From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from list by lists.gnu.org with archive (Exim 4.90_1)
	id 1pP7rE-0006mH-QY
	for mharc-grub-devel@gnu.org; Mon, 06 Feb 2023 15:12:56 -0500
Received: from eggs.gnu.org ([2001:470:142:3::10])
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <rharwood@redhat.com>)
 id 1pP7rC-0006m1-UK
 for grub-devel@gnu.org; Mon, 06 Feb 2023 15:12:54 -0500
Received: from us-smtp-delivery-124.mimecast.com ([170.10.129.124])
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <rharwood@redhat.com>)
 id 1pP7rB-000447-FT
 for grub-devel@gnu.org; Mon, 06 Feb 2023 15:12:54 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
 s=mimecast20190719; t=1675714372;
 h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
 in-reply-to:in-reply-to:references:references;
 bh=9epZ+8mjNuxGOzaGwQqRhTd9XEQYtTd6qVWLcmoidvk=;
 b=WQ7gxJgcD62mgQmyjaTtZFlQWiDxFid+VBnNP7En1kVfOikMY8UD4JsRrxaXYhI6cMP5te
 rMxo/87gTquby7Sf2/ck4B/LPtEZCcECc+3ttNh7+S67ooUY+oFGR840FZGrS+33NAyJPF
 W65Tg5xMRxf3T+T+Dfbdru8v8xiKTN4=
Received: from mail-qt1-f198.google.com (mail-qt1-f198.google.com
 [209.85.160.198]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.3, cipher=TLS_AES_128_GCM_SHA256) id
 us-mta-571-_nPjPSiFOlGRuqtK_ltWPQ-1; Mon, 06 Feb 2023 15:12:50 -0500
X-MC-Unique: _nPjPSiFOlGRuqtK_ltWPQ-1
Received: by mail-qt1-f198.google.com with SMTP id
 i5-20020ac813c5000000b003b86b748aadso7247028qtj.14
 for <grub-devel@gnu.org>; Mon, 06 Feb 2023 12:12:50 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20210112;
 h=mime-version:message-id:date:references:in-reply-to:subject:cc:to
 :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
 bh=9epZ+8mjNuxGOzaGwQqRhTd9XEQYtTd6qVWLcmoidvk=;
 b=Z/Rx9afSg0+tupO6e0q1CoA82dpv2+jWZScpqsu6VJAZ3/dEtuDBzbbZ45YiDePFvW
 XqAkq9+6ksJUCVg9cRi1HH5OzuEKZ/c8tWcmor0IH+CDh60wfNsGdk9hQf6H4Z3N/nkq
 BG9iqYhm0XkgY30KRqKZKMURE5l/9L+BCpGSOCgp2JmXzMvtc5byQgV0QuLTCi84oPoA
 l45/cP0n/v/Czhl/R7BjNW7rQT4Bi37sw2zlGELmAi4KmtP706/vS+dDoXGvGYTN9RlQ
 K5pD/EYhiFiPO4k+rXNwVK5GCKX3Gifdt2zqKcT1hg58/zgpObwNC895Jh86PEZMdBEQ
 TN8g==
X-Gm-Message-State: AO0yUKWruxzSKDVmpZ+1V3rmeJPaF4Cxv3vg1vla5J7/N6dL9J8MgWVC
 dUATnEKQbBLYmzS7d9fEaXuThHK0LOopbLVEflqpkk9GvAeHUILtZoxg/qDBxqoLqXlB/z6r5VV
 WjsMCUKwZKrE=
X-Received: by 2002:a05:622a:8a:b0:3b6:694f:d710 with SMTP id
 o10-20020a05622a008a00b003b6694fd710mr877688qtw.50.1675714369437; 
 Mon, 06 Feb 2023 12:12:49 -0800 (PST)
X-Google-Smtp-Source: AK7set86e7om9pVB9SGFp8WsmmMgSvuoVBo5lKuzBS0bIIr8D7tpEocCPazSzaRqvT9NudmkeIHJJw==
X-Received: by 2002:a05:622a:8a:b0:3b6:694f:d710 with SMTP id
 o10-20020a05622a008a00b003b6694fd710mr877635qtw.50.1675714368891; 
 Mon, 06 Feb 2023 12:12:48 -0800 (PST)
Received: from localhost ([2600:4040:520a:8800:7d1c:f0a7:5c44:ed0e])
 by smtp.gmail.com with ESMTPSA id
 i11-20020a05620a404b00b006ee8874f5fasm8231605qko.53.2023.02.06.12.12.48
 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
 Mon, 06 Feb 2023 12:12:48 -0800 (PST)
From: Robbie Harwood <rharwood@redhat.com>
To: Stefan Berger <stefanb@linux.ibm.com>, grub-devel@gnu.org,
 dkiper@net-space.pl
Cc: development@efficientek.com, dja@axtens.net, sudhakar@linux.ibm.com,
 nasastry@in.ibm.com, avnish@imap.linux.ibm.com, Stefan Berger
 <stefanb@linux.ibm.com>, Eric Snowberg <eric.snowberg@oracle.com>, Daniel
 Kiper <daniel.kiper@oracle.com>
Subject: Re: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a
 vTPM 2.0
In-Reply-To: <20230206150325.3756840-7-stefanb@linux.ibm.com>
References: <20230206150325.3756840-1-stefanb@linux.ibm.com>
 <20230206150325.3756840-7-stefanb@linux.ibm.com>
Date: Mon, 06 Feb 2023 15:12:47 -0500
Message-ID: <jlgo7q6ft8g.fsf@redhat.com>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
 micalg=pgp-sha512; protocol="application/pgp-signature"
Received-SPF: pass client-ip=170.10.129.124; envelope-from=rharwood@redhat.com;
 helo=us-smtp-delivery-124.mimecast.com
X-Spam_score_int: -20
X-Spam_score: -2.1
X-Spam_bar: --
X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001,
 DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1,
 RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001,
 SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: grub-devel@gnu.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: The development of GNU GRUB <grub-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/grub-devel>,
 <mailto:grub-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/grub-devel>
List-Post: <mailto:grub-devel@gnu.org>
List-Help: <mailto:grub-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/grub-devel>,
 <mailto:grub-devel-request@gnu.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Feb 2023 20:12:55 -0000

--=-=-=
Content-Type: text/plain

Stefan Berger <stefanb@linux.ibm.com> writes:

> Add support for trusted boot using a vTPM 2.0 on the IBM IEEE1275
> PowerPC platform. With this patch grub now measures text and binary data
> into the TPM's PCRs 8 and 9 in the same way as the x86_64 platform
> does.
>
> This patch requires Daniel Axtens's patches for claiming more memory.
>
> Note: The tpm_init() function cannot be called from GRUB_MOD_INIT() since
> it does not find the device nodes upon module initialization and
> therefore the call to tpm_init() must be deferred to grub_tpm_measure().
>
> For vTPM support to work on PowerVM, system driver levels 1010.30
> or 1020.00 are required.
>
> Note: Previous versions of firmware levels with the 2hash-ext-log
> API call have a bug that, once this API call is invoked, has the
> effect of disabling the vTPM driver under Linux causing an error
> message to be displayed in the Linux kernel log. Those users will
> have to update their machines to the firmware levels mentioned
> above.
>
> Cc: Eric Snowberg <eric.snowberg@oracle.com>
> Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
> Signed-off-by: Daniel Axtens <dja@axtens.net>
> Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>

Reviewed-by: Robbie Harwood <rharwood@redhat.com>

Be well,
--Robbie

--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=b6LY
-----END PGP SIGNATURE-----
--=-=-=--