From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail05.groups.io (mail05.groups.io [45.79.224.7]) by spool.mail.gandi.net (Postfix) with ESMTPS id 415817803CD for ; Fri, 24 May 2024 09:41:25 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=iYNRXbgF+HCaSJ3jhxBRFNsQ1PhVt+yPE0iyYdQldeA=; c=relaxed/simple; d=groups.io; h=MIME-Version:References:In-Reply-To:From:Date:Message-ID:Subject:To:Cc:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Resent-Date:Resent-From:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Type; s=20240206; t=1716543683; v=1; b=tT6sU9hL9fol9AtYas0lDQtnoOEfiawA1TOceu9iMXNJPepD+SSvKthT67pF//YUmbCh+Usi k/RUEH7yQC8OEkPZKKy0fiTJdTBoKRpN+pFR6x226QTCUwn+WM6I4FE7HDpqY3Xqg+YMWWeX3Lw +TfnSYSG34aygQlK51GFUcv4P0GU7NI4O/HVN7/VXAt+pX2VJJwdXNYRnp/YPq06l36m/RV+plb Svfm4TL1Qsra3yhXdqVwz8hD7E3EKllq7cIzZDnNM3pVGUCqcB7xFD00q+zN7kXVaudNzZeOLUc ObZsltlupBIKGixX2g/P1uJz/YJJglYBTBIz7nxGlCsLQ== X-Received: by 127.0.0.2 with SMTP id Czs1YY7687511xTt3DFPIhWe; Fri, 24 May 2024 02:41:23 -0700 X-Received: from dfw.source.kernel.org (dfw.source.kernel.org [139.178.84.217]) by mx.groups.io with SMTP id smtpd.web10.11885.1716543677956084642 for ; Fri, 24 May 2024 02:41:18 -0700 X-Received: from smtp.kernel.org (transwarp.subspace.kernel.org [100.75.92.58]) by dfw.source.kernel.org (Postfix) with ESMTP id 464506306C for ; Fri, 24 May 2024 09:41:17 +0000 (UTC) X-Received: by smtp.kernel.org (Postfix) with ESMTPSA id CC180C4AF0A for ; Fri, 24 May 2024 09:41:16 +0000 (UTC) X-Received: by mail-lj1-f174.google.com with SMTP id 38308e7fff4ca-2e95a1d5ee2so12168271fa.0 for ; Fri, 24 May 2024 02:41:16 -0700 (PDT) X-Gm-Message-State: fNKuvY46FSzPnWlYsK1x3B6dx7686176AA= X-Google-Smtp-Source: AGHT+IEH6DXA3xqMZSJP993bw+s3/bNz9799GBya9T45sRq26Wz+nKxDgu3TR+Jxl8KnIYCnpPBHdebAEAV4BQ+l3SE= X-Received: by 2002:a19:ee06:0:b0:523:946f:ded4 with SMTP id 2adb3069b0e04-52966005b4bmr1249895e87.35.1716543675065; Fri, 24 May 2024 02:41:15 -0700 (PDT) MIME-Version: 1.0 References: <20240524054512.523329-1-douglas.flick@microsoft.com> <001001daada8$358301a0$a08904e0$@byosoft.com.cn> <003a01daadba$7013d080$503b7180$@byosoft.com.cn> In-Reply-To: <003a01daadba$7013d080$503b7180$@byosoft.com.cn> From: "Ard Biesheuvel" Date: Fri, 24 May 2024 11:41:04 +0200 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: [edk2-devel] [PATCH v3 00/20] NetworkPkg: CVE-2023-45236 and CVE-2023-45237 To: devel@edk2.groups.io, gaoliming@byosoft.com.cn Cc: dougflick@microsoft.com, kraxel@redhat.com, Michael D Kinney , Andrew Fish , quic_llindhol@quicinc.com Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Resent-Date: Fri, 24 May 2024 02:41:18 -0700 Resent-From: ardb@kernel.org Reply-To: devel@edk2.groups.io,ardb@kernel.org List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: Content-Type: text/plain; charset="UTF-8" X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20240206 header.b=tT6sU9hL; dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=kernel.org (policy=none); spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 45.79.224.7 as permitted sender) smtp.mailfrom=bounce@groups.io On Fri, 24 May 2024 at 11:12, gaoliming via groups.io wrote: > > Ard: > Here is Doug PR https://github.com/tianocore/edk2/pull/5582 that includes 20 commits. You can check them. > This looks fine to me in principle. Reviewed-by: Ard Biesheuvel However, IIUC, the impact of this series is that all out-of-tree platforms that lack the right implementation of the EFI_RNG_PROTOCOL (i.e., using a GUID that appears in the allowlist) will lose the ability to do network boot. If that is a tolerable result, I am fine with that too, but I think it needs to be made very clear in the stable tag release notes. -=-=-=-=-=-=-=-=-=-=-=- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#119253): https://edk2.groups.io/g/devel/message/119253 Mute This Topic: https://groups.io/mt/106278600/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=-=-=-=-=-=-=-=-=-=-=-