From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by spool.mail.gandi.net (Postfix) with ESMTPS id 2F5FB740041 for ; Tue, 16 Jan 2024 14:38:13 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=4CsPVxymP2t79y4dU4x4DWgxkh7/aUJs+JbgjnPPNns=; c=relaxed/simple; d=groups.io; h=ARC-Seal:ARC-Message-Signature:ARC-Authentication-Results:From:To:CC:Subject:Thread-Topic:Thread-Index:Date:Message-ID:References:In-Reply-To:Accept-Language:MIME-Version:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Language:Content-Type:Content-Transfer-Encoding; s=20140610; t=1705415891; v=1; b=J0Uz7aoQISfwyDKu5q0qc2L5Q+3sdQ1g8biIPJsFN4z2m8WpeD+zCYq7vOQsy53DbDZY8Tgj YY92zoqrR0TBmqUGQvbqfIt85u9C/marWwwydA9WOw+ib9eHbHoM0Fr4Bt3KPd1BHQNZTt2PzA1 /2ZOG9jX/cwlRTWS6bkdyZM8= X-Received: by 127.0.0.2 with SMTP id TDULYY7687511x2CzWNrqRDF; Tue, 16 Jan 2024 06:38:11 -0800 X-Received: from mgamail.intel.com (mgamail.intel.com [192.198.163.9]) by mx.groups.io with SMTP id smtpd.web10.15997.1705415890965228467 for ; Tue, 16 Jan 2024 06:38:11 -0800 X-IronPort-AV: E=McAfee;i="6600,9927,10955"; a="6634454" X-IronPort-AV: E=Sophos;i="6.05,199,1701158400"; d="scan'208";a="6634454" X-Received: from orsmga005.jf.intel.com ([10.7.209.41]) by fmvoesa103.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 16 Jan 2024 06:38:10 -0800 X-ExtLoop1: 1 X-IronPort-AV: E=McAfee;i="6600,9927,10955"; a="957181924" X-IronPort-AV: E=Sophos;i="6.05,199,1701158400"; d="scan'208";a="957181924" X-Received: from orsmsx601.amr.corp.intel.com ([10.22.229.14]) by orsmga005.jf.intel.com with ESMTP/TLS/AES256-GCM-SHA384; 16 Jan 2024 06:38:10 -0800 X-Received: from orsmsx601.amr.corp.intel.com (10.22.229.14) by ORSMSX601.amr.corp.intel.com (10.22.229.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.35; Tue, 16 Jan 2024 06:38:09 -0800 X-Received: from ORSEDG602.ED.cps.intel.com (10.7.248.7) by orsmsx601.amr.corp.intel.com (10.22.229.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.35 via Frontend Transport; Tue, 16 Jan 2024 06:38:09 -0800 X-Received: from NAM04-DM6-obe.outbound.protection.outlook.com (104.47.73.40) by edgegateway.intel.com (134.134.137.103) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.35; Tue, 16 Jan 2024 06:38:09 -0800 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=N0yn74wYNP2YdSmzLmUIVE1SaAQ7Y78ZPcRhkrTtDUnwoXZkP/Enm0TgvzVX8jVenpPGJpNl6mpcbkTHJx039caaeAWFAhOAu0z/egRM7ErpQH/6bB7LIUWNDIWhtCbUYNtkUII94DoUwTY6SQLQ5VHRYQzSjdMSJ3/nthOwmANiXYlmNT7KaUDx+RCATThJF9Vc6mTGwAs0rBvpJi1kcvcrSdEP4g/g4zNmoPvsXmwiUlwK19FMSy8re6wuSmtX3Rw5Ow4rvPsuWY+j7YFFBbPe089DRfhoIv09park4q63udUtxdik+pOJPn4pJI63Ff4sS00hB94/0ccqLQ8gJA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=eAyCjV99DbFz5XoXeK++amB3IM4ZyfPyJpLS0jk29NM=; b=d/UMk/YrNi7km6+tuJbnSDKkJ61dV2mGD2WJs2y+xqBgULuEo/LwaQ1fyi62iquWvzfBFwMKYAo3atJniwuWiJz42oYDBioX32VAGyrPSWFQw0Qb9oOMeB1MMH6J0FE0f3cSwLhdxQ2/P5ssnUjJR3sJMImDj5M1Z0Ix59jO9JPrRLE953RhoS6IlIHFeSBPp6UQlcZixWE4KBDCF0IwD/+2Enf1ZSy5ipdbQ+MXxkGrY6HZ7QrzSxJA3Zjs5syz7TFkSJCjWCmBSxrV2jAlIO5Ca8frHeFOIa2vzm1ZLdq+GwiiqnV3YfFJwKlpkmTZ58Wehw7SE1Avgb3mge+7mw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none