From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124])
 by mx.groups.io with SMTP id smtpd.web10.5332.1625135986369731880
 for <devel@edk2.groups.io>;
 Thu, 01 Jul 2021 03:39:46 -0700
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=hmyTjfkf;
 spf=pass (domain: redhat.com, ip: 170.10.133.124, mailfrom: lersek@redhat.com)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
	s=mimecast20190719; t=1625135985;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=7FFhBDUsSs7q741323LLuMcooqqpfMRTJ6s4fcZ0nQw=;
	b=hmyTjfkf2j+KEnpD++oJR7GyASjt8CSTEx2HsDOt2ZlJ63s6GUKQ6VJeFMqauykTZypngD
	CK3O2VwwxqXd9PgvtDY8toXgGQiWdcR7eLYg1jOQqkV+RwApBCotIRYMvVyJg2Peq08u55
	Yz2HETIfvn2sgUEM5b3YI9Hxgpiuzv0=
Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com
 [209.132.183.4]) (Using TLS) by relay.mimecast.com with ESMTP id
 us-mta-528-GQCJGzcNOSeFfJZ6TiFA3Q-1; Thu, 01 Jul 2021 06:39:42 -0400
X-MC-Unique: GQCJGzcNOSeFfJZ6TiFA3Q-1
Received: from smtp.corp.redhat.com (int-mx08.intmail.prod.int.phx2.redhat.com [10.5.11.23])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mimecast-mx01.redhat.com (Postfix) with ESMTPS id 0F0B2362F9;
	Thu,  1 Jul 2021 10:39:39 +0000 (UTC)
Received: from lacos-laptop-7.usersys.redhat.com (ovpn-113-190.ams2.redhat.com [10.36.113.190])
	by smtp.corp.redhat.com (Postfix) with ESMTPS id BB34E19C66;
	Thu,  1 Jul 2021 10:39:32 +0000 (UTC)
Subject: Re: [PATCH v5 03/10] OvmfPkg: add SecureBootVariableLib class resolution
To: Grzegorz Bernacki <gjb@semihalf.com>, devel@edk2.groups.io
Cc: leif@nuviainc.com, ardb+tianocore@kernel.org,
 Samer.El-Haj-Mahmoud@arm.com, sunny.Wang@arm.com, mw@semihalf.com,
 upstream@semihalf.com, jiewen.yao@intel.com, jian.j.wang@intel.com,
 min.m.xu@intel.com, sami.mujawar@arm.com, afish@apple.com, ray.ni@intel.com,
 jordan.l.justen@intel.com, rebecca@bsdio.com, grehan@freebsd.org,
 thomas.abraham@arm.com, chasel.chiu@intel.com,
 nathaniel.l.desimone@intel.com, gaoliming@byosoft.com.cn,
 eric.dong@intel.com, michael.d.kinney@intel.com, zailiang.sun@intel.com,
 yi.qian@intel.com, graeme@nuviainc.com, rad@semihalf.com, pete@akeo.ie
References: <20210701091758.1057485-1-gjb@semihalf.com>
 <20210701091758.1057485-4-gjb@semihalf.com>
From: "Laszlo Ersek" <lersek@redhat.com>
Message-ID: <1cd0f5eb-c0e1-c170-8090-681c3c5841b9@redhat.com>
Date: Thu, 1 Jul 2021 12:39:31 +0200
MIME-Version: 1.0
In-Reply-To: <20210701091758.1057485-4-gjb@semihalf.com>
X-Scanned-By: MIMEDefang 2.84 on 10.5.11.23
Authentication-Results: relay.mimecast.com;
	auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=lersek@redhat.com
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: redhat.com
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit

On 07/01/21 11:17, Grzegorz Bernacki wrote:
> The edk2 patch
>   SecurityPkg: Create library for setting Secure Boot variables.
> 
> moves generic functions from SecureBootConfigDxe and places
> them into SecureBootVariableLib. This patch adds SecureBootVariableLib
> mapping for OvmfPkg.
