From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by spool.mail.gandi.net (Postfix) with ESMTPS id 1BC8DD811B2 for ; Tue, 16 Jan 2024 14:35:03 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=nXHJ10xUOjXmX/Icv1ZUuZzbHSMT1KLRr4neMSc0LP4=; c=relaxed/simple; d=groups.io; h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version:In-Reply-To:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Type:Content-Disposition; s=20140610; t=1705415702; v=1; b=GpwfgpfGUGOgZOLM77kwsWeIAq9w6FkruhMddM+/eExjG+gxyIXh4u7PiuMUPCeOkM0G5sa6 8Okdx2hPlUDIqFoQB3Jl4VY/fTuumJw7CVwTDoSLlr5bNgbs8OuH8paona4Y0UjnF5VoOsU+Qds VC7FoBhoqBtfhxI+TPfzSJiE= X-Received: by 127.0.0.2 with SMTP id rRUyYY7687511x3hhELe0ZwD; Tue, 16 Jan 2024 06:35:02 -0800 X-Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) by mx.groups.io with SMTP id smtpd.web10.15883.1705415702126401941 for ; Tue, 16 Jan 2024 06:35:02 -0800 X-Received: from mimecast-mx02.redhat.com (mx-ext.redhat.com [66.187.233.73]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id us-mta-114-_0nnoKQ5O9S7zQ7_XJ-AWA-1; Tue, 16 Jan 2024 09:34:58 -0500 X-MC-Unique: _0nnoKQ5O9S7zQ7_XJ-AWA-1 X-Received: from smtp.corp.redhat.com (int-mx05.intmail.prod.int.rdu2.redhat.com [10.11.54.5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by mimecast-mx02.redhat.com (Postfix) with ESMTPS id B9E283810785; Tue, 16 Jan 2024 14:34:57 +0000 (UTC) X-Received: from sirius.home.kraxel.org (unknown [10.39.193.155]) by smtp.corp.redhat.com (Postfix) with ESMTPS id 98278FEEE; Tue, 16 Jan 2024 14:34:57 +0000 (UTC) X-Received: by sirius.home.kraxel.org (Postfix, from userid 1000) id 72CDC1800987; Tue, 16 Jan 2024 15:34:56 +0100 (CET) Date: Tue, 16 Jan 2024 15:34:56 +0100 From: "Gerd Hoffmann" To: devel@edk2.groups.io, jiewen.yao@intel.com Cc: "dougflick@microsoft.com" , "Douglas Flick [MSFT]" Subject: Re: [edk2-devel] [PATCH 0/6] SECURITY PATCHES TCBZ4117 & TCBZ4118 Message-ID: References: <2t6cs4djbxujhdglj5ok4y4we6jhnemgztttetunda3hv4zef5@cn4jew2nlhud> MIME-Version: 1.0 In-Reply-To: X-Scanned-By: MIMEDefang 3.4.1 on 10.11.54.5 X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: redhat.com Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,kraxel@redhat.com List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: lKENxulXkZYsHZ0CntnBBJnzx7686176AA= Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20140610 header.b=GpwfgpfG; spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io; dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=redhat.com (policy=none) On Tue, Jan 16, 2024 at 01:30:43PM +0000, Yao, Jiewen wrote: > Gerd > I have merged this patch set today. > > I am fine to remove TPM1.2 in OVMF because of the known security limitation. I was thinking about the complete edk2 code base not only OVMF. But I can surely start with OVMF. Maybe it is the only platform affected because on physical hardware you usually know whenever TPM 1.2 or TPM 2.0 is present so there is no need to include both. take care, Gerd -=-=-=-=-=-=-=-=-=-=-=- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#113903): https://edk2.groups.io/g/devel/message/113903 Mute This Topic: https://groups.io/mt/103675434/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=-=-=-=-=-=-=-=-=-=-=-