From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by spool.mail.gandi.net (Postfix) with ESMTPS id 006FB740039 for ; Wed, 17 Jan 2024 08:08:59 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=aZ/v5srTvd8h/zglI/0MZWbG2CnZ/FH7TJjrbX7U9NM=; c=relaxed/simple; d=groups.io; h=ARC-Seal:ARC-Message-Signature:ARC-Authentication-Results:From:To:CC:Subject:Thread-Topic:Thread-Index:Date:Message-ID:References:In-Reply-To:Accept-Language:MIME-Version:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Language:Content-Type:Content-Transfer-Encoding; s=20140610; t=1705478938; v=1; b=rh9HCGBGZ9Z3wwNDpOHiSh58qII4x2akKmfuAii3YNzpP0pL9DYrCqIQgzJHS2C06XklXDkE N2VrQRiqGV93Qx51lwpdeaWSLPniOLl4M5t/N/Y9hcKobG+2GhHx6Am0nhfNpmAsB4UHlJuwjm4 ECiyv4j5xwKrEZI18D3fSF6I= X-Received: by 127.0.0.2 with SMTP id wnIXYY7687511xtuwUfvrduD; Wed, 17 Jan 2024 00:08:58 -0800 X-Received: from mgamail.intel.com (mgamail.intel.com [192.55.52.93]) by mx.groups.io with SMTP id smtpd.web10.4635.1705478937847528325 for ; Wed, 17 Jan 2024 00:08:58 -0800 X-IronPort-AV: E=McAfee;i="6600,9927,10955"; a="397262793" X-IronPort-AV: E=Sophos;i="6.05,200,1701158400"; d="scan'208";a="397262793" X-Received: from orsmga001.jf.intel.com ([10.7.209.18]) by fmsmga102.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 17 Jan 2024 00:08:57 -0800 X-ExtLoop1: 1 X-IronPort-AV: E=McAfee;i="6600,9927,10955"; a="818440012" X-IronPort-AV: E=Sophos;i="6.05,200,1701158400"; d="scan'208";a="818440012" X-Received: from fmsmsx602.amr.corp.intel.com ([10.18.126.82]) by orsmga001.jf.intel.com with ESMTP/TLS/AES256-GCM-SHA384; 17 Jan 2024 00:08:46 -0800 X-Received: from fmsmsx610.amr.corp.intel.com (10.18.126.90) by fmsmsx602.amr.corp.intel.com (10.18.126.82) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.35; Wed, 17 Jan 2024 00:08:45 -0800 X-Received: from fmsedg601.ED.cps.intel.com (10.1.192.135) by fmsmsx610.amr.corp.intel.com (10.18.126.90) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.35 via Frontend Transport; Wed, 17 Jan 2024 00:08:45 -0800 X-Received: from NAM10-DM6-obe.outbound.protection.outlook.com (104.47.58.101) by edgegateway.intel.com (192.55.55.70) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.35; Wed, 17 Jan 2024 00:08:45 -0800 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Z7iW6G6Emo3Tr261cj0QWSKY/eOt98Zy38P+oveC7zSWmw1f1hEGkCzXpnrVSnDpQv/lvwAzkmlej7wxN7h5QqAqm9zzUWl5mQ1WaJWoGTRqyz7BiYur6N40hewgD+Q+O9rhe1ylrd+CGOThPjKZy06KYh/5/W3nQNgkmtKNmhMFJZXeoD8BglV0c1OXSPuWE/0ZLiW6pF3VpJSeSCiBnUvsTgO44sDANLlqZXht8VLUUOnvA2wbfKypkbMqUIpZDniGGJhuszUukpe8wmCBBucIWxeKPgGvicmSHFKOJ02X5hYMJF+ePKiGM5yBHP+FdJhwHd0T/fl2bKfnNdBULA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=AFejxEVHNThzW1slxx2nKVkrOM9aGMZXYfHpEECuMIc=; b=fy/G5weS8Y3NnraiWHAce0G+RSjpmXlHV00HAtzoaBQowNCvDBr7EutoY09L71KuwP2mhJuVfbblAkphHN87dMZTJ17LKWzFw7q5AK6Xhe6JUz0PkEKh2zMOVsMfE0wv+mluNB/ylPsYS4Dy+uZ44vj0OotDzsnBhIzeBcvVD+yPHT8U4eZkDMakv9Rj2sFzdoUhTA8pdW20wHnQzcfGyfFm9ArJatz0nO5r8/0S4zMyAIvNC1g5KOh7v7t6RQgLBZ9EsxxLEfBiZtCOAslQoj+vFj4WC8ZaRe+dGl4yNdLM4l8d75vYIQY7L6DIYE0hkxi45GK/K6ZNazrMpQjAhg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none X-Received: from MW4PR11MB5872.namprd11.prod.outlook.com (2603:10b6:303:169::14) by CH3PR11MB7770.namprd11.prod.outlook.com (2603:10b6:610:129::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7202.23; Wed, 17 Jan 2024 08:08:43 +0000 X-Received: from MW4PR11MB5872.namprd11.prod.outlook.com ([fe80::7d26:e1f1:1986:55d2]) by MW4PR11MB5872.namprd11.prod.outlook.com ([fe80::7d26:e1f1:1986:55d2%4]) with mapi id 15.20.7181.029; Wed, 17 Jan 2024 08:08:43 +0000 From: "Yao, Jiewen" To: "Li, Yi1" , "devel@edk2.groups.io" , Gerd Hoffmann CC: "dougflick@microsoft.com" , "Douglas Flick [MSFT]" Subject: Re: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & TCBZ4118 Thread-Topic: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & TCBZ4118 Thread-Index: AQHaSRXDYoVGweOIL0CQUYHyyFhslLDdpmYA Date: Wed, 17 Jan 2024 08:08:43 +0000 Message-ID: References: <2t6cs4djbxujhdglj5ok4y4we6jhnemgztttetunda3hv4zef5@cn4jew2nlhud> In-Reply-To: Accept-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-publictraffictype: Email x-ms-traffictypediagnostic: MW4PR11MB5872:EE_|CH3PR11MB7770:EE_ x-ms-office365-filtering-correlation-id: 9edb4c62-8380-461e-b66a-08dc173385a2 x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam-message-info: 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 x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?GKh+lC9Ozo5HUblUzin9euhOerJ+iZiV1MB2Z/G5znaLVkrLnAmeSDSDkF5V?= =?us-ascii?Q?nD2/7+We8mQl9rVyAnPgbUhDxUfajS5zm87U5GLQ3Q90UqllPaSnnOkbIZg7?= =?us-ascii?Q?50cKmS6IX/Nmt5oEjNwWskYjgugopVz+8teJrVBtji3WQEpPZFP7VYUvX6Rn?= =?us-ascii?Q?pf6n6MTjSgvU5FvJ+kO0B/t3z7dUWo3UY3oxjRdNjpw5NvYZjkJbAmgxBCdS?= =?us-ascii?Q?APt/WQaU0BTVxUysWzcdlpLAuvVNccTtI5dm56uHjcNOFwW6DmM2pmieXOZ3?= =?us-ascii?Q?v/ea/ED60OdXIJ9PbrIMFsKb9kJm8e0EIZ3EOb/TD3x4iNi7XE4zflj8bIQJ?= =?us-ascii?Q?cK3LA85xeQhjwvfjQCoMh56no3/95eowiR2fA79UKvmVcLKKD1IS8bD/Wnr+?= =?us-ascii?Q?USrDeqWJdtop7IVAdr/1rh48yfhyRzhXb1+KHmwSMbs/7sMcqddAM9t+u14E?= =?us-ascii?Q?+LVvviO5jIZuEWoruIykoYpAPMGlxQFd+Z4hq8PYJbgBvVsGaeCoGAsC+nCo?= =?us-ascii?Q?d0HQRuY4mHWXukckr4+bQiP1IsRPbY4YsWo9AZQI5ajxo4n7ipmKZNXZMJo2?= =?us-ascii?Q?N8BQ9FwkdLE/2QEsd1fF2MBsDuBMKhgyLQHAyNbK3L7rWLDuXBGw99uK4IZ2?= =?us-ascii?Q?hdcOA5AF00jGQ281akZXP6KzD7Thi+Pckz3ttwcWRb5VQxAvxobDK1NLTc3H?= =?us-ascii?Q?WdDUHMgmxpDSxuimr4vSKta3CgW5lKHj+PRZekhbMnobCtrDptF9+E+YBahv?= =?us-ascii?Q?UtWsykK+3Yao82/cB6YnRx8tx/NN15zQXMkqj9Bfw+yZ49ZTx6KYJVSkhfAw?= =?us-ascii?Q?6h+wq3p0kYDUd8yEAu16hbqGd+71zVPdHc8kJukBJkD9bXxDUWfNvXs3nH3N?= =?us-ascii?Q?CQE8PLW2rj4ueeVD80TSajNBLi90qvsXdKemWScvFokLBg+jnfw8qB51OCnj?= =?us-ascii?Q?oMZZ6DXTihVJmnO4jGQFeH5DNNwJir2LWCowhg1YaevC4Eg6E8S3HgT8AHaZ?= =?us-ascii?Q?rm0ZTUgn3xl4SM13SPcAnUtPi2zbAqHBdFCbwl1kyhADd+oiySqFtOvbeKFO?= =?us-ascii?Q?jgynS+0BhisyxUgKh8vqdOjdQCcMUKj6vjkz0GfHrLBPGVKTukWcWaRxljug?= =?us-ascii?Q?gRHuJes3NCOpSNhSyeQKqrMIG2n291S0pC8ZqL2sn1rUBu4H+Wedin7RMQe7?= =?us-ascii?Q?Ovm5DWo3WqnyE9qEo0/Bx27ZaCcBI11xZOa98D/aL6/Db3XHseHw1e0n45Nu?= =?us-ascii?Q?o8/7vNNLALSzaXkIt2ty9B6wTxRPzFyl9EgbN6tr+iG10w9P5/IAMdixsm/6?= =?us-ascii?Q?29z9sjjgYNLq4W+4Em0zo1b6SFEAKX4oo1qoOP/mw70+0BI0BmfuYg+AEvPb?= =?us-ascii?Q?vIM7o/kQDuJEAgrjtshuOUUnNFs+bVcHYDNAzyHcUhhiuuJyF17eLICe/yIr?= =?us-ascii?Q?iVAS9dFt6/yuguOsqVZt+HrHmsTJcoq3lXUfYpybP0jpODIcwx5CzPTT/BSY?