From nobody Sun May  5 15:06:30 2024
Delivered-To: importer@patchew.org
Received-SPF: pass (zohomail.com: domain of groups.io designates
 66.175.222.108 as permitted sender) client-ip=66.175.222.108;
 envelope-from=bounce+27952+79224+1787277+3901457@groups.io;
 helo=mail02.groups.io;
Authentication-Results: mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)  smtp.mailfrom=bounce+27952+79224+1787277+3901457@groups.io
ARC-Seal: i=1; a=rsa-sha256; t=1628818665; cv=none;
	d=zohomail.com; s=zohoarc;
	b=QmwjNG6Jzo03BV2hyir9bx9UJS7zocW8Gjf83ZZfXu/chnR1gkcsOXKjDXppwVUMfbHNowqhgcgONtkbWuc+DE5LPJbu7O0ilVzOddKfJO3KQEuXWuohk/iysDXf9qxhQ9l6+TU2bMT/HJnoFGg50UGqmYF2K/Rh7UdpFaDSv4A=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com;
 s=zohoarc;
	t=1628818665;
 h=Content-Type:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To;
	bh=SBOMDn5Ls/BlylXEilkvI06GYDa48zWZcxywqL3e5AY=;
	b=kqgGaQSxZP59Df3EKOvEsVTmfXVWeQUCng2MPGiglX0V8cHqw1QOOvAejzYjH/smm6yJeD+dNn7i5iVX3w54QUZhfuocgLl1ffoSVnWPc/FxzSmD5xRT+vVwkAS8zAWWZ3U476GF+K74Ahy9jD4v+UaGkLls8NvWTix8kgwVitc=
ARC-Authentication-Results: i=1; mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)  smtp.mailfrom=bounce+27952+79224+1787277+3901457@groups.io
Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by
 mx.zohomail.com
	with SMTPS id 1628818665970443.7256620114613;
 Thu, 12 Aug 2021 18:37:45 -0700 (PDT)
Return-Path: <bounce+27952+79224+1787277+3901457@groups.io>
X-Received: by 127.0.0.2 with SMTP id sgE1YY1788612xVybbwICjhn;
 Thu, 12 Aug 2021 18:37:45 -0700
X-Received: from mail.byosoft.com.cn (mail.byosoft.com.cn [58.240.74.242])
 by mx.groups.io with SMTP id smtpd.web10.31266.1628818663702219305
 for <devel@edk2.groups.io>;
 Thu, 12 Aug 2021 18:37:45 -0700
X-Received: from DESKTOPS6D0PVI ([58.246.60.130])
	(envelope-sender <gaoliming@byosoft.com.cn>)
	by 192.168.6.13 with ESMTP
	for <bret.barkelew@microsoft.com>; Fri, 13 Aug 2021 09:37:33 +0800
X-WM-Sender: gaoliming@byosoft.com.cn
X-Originating-IP: 58.246.60.130
X-WM-AuthFlag: YES
X-WM-AuthUser: gaoliming@byosoft.com.cn
From: "gaoliming" <gaoliming@byosoft.com.cn>
To: <devel@edk2.groups.io>,
	<bret.barkelew@microsoft.com>,
	"'Yao, Jiewen'" <jiewen.yao@intel.com>,
	<bret@corthon.com>,
	"'Kinney, Michael D'" <michael.d.kinney@intel.com>
Cc: "'Wang, Jian J'" <jian.j.wang@intel.com>,
	"'Zhang, Qi1'" <qi1.zhang@intel.com>,
	"'Kumar, Rahul1'" <rahul1.kumar@intel.com>
References: <20210730175517.2445-1-brbarkel@microsoft.com>
 <1696A3E2DE5C4DCB.1941@groups.io>
 <MW4PR21MB1907340E8BF27B46FF54970EEFF19@MW4PR21MB1907.namprd21.prod.outlook.com>
 <169A57BB10BEC566.13770@groups.io>
 <MW4PR21MB19077710B3F5CEE8C0435F25EFF99@MW4PR21MB1907.namprd21.prod.outlook.com>
 <PH0PR11MB4885021AEEA29E6C1F2ADEAF8CFA9@PH0PR11MB4885.namprd11.prod.outlook.com>
  <MW4PR21MB190709B67F251875524513B6EFFA9@MW4PR21MB1907.namprd21.prod.outlook.com>
In-Reply-To: 
 <MW4PR21MB190709B67F251875524513B6EFFA9@MW4PR21MB1907.namprd21.prod.outlook.com>
Subject: 
 =?UTF-8?B?5Zue5aSNOiBbRVhURVJOQUxdIFtlZGsyLWRldmVsXSBbUEFUQ0ggdjEgMS8xXSBTZWN1cml0eVBrZy9MaWJyYXJ5OiBBZGQgVHBtMk52VW5kZWZpbmVTcGFjZVNwZWNpYWwgdG8gVHBtMkNvbW1hbmRMaWI=?=
Date: Fri, 13 Aug 2021 09:37:35 +0800
Message-ID: <013f01d78fe3$cb33b270$619b1750$@byosoft.com.cn>
MIME-Version: 1.0
Thread-Index: 
 AQKw0JBQkMjs/QxFtbsF8Gy1CafftAIpAp74AfH9d7QAtUSWqgGWjx0DAl9ljhMBakX6Yalsofjw
Precedence: Bulk
List-Unsubscribe: <mailto:devel+unsubscribe@edk2.groups.io>
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Reply-To: devel@edk2.groups.io,gaoliming@byosoft.com.cn
X-Gm-Message-State: YGl8zGAjybUJemGjbNo0w4GKx1787277AA=
Content-Type: multipart/related;
	boundary="----=_NextPart_000_0140_01D79026.D959D8A0"
Content-Language: zh-cn
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io;
 q=dns/txt; s=20140610; t=1628818665;
 bh=WBRAp0Ad033re7gxnzOQJRJdDuMhXA74Pkheacn9gKA=;
 h=Cc:Content-Type:Date:From:Reply-To:Subject:To;
 b=ItFPp1LdVF4W1txd5EeDnCJrO+I8kn4RqLLnLdyNmxqTCQyqPocKNmfG7rrxGW/42iA
 8bfPSb2QmYih+zBi4gCSg3Um5WbuBDhIVB0GfA+bW1RKX/JbVpixX1j1UBHgrFqrN87vN
 5aIw49hO3nxw2F/bSdUfWp2OQ2s0VF9m/Fg=
X-Zoho-Virus-Status: 1
X-ZohoMail-DKIM: pass (identity @groups.io)
X-ZM-MESSAGEID: 1628818667579100001

------=_NextPart_000_0140_01D79026.D959D8A0
Content-Type: multipart/alternative;
	boundary="----=_NextPart_001_0141_01D79026.D959D8A0"

------=_NextPart_001_0141_01D79026.D959D8A0
Content-Type: text/plain;
	charset="gb2312"
Content-Transfer-Encoding: quoted-printable

Bret:

 I suggest to define new macro that follows EDKII style. This MACRO is only
used in CommandLib. Its impact should be small.=20

=20

Thanks

Liming

=B7=A2=BC=FE=C8=CB: devel@edk2.groups.io <devel@edk2.groups.io> =B4=FA=B1=
=ED Bret Barkelew via
groups.io
=B7=A2=CB=CD=CA=B1=BC=E4: 2021=C4=EA8=D4=C213=C8=D5 8:24
=CA=D5=BC=FE=C8=CB: Yao, Jiewen <jiewen.yao@intel.com>; devel@edk2.groups.i=
o;
bret@corthon.com; Kinney, Michael D <michael.d.kinney@intel.com>
=B3=AD=CB=CD: Wang, Jian J <jian.j.wang@intel.com>; Zhang, Qi1
<qi1.zhang@intel.com>; Kumar, Rahul1 <rahul1.kumar@intel.com>
=D6=F7=CC=E2: Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Librar=
y: Add
Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib

=20

+  <mailto:michael.d.kinney@intel.com> @Kinney, Michael D

=20

Mike, any thoughts on when =A1=B0sticking with the file convention=A1=B1 br=
eaks ECC?
Should I just ignore the rest of the file and pass ECC at all costs?

=20

- Bret=20

=20

From: Yao, Jiewen <mailto:jiewen.yao@intel.com>=20
Sent: Thursday, August 12, 2021 5:06 PM
To: Bret Barkelew <mailto:Bret.Barkelew@microsoft.com> ;
devel@edk2.groups.io <mailto:devel@edk2.groups.io> ; bret@corthon.com
<mailto:bret@corthon.com>=20
Cc: Wang, Jian J <mailto:jian.j.wang@intel.com> ; Zhang, Qi1
<mailto:qi1.zhang@intel.com> ; Kumar, Rahul1 <mailto:rahul1.kumar@intel.com=
>

Subject: RE: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d
Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib

=20

I don=A1=AFt know the answer about ECC or PatchChecker.

I  just know we need pass CI to merge the patch.

=20

Thank you

Yao Jiewen

=20

From: Bret Barkelew <Bret.Barkelew@microsoft.com
<mailto:Bret.Barkelew@microsoft.com> >=20
Sent: Friday, August 13, 2021 1:52 AM
To: devel@edk2.groups.io <mailto:devel@edk2.groups.io> ; bret@corthon.com
<mailto:bret@corthon.com>=20
Cc: Yao, Jiewen <jiewen.yao@intel.com <mailto:jiewen.yao@intel.com> >; Wang=
,
Jian J <jian.j.wang@intel.com <mailto:jian.j.wang@intel.com> >; Zhang, Qi1
<qi1.zhang@intel.com <mailto:qi1.zhang@intel.com> >; Kumar, Rahul1
<rahul1.kumar@intel.com <mailto:rahul1.kumar@intel.com> >
Subject: RE: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d
Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib

=20

Thoughts?

