From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mga12.intel.com (mga12.intel.com [192.55.52.136])
 by mx.groups.io with SMTP id smtpd.web10.30363.1628813208702744013
 for <devel@edk2.groups.io>;
 Thu, 12 Aug 2021 17:06:48 -0700
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@intel.onmicrosoft.com header.s=selector2-intel-onmicrosoft-com header.b=R90uF9wM;
 spf=pass (domain: intel.com, ip: 192.55.52.136, mailfrom: jiewen.yao@intel.com)
X-IronPort-AV: E=McAfee;i="6200,9189,10074"; a="195061864"
X-IronPort-AV: E=Sophos;i="5.84,317,1620716400"; 
   d="scan'208,217";a="195061864"
Received: from fmsmga001.fm.intel.com ([10.253.24.23])
  by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 12 Aug 2021 17:06:47 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.84,317,1620716400"; 
   d="scan'208,217";a="590953302"
Received: from fmsmsx605.amr.corp.intel.com ([10.18.126.85])
  by fmsmga001.fm.intel.com with ESMTP; 12 Aug 2021 17:06:47 -0700
Received: from fmsmsx610.amr.corp.intel.com (10.18.126.90) by
 fmsmsx605.amr.corp.intel.com (10.18.126.85) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2242.4; Thu, 12 Aug 2021 17:06:47 -0700
Received: from fmsmsx602.amr.corp.intel.com (10.18.126.82) by
 fmsmsx610.amr.corp.intel.com (10.18.126.90) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2242.10; Thu, 12 Aug 2021 17:06:46 -0700
Received: from fmsedg601.ED.cps.intel.com (10.1.192.135) by
 fmsmsx602.amr.corp.intel.com (10.18.126.82) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2242.10 via Frontend Transport; Thu, 12 Aug 2021 17:06:46 -0700
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (104.47.56.171)
 by edgegateway.intel.com (192.55.55.70) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.1.2242.10; Thu, 12 Aug 2021 17:06:44 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 b=eG7M5h13kgG00fPmTdCwZREAyN39MLd7EkoGVbslJ+qm1Kqg/EAmH2EQllwEsmSvr0iiVoydvhk5qw4jVaqziMwD9vWXxkkPm2gO8QmWeAdsbzcF6anldW9heVZUdYUD9lJtJpgYGdk51URFLf+o0ezXHVofAXxU/GbHkyfUA3dl3gV73g+4nt2CRYbRwYmevLq4uUJtVA6TFo5nUb/4QeBO1D31wG2mnX1iN6nq56r8atH7xy+fCGZuwoXnTfJzQt5bC7WhW6M0DQE5Rr6UIZocJKgPDEz7Y5fkrU6BCo4WLezmVheNcZtRKici+73GSV9mlOI6StPH7WJn2Numtg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector9901;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=L/ohbia0Krm6RQo16B6OzRE+qlPOofpLEmgvxH2kz9A=;
 b=M3MCXmKQLQvbp/qzQCkFHCsxTUyUzoybcDV87iDwU2Cb/VO/fMrAXiqooDOhathnkV17K9rP1oaEeVHk1CRj9dmS0486OVo0RFAL1KJyupaQc1pE74uL35eJaentHmW5dIuD2uF+j64OkyEphYK4PAx2hXBf9Nd8E/7OeztkyJogfxr8npl+pMPGpJEWDpDzT39MYdoBuJOoc3PMwZMXL6ajCccCNkINHRsKooTEWX2cA1CPzrIwyC6GUPK0pgt5Ui/2jV5sDpNJigEPNjVYHhbXQUvnuaCP7G5RJBNHBSJJMXkpdeAokkBA2fPbKpMkbNDXny+9pcLrjFp/Iorm3Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com;
 dkim=pass header.d=intel.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=intel.onmicrosoft.com;
 s=selector2-intel-onmicrosoft-com;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=L/ohbia0Krm6RQo16B6OzRE+qlPOofpLEmgvxH2kz9A=;
 b=R90uF9wMYnB2ApBj06jG5+rHYRj8e3uGWveJilKvGaopXDRKBpoEKDu7fzCzOrkYH4R8zXDFm3Jjww1C+yyLvO7reZbXZfCEi0tN8TBQpQPEr3us5Ef1JaZcbxhNa0G5S5r7rdjVL8d7eWxud8DHR9Az1tC2p8ZWVrUTpm6SYXI=
Received: from PH0PR11MB4885.namprd11.prod.outlook.com (2603:10b6:510:35::14)
 by PH0PR11MB5158.namprd11.prod.outlook.com (2603:10b6:510:3b::13) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4415.17; Fri, 13 Aug
 2021 00:06:43 +0000
Received: from PH0PR11MB4885.namprd11.prod.outlook.com
 ([fe80::e97b:e466:268f:fb79]) by PH0PR11MB4885.namprd11.prod.outlook.com
 ([fe80::e97b:e466:268f:fb79%5]) with mapi id 15.20.4415.019; Fri, 13 Aug 2021
 00:06:43 +0000
From: "Yao, Jiewen" <jiewen.yao@intel.com>
To: Bret Barkelew <Bret.Barkelew@microsoft.com>, "devel@edk2.groups.io"
	<devel@edk2.groups.io>, "bret@corthon.com" <bret@corthon.com>
CC: "Wang, Jian J" <jian.j.wang@intel.com>, "Zhang, Qi1"
	<qi1.zhang@intel.com>, "Kumar, Rahul1" <rahul1.kumar@intel.com>
Subject: Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib
Thread-Topic: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Add
 Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib
Thread-Index: AQHXiU5SWWBm+fdAj0q1QkWTlnediatb0LjCgAe8VzuACzjTU4ABdOMpgABcFrA=
Date: Fri, 13 Aug 2021 00:06:42 +0000
Message-ID: <PH0PR11MB4885021AEEA29E6C1F2ADEAF8CFA9@PH0PR11MB4885.namprd11.prod.outlook.com>
References: <20210730175517.2445-1-brbarkel@microsoft.com>
 <1696A3E2DE5C4DCB.1941@groups.io>
 <MW4PR21MB1907340E8BF27B46FF54970EEFF19@MW4PR21MB1907.namprd21.prod.outlook.com>
 <169A57BB10BEC566.13770@groups.io>
 <MW4PR21MB19077710B3F5CEE8C0435F25EFF99@MW4PR21MB1907.namprd21.prod.outlook.com>
In-Reply-To: <MW4PR21MB19077710B3F5CEE8C0435F25EFF99@MW4PR21MB1907.namprd21.prod.outlook.com>
Accept-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=True;
 MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
 MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2021-07-30T18:07:39.2266129Z;
 MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0;
 MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard
dlp-version: 11.5.1.3
dlp-product: dlpe-windows
dlp-reaction: no-action
authentication-results: microsoft.com; dkim=none (message not signed)
 header.d=none;microsoft.com; dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 9ce7d2cb-4e6d-4a84-3108-08d95dee3b6c
x-ms-traffictypediagnostic: PH0PR11MB5158:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <PH0PR11MB5158BF84F470CAF38F6791DF8CFA9@PH0PR11MB5158.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 2oJJRN18+wqM8W9C/kc9vl3WBfQbIHzArO5JciNaYWfJt3gUTvtBtR3M8+2u6aHUT2mfy5+NMcH2D50emeg4trfdFqIXsVGiWs6rvA0/3cdMQzFkMFmrv4qo8HiCAWKUFUGdP1SK9AmhpmdIvnuTGxMoybqvYMykzYIHKY5Qf8cxQ83fBTmyWprUKDk6ft4YWyzETxrNv4Ra4SRUAyu3QHn6c0ABDdEp1uYLRYBKretdCG3Tr3bT5dGW+SR5KC2SQBClwOEeduogcLz6LDW5y5x5VAlMDmDdT3Lai7VxyVmYyipvV3KCvnJZglTzACiT4y1VcAwJB8lufxZ5nqJQy7bpgLyM8a6BMua4kC6UTqsXD3LN0jIzEicFeVfdNgbKVZq5YXgTY5qrTlEMWHB01wNBq8lt64rpNbBbRzbvtnti4IAvtkkklAtJTI3SJ8RNWSIRB8CYUCSC69l/yRl+FQYCoRQ5X/am/Psyld/hMcnSfv5pRQvL4ze6Uo47SauvDS3nwb9TlGfynA3U0MGE5uyE+p3JIiZDmfmf86P/ybYwmRdSUFWowwu8kF3vAxe+nDUJDYc28/vRviLC12nLIq12F+zw4iJAxWwaTJ0CCyhx6kLXbRKrlzmN7kZ1OymsAs/pMiW5/IdfN/ul/qzWSmakGfQLTUH7IrfTJylSV0qJh1z7LHp64e34DwCYWBkMydG8dooaw5SpJNeJFBbz8sQLaJ8hLxYwH0BB3hlgqAdx4REP46axMLV/B9HaalSR55zz56b9AksGSFPP5SMfuESfJGOcMatnfY0KU6bRqW/1iYHivEXrP+ZGNvTzadM0/CPrwGzoKWGvwr7knLiDBw==
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PH0PR11MB4885.namprd11.prod.outlook.com;PTR:;CAT:NONE;SFS:(6029001)(4636009)(396003)(136003)(366004)(376002)(39860400002)(346002)(15650500001)(2906002)(38070700005)(122000001)(186003)(7696005)(38100700002)(53546011)(26005)(4326008)(8936002)(45080400002)(8676002)(30864003)(478600001)(6506007)(33656002)(83380400001)(86362001)(5660300002)(966005)(66946007)(52536014)(55016002)(76236003)(54906003)(110136005)(107886003)(19627235002)(316002)(166002)(76116006)(66556008)(66476007)(9686003)(64756008)(66446008)(71200400001);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?hwaO9coyMgsucEH1rw6E55AQXxKY9kqNxo2LnLyMsUFq/qBaJgU1NgP/aEWO?=
 =?us-ascii?Q?kYozrgmXvsRsyisepwq5pLDFu0arRbFTKmIylJYp/STHsFcek/8B9hcMtwht?=
 =?us-ascii?Q?wmDjSHSQ+wWjx8OHX3JJTKEjXOF9HytG0AmxhVE7s0M1L+TkhWHEfYBZN5+h?=
 =?us-ascii?Q?CwiwYKWkIXjoJMJT5LNF9VpfY5NRdaRNs4+8T/jQCxPCVSOY05TCaNdhH4KZ?=
 =?us-ascii?Q?uMNRPO2Llfyu7asZFO4KWFMTZ0u3bQ+PD7l9rgVanzsozQ9/R7yXOQlSY9U0?=
 =?us-ascii?Q?gBe/h+5vh5xtwIZPh8HdZEl/pEHPvdAUqkC4YZu3rxUuhvf/k11axuBTpvLw?=
 =?us-ascii?Q?Z87WhAx58qqAZ5NpQ8MX6nbJYM9JQjKd/K9AxOZv2nPmEeZ+M2RhBXCw6nOM?=
 =?us-ascii?Q?v1NPUC4YoaM7mS/C7op2z7/z1uFQfnUlnzrfr6WMtWiiyr8tU793bEaYlPr8?=
 =?us-ascii?Q?8OANhI0yftrQILpWmbbXoPyuc08J8qtdm8jVPN49Oq4iO7HmJqyLGWftWJ7y?=
 =?us-ascii?Q?ENOQjAWg470LgoFFaqTtY2Xeua5PvSaEOmrd5ew1+63H1w2ob3lQ8zxEAYKb?=
 =?us-ascii?Q?BDLHokt9C+WE6lpu3OH8cd90AEd5vpetu37MCnj/qEw9m7dYMWYeFnFPQbQh?=
 =?us-ascii?Q?VhSi0q0TDARAeIZzZdpxXzJmwfeksE1/IGWuusgwq4nHgobqfVeJ6SdRmAkE?=
 =?us-ascii?Q?q5I98SOZ9pniAM97mgv+BzwWlA3ECKYv8edlZ8kKBmQ7T72MamX+h/c87DuS?=
 =?us-ascii?Q?dzLz0FTR+eBPUTUoMwG8mx/RT6TwQS7jB+OFZCnXbP+7eTet+qWzVocWQYe5?=
 =?us-ascii?Q?i9aeioIOKRYgGSZw24Z2h8FCG/PdUFZ9UZJah7iRE2J1EQ7Ctng7MeCUcydD?=
 =?us-ascii?Q?c646ldIuJd/hrPQ6aXjIqOwq1APlub6xdeoDUNPW4Q8JGRe8wtqJzOiwVdIU?=
 =?us-ascii?Q?B34LLQfffnDOCImDEsiWkjNBh5+yTIDbgE+aVwec78tsZo/VYS4XQxvNhoYV?=
 =?us-ascii?Q?aDSP50ztc9mynMzdMR91MO2L+J/896Cgn+cZ1OrZEgt79xXehZioZWX3ftMo?=
 =?us-ascii?Q?Lb951hInzairHNtVifK56DNDEXy9U2qbot8G+4oocFXh4Rat/PcNRtnGyNdW?=
 =?us-ascii?Q?ac1r6p51ORL7/Yfsv54jsZP0S1PgZMPkfJif8r+enHdaIMkDd6ny2zqYNeSN?=
 =?us-ascii?Q?9JP0KMoYk//nX/OQlDEzHXh1v5GPqbkwsiWc25rjPgKUEr8k2Vie28OyblAP?=
 =?us-ascii?Q?W8nXrJNb9PWXbf2c024Jyy6E1Sh2Gu8DFJKf+44UWFBo3kcnlBEwn5Z7X4KT?=
 =?us-ascii?Q?eklBCMmcVM/lcCRwZFn6t5hZ?=
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH0PR11MB4885.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9ce7d2cb-4e6d-4a84-3108-08d95dee3b6c
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Aug 2021 00:06:42.9355
 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Nt24bh7mkrqEixyL6G9Ynp71BlRhPOgBbNSILFDy5vYkMcsE4CY+jltsgndvhmTzxQ/XKjybXEVMEfBnpsOWeg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR11MB5158
Return-Path: jiewen.yao@intel.com
X-OriginatorOrg: intel.com
Content-Language: en-US
Content-Type: multipart/alternative;
	boundary="_000_PH0PR11MB4885021AEEA29E6C1F2ADEAF8CFA9PH0PR11MB4885namp_"

