Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[202405][Rebase&&FF] Everything MS Changes #311

Merged
merged 12 commits into from
Aug 10, 2024
Merged

[202405][Rebase&&FF] Everything MS Changes #311

merged 12 commits into from
Aug 10, 2024

Commits on Aug 10, 2024

  1. SecurityPkg: Comment out print indicating rebooting the system after 

    TPM2 changes
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    fecb34c View commit details
    Browse the repository at this point in the history

  2. SecurityPkg: Update DSC to include additional libraries and PCDs 

    Adds the following:
    + SecurityPkg/Library/DxeTpmMeasurementLib/DxeTpmMeasurementLib.inf
    + SecurityPkg/Library/PlatformSecureLibNull/PlatformSecureLibNull.inf
    + SecurityPkg/Library/Tcg2PpVendorLibNull/Tcg2PpVendorLibNull.inf
    + SecurityPkg/Library/TcgPpVendorLibNull/TcgPpVendorLibNull.inf
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    14e14eb View commit details
    Browse the repository at this point in the history

  3. SecurityPkg: Add Debug Message to show the TPM2 PCR bank info 

    Add a debug message to show the TPM2 PCR bank info in Tcg2Dxe.
Prints out both the TpmHashalgorithmBitmap and the Pcr banks.
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    ed5f6c7 View commit details
    Browse the repository at this point in the history

  4. SecurityPkg: Check for Tpm2GetCapabilitySupportedAndActivePcrs() 

    This replaces a assert for a proper runtime check for the status of
Tpm2GetCapabilitySupportedAndActivePcrs()
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    5bcabe1 View commit details
    Browse the repository at this point in the history

  5. SecurityPkg: Add support for checking if hash algorithms are supported 

    This commit adds support to Tpm2Help.c to query the TPM for supported
hash algorithms.
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    d3ab135 View commit details
    Browse the repository at this point in the history

  6. SecurityPkg: Create Tcg2PreUefiEventLogLib interface 

    This change describes the interface that should be published by
instances of the Tcg2PreUefiEventLogLib. This library can be used
to publish TPM EventLog entries for measurements that may have been
made prior to driver initialization
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    66dd5fd View commit details
    Browse the repository at this point in the history

  7. SecurityPkg: Do not allow SecureBootEnable to override mPlatformMode 

    Ensures that if SecureBootEnable is found and mPlatformMode is USER_MODE
that SecureBootEnable == SECURE_BOOT_MODE_ENABLE.
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    4922cf6 View commit details
    Browse the repository at this point in the history

  8. SecurityPkg: Use helper function to display confirmation dialog 

    The code to display the confirmation dialog is moved to a helper function
to make the code more readable and maintainable. This is for
DxeTcg2PhysicalPresenceLib.
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    a598db7 View commit details
    Browse the repository at this point in the history

  9. SecurityPkg: Do not allow Flags to bypass confirmation in Production 

    Adds a flag to disable TCG2 flags from bypassing confirmation in
production mode.
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    a486470 View commit details
    Browse the repository at this point in the history

  10. SecurityPkg: Disable physical presence in production mode

    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    e0a5cb0 View commit details
    Browse the repository at this point in the history

  11. SecurityPkg: Make TPM2_Startup() return an error 

    The TPM2_Startup() function is called in the Tcg2Pei driver to start the
TPM. The function is expected to return an error if the TPM is not in
the correct state.
    @Flickdm
    Bret Barkelew authored and Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    699235c View commit details
    Browse the repository at this point in the history

  12. SecurityPkg: Override change for DxeTcg2PhysicalPresenceLib.inf 

    Since the commit:

"SecurityPkg: Do not allow Flags to bypass confirmation in Production"

modified DxeTcg2PhysicalPresenceLib.inf the override in
DxeTcg2PhysicalPresenceMinimumLib.inf needs to be updated to reflect the
changes.
    @Flickdm
    Flickdm committed Aug 10, 2024
    Configuration menu
    Copy the full SHA
    b542b90 View commit details
    Browse the repository at this point in the history