=20

- Bret=20

=20



From: devel@edk2.groups.io <mailto:devel@edk2.groups.io>
<devel@edk2.groups.io <mailto:devel@edk2.groups.io> > on behalf of Bret
Barkelew via groups.io <bret.barkelew=3Dmicrosoft.com@groups.io
<mailto:bret.barkelew=3Dmicrosoft.com@groups.io> >
Sent: Wednesday, August 11, 2021 12:37:52 PM
To: devel@edk2.groups.io <mailto:devel@edk2.groups.io>
<devel@edk2.groups.io <mailto:devel@edk2.groups.io> >; bret@corthon.com
<mailto:bret@corthon.com>  <bret@corthon.com <mailto:bret@corthon.com> >
Cc: Yao, Jiewen <jiewen.yao@intel.com <mailto:jiewen.yao@intel.com> >; Jian
J Wang <jian.j.wang@intel.com <mailto:jian.j.wang@intel.com> >; Qi Zhang
<qi1.zhang@intel.com <mailto:qi1.zhang@intel.com> >; Rahul Kumar
<rahul1.kumar@intel.com <mailto:rahul1.kumar@intel.com> >
Subject: Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d
Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib=20

=20

Thoughts?

=20

- Bret=20

=20



From: devel@edk2.groups.io <mailto:devel@edk2.groups.io>
<devel@edk2.groups.io <mailto:devel@edk2.groups.io> > on behalf of Bret
Barkelew via groups.io <bret.barkelew=3Dmicrosoft.com@groups.io
<mailto:bret.barkelew=3Dmicrosoft.com@groups.io> >
Sent: Wednesday, August 4, 2021 9:32:32 AM
To: devel@edk2.groups.io <mailto:devel@edk2.groups.io>
<devel@edk2.groups.io <mailto:devel@edk2.groups.io> >; bret@corthon.com
<mailto:bret@corthon.com>  <bret@corthon.com <mailto:bret@corthon.com> >
Cc: Yao, Jiewen <jiewen.yao@intel.com <mailto:jiewen.yao@intel.com> >; Jian
J Wang <jian.j.wang@intel.com <mailto:jian.j.wang@intel.com> >; Qi Zhang
<qi1.zhang@intel.com <mailto:qi1.zhang@intel.com> >; Rahul Kumar
<rahul1.kumar@intel.com <mailto:rahul1.kumar@intel.com> >
Subject: Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d
Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib=20

=20

Poking this one.

=20

1.	It=A1=AFs a easy review with small, obvious code change.
2.	I need some answers on =A1=B0when is it okay to violate ECC/PatchCheck,
if the new code matches the style of the existing code. Should I endeavor t=
o
pass the PatchCheck and ECCCheck with this patch only, and leave it in
conflict with the rest of the file?

=20

Thanks!

=20

- Bret=20

=20

From: Bret Barkelew via groups.io
<mailto:bret.barkelew=3Dmicrosoft.com@groups.io>=20
Sent: Friday, July 30, 2021 11:08 AM
To: devel@edk2.groups.io <mailto:devel@edk2.groups.io> ; bret@corthon.com
<mailto:bret@corthon.com>=20
Cc: Yao, Jiewen <mailto:jiewen.yao@intel.com> ; Jian J Wang
<mailto:jian.j.wang@intel.com> ; Qi Zhang <mailto:qi1.zhang@intel.com> ;
Rahul Kumar <mailto:rahul1.kumar@intel.com>=20
Subject: Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Ad=
d
Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib

=20

Note, even though this keeps with the style of the rest of the file, it
breaks ECC:

SecurityPkg/Library: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib by
corthon =A1=A4 Pull Request #1848 =A1=A4 tianocore/edk2 (github.com) <https=
://nam06.
safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgithub.com%2Ftianocor=
e%2
Fedk2%2Fpull%2F1848&data=3D04%7C01%7CBret.Barkelew%40microsoft.com%7Ce90f06=
6a5
a8c4feae73108d95dee3ec3%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637644=
1
00117879377%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJ=
B
TiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=3D7uX%2FX1sJDbWsxeqYtqfQIFXBbDRVnii=
7kc
J1nri65T4%3D&reserved=3D0>=20

=20

PROGRESS - --Running SecurityPkg: EccCheck Test NO-TARGET --=20

ERROR -=20

ERROR -=20

ERROR - EFI coding style error=20

ERROR - *Error code: 8001=20

ERROR - *Only capital letters are allowed to be used for #define
declarations=20

ERROR - *file:
//home/vsts/work/1/s/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c=20

ERROR - *Line number: 27=20

ERROR - *The #define name [RC_NV_UndefineSpaceSpecial_nvIndex] does no

=20

Thoughts?

=20

- Bret=20

=20

From: Bret Barkelew via groups.io <mailto:bret=3Dcorthon.com@groups.io>=20
Sent: Friday, July 30, 2021 10:55 AM
To: devel@edk2.groups.io <mailto:devel@edk2.groups.io>=20
Cc: Yao, Jiewen <mailto:jiewen.yao@intel.com> ; Jian J Wang
<mailto:jian.j.wang@intel.com> ; Qi Zhang <mailto:qi1.zhang@intel.com> ;
Rahul Kumar <mailto:rahul1.kumar@intel.com>=20
Subject: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Add
Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib

=20

Used to provision and maintain certain HW-defined NV spaces.

REF:
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fbugzill=
a.t
ianocore.org%2Fshow_bug.cgi%3Fid%3D2994 <https://nam06.safelinks.protection=
.
outlook.com/?url=3Dhttps%3A%2F%2Fbugzilla.tianocore.org%2Fshow_bug.cgi%3Fid=
%3D
2994&data=3D04%7C01%7CBret.Barkelew%40microsoft.com%7Ce90f066a5a8c4feae7310=
8d9
5dee3ec3%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637644100117889332%7C=
U
nknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLC=
J
XVCI6Mn0%3D%7C1000&sdata=3Dpadkn1C%2BUQzKQSPo5gyurkMYW5ihwyf2Wm2mp2lrRKg%3D=
&re
served=3D0>
&amp;data=3D04%7C01%7CBret.Barkelew%40microsoft.com%7Cb7ae3c62047c48fc85d90=
8d9
53833ca0%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637632645397602953%7C=
U
nknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLC=
J
XVCI6Mn0%3D%7C1000&amp;sdata=3Ds96M3RvxMOY831Vfr1nt%2Fz1h3cyb6jU9eFzvjKO7Dt=
c%3
D&amp;reserved=3D0

Signed-off-by: Bret Barkelew <bret.barkelew@microsoft.com
<mailto:bret.barkelew@microsoft.com> >
Cc: Jiewen Yao <jiewen.yao@intel.com <mailto:jiewen.yao@intel.com> >
Cc: Jian J Wang <jian.j.wang@intel.com <mailto:jian.j.wang@intel.com> >
Cc: Qi Zhang <qi1.zhang@intel.com <mailto:qi1.zhang@intel.com> >
Cc: Rahul Kumar <rahul1.kumar@intel.com <mailto:rahul1.kumar@intel.com> >
---
 SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c | 122
++++++++++++++++++++
 SecurityPkg/Include/Library/Tpm2CommandLib.h       |  22 ++++
 2 files changed, 144 insertions(+)

diff --git a/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c
b/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c
index 87572de20164..7931fade9190 100644
--- a/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c
+++ b/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c
@@ -24,6 +24,8 @@ SPDX-License-Identifier: BSD-2-Clause-Patent
 #define RC_NV_UndefineSpace_authHandle      (TPM_RC_H + TPM_RC_1)

 #define RC_NV_UndefineSpace_nvIndex         (TPM_RC_H + TPM_RC_2)

=20

+#define RC_NV_UndefineSpaceSpecial_nvIndex  (TPM_RC_H + TPM_RC_1)

+

 #define RC_NV_Read_authHandle               (TPM_RC_H + TPM_RC_1)

 #define RC_NV_Read_nvIndex                  (TPM_RC_H + TPM_RC_2)

 #define RC_NV_Read_size                     (TPM_RC_P + TPM_RC_1)

@@ -74,6 +76,20 @@ typedef struct {
   TPMS_AUTH_RESPONSE         AuthSession;

 } TPM2_NV_UNDEFINESPACE_RESPONSE;

=20

+typedef struct {

+  TPM2_COMMAND_HEADER       Header;

+  TPMI_RH_NV_INDEX          NvIndex;

+  TPMI_RH_PLATFORM          Platform;

+  UINT32                    AuthSessionSize;

+  TPMS_AUTH_COMMAND         AuthSession;

+} TPM2_NV_UNDEFINESPACESPECIAL_COMMAND;

+

+typedef struct {

+  TPM2_RESPONSE_HEADER       Header;

+  UINT32                     AuthSessionSize;

+  TPMS_AUTH_RESPONSE         AuthSession;

+} TPM2_NV_UNDEFINESPACESPECIAL_RESPONSE;

+

 typedef struct {

   TPM2_COMMAND_HEADER       Header;

   TPMI_RH_NV_AUTH           AuthHandle;

@@ -506,6 +522,112 @@ Done:
   return Status;

 }

=20

+/**

+  This command removes an index from the TPM.

+

+  @param[in]  NvIndex             The NV Index.

+  @param[in]  IndexAuthSession    Auth session context for the Index
auth/policy

+  @param[in]  PlatAuthSession     Auth session context for the Platform
auth/policy

+

+  @retval EFI_SUCCESS             Operation completed successfully.

