From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <jiaxin.wu@intel.com>
Received-SPF: Pass (sender SPF authorized) identity=mailfrom;
 client-ip=192.55.52.120; helo=mga04.intel.com;
 envelope-from=jiaxin.wu@intel.com; receiver=edk2-devel@lists.01.org 
Received: from mga04.intel.com (mga04.intel.com [192.55.52.120])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by ml01.01.org (Postfix) with ESMTPS id 167F921E48F50
 for <edk2-devel@lists.01.org>; Tue, 23 Jan 2018 18:05:24 -0800 (PST)
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from fmsmga003.fm.intel.com ([10.253.24.29])
 by fmsmga104.fm.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384;
 23 Jan 2018 18:10:51 -0800
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.46,404,1511856000"; d="scan'208";a="22095127"
Received: from fmsmsx106.amr.corp.intel.com ([10.18.124.204])
 by FMSMGA003.fm.intel.com with ESMTP; 23 Jan 2018 18:10:50 -0800
Received: from fmsmsx157.amr.corp.intel.com (10.18.116.73) by
 FMSMSX106.amr.corp.intel.com (10.18.124.204) with Microsoft SMTP Server (TLS)
 id 14.3.319.2; Tue, 23 Jan 2018 18:10:50 -0800
Received: from shsmsx151.ccr.corp.intel.com (10.239.6.50) by
 FMSMSX157.amr.corp.intel.com (10.18.116.73) with Microsoft SMTP Server (TLS)
 id 14.3.319.2; Tue, 23 Jan 2018 18:10:49 -0800
Received: from shsmsx103.ccr.corp.intel.com ([169.254.4.213]) by
 SHSMSX151.ccr.corp.intel.com ([169.254.3.218]) with mapi id 14.03.0319.002;
 Wed, 24 Jan 2018 10:10:47 +0800
From: "Wu, Jiaxin" <jiaxin.wu@intel.com>
To: Laszlo Ersek <lersek@redhat.com>, "Fu, Siyuan" <siyuan.fu@intel.com>,
 "Ye, Ting" <ting.ye@intel.com>, "Long, Qin" <qin.long@intel.com>, "Yao,
 Jiewen" <jiewen.yao@intel.com>, "Hsiung, Harry L" <harry.l.hsiung@intel.com>
CC: edk2-devel-01 <edk2-devel@lists.01.org>
Thread-Topic: setting the TLS cipher list for HTTPS booting
Thread-Index: AQHTkTKC7SSIQqPfwE6mEzdxVropQKN8Nf+ggALqwACAAZWo0IAARlKAgAAQ6YCAATdDQA==
Date: Wed, 24 Jan 2018 02:10:47 +0000
Message-ID: <895558F6EA4E3B41AC93A00D163B72741635F6BC@SHSMSX103.ccr.corp.intel.com>
References: <5307d880-d016-ad91-04f5-6b83eb40f905@redhat.com>
 <895558F6EA4E3B41AC93A00D163B72741635E571@SHSMSX103.ccr.corp.intel.com>
 <7b529d2c-1e46-3bd5-d8a6-9225a630f23b@redhat.com>
 <895558F6EA4E3B41AC93A00D163B72741635F0B5@SHSMSX103.ccr.corp.intel.com>
 <366c3083-0eb1-ecb4-2050-654c09135f8a@redhat.com>
 <93bf358e-7e57-a0f0-b8ba-239e72036c27@redhat.com>
In-Reply-To: <93bf358e-7e57-a0f0-b8ba-239e72036c27@redhat.com>
Accept-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-titus-metadata-40: eyJDYXRlZ29yeUxhYmVscyI6IiIsIk1ldGFkYXRhIjp7Im5zIjoiaHR0cDpcL1wvd3d3LnRpdHVzLmNvbVwvbnNcL0ludGVsMyIsImlkIjoiODg5MWE5NzMtMzAyZC00NTM4LTg3OGEtZjRhZjBmZWQ1Y2IxIiwicHJvcHMiOlt7Im4iOiJDVFBDbGFzc2lmaWNhdGlvbiIsInZhbHMiOlt7InZhbHVlIjoiQ1RQX05UIn1dfV19LCJTdWJqZWN0TGFiZWxzIjpbXSwiVE1DVmVyc2lvbiI6IjE2LjUuOS4zIiwiVHJ1c3RlZExhYmVsSGFzaCI6Iks4bUdUK1ArSGd6NHBUa2tqV1A0K0pabGgrVzdBWUNaQ0hPc1k4ZnRWMXM9In0=
x-ctpclassification: CTP_NT
dlp-product: dlpe-windows
dlp-version: 11.0.0.116
dlp-reaction: no-action
x-originating-ip: [10.239.127.40]
MIME-Version: 1.0
Subject: Re: setting the TLS cipher list for HTTPS booting
X-BeenThere: edk2-devel@lists.01.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: EDK II Development  <edk2-devel.lists.01.org>
List-Unsubscribe: <https://lists.01.org/mailman/options/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=unsubscribe>
List-Archive: <http://lists.01.org/pipermail/edk2-devel/>
List-Post: <mailto:edk2-devel@lists.01.org>
List-Help: <mailto:edk2-devel-request@lists.01.org?subject=help>
List-Subscribe: <https://lists.01.org/mailman/listinfo/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jan 2018 02:05:24 -0000
Content-Language: en-US
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
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