From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from NAM11-DM6-obe.outbound.protection.outlook.com (NAM11-DM6-obe.outbound.protection.outlook.com [40.107.223.126])
 by mx.groups.io with SMTP id smtpd.web12.1192.1593672355749453428
 for <devel@edk2.groups.io>;
 Wed, 01 Jul 2020 23:45:55 -0700
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@microsoft.com header.s=selector2 header.b=PzcMbQE+;
 spf=pass (domain: microsoft.com, ip: 40.107.223.126, mailfrom: bret.barkelew@microsoft.com)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 b=M/kF1HopPOqjsGZrIlhMfYPDUD4X3dQ4SIZVQJo8UTLpSyXmSr4I3GmBJVG8k1fIrguq5jaK2PpMkmTx0kDJP5TeeV7RNKnawqDhLSH7aF63QkqInfHDSTtiyeK0Tr8aAYAQhrFSp1flGE0fbRVrYfXAvsytgk1V1Oxn9SjfjyYLmEftC7ebttro84lJMNNdEuAYGy1+ATOTuju1Ofwb5Ckhb/e7FV4zin3vLwa32ow763UVxlkzkckp0rDTIh0rsHuh7fEdTQndwf0PhX7GA/Z6nB/ncGrfDztzu0+nbfGszWXO+cXDzHnu6vMsCE/fg/zQe/O8cdaXijPe0xwmbw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector9901;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=wwsFvpmym2uEy24Rtu0zkc1Tc3jk31dsBHYvSIt48jc=;
 b=O+7cRWm1IB4XSh0QGfT7u91wy3iK876rGvVbIWQNyw46oa0E1asq/fWbD+Xl4uwl2+OsBGyT8+cwoItSYlOAHYtgCmvJV/1IMbWIdx0Qiifdl/x5vRBACJhm2yFya+TFr33Ho/dRmMc/7G/wr+mPzfiN5U6qZO0jwJiynPqR7q/rGBiYMXZw139MqfvN0rHTG36czjAydXs/saF+cBOR1LiG9uk97vmVbVQfvDKgmdMLcl9XM5+BHRNRcEpeVo9OUBgeHeBu4VfRlo0MiZHhbuaO+WcERl/u1UdelVC4A9vwDpqOvZAZONEmtQ9WAykrHxel/jiLyPZMMC+m7qzQEA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=microsoft.com; dmarc=pass action=none
 header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=selector2;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=wwsFvpmym2uEy24Rtu0zkc1Tc3jk31dsBHYvSIt48jc=;
 b=PzcMbQE+ErAKVewNpH8falzFHFZLzlYAdYXzLM04WvPTX9VeuW79QjgztP8O93f7NYr9wyO4yM3cOQ0LGe2p5vxpXMO0wVpqt92ya3FEYROhzSZUAT888kD3NuSo8FQYgdbcPf182W4r/2aZ9q8MvaZY7GpJNNbbhiOLpQ1XJtQ=
Received: from CY4PR21MB0743.namprd21.prod.outlook.com (2603:10b6:903:b2::9)
 by CY4PR21MB0167.namprd21.prod.outlook.com (2603:10b6:903:b9::21) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.1; Thu, 2 Jul
 2020 06:45:53 +0000
Received: from CY4PR21MB0743.namprd21.prod.outlook.com
 ([fe80::f112:82fb:d4fd:f7dd]) by CY4PR21MB0743.namprd21.prod.outlook.com
 ([fe80::f112:82fb:d4fd:f7dd%12]) with mapi id 15.20.3174.012; Thu, 2 Jul 2020
 06:45:53 +0000
From: "Bret Barkelew" <bret.barkelew@microsoft.com>
To: "devel@edk2.groups.io" <devel@edk2.groups.io>, "dandan.bi@intel.com"
	<dandan.bi@intel.com>, "bret@corthon.com" <bret@corthon.com>
CC: "Yao, Jiewen" <jiewen.yao@intel.com>, "Zhang, Chao B"
	<chao.b.zhang@intel.com>, "Wang, Jian J" <jian.j.wang@intel.com>, "Wu, Hao A"
	<hao.a.wu@intel.com>, liming.gao <liming.gao@intel.com>, "Justen, Jordan L"
	<jordan.l.justen@intel.com>, Laszlo Ersek <lersek@redhat.com>, Ard Biesheuvel
	<ard.biesheuvel@arm.com>, Andrew Fish <afish@apple.com>, "Ni, Ray"