+  @retval EFI_NOT_FOUND           The command was returned successfully,
but NvIndex is not found.

+  @retval EFI_UNSUPPORTED         Selected NvIndex does not support
deletion through this call.

+  @retval EFI_SECURITY_VIOLATION  Deletion is not authorized by current
policy session.

+  @retval EFI_INVALID_PARAMETER   The command was unsuccessful.

+  @retval EFI_DEVICE_ERROR        The command was unsuccessful.

+**/

+EFI_STATUS

+EFIAPI

+Tpm2NvUndefineSpaceSpecial (

+  IN      TPMI_RH_NV_INDEX          NvIndex,

+  IN      TPMS_AUTH_COMMAND         *IndexAuthSession OPTIONAL,

+  IN      TPMS_AUTH_COMMAND         *PlatAuthSession OPTIONAL

+  )

+{

+  EFI_STATUS                              Status;

+  TPM2_NV_UNDEFINESPACESPECIAL_COMMAND    SendBuffer;

+  TPM2_NV_UNDEFINESPACESPECIAL_RESPONSE   RecvBuffer;

+  UINT32                                  SendBufferSize;

+  UINT32                                  RecvBufferSize;

+  UINT8                                   *Buffer;

+  UINT32                                  IndexAuthSize, PlatAuthSize;

+  TPM_RC                                  ResponseCode;

+

+  //

+  // Construct command

+  //

+  SendBuffer.Header.tag =3D SwapBytes16(TPM_ST_SESSIONS);

+  SendBuffer.Header.commandCode =3D
SwapBytes32(TPM_CC_NV_UndefineSpaceSpecial);

+

+  SendBuffer.NvIndex =3D SwapBytes32 (NvIndex);

+  SendBuffer.Platform =3D SwapBytes32 (TPM_RH_PLATFORM);

+

+  //

+  // Marshall the Auth Sessions for the two handles.

+  Buffer =3D (UINT8 *)&SendBuffer.AuthSession;

+  // IndexAuthSession

+  IndexAuthSize =3D CopyAuthSessionCommand (IndexAuthSession, Buffer);

+  Buffer +=3D IndexAuthSize;

+  // PlatAuthSession

+  PlatAuthSize =3D CopyAuthSessionCommand (PlatAuthSession, Buffer);

+  Buffer +=3D PlatAuthSize;

+  // AuthSessionSize

+  SendBuffer.AuthSessionSize =3D SwapBytes32(IndexAuthSize + PlatAuthSize)=
;

+

+  // Update total command size.

+  SendBufferSize =3D (UINT32)(Buffer - (UINT8 *)&SendBuffer);

+  SendBuffer.Header.paramSize =3D SwapBytes32 (SendBufferSize);

+

+  //

+  // send Tpm command

+  //

+  RecvBufferSize =3D sizeof (RecvBuffer);

+  Status =3D Tpm2SubmitCommand (SendBufferSize, (UINT8 *)&SendBuffer,
&RecvBufferSize, (UINT8 *)&RecvBuffer);

+  if (EFI_ERROR (Status)) {

+    goto Done;

+  }

+

+  if (RecvBufferSize < sizeof (TPM2_RESPONSE_HEADER)) {

+    DEBUG ((EFI_D_ERROR, "Tpm2NvUndefineSpaceSpecial - RecvBufferSize Erro=
r
- %x\n", RecvBufferSize));

+    Status =3D EFI_DEVICE_ERROR;

+    goto Done;

+  }

+

+  ResponseCode =3D SwapBytes32(RecvBuffer.Header.responseCode);

+  if (ResponseCode !=3D TPM_RC_SUCCESS) {

+    DEBUG ((EFI_D_ERROR, "Tpm2NvUndefineSpaceSpecial - responseCode -
%x\n", SwapBytes32(RecvBuffer.Header.responseCode)));

+  }

+  switch (ResponseCode) {

+  case TPM_RC_SUCCESS:

+    // return data

+    break;

+  case TPM_RC_ATTRIBUTES:

+  case TPM_RC_ATTRIBUTES + RC_NV_UndefineSpaceSpecial_nvIndex:

+    Status =3D EFI_UNSUPPORTED;

+    break;

+  case TPM_RC_NV_AUTHORIZATION:

+    Status =3D EFI_SECURITY_VIOLATION;

+    break;

+  case TPM_RC_HANDLE + RC_NV_UndefineSpaceSpecial_nvIndex: //
TPM_RC_NV_DEFINED:

+    Status =3D EFI_NOT_FOUND;

+    break;

+  case TPM_RC_VALUE + RC_NV_UndefineSpace_nvIndex:

+    Status =3D EFI_INVALID_PARAMETER;

+    break;

+  default:

+    Status =3D EFI_DEVICE_ERROR;

+    break;

+  }

+

+Done:

+  //

+  // Clear AuthSession Content

+  //

+  ZeroMem (&SendBuffer, sizeof(SendBuffer));

+  ZeroMem (&RecvBuffer, sizeof(RecvBuffer));

+  return Status;

+} // Tpm2NvUndefineSpaceSpecial()

+

 /**

   This command reads a value from an area in NV memory previously defined
by TPM2_NV_DefineSpace().

=20

diff --git a/SecurityPkg/Include/Library/Tpm2CommandLib.h
b/SecurityPkg/Include/Library/Tpm2CommandLib.h
index ee8eb622951c..8d7b4998d98d 100644
--- a/SecurityPkg/Include/Library/Tpm2CommandLib.h
+++ b/SecurityPkg/Include/Library/Tpm2CommandLib.h
@@ -364,6 +364,28 @@ Tpm2NvUndefineSpace (
   IN      TPMS_AUTH_COMMAND         *AuthSession OPTIONAL

   );

=20

+/**

+  This command removes an index from the TPM.

+

+  @param[in]  NvIndex             The NV Index.

+  @param[in]  IndexAuthSession    Auth session context for the Index
auth/policy

+  @param[in]  PlatAuthSession     Auth session context for the Platform
auth/policy

+

+  @retval EFI_SUCCESS             Operation completed successfully.

+  @retval EFI_NOT_FOUND           The command was returned successfully,
but NvIndex is not found.

+  @retval EFI_UNSUPPORTED         Selected NvIndex does not support
deletion through this call.

+  @retval EFI_SECURITY_VIOLATION  Deletion is not authorized by current
policy session.

+  @retval EFI_INVALID_PARAMETER   The command was unsuccessful.

+  @retval EFI_DEVICE_ERROR        The command was unsuccessful.

+**/

+EFI_STATUS

+EFIAPI

+Tpm2NvUndefineSpaceSpecial (

+  IN      TPMI_RH_NV_INDEX          NvIndex,

+  IN      TPMS_AUTH_COMMAND         *IndexAuthSession OPTIONAL,

+  IN      TPMS_AUTH_COMMAND         *PlatAuthSession OPTIONAL

+  );

+

 /**

   This command reads a value from an area in NV memory previously defined
by TPM2_NV_DefineSpace().

=20

--=20
2.31.1.windows.1



-=3D-=3D-=3D-=3D-=3D-=3D
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#78450):
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.gr=
oup
s.io%2Fg%2Fdevel%2Fmessage%2F78450
<https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.g=
rou
ps.io%2Fg%2Fdevel%2Fmessage%2F78450&data=3D04%7C01%7CBret.Barkelew%40micros=
oft
.com%7Ce90f066a5a8c4feae73108d95dee3ec3%7C72f988bf86f141af91ab2d7cd011db47%=
7
C1%7C0%7C637644100117889332%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJ=
Q
IjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=3D5xF1G1wVYzxVg8d6j=
ArE
FdAZnDdNqdWIAOvw8FJV07M%3D&reserved=3D0>
&amp;data=3D04%7C01%7CBret.Barkelew%40microsoft.com%7Cb7ae3c62047c48fc85d90=
8d9
53833ca0%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637632645397612922%7C=
U
nknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLC=
J
XVCI6Mn0%3D%7C1000&amp;sdata=3DCWxLwgp73z2XQEa%2FN77gsCwRF73xha0RZCKwcFTlrR=
E%3
D&amp;reserved=3D0
Mute This Topic:
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgroups.=
io%
2Fmt%2F84555713%2F1822150
<https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgroups=
.io
%2Fmt%2F84555713%2F1822150&data=3D04%7C01%7CBret.Barkelew%40microsoft.com%7=
Ce9
0f066a5a8c4feae73108d95dee3ec3%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7=
C
637644100117899289%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2lu=
M
zIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=3D2FYy4OplAG2hC8gFxfV3zySEX4=
SPr
yroOsIJ9BpQ8v0%3D&reserved=3D0> &amp;data=3D04%7C01%7CBret.Barkelew%40micro=
soft.
com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141af91ab2d7cd011db47%7=
C
1%7C0%7C637632645397612922%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQ=
I
joiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=3DIWQ6E4yP0ECt3o=
YLY
Qa%2BnddGfcQEDMgfASlcxRuda%2BQ%3D&amp;reserved=3D0
Group Owner: devel+owner@edk2.groups.io <mailto:devel+owner@edk2.groups.io>=
=20
Unsubscribe:
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.gr=
oup
s.io%2Fg%2Fdevel%2Funsub
<https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.g=
rou
ps.io%2Fg%2Fdevel%2Funsub&data=3D04%7C01%7CBret.Barkelew%40microsoft.com%7C=
e90
f066a5a8c4feae73108d95dee3ec3%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C=
6
37644100117909246%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luM=
z
IiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=3DuaOZ7%2FL3FmNlZ%2Fj0jKkSVLW=
QEl
FkWKNORPvvZW%2Bu8AM%3D&reserved=3D0>
&amp;data=3D04%7C01%7CBret.Barkelew%40microsoft.com%7Cb7ae3c62047c48fc85d90=
8d9
53833ca0%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637632645397612922%7C=
U
nknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLC=
J
XVCI6Mn0%3D%7C1000&amp;sdata=3Dqor4Y5FZEH8ch0AEmWDbe97FIQk4V1qx7IURcTHzjAU%=
3D&
amp;reserved=3D0 [brbarkel@microsoft.com]
-=3D-=3D-=3D-=3D-=3D-=3D