--_000_PH0PR11MB4885021AEEA29E6C1F2ADEAF8CFA9PH0PR11MB4885namp_
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

I don't know the answer about ECC or PatchChecker.
I  just know we need pass CI to merge the patch.

Thank you
Yao Jiewen

From: Bret Barkelew <Bret.Barkelew@microsoft.com>
Sent: Friday, August 13, 2021 1:52 AM
To: devel@edk2.groups.io; bret@corthon.com
Cc: Yao, Jiewen <jiewen.yao@intel.com>; Wang, Jian J <jian.j.wang@intel.com=
>; Zhang, Qi1 <qi1.zhang@intel.com>; Kumar, Rahul1 <rahul1.kumar@intel.com>
Subject: RE: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib

Thoughts?

- Bret

________________________________
From: devel@edk2.groups.io<mailto:devel@edk2.groups.io> <devel@edk2.groups.=
io<mailto:devel@edk2.groups.io>> on behalf of Bret Barkelew via groups.io <=
bret.barkelew=3Dmicrosoft.com@groups.io<mailto:bret.barkelew=3Dmicrosoft.co=
m@groups.io>>
Sent: Wednesday, August 11, 2021 12:37:52 PM
To: devel@edk2.groups.io<mailto:devel@edk2.groups.io> <devel@edk2.groups.io=
<mailto:devel@edk2.groups.io>>; bret@corthon.com<mailto:bret@corthon.com> <=
bret@corthon.com<mailto:bret@corthon.com>>
Cc: Yao, Jiewen <jiewen.yao@intel.com<mailto:jiewen.yao@intel.com>>; Jian J=
 Wang <jian.j.wang@intel.com<mailto:jian.j.wang@intel.com>>; Qi Zhang <qi1.=
zhang@intel.com<mailto:qi1.zhang@intel.com>>; Rahul Kumar <rahul1.kumar@int=
el.com<mailto:rahul1.kumar@intel.com>>
Subject: Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib


Thoughts?



- Bret



________________________________
From: devel@edk2.groups.io<mailto:devel@edk2.groups.io> <devel@edk2.groups.=
io<mailto:devel@edk2.groups.io>> on behalf of Bret Barkelew via groups.io <=
bret.barkelew=3Dmicrosoft.com@groups.io<mailto:bret.barkelew=3Dmicrosoft.co=
m@groups.io>>
Sent: Wednesday, August 4, 2021 9:32:32 AM
To: devel@edk2.groups.io<mailto:devel@edk2.groups.io> <devel@edk2.groups.io=
<mailto:devel@edk2.groups.io>>; bret@corthon.com<mailto:bret@corthon.com> <=
bret@corthon.com<mailto:bret@corthon.com>>
Cc: Yao, Jiewen <jiewen.yao@intel.com<mailto:jiewen.yao@intel.com>>; Jian J=
 Wang <jian.j.wang@intel.com<mailto:jian.j.wang@intel.com>>; Qi Zhang <qi1.=
zhang@intel.com<mailto:qi1.zhang@intel.com>>; Rahul Kumar <rahul1.kumar@int=
el.com<mailto:rahul1.kumar@intel.com>>
Subject: Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib


Poking this one.



