From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from EUR04-VI1-obe.outbound.protection.outlook.com (EUR04-VI1-obe.outbound.protection.outlook.com [40.107.8.45]) by mx.groups.io with SMTP id smtpd.web11.11582.1607599598482845045 for ; Thu, 10 Dec 2020 03:26:40 -0800 Authentication-Results: mx.groups.io; dkim=pass header.i=@armh.onmicrosoft.com header.s=selector2-armh-onmicrosoft-com header.b=U4zBSXmQ; spf=pass (domain: arm.com, ip: 40.107.8.45, mailfrom: sami.mujawar@arm.com) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZbNd92l3KvqoI7du5Y2gl099eRegYCbKijHjxfZ0IhQ=; b=U4zBSXmQEpHNZQzohSGu8oT9RmCfWQWMVZlszWoQY637IOfDz0h8/y8JxYTRjEWzO4vNgJ5ggynehiWMuuZHbUZB7P6rwvLnSDv4Vcgmij5Q+gBTlHU8d0oKCa5WQp5i74Ida3q2hQxGEzu7QAZlHvaRlcuFgny+RLdshAqw6y8= Received: from AM5PR0301CA0029.eurprd03.prod.outlook.com (2603:10a6:206:14::42) by DB8PR08MB4154.eurprd08.prod.outlook.com (2603:10a6:10:b1::28) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3654.12; Thu, 10 Dec 2020 11:26:34 +0000 Received: from AM5EUR03FT010.eop-EUR03.prod.protection.outlook.com (2603:10a6:206:14:cafe::6b) by AM5PR0301CA0029.outlook.office365.com (2603:10a6:206:14::42) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3654.12 via Frontend Transport; Thu, 10 Dec 2020 11:26:34 +0000 X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; edk2.groups.io; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;edk2.groups.io; dmarc=pass action=none header.from=arm.com; Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com; Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by AM5EUR03FT010.mail.protection.outlook.com (10.152.16.134) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3654.12 via Frontend Transport; Thu, 10 Dec 2020 11:26:34 +0000 Received: ("Tessian outbound 8b6e0bb22f1c:v71"); Thu, 10 Dec 2020 11:26:34 +0000 X-CR-MTA-TID: 64aa7808 Received: from c224f97f978f.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id 7CC2F490-DCB5-49CC-9E16-17B23FE4CD9F.1; Thu, 10 Dec 2020 11:26:29 +0000 Received: from EUR05-DB8-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id c224f97f978f.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Thu, 10 Dec 2020 11:26:29 +0000 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=nQaMkQXosaEz0ztS28EggXYMx7oN4KkYDjjdUMNONgkyIX4SyTPmGeV14hcuk5W0NhUOnJY4S9opcpVSzY37ue6xmjoXFrH6e5lP5saM+HlYJw9BN8+1gh7cEtjij3gu6O9uLw2diG2cd+R+UMljH610pGP3dOr575acH2ar+4j36Hm9FNP68Fxr6xbPESlmeItZV0qP09C9e0krNhl/Pl1ObFZvEUHvYeyxySL4PJ/tmScoj5UCDg8fTZDBdWxRlF6aWVXW/RpeevECigPFPQLrfRoh+3SWY5RWkxsWp0NQOHyYXRO6xUHnzIzJnMD59shHxIpqGKos4OnSFpAf5Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZbNd92l3KvqoI7du5Y2gl099eRegYCbKijHjxfZ0IhQ=; b=e98aUd4CacA2NZonJ+6aywefWvYaEpq2xo0w2qRnwQ0JEHTjp9sCy+pB9nuhGPr/AtB4zHL5k61OyaQUTkE4WgnLA57O3LKLJVN59RpyzgxiuS07vVP7NJpDlBHq2ptPG+EkMMYQE/A5+e3AuHukwXMP3KP4XUx+C2NqQpMOoDffIWpWnxJ5/RUca3KCubGgnFxhqQWoU47LTJ3FJ6WEwhx6Yjhq6scsbBClUshvPCog0sBa2jqA+7lYbgRZwrbEIAgqZQHQhisb1HzFGDXnI6HOAeMRhrM1Mz6qm3R4ctrKmpS6Q9hvRoRNSd7MS3JMS4A95gNMA1lO26o+rt7csA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZbNd92l3KvqoI7du5Y2gl099eRegYCbKijHjxfZ0IhQ=; b=U4zBSXmQEpHNZQzohSGu8oT9RmCfWQWMVZlszWoQY637IOfDz0h8/y8JxYTRjEWzO4vNgJ5ggynehiWMuuZHbUZB7P6rwvLnSDv4Vcgmij5Q+gBTlHU8d0oKCa5WQp5i74Ida3q2hQxGEzu7QAZlHvaRlcuFgny+RLdshAqw6y8= Received: from DB7PR08MB3097.eurprd08.prod.outlook.com (2603:10a6:5:1d::27) by DBBPR08MB5993.eurprd08.prod.outlook.com (2603:10a6:10:1f4::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3654.12; Thu, 10 Dec 2020 11:26:27 +0000 Received: from DB7PR08MB3097.eurprd08.prod.outlook.com ([fe80::315c:f6c3:2600:bd39]) by DB7PR08MB3097.eurprd08.prod.outlook.com ([fe80::315c:f6c3:2600:bd39%6]) with mapi id 15.20.3611.039; Thu, 10 Dec 2020 11:26:26 +0000 From: "Sami Mujawar" To: "devel@edk2.groups.io" , Samer El-Haj-Mahmoud , Ard Biesheuvel , "rebecca@nuviainc.com" , "leif@nuviainc.com" CC: "rfc@edk2.groups.io" , Jiewen Yao , Rahul Kumar , nd Subject: Re: [edk2-devel] RFC: Adding support for ARM (RNDR etc.) to RngDxe Thread-Topic: [edk2-devel] RFC: Adding support for ARM (RNDR etc.) to RngDxe Thread-Index: AQHWzeRyYZqCLJUFX02S9tXdLQTHUKnuMRqAgABLzSA= Date: Thu, 10 Dec 2020 11:26:26 +0000 Message-ID: References: <70a4f9e7-952c-cf05-bca7-009ee5b2cd3f@nuviainc.com> In-Reply-To: Accept-Language: en-GB, en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ts-tracking-id: 864FB690B114964C94962424884E1B9B.1 x-checkrecipientchecked: true Authentication-Results-Original: edk2.groups.io; dkim=none (message not signed) header.d=none;edk2.groups.io; dmarc=none action=none header.from=arm.com; x-originating-ip: [86.161.210.147] x-ms-publictraffictype: Email X-MS-Office365-Filtering-HT: Tenant X-MS-Office365-Filtering-Correlation-Id: a91ee6b6-bb01-419c-07f4-08d89cfe7383 x-ms-traffictypediagnostic: DBBPR08MB5993:|DB8PR08MB4154: x-ms-exchange-transport-forked: True X-Microsoft-Antispam-PRVS: x-checkrecipientrouted: true nodisclaimer: true x-ms-oob-tlc-oobclassifiers: OLM:9508;OLM:9508; X-MS-Exchange-SenderADCheck: 1 X-Microsoft-Antispam-Untrusted: BCL:0; X-Microsoft-Antispam-Message-Info-Original: GsAuxxUJEGWheRAjqQa7NIYM4Lfpgaqu/pVrbXz7NOmcaswZXCVttkG1isaGfqJsz+U9lyIo3BG/bTbrdNJR8ssj9xDHz0YnvuZYenwmj8ywmUUTsgswCy2AQ/cuza6azSLTmYvauSYLXjFHuDRJEd85FrmF2C2Is/DZ7/t26pOlQINyL29zao+VZyp+euxtfTZ+XTsdu4S2IQ45M7jNKrxGMclp5HSgOcAW1j58zlzz5QTmDKshGsqcF+25TuaW5z+nhRQYxoAKHWiWmLRgKRTUdaJjopa3yYPIZwciOtyY0FTD6k3vAQMz7CHMCeUjxnRBOPeJf+E41yvuhhSB7QlFiPRp66c3P6aNRureRCAZLkAew2ySKN7HT8RkHV59B+FWtwt8GeJSNe8nCTPLCg== X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DB7PR08MB3097.eurprd08.prod.outlook.com;PTR:;CAT:NONE;SFS:(4636009)(346002)(39850400004)(396003)(136003)(366004)(376002)(166002)(52536014)(71200400001)(7696005)(2906002)(53546011)(54906003)(55016002)(316002)(110136005)(66556008)(6506007)(76236003)(4326008)(26005)(66446008)(186003)(9686003)(64756008)(66946007)(66476007)(5660300002)(8676002)(76116006)(33656002)(83380400001)(966005)(478600001)(9326002)(86362001)(8936002);DIR:OUT;SFP:1101; x-ms-exchange-antispam-messagedata: =?us-ascii?Q?SU8e/uCUtgcOQg+W93KCv/nUGOWZ44XRiNKZI58b6Tr+qairfEG5MXxHr0zp?