Re: [PATCH v3 2/7] docs/zh_CN: Add tpm tpm_event_log Chinese translation

linux-doc.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

From: Yanteng Si <si.yanteng@linux.dev>
To: Shuo Zhao <zhaoshuo@cqsoftware.com.cn>, alexs@kernel.org, corbet@lwn.net
Cc: zhaoyuehui@cqsoftware.com.cn, zhangwei@cqsoftware.com.cn,
	maoyuxian@cqsoftware.com.cn, linux-doc@vger.kernel.org
Subject: Re: [PATCH v3 2/7] docs/zh_CN: Add tpm tpm_event_log Chinese translation
Date: Fri, 24 Jan 2025 15:01:48 +0800	[thread overview]
Message-ID: <02ff0851-1db6-4b42-8a48-334830144ca7@linux.dev> (raw)
In-Reply-To: <32c35c0504f262668996080b44dfe059a5266256.1737603330.git.zhaoshuo@cqsoftware.com.cn>




在 2025/1/23 13:17, Shuo Zhao 写道:
> Translate .../security/tpm/tpm_event_log.rst into Chinese.
>
> Update the translation through commit 2ef5a7f1482c
> ("tpm: Document UEFI event log quirks")
>
> Reviewed-by: Alex Shi <alexs@kernel.org>
> Signed-off-by: Shuo Zhao <zhaoshuo@cqsoftware.com.cn>
Reviewed-by: Yanteng Si <si.yanteng@linux.dev>

Thanks,
Yanteng
> ---
>   .../translations/zh_CN/security/tpm/index.rst |  2 +-
>   .../zh_CN/security/tpm/tpm_event_log.rst      | 49 +++++++++++++++++++
>   2 files changed, 50 insertions(+), 1 deletion(-)
>   create mode 100644 Documentation/translations/zh_CN/security/tpm/tpm_event_log.rst
>
> diff --git a/Documentation/translations/zh_CN/security/tpm/index.rst b/Documentation/translations/zh_CN/security/tpm/index.rst
> index a55d0a7bbc0f..f324bd4dd093 100644
> --- a/Documentation/translations/zh_CN/security/tpm/index.rst
> +++ b/Documentation/translations/zh_CN/security/tpm/index.rst
> @@ -12,9 +12,9 @@
>   
>   .. toctree::
>   
> +   tpm_event_log
>   
>   TODOLIST:
> -*   tpm_event_log
>   *   tpm-security
>   *   tpm_tis
>   *   tpm_vtpm_proxy
> diff --git a/Documentation/translations/zh_CN/security/tpm/tpm_event_log.rst b/Documentation/translations/zh_CN/security/tpm/tpm_event_log.rst
> new file mode 100644
> index 000000000000..9c173291ac3e
> --- /dev/null
> +++ b/Documentation/translations/zh_CN/security/tpm/tpm_event_log.rst
> @@ -0,0 +1,49 @@
> +.. SPDX-License-Identifier: GPL-2.0
> +.. include:: ../../disclaimer-zh_CN.rst
> +
> +:Original: Documentation/security/tpm/tpm_event_log.rst
> +
> +:翻译:
> + 赵硕 Shuo Zhao <zhaoshuo@cqsoftware.com.cn>
> +
> +===========
> +TPM事件日志
> +===========
> +
> +本文档简要介绍了什么是TPM日志，以及它是如何从预启动固件移交到操作系统的。
> +
> +介绍
> +====
> +
> +预启动固件维护一个事件日志，每当它将某些内容哈希到任何一个PCR寄存器时，该
> +日志会添加新条目。这些事件按类型分类，并包含哈希后的PCR寄存器值。通常，预
> +启动固件会哈希那些即将移交执行权或与启动过程相关的组件。
> +
> +其主要应用是远程认证，而它之所以有用的原因在[1]中第一部分很好地阐述了：
> +
> +认证用于向挑战者提供有关平台状态的信息。然而，PCR的内容难以解读；因此，当
> +PCR内容附有测量日志时，认证通常会更有用。尽管测量日志本身并不可信，但它们
> +包含比PCR内容更为丰富的信息集。PCR内容用于对测量日志进行验证。
> +
> +UEFI事件日志
> +============
> +
> +UEFI提供的事件日志有一些比较奇怪的特性。
> +
> +在调用ExitBootServices()之前，Linux EFI引导加载程序会将事件日志复制到由
> +引导加载程序自定义的配置表中。不幸的是，通过ExitBootServices()生成的事件
> +并不会出现在这个表里。
> +
> +固件提供了一个所谓的最终事件配置表排序来解决这个问题。事件会在第一次调用
> +EFI_TCG2_PROTOCOL.GetEventLog()后被镜像到这个表中。
> +
> +这引出了另一个问题：无法保证它不会在 Linux EFI stub 开始运行之前被调用。
> +因此，在 stub 运行时，它需要计算并将最终事件表的大小保存到自定义配置表中，
> +以便TPM驱动程序可以在稍后连接来自自定义配置表和最终事件表的两个事件日志时
> +跳过这些事件。
> +
> +参考文献
> +========
> +
> +- [1] https://trustedcomputinggroup.org/resource/pc-client-specific-platform-firmware-profile-specification/
> +- [2] The final concatenation is done in drivers/char/tpm/eventlog/efi.c

next prev parent reply	other threads:[~2025-01-24  7:02 UTC|newest]

Thread overview: 16+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2025-01-23  5:17 [PATCH v3 0/7] Add all Chinese translations in the tpm directory Shuo Zhao
2025-01-23  5:17 ` [PATCH v3 1/7] docs/zh_CN: Add tpm index Chinese translation Shuo Zhao
2025-01-24  6:58   ` Yanteng Si
2025-01-23  5:17 ` [PATCH v3 2/7] docs/zh_CN: Add tpm tpm_event_log " Shuo Zhao
2025-01-24  7:01   ` Yanteng Si [this message]
2025-01-23  5:17 ` [PATCH v3 3/7] docs/zh_CN: Add tpm tpm-security " Shuo Zhao
2025-01-24  9:19   ` Yanteng Si
2025-01-23  5:17 ` [PATCH v3 4/7] docs/zh_CN: Add tpm tpm_tis " Shuo Zhao
2025-01-24  9:20   ` Yanteng Si
2025-01-23  5:17 ` [PATCH v3 5/7] docs/zh_CN: Add tpm tpm_vtpm_proxy " Shuo Zhao
2025-01-24  9:21   ` Yanteng Si
2025-01-23  5:17 ` [PATCH v3 6/7] docs/zh_CN: Add tpm xen-tpmfront " Shuo Zhao
2025-01-24  9:23   ` Yanteng Si
2025-01-23  5:17 ` [PATCH v3 7/7] docs/zh_CN: Add tpm tpm_ftpm_tee " Shuo Zhao
2025-01-24  9:24   ` Yanteng Si
2025-02-04 16:54 ` [PATCH v3 0/7] Add all Chinese translations in the tpm directory Jonathan Corbet

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=02ff0851-1db6-4b42-8a48-334830144ca7@linux.dev \
    --to=si.yanteng@linux.dev \
    --cc=alexs@kernel.org \
    --cc=corbet@lwn.net \
    --cc=linux-doc@vger.kernel.org \
    --cc=maoyuxian@cqsoftware.com.cn \
    --cc=zhangwei@cqsoftware.com.cn \
    --cc=zhaoshuo@cqsoftware.com.cn \
    --cc=zhaoyuehui@cqsoftware.com.cn \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).