  1.  It's a easy review with small, obvious code change.
  2.  I need some answers on "when is it okay to violate ECC/PatchCheck, if=
 the new code matches the style of the existing code. Should I endeavor to =
pass the PatchCheck and ECCCheck with this patch only, and leave it in conf=
lict with the rest of the file?



Thanks!



- Bret



From: Bret Barkelew via groups.io<mailto:bret.barkelew=3Dmicrosoft.com@grou=
ps.io>
Sent: Friday, July 30, 2021 11:08 AM
To: devel@edk2.groups.io<mailto:devel@edk2.groups.io>; bret@corthon.com<mai=
lto:bret@corthon.com>
Cc: Yao, Jiewen<mailto:jiewen.yao@intel.com>; Jian J Wang<mailto:jian.j.wan=
g@intel.com>; Qi Zhang<mailto:qi1.zhang@intel.com>; Rahul Kumar<mailto:rahu=
l1.kumar@intel.com>
Subject: Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib



Note, even though this keeps with the style of the rest of the file, it bre=
aks ECC:

SecurityPkg/Library: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib by co=
rthon * Pull Request #1848 * tianocore/edk2 (github.com)<https://nam06.safe=
links.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgithub.com%2Ftianocore%2F=
edk2%2Fpull%2F1848&data=3D04%7C01%7Cbret.barkelew%40microsoft.com%7Cba78a3e=
7f9c74b56180308d95cff85ac%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C6376=
43074816403966%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIi=
LCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=3DW6%2FZUYQmTc5I6ks8woDCoBw%2Ft=
TmYrNn79jtLB8fEeYE%3D&reserved=3D0>



PROGRESS - --Running SecurityPkg: EccCheck Test NO-TARGET --

ERROR -

ERROR -

ERROR - EFI coding style error

ERROR - *Error code: 8001

ERROR - *Only capital letters are allowed to be used for #define declaratio=
ns

ERROR - *file: //home/vsts/work/1/s/SecurityPkg/Library/Tpm2CommandLib/Tpm2=
NVStorage.c

ERROR - *Line number: 27

ERROR - *The #define name [RC_NV_UndefineSpaceSpecial_nvIndex] does no



Thoughts?



- Bret



From: Bret Barkelew via groups.io<mailto:bret=3Dcorthon.com@groups.io>
Sent: Friday, July 30, 2021 10:55 AM
To: devel@edk2.groups.io<mailto:devel@edk2.groups.io>
Cc: Yao, Jiewen<mailto:jiewen.yao@intel.com>; Jian J Wang<mailto:jian.j.wan=
g@intel.com>; Qi Zhang<mailto:qi1.zhang@intel.com>; Rahul Kumar<mailto:rahu=
l1.kumar@intel.com>
Subject: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Add Tp=
m2NvUndefineSpaceSpecial to Tpm2CommandLib



Used to provision and maintain certain HW-defined NV spaces.

REF: https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fbu=
gzilla.tianocore.org%2Fshow_bug.cgi%3Fid%3D2994&amp;data=3D04%7C01%7CBret.B=
arkelew%40microsoft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141=
af91ab2d7cd011db47%7C1%7C0%7C637632645397602953%7CUnknown%7CTWFpbGZsb3d8eyJ=
WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;=
sdata=3Ds96M3RvxMOY831Vfr1nt%2Fz1h3cyb6jU9eFzvjKO7Dtc%3D&amp;reserved=3D0<h=
ttps://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fbugzilla=
.tianocore.org%2Fshow_bug.cgi%3Fid%3D2994&data=3D04%7C01%7Cbret.barkelew%40=
microsoft.com%7Cba78a3e7f9c74b56180308d95cff85ac%7C72f988bf86f141af91ab2d7c=
d011db47%7C1%7C0%7C637643074816413922%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wL=
jAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=3DAaKL%2=
BDQTryN6x9nNVyvMDuV%2B04EkYV%2BVYuXC2aVw4n4%3D&reserved=3D0>

Signed-off-by: Bret Barkelew <bret.barkelew@microsoft.com<mailto:bret.barke=
lew@microsoft.com>>
Cc: Jiewen Yao <jiewen.yao@intel.com<mailto:jiewen.yao@intel.com>>
Cc: Jian J Wang <jian.j.wang@intel.com<mailto:jian.j.wang@intel.com>>
Cc: Qi Zhang <qi1.zhang@intel.com<mailto:qi1.zhang@intel.com>>
Cc: Rahul Kumar <rahul1.kumar@intel.com<mailto:rahul1.kumar@intel.com>>
---
 SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c | 122 +++++++++++++++++=
+++
 SecurityPkg/Include/Library/Tpm2CommandLib.h       |  22 ++++
 2 files changed, 144 insertions(+)

diff --git a/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c b/SecurityP=
kg/Library/Tpm2CommandLib/Tpm2NVStorage.c
index 87572de20164..7931fade9190 100644
--- a/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c
+++ b/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c
@@ -24,6 +24,8 @@ SPDX-License-Identifier: BSD-2-Clause-Patent
 #define RC_NV_UndefineSpace_authHandle      (TPM_RC_H + TPM_RC_1)

 #define RC_NV_UndefineSpace_nvIndex         (TPM_RC_H + TPM_RC_2)



+#define RC_NV_UndefineSpaceSpecial_nvIndex  (TPM_RC_H + TPM_RC_1)

+

 #define RC_NV_Read_authHandle               (TPM_RC_H + TPM_RC_1)

 #define RC_NV_Read_nvIndex                  (TPM_RC_H + TPM_RC_2)

 #define RC_NV_Read_size                     (TPM_RC_P + TPM_RC_1)

@@ -74,6 +76,20 @@ typedef struct {
   TPMS_AUTH_RESPONSE         AuthSession;

 } TPM2_NV_UNDEFINESPACE_RESPONSE;



+typedef struct {

+  TPM2_COMMAND_HEADER       Header;

+  TPMI_RH_NV_INDEX          NvIndex;

+  TPMI_RH_PLATFORM          Platform;

+  UINT32                    AuthSessionSize;

+  TPMS_AUTH_COMMAND         AuthSession;

+} TPM2_NV_UNDEFINESPACESPECIAL_COMMAND;

+

+typedef struct {

+  TPM2_RESPONSE_HEADER       Header;

+  UINT32                     AuthSessionSize;

+  TPMS_AUTH_RESPONSE         AuthSession;

+} TPM2_NV_UNDEFINESPACESPECIAL_RESPONSE;

+

 typedef struct {

   TPM2_COMMAND_HEADER       Header;

   TPMI_RH_NV_AUTH           AuthHandle;

@@ -506,6 +522,112 @@ Done:
   return Status;

 }



+/**

+  This command removes an index from the TPM.

+

+  @param[in]  NvIndex             The NV Index.

+  @param[in]  IndexAuthSession    Auth session context for the Index auth/=
policy

+  @param[in]  PlatAuthSession     Auth session context for the Platform au=
th/policy

+

+  @retval EFI_SUCCESS             Operation completed successfully.

+  @retval EFI_NOT_FOUND           The command was returned successfully, b=
ut NvIndex is not found.

+  @retval EFI_UNSUPPORTED         Selected NvIndex does not support deleti=
on through this call.

+  @retval EFI_SECURITY_VIOLATION  Deletion is not authorized by current po=
licy session.

+  @retval EFI_INVALID_PARAMETER   The command was unsuccessful.

+  @retval EFI_DEVICE_ERROR        The command was unsuccessful.

+**/

+EFI_STATUS

+EFIAPI

+Tpm2NvUndefineSpaceSpecial (

+  IN      TPMI_RH_NV_INDEX          NvIndex,

+  IN      TPMS_AUTH_COMMAND         *IndexAuthSession OPTIONAL,

+  IN      TPMS_AUTH_COMMAND         *PlatAuthSession OPTIONAL

+  )

+{

+  EFI_STATUS                              Status;

+  TPM2_NV_UNDEFINESPACESPECIAL_COMMAND    SendBuffer;

+  TPM2_NV_UNDEFINESPACESPECIAL_RESPONSE   RecvBuffer;

+  UINT32                                  SendBufferSize;

+  UINT32                                  RecvBufferSize;

+  UINT8                                   *Buffer;

+  UINT32                                  IndexAuthSize, PlatAuthSize;

+  TPM_RC                                  ResponseCode;

+

+  //

+  // Construct command

+  //

+  SendBuffer.Header.tag =3D SwapBytes16(TPM_ST_SESSIONS);

+  SendBuffer.Header.commandCode =3D SwapBytes32(TPM_CC_NV_UndefineSpaceSpe=
cial);

+

+  SendBuffer.NvIndex =3D SwapBytes32 (NvIndex);

+  SendBuffer.Platform =3D SwapBytes32 (TPM_RH_PLATFORM);

+

+  //

+  // Marshall the Auth Sessions for the two handles.