=20

=20

=20





-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#79224): https://edk2.groups.io/g/devel/message/79224
Mute This Topic: https://groups.io/mt/84854740/1787277
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org]
-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-



------=_NextPart_001_0141_01D79026.D959D8A0
Content-Type: text/html;
	charset="gb2312"
Content-Transfer-Encoding: quoted-printable

<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; charset=3Dgb2312">
<html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-micr=
osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http:=
//www.w3.org/TR/REC-html40"><head><meta name=3DGenerator content=3D"Microso=
ft Word 15 (filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#defa=
ult#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
	{font-family:"Cambria Math";
	panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
	{font-family:DengXian;
	panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
	{font-family:DengXian;
	panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
	{font-family:Consolas;
	panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0cm;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:blue;
	text-decoration:underline;}
p.xmsonormal, li.xmsonormal, div.xmsonormal
	{mso-style-name:x_msonormal;
	margin:0cm;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
p.xxmsonormal, li.xxmsonormal, div.xxmsonormal
	{mso-style-name:x_x_msonormal;
	margin:0cm;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
p.xxmsolistparagraph, li.xxmsolistparagraph, div.xxmsolistparagraph
	{mso-style-name:x_x_msolistparagraph;
	margin-top:0cm;
	margin-right:0cm;
	margin-bottom:0cm;
	margin-left:36.0pt;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
span.xxpl-plain
	{mso-style-name:x_x_pl-plain;}
span.EmailStyle25
	{mso-style-type:personal-reply;
	font-family:DengXian;
	color:windowtext;}
.MsoChpDefault
	{mso-style-type:export-only;
	font-size:10.0pt;}
@page WordSection1
	{size:612.0pt 792.0pt;
	margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
	{page:WordSection1;}
/* List Definitions */
@list l0
	{mso-list-id:288315548;
	mso-list-template-ids:1222265948;}
@list l1
	{mso-list-id:1074933252;
	mso-list-template-ids:939565850;}
@list l1:level1
	{mso-level-tab-stop:36.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
@list l1:level2
	{mso-level-tab-stop:72.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
@list l1:level3
	{mso-level-tab-stop:108.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
@list l1:level4
	{mso-level-tab-stop:144.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
@list l1:level5
	{mso-level-tab-stop:180.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
@list l1:level6
	{mso-level-tab-stop:216.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
@list l1:level7
	{mso-level-tab-stop:252.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
@list l1:level8
	{mso-level-tab-stop:288.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
@list l1:level9
	{mso-level-tab-stop:324.0pt;
	mso-level-number-position:left;
	text-indent:-18.0pt;}
ol
	{margin-bottom:0cm;}
ul
	{margin-bottom:0cm;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]--></head><body lang=3DZH-CN link=3Dblue vli=
nk=3D"#954F72" style=3D'word-wrap:break-word'><div class=3DWordSection1><p =
class=3DMsoNormal><span lang=3DEN-US style=3D'font-size:10.5pt;font-family:=
DengXian'>Bret:<o:p></o:p></span></p><p class=3DMsoNormal><span lang=3DEN-U=
S style=3D'font-size:10.5pt;font-family:DengXian'> &nbsp;I suggest to defin=
e new macro that follows EDKII style. This MACRO is only used in CommandLib=
. Its impact should be small. <o:p></o:p></span></p><p class=3DMsoNormal><s=
pan lang=3DEN-US style=3D'font-size:10.5pt;font-family:DengXian'><o:p>&nbsp=
;</o:p></span></p><p class=3DMsoNormal><span lang=3DEN-US style=3D'font-siz=
e:10.5pt;font-family:DengXian'>Thanks<o:p></o:p></span></p><p class=3DMsoNo=
rmal><span lang=3DEN-US style=3D'font-size:10.5pt;font-family:DengXian'>Lim=
ing<o:p></o:p></span></p><div><div style=3D'border:none;border-top:solid #E=
1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=3DMsoNormal><b><span style=
=3D'font-family:DengXian'>=B7=A2=BC=FE=C8=CB<span lang=3DEN-US>:</span></sp=
an></b><span lang=3DEN-US style=3D'font-family:DengXian'> devel@edk2.groups=
.io &lt;devel@edk2.groups.io&gt; </span><b><span style=3D'font-family:DengX=
ian'>=B4=FA=B1=ED </span></b><span lang=3DEN-US style=3D'font-family:DengXi=
an'>Bret Barkelew via groups.io<br></span><b><span style=3D'font-family:Den=
gXian'>=B7=A2=CB=CD=CA=B1=BC=E4<span lang=3DEN-US>:</span></span></b><span =
lang=3DEN-US style=3D'font-family:DengXian'> 2021</span><span style=3D'font=
-family:DengXian'>=C4=EA<span lang=3DEN-US>8</span>=D4=C2<span lang=3DEN-US=
>13</span>=C8=D5<span lang=3DEN-US> 8:24<br></span><b>=CA=D5=BC=FE=C8=CB<sp=
an lang=3DEN-US>:</span></b><span lang=3DEN-US> Yao, Jiewen &lt;jiewen.yao@=
intel.com&gt;; devel@edk2.groups.io; bret@corthon.com; Kinney, Michael D &l=
t;michael.d.kinney@intel.com&gt;<br></span><b>=B3=AD=CB=CD<span lang=3DEN-U=
S>:</span></b><span lang=3DEN-US> Wang, Jian J &lt;jian.j.wang@intel.com&gt=
;; Zhang, Qi1 &lt;qi1.zhang@intel.com&gt;; Kumar, Rahul1 &lt;rahul1.kumar@i=
ntel.com&gt;<br></span><b>=D6=F7=CC=E2<span lang=3DEN-US>:</span></b><span =
lang=3DEN-US> Re: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Librar=
y: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib<o:p></o:p></span></span=
></p></div></div><p class=3DMsoNormal><span lang=3DEN-US><o:p>&nbsp;</o:p><=
/span></p><p class=3DMsoNormal><span lang=3DEN-US>+ <a id=3DOWAAM794CFC851F=
F9466C8FBF246F1E7C4FF9 href=3D"mailto:michael.d.kinney@intel.com"><span sty=
le=3D'font-family:"Calibri",sans-serif;text-decoration:none'>@Kinney, Micha=
el D</span></a><o:p></o:p></span></p><p class=3DMsoNormal><span lang=3DEN-U=
S><o:p>&nbsp;</o:p></span></p><p class=3DMsoNormal><span lang=3DEN-US>Mike,=
 any thoughts on when =A1=B0sticking with the file convention=A1=B1 breaks =
ECC? Should I just ignore the rest of the file and pass ECC at all costs?<o=
:p></o:p></span></p><p class=3DMsoNormal><span lang=3DEN-US><o:p>&nbsp;</o:=
p></span></p><p class=3DMsoNormal><span lang=3DEN-US>- Bret <o:p></o:p></sp=
an></p><p class=3DMsoNormal><span lang=3DEN-US><o:p>&nbsp;</o:p></span></p>=
<div style=3D'border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm =
0cm 0cm'><p class=3DMsoNormal><b><span lang=3DEN-US>From: </span></b><span =
lang=3DEN-US><a href=3D"mailto:jiewen.yao@intel.com">Yao, Jiewen</a><br><b>=
Sent: </b>Thursday, August 12, 2021 5:06 PM<br><b>To: </b><a href=3D"mailto=
:Bret.Barkelew@microsoft.com">Bret Barkelew</a>; <a href=3D"mailto:devel@ed=
k2.groups.io">devel@edk2.groups.io</a>; <a href=3D"mailto:bret@corthon.com"=
>bret@corthon.com</a><br><b>Cc: </b><a href=3D"mailto:jian.j.wang@intel.com=
">Wang, Jian J</a>; <a href=3D"mailto:qi1.zhang@intel.com">Zhang, Qi1</a>; =
<a href=3D"mailto:rahul1.kumar@intel.com">Kumar, Rahul1</a><br><b>Subject: =
</b>RE: [EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Add Tpm=
2NvUndefineSpaceSpecial to Tpm2CommandLib<o:p></o:p></span></p></div><p cla=
ss=3DMsoNormal><span lang=3DEN-US><o:p>&nbsp;</o:p></span></p><p class=3DMs=
oNormal><span lang=3DEN-US>I don=A1=AFt know the answer about ECC or PatchC=
hecker.<o:p></o:p></span></p><p class=3DMsoNormal><span lang=3DEN-US>I &nbs=
p;just know we need pass CI to merge the patch.<o:p></o:p></span></p><p cla=
ss=3DMsoNormal><span lang=3DEN-US><o:p>&nbsp;</o:p></span></p><p class=3DMs=
oNormal><span lang=3DEN-US>Thank you<o:p></o:p></span></p><p class=3DMsoNor=
mal><span lang=3DEN-US>Yao Jiewen<o:p></o:p></span></p><p class=3DMsoNormal=
><span lang=3DEN-US><o:p>&nbsp;</o:p></span></p><div style=3D'border:none;b=
order-left:solid blue 1.5pt;padding:0cm 0cm 0cm 4.0pt'><div><div style=3D'b=
order:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p cla=
ss=3DMsoNormal><b><span lang=3DEN-US>From:</span></b><span lang=3DEN-US> Br=
et Barkelew &lt;<a href=3D"mailto:Bret.Barkelew@microsoft.com">Bret.Barkele=
w@microsoft.com</a>&gt; <br><b>Sent:</b> Friday, August 13, 2021 1:52 AM<br=
><b>To:</b> <a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a=
>; <a href=3D"mailto:bret@corthon.com">bret@corthon.com</a><br><b>Cc:</b> Y=
ao, Jiewen &lt;<a href=3D"mailto:jiewen.yao@intel.com">jiewen.yao@intel.com=
</a>&gt;; Wang, Jian J &lt;<a href=3D"mailto:jian.j.wang@intel.com">jian.j.=
wang@intel.com</a>&gt;; Zhang, Qi1 &lt;<a href=3D"mailto:qi1.zhang@intel.co=
m">qi1.zhang@intel.com</a>&gt;; Kumar, Rahul1 &lt;<a href=3D"mailto:rahul1.=
kumar@intel.com">rahul1.kumar@intel.com</a>&gt;<br><b>Subject:</b> RE: [EXT=
ERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Add Tpm2NvUndefineS=
paceSpecial to Tpm2CommandLib<o:p></o:p></span></p></div></div><p class=3DM=
soNormal><span lang=3DEN-US><o:p>&nbsp;</o:p></span></p><p class=3DMsoNorma=
l><span lang=3DEN-US>Thoughts?<o:p></o:p></span></p><p class=3DMsoNormal><s=