X-Received: from MW4PR11MB5872.namprd11.prod.outlook.com (2603:10b6:303:169::14) by MN0PR11MB6231.namprd11.prod.outlook.com (2603:10b6:208:3c4::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7159.13; Tue, 16 Jan 2024 14:38:06 +0000 X-Received: from MW4PR11MB5872.namprd11.prod.outlook.com ([fe80::7d26:e1f1:1986:55d2]) by MW4PR11MB5872.namprd11.prod.outlook.com ([fe80::7d26:e1f1:1986:55d2%4]) with mapi id 15.20.7181.029; Tue, 16 Jan 2024 14:38:05 +0000 From: "Yao, Jiewen" To: Gerd Hoffmann , "devel@edk2.groups.io" CC: "dougflick@microsoft.com" , "Douglas Flick [MSFT]" Subject: Re: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & TCBZ4118 Thread-Topic: Re: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & TCBZ4118 Thread-Index: AQHaRLpn5kqNPAWQ/EurLYl0cPys1LDcXdsAgAAYpICAABJlAIAAAG0A Date: Tue, 16 Jan 2024 14:38:05 +0000 Message-ID: References: <2t6cs4djbxujhdglj5ok4y4we6jhnemgztttetunda3hv4zef5@cn4jew2nlhud> In-Reply-To: Accept-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-publictraffictype: Email x-ms-traffictypediagnostic: MW4PR11MB5872:EE_|MN0PR11MB6231:EE_ x-ms-office365-filtering-correlation-id: d758d12a-b4f6-4381-c6e0-08dc16a0c072 x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam-message-info: 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 x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?x8RjnrriPQmL5rtykPt9Asd9poH6pGbuKGu/4j5jy1eU479zaKB5VoY0GFzB?= =?us-ascii?Q?ANIMba+AiFSzmilN/X52+3WkE0kdlh+qq6C7j/aHJGMzIV4Y7PPu5aJ3mB9M?= =?us-ascii?Q?c7mfHxT1ksCbX1VloGwaibFJ+LCZLwPF/AbN3WrqbWso+zkkzLjUIXRNk+v3?= =?us-ascii?Q?4hfynIPFY50wTA2Y2nYqc6nECUkaBv1vGDysS7FnrBvfoc+GF7SvQU8IL5F1?= =?us-ascii?Q?kdmt2vfWGXO9II0NFohKdQZ+a6eHNhKbZOw67F7XpCHeeA8P5uonVjHtmWCf?= =?us-ascii?Q?albRvXUdy+Ah99l7p+eVXDVc1iUhUlpHF3sTjLGG8JIxh+8/J82tSoEAa0wv?= =?us-ascii?Q?4WDcdzgj4znsL+o53kxlym3f/8TKtp6ZCpzaQxRYIbL20ZDz8m2a7+3QLO5v?= =?us-ascii?Q?mw2cjcpUpIuim4Avh0v6TeSh7PtCNrFg7Xasa0xzX8RvGBijP3qq4BCmbO6/?= =?us-ascii?Q?D9J81ME5egU/C2iHnNjLQKH3JAbbwQv3+xbMJHNWm9nC6PMS/mh2pbCwlxBF?= =?us-ascii?Q?srQrtSQrXfODtwpSPPzX6QJ96sB6ku9JfotrxpExAdAshb6RiuEQQG3REQtA?= =?us-ascii?Q?7zRcHl0+S5gWmvbmn3UcqbOyR7PMLI0rAVuvpMzHbADJ35QPooXdZvV61bJC?= =?us-ascii?Q?9kpg1i5Qw6mXh4nuG74mDwWc40WTHvLQJ3/4PnCeau68eZ8y1D8NbdgqrhQn?= =?us-ascii?Q?4uQ0EWfqf1wg3O38RrDydHtKaEkddBeWdC0YrxucgESbGOObhMTexy8NoXfM?= =?us-ascii?Q?wnd1/jr+dh7t+69EAC/Tf1CIhjmAZ9LSWFx7R2dMfL6s/WFZ7Mj0wCh47+Y/?= =?us-ascii?Q?+xpawGSMgKbHeXvKYLFl1HvO5wlJgJp9Rz+ib9QvoHMCiYKfMCLoxXfCXj10?= =?us-ascii?Q?gI1Kxd9BUhbRKvyEPgHxzmg3yrWfrGUJITe1eaNTq9Ow153YBwvMVoz6UirU?