= =?us-ascii?Q?L2RJ+soqSMbwKXe3vfDsRoty4GYpIAOn8L4XEEcXa39wXP6CXCrY6RzcZtks?= =?us-ascii?Q?RlelSpSwbO/qkiQfaniEVOqThqzwOalhb4d8z8EagA6lEgrjWDg0nBf7jByo?= =?us-ascii?Q?n+4aRUe/Y2zNYDypnfrmZl/lC03Q+Lex6eob9Kve+LQmvmm2JlHn9K8GW/l+?= =?us-ascii?Q?fLjdlRx2blKPdbPSJncsc6Rn7JFX9/0lSb6C3mx6pS/H3CYiCeG6K7JzJNMv?= =?us-ascii?Q?Kj3wEF5KcRBAa/sXVRnTvdWXeB85P6QUxrH5m/aq8Y0qvMv+iZOYo3gebn8v?= =?us-ascii?Q?988H6uOynK7aC6hiRqZpdhorsGvv/hx9JYWrI2pZ28QRK0ajL76z12AXn8wJ?= =?us-ascii?Q?QCSO8+unV7SYFxXNcVR+un2LPif4EomKYLkL1xC67ta9nLp/V1fpvawt2sbP?= =?us-ascii?Q?56StrHcGQuuwMf1aeaD8YZE2BnUDyt8T5ApBIU28oyFxiIu9KtAuLN9wpQy9?= =?us-ascii?Q?bUdMY6OrtDsUKsD3D1o3ilHTNcBkK6bZ0/N0o45auDmVAX4MEoJJJx8oMVPL?= =?us-ascii?Q?7YjTwNk4aNbMiDkPM1FxGhz6/EncWfqLXARyai7lsaAEEsZf892mWBfxkCMp?= =?us-ascii?Q?zESDgTvd6i3gYM60dCLAvtwbAcmSMFSBomJbPKsdbttt3ziuZEVFXe43wqLc?= =?us-ascii?Q?08BLr9dIGzmuAJwrnJnMwU/CgdGRU4XipQ/TODHHk+mbZbqwTGLVcKeULNE0?= =?us-ascii?Q?5dM3O1uoTKBtdM+0LFn80w4XVwklPfRVMLHMwf7q0nzYrL48cHs2+3j+yxGf?= =?us-ascii?Q?onV/TCnFJe9aapkObssoS0XgVhKSDo4tOxOYqiqLYZMy98I/kUdZIsjygWF9?= =?us-ascii?Q?npZnbn8brcxMA4VeMIRderqb1tjZzm8qx3IyqKnixa+QdY/1iNS0FVxxuw1u?= =?us-ascii?Q?MUK0jHlceABMnpK1jYTHnBdjNnhd6QfYIFGoBGs++4g=3D?= MIME-Version: 1.0 X-MS-Exchange-Transport-CrossTenantHeadersStamped: DBBPR08MB5993 Original-Authentication-Results: edk2.groups.io; dkim=none (message not signed) header.d=none;edk2.groups.io; dmarc=none action=none header.from=arm.com; Return-Path: Sami.Mujawar@arm.com X-EOPAttributedMessage: 0 X-MS-Exchange-Transport-CrossTenantHeadersStripped: AM5EUR03FT010.eop-EUR03.prod.protection.outlook.com X-MS-Office365-Filtering-Correlation-Id-Prvs: c3f1d669-56f9-4a4f-d1a0-08d89cfe6eee X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: hw97RyzKynAVLuM27p9BAMpshbMlW0Q5tOcuoFDHiojTlNFMOLyTzWYn3mWRkwJJDW+SAS/AozWRd6Kh+uH0uPbH2xHQ1hJSF7LZLMHudOpq2imB2VhKZcQt0+aAQizSjiIltxUJH4pKeGEBue2zLWQgwRxc/FcAOQzvw6yeHI7m/OurjTxPnFxB425yOox7A6X31CQnPI27iaJnnCPMIF9EifiF3RnBnTjwKCoW2jMrdj3bB6232vn4uV+LBgWWM9ZjeXvutgJhlc/91i0PkDkubT+tal+ySa/LKfwPRN1NRX4Ys/GqF3BN0Jn0moHkdVVKQt4j9VVldcF3KqKE/3Sn/vbgdiyKpQJGnqeYcZ8ppjls07HRhBcF5zE2Oz8vdK/F7B5bAs3pyTEyohJOPj7sWzWxU61Vd39fe3WWh9LNfwacX5gdaQ6doGQ5J2WL6icvqT1gLd0e5MjBweY/8OC5YQjFPM6eXj0yTJa86hY= X-Forefront-Antispam-Report: CIP:63.35.35.123;CTRY:IE;LANG:en;SCL:1;SRV:;IPV:CAL;SFV:NSPM;H:64aa7808-outbound-1.mta.getcheckrecipient.com;PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com;CAT:NONE;SFS:(4636009)(396003)(376002)(136003)(39850400004)(346002)(46966005)(110136005)(83380400001)(82740400003)(52536014)(47076004)(166002)(26005)(966005)(8936002)(450100002)(33656002)(5660300002)(4326008)(82310400003)(76236003)(86362001)(6506007)(53546011)(186003)(316002)(7696005)(2906002)(9686003)(36906005)(81166007)(54906003)(356005)(8676002)(70206006)(55016002)(478600001)(336012)(9326002)(70586007);DIR:OUT;SFP:1101; X-OriginatorOrg: arm.com X-MS-Exchange-CrossTenant-OriginalArrivalTime: 10 Dec 2020 11:26:34.5518 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: a91ee6b6-bb01-419c-07f4-08d89cfe7383 X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d;Ip=[63.35.35.123];Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com] X-MS-Exchange-CrossTenant-AuthSource: AM5EUR03FT010.eop-EUR03.prod.protection.