Branch: refs/heads/master
Home: https://github.com/tianocore/edk2
Commit: 8ed8568922be9b5f7111fc1297317106aba7ab52
https://github.com/tianocore/edk2/commit/8ed8568922be9b5f7111fc1297317106aba7ab52
Author: Rodrigo Gonzalez del Cueto <rodrigo.gonzalez.del.cu...@intel.com>
Date: 2021-12-17 (Fri, 17 Dec 2021)
Changed paths:
M SecurityPkg/Include/Library/Tpm2CommandLib.h
M SecurityPkg/Library/Tpm2CommandLib/Tpm2Integrity.c
M SecurityPkg/Tcg/Tcg2Pei/Tcg2Pei.c
Log Message:
-----------
SecurityPkg: Debug code to audit BIOS TPM extend operations
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=2858
In V2: Fixed patch format and uncrustify cleanup
In V1: Add debug functionality to examine TPM extend operations
performed by BIOS and inspect the PCR 00 value prior to
any BIOS measurements.
Signed-off-by: Rodrigo Gonzalez del Cueto <rodrigo.gonzalez.del.cu...@intel.com>
Cc: Jiewen Yao <jiewen....@intel.com>
Cc: Jian J Wang <jian.j.w...@intel.com>
Reviewed-by: Jiewen Yao <jiewen....@intel.com>
Commit: 195f0119731dbc4b93b4d485998dac3bbf8629a3
https://github.com/tianocore/edk2/commit/195f0119731dbc4b93b4d485998dac3bbf8629a3
Author: Rodrigo Gonzalez del Cueto <rodrigo.gonzalez.del.cu...@intel.com>
Date: 2021-12-17 (Fri, 17 Dec 2021)
Changed paths:
M SecurityPkg/Library/HashLibBaseCryptoRouter/HashLibBaseCryptoRouterDxe.c
M SecurityPkg/Library/HashLibBaseCryptoRouter/HashLibBaseCryptoRouterPei.c
M SecurityPkg/Tcg/Tcg2Pei/Tcg2Pei.c
M SecurityPkg/Tcg/Tcg2Pei/Tcg2Pei.inf
Log Message:
-----------
SecurityPkg: Reallocate TPM Active PCRs based on platform support
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3515
In V4: Fixed patch format and uncrustify cleanup
In V3: Cleaned up comments, debug prints and updated patch to use the
new debug ENUM definitions.
- Replaced EFI_D_INFO with DEBUG_INFO.
- Replaced EFI_D_VERBOSE with DEBUG_VERBOSE.
In V2: Add case to RegisterHashInterfaceLib logic
RegisterHashInterfaceLib needs to correctly handle registering the HashLib
instance supported algorithm bitmap when PcdTpm2HashMask is set to zero.
The current implementation of SyncPcrAllocationsAndPcrMask() triggers
PCR bank reallocation only based on the intersection between
TpmActivePcrBanks and PcdTpm2HashMask.
When the software HashLibBaseCryptoRouter solution is used, no PCR bank
reallocation is occurring based on the supported hashing algorithms
registered by the HashLib instances.
Need to have an additional check for the intersection between the
TpmActivePcrBanks and the PcdTcg2HashAlgorithmBitmap populated by the
HashLib instances present on the platform's BIOS.
Signed-off-by: Rodrigo Gonzalez del Cueto <rodrigo.gonzalez.del.cu...@intel.com>
Cc: Jian J Wang <jian.j.w...@intel.com>
Cc: Jiewen Yao <jiewen....@intel.com>
Reviewed-by: Jiewen Yao <jiewen....@intel.com>
Commit: ab5ab2f60348138a4b7b1c95ad6f5d0954fb96f1
https://github.com/tianocore/edk2/commit/ab5ab2f60348138a4b7b1c95ad6f5d0954fb96f1
Author: Rodrigo Gonzalez del Cueto <rodrigo.gonzalez.del.cu...@intel.com>
Date: 2021-12-17 (Fri, 17 Dec 2021)
Changed paths:
M SecurityPkg/Library/Tpm2DeviceLibDTpm/Tpm2Ptp.c
Log Message:
-----------
SecurityPkg: TPM must go to Idle state on CRB command completion
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3463
In V2: Fixed patch format and uncrustify cleanup
In V1: To follow the TCG CRB protocol specification, on every CRB TPM
command completion the TPM should return to Idle state, regardless of
the CRB Idle Bypass capability reported by the TPM device.
See: TCG PC Client Device Driver Design Principles for TPM 2.0,
Version 1.0, Rev 0.27
Signed-off-by: Rodrigo Gonzalez del Cueto <rodrigo.gonzalez.del.cu...@intel.com>
Cc: Jian J Wang <jian.j.w...@intel.com>
Cc: Jiewen Yao <jiewen....@intel.com>
Reviewed-by: Jiewen Yao <jiewen....@intel.com>
Compare: https://github.com/tianocore/edk2/compare/b451c6908878...ab5ab2f60348
_______________________________________________
edk2-commits mailing list
edk2-commits@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/edk2-commits