+  Buffer =3D (UINT8 *)&SendBuffer.AuthSession;

+  // IndexAuthSession

+  IndexAuthSize =3D CopyAuthSessionCommand (IndexAuthSession, Buffer);

+  Buffer +=3D IndexAuthSize;

+  // PlatAuthSession

+  PlatAuthSize =3D CopyAuthSessionCommand (PlatAuthSession, Buffer);

+  Buffer +=3D PlatAuthSize;

+  // AuthSessionSize

+  SendBuffer.AuthSessionSize =3D SwapBytes32(IndexAuthSize + PlatAuthSize)=
;

+

+  // Update total command size.

+  SendBufferSize =3D (UINT32)(Buffer - (UINT8 *)&SendBuffer);

+  SendBuffer.Header.paramSize =3D SwapBytes32 (SendBufferSize);

+

+  //

+  // send Tpm command

+  //

+  RecvBufferSize =3D sizeof (RecvBuffer);

+  Status =3D Tpm2SubmitCommand (SendBufferSize, (UINT8 *)&SendBuffer, &Rec=
vBufferSize, (UINT8 *)&RecvBuffer);

+  if (EFI_ERROR (Status)) {

+    goto Done;

+  }

+

+  if (RecvBufferSize < sizeof (TPM2_RESPONSE_HEADER)) {

+    DEBUG ((EFI_D_ERROR, "Tpm2NvUndefineSpaceSpecial - RecvBufferSize Erro=
r - %x\n", RecvBufferSize));

+    Status =3D EFI_DEVICE_ERROR;

+    goto Done;

+  }

+

+  ResponseCode =3D SwapBytes32(RecvBuffer.Header.responseCode);

+  if (ResponseCode !=3D TPM_RC_SUCCESS) {

+    DEBUG ((EFI_D_ERROR, "Tpm2NvUndefineSpaceSpecial - responseCode - %x\n=
", SwapBytes32(RecvBuffer.Header.responseCode)));

+  }

+  switch (ResponseCode) {

+  case TPM_RC_SUCCESS:

+    // return data

+    break;

+  case TPM_RC_ATTRIBUTES:

+  case TPM_RC_ATTRIBUTES + RC_NV_UndefineSpaceSpecial_nvIndex:

+    Status =3D EFI_UNSUPPORTED;

+    break;

+  case TPM_RC_NV_AUTHORIZATION:

+    Status =3D EFI_SECURITY_VIOLATION;

+    break;

+  case TPM_RC_HANDLE + RC_NV_UndefineSpaceSpecial_nvIndex: // TPM_RC_NV_DE=
FINED:

+    Status =3D EFI_NOT_FOUND;

+    break;

+  case TPM_RC_VALUE + RC_NV_UndefineSpace_nvIndex:

+    Status =3D EFI_INVALID_PARAMETER;

+    break;

+  default:

+    Status =3D EFI_DEVICE_ERROR;

+    break;

+  }

+

+Done:

+  //

+  // Clear AuthSession Content

+  //

+  ZeroMem (&SendBuffer, sizeof(SendBuffer));

+  ZeroMem (&RecvBuffer, sizeof(RecvBuffer));

+  return Status;

+} // Tpm2NvUndefineSpaceSpecial()

+

 /**

   This command reads a value from an area in NV memory previously defined =
by TPM2_NV_DefineSpace().



diff --git a/SecurityPkg/Include/Library/Tpm2CommandLib.h b/SecurityPkg/Inc=
lude/Library/Tpm2CommandLib.h
index ee8eb622951c..8d7b4998d98d 100644
--- a/SecurityPkg/Include/Library/Tpm2CommandLib.h
+++ b/SecurityPkg/Include/Library/Tpm2CommandLib.h
@@ -364,6 +364,28 @@ Tpm2NvUndefineSpace (
   IN      TPMS_AUTH_COMMAND         *AuthSession OPTIONAL

   );



+/**

+  This command removes an index from the TPM.

+

+  @param[in]  NvIndex             The NV Index.

+  @param[in]  IndexAuthSession    Auth session context for the Index auth/=
policy

+  @param[in]  PlatAuthSession     Auth session context for the Platform au=
th/policy

+

+  @retval EFI_SUCCESS             Operation completed successfully.

+  @retval EFI_NOT_FOUND           The command was returned successfully, b=
ut NvIndex is not found.

+  @retval EFI_UNSUPPORTED         Selected NvIndex does not support deleti=
on through this call.

+  @retval EFI_SECURITY_VIOLATION  Deletion is not authorized by current po=
licy session.

+  @retval EFI_INVALID_PARAMETER   The command was unsuccessful.

+  @retval EFI_DEVICE_ERROR        The command was unsuccessful.

+**/

+EFI_STATUS

+EFIAPI

+Tpm2NvUndefineSpaceSpecial (

+  IN      TPMI_RH_NV_INDEX          NvIndex,

+  IN      TPMS_AUTH_COMMAND         *IndexAuthSession OPTIONAL,

+  IN      TPMS_AUTH_COMMAND         *PlatAuthSession OPTIONAL

+  );

+

 /**

   This command reads a value from an area in NV memory previously defined =
by TPM2_NV_DefineSpace().



--
2.31.1.windows.1



-=3D-=3D-=3D-=3D-=3D-=3D
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#78450): https://nam06.safelinks.protection.outlook.com/=
?url=3Dhttps%3A%2F%2Fedk2.groups.io%2Fg%2Fdevel%2Fmessage%2F78450&amp;data=
=3D04%7C01%7CBret.Barkelew%40microsoft.com%7Cb7ae3c62047c48fc85d908d953833c=
a0%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637632645397612922%7CUnknow=
n%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI=
6Mn0%3D%7C1000&amp;sdata=3DCWxLwgp73z2XQEa%2FN77gsCwRF73xha0RZCKwcFTlrRE%3D=
&amp;reserved=3D0<https://nam06.safelinks.protection.outlook.com/?url=3Dhtt=
ps%3A%2F%2Fedk2.groups.io%2Fg%2Fdevel%2Fmessage%2F78450&data=3D04%7C01%7Cbr=
et.barkelew%40microsoft.com%7Cba78a3e7f9c74b56180308d95cff85ac%7C72f988bf86=
f141af91ab2d7cd011db47%7C1%7C0%7C637643074816413922%7CUnknown%7CTWFpbGZsb3d=
8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&=
sdata=3DK0A5SdqSU5yx3b3r8tm7h6aCPrN14q8IaFUnACvj%2BJM%3D&reserved=3D0>
Mute This Topic: https://nam06.safelinks.protection.outlook.com/?url=3Dhttp=
s%3A%2F%2Fgroups.io%2Fmt%2F84555713%2F1822150&amp;data=3D04%7C01%7CBret.Bar=
kelew%40microsoft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141af=
91ab2d7cd011db47%7C1%7C0%7C637632645397612922%7CUnknown%7CTWFpbGZsb3d8eyJWI=
joiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sd=
ata=3DIWQ6E4yP0ECt3oYLYQa%2BnddGfcQEDMgfASlcxRuda%2BQ%3D&amp;reserved=3D0<h=
ttps://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgroups.i=
o%2Fmt%2F84555713%2F1822150&data=3D04%7C01%7Cbret.barkelew%40microsoft.com%=
7Cba78a3e7f9c74b56180308d95cff85ac%7C72f988bf86f141af91ab2d7cd011db47%7C1%7=
C0%7C637643074816423877%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjo=
iV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=3Dv1MYXgPFzvCFw%2FQuWk=
awIHp4Qptang3Apwu%2BUWh9pYI%3D&reserved=3D0>
Group Owner: devel+owner@edk2.groups.io<mailto:devel+owner@edk2.groups.io>
Unsubscribe: https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A=
%2F%2Fedk2.groups.io%2Fg%2Fdevel%2Funsub&amp;data=3D04%7C01%7CBret.Barkelew=
%40microsoft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141af91ab2=
d7cd011db47%7C1%7C0%7C637632645397612922%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC=
4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=
=3Dqor4Y5FZEH8ch0AEmWDbe97FIQk4V1qx7IURcTHzjAU%3D&amp;reserved=3D0<https://=
nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.groups.io%=
2Fg%2Fdevel%2Funsub&data=3D04%7C01%7Cbret.barkelew%40microsoft.com%7Cba78a3=
e7f9c74b56180308d95cff85ac%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637=
643074816423877%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzI=
iLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=3Dz1FcgbeOOFrnnzd7U5bgjlwsdc1i=
8msijhK3g1qtw38%3D&reserved=3D0> [brbarkel@microsoft.com]
-=3D-=3D-=3D-=3D-=3D-=3D