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB8PR08MB4154 Content-Language: en-US Content-Type: multipart/alternative; boundary="_000_DB7PR08MB3097B69CE3A326D08B3403EC84CB0DB7PR08MB3097eurp_" --_000_DB7PR08MB3097B69CE3A326D08B3403EC84CB0DB7PR08MB3097eurp_ Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hi All, I am working on the TRNG FW API interface and will share more details for = the discussion soon. We had some thoughts about streamlining the RngDxe implementations and wou= ld like to share some diagrams for the discussion. My diagrams are in Visio that I can export as JPG images. However, I am op= en to switching to any other suggested tool. Hi Leif, Can you suggest on how we can collaborate to share diagrams/documents, ple= ase? Regards, Sami Mujawar From: devel@edk2.groups.io On Behalf Of Samer El-Ha= j-Mahmoud via groups.io Sent: 09 December 2020 04:48 AM To: devel@edk2.groups.io Cc: rfc@edk2.groups.io; Jiewen Yao ; Rahul Kumar Subject: Re: [edk2-devel] RFC: Adding support for ARM (RNDR etc.) to RngDx= e There is also the TRNG FW API, which is an architected SMC firmware interf= ace: https://developer.arm.com/documentation/den0098/latest/ ________________________________ From: devel@edk2.groups.io > on behalf of Rebecca Cran via groups.io <= rebecca=3Dnuviainc.com@groups.io> Sent: Tuesday, December 8, 2020, 11:33 PM To: devel@edk2.groups.io Cc: rfc@edk2.groups.io; Jiewen Yao; Rahul Kumar Subject: [edk2-devel] RFC: Adding support for ARM (RNDR etc.) to RngDxe Currently, RngDxe in SecurityPkg only supports Intel, with RdRand support. This RFC is to start a discussion about adding support for ARM. I have a Git branch with support for the optional ARMv8.5 RNDR instruction at https://github.com/bcran/edk2/commits/bcran-rndr which moves the existing Intel support into a Rand directory, and adds code to support RNDR in a new AArch64 directory. There are other RNG implementations available for ARM, including platform-specific approaches on Graviton (https://lwn.net/Articles/790304/) and other platforms, so a more thorough rearchitecting/redesign may be desired. -- Rebecca Cran IMPORTANT NOTICE: The contents of this email and any attachments are confi= dential and may also be privileged. If you are not the intended recipient, = please notify the sender immediately and do not disclose the contents to an= y other person, use it for any purpose, or store or copy the information in= any medium. Thank you. --_000_DB7PR08MB3097B69CE3A326D08B3403EC84CB0DB7PR08MB3097eurp_ Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