= =?us-ascii?Q?jqIq2FzXfGRzOMfG7+kWObJsiBng+Vlai38FqVQwMMZ2jW6etSHoWLyhRrri?= =?us-ascii?Q?cWNGl6x8O6RhvFdbQKCOPswTix8cNIIokfkRW/VW?= MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: MW4PR11MB5872.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 9edb4c62-8380-461e-b66a-08dc173385a2 X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jan 2024 08:08:43.2431 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: 6zAAdX+aGpYIA36cTn/tEeDk+sXPB81nyZvqZSEm+/uDODP30xDCLF0r/mL82GyqCc+j+vFANJ43s0p2cx+4jg== X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH3PR11MB7770 X-OriginatorOrg: intel.com Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,jiewen.yao@intel.com List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: wDWhHQPUxAOUcxuq0GlkoxB0x7686176AA= Content-Language: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20140610 header.b=rh9HCGBG; dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=intel.com (policy=none); spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io; arc=reject ("signature check failed: fail, {[1] = sig:microsoft.com:reject}") Please check https://github.com/tianocore/edk2/pull/5264. It is merged afte= r pass CI. May I know where you see PR CI builds are broken? Thank you Yao, Jiewen > -----Original Message----- > From: Li, Yi1 > Sent: Wednesday, January 17, 2024 3:21 PM > To: devel@edk2.groups.io; Yao, Jiewen ; Gerd Hoffma= nn > > Cc: dougflick@microsoft.com; Douglas Flick [MSFT] > Subject: RE: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & TCBZ411= 8 >=20 > Hi Jiewen, >=20 > All EDK2 PR CI builds of OvmfPkg are broken due to this issue. > Maybe we didn't have enough time to wait feedback and should fix the CI i= ssue > first. >=20 > Regards, > Yi >=20 > -----Original Message----- > From: devel@edk2.groups.io On Behalf Of Yao, Jiewe= n > Sent: Tuesday, January 16, 2024 10:38 PM > To: Gerd Hoffmann ; devel@edk2.groups.io > Cc: dougflick@microsoft.com; Douglas Flick [MSFT] > Subject: Re: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & TCBZ411= 8 >=20 > Sure. Let's start from OVMF. >=20 > We have leaf enough time for feedback, but I see no comment from other pe= ople. >=20 >=20 > > -----Original Message----- > > From: Gerd Hoffmann > > Sent: Tuesday, January 16, 2024 10:35 PM > > To: devel@edk2.groups.io; Yao, Jiewen > > Cc: dougflick@microsoft.com; Douglas Flick [MSFT] > > > > Subject: Re: Re: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & > > TCBZ4118 > > > > On Tue, Jan 16, 2024 at 01:30:43PM +0000, Yao, Jiewen wrote: > > > Gerd > > > I have merged this patch set today. > > > > > > I am fine to remove TPM1.2 in OVMF because of the known security > limitation. > > > > I was thinking about the complete edk2 code base not only OVMF. > > > > But I can surely start with OVMF. Maybe it is the only platform > > affected because on physical hardware you usually know whenever TPM > > 1.2 or TPM 2.0 is present so there is no need to include both. > > > > take care, > > Gerd >=20 >=20 >=20 >=20 >=20 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#113935): https://edk2.groups.io/g/devel/message/113935 Mute This Topic: https://groups.io/mt/103675434/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-