--_000_PH0PR11MB4885021AEEA29E6C1F2ADEAF8CFA9PH0PR11MB4885namp_
Content-Type: text/html; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-micr=
osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http:=
//www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dus-ascii"=
>
<meta name=3D"Generator" content=3D"Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
	{font-family:"Cambria Math";
	panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
	{font-family:DengXian;
	panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
	{font-family:"\@DengXian";
	panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
	{font-family:Consolas;
	panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:blue;
	text-decoration:underline;}
p.xmsonormal, li.xmsonormal, div.xmsonormal
	{mso-style-name:x_msonormal;
	margin:0in;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
p.xxmsonormal, li.xxmsonormal, div.xxmsonormal
	{mso-style-name:x_x_msonormal;
	margin:0in;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
p.xxmsolistparagraph, li.xxmsolistparagraph, div.xxmsolistparagraph
	{mso-style-name:x_x_msolistparagraph;
	margin-top:0in;
	margin-right:0in;
	margin-bottom:0in;
	margin-left:.5in;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
span.xxpl-plain
	{mso-style-name:x_x_pl-plain;}
span.EmailStyle25
	{mso-style-type:personal-reply;
	font-family:"Calibri",sans-serif;
	color:windowtext;}
.MsoChpDefault
	{mso-style-type:export-only;
	font-size:10.0pt;}
@page WordSection1
	{size:8.5in 11.0in;
	margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
	{page:WordSection1;}
/* List Definitions */
@list l0
	{mso-list-id:1074933252;
	mso-list-template-ids:939565850;}
ol
	{margin-bottom:0in;}
ul
	{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=3D"EN-US" link=3D"blue" vlink=3D"#954F72" style=3D"word-wrap:bre=
ak-word">
<div class=3D"WordSection1">
<p class=3D"MsoNormal">I don&#8217;t know the answer about ECC or PatchChec=
ker.<o:p></o:p></p>
<p class=3D"MsoNormal">I &nbsp;just know we need pass CI to merge the patch=
.<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal">Thank you<o:p></o:p></p>
<p class=3D"MsoNormal">Yao Jiewen<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<div style=3D"border:none;border-left:solid blue 1.5pt;padding:0in 0in 0in =
4.0pt">
<div>
<div style=3D"border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in =
0in 0in">
<p class=3D"MsoNormal"><b>From:</b> Bret Barkelew &lt;Bret.Barkelew@microso=
ft.com&gt; <br>
<b>Sent:</b> Friday, August 13, 2021 1:52 AM<br>
<b>To:</b> devel@edk2.groups.io; bret@corthon.com<br>
<b>Cc:</b> Yao, Jiewen &lt;jiewen.yao@intel.com&gt;; Wang, Jian J &lt;jian.=
j.wang@intel.com&gt;; Zhang, Qi1 &lt;qi1.zhang@intel.com&gt;; Kumar, Rahul1=
 &lt;rahul1.kumar@intel.com&gt;<br>
<b>Subject:</b> RE: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Libr=
ary: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib<o:p></o:p></p>
</div>
</div>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal">Thoughts?<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal">- Bret <o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<div class=3D"MsoNormal" align=3D"center" style=3D"text-align:center">
<hr size=3D"2" width=3D"98%" align=3D"center">
</div>
<div id=3D"divRplyFwdMsg">
<p class=3D"MsoNormal"><b><span style=3D"color:black">From:</span></b><span=
 style=3D"color:black">
<a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a> &lt;<a hre=
f=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>&gt; on behalf of=
 Bret Barkelew via groups.io &lt;<a href=3D"mailto:bret.barkelew=3Dmicrosof=
t.com@groups.io">bret.barkelew=3Dmicrosoft.com@groups.io</a>&gt;<br>
<b>Sent:</b> Wednesday, August 11, 2021 12:37:52 PM<br>
<b>To:</b> <a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>=
 &lt;<a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>&gt;;
<a href=3D"mailto:bret@corthon.com">bret@corthon.com</a> &lt;<a href=3D"mai=
lto:bret@corthon.com">bret@corthon.com</a>&gt;<br>
<b>Cc:</b> Yao, Jiewen &lt;<a href=3D"mailto:jiewen.yao@intel.com">jiewen.y=
ao@intel.com</a>&gt;; Jian J Wang &lt;<a href=3D"mailto:jian.j.wang@intel.c=
om">jian.j.wang@intel.com</a>&gt;; Qi Zhang &lt;<a href=3D"mailto:qi1.zhang=
@intel.com">qi1.zhang@intel.com</a>&gt;; Rahul Kumar &lt;<a href=3D"mailto:=
rahul1.kumar@intel.com">rahul1.kumar@intel.com</a>&gt;<br>
<b>Subject:</b> Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Libr=
ary: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib</span>
<o:p></o:p></p>
<div>
<p class=3D"MsoNormal">&nbsp;<o:p></o:p></p>
</div>
</div>
<div>
<div>
<p class=3D"xmsonormal">Thoughts?<o:p></o:p></p>
<p class=3D"xmsonormal">&nbsp;<o:p></o:p></p>
<p class=3D"xmsonormal">- Bret <o:p></o:p></p>
<p class=3D"xmsonormal">&nbsp;<o:p></o:p></p>
</div>
<div class=3D"MsoNormal" align=3D"center" style=3D"text-align:center">
<hr size=3D"2" width=3D"98%" align=3D"center">
</div>
<div id=3D"x_divRplyFwdMsg">
<p class=3D"MsoNormal"><b><span style=3D"color:black">From:</span></b><span=
 style=3D"color:black">
<a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a> &lt;<a hre=
f=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>&gt; on behalf of=
 Bret Barkelew via groups.io &lt;<a href=3D"mailto:bret.barkelew=3Dmicrosof=
t.com@groups.io">bret.barkelew=3Dmicrosoft.com@groups.io</a>&gt;<br>
<b>Sent:</b> Wednesday, August 4, 2021 9:32:32 AM<br>
<b>To:</b> <a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>=
 &lt;<a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>&gt;;
<a href=3D"mailto:bret@corthon.com">bret@corthon.com</a> &lt;<a href=3D"mai=
lto:bret@corthon.com">bret@corthon.com</a>&gt;<br>
<b>Cc:</b> Yao, Jiewen &lt;<a href=3D"mailto:jiewen.yao@intel.com">jiewen.y=
ao@intel.com</a>&gt;; Jian J Wang &lt;<a href=3D"mailto:jian.j.wang@intel.c=
om">jian.j.wang@intel.com</a>&gt;; Qi Zhang &lt;<a href=3D"mailto:qi1.zhang=
@intel.com">qi1.zhang@intel.com</a>&gt;; Rahul Kumar &lt;<a href=3D"mailto:=
rahul1.kumar@intel.com">rahul1.kumar@intel.com</a>&gt;<br>
<b>Subject:</b> Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Libr=
ary: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib</span>
<o:p></o:p></p>
<div>
<p class=3D"MsoNormal">&nbsp;<o:p></o:p></p>
</div>
</div>
<div>
<div>
<p class=3D"xxmsonormal">Poking this one.<o:p></o:p></p>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<ol style=3D"margin-top:0in" start=3D"1" type=3D"1">
<li class=3D"xxmsolistparagraph" style=3D"margin-left:0in;mso-list:l0 level=
1 lfo1">It&#8217;s a easy review with small, obvious code change.<o:p></o:p=
></li><li class=3D"xxmsolistparagraph" style=3D"margin-left:0in;mso-list:l0=
 level1 lfo1">I need some answers on &#8220;when is it okay to violate ECC/=
PatchCheck, if the new code matches the style of the existing code. Should =
I endeavor to pass the PatchCheck and ECCCheck with