pan lang=3DEN-US><o:p>&nbsp;</o:p></span></p><p class=3DMsoNormal><span lan=
g=3DEN-US>- Bret <o:p></o:p></span></p><p class=3DMsoNormal><span lang=3DEN=
-US><o:p>&nbsp;</o:p></span></p><p class=3DMsoNormal align=3Dcenter style=
=3D'text-align:center'><span lang=3DEN-US><img border=3D0 width=3D555 heigh=
t=3D2 style=3D'width:5.7833in;height:.025in' id=3D"Horizontal_x0020_Line_x0=
020_1" src=3D"cid:image001.png@01D79026.D90F8930"></span><span lang=3DEN-US=
><o:p></o:p></span></p><div id=3DdivRplyFwdMsg><p class=3DMsoNormal><b><spa=
n lang=3DEN-US style=3D'color:black'>From:</span></b><span lang=3DEN-US sty=
le=3D'color:black'> <a href=3D"mailto:devel@edk2.groups.io">devel@edk2.grou=
ps.io</a> &lt;<a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io<=
/a>&gt; on behalf of Bret Barkelew via groups.io &lt;<a href=3D"mailto:bret=
.barkelew=3Dmicrosoft.com@groups.io">bret.barkelew=3Dmicrosoft.com@groups.i=
o</a>&gt;<br><b>Sent:</b> Wednesday, August 11, 2021 12:37:52 PM<br><b>To:<=
/b> <a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a> &lt;<a=
 href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>&gt;; <a href=
=3D"mailto:bret@corthon.com">bret@corthon.com</a> &lt;<a href=3D"mailto:bre=
t@corthon.com">bret@corthon.com</a>&gt;<br><b>Cc:</b> Yao, Jiewen &lt;<a hr=
ef=3D"mailto:jiewen.yao@intel.com">jiewen.yao@intel.com</a>&gt;; Jian J Wan=
g &lt;<a href=3D"mailto:jian.j.wang@intel.com">jian.j.wang@intel.com</a>&gt=
;; Qi Zhang &lt;<a href=3D"mailto:qi1.zhang@intel.com">qi1.zhang@intel.com<=
/a>&gt;; Rahul Kumar &lt;<a href=3D"mailto:rahul1.kumar@intel.com">rahul1.k=
umar@intel.com</a>&gt;<br><b>Subject:</b> Re: [EXTERNAL] [edk2-devel] [PATC=
H v1 1/1] SecurityPkg/Library: Add Tpm2NvUndefineSpaceSpecial to Tpm2Comman=
dLib</span><span lang=3DEN-US> <o:p></o:p></span></p><div><p class=3DMsoNor=
mal><span lang=3DEN-US>&nbsp;<o:p></o:p></span></p></div></div><div><div><p=
 class=3Dxmsonormal><span lang=3DEN-US>Thoughts?<o:p></o:p></span></p><p cl=
ass=3Dxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o:p></span></p><p class=3D=
xmsonormal><span lang=3DEN-US>- Bret <o:p></o:p></span></p><p class=3Dxmson=
ormal><span lang=3DEN-US>&nbsp;<o:p></o:p></span></p></div><p class=3DMsoNo=
rmal align=3Dcenter style=3D'text-align:center'><span lang=3DEN-US><img bor=
der=3D0 width=3D555 height=3D2 style=3D'width:5.7833in;height:.025in' id=3D=
"Horizontal_x0020_Line_x0020_2" src=3D"cid:image001.png@01D79026.D90F8930">=
</span><span lang=3DEN-US><o:p></o:p></span></p><div id=3D"x_divRplyFwdMsg"=
><p class=3DMsoNormal><b><span lang=3DEN-US style=3D'color:black'>From:</sp=
an></b><span lang=3DEN-US style=3D'color:black'> <a href=3D"mailto:devel@ed=
k2.groups.io">devel@edk2.groups.io</a> &lt;<a href=3D"mailto:devel@edk2.gro=
ups.io">devel@edk2.groups.io</a>&gt; on behalf of Bret Barkelew via groups.=
io &lt;<a href=3D"mailto:bret.barkelew=3Dmicrosoft.com@groups.io">bret.bark=
elew=3Dmicrosoft.com@groups.io</a>&gt;<br><b>Sent:</b> Wednesday, August 4,=
 2021 9:32:32 AM<br><b>To:</b> <a href=3D"mailto:devel@edk2.groups.io">deve=
l@edk2.groups.io</a> &lt;<a href=3D"mailto:devel@edk2.groups.io">devel@edk2=
.groups.io</a>&gt;; <a href=3D"mailto:bret@corthon.com">bret@corthon.com</a=
> &lt;<a href=3D"mailto:bret@corthon.com">bret@corthon.com</a>&gt;<br><b>Cc=
:</b> Yao, Jiewen &lt;<a href=3D"mailto:jiewen.yao@intel.com">jiewen.yao@in=
tel.com</a>&gt;; Jian J Wang &lt;<a href=3D"mailto:jian.j.wang@intel.com">j=
ian.j.wang@intel.com</a>&gt;; Qi Zhang &lt;<a href=3D"mailto:qi1.zhang@inte=
l.com">qi1.zhang@intel.com</a>&gt;; Rahul Kumar &lt;<a href=3D"mailto:rahul=
1.kumar@intel.com">rahul1.kumar@intel.com</a>&gt;<br><b>Subject:</b> Re: [E=
XTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Library: Add Tpm2NvUndefin=
eSpaceSpecial to Tpm2CommandLib</span><span lang=3DEN-US> <o:p></o:p></span=
></p><div><p class=3DMsoNormal><span lang=3DEN-US>&nbsp;<o:p></o:p></span><=
/p></div></div><div><div><p class=3Dxxmsonormal><span lang=3DEN-US>Poking t=
his one.<o:p></o:p></span></p><p class=3Dxxmsonormal><span lang=3DEN-US>&nb=
sp;<o:p></o:p></span></p><ol style=3D'margin-top:0cm' start=3D1 type=3D1><l=
i class=3Dxxmsolistparagraph style=3D'margin-left:0cm;mso-list:l1 level1 lf=
o3'><span lang=3DEN-US>It=A1=AFs a easy review with small, obvious code cha=
nge.<o:p></o:p></span></li><li class=3Dxxmsolistparagraph style=3D'margin-l=
eft:0cm;mso-list:l1 level1 lfo3'><span lang=3DEN-US>I need some answers on =
=A1=B0when is it okay to violate ECC/PatchCheck, if the new code matches th=
e style of the existing code. Should I endeavor to pass the PatchCheck and =
ECCCheck with this patch only, and leave it in conflict with the rest of th=
e file?<o:p></o:p></span></li></ol><p class=3Dxxmsonormal><span lang=3DEN-U=
S>&nbsp;<o:p></o:p></span></p><p class=3Dxxmsonormal><span lang=3DEN-US>Tha=
nks!<o:p></o:p></span></p><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<=
o:p></o:p></span></p><p class=3Dxxmsonormal><span lang=3DEN-US>- Bret <o:p>=
</o:p></span></p><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o:p=
></span></p><div style=3D'border:none;border-top:solid #E1E1E1 1.0pt;paddin=
g:3.0pt 0cm 0cm 0cm'><p class=3Dxxmsonormal><b><span lang=3DEN-US>From: </s=
pan></b><span lang=3DEN-US><a href=3D"mailto:bret.barkelew=3Dmicrosoft.com@=
groups.io">Bret Barkelew via groups.io</a><br><b>Sent: </b>Friday, July 30,=
 2021 11:08 AM<br><b>To: </b><a href=3D"mailto:devel@edk2.groups.io">devel@=
edk2.groups.io</a>; <a href=3D"mailto:bret@corthon.com">bret@corthon.com</a=
><br><b>Cc: </b><a href=3D"mailto:jiewen.yao@intel.com">Yao, Jiewen</a>; <a=
 href=3D"mailto:jian.j.wang@intel.com">Jian J Wang</a>; <a href=3D"mailto:q=
i1.zhang@intel.com">Qi Zhang</a>; <a href=3D"mailto:rahul1.kumar@intel.com"=
>Rahul Kumar</a><br><b>Subject: </b>Re: [EXTERNAL] [edk2-devel] [PATCH v1 1=
/1] SecurityPkg/Library: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib<o=
:p></o:p></span></p></div><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<=
o:p></o:p></span></p><p class=3Dxxmsonormal><span lang=3DEN-US>Note, even t=
hough this keeps with the style of the rest of the file, it breaks ECC:<o:p=
></o:p></span></p><p class=3Dxxmsonormal><span lang=3DEN-US><a href=3D"http=
s://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgithub.com%=
2Ftianocore%2Fedk2%2Fpull%2F1848&amp;data=3D04%7C01%7CBret.Barkelew%40micro=
soft.com%7Ce90f066a5a8c4feae73108d95dee3ec3%7C72f988bf86f141af91ab2d7cd011d=
b47%7C1%7C0%7C637644100117879377%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMD=
AiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=3D7uX%2FX=
1sJDbWsxeqYtqfQIFXBbDRVnii7kcJ1nri65T4%3D&amp;reserved=3D0">SecurityPkg/Lib=
rary: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib by corthon =A1=A4 Pu=
ll Request #1848 =A1=A4 tianocore/edk2 (github.com)</a><o:p></o:p></span></=
p><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o:p></span></p><di=
v><div><p class=3Dxxmsonormal style=3D'background:#201F1E'><span class=3Dxx=
pl-plain><span lang=3DEN-US style=3D'font-size:9.0pt;font-family:Consolas;c=
olor:#E1DFDD'>PROGRESS - --Running SecurityPkg: EccCheck Test NO-TARGET -- =
</span></span><span lang=3DEN-US><o:p></o:p></span></p></div><div><p class=
=3Dxxmsonormal style=3D'background:#201F1E'><span class=3Dxxpl-plain><span =
lang=3DEN-US style=3D'font-size:9.0pt;font-family:Consolas;color:#E1DFDD'>E=
RROR - </span></span><span lang=3DEN-US><o:p></o:p></span></p></div><div><p=
 class=3Dxxmsonormal style=3D'background:#201F1E'><span class=3Dxxpl-plain>=
<span lang=3DEN-US style=3D'font-size:9.0pt;font-family:Consolas;color:#E1D=
FDD'>ERROR - </span></span><span lang=3DEN-US><o:p></o:p></span></p></div><=
div><p class=3Dxxmsonormal style=3D'background:#201F1E'><span class=3Dxxpl-=
plain><span lang=3DEN-US style=3D'font-size:9.0pt;font-family:Consolas;colo=
r:#E1DFDD'>ERROR - EFI coding style error </span></span><span lang=3DEN-US>=
<o:p></o:p></span></p></div><div><p class=3Dxxmsonormal style=3D'background=
:#201F1E'><span class=3Dxxpl-plain><span lang=3DEN-US style=3D'font-size:9.=
0pt;font-family:Consolas;color:#E1DFDD'>ERROR - *Error code: 8001 </span></=
span><span lang=3DEN-US><o:p></o:p></span></p></div><div><p class=3Dxxmsono=
rmal style=3D'background:#201F1E'><span class=3Dxxpl-plain><span lang=3DEN-=
US style=3D'font-size:9.0pt;font-family:Consolas;color:#E1DFDD'>ERROR - *On=
ly capital letters are allowed to be used for #define declarations </span><=
/span><span lang=3DEN-US><o:p></o:p></span></p></div><div><p class=3Dxxmson=
ormal style=3D'background:#201F1E'><span class=3Dxxpl-plain><span lang=3DEN=
-US style=3D'font-size:9.0pt;font-family:Consolas;color:#E1DFDD'>ERROR - *f=
ile: //home/vsts/work/1/s/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.=
c </span></span><span lang=3DEN-US><o:p></o:p></span></p></div><div><p clas=
s=3Dxxmsonormal style=3D'background:#201F1E'><span class=3Dxxpl-plain><span=
