Hi, Bret:
Thanks for your reply!
You are right.

Best wishes,

-----邮件原件-----
发件人: discuss@edk2.groups.io <discuss@edk2.groups.io> 代表 Bret Barkelew via Groups.Io
发送时间: 2020年3月20日 3:23
收件人: discuss@edk2.groups.io; Tiger Liu(BJ-RD) <TigerLiu@...>
主题: Re: [EXTERNAL] [edk2-discuss] Questions about UEFI MAT / PcdPropertiesTableEnable

Wait… I take that back. I was mistaken about which PCD we were talking about (answering email too fast).

This is an older version of the MAT enablement that was found to be incompatible in a number of scenarios. The correct MAT table should be produced automatically by DXE as long as your images are EFI_PAGE_SIZE aligned…

https://github.com/tianocore/edk2/blob/master/MdeModulePkg/Core/Dxe/Misc/MemoryAttributesTable.c

- Bret

From: Bret Barkelew via Groups.Io<mailto:bret.barkelew@...>
Sent: Thursday, March 19, 2020 12:07 PM
To: discuss@edk2.groups.io<mailto:discuss@edk2.groups.io>; tigerliu@...<mailto:tigerliu@...>
Subject: Re: [EXTERNAL] [edk2-discuss] Questions about UEFI MAT / PcdPropertiesTableEnable

I think our (MS Core UEFI) opinion would be that the default should change to TRUE.

- Bret

________________________________
From: discuss@edk2.groups.io <discuss@edk2.groups.io> on behalf of Tiger Liu(BJ-RD) via Groups.Io <tigerliu@...>
Sent: Tuesday, March 17, 2020 9:00:17 PM
To: discuss@edk2.groups.io <discuss@edk2.groups.io>
Subject: [EXTERNAL] [edk2-discuss] Questions about UEFI MAT / PcdPropertiesTableEnable

Hi, Experts:
I have a question about UEFI MAT / PcdPropertiesTableEnable.
Device protection in Windows Security, standard hardware security requirement is described as below:
TPM 2.0
Secure Boot Enabled
DEP
UEFI MAT

And UEFI MAT feature is related with PcdPropertiesTableEnable.

But I found the newest UDK kernel, this PCD is still set with FALSE.

So, is there any concerns if setting its default value as TRUE.

Thanks











保密声明：
本邮件含有保密或专有信息，仅供指定收件人使用。严禁对本邮件或其内容做任何未经授权的查阅、使用、复制或转发。
CONFIDENTIAL NOTE:
This email contains confidential or legally privileged information and is for the sole use of its intended recipient. Any unauthorized review, use, copying or forwarding of this email or the content of this email is strictly prohibited.

Wait… I take that back. I was mistaken about which PCD we were talking about (answering email too fast).

This is an older version of the MAT enablement that was found to be incompatible in a number of scenarios. The correct MAT table should be produced automatically by DXE as long as your images are EFI_PAGE_SIZE aligned…

https://github.com/tianocore/edk2/blob/master/MdeModulePkg/Core/Dxe/Misc/MemoryAttributesTable.c

- Bret

From: Bret Barkelew via Groups.Io<mailto:bret.barkelew@...>
Sent: Thursday, March 19, 2020 12:07 PM
To: discuss@edk2.groups.io<mailto:discuss@edk2.groups.io>; tigerliu@...<mailto:tigerliu@...>
Subject: Re: [EXTERNAL] [edk2-discuss] Questions about UEFI MAT / PcdPropertiesTableEnable

I think our (MS Core UEFI) opinion would be that the default should change to TRUE.

- Bret

________________________________
From: discuss@edk2.groups.io <discuss@edk2.groups.io> on behalf of Tiger Liu(BJ-RD) via Groups.Io <tigerliu@...>
Sent: Tuesday, March 17, 2020 9:00:17 PM
To: discuss@edk2.groups.io <discuss@edk2.groups.io>
Subject: [EXTERNAL] [edk2-discuss] Questions about UEFI MAT / PcdPropertiesTableEnable

Hi, Experts:
I have a question about UEFI MAT / PcdPropertiesTableEnable.
Device protection in Windows Security, standard hardware security requirement is described as below:
TPM 2.0
Secure Boot Enabled
DEP
UEFI MAT

And UEFI MAT feature is related with PcdPropertiesTableEnable.

But I found the newest UDK kernel, this PCD is still set with FALSE.

So, is there any concerns if setting its default value as TRUE.

Thanks

I think our (MS Core UEFI) opinion would be that the default should change to TRUE.

- Bret

________________________________
From: discuss@edk2.groups.io <discuss@edk2.groups.io> on behalf of Tiger Liu(BJ-RD) via Groups.Io <tigerliu@...>
Sent: Tuesday, March 17, 2020 9:00:17 PM
To: discuss@edk2.groups.io <discuss@edk2.groups.io>
Subject: [EXTERNAL] [edk2-discuss] Questions about UEFI MAT / PcdPropertiesTableEnable

Hi, Experts:
I have a question about UEFI MAT / PcdPropertiesTableEnable.
Device protection in Windows Security, standard hardware security requirement is described as below:
TPM 2.0
Secure Boot Enabled
DEP
UEFI MAT

And UEFI MAT feature is related with PcdPropertiesTableEnable.

But I found the newest UDK kernel, this PCD is still set with FALSE.

So, is there any concerns if setting its default value as TRUE.

Thanks