[edk2-devel] [PATCH v2 5/6] Uefipayloadpkg Enable TPM measured boot

From: Subash Lakkimsetti Update the packages to support TPM and measured boot in uefi payload. Measured boot can be controlled using flag MEASURED_BOOT_ENABLE. Cc: Guo Dong Cc: Ray Ni Cc: Sean Rhodes Cc: James Lu Cc: Gua Guo Signed-off-by: Subash Lakkimsetti --- UefiPayloadPkg

[edk2-devel] [PATCH v2 4/6] UefiPayloadPkg: Add secure boot configurations

From: Subash Lakkimsetti Add the required modules for secure boot in UefiPayloadPkg. SECURE_BOOT_ENABLE flag added to control the secure boot feature. Security modules are added as seperate FV. Cc: Guo Dong Cc: Ray Ni Cc: Sean Rhodes Cc: James Lu Cc: Gua Guo Signed-off-by: Subash

[edk2-devel] [PATCH v2 6/6] UefiPayloadPkg: Add secure boot definitions to ci build

From: Subash Lakkimsetti Define the build flags for secure boot and measure boot for ci builds Cc: Guo Dong Cc: Ray Ni Cc: Sean Rhodes Cc: James Lu Cc: Gua Guo Signed-off-by: Subash Lakkimsetti --- UefiPayloadPkg/UefiPayloadPkg.ci.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git

[edk2-devel] [PATCH v2 2/6] UefiPayloadPkg: Add secureboot information HOBs

From: Subash Lakkimsetti This patch add the HOB fpr secure and measured boot information. This is populated by bootloader phase and uefipayload pkg uses this info to sync the TPM info PCDs. Cc: Guo Dong Cc: Ray Ni Cc: Sean Rhodes Cc: James Lu Cc: Gua Guo Signed-off-by: Subash Lakkimsetti

[edk2-devel] [PATCH v2 3/6] UefiPayloadPkg: Uninstall the TPM2 ACPI if present

From: Subash Lakkimsetti Bootloader supports multiple payload and TPM2 ACPI tables are updated at bootloader phase. When UEFI is used payload these will be duplicates. The tables are to be uninstalled before updating the TCG2ACPI tables to avoid duplicates. Cc: Guo Dong Cc: Ray Ni Cc: Sean

[edk2-devel] [PATCH v2 1/6] MdeModulePkg: universal payload HOB for secure boot info

From: Subash Lakkimsetti Add the hob structure header for universal payload for secure boot and measure boot information from bootloaders. Universal payload spec definied at https://universalscalablefirmware.github.io/documentation/2_universal_payload.html Cc: Zhiguang Liu Cc: Ray Ni Cc: Gua

[edk2-devel] [PATCH v2 0/6] Universal payload secure boot and measured boot

From: Subash Lakkimsetti Support added in universal payload to enable secure boot and measured boot Hob structure header for universal payload for secure boot and measure boot information from bootloaders as per the universal payload spec defined at https://universalscalablefirmware.github.io

Re: [edk2-devel] [PATCH v1 3/6] TGC2ACPI: Uninstall the TPM2 ACPI if present

Qi1 ; Kumar, Rahul R Subject: RE: [edk2-devel] [PATCH v1 3/6] TGC2ACPI: Uninstall the TPM2 ACPI if present Question: Why not uninstall it in the universal payload package? or even not populate it? > -Original Message- > From: devel@edk2.groups.io On Behalf Of Subash > Lakki

[edk2-devel] [PATCH v1 2/6] UefiPayloadPkg: Add secureboot information HOBs

From: Subash Lakkimsetti This patch add the HOB fpr secure and measured boot information. This is populated by bootloader phase and uefipayload pkg uses this info to sync the TPM info PCDs. Cc: Guo Dong Cc: Ray Ni Cc: Sean Rhodes Cc: James Lu Cc: Gua Guo Signed-off-by: Subash Lakkimsetti

[edk2-devel] [PATCH v1 6/6] UefiPayloadPkg: Add secure boot definitions to ci build

From: Subash Lakkimsetti Define the build flags for secure boot and measure boot for ci builds Signed-off-by: Subash Lakkimsetti --- UefiPayloadPkg/UefiPayloadPkg.ci.yaml | 4 1 file changed, 4 insertions(+) diff --git a/UefiPayloadPkg/UefiPayloadPkg.ci.yaml b/UefiPayloadPkg

[edk2-devel] [PATCH v1 3/6] TGC2ACPI: Uninstall the TPM2 ACPI if present

From: Subash Lakkimsetti Bootloader supports multiple payload and TPM2 ACPI tables are updated at bootloader phase. When UEFI is used payload these will be duplicates. The tables are to be uninstalled before updating the TCG2ACPI tables to avoid duplicates. Cc: Qi Zhang Cc: Rahul Kumar Signed

[edk2-devel] [PATCH v1 5/6] Uefipayloadpkg Enable TPM measured boot

From: Subash Lakkimsetti Update the packages to support TPM and measured boot in uefi payload. Measured boot can be controoled using flag MEASURED_BOOT_ENABLE Cc: Guo Dong Cc: Ray Ni Cc: Sean Rhodes Cc: James Lu Cc: Gua Guo Signed-off-by: Patrick Rudolph Signed-off-by: Subash Lakkimsetti

[edk2-devel] [PATCH v1 0/6] Universal payload secure boot and measured boot

From: Subash Lakkimsetti Support added in universal payload to enable secure boot and measured boot Hob structure header for universal payload for secure boot and measure boot information from bootloaders as per the universal payload spec defined at https://universalscalablefirmware.github.io

[edk2-devel] [PATCH v1 4/6] UefiPayloadPkg: Add secure boot configurations

From: Subash Lakkimsetti Add the required modules for secure boot in UefiPayloadPkg. SECURE_BOOT_ENABLE flag added to control the secure boot feature. Requires SMM_SUPPORT and flash to be SPI for the secure boot to function. Cc: Guo Dong Cc: Ray Ni Cc: Sean Rhodes Cc: James Lu Cc: Gua Guo

[edk2-devel] [PATCH v1 1/6] MdeModulePkg: universal payload HOB for secure boot info

From: Subash Lakkimsetti Add the hob structure header for universal payload for secure boot and measure boot information from bootloaders. Universal payload spec definied at https://universalscalablefirmware.github.io/documentation/2_universal_payload.html Cc: Zhiguang Liu Cc: Ray Ni Cc: Gua