 lang=3DEN-US style=3D'font-size:9.0pt;font-family:Consolas;color:#E1DFDD'>=
ERROR - *Line number: 27 </span></span><span lang=3DEN-US><o:p></o:p></span=
></p></div><div><p class=3Dxxmsonormal style=3D'background:#201F1E'><span c=
lass=3Dxxpl-plain><span lang=3DEN-US style=3D'font-size:9.0pt;font-family:C=
onsolas;color:#E1DFDD'>ERROR - *The #define name [RC_NV_UndefineSpaceSpecia=
l_nvIndex] does no</span></span><span lang=3DEN-US><o:p></o:p></span></p></=
div></div><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o:p></span=
></p><p class=3Dxxmsonormal><span lang=3DEN-US>Thoughts?<o:p></o:p></span><=
/p><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o:p></span></p><p=
 class=3Dxxmsonormal><span lang=3DEN-US>- Bret <o:p></o:p></span></p><p cla=
ss=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o:p></span></p><div style=
=3D'border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><=
p class=3Dxxmsonormal><b><span lang=3DEN-US>From: </span></b><span lang=3DE=
N-US><a href=3D"mailto:bret=3Dcorthon.com@groups.io">Bret Barkelew via grou=
ps.io</a><br><b>Sent: </b>Friday, July 30, 2021 10:55 AM<br><b>To: </b><a h=
ref=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a><br><b>Cc: </b>=
<a href=3D"mailto:jiewen.yao@intel.com">Yao, Jiewen</a>; <a href=3D"mailto:=
jian.j.wang@intel.com">Jian J Wang</a>; <a href=3D"mailto:qi1.zhang@intel.c=
om">Qi Zhang</a>; <a href=3D"mailto:rahul1.kumar@intel.com">Rahul Kumar</a>=
<br><b>Subject: </b>[EXTERNAL] [edk2-devel] [PATCH v1 1/1] SecurityPkg/Libr=
ary: Add Tpm2NvUndefineSpaceSpecial to Tpm2CommandLib<o:p></o:p></span></p>=
</div><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o:p></span></p=
><p class=3Dxxmsonormal style=3D'margin-bottom:12.0pt'><span lang=3DEN-US>U=
sed to provision and maintain certain HW-defined NV spaces.<br><br>REF: <a =
href=3D"https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2=
Fbugzilla.tianocore.org%2Fshow_bug.cgi%3Fid%3D2994&amp;data=3D04%7C01%7CBre=
t.Barkelew%40microsoft.com%7Ce90f066a5a8c4feae73108d95dee3ec3%7C72f988bf86f=
141af91ab2d7cd011db47%7C1%7C0%7C637644100117889332%7CUnknown%7CTWFpbGZsb3d8=
eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&a=
mp;sdata=3Dpadkn1C%2BUQzKQSPo5gyurkMYW5ihwyf2Wm2mp2lrRKg%3D&amp;reserved=3D=
0">https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fbugz=
illa.tianocore.org%2Fshow_bug.cgi%3Fid%3D2994&amp;amp;data=3D04%7C01%7CBret=
.Barkelew%40microsoft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f1=
41af91ab2d7cd011db47%7C1%7C0%7C637632645397602953%7CUnknown%7CTWFpbGZsb3d8e=
yJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&am=
p;amp;sdata=3Ds96M3RvxMOY831Vfr1nt%2Fz1h3cyb6jU9eFzvjKO7Dtc%3D&amp;amp;rese=
rved=3D0</a><br><br>Signed-off-by: Bret Barkelew &lt;<a href=3D"mailto:bret=
.barkelew@microsoft.com">bret.barkelew@microsoft.com</a>&gt;<br>Cc: Jiewen =
Yao &lt;<a href=3D"mailto:jiewen.yao@intel.com">jiewen.yao@intel.com</a>&gt=
;<br>Cc: Jian J Wang &lt;<a href=3D"mailto:jian.j.wang@intel.com">jian.j.wa=
ng@intel.com</a>&gt;<br>Cc: Qi Zhang &lt;<a href=3D"mailto:qi1.zhang@intel.=
com">qi1.zhang@intel.com</a>&gt;<br>Cc: Rahul Kumar &lt;<a href=3D"mailto:r=
ahul1.kumar@intel.com">rahul1.kumar@intel.com</a>&gt;<br>---<br>&nbsp;Secur=
ityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c | 122 ++++++++++++++++++++<br=
>&nbsp;SecurityPkg/Include/Library/Tpm2CommandLib.h&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp; |&nbsp; 22 ++++<br>&nbsp;2 files changed, 144 insertions(+)<br=
><br>diff --git a/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c b/Secu=
rityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c<br>index 87572de20164..7931f=
ade9190 100644<br>--- a/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c<=
br>+++ b/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c<br>@@ -24,6 +24=
,8 @@ SPDX-License-Identifier: BSD-2-Clause-Patent<br>&nbsp;#define RC_NV_U=
ndefineSpace_authHandle&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; (TPM_RC_H + TPM_RC_1)=
<br><br>&nbsp;#define RC_NV_UndefineSpace_nvIndex&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp; (TPM_RC_H + TPM_RC_2)<br><br>&nbsp;<br><br>+#define =
RC_NV_UndefineSpaceSpecial_nvIndex&nbsp; (TPM_RC_H + TPM_RC_1)<br><br>+<br>=
<br>&nbsp;#define RC_NV_Read_authHandle&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; (TPM_RC_H + TPM_RC_1)<br><=
br>&nbsp;#define RC_NV_Read_nvIndex&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; (TPM_RC_H + =
TPM_RC_2)<br><br>&nbsp;#define RC_NV_Read_size&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp; (TPM_RC_P + TPM_RC_1)<br><br>@@ -74,6 +76,20 @@ typedef st=
ruct {<br>&nbsp;&nbsp; TPMS_AUTH_RESPONSE&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp; AuthSession;<br><br>&nbsp;} TPM2_NV_UNDEFINESPACE_RESPONSE;<=
br><br>&nbsp;<br><br>+typedef struct {<br><br>+&nbsp; TPM2_COMMAND_HEADER&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Header;<br><br>+&nbsp; TPMI_RH_NV_INDEX&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NvIndex;<br><br>+&nbs=
p; TPMI_RH_PLATFORM&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; P=
latform;<br><br>+&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; AuthS=
essionSize;<br><br>+&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp; AuthSession;<br><br>+} TPM2_NV_UNDEFINESPACESPECIAL_COMMA=
ND;<br><br>+<br><br>+typedef struct {<br><br>+&nbsp; TPM2_RESPONSE_HEADER&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Header;<br><br>+&nbsp; UINT32&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; AuthSessionSize;<br><br>+&nbsp; TPMS_AUT=
H_RESPONSE&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; AuthSession;<br>=
<br>+} TPM2_NV_UNDEFINESPACESPECIAL_RESPONSE;<br><br>+<br><br>&nbsp;typedef=
 struct {<br><br>&nbsp;&nbsp; TPM2_COMMAND_HEADER&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp; Header;<br><br>&nbsp;&nbsp; TPMI_RH_NV_AUTH&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; AuthHandle;<br><br>@@ -506,6 +522,1=
12 @@ Done:<br>&nbsp;&nbsp; return Status;<br><br>&nbsp;}<br><br>&nbsp;<br>=
<br>+/**<br><br>+&nbsp; This command removes an index from the TPM.<br><br>=
+<br><br>+&nbsp; @param[in]&nbsp; NvIndex&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; The NV Index.<br><br>+&nbsp; @param[=
in]&nbsp; IndexAuthSession&nbsp;&nbsp;&nbsp; Auth session context for the I=
ndex auth/policy<br><br>+&nbsp; @param[in]&nbsp; PlatAuthSession&nbsp;&nbsp=
;&nbsp;&nbsp; Auth session context for the Platform auth/policy<br><br>+<br=
><br>+&nbsp; @retval EFI_SUCCESS&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Operation completed successfully.<br><br>+&nb=
sp; @retval EFI_NOT_FOUND&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp; The command was returned successfully, but NvIndex is not found.=
<br><br>+&nbsp; @retval EFI_UNSUPPORTED&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp; Selected NvIndex does not support deletion through this call.<=
br><br>+&nbsp; @retval EFI_SECURITY_VIOLATION&nbsp; Deletion is not authori=
zed by current policy session.<br><br>+&nbsp; @retval EFI_INVALID_PARAMETER=
&nbsp;&nbsp; The command was unsuccessful.<br><br>+&nbsp; @retval EFI_DEVIC=
E_ERROR&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; The command was unsuccess=
ful.<br><br>+**/<br><br>+EFI_STATUS<br><br>+EFIAPI<br><br>+Tpm2NvUndefineSp=
aceSpecial (<br><br>+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMI_RH_NV_IND=
EX&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NvIndex,<br><br>+&=
nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *IndexAuthSession OPTIONAL,<br><br>+&nbsp; IN=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp; *PlatAuthSession OPTIONAL<br><br>+&nbsp; )<br><br>+{<=
br><br>+&nbsp; EFI_STATUS&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Status;<br><br>+&nbsp; TP=
M2_NV_UNDEFINESPACESPECIAL_COMMAND&nbsp;&nbsp;&nbsp; SendBuffer;<br><br>+&n=
bsp; TPM2_NV_UNDEFINESPACESPECIAL_RESPONSE&nbsp;&nbsp; RecvBuffer;<br><br>+=
&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; SendBufferSiz=
e;<br><br>+&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Re=
cvBufferSize;<br><br>+&nbsp; UINT8&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp; *Buffer;<br><br>+&nbsp; UINT32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp; IndexAuthSize, PlatAuthSize;<br><br>+&nbsp; TPM_RC&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ResponseCode;<br><br>+<br><br>+&n=
bsp; //<br><br>+&nbsp; // Construct command<br><br>+&nbsp; //<br><br>+&nbsp=
; SendBuffer.Header.tag =3D SwapBytes16(TPM_ST_SESSIONS);<br><br>+&nbsp; Se=
ndBuffer.Header.commandCode =3D SwapBytes32(TPM_CC_NV_UndefineSpaceSpecial)=
;<br><br>+<br><br>+&nbsp; SendBuffer.NvIndex =3D SwapBytes32 (NvIndex);<br>=
<br>+&nbsp; SendBuffer.Platform =3D SwapBytes32 (TPM_RH_PLATFORM);<br><br>+=
<br><br>+&nbsp; //<br><br>+&nbsp; // Marshall the Auth Sessions for the two=
 handles.<br><br>+&nbsp; Buffer =3D (UINT8 *)&amp;SendBuffer.AuthSession;<b=
r><br>+&nbsp; // IndexAuthSession<br><br>+&nbsp; IndexAuthSize =3D CopyAuth=
