|
[PATCH RESEND v1 0/9] Add DrbgLib
Thanks for the PPT. It is helpful for me to understand the background. Some questions and suggestions: 1) The PPT jumps from current status (page 7~9) to proposed updates (page 10~12) directly. I am n
|
Thanks for the PPT. It is helpful for me to understand the background. Some questions and suggestions: 1) The PPT jumps from current status (page 7~9) to proposed updates (page 10~12) directly. I am n
|
By
Yao, Jiewen
· #91009
·
|
|
[PATCH RESEND v1 5/7] MdePkg/AesLib: Definition for AES library class interface
By
Yao, Jiewen
· #90996
·
|
|
[PATCH RESEND v1 5/7] MdePkg/AesLib: Definition for AES library class interface
Please allow me to clarify my understanding: 1) You want to promote DrbgLib to MdePkg. -- That is a different topic. We should discuss that in other thread. Now, let’s assume it is OK. 2) You want to
|
Please allow me to clarify my understanding: 1) You want to promote DrbgLib to MdePkg. -- That is a different topic. We should discuss that in other thread. Now, let’s assume it is OK. 2) You want to
|
By
Yao, Jiewen
· #90985
·
|
|
[PATCH RESEND v1 5/7] MdePkg/AesLib: Definition for AES library class interface
I have two concern: 1) I am worried that this API might be misused. Usually, a crypto API should be secure enough to avoid misuse. For example, if a program wants to use AES encryption, it must NOT us
|
I have two concern: 1) I am worried that this API might be misused. Usually, a crypto API should be secure enough to avoid misuse. For example, if a program wants to use AES encryption, it must NOT us
|
By
Yao, Jiewen
· #90973
·
|
|
[PATCH 1/1] OvmfPkg/PlatformCI: add IntelTdxBuild.py
Merged - https://github.com/tianocore/edk2/pull/3038
|
Merged - https://github.com/tianocore/edk2/pull/3038
|
By
Yao, Jiewen
· #90969
·
|
|
[PATCH 1/1] OvmfPkg/PlatformCI: add IntelTdxBuild.py
Reviewed-by: Jiewen Yao <Jiewen.yao@...>
|
Reviewed-by: Jiewen Yao <Jiewen.yao@...>
|
By
Yao, Jiewen
· #90968
·
|
|
[PATCH RESEND v1 0/9] Add DrbgLib
More question: Please educate me how you plan to include DrbgLib to openssl? Currently, it is using RngLib. https://github.com/tianocore/edk2/blob/master/CryptoPkg/Library/OpensslLib/OpensslLib.inf#L6
|
More question: Please educate me how you plan to include DrbgLib to openssl? Currently, it is using RngLib. https://github.com/tianocore/edk2/blob/master/CryptoPkg/Library/OpensslLib/OpensslLib.inf#L6
|
By
Yao, Jiewen
· #90925
·
|
|
[PATCH RESEND v1 5/7] MdePkg/AesLib: Definition for AES library class interface
Hi 1) Would you please educate me, how this library be used in cryptolib? - https://github.com/tianocore/edk2/blob/master/CryptoPkg/Include/Library/BaseCryptLib.h#L1091 Currently, we have AES_CBC. We
|
Hi 1) Would you please educate me, how this library be used in cryptolib? - https://github.com/tianocore/edk2/blob/master/CryptoPkg/Include/Library/BaseCryptLib.h#L1091 Currently, we have AES_CBC. We
|
By
Yao, Jiewen
· #90922
·
|
|
[PATCH v2 00/11] Enhance Secure Boot Variable Libraries
Sounds great. 1) I assume that if it is accepted by project MU, then it must be reviewed and tested. Please add required tag in next patch set. 2) I suggest just use one of: a) all zero, b) initial da
|
Sounds great. 1) I assume that if it is accepted by project MU, then it must be reviewed and tested. Please add required tag in next patch set. 2) I suggest just use one of: a) all zero, b) initial da
|
By
Yao, Jiewen
· #90920
·
|
|
[PATCH v2 00/11] Enhance Secure Boot Variable Libraries
