From patchwork Wed May 12 11:32:25 2021
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Masahisa Kojima <masahisa.kojima@linaro.org>
X-Patchwork-Id: 435505
Delivered-To: patch@linaro.org
Received: by 2002:a02:c901:0:0:0:0:0 with SMTP id t1csp4737481jao;
 Wed, 12 May 2021 04:32:46 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxiEDBLvovYOK87SAzRcxI7RXKTlR6Dm8jN+UG2KRBZzGLIqAFT0qgH6RjNDab+1HsA6pui
X-Received: by 2002:a05:6402:1c0b:: with SMTP id
 ck11mr42721725edb.264.1620819165977; 
 Wed, 12 May 2021 04:32:45 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1620819165; cv=none;
 d=google.com; s=arc-20160816;
 b=WFb4kV0aPhEWniDlQegLRu8N5C5EhfE7CgouY2itzr3QtGlIHu10VVxySveFvkjueB
 Q/h8PS1rsQM4qhf7w9eWHnullcKOzIh3xvQzwwiwjX9Njqa3VLvhp8Eoi/H45lW1HuQp
 c5AS43+Ons4lhoAA+G3o74hddmxJhFhNQ1PBymPCV43LvEfvAQ2bm0SEIpYsO/GA/jCd
 jh27kOQpMcZqfNdUkuBg/rsZf+D+TclcfaEcNZOiyrUlY4IxBPFLi0XHZbUl4xdNDDcE
 WErDLXVR9eMjtm4HlnSv+Jf7l/ag2us+In0DasVDljkUTzNmIEPmWnBWyuOCL6Jji2EO
 ebLQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
 s=arc-20160816; 
 h=sender:errors-to:list-subscribe:list-help:list-post:list-archive
 :list-unsubscribe:list-id:precedence:message-id:date:subject:cc:to
 :from:dkim-signature;
 bh=7nmxcP/DEmP13h0JC3Q6C6B2k0VR4Ykaq2n36vQWqcc=;
 b=WOcEHKcs5VEIePnSTcmqWiGJg7vkVAfyiJN+ix8kRckKXy3lFKmuvh5Vrwii1SPBuO
 963l5cmaI94vnsXd/CyhduGj6U7Ng2DfptyNJLPGmY9EzELFwQgaWyiNdfUtFs9xZFZV
 51Ewa3EFLfXUDzlYXAEjoFwKVD6tdnV8QL7qXdSa6XFfOG5tFEoYcI1ci4LVyMnGocyn
 uk1DPGWJgkYpSD4kFiiG1bnyRbbqkh7o5ixovN2L5Kxncw5rHVgMDp6lRTA5dXm3Vm3x
 8aEQXUSHmfTabbxVfdr40pf0Q6d7Nmhlo2z2F0I/CT6e9jLfqs8XUUc6nsg3kQVOM6n2
 Bbow==
ARC-Authentication-Results: i=1; mx.google.com;
 dkim=pass header.i=@linaro.org header.s=google header.b=RQBvRcgT;
 spf=pass (google.com: domain of u-boot-bounces@lists.denx.de
 designates 85.214.62.61 as permitted sender)
 smtp.mailfrom=u-boot-bounces@lists.denx.de; 
 dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Return-Path: <u-boot-bounces@lists.denx.de>
Received: from phobos.denx.de (phobos.denx.de. [85.214.62.61])
 by mx.google.com with ESMTPS id
 g15si8406635edb.474.2021.05.12.04.32.45
 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
 Wed, 12 May 2021 04:32:45 -0700 (PDT)
Received-SPF: pass (google.com: domain of u-boot-bounces@lists.denx.de
 designates 85.214.62.61 as permitted sender)
 client-ip=85.214.62.61; 
Authentication-Results: mx.google.com;
 dkim=pass header.i=@linaro.org header.s=google header.b=RQBvRcgT;
 spf=pass (google.com: domain of u-boot-bounces@lists.denx.de
 designates 85.214.62.61 as permitted sender)
 smtp.mailfrom=u-boot-bounces@lists.denx.de; 
 dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Received: from h2850616.stratoserver.net (localhost [IPv6:::1])
 by phobos.denx.de (Postfix) with ESMTP id AA99A81CE7;
 Wed, 12 May 2021 13:32:44 +0200 (CEST)
Authentication-Results: phobos.denx.de;
 dmarc=pass (p=none dis=none) header.from=linaro.org
Authentication-Results: phobos.denx.de;
 spf=pass smtp.mailfrom=u-boot-bounces@lists.denx.de
Authentication-Results: phobos.denx.de; dkim=pass (2048-bit key;
 unprotected) header.d=linaro.org header.i=@linaro.org
 header.b="RQBvRcgT"; dkim-atps=neutral
Received: by phobos.denx.de (Postfix, from userid 109)
 id 75A9382604; Wed, 12 May 2021 13:32:43 +0200 (CEST)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on phobos.denx.de
X-Spam-Level: 
X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,DKIM_SIGNED,
 DKIM_VALID,DKIM_VALID_AU,SPF_HELO_NONE autolearn=ham
 autolearn_force=no version=3.4.2
Received: from mail-pj1-x1036.google.com (mail-pj1-x1036.google.com
 [IPv6:2607:f8b0:4864:20::1036])
 (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits))
 (No client certificate requested)
 by phobos.denx.de (Postfix) with ESMTPS id 49D3281CE7
 for <u-boot@lists.denx.de>; Wed, 12 May 2021 13:32:40 +0200 (CEST)
Authentication-Results: phobos.denx.de;
