Received: by 2002:ab2:6a05:0:b0:1f8:1780:a4ed with SMTP id w5csp873022lqo;
        Fri, 10 May 2024 19:57:51 -0700 (PDT)
X-Forwarded-Encrypted: i=3; AJvYcCX2aDvdo2DNCWgxX83WhStWPiGXQL1QUAmOzNJF0NfPCcLFY2g/+/A6GttK/Dp8HuPupuvC68MUgdwBMwdIySWLcNUFH4IS8hVA2QjEfw==
X-Google-Smtp-Source: AGHT+IHnHUwp4YhMx4Z0vedNfrfNJ/ezSZnDt5heBm34nwRVgXUwFB/4GjP/ZgWTD6a96I7aXsIP
X-Received: by 2002:a05:620a:204c:b0:792:9248:c2e9 with SMTP id af79cd13be357-792c75f4506mr500679985a.48.1715396271111;
        Fri, 10 May 2024 19:57:51 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1715396271; cv=pass;
        d=google.com; s=arc-20160816;
        b=yUkI+M9evDV2t9B3CgZ0LJfFNDZtkDG4Hi9Olf5wmbJj+UYapSK73LFKPOlu9BRSIX
         0O+UV5zrvcNFXYZFOT8iLELh1pvdr/a5LUzZ9QYJigOVdRrW1CoETrnMD0Lgm2h//RZe
         6Y9HmgPHqnX/WEV4KwBdcTBimdqutNhrzg9OQgRiXQoCmQrsacPuc/1DCfdR81o99Mbg
         9XjSBlAv//QLKR6GnpukndDzIzEVtOQVwuQ0TjNqYkN38SyME8tk5UbEQlUmtVmLkVDj
         kF6EA6PKJWubmVMj9yzm3dsHNMBR2AFkYHKmR9sAvMCye67X3qFVv8iGoYyejTBu/Jqm
         Bcrg==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:mime-version:list-unsubscribe
         :list-subscribe:list-id:precedence:user-agent:references:in-reply-to
         :date:cc:to:from:subject:message-id:dkim-signature:dkim-signature;
        bh=ZHmpK8mnPtZX1au2bU69MBDg8tExoSP5Jdox6sJ/qlA=;
        fh=tmdEGzPD3TgmbyfY7aSbTltgb5l/CNxbGovto9gFFe0=;
        b=fKBhaQRjTFx0txFCz7Tz+blICYIvt/Gjj8oWWjbW8P6P9CztXOKjHgKL3TuCiiph71
         Z8ae0+eRCGHKLBNi/77NvF7aMJ3dvqMjNBCasuTzgH7qWWqRxnzkzmlmKO4FU30G8tBY
         ftEb6xnpUMKueAzWdeLOX0w9HLlvlfYy2I6IkOetPX+sNzU9oRECjbM9Gq3Jh+k6uykt
         7LOYJVYp0HPV/qR7jbyPaCyy3N759oxxuxnwb5wX8g33Tk+PndlXz6ZqIC3CA5uKQrPi
         MgGtHtDiNkAmP+0G0TNfnf2jXb4lnf8DY0mSF3ktyTC5sXrlwsMDB5TE42TQNEUvMWDO
         eusQ==;
        dara=google.com
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@hansenpartnership.com header.s=20151216 header.b=ZxImCP11;
       dkim=pass header.i=@hansenpartnership.com header.s=20151216 header.b=XDSyHVnG;
       arc=pass (i=1 spf=pass spfdomain=hansenpartnership.com dkim=pass dkdomain=hansenpartnership.com dkim=pass dkdomain=hansenpartnership.com dmarc=pass fromdomain=hansenpartnership.com);
       spf=pass (google.com: domain of linux-kernel+bounces-176399-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-176399-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=hansenpartnership.com
Return-Path: <linux-kernel+bounces-176399-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223])
        by mx.google.com with ESMTPS id af79cd13be357-792bf336c13si482733685a.420.2024.05.10.19.57.50
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Fri, 10 May 2024 19:57:51 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-176399-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@hansenpartnership.com header.s=20151216 header.b=ZxImCP11;
       dkim=pass header.i=@hansenpartnership.com header.s=20151216 header.b=XDSyHVnG;
       arc=pass (i=1 spf=pass spfdomain=hansenpartnership.com dkim=pass dkdomain=hansenpartnership.com dkim=pass dkdomain=hansenpartnership.com dmarc=pass fromdomain=hansenpartnership.com);
       spf=pass (google.com: domain of linux-kernel+bounces-176399-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-176399-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=hansenpartnership.com
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by ny.mirrors.kernel.org (Postfix) with ESMTPS id C4B351C21456
	for <linux.lists.archive@gmail.com>; Sat, 11 May 2024 02:57:50 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 8BB6524B29;
	Sat, 11 May 2024 02:57:43 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=hansenpartnership.com header.i=@hansenpartnership.com header.b="ZxImCP11";
	dkim=pass (1024-bit key) header.d=hansenpartnership.com header.i=@hansenpartnership.com header.b="XDSyHVnG"
Received: from bedivere.hansenpartnership.com (bedivere.hansenpartnership.com [96.44.175.130])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id F3F8279FD;
	Sat, 11 May 2024 02:57:40 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=96.44.175.130