 this patch only, and leave it in conflict with the rest of the file?<o:p><=
/o:p></li></ol>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<p class=3D"xxmsonormal">Thanks!<o:p></o:p></p>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<p class=3D"xxmsonormal">- Bret <o:p></o:p></p>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<div style=3D"border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in =
0in 0in">
<p class=3D"xxmsonormal"><b>From: </b><a href=3D"mailto:bret.barkelew=3Dmic=
rosoft.com@groups.io">Bret Barkelew via groups.io</a><br>
<b>Sent: </b>Friday, July 30, 2021 11:08 AM<br>
<b>To: </b><a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>=
; <a href=3D"mailto:bret@corthon.com">
bret@corthon.com</a><br>
<b>Cc: </b><a href=3D"mailto:jiewen.yao@intel.com">Yao, Jiewen</a>; <a href=
=3D"mailto:jian.j.wang@intel.com">
Jian J Wang</a>; <a href=3D"mailto:qi1.zhang@intel.com">Qi Zhang</a>; <a hr=
ef=3D"mailto:rahul1.kumar@intel.com">
Rahul Kumar</a><br>
<b>Subject: </b>Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Libr=
ary: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib<o:p></o:p></p>
</div>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<p class=3D"xxmsonormal">Note, even though this keeps with the style of the=
 rest of the file, it breaks ECC:<o:p></o:p></p>
<p class=3D"xxmsonormal"><a href=3D"https://nam06.safelinks.protection.outl=
ook.com/?url=3Dhttps%3A%2F%2Fgithub.com%2Ftianocore%2Fedk2%2Fpull%2F1848&am=
p;data=3D04%7C01%7Cbret.barkelew%40microsoft.com%7Cba78a3e7f9c74b56180308d9=
5cff85ac%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637643074816403966%7C=
Unknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiL=
CJXVCI6Mn0%3D%7C1000&amp;sdata=3DW6%2FZUYQmTc5I6ks8woDCoBw%2FtTmYrNn79jtLB8=
fEeYE%3D&amp;reserved=3D0">SecurityPkg/Library:
 Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib by corthon &middot; Pull =
Request #1848 &middot; tianocore/edk2 (github.com)</a><o:p></o:p></p>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">PR=
OGRESS - --Running SecurityPkg: EccCheck Test NO-TARGET --
</span></span><o:p></o:p></p>
</div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">ER=
ROR -
</span></span><o:p></o:p></p>
</div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">ER=
ROR -
</span></span><o:p></o:p></p>
</div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">ER=
ROR - EFI coding style error
</span></span><o:p></o:p></p>
</div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">ER=
ROR - *Error code: 8001
</span></span><o:p></o:p></p>
</div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">ER=
ROR - *Only capital letters are allowed to be used for #define declarations
</span></span><o:p></o:p></p>
</div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">ER=
ROR - *file: //home/vsts/work/1/s/SecurityPkg/Library/Tpm2CommandLib/Tpm2NV=
Storage.c
</span></span><o:p></o:p></p>
</div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">ER=
ROR - *Line number: 27
</span></span><o:p></o:p></p>
</div>
<div>
<p class=3D"xxmsonormal" style=3D"background:#201F1E"><span class=3D"xxpl-p=
lain"><span style=3D"font-size:9.0pt;font-family:Consolas;color:#E1DFDD">ER=
ROR - *The #define name [RC_NV_UndefineSpaceSpecial_nvIndex] does no</span>=
</span><o:p></o:p></p>
</div>
</div>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<p class=3D"xxmsonormal">Thoughts?<o:p></o:p></p>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<p class=3D"xxmsonormal">- Bret <o:p></o:p></p>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<div style=3D"border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in =
0in 0in">
<p class=3D"xxmsonormal"><b>From: </b><a href=3D"mailto:bret=3Dcorthon.com@=
groups.io">Bret Barkelew via groups.io</a><br>
<b>Sent: </b>Friday, July 30, 2021 10:55 AM<br>
<b>To: </b><a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>=
<br>
<b>Cc: </b><a href=3D"mailto:jiewen.yao@intel.com">Yao, Jiewen</a>; <a href=
=3D"mailto:jian.j.wang@intel.com">
Jian J Wang</a>; <a href=3D"mailto:qi1.zhang@intel.com">Qi Zhang</a>; <a hr=
ef=3D"mailto:rahul1.kumar@intel.com">
Rahul Kumar</a><br>
<b>Subject: </b>[EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library:=
 Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib<o:p></o:p></p>
</div>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<p class=3D"xxmsonormal" style=3D"margin-bottom:12.0pt">Used to provision a=
nd maintain certain HW-defined NV spaces.<br>
<br>
REF: <a href=3D"https://nam06.safelinks.protection.outlook.com/?url=3Dhttps=
%3A%2F%2Fbugzilla.tianocore.org%2Fshow_bug.cgi%3Fid%3D2994&amp;data=3D04%7C=
01%7Cbret.barkelew%40microsoft.com%7Cba78a3e7f9c74b56180308d95cff85ac%7C72f=
988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637643074816413922%7CUnknown%7CTWFp=
bGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%=
7C1000&amp;sdata=3DAaKL%2BDQTryN6x9nNVyvMDuV%2B04EkYV%2BVYuXC2aVw4n4%3D&amp=
;reserved=3D0">
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fbugzill=
a.tianocore.org%2Fshow_bug.cgi%3Fid%3D2994&amp;amp;data=3D04%7C01%7CBret.Ba=
rkelew%40microsoft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141a=
f91ab2d7cd011db47%7C1%7C0%7C637632645397602953%7CUnknown%7CTWFpbGZsb3d8eyJW=
IjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;a=
mp;sdata=3Ds96M3RvxMOY831Vfr1nt%2Fz1h3cyb6jU9eFzvjKO7Dtc%3D&amp;amp;reserve=
d=3D0</a><br>
<br>
Signed-off-by: Bret Barkelew &lt;<a href=3D"mailto:bret.barkelew@microsoft.=
com">bret.barkelew@microsoft.com</a>&gt;<br>
Cc: Jiewen Yao &lt;<a href=3D"mailto:jiewen.yao@intel.com">jiewen.yao@intel=
.com</a>&gt;<br>
Cc: Jian J Wang &lt;<a href=3D"mailto:jian.j.wang@intel.com">jian.j.wang@in=
tel.com</a>&gt;<br>
Cc: Qi Zhang &lt;<a href=3D"mailto:qi1.zhang@intel.com">qi1.zhang@intel.com=
</a>&gt;<br>
Cc: Rahul Kumar &lt;<a href=3D"mailto:rahul1.kumar@intel.com">rahul1.kumar@=
intel.com</a>&gt;<br>
---<br>
&nbsp;SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c | 122 ++++++++++++=
++++++++<br>
&nbsp;SecurityPkg/Include/Library/Tpm2CommandLib.h&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp; |&nbsp; 22 ++++<br>
&nbsp;2 files changed, 144 insertions(+)<br>
<br>
diff --git a/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c b/SecurityP=
kg/Library/Tpm2CommandLib/Tpm2NVStorage.c<br>
index 87572de20164..7931fade9190 100644<br>
--- a/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c<br>
+++ b/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c<br>
@@ -24,6 +24,8 @@ SPDX-License-Identifier: BSD-2-Clause-Patent<br>
&nbsp;#define RC_NV_UndefineSpace_authHandle&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; =
(TPM_RC_H + TPM_RC_1)<br>
<br>
&nbsp;#define RC_NV_UndefineSpace_nvIndex&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp; (TPM_RC_H + TPM_RC_2)<br>
<br>
&nbsp;<br>
<br>