SessionCommand (IndexAuthSession, Buffer);<br><br>+&nbsp; Buffer +=3D Index=
AuthSize;<br><br>+&nbsp; // PlatAuthSession<br><br>+&nbsp; PlatAuthSize =3D=
 CopyAuthSessionCommand (PlatAuthSession, Buffer);<br><br>+&nbsp; Buffer +=
=3D PlatAuthSize;<br><br>+&nbsp; // AuthSessionSize<br><br>+&nbsp; SendBuff=
er.AuthSessionSize =3D SwapBytes32(IndexAuthSize + PlatAuthSize);<br><br>+<=
br><br>+&nbsp; // Update total command size.<br><br>+&nbsp; SendBufferSize =
=3D (UINT32)(Buffer - (UINT8 *)&amp;SendBuffer);<br><br>+&nbsp; SendBuffer.=
Header.paramSize =3D SwapBytes32 (SendBufferSize);<br><br>+<br><br>+&nbsp; =
//<br><br>+&nbsp; // send Tpm command<br><br>+&nbsp; //<br><br>+&nbsp; Recv=
BufferSize =3D sizeof (RecvBuffer);<br><br>+&nbsp; Status =3D Tpm2SubmitCom=
mand (SendBufferSize, (UINT8 *)&amp;SendBuffer, &amp;RecvBufferSize, (UINT8=
 *)&amp;RecvBuffer);<br><br>+&nbsp; if (EFI_ERROR (Status)) {<br><br>+&nbsp=
;&nbsp;&nbsp; goto Done;<br><br>+&nbsp; }<br><br>+<br><br>+&nbsp; if (RecvB=
ufferSize &lt; sizeof (TPM2_RESPONSE_HEADER)) {<br><br>+&nbsp;&nbsp;&nbsp; =
DEBUG ((EFI_D_ERROR, &quot;Tpm2NvUndefineSpaceSpecial - RecvBufferSize Erro=
r - %x\n&quot;, RecvBufferSize));<br><br>+&nbsp;&nbsp;&nbsp; Status =3D EFI=
_DEVICE_ERROR;<br><br>+&nbsp;&nbsp;&nbsp; goto Done;<br><br>+&nbsp; }<br><b=
r>+<br><br>+&nbsp; ResponseCode =3D SwapBytes32(RecvBuffer.Header.responseC=
ode);<br><br>+&nbsp; if (ResponseCode !=3D TPM_RC_SUCCESS) {<br><br>+&nbsp;=
&nbsp;&nbsp; DEBUG ((EFI_D_ERROR, &quot;Tpm2NvUndefineSpaceSpecial - respon=
seCode - %x\n&quot;, SwapBytes32(RecvBuffer.Header.responseCode)));<br><br>=
+&nbsp; }<br><br>+&nbsp; switch (ResponseCode) {<br><br>+&nbsp; case TPM_RC=
_SUCCESS:<br><br>+&nbsp;&nbsp;&nbsp; // return data<br><br>+&nbsp;&nbsp;&nb=
sp; break;<br><br>+&nbsp; case TPM_RC_ATTRIBUTES:<br><br>+&nbsp; case TPM_R=
C_ATTRIBUTES + RC_NV_UndefineSpaceSpecial_nvIndex:<br><br>+&nbsp;&nbsp;&nbs=
p; Status =3D EFI_UNSUPPORTED;<br><br>+&nbsp;&nbsp;&nbsp; break;<br><br>+&n=
bsp; case TPM_RC_NV_AUTHORIZATION:<br><br>+&nbsp;&nbsp;&nbsp; Status =3D EF=
I_SECURITY_VIOLATION;<br><br>+&nbsp;&nbsp;&nbsp; break;<br><br>+&nbsp; case=
 TPM_RC_HANDLE + RC_NV_UndefineSpaceSpecial_nvIndex: // TPM_RC_NV_DEFINED:<=
br><br>+&nbsp;&nbsp;&nbsp; Status =3D EFI_NOT_FOUND;<br><br>+&nbsp;&nbsp;&n=
bsp; break;<br><br>+&nbsp; case TPM_RC_VALUE + RC_NV_UndefineSpace_nvIndex:=
<br><br>+&nbsp;&nbsp;&nbsp; Status =3D EFI_INVALID_PARAMETER;<br><br>+&nbsp=
;&nbsp;&nbsp; break;<br><br>+&nbsp; default:<br><br>+&nbsp;&nbsp;&nbsp; Sta=
tus =3D EFI_DEVICE_ERROR;<br><br>+&nbsp;&nbsp;&nbsp; break;<br><br>+&nbsp; =
}<br><br>+<br><br>+Done:<br><br>+&nbsp; //<br><br>+&nbsp; // Clear AuthSess=
ion Content<br><br>+&nbsp; //<br><br>+&nbsp; ZeroMem (&amp;SendBuffer, size=
of(SendBuffer));<br><br>+&nbsp; ZeroMem (&amp;RecvBuffer, sizeof(RecvBuffer=
));<br><br>+&nbsp; return Status;<br><br>+} // Tpm2NvUndefineSpaceSpecial()=
<br><br>+<br><br>&nbsp;/**<br><br>&nbsp;&nbsp; This command reads a value f=
rom an area in NV memory previously defined by TPM2_NV_DefineSpace().<br><b=
r>&nbsp;<br><br>diff --git a/SecurityPkg/Include/Library/Tpm2CommandLib.h b=
/SecurityPkg/Include/Library/Tpm2CommandLib.h<br>index ee8eb622951c..8d7b49=
98d98d 100644<br>--- a/SecurityPkg/Include/Library/Tpm2CommandLib.h<br>+++ =
b/SecurityPkg/Include/Library/Tpm2CommandLib.h<br>@@ -364,6 +364,28 @@ Tpm2=
NvUndefineSpace (<br>&nbsp;&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMS_AUT=
H_COMMAND&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *AuthSession OPTI=
ONAL<br><br>&nbsp;&nbsp; );<br><br>&nbsp;<br><br>+/**<br><br>+&nbsp; This c=
ommand removes an index from the TPM.<br><br>+<br><br>+&nbsp; @param[in]&nb=
sp; NvIndex&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp; The NV Index.<br><br>+&nbsp; @param[in]&nbsp; IndexAuthSession&nbs=
p;&nbsp;&nbsp; Auth session context for the Index auth/policy<br><br>+&nbsp=
; @param[in]&nbsp; PlatAuthSession&nbsp;&nbsp;&nbsp;&nbsp; Auth session con=
text for the Platform auth/policy<br><br>+<br><br>+&nbsp; @retval EFI_SUCCE=
SS&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; =
Operation completed successfully.<br><br>+&nbsp; @retval EFI_NOT_FOUND&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; The command was ret=
urned successfully, but NvIndex is not found.<br><br>+&nbsp; @retval EFI_UN=
SUPPORTED&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Selected NvIndex =
does not support deletion through this call.<br><br>+&nbsp; @retval EFI_SEC=
URITY_VIOLATION&nbsp; Deletion is not authorized by current policy session.=
<br><br>+&nbsp; @retval EFI_INVALID_PARAMETER&nbsp;&nbsp; The command was u=
nsuccessful.<br><br>+&nbsp; @retval EFI_DEVICE_ERROR&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp; The command was unsuccessful.<br><br>+**/<br><br>+EFI_S=
TATUS<br><br>+EFIAPI<br><br>+Tpm2NvUndefineSpaceSpecial (<br><br>+&nbsp; IN=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TPMI_RH_NV_INDEX&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp; NvIndex,<br><br>+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp; TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; =
*IndexAuthSession OPTIONAL,<br><br>+&nbsp; IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
 TPMS_AUTH_COMMAND&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; *PlatAut=
hSession OPTIONAL<br><br>+&nbsp; );<br><br>+<br><br>&nbsp;/**<br><br>&nbsp;=
&nbsp; This command reads a value from an area in NV memory previously defi=
ned by TPM2_NV_DefineSpace().<br><br>&nbsp;<br><br>-- <br>2.31.1.windows.1<=
br><br><br><br>-=3D-=3D-=3D-=3D-=3D-=3D<br>Groups.io Links: You receive all=
 messages sent to this group.<br>View/Reply Online (#78450): <a href=3D"htt=
ps://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.group=
s.io%2Fg%2Fdevel%2Fmessage%2F78450&amp;data=3D04%7C01%7CBret.Barkelew%40mic=
rosoft.com%7Ce90f066a5a8c4feae73108d95dee3ec3%7C72f988bf86f141af91ab2d7cd01=
1db47%7C1%7C0%7C637644100117889332%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAw=
MDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=3D5xF1G=
1wVYzxVg8d6jArEFdAZnDdNqdWIAOvw8FJV07M%3D&amp;reserved=3D0">https://nam06.s=
afelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.groups.io%2Fg%2Fd=
evel%2Fmessage%2F78450&amp;amp;data=3D04%7C01%7CBret.Barkelew%40microsoft.c=
om%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141af91ab2d7cd011db47%7C=
1%7C0%7C637632645397612922%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQ=
IjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;amp;sdata=3DCWxLwgp73=
z2XQEa%2FN77gsCwRF73xha0RZCKwcFTlrRE%3D&amp;amp;reserved=3D0</a><br>Mute Th=
is Topic: <a href=3D"https://nam06.safelinks.protection.outlook.com/?url=3D=
https%3A%2F%2Fgroups.io%2Fmt%2F84555713%2F1822150&amp;data=3D04%7C01%7CBret=
.Barkelew%40microsoft.com%7Ce90f066a5a8c4feae73108d95dee3ec3%7C72f988bf86f1=
41af91ab2d7cd011db47%7C1%7C0%7C637644100117899289%7CUnknown%7CTWFpbGZsb3d8e=
yJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&am=
p;sdata=3D2FYy4OplAG2hC8gFxfV3zySEX4SPryroOsIJ9BpQ8v0%3D&amp;reserved=3D0">=
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgroups.=
io%2Fmt%2F84555713%2F1822150&amp;amp;data=3D04%7C01%7CBret.Barkelew%40micro=
soft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f988bf86f141af91ab2d7cd011d=
b47%7C1%7C0%7C637632645397612922%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMD=
AiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;amp;sdata=3DIWQ=
6E4yP0ECt3oYLYQa%2BnddGfcQEDMgfASlcxRuda%2BQ%3D&amp;amp;reserved=3D0</a><br=
>Group Owner: <a href=3D"mailto:devel+owner@edk2.groups.io">devel+owner@edk=
2.groups.io</a><br>Unsubscribe: <a href=3D"https://nam06.safelinks.protecti=
on.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.groups.io%2Fg%2Fdevel%2Funsub&amp;=
data=3D04%7C01%7CBret.Barkelew%40microsoft.com%7Ce90f066a5a8c4feae73108d95d=
ee3ec3%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637644100117909246%7CUn=
known%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJ=
XVCI6Mn0%3D%7C1000&amp;sdata=3DuaOZ7%2FL3FmNlZ%2Fj0jKkSVLWQElFkWKNORPvvZW%2=
Bu8AM%3D&amp;reserved=3D0">https://nam06.safelinks.protection.outlook.com/?=
url=3Dhttps%3A%2F%2Fedk2.groups.io%2Fg%2Fdevel%2Funsub&amp;amp;data=3D04%7C=
01%7CBret.Barkelew%40microsoft.com%7Cb7ae3c62047c48fc85d908d953833ca0%7C72f=
988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637632645397612922%7CUnknown%7CTWFp=
bGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%=
7C1000&amp;amp;sdata=3Dqor4Y5FZEH8ch0AEmWDbe97FIQk4V1qx7IURcTHzjAU%3D&amp;a=
mp;reserved=3D0</a> [brbarkel@microsoft.com]<br>-=3D-=3D-=3D-=3D-=3D-=3D<o:=
p></o:p></span></p><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o=
:p></span></p><div><p class=3Dxxmsonormal><span lang=3DEN-US>&nbsp;<o:p></o=
:p></span></p></div></div></div><div><p class=3DMsoNormal><span lang=3DEN-U=
S><o:p>&nbsp;</o:p></span></p></div></div></div><div><p class=3DMsoNormal><=
/o:p></span></p></div></div></body></html>