Hi All,<= o:p>

&nb= sp;

I am wor= king on the TRNG FW API interface and will share more details for the discu= ssion soon.

We had s= ome thoughts about streamlining the RngDxe implementations and would like t= o share some diagrams for the discussion.

My diagr= ams are in Visio that I can export as JPG images. However, I am open to swi= tching to any other suggested tool.

&nb= sp;

Hi Leif,=

&nb= sp;

Can you = suggest on how we can collaborate to share diagrams/documents, please?

&nb= sp;

Regards,=

&nb= sp;

Sami Muj= awar

&nb= sp;

From: devel@edk2.groups.io <devel@edk2.groups.io> On Behalf Of Samer El-Haj-Mahmoud via groups.io
Sent: 09 December 2020 04:48 AM
To: devel@edk2.groups.io
Cc: rfc@edk2.groups.io; Jiewen Yao <jiewen.yao@intel.com>; Ra= hul Kumar <rahul1.kumar@intel.com>
Subject: Re: [edk2-devel] RFC: Adding support for ARM (RNDR etc.) t= o RngDxe

 

There is also the TRNG FW API, which is an architected SM= C firmware interface:

 

 

From: devel@edk2.groups.io <devel@edk2.groups.io> on behalf o= f Rebecca Cran via groups.io <rebecca=3Dnuviainc.com@groups.io>
Sent: Tuesday, December 8, 2020, 11:33 PM
To: devel@edk2.groups.io
Cc: rfc@edk2.groups.io; Jiewen Yao; Rahul Kumar
Subject= : [edk2-devel] RFC: Adding support for ARM (RNDR etc.) to R= ngDxe

 

Currently, RngDxe in= SecurityPkg only supports Intel, with RdRand support.


This RFC is to start a discussion about adding support for ARM.


I have a Git branch with support for the optional ARMv8.5 RNDR
instruction at https://github.com/bcran/edk2/commits/bcran-rndr which
moves the existing Intel support into a Rand directory, and adds code to <= br> support RNDR in a new AArch64 directory.

There are other RNG implementations available for ARM, including
platform-specific approaches on Graviton
(https://lwn.net/Articles/790= 304/) and other platforms, so a more
thorough rearchitecting/redesign may be desired.


--
Rebecca Cran





 

IMPORTANT NOTICE: The contents of this email and an= y attachments are confidential and may also be privileged. If you are not t= he intended recipient, please notify the sender immediately and do not disc= lose the contents to any other person, use it for any purpose, or store or copy the information in any medium. T= hank you.

--_000_DB7PR08MB3097B69CE3A326D08B3403EC84CB0DB7PR08MB3097eurp_--