From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mga09.intel.com (mga09.intel.com [134.134.136.24])
 by mx.groups.io with SMTP id smtpd.web12.21805.1664963671396851275
 for <devel@edk2.groups.io>;
 Wed, 05 Oct 2022 02:54:31 -0700
Authentication-Results: mx.groups.io;
 dkim=fail reason="unable to parse pub key" header.i=@intel.com header.s=intel header.b=EYSHpv9G;
 spf=pass (domain: intel.com, ip: 134.134.136.24, mailfrom: gua.guo@intel.com)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
  d=intel.com; i=@intel.com; q=dns/txt; s=Intel;
  t=1664963671; x=1696499671;
  h=from:to:cc:subject:date:message-id:mime-version:
   content-transfer-encoding;
  bh=LuZuvL20APYwTJugxbRMW9cgWPyZpmhYTS/6OkGM3BU=;
  b=EYSHpv9GOll6x+YjB9U0fYftLSV+AUzJctwP9C4ToCFNifkti5uPlAq0
   3PRRg2aqL8XgfGcL4EOHTh/SVp7h/xzT1butNeTzLFMDqog0zAubIQWl4
   1Psn0xV5fK7C5mkM8dkSbgd0dkSqDKAjeHJ6LGaG12/f+Ld1VcKb4598q
   BDWroAd1TkM63F6q8y+V7p5iBxmGu1TAAcbXQrjKgmQc3389r2nZKzqra
   BkeTIphHVg97oBvT885ch0QYGJt/9p4kmB1f3Kt/76DG5WH8tLMy7InC8
   BLPPZf3rWqR1Aak1sDwTsnM8wEQTQYSH+c1CwbZRrg8mZyCTxQyx8KCMy
   g==;
X-IronPort-AV: E=McAfee;i="6500,9779,10490"; a="304106028"
X-IronPort-AV: E=Sophos;i="5.95,159,1661842800"; 
   d="scan'208";a="304106028"
Received: from orsmga002.jf.intel.com ([10.7.209.21])
  by orsmga102.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 05 Oct 2022 02:54:30 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=McAfee;i="6500,9779,10490"; a="624261837"
X-IronPort-AV: E=Sophos;i="5.95,159,1661842800"; 
   d="scan'208";a="624261837"
Received: from gguo-desk.gar.corp.intel.com ([10.5.215.23])
  by orsmga002.jf.intel.com with ESMTP; 05 Oct 2022 02:54:29 -0700
From: "Guo, Gua" <gua.guo@intel.com>
To: devel@edk2.groups.io
Cc: Gua Guo <gua.guo@intel.com>,
	Guo Dong <guo.dong@intel.com>,
	Ray Ni <ray.ni@intel.com>,
	James Lu <james.lu@intel.com>
Subject: [PATCH v3] UefiPayloadPkg: Remove deprecate Crypto Service
Date: Wed,  5 Oct 2022 17:54:27 +0800
Message-Id: <20221005095427.685-1-gua.guo@intel.com>
X-Mailer: git-send-email 2.31.1.windows.1
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable

From: Gua Guo <gua.guo@intel.com>

REF : https://bugzilla.tianocore.org/show_bug.cgi?id=3D4096

TDES and ARC4 services are deprecated so set it as disable.

Cc: Guo Dong <guo.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: James Lu <james.lu@intel.com>
Signed-off-by: Gua Guo <gua.guo@intel.com>
---
 0001-UefiPayloadPkg-Remove-deprecate-Crypto-Service.patch | 40 +++++++++++=
+++++++++
 UefiPayloadPkg/UefiPayloadPkg.dsc                         |  2 -
 2 files changed, 40 insertions(+), 2 deletions(-)

diff --git a/0001-UefiPayloadPkg-Remove-deprecate-Crypto-Service.patch b/00=
01-UefiPayloadPkg-Remove-deprecate-Crypto-Service.patch
new file mode 100644
index 0000000000..d81d45a9ff
--- /dev/null
+++ b/0001-UefiPayloadPkg-Remove-deprecate-Crypto-Service.patch
@@ -0,0 +1,40 @@
+From a1dc2255f4616c16684a39d1e85109c653b3e8de Mon Sep 17 00:00:00 2001
+Message-Id: <a1dc2255f4616c16684a39d1e85109c653b3e8de.1664960866.git.gua.g=
uo@intel.com>
+From: Gua Guo <gua.guo@intel.com>
+Date: Wed, 5 Oct 2022 16:48:05 +0800
+Subject: [PATCH v2] UefiPayloadPkg: Remove deprecate Crypto Service
+
+REF : https://bugzilla.tianocore.org/show_bug.cgi?id=3D4096
+
+TDES and ARC4 services are deprecated so set it as disable.
+
+Cc: Guo Dong <guo.dong@intel.com>
+Cc: Ray Ni <ray.ni@intel.com>
+Cc: James Lu <james.lu@intel.com>
+Signed-off-by: Gua Guo <gua.guo@intel.com>
+---
+ UefiPayloadPkg/UefiPayloadPkg.dsc | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/UefiPayloadPkg/UefiPayloadPkg.dsc b/UefiPayloadPkg/UefiPayloa=
dPkg.dsc
+index 8f23802199..62959542a3 100644
+--- a/UefiPayloadPkg/UefiPayloadPkg.dsc
++++ b/UefiPayloadPkg/UefiPayloadPkg.dsc
+@@ -459,12 +459,12 @@
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Family =
                           | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha512.Family =
                           | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.X509.Family   =
                           | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
+-  gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Tdes.Family   =
                           | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
++  gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Tdes.Family   =
                           | FALSE                            # TDES is dep=
recated and unsupported any longer.=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Services.G=
etContextSize              | TRUE=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Services.I=
nit                        | TRUE=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Services.C=
bcEncrypt                  | TRUE=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Services.C=
bcDecrypt                  | TRUE=0D
+-  gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Arc4.Family   =
                           | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
++  gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Arc4.Family   =
                           | FALSE                            # ARC4 is dep=
recated and unsupported any longer.=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Family    =
                           | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Hkdf.Family   =
                           | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
+   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Tls.Family    =
                           | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
+--=20
+2.31.1.windows.1
+
diff --git a/UefiPayloadPkg/UefiPayloadPkg.dsc b/UefiPayloadPkg/UefiPayload=
Pkg.dsc
index 8f23802199..1150be6acd 100644
--- a/UefiPayloadPkg/UefiPayloadPkg.dsc
+++ b/UefiPayloadPkg/UefiPayloadPkg.dsc
@@ -459,12 +459,10 @@
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Family  =
                          | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha512.Family  =
                          | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.X509.Family    =
                          | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
-  gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Tdes.Family    =
                          | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Services.Ge=
tContextSize              | TRUE=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Services.In=
it                        | TRUE=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Services.Cb=
cEncrypt                  | TRUE=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Services.Cb=
cDecrypt                  | TRUE=0D
-  gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Arc4.Family    =
                          | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Family     =
                          | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Hkdf.Family    =
                          | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
   gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Tls.Family     =
                          | PCD_CRYPTO_SERVICE_ENABLE_FAMILY=0D
--=20
2.31.1.windows.1