 <div width=3D"1" style=3D"color:white;clear:both">_._,_._,_</div> <hr>   G=
roups.io Links:<p>   You receive all messages sent to this group.    <p> <a=
 target=3D"_blank" href=3D"https://edk2.groups.io/g/devel/message/79224">Vi=
ew/Reply Online (#79224)</a> |    |  <a target=3D"_blank" href=3D"https://g=
roups.io/mt/84854740/1787277">Mute This Topic</a>  | <a href=3D"https://edk=
2.groups.io/g/devel/post">New Topic</a><br>    <a href=3D"https://edk2.grou=
ps.io/g/devel/editsub/1787277">Your Subscription</a> | <a href=3D"mailto:de=
vel+owner@edk2.groups.io">Contact Group Owner</a> |  <a href=3D"https://edk=
2.groups.io/g/devel/unsub">Unsubscribe</a>  [importer@patchew.org]<br> <div=
 width=3D"1" style=3D"color:white;clear:both">_._,_._,_</div>=20


------=_NextPart_001_0141_01D79026.D959D8A0--

------=_NextPart_000_0140_01D79026.D959D8A0
Content-Type: image/png;
	name="image001.png"
Content-Transfer-Encoding: base64
Content-ID: <image001.png@01D79026.D90F8930>

iVBORw0KGgoAAAANSUhEUgAAArYAAAADCAYAAABmm0wDAAAAAXNSR0IArs4c6QAAAAlwSFlzAAAS
dAAAEnQB3mYfeAAAABl0RVh0U29mdHdhcmUATWljcm9zb2Z0IE9mZmljZX/tNXEAAABrSURBVGhD
7dCxEUAwAIXhhJQsbAgr2cDp0jgbKCgU3Alr5O57E/zvS9O8lq7rQ4wxGAECBAgQIECAAIFaBVIo
5TnPY2yb9qr1hG4CBAgQIECAAAEC6Se4920Zcs4vDgIECBAgQIAAAQK1CnxV+BKJo+GYJAAAAABJ
RU5ErkJggg==

------=_NextPart_000_0140_01D79026.D959D8A0--