcMZ I6TEOoTPrEFGIN83Yq3zA7VWT5K5oWg46eFN+iViqn6LjLBnfA== X-Google-Smtp-Source: ADFU+vsUF+IwWUKS+biZhiJR5TbKk2Fr9AF9S1+bJuA7kvFxGTFuQNsDVh/mOyilCCwJrnubm8r0HDgVDn/evGU+neo= X-Received: by 2002:a1c:2d88:: with SMTP id t130mr2729692wmt.68.1583311936380; Wed, 04 Mar 2020 00:52:16 -0800 (PST) MIME-Version: 1.0 References: <20200227144056.56988-1-ard.biesheuvel@linaro.org> In-Reply-To: <20200227144056.56988-1-ard.biesheuvel@linaro.org> From: "Ard Biesheuvel" Date: Wed, 4 Mar 2020 09:52:05 +0100 Message-ID: Subject: Re: [PATCH v4 00/11] ArmVirtPkg: implement measured boot for ArmVirtQemu To: edk2-devel-groups-io Cc: Laszlo Ersek , Auger Eric , =?UTF-8?Q?Philippe_Mathieu=2DDaud=C3=A9?= , =?UTF-8?B?TWFyYy1BbmRyw6kgTHVyZWF1?= , Stefan Berger , Leif Lindholm Content-Type: text/plain; charset="UTF-8" On Thu, 27 Feb 2020 at 15:40, Ard Biesheuvel wrote: > > Wire up the various existing pieces so that we can implement measured > boot on ArmVirtQemu based on the TPM support in QEMU, just like it has > been implemented for x86 in OvmfPkg. > > The main difference is that on ARM, we first need to discover the TPM base > address from the device tree provided by QEMU, as well as the PSCI method > used to perform a cold reset. > > Changes since v3: > - add Laszlo's ack to patches #3, #5, #6, #10 and #11 > - incorporate Laszlo's review feedback, including splitting off #7 and #8 > from patch #9 > > Changes since v2: > - add Laszlo's ack to patches #2 and #4 > - add PcdTpm2SupportEnabled PCD declarations to all individual platforms in > ArmVirtPkg, even though only ArmVirtQemu really needs it > - split patch #5 into several patches > > Changes since v1: > - use a separate ResetSystemLib instance based on on-demand parsing of the > DT, and expose it via the ResetSystem PPI to other client PEIMs > - add Laszlo's ack to #1 > - incorporate Laszlo's review feedback across the board > > Code can also be found at: > https://github.com/ardbiesheuvel/edk2/tree/armvirt-tpm > > Cc: lersek@redhat.com > Cc: eric.auger@redhat.com > Cc: philmd@redhat.com > Cc: marcandre.lureau@redhat.com > Cc: stefanb@linux.ibm.com > Cc: leif@nuviainc.com > > Ard Biesheuvel (11): > OvmfPkg/Tcg2ConfigPei: introduce a signalling PPI to depex on > ArmVirtPkg/PlatformPeiLib: make PcdLib dependency explicit in .INF > ArmVirtPkg/PlatformPeiLib: discover the TPM base address from the DT > ArmVirtPkg: implement ArmVirtPsciResetSystemPeiLib > ArmVirtPkg/ArmVirtQemu: add ResetSystem PEIM for upcoming TPM2 support > ArmVirtPkg/ArmVirtQemu: enable TPM2 support in the PEI phase > ArmVirtPkg; avoid DxeTpmMeasurementLib in shared .DSC > ArmVirtPkg: unshare TpmMeasurementLib resolution between platforms > ArmVirtPkg/ArmVirtQemu: enable the DXE phase TPM2 support module > ArmVirtPkg/ArmVirtQemu: enable the TPM2 configuration module > ArmVirtPkg/ArmVirtQemu: enable TPM2 based measured boot > Replied to the wrong cover letter before. *This* version is now merged as edk2-stable202002..0980779a9ddc Thanks all.