 dmarc=pass (p=none dis=none) header.from=linaro.org
Authentication-Results: phobos.denx.de;
 spf=pass smtp.mailfrom=masahisa.kojima@linaro.org
Received: by mail-pj1-x1036.google.com with SMTP id p17so13362181pjz.3
 for <u-boot@lists.denx.de>; Wed, 12 May 2021 04:32:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; 
 h=from:to:cc:subject:date:message-id;
 bh=7nmxcP/DEmP13h0JC3Q6C6B2k0VR4Ykaq2n36vQWqcc=;
 b=RQBvRcgTvgzy8DTmI87IoL0t96+6gk0rK57l0MLg/IxnYUamoKTNc7ujf383S6T64x
 bfghp0YeFBUFXnuIsawKDD+7b4zBi14ENivis6aCWt1JyAqKNAWzbIQ31W1iXN2xcWx5
 7onxxjVp4qNW7H9VqjfJnGoImTO7ifqBpNYryPi+f6Tihwsv2LHPschoNwqVnMW8HueQ
 1N4wV+qyaOs6mLr99g2Oy97npK7DmgZZyjVDJ/IhvxB3qglePTL+xno68oT8Wr6IGQdE
 HqTK9Z9LazZpglB0gmSNnRmKP8TUHExB5y70Dqa89Jve1KgY3sPYo4+OCxfo1KV7/TPz
 rBvA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:cc:subject:date:message-id;
 bh=7nmxcP/DEmP13h0JC3Q6C6B2k0VR4Ykaq2n36vQWqcc=;
 b=TsOUaGE+eHJ7e9PjTaY4ax+UJCFl6HWXlkksZo6vV1H8Fie+D65XB0pV7yJKDG2tWX
 7o84CcgCBj6Pta5viOkOGv8JOgdgPwkQqCci6+M+dIkoMU0GyWEU9vfLo1VfJ80A112/
 jRgHsSLfITq7Q3x8CABo2APlSO7L0fb+4I2piXKuaxdo1BUUmV2OJYkFHZwuExAqqrtF
 T6RAN8bFeykKpVrrab3icsL3kz6i5Zu+9TGms2XyVWikzsZRGkjFFBH0Dp4Dk88lOHNd
 Yx2uUTHA/I/h5vAVr6DpjrzqpuNe/DSJakUrjuRVPVgFl9yYwpAw2Pw/b3cxBpzxXIxc
 ze3A==
X-Gm-Message-State: AOAM531eH6A2K6zPj2AuifGGeSDwtX9fc70vNy5E8TA0XWPQs6r9Twsj
 OPZ1t/YF34IhppsHZbHfl8Zc0Q==
X-Received: by 2002:a17:902:f284:b029:ed:1840:5cad with SMTP id
 k4-20020a170902f284b02900ed18405cadmr34481664plc.34.1620819158444; 
 Wed, 12 May 2021 04:32:38 -0700 (PDT)
Received: from localhost.localdomain ([2400:2411:502:a100:82fa:5bff:fe4b:26b1])
 by smtp.gmail.com with ESMTPSA id
 in16sm16654918pjb.14.2021.05.12.04.32.35
 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
 Wed, 12 May 2021 04:32:37 -0700 (PDT)
From: Masahisa Kojima <masahisa.kojima@linaro.org>
To: Heinrich Schuchardt <xypron.glpk@gmx.de>
Cc: Alexander Graf <agraf@csgraf.de>, Simon Glass <sjg@chromium.org>,
 Ilias Apalodimas <ilias.apalodimas@linaro.org>,
 Masahisa Kojima <masahisa.kojima@linaro.org>,
 Dhananjay Phadke <dphadke@linux.microsoft.com>,
 Takahiro Akashi <takahiro.akashi@linaro.org>, u-boot@lists.denx.de
Subject: [PATCH v5 0/3] PE/COFF measurement support
Date: Wed, 12 May 2021 20:32:25 +0900
Message-Id: <20210512113228.29354-1-masahisa.kojima@linaro.org>
X-Mailer: git-send-email 2.17.1
X-BeenThere: u-boot@lists.denx.de
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: U-Boot discussion <u-boot.lists.denx.de>
List-Unsubscribe: <https://lists.denx.de/options/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=unsubscribe>
List-Archive: <https://lists.denx.de/pipermail/u-boot/>
List-Post: <mailto:u-boot@lists.denx.de>
List-Help: <mailto:u-boot-request@lists.denx.de?subject=help>
List-Subscribe: <https://lists.denx.de/listinfo/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=subscribe>
Errors-To: u-boot-bounces@lists.denx.de
Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
X-Virus-Scanned: clamav-milter 0.102.4 at phobos.denx.de
X-Virus-Status: Clean

This patch series add the PE/COFF measurement support.
Extending PCR and Event Log is tested with fTPM
running as a OP-TEE TA.
Unit test will be added in the separate series.

Masahisa Kojima (3):
  efi_loader: expose efi_image_parse() even if UEFI Secure Boot is
    disabled
  efi_loader: add PE/COFF image measurement
  efi_loader: add FIT_SIGNATURE option to use hash_calculate()

 include/efi_loader.h              |   6 +
 include/efi_tcg2.h                |   9 ++
 include/tpm-v2.h                  |  18 +++
 lib/efi_loader/Kconfig            |   9 ++
 lib/efi_loader/Makefile           |   2 +-
 lib/efi_loader/efi_image_loader.c | 123 +++++++++++++++---
 lib/efi_loader/efi_signature.c    |  67 +---------
 lib/efi_loader/efi_tcg2.c         | 207 ++++++++++++++++++++++++++++--
 lib/efi_loader/efi_var_common.c   |   3 +
 9 files changed, 352 insertions(+), 92 deletions(-)

-- 
2.17.1