+#define RC_NV_UndefineSpaceSpecial_nvIndex&nbsp; (TPM_RC_H + TPM_RC_1)<br>
<br>
+<br>
<br>
&nbsp;#define RC_NV_Read_authHandle&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; (TPM_RC_H + TPM_RC_1)<br>
<br>
&nbsp;#define RC_NV_Read_nvIndex&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; (TPM_RC_H + TPM=
_RC_2)<br>
<br>
&nbsp;#define RC_NV_Read_size&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; =
(TPM_RC_P + TPM_RC_1)<br>
<br>
@@ -74,6 +76,20 @@ typedef struct {<br>
&nbsp;&nbsp; TPMS_AUTH_RESPONSE&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp; AuthSession;<br>
<br>
&nbsp;} TPM2_NV_UNDEFINESPACE_RESPONSE;<br>
<br>
&nbsp;<br>
<br>
+typedef struct {<br>
<br>
+&nbsp; TPM2_COMMAND_HEADER&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Header;<br>
<br>
+&nbsp; TPMI_RH_NV_INDEX&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp; NvIndex;<br>
<br>
+&nbsp; TPMI_RH_PLATFORM&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp; Platform;<br>
<br>
+&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; AuthSessionSize;<br>
<br>
+&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; A=
uthSession;<br>
<br>
+} TPM2_NV_UNDEFINESPACESPECIAL_COMMAND;<br>
<br>
+<br>
<br>
+typedef struct {<br>
<br>
+&nbsp; TPM2_RESPONSE_HEADER&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Header;<br=
>
<br>
+&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; AuthSessionSize=
;<br>
<br>
+&nbsp; TPMS_AUTH_RESPONSE&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; =
AuthSession;<br>
<br>
+} TPM2_NV_UNDEFINESPACESPECIAL_RESPONSE;<br>
<br>
+<br>
<br>
&nbsp;typedef struct {<br>
<br>
&nbsp;&nbsp; TPM2_COMMAND_HEADER&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Header=
;<br>
<br>
&nbsp;&nbsp; TPMI_RH_NV_AUTH&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp; AuthHandle;<br>
<br>
@@ -506,6 +522,112 @@ Done:<br>
&nbsp;&nbsp; return Status;<br>
<br>
&nbsp;}<br>
<br>
&nbsp;<br>
<br>
+/**<br>
<br>
+&nbsp; This command removes an index from the TPM.<br>
<br>
+<br>
<br>
+&nbsp; @param[in]&nbsp; NvIndex&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp; The NV Index.<br>
<br>
+&nbsp; @param[in]&nbsp; IndexAuthSession&nbsp;&nbsp;&nbsp; Auth session co=
ntext for the Index auth/policy<br>
<br>
+&nbsp; @param[in]&nbsp; PlatAuthSession&nbsp;&nbsp;&nbsp;&nbsp; Auth sessi=
on context for the Platform auth/policy<br>
<br>
+<br>
<br>
+&nbsp; @retval EFI_SUCCESS&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp; Operation completed successfully.<br>
<br>
+&nbsp; @retval EFI_NOT_FOUND&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp; The command was returned successfully, but NvIndex is not fo=
und.<br>
<br>
+&nbsp; @retval EFI_UNSUPPORTED&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp; Selected NvIndex does not support deletion through this call.<br>
<br>
+&nbsp; @retval EFI_SECURITY_VIOLATION&nbsp; Deletion is not authorized by =
current policy session.<br>
<br>
+&nbsp; @retval EFI_INVALID_PARAMETER&nbsp;&nbsp; The command was unsuccess=
ful.<br>
<br>
+&nbsp; @retval EFI_DEVICE_ERROR&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; =
The command was unsuccessful.<br>
<br>
+**/<br>
<br>
+EFI_STATUS<br>
<br>
+EFIAPI<br>
<br>
+Tpm2NvUndefineSpaceSpecial (<br>
<br>
+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMI_RH_NV_INDEX&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NvIndex,<br>
<br>
+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *IndexAuthSession OPTIONAL,<br>
<br>
+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *PlatAuthSession OPTIONAL<br>
<br>
+&nbsp; )<br>
<br>
+{<br>
<br>
+&nbsp; EFI_STATUS&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Status;<br>
<br>
+&nbsp; TPM2_NV_UNDEFINESPACESPECIAL_COMMAND&nbsp;&nbsp;&nbsp; SendBuffer;<=
br>
<br>
+&nbsp; TPM2_NV_UNDEFINESPACESPECIAL_RESPONSE&nbsp;&nbsp; RecvBuffer;<br>
<br>
+&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; SendBufferSi=
ze;<br>
<br>
+&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; RecvBufferSi=
ze;<br>
<br>
+&nbsp; UINT8&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *Buffer=
;<br>
<br>
+&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; IndexAuthSiz=
e, PlatAuthSize;<br>
<br>
+&nbsp; TPM_RC&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ResponseCode=
;<br>
<br>
+<br>
<br>
+&nbsp; //<br>
<br>
+&nbsp; // Construct command<br>
<br>
+&nbsp; //<br>
<br>
+&nbsp; SendBuffer.Header.tag =3D SwapBytes16(TPM_ST_SESSIONS);<br>
<br>
+&nbsp; SendBuffer.Header.commandCode =3D SwapBytes32(TPM_CC_NV_UndefineSpa=
ceSpecial);<br>
<br>
+<br>
<br>
+&nbsp; SendBuffer.NvIndex =3D SwapBytes32 (NvIndex);<br>
<br>
+&nbsp; SendBuffer.Platform =3D SwapBytes32 (TPM_RH_PLATFORM);<br>
<br>
+<br>
<br>
+&nbsp; //<br>
<br>
+&nbsp; // Marshall the Auth Sessions for the two handles.<br>
<br>
+&nbsp; Buffer =3D (UINT8 *)&amp;SendBuffer.AuthSession;<br>
<br>
+&nbsp; // IndexAuthSession<br>
<br>
+&nbsp; IndexAuthSize =3D CopyAuthSessionCommand (IndexAuthSession, Buffer)=
;<br>
<br>
+&nbsp; Buffer +=3D IndexAuthSize;<br>
<br>
+&nbsp; // PlatAuthSession<br>
<br>
+&nbsp; PlatAuthSize =3D CopyAuthSessionCommand (PlatAuthSession, Buffer);<=
br>
<br>
+&nbsp; Buffer +=3D PlatAuthSize;<br>
<br>
+&nbsp; // AuthSessionSize<br>
<br>
+&nbsp; SendBuffer.AuthSessionSize =3D SwapBytes32(IndexAuthSize + PlatAuth=
Size);<br>
<br>
+<br>
<br>
+&nbsp; // Update total command size.<br>
<br>
+&nbsp; SendBufferSize =3D (UINT32)(Buffer - (UINT8 *)&amp;SendBuffer);<br>
<br>
+&nbsp; SendBuffer.Header.paramSize =3D SwapBytes32 (SendBufferSize);<br>
<br>
+<br>
<br>
+&nbsp; //<br>
<br>
+&nbsp; // send Tpm command<br>
<br>
+&nbsp; //<br>
<br>
+&nbsp; RecvBufferSize =3D sizeof (RecvBuffer);<br>
<br>
+&nbsp; Status =3D Tpm2SubmitCommand (SendBufferSize, (UINT8 *)&amp;SendBuf=
fer, &amp;RecvBufferSize, (UINT8 *)&amp;RecvBuffer);<br>
<br>
+&nbsp; if (EFI_ERROR (Status)) {<br>
<br>
+&nbsp;&nbsp;&nbsp; goto Done;<br>
<br>
+&nbsp; }<br>
<br>
+<br>
<br>
+&nbsp; if (RecvBufferSize &lt; sizeof (TPM2_RESPONSE_HEADER)) {<br>
<br>
+&nbsp;&nbsp;&nbsp; DEBUG ((EFI_D_ERROR, &quot;Tpm2NvUndefineSpaceSpecial -=
 RecvBufferSize Error - %x\n&quot;, RecvBufferSize));<br>
<br>
+&nbsp;&nbsp;&nbsp; Status =3D EFI_DEVICE_ERROR;<br>
<br>
+&nbsp;&nbsp;&nbsp; goto Done;<br>
<br>
+&nbsp; }<br>
<br>
+<br>
<br>
+&nbsp; ResponseCode =3D SwapBytes32(RecvBuffer.Header.responseCode);<br>
<br>
+&nbsp; if (ResponseCode !=3D TPM_RC_SUCCESS) {<br>
<br>
+&nbsp;&nbsp;&nbsp; DEBUG ((EFI_D_ERROR, &quot;Tpm2NvUndefineSpaceSpecial -=
 responseCode - %x\n&quot;, SwapBytes32(RecvBuffer.Header.responseCode)));<=
br>
<br>
+&nbsp; }<br>
<br>
+&nbsp; switch (ResponseCode) {<br>
<br>
+&nbsp; case TPM_RC_SUCCESS:<br>
<br>
+&nbsp;&nbsp;&nbsp; // return data<br>
<br>
+&nbsp;&nbsp;&nbsp; break;<br>
<br>
+&nbsp; case TPM_RC_ATTRIBUTES:<br>
<br>
+&nbsp; case TPM_RC_ATTRIBUTES + RC_NV_UndefineSpaceSpecial_nvIndex:<br>