Hi Kun Thank you to make the redesign. Overall the patch set looks good to me. Some questions: Is that from project MU? If so, I would like to see acked-by or tested-by from project MU owner. That can
|
Hi Kun Thank you to make the redesign. Overall the patch set looks good to me. Some questions: Is that from project MU? If so, I would like to see acked-by or tested-by from project MU owner. That can
|
By
Yao, Jiewen
· #90834
·
|
|
[PATCH 2/2] SecurityPkg/HashLibTdx: Return EFI_UNSUPPORTED if it is not Tdx guest
Both are merged. https://github.com/tianocore/edk2/pull/2981
|
Both are merged. https://github.com/tianocore/edk2/pull/2981
|
By
Yao, Jiewen
· #90546
·
|
|
[PATCH 2/2] SecurityPkg/HashLibTdx: Return EFI_UNSUPPORTED if it is not Tdx guest
Reviewed-by: Jiewen Yao <Jiewen.yao@...>
|
Reviewed-by: Jiewen Yao <Jiewen.yao@...>
|
By
Yao, Jiewen
· #90464
·
|
|
[PATCH 1/2] OvmfPkg: Use PcdOvmfWorkAreaBase instead of PcdSevEsWorkAreaBase
Reviewed-by: Jiewen Yao <Jiewen.yao@...>
|
Reviewed-by: Jiewen Yao <Jiewen.yao@...>
|
By
Yao, Jiewen
· #90463
·
|
|
[PATCH V1 1/1] MdeModulePkg: Add Definition of EDKII_PEI_VARIABLE_PPI
Thanks for the response. 1) Why we need "enable UEFI variable write before permanent memory is available"? 2) If the implementation is not ready, I do have concern to add it so early in EDKII. If I do
|
Thanks for the response. 1) Why we need "enable UEFI variable write before permanent memory is available"? 2) If the implementation is not ready, I do have concern to add it so early in EDKII. If I do
|
By
Yao, Jiewen
· #90454
·
|
|
[PATCH V1 1/1] MdeModulePkg: Add Definition of EDKII_PEI_VARIABLE_PPI
Hi I am curious why we need this interface. Why we need write variable capability in PEI phase? Where is the implementation of this? I prefer to see an implementation submitted together with header fi
|
Hi I am curious why we need this interface. Why we need write variable capability in PEI phase? Where is the implementation of this? I prefer to see an implementation submitted together with header fi
|
By
Yao, Jiewen
· #90446
·
|
|
[PATCH v6 1/3] Revert "OvmfPkg/Sec: fix stack switch"
OK. I will revert this at first. Let's figure out a right solution. Acked-by: Jiewen Yao <Jiewen.yao@...>
|
OK. I will revert this at first. Let's figure out a right solution. Acked-by: Jiewen Yao <Jiewen.yao@...>
|
By
Yao, Jiewen
· #90444
·
|
|
Why need to put AP in HLT/MWAIT in ExitBootServices callback
I remember a wait-for-SIPI CPU cannot response to SMI. We do want to let AP response SMI to perform some action, because some SMM code will rely on all APs in SMM. Thank you Yao Jiewen
|
I remember a wait-for-SIPI CPU cannot response to SMI. We do want to let AP response SMI to perform some action, because some SMM code will rely on all APs in SMM. Thank you Yao Jiewen
|
By
Yao, Jiewen
· #90385
·
|
|
[PATCH v5 1/1] OvmfPkg/Sec: fix stack switch
Merged https://github.com/tianocore/edk2/pull/2956
|
Merged https://github.com/tianocore/edk2/pull/2956
|
By
Yao, Jiewen
· #90331
·
|
|
[PATCH v4 1/1] OvmfPkg/Sec: fix stack switch
Hey Gerd CI failed - https://github.com/tianocore/edk2/pull/2954 Have you run the CI before you submit the patch? Thank you Yao Jiewen
|
Hey Gerd CI failed - https://github.com/tianocore/edk2/pull/2954 Have you run the CI before you submit the patch? Thank you Yao Jiewen
|
By
Yao, Jiewen
· #90327
·
|
|
[PATCH v4 1/1] OvmfPkg/Sec: fix stack switch
OK. Let's get it work at first. Acked-by: Jiewen Yao <Jiewen.yao@...>
|
OK. Let's get it work at first. Acked-by: Jiewen Yao <Jiewen.yao@...>
|
By
Yao, Jiewen
· #90298
·
|
