From: Masahisa Kojima <masahisa.kojima@linaro.org>
To: Ilias Apalodimas <ilias.apalodimas@linaro.org>
Cc: Heinrich Schuchardt <xypron.glpk@gmx.de>,
Alexander Graf <agraf@csgraf.de>, Simon Glass <sjg@chromium.org>,
Dhananjay Phadke <dphadke@linux.microsoft.com>,
Takahiro Akashi <takahiro.akashi@linaro.org>,
Alexandru Gagniuc <mr.nuke.me@gmail.com>,
u-boot@lists.denx.de
Subject: Re: [PATCH v8 3/3] efi_loader: add PE/COFF image measurement
Date: Tue, 25 May 2021 14:04:07 +0900 [thread overview]
Message-ID: <CADQ0-X_KntR_=uc29WhEwPObSBR14vCyuGTdbqMmBANUvwuYWw@mail.gmail.com> (raw)
In-Reply-To: <YKuh4rlyDRF/jVS9@apalos.home>
On Mon, 24 May 2021 at 21:53, Ilias Apalodimas
<ilias.apalodimas@linaro.org> wrote:
>
> new_efi);
> > +
> > bool efi_image_parse(void *efi, size_t len, struct efi_image_regions **regp,
> > WIN_CERTIFICATE **auth, size_t *auth_len);
> >
> > diff --git a/include/efi_tcg2.h b/include/efi_tcg2.h
> > index 40e241ce31..bcfb98168a 100644
> > --- a/include/efi_tcg2.h
> > +++ b/include/efi_tcg2.h
> > @@ -9,6 +9,7 @@
> > #if !defined _EFI_TCG2_PROTOCOL_H_
> > #define _EFI_TCG2_PROTOCOL_H_
> >
> > +#include <efi_api.h>
> > #include <tpm-v2.h>
> >
> > #define EFI_TCG2_PROTOCOL_GUID \
> > @@ -53,6 +54,14 @@ struct efi_tcg2_event {
> > u8 event[];
> > } __packed;
> >
> > +struct uefi_image_load_event {
> > + efi_physical_addr_t image_location_in_memory;
> > + u64 image_length_in_memory;
> > + u64 image_link_time_address;
> > + u64 length_of_device_path;
> > + struct efi_device_path device_path[];
> > +};
> > +
> > struct efi_tcg2_boot_service_capability {
> > u8 size;
> > struct efi_tcg2_version structure_version;
> > diff --git a/include/tpm-v2.h b/include/tpm-v2.h
> > index 7de7d6a57d..247b386967 100644
> > --- a/include/tpm-v2.h
> > +++ b/include/tpm-v2.h
> > @@ -70,6 +70,24 @@ struct udevice;
> > #define EV_TABLE_OF_DEVICES ((u32)0x0000000B)
> > #define EV_COMPACT_HASH ((u32)0x0000000C)
> >
> > +/*
> > + * event types, cf.
> > + * "TCG PC Client Platform Firmware Profile Specification", Family "2.0"
> > + * rev 1.04, June 3, 2019
> > + */
> > +#define EV_EFI_EVENT_BASE ((u32)0x80000000)
> > +#define EV_EFI_VARIABLE_DRIVER_CONFIG ((u32)0x80000001)
> > +#define EV_EFI_VARIABLE_BOOT ((u32)0x80000002)
> > +#define EV_EFI_BOOT_SERVICES_APPLICATION ((u32)0x80000003)
> > +#define EV_EFI_BOOT_SERVICES_DRIVER ((u32)0x80000004)
> > +#define EV_EFI_RUNTIME_SERVICES_DRIVER ((u32)0x80000005)
> > +#define EV_EFI_GPT_EVENT ((u32)0x80000006)
> > +#define EV_EFI_ACTION ((u32)0x80000007)
> > +#define EV_EFI_PLATFORM_FIRMWARE_BLOB ((u32)0x80000008)
> > +#define EV_EFI_HANDOFF_TABLES ((u32)0x80000009)
> > +#define EV_EFI_HCRTM_EVENT ((u32)0x80000010)
> > +#define EV_EFI_VARIABLE_AUTHORITY ((u32)0x800000E0)
> > +
> > /* TPMS_TAGGED_PROPERTY Structure */
> > struct tpms_tagged_property {
> > u32 property;
> > diff --git a/lib/efi_loader/Kconfig b/lib/efi_loader/Kconfig
> > index 98845b8ba3..0e6200fa25 100644
> > --- a/lib/efi_loader/Kconfig
> > +++ b/lib/efi_loader/Kconfig
> > @@ -309,6 +309,7 @@ config EFI_TCG2_PROTOCOL
> > select SHA512_ALGO
> > select SHA384
> > select SHA512
> > + select HASH_CALCULATE
> > help
> > Provide a EFI_TCG2_PROTOCOL implementation using the TPM hardware
> > of the platform.