= =?us-ascii?Q?gqd6LqdZzjB5zk/DMF7Vy4ZJhdw+ecyy3xHRAvC8PkuWGFzdIwFwen3JMFzU?= =?us-ascii?Q?f0c0ojCvtywmWsOsdMzUy8QiSd8i5Vj5cx+kadQL4o3xGwiTM37GhkPodZtR?= =?us-ascii?Q?wyXdIt1vHKKKN3dttRzaUBLt591tAyR9HQsXNfZdosgvlWFcVKWcXcND1XBu?= =?us-ascii?Q?MExmH8oauPci/e5acUTITZLcdBkdM3HmtwqSqtyKirfeGKpxNrwFzPM0aUPi?= =?us-ascii?Q?1UlVZ7gf8OSGHV5hs1wqxec6C0E5h96UHqj62xoSpGmKjrtvMVUKEYEDCE+D?= =?us-ascii?Q?Oai4MjLd89oshEReZKJ28ICSdr+6ri88fv1/pIq6OlBIk/CcZ8sQi+/Iv1Cj?= =?us-ascii?Q?c+lK+N3c6MwpJZ5zkRe78jcXw2kg+8ggMHb8Uy46cQfegXbdBaCM+JV6g2x+?= =?us-ascii?Q?1+r/dGdD9/51czFhizMkJy/F/dF4OvN2Nlddueq/DaFeaMbj9CRnRyM53vQE?= =?us-ascii?Q?cuzXYbPrNI/jUjy5FSQuNsPzI+6u5yXvMOJvWmrgaMOToMHRo0jF68cEnwfI?= =?us-ascii?Q?qcJYOK0fuFGlZ0ht4FhrVym1I8rX84lllo6IdbXricjtsZSnyrOQ4yDY0xzy?= =?us-ascii?Q?9BHc3Qf3+9oMCg9YIxwpYrCILUKdBQvbLjMaT2a6?= MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: MW4PR11MB5872.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: d758d12a-b4f6-4381-c6e0-08dc16a0c072 X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Jan 2024 14:38:05.9063 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: 8fP6za6/M9/U/Oz0Vhd7+N7S1BIXPGxeoOITE3wJGTlye4Q1qPhThnhZmxOq7drYMqVxtp4ROQMn+ubqqnUYgw== X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN0PR11MB6231 X-OriginatorOrg: intel.com Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,jiewen.yao@intel.com List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: hY7jrc2JfDBPHPl6qreqC1Dvx7686176AA= Content-Language: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20140610 header.b=J0Uz7aoQ; dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=intel.com (policy=none); spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io; arc=reject ("signature check failed: fail, {[1] = sig:microsoft.com:reject}") Sure. Let's start from OVMF. We have leaf enough time for feedback, but I see no comment from other peop= le. > -----Original Message----- > From: Gerd Hoffmann > Sent: Tuesday, January 16, 2024 10:35 PM > To: devel@edk2.groups.io; Yao, Jiewen > Cc: dougflick@microsoft.com; Douglas Flick [MSFT] > Subject: Re: Re: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & > TCBZ4118 >=20 > On Tue, Jan 16, 2024 at 01:30:43PM +0000, Yao, Jiewen wrote: > > Gerd > > I have merged this patch set today. > > > > I am fine to remove TPM1.2 in OVMF because of the known security limita= tion. >=20 > I was thinking about the complete edk2 code base not only OVMF. >=20 > But I can surely start with OVMF. Maybe it is the only platform > affected because on physical hardware you usually know whenever > TPM 1.2 or TPM 2.0 is present so there is no need to include both. >=20 > take care, > Gerd -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#113904): https://edk2.groups.io/g/devel/message/113904 Mute This Topic: https://groups.io/mt/103675434/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-