<br>
+&nbsp;&nbsp;&nbsp; Status =3D EFI_UNSUPPORTED;<br>
<br>
+&nbsp;&nbsp;&nbsp; break;<br>
<br>
+&nbsp; case TPM_RC_NV_AUTHORIZATION:<br>
<br>
+&nbsp;&nbsp;&nbsp; Status =3D EFI_SECURITY_VIOLATION;<br>
<br>
+&nbsp;&nbsp;&nbsp; break;<br>
<br>
+&nbsp; case TPM_RC_HANDLE + RC_NV_UndefineSpaceSpecial_nvIndex: // TPM_RC_=
NV_DEFINED:<br>
<br>
+&nbsp;&nbsp;&nbsp; Status =3D EFI_NOT_FOUND;<br>
<br>
+&nbsp;&nbsp;&nbsp; break;<br>
<br>
+&nbsp; case TPM_RC_VALUE + RC_NV_UndefineSpace_nvIndex:<br>
<br>
+&nbsp;&nbsp;&nbsp; Status =3D EFI_INVALID_PARAMETER;<br>
<br>
+&nbsp;&nbsp;&nbsp; break;<br>
<br>
+&nbsp; default:<br>
<br>
+&nbsp;&nbsp;&nbsp; Status =3D EFI_DEVICE_ERROR;<br>
<br>
+&nbsp;&nbsp;&nbsp; break;<br>
<br>
+&nbsp; }<br>
<br>
+<br>
<br>
+Done:<br>
<br>
+&nbsp; //<br>
<br>
+&nbsp; // Clear AuthSession Content<br>
<br>
+&nbsp; //<br>
<br>
+&nbsp; ZeroMem (&amp;SendBuffer, sizeof(SendBuffer));<br>
<br>
+&nbsp; ZeroMem (&amp;RecvBuffer, sizeof(RecvBuffer));<br>
<br>
+&nbsp; return Status;<br>
<br>
+} // Tpm2NvUndefineSpaceSpecial()<br>
<br>
+<br>
<br>
&nbsp;/**<br>
<br>
&nbsp;&nbsp; This command reads a value from an area in NV memory previousl=
y defined by TPM2_NV_DefineSpace().<br>
<br>
&nbsp;<br>
<br>
diff --git a/SecurityPkg/Include/Library/Tpm2CommandLib.h b/SecurityPkg/Inc=
lude/Library/Tpm2CommandLib.h<br>
index ee8eb622951c..8d7b4998d98d 100644<br>
--- a/SecurityPkg/Include/Library/Tpm2CommandLib.h<br>
+++ b/SecurityPkg/Include/Library/Tpm2CommandLib.h<br>
@@ -364,6 +364,28 @@ Tpm2NvUndefineSpace (<br>
&nbsp;&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *AuthSession OPTIONAL<br>
<br>
&nbsp;&nbsp; );<br>
<br>
&nbsp;<br>
<br>
+/**<br>
<br>
+&nbsp; This command removes an index from the TPM.<br>
<br>
+<br>
<br>
+&nbsp; @param[in]&nbsp; NvIndex&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp; The NV Index.<br>
<br>
+&nbsp; @param[in]&nbsp; IndexAuthSession&nbsp;&nbsp;&nbsp; Auth session co=
ntext for the Index auth/policy<br>
<br>
+&nbsp; @param[in]&nbsp; PlatAuthSession&nbsp;&nbsp;&nbsp;&nbsp; Auth sessi=
on context for the Platform auth/policy<br>
<br>
+<br>
<br>
+&nbsp; @retval EFI_SUCCESS&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp; Operation completed successfully.<br>
<br>
+&nbsp; @retval EFI_NOT_FOUND&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp; The command was returned successfully, but NvIndex is not fo=
und.<br>
<br>
+&nbsp; @retval EFI_UNSUPPORTED&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp; Selected NvIndex does not support deletion through this call.<br>
<br>
+&nbsp; @retval EFI_SECURITY_VIOLATION&nbsp; Deletion is not authorized by =
current policy session.<br>
<br>
+&nbsp; @retval EFI_INVALID_PARAMETER&nbsp;&nbsp; The command was unsuccess=
ful.<br>
<br>
+&nbsp; @retval EFI_DEVICE_ERROR&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; =
The command was unsuccessful.<br>
<br>
+**/<br>
<br>
+EFI_STATUS<br>
<br>
+EFIAPI<br>
<br>
+Tpm2NvUndefineSpaceSpecial (<br>
<br>
+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMI_RH_NV_INDEX&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NvIndex,<br>
<br>
+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *IndexAuthSession OPTIONAL,<br>
<br>
+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *PlatAuthSession OPTIONAL<br>
<br>
+&nbsp; );<br>
<br>
+<br>
<br>
&nbsp;/**<br>
<br>
&nbsp;&nbsp; This command reads a value from an area in NV memory previousl=
y defined by TPM2_NV_DefineSpace().<br>
<br>
&nbsp;<br>
<br>
-- <br>
2.31.1.windows.1<br>
<br>
<br>
<br>
-=3D-=3D-=3D-=3D-=3D-=3D<br>
Groups.io Links: You receive all messages sent to this group.<br>
View/Reply Online (#78450): <a href=3D"https://nam06.safelinks.protection.o=
utlook.com/?url=3Dhttps%3A%2F%2Fedk2.groups.io%2Fg%2Fdevel%2Fmessage%2F7845=
0&amp;data=3D04%7C01%7Cbret.barkelew%40microsoft.com%7Cba78a3e7f9c74b561803=
08d95cff85ac%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C63764307481641392=
2%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1ha=
WwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=3DK0A5SdqSU5yx3b3r8tm7h6aCPrN14q8IaFUnAC=
vj%2BJM%3D&amp;reserved=3D0">
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.gr=
oups.io%2Fg%2Fdevel%2Fmessage%2F78450&amp;amp;data=3D04%7C01%7CBret.Barkele=
w%40microsoft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141af91ab=
2d7cd011db47%7C1%7C0%7C637632645397612922%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiM=
C4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;amp;sd=
ata=3DCWxLwgp73z2XQEa%2FN77gsCwRF73xha0RZCKwcFTlrRE%3D&amp;amp;reserved=3D0=
</a><br>
Mute This Topic: <a href=3D"https://nam06.safelinks.protection.outlook.com/=
?url=3Dhttps%3A%2F%2Fgroups.io%2Fmt%2F84555713%2F1822150&amp;data=3D04%7C01=
%7Cbret.barkelew%40microsoft.com%7Cba78a3e7f9c74b56180308d95cff85ac%7C72f98=
8bf86f141af91ab2d7cd011db47%7C1%7C0%7C637643074816423877%7CUnknown%7CTWFpbG=
Zsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C=
1000&amp;sdata=3Dv1MYXgPFzvCFw%2FQuWkawIHp4Qptang3Apwu%2BUWh9pYI%3D&amp;res=
erved=3D0">
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgroups.=
io%2Fmt%2F84555713%2F1822150&amp;amp;data=3D04%7C01%7CBret.Barkelew%40micro=
soft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141af91ab2d7cd011d=
b47%7C1%7C0%7C637632645397612922%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMD=
AiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;amp;sdata=3DIWQ=
6E4yP0ECt3oYLYQa%2BnddGfcQEDMgfASlcxRuda%2BQ%3D&amp;amp;reserved=3D0</a><br=
>
Group Owner: <a href=3D"mailto:devel+owner@edk2.groups.io">devel+owner@edk2=
.groups.io</a><br>
Unsubscribe: <a href=3D"https://nam06.safelinks.protection.outlook.com/?url=
=3Dhttps%3A%2F%2Fedk2.groups.io%2Fg%2Fdevel%2Funsub&amp;data=3D04%7C01%7Cbr=
et.barkelew%40microsoft.com%7Cba78a3e7f9c74b56180308d95cff85ac%7C72f988bf86=
f141af91ab2d7cd011db47%7C1%7C0%7C637643074816423877%7CUnknown%7CTWFpbGZsb3d=
8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&=
amp;sdata=3Dz1FcgbeOOFrnnzd7U5bgjlwsdc1i8msijhK3g1qtw38%3D&amp;reserved=3D0=
">
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.gr=
oups.io%2Fg%2Fdevel%2Funsub&amp;amp;data=3D04%7C01%7CBret.Barkelew%40micros=
oft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141af91ab2d7cd011db=
47%7C1%7C0%7C637632645397612922%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDA=
iLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;amp;sdata=3Dqor4=
Y5FZEH8ch0AEmWDbe97FIQk4V1qx7IURcTHzjAU%3D&amp;amp;reserved=3D0</a>
 [brbarkel@microsoft.com]<br>
-=3D-=3D-=3D-=3D-=3D-=3D<o:p></o:p></p>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
<div>
<p class=3D"xxmsonormal">&nbsp;<o:p></o:p></p>
</div>
</div>
</div>
<div>
<p class=3D"MsoNormal"></o:p></span></p>
</div>
</div>
</div>
</div>
</body>
</html>

--_000_PH0PR11MB4885021AEEA29E6C1F2ADEAF8CFA9PH0PR11MB4885namp_--