> > diff --git a/lib/efi_loader/efi_image_loader.c b/lib/efi_loader/efi_image_loader.c
> > index fe1ee198e2..f37a85e56e 100644
> > --- a/lib/efi_loader/efi_image_loader.c
> > +++ b/lib/efi_loader/efi_image_loader.c
> > @@ -302,6 +302,40 @@ static int cmp_pe_section(const void *arg1, const void *arg2)
> > return 1;
> > }
> >
> > +/**
> > + * efi_prepare_aligned_image() - prepare 8-byte aligned image
> > + * @efi: pointer to the EFI binary
> > + * @efi_size: size of @efi binary
> > + * @new_efi: pointer to the newly allocated image
> > + *
> > + * If @efi is not 8-byte aligned, this function newly allocates
> > + * the image buffer and updates @efi_size.
> > + *
> > + * Return: valid pointer to a image, return NULL if allocation fails.
> > + */
> > +void *efi_prepare_aligned_image(void *efi, u64 *efi_size, void **new_efi)
> > +{
> > + size_t new_efi_size;
> > + void *p;
> > +
> > + /*
> > + * Size must be 8-byte aligned and the trailing bytes must be
> > + * zero'ed. Otherwise hash value may be incorrect.
> > + */
> > + if (!IS_ALIGNED(*efi_size, 8)) {
> > + new_efi_size = ALIGN(*efi_size, 8);
> > + p = calloc(new_efi_size, 1);
> > + if (!p)
> > + return NULL;
> > + memcpy(p, efi, *efi_size);
> > + *efi_size = new_efi_size;
>
> Do we really need new_efi here? I might be missing some context for the
> original code, but since we return the new pointer, can't we just
> use that in the caller? If so the whole void **new_efi is not needed?
new_efi is required.
The caller uses returned pointer, it will be the pointer to the
original efi image or newly allocated buffer. Caller will need new_efi
to free the newly allocated buffer.
>
> > +
>
> [...]
>
> > + ret = __get_active_pcr_banks(&active);
> > + if (ret != EFI_SUCCESS) {
> > + ret = EFI_DEVICE_ERROR;
>
> __get_active_pcr_banks is supposed to return the correct efi_status_t code.
> I don't think we need EFI_DEVICE_ERROR here.
Thank you. I will just use return value of __get_active_pcr_banks().
> + if (!efi_image_parse(efi, efi_size, ®s, &wincerts,
> + &wincerts_len)) {
> + log_err("Parsing PE executable image failed\n");
> + ret = EFI_INVALID_PARAMETER;
> + goto out;
I re-checked TCG spec, if PE/COFF image is corrupted or not understood,
the function shall return EFI_UNSUPPORTED. I will also update.
Thanks,
Masahisa Kojima
>
>
> Thanks!
> /Ilias
next prev parent reply other threads:[~2021-05-25 5:04 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-05-14 0:53 [PATCH v8 0/3] PE/COFF measurement support Masahisa Kojima
2021-05-14 0:53 ` [PATCH v8 1/3] lib: introduce HASH_CALCULATE option Masahisa Kojima
2021-05-24 13:25 ` Heinrich Schuchardt
2021-05-14 0:53 ` [PATCH v8 2/3] efi_loader: expose efi_image_parse() even if UEFI Secure Boot is disabled Masahisa Kojima
2021-05-14 0:53 ` [PATCH v8 3/3] efi_loader: add PE/COFF image measurement Masahisa Kojima
2021-05-24 12:53 ` Ilias Apalodimas
2021-05-25 5:04 ` Masahisa Kojima [this message]
2021-05-25 12:57 ` Heinrich Schuchardt
2021-05-25 13:47 ` Masahisa Kojima
2021-05-26 3:14 ` Masahisa Kojima
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CADQ0-X_KntR_=uc29WhEwPObSBR14vCyuGTdbqMmBANUvwuYWw@mail.gmail.com' \
--to=masahisa.kojima@linaro.org \
--cc=agraf@csgraf.de \
--cc=dphadke@linux.microsoft.com \
--cc=ilias.apalodimas@linaro.org \
--cc=mr.nuke.me@gmail.com \
--cc=sjg@chromium.org \
--cc=takahiro.akashi@linaro.org \
--cc=u-boot@lists.denx.de \
--cc=xypron.glpk@gmx.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.