Received: by 2002:a25:6193:0:0:0:0:0 with SMTP id v141csp548864ybb; Wed, 1 Apr 2020 05:21:10 -0700 (PDT) X-Google-Smtp-Source: ADFU+vtBn0cv4jGuC8+95E+rxk4BrCyTsiJdn092YHMA3rKsLOl8J6J4eMfwVqQWNUntLYuzzdfm X-Received: by 2002:a05:6830:1c77:: with SMTP id s23mr17143251otg.191.1585743670513; Wed, 01 Apr 2020 05:21:10 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1585743670; cv=none; d=google.com; s=arc-20160816; b=zGC2Uu2/Y5eo+WIHnh9xVdW/+c1u4cHCKr0wDiuzC6pggaxMsCvDRJvYn/RCUB5dKZ p8+JDTX+4CRE+61K9P8kICBrTimNoN5I3ftsCoOdeUK1rIl/5+5CrYnr1bNtZcJ334gc 6LWWPo/regB/BitlcD8ub9PY+soQJHFS5LUMXx0u16vVWDSCtcFXCidlnbU9Atow6dxx jzvmB5pR+3jsDQvqslvY5U2Akkvix+ioprNDFtighnf/kQNvjJ0RY4rpwsG6LJ0Vyu7+ vDlAfqLLWCstFLdMKBMUVnn0jymUfH8IhHXEsEcPoYKJeANZvtZ+AHyX0l3NVGaCvXTh EHbA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject; bh=DYTF/iYs6irXyneL+QtEkdRgseCtgOxEnYs92IYIYrI=; b=Ec9OCYicfKrzEf2J1EcedVaHS9+w7dBzRHauclsVbeV8PwUbbc88igZc3l57kdOVbW 0XUBkvZwUAzTpGagAdpvB/Ja7734mJUvfYWerawvhPbRy2brP15jRIfrFNHC3I4nbOPe RT7zdXA/HL63tfMYC+72GC8Dap7fUZiRcvVnq4XFGx9437z/OSq7+yZONbDEmFgqBo80 AY+Oo6pFefgKCi082l1xqzHYnjRPYBP/Ko82dUER4q+XzrytrA7AyDj7mt/O3qgE7T1j QxdTRaS1QbF+05CiyE+TgaO5iphEybnIJ2Tf1AGW65cNRi9ab9yl6JHYfauuXdBRAPzq vHrw== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i14si824978otk.123.2020.04.01.05.20.57; Wed, 01 Apr 2020 05:21:10 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1732454AbgDAMUf (ORCPT + 99 others); Wed, 1 Apr 2020 08:20:35 -0400 Received: from mx0b-001b2d01.pphosted.com ([148.163.158.5]:51434 "EHLO mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S1732169AbgDAMUf (ORCPT ); Wed, 1 Apr 2020 08:20:35 -0400 Received: from pps.filterd (m0098414.ppops.net [127.0.0.1]) by mx0b-001b2d01.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 031C3iJE093997; Wed, 1 Apr 2020 08:20:32 -0400 Received: from ppma03dal.us.ibm.com (b.bd.3ea9.ip4.static.sl-reverse.com [169.62.189.11]) by mx0b-001b2d01.pphosted.com with ESMTP id 304h3w8mjw-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 01 Apr 2020 08:20:31 -0400 Received: from pps.filterd (ppma03dal.us.ibm.com [127.0.0.1]) by ppma03dal.us.ibm.com (8.16.0.27/8.16.0.27) with SMTP id 031CJkai024028; Wed, 1 Apr 2020 12:20:31 GMT Received: from b03cxnp07028.gho.boulder.ibm.com (b03cxnp07028.gho.boulder.ibm.com [9.17.130.15]) by ppma03dal.us.ibm.com with ESMTP id 301x77rxtp-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 01 Apr 2020 12:20:31 +0000 Received: from b03ledav003.gho.boulder.ibm.com (b03ledav003.gho.boulder.ibm.com [9.17.130.234]) by b03cxnp07028.gho.boulder.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id 031CKU9K44499426 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 1 Apr 2020 12:20:30 GMT Received: from b03ledav003.gho.boulder.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 0A3626A05A; Wed, 1 Apr 2020 12:20:30 +0000 (GMT) Received: from b03ledav003.gho.boulder.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 4D2696A047; Wed, 1 Apr 2020 12:20:28 +0000 (GMT) Received: from sbct-3.pok.ibm.com (unknown [9.47.158.153]) by b03ledav003.gho.boulder.ibm.com (Postfix) with ESMTP; Wed, 1 Apr 2020 12:20:28 +0000 (GMT) Subject: Re: [PATCH v3] tpm: Add support for event log pointer found in TPM2 ACPI table To: Jarkko Sakkinen , Stefan Berger Cc: linux-integrity@vger.kernel.org, linux-kernel@vger.kernel.org, linux-security-module@vger.kernel.org References: <20200331215100.883860-1-stefanb@linux.vnet.ibm.com> <20200401084913.GF17325@linux.intel.com> From: Stefan Berger Message-ID: <06477336-7ca0-1c72-6881-e443e922a01b@linux.ibm.com> Date: Wed, 1 Apr 2020 08:20:28 -0400 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.4.1 MIME-Version: 1.0 In-Reply-To: <20200401084913.GF17325@linux.intel.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US X-TM-AS-GCONF: 00 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138,18.0.676 definitions=2020-04-01_01:2020-03-31,2020-03-31 signatures=0 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 malwarescore=0 bulkscore=0 phishscore=0 adultscore=0 priorityscore=1501 lowpriorityscore=0 mlxlogscore=999 suspectscore=0 spamscore=0 clxscore=1015 mlxscore=0 impostorscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2003020000 definitions=main-2004010109 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 4/1/20 4:49 AM, Jarkko Sakkinen wrote: > On Tue, Mar 31, 2020 at 05:51:00PM -0400, Stefan Berger wrote: >> From: Stefan Berger >> >> In case a TPM2 is attached, search for a TPM2 ACPI table when trying >> to get the event log from ACPI. If one is found, use it to get the >> start and length of the log area. This allows non-UEFI systems, such >> as SeaBIOS, to pass an event log when using a TPM2. >> >> Signed-off-by: Stefan Berger > Check the kbuild bot complain. I think otherwise this is sustainable. > Thank you. The kbuild bot did this due to the split of the patch series... > > Does stock QEMU have all the support to test this? Yes. You need SeaBIOS.    Stefan > > /Jarkko