<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
        {font-family:"Cambria Math";
        panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
        {font-family:Calibri;
        panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
        {margin:0cm;
        font-size:11.0pt;
        font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
        {mso-style-priority:99;
        color:blue;
        text-decoration:underline;}
span.EmailStyle19
        {mso-style-type:personal-reply;
        font-family:"Calibri",sans-serif;
        color:windowtext;}
.MsoChpDefault
        {mso-style-type:export-only;
        font-size:10.0pt;}
@page WordSection1
        {size:612.0pt 792.0pt;
        margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
        {page:WordSection1;}
--></style>
</head>
<body lang="EN-GB" link="blue" vlink="purple" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal"><span style="mso-fareast-language:EN-US">Hi </span>Sayanta,<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Thanks for confirming.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">With that.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Reviewed-by: Sami Mujawar <sami.mujawar@arm.com><o:p></o:p></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US">Regards,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US">Sami Mujawar<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal" style="margin-bottom:12.0pt"><b><span style="font-size:12.0pt;color:black">From:
</span></b><span style="font-size:12.0pt;color:black">Sayanta Pattanayak <Sayanta.Pattanayak@arm.com><br>
<b>Date: </b>Wednesday, 26 May 2021 at 19:15<br>
<b>To: </b>Sami Mujawar <Sami.Mujawar@arm.com>, devel@edk2.groups.io <devel@edk2.groups.io><br>
<b>Cc: </b>Ard Biesheuvel <ardb+tianocore@kernel.org>, nd <nd@arm.com><br>
<b>Subject: </b>RE: [edk2-platforms][PATCH V1 3/3] Platform/Sgi: enable support for UEFI secure boot<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal">Hi Sami,<br>
<br>
Thanks for the review and suggestion. Please find my reply inline.<br>
<br>
> <br>
> Hi Sayanta,<br>
> <br>
> Thank you for this patch.<br>
> <br>
> Please find my response inline marked [SAMI].<br>
> <br>
> Regards,<br>
> <br>
> Sami Mujawar<br>
> <br>
> On 24/05/2021 06:23 PM, Sayanta Pattanayak wrote:<br>
> > Enable the use of UEFI secure boot for Arm's Neoverse reference design<br>
> > platforms. The UEFI authenticated variable store uses NOR flash 2<br>
> > which is accessible from Standalone MM context residing in a secure<br>
> partition.<br>
> ><br>
> > Signed-off-by: Sayanta Pattanayak <sayanta.pattanayak@arm.com><br>
> > ---<br>
> >   Platform/ARM/SgiPkg/SgiPlatform.dsc.inc       | 31<br>
> +++++++++++++++++++<br>
> >   Platform/ARM/SgiPkg/SgiPlatformMm.dsc.inc     | 32<br>
> ++++++++++++++++++++<br>
> >   Platform/ARM/SgiPkg/PlatformStandaloneMm.dsc  | 15 +++++++++<br>
> >   Platform/ARM/SgiPkg/PlatformStandaloneMm2.dsc | 15 +++++++++<br>
> >   Platform/ARM/SgiPkg/PlatformStandaloneMm.fdf  |  5 +++<br>
> >   Platform/ARM/SgiPkg/SgiPlatform.fdf           |  9 +++++-<br>
> >   6 files changed, 106 insertions(+), 1 deletion(-)<br>
> ><br>
<br>
<...><br>
<br>
> >     ArmPkg/Drivers/MmCommunicationDxe/MmCommunication.inf<br>
> > +!endif<br>
> > diff --git a/Platform/ARM/SgiPkg/SgiPlatformMm.dsc.inc<br>
> > b/Platform/ARM/SgiPkg/SgiPlatformMm.dsc.inc<br>
> > index 3389ff676a91..6839ec35da8a 100644<br>
> > --- a/Platform/ARM/SgiPkg/SgiPlatformMm.dsc.inc<br>
> > +++ b/Platform/ARM/SgiPkg/SgiPlatformMm.dsc.inc<br>
> > @@ -59,6 +59,19 @@<br>
> ><br>
> HobLib|StandaloneMmPkg/Library/StandaloneMmHobLib/StandaloneMmH<br>
> obLib.inf<br>
> ><br>
> MmServicesTableLib|MdePkg/Library/StandaloneMmServicesTableLib/Stan<br>
> daloneMmServicesTableLib.inf<br>
> ><br>
> ><br>
> MemoryAllocationLib|StandaloneMmPkg/Library/StandaloneMmMemoryAll<br>
> ocati<br>
> > onLib/StandaloneMmMemoryAllocationLib.inf<br>
> > +!if $(SECURE_STORAGE_ENABLE) == TRUE<br>
> > +<br>
> > +AuthVariableLib|SecurityPkg/Library/AuthVariableLib/AuthVariableLib.i<br>
> > +nf<br>
> > +  BaseCryptLib|CryptoPkg/Library/BaseCryptLib/SmmCryptLib.inf<br>
> > +  IntrinsicLib|CryptoPkg/Library/IntrinsicLib/IntrinsicLib.inf<br>
> > +<br>
> ><br>
> +NorFlashPlatformLib|Platform/ARM/SgiPkg/Library/NorFlashLib/Standalon<br>
> > +eMmNorFlashLib.inf<br>
> > +  OpensslLib|CryptoPkg/Library/OpensslLib/OpensslLib.inf<br>
> > +  RngLib|MdePkg/Library/BaseRngLibTimerLib/BaseRngLibTimerLib.inf<br>
> [SAMI] There is a recent patch series that adds ARMv8.5 FEAT_RNG support<br>
> to BaseRngLib<br>
>   see<br>
> <a href="https://github.com/tianocore/edk2/commit/9301e5644cef5a5234f71b178373">
https://github.com/tianocore/edk2/commit/9301e5644cef5a5234f71b178373</a><br>
> dd508cabb9ee.<br>
> Can this be used instead of BaseRngLibTimerLib? BaseRngLibTimerLib is for<br>
> non-production use so it would be good to avoid.<br>
> Indeed, this would require that Sgi platforms are ARMv8.5 or above. If not,<br>
> then can we conditionally use BaseRngLibTimerLib for platforms that do not<br>
> support FEAT_RNG.<br>
> [/SAMI]<br>
<br>
Current SGI platforms with secureboot are of pre ARMv8.5.  For ARMv8.5 and above SGI platform, will follow the conditional approach.<br>
<br>
Regards,<br>
Sayanta<br>
<br>
<...><o:p></o:p></p>
</div>
</div>
</body>
</html>


 <div width="1" style="color:white;clear:both">_._,_._,_</div> <hr>   Groups.io Links:<p>   You receive all messages sent to this group.    <p> <a target="_blank" href="https://edk2.groups.io/g/devel/message/75668">View/Reply Online (#75668)</a> |    |  <a target="_blank" href="https://groups.io/mt/83062022/1813853">Mute This Topic</a>  | <a href="https://edk2.groups.io/g/devel/post">New Topic</a><br>    <a href="https://edk2.groups.io/g/devel/editsub/1813853">Your Subscription</a> | <a href="mailto:devel+owner@edk2.groups.io">Contact Group Owner</a> |  <a href="https://edk2.groups.io/g/devel/unsub">Unsubscribe</a>  [edk2-devel-archive@redhat.com]<br> <div width="1" style="color:white;clear:both">_._,_._,_</div>