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715396262; cv=none; b=I4uIIwNZkj0ZVi+el5eMAvUej7t0bvtuS/cGhMAN9Yb05+7WGshxl31zFUHTfihcb+498xt69UR1RbqpX/+lL61VefoV4Ez7BaeK6HwNwuL3MXwNOylu/GA6kMNPCJFN/MGVN+m5ExijbLK9xIoE3LeC/KIYXlKa3701RgH059E=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715396262; c=relaxed/simple;
	bh=Ci/8eci8d+aYYXQPBBV+0M5SEyZvy7co+xzrCKJ/N7s=;
	h=Message-ID:Subject:From:To:Cc:Date:In-Reply-To:References:
	 Content-Type:MIME-Version; b=Fe40iBZ0XYFimllzxVLBzltZKnu6VIRsvMZ87LYAT4fGH8+evQjrrQXh/0nc9DZkeRdL5HwWwZ1M+hKn+WNpNCLYAs7ORuB/1W0rOamtwiAb0+7LD9rXLeMFK1oIfECZ+56Hp64qfnjChUhYPEmiiDXRUfthNewCRQ3F+SDTOcU=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=HansenPartnership.com; spf=pass smtp.mailfrom=HansenPartnership.com; dkim=pass (1024-bit key) header.d=hansenpartnership.com header.i=@hansenpartnership.com header.b=ZxImCP11; dkim=pass (1024-bit key) header.d=hansenpartnership.com header.i=@hansenpartnership.com header.b=XDSyHVnG; arc=none smtp.client-ip=96.44.175.130
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=HansenPartnership.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=HansenPartnership.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
	d=hansenpartnership.com; s=20151216; t=1715396260;
	bh=Ci/8eci8d+aYYXQPBBV+0M5SEyZvy7co+xzrCKJ/N7s=;
	h=Message-ID:Subject:From:To:Date:In-Reply-To:References:From;
	b=ZxImCP11L+/TuCyBzZ9OMqKVaBuVbsJqXLxWIjoHAxX4Hx8Ekqi/XxTtz6bNTpokf
	 Z8eBYh32RueBzTnAMEqpv3CII3AFG2OM4OWYxLZA3NbRjG4RY7MBKxiOE1iL24mjp9
	 xuR2RG3N0dBXCw3l8Ix6ERLY+YivPOnPituXkgAw=
Received: from localhost (localhost [127.0.0.1])
	by bedivere.hansenpartnership.com (Postfix) with ESMTP id 2D5521287DB3;
	Fri, 10 May 2024 22:57:40 -0400 (EDT)
Received: from bedivere.hansenpartnership.com ([127.0.0.1])
 by localhost (bedivere.hansenpartnership.com [127.0.0.1]) (amavis, port 10024)
 with ESMTP id Ag4CuZiUsEnf; Fri, 10 May 2024 22:57:40 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
	d=hansenpartnership.com; s=20151216; t=1715396259;
	bh=Ci/8eci8d+aYYXQPBBV+0M5SEyZvy7co+xzrCKJ/N7s=;
	h=Message-ID:Subject:From:To:Date:In-Reply-To:References:From;
	b=XDSyHVnGGpdn1My9eUuEYCPnpw5jvhRETX0ye2EAEYawg96cmprmz2XBNvxQIompr
	 vV+tI65u9ApfXmYiPgILazcv7q6fQy4AaoJXvg3vcQBOXegkBSdJGuVN1MhXJ8tyUG
	 p9xUF/g3dnK3vUyPxyo0BWYexB1W3AD9dTCoZB+E=
Received: from lingrow.int.hansenpartnership.com (unknown [IPv6:2601:5c4:4302:c21::a774])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
	(Client did not present a certificate)
	by bedivere.hansenpartnership.com (Postfix) with ESMTPSA id F1E691287DA5;
	Fri, 10 May 2024 22:57:38 -0400 (EDT)
Message-ID: <ec7edddcf8c74e48cb392db0789b03243ab05692.camel@HansenPartnership.com>
Subject: Re: [RFC PATCH v2 4/4] tsm: Allow for extending and reading
 configured RTMRs
From: James Bottomley <James.Bottomley@HansenPartnership.com>
To: Samuel Ortiz <sameo@rivosinc.com>, Dan Williams
 <dan.j.williams@intel.com>
Cc: Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com>,
  Qinkun Bao <qinkun@google.com>, "Yao, Jiewen" <jiewen.yao@intel.com>,
 "Xing, Cedric" <cedric.xing@intel.com>, Dionna Amalie Glaze
 <dionnaglaze@google.com>,  biao.lu@intel.com, linux-coco@lists.linux.dev,
 linux-integrity@vger.kernel.org,  linux-kernel@vger.kernel.org
Date: Fri, 10 May 2024 22:57:37 -0400
In-Reply-To: <20240128212532.2754325-5-sameo@rivosinc.com>
References: <20240128212532.2754325-1-sameo@rivosinc.com>
	 <20240128212532.2754325-5-sameo@rivosinc.com>
Content-Type: text/plain; charset="UTF-8"
User-Agent: Evolution 3.42.4 
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit

I'm not really sure where to hang this, since there's no posted agenda
or materials for the CCC meeting today.  I'm afraid I also don't have a
copy of the presentation to point people who weren't at the meeting to.
However, it struck me you missed a third option: use the ima log
format.  This has the advantage that we can define additional events
and have them published with a kernel patch (the IMA log format is
defined in the kernel).  Thanks to the TCG, it's also CEL compatible
but doesn't require any sort of TCG blessing of the events.  Plus we
also have existing kernel infrastructure to log to that format.

Regards,

James