> 
> Signed-off-by: Grzegorz Bernacki <gjb@semihalf.com>
> ---
>  OvmfPkg/Bhyve/BhyveX64.dsc | 1 +
>  OvmfPkg/OvmfPkgIa32.dsc    | 1 +
>  OvmfPkg/OvmfPkgIa32X64.dsc | 1 +
>  OvmfPkg/OvmfPkgX64.dsc     | 1 +
>  4 files changed, 4 insertions(+)
> 
> diff --git a/OvmfPkg/Bhyve/BhyveX64.dsc b/OvmfPkg/Bhyve/BhyveX64.dsc
> index cbf896e89b..bcc0b2f2f4 100644
> --- a/OvmfPkg/Bhyve/BhyveX64.dsc
> +++ b/OvmfPkg/Bhyve/BhyveX64.dsc
> @@ -196,6 +196,7 @@
>  !if $(SECURE_BOOT_ENABLE) == TRUE
>    PlatformSecureLib|OvmfPkg/Bhyve/Library/PlatformSecureLib/PlatformSecureLib.inf
>    AuthVariableLib|SecurityPkg/Library/AuthVariableLib/AuthVariableLib.inf
> +  SecureBootVariableLib|SecurityPkg/Library/SecureBootVariableLib/SecureBootVariableLib.inf
>  !else
>    AuthVariableLib|MdeModulePkg/Library/AuthVariableLibNull/AuthVariableLibNull.inf
>  !endif
> diff --git a/OvmfPkg/OvmfPkgIa32.dsc b/OvmfPkg/OvmfPkgIa32.dsc
> index f53efeae79..9225966541 100644
> --- a/OvmfPkg/OvmfPkgIa32.dsc
> +++ b/OvmfPkg/OvmfPkgIa32.dsc
> @@ -204,6 +204,7 @@
>  !if $(SECURE_BOOT_ENABLE) == TRUE
>    PlatformSecureLib|OvmfPkg/Library/PlatformSecureLib/PlatformSecureLib.inf
>    AuthVariableLib|SecurityPkg/Library/AuthVariableLib/AuthVariableLib.inf
> +  SecureBootVariableLib|SecurityPkg/Library/SecureBootVariableLib/SecureBootVariableLib.inf
>  !else
>    AuthVariableLib|MdeModulePkg/Library/AuthVariableLibNull/AuthVariableLibNull.inf
>  !endif
> diff --git a/OvmfPkg/OvmfPkgIa32X64.dsc b/OvmfPkg/OvmfPkgIa32X64.dsc
> index b3662e17f2..5d53327edb 100644
> --- a/OvmfPkg/OvmfPkgIa32X64.dsc
> +++ b/OvmfPkg/OvmfPkgIa32X64.dsc
> @@ -208,6 +208,7 @@
>  !if $(SECURE_BOOT_ENABLE) == TRUE
>    PlatformSecureLib|OvmfPkg/Library/PlatformSecureLib/PlatformSecureLib.inf
>    AuthVariableLib|SecurityPkg/Library/AuthVariableLib/AuthVariableLib.inf
> +  SecureBootVariableLib|SecurityPkg/Library/SecureBootVariableLib/SecureBootVariableLib.inf
>  !else
>    AuthVariableLib|MdeModulePkg/Library/AuthVariableLibNull/AuthVariableLibNull.inf
>  !endif
> diff --git a/OvmfPkg/OvmfPkgX64.dsc b/OvmfPkg/OvmfPkgX64.dsc
> index 0a237a9058..509acf7926 100644
> --- a/OvmfPkg/OvmfPkgX64.dsc
> +++ b/OvmfPkg/OvmfPkgX64.dsc
> @@ -208,6 +208,7 @@
>  !if $(SECURE_BOOT_ENABLE) == TRUE
>    PlatformSecureLib|OvmfPkg/Library/PlatformSecureLib/PlatformSecureLib.inf
>    AuthVariableLib|SecurityPkg/Library/AuthVariableLib/AuthVariableLib.inf
> +  SecureBootVariableLib|SecurityPkg/Library/SecureBootVariableLib/SecureBootVariableLib.inf
>  !else
>    AuthVariableLib|MdeModulePkg/Library/AuthVariableLibNull/AuthVariableLibNull.inf
>  !endif
> 

Reviewed-by: Laszlo Ersek <lersek@redhat.com>