OvmfPkgX64: Set default value of CC_MEASUR...

mxu9 via edk2-commits Fri, 12 Jul 2024 00:59:35 -0700

  Branch: refs/heads/master
  Home:   https://github.com/tianocore/edk2
  Commit: 2b6d0eb43439891e641750cd5054b1bc3fb40e72
      
https://github.com/tianocore/edk2/commit/2b6d0eb43439891e641750cd5054b1bc3fb40e72
  Author: Min M Xu <min.m...@intel.com>
  Date:   2024-07-12 (Fri, 12 Jul 2024)


  Changed paths:
    M OvmfPkg/IntelTdx/README.md
    M OvmfPkg/OvmfPkgX64.dsc

  Log Message:
  -----------
  OvmfPkg/OvmfPkgX64: Set default value of CC_MEASUREMENT_ENABLE to TRUE

CC_MEASUREMENT_ENABLE is designed to control the loading of TdTcg2Dxe
driver which is for EFI_CC_MEASUREMENT_PROTOCOL. TdTcg2Dxe is TD-Guest
specific driver.

>From the security perspective a TD-Guest shall always load the TdTcg2Dxe
driver so that EFI_CC_MEASUREMENT_PROTOCOL is installed and booting
events are measured and extended to RTMRs.

TdTcg2Dxe will check if it is running in a TD-Guest. If not then it
returns right now and no EFI_CC_MEASUREMENT_PROTOCOL is installed.

Cc: Ard Biesheuvel <ardb+tianoc...@kernel.org>
Cc: Jiewen Yao <jiewen....@intel.com>
Cc: Gerd Hoffmann <kra...@redhat.com>
Cc: Erdem Aktas <erdemak...@google.com>
Cc: Tom Lendacky <thomas.lenda...@amd.com>
Cc: Michael Roth <michael.r...@amd.com>
Signed-off-by: Min Xu <min.m...@intel.com>



To unsubscribe from these emails, change your notification settings at 
https://github.com/tianocore/edk2/settings/notifications


_______________________________________________
edk2-commits mailing list
edk2-commits@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/edk2-commits

[tianocore/edk2] 2b6d0e: OvmfPkg/OvmfPkgX64: Set default value of CC_MEASUR...

Reply via email to