	<ray.ni@intel.com>
Subject: Re: [edk2-devel] [PATCH v6 00/14] Add the VariablePolicy feature
Thread-Topic: [edk2-devel] [PATCH v6 00/14] Add the VariablePolicy feature
Thread-Index: AQHWUBZuNMXzI1m6a02/KfjKAWEPGKjz17vE
Date: Thu, 2 Jul 2020 06:45:53 +0000
Message-ID: 
 <CY4PR21MB0743F6EBBD4CED2B2579CAF7EF6D0@CY4PR21MB0743.namprd21.prod.outlook.com>
References: 
 <20200623064104.1908-1-brbarkel@microsoft.com>,<BN6PR11MB1393C0BE317014B85BEFEED4EA6D0@BN6PR11MB1393.namprd11.prod.outlook.com>
In-Reply-To: 
 <BN6PR11MB1393C0BE317014B85BEFEED4EA6D0@BN6PR11MB1393.namprd11.prod.outlook.com>
Accept-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
msip_labels: 
 MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=True;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2020-07-02T06:42:28.4511035Z;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Privileged
authentication-results: edk2.groups.io; dkim=none (message not signed)
 header.d=none;edk2.groups.io; dmarc=none action=none
 header.from=microsoft.com;
x-originating-ip: [174.21.80.75]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: e91cb9c7-c50c-4d22-d7ae-08d81e5390df
x-ms-traffictypediagnostic: CY4PR21MB0167:
x-ld-processed: 72f988bf-86f1-41af-91ab-2d7cd011db47,ExtAddr
x-microsoft-antispam-prvs: 
 <CY4PR21MB0167BCDD4183306AD4167BECEF6D0@CY4PR21MB0167.namprd21.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 
 TIZboX11TPjwWk0GuSzuDVnOF/G2su7TsioOoUx/vGAa/2v8Wi7gEPTKAHSFAQx35DrJbjfxtZWrLuBKGIPET4wARa0VOopebLObQ1cTOAsCI6hC2hDh5AZbxy6J7nhEJRw1ZWNxYE78FrJEVBUgStV6TmhJ15kc6lpPx/7kQgx6SYI7sPbgKNHflUc4GrjIpQEimmDcxaBPaSFF+mQrcXGFDpvi9O/nCiaeMUXD54jlbjDNXNWw04cEoFLq58boph8lgH2FZfvvI2qhzuQQIh2xfqoAe5HVF18pby4SV4rFq3QN8/f7f6QuVVBurWQwq7blqRcPEvpMs/rT+ZviqJhvpzvmrQcrauJ+Ldk3k/6AITA+mVjvk5leEILDz1nm+K/XrrJZm4PP3AsvewD0rw==
x-forefront-antispam-report: 
 CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:CY4PR21MB0743.namprd21.prod.outlook.com;PTR:;CAT:NONE;SFTY:;SFS:(4636009)(366004)(39860400002)(346002)(396003)(376002)(136003)(52536014)(478600001)(7696005)(8676002)(6506007)(53546011)(8936002)(54906003)(316002)(110136005)(5660300002)(66476007)(66446008)(66946007)(966005)(64756008)(10290500003)(2906002)(7416002)(33656002)(66556008)(86362001)(76116006)(83380400001)(55016002)(9686003)(30864003)(166002)(71200400001)(186003)(4326008)(8990500004)(82950400001)(82960400001)(26005);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata: 
 DpPXixA8YJgO0XWeaoXfeiYuOsplBHbjDd62qfIUkZ4ajNq98YEmqiLXcZ/9ZyhqCTTn4ptO4R9bqBgPvoqu7AAS70CJgo4ZzdKR/YP9Lcz7dTGlgYqGhilf1QvxfDjjgb3gei0ppC5PKfQ4t1W4Ndt0hbLeREENq3hj6v3E9twq4OZoJJCovYDnqHXkIWeUV09J2rjXDBqvJjNZk6QMosMaON/3ZeIkF+ko3JCxLWS9GoLaV6oda+fIPB8UdM8KRi4JKV+hOj8VshfpX6la2AajdZuo01PN0JpMnAXQ5zBrM6qRAxgW8IjsxSzmvbGC9Wckr4dlHPYMg8Rrqhw7MRekz/5W8qDhRPr+tIZTP8UvBgrZTYX+e3ipQzrJEwtDduYwryazCSohZHyM2s0zM0pr2Hxg/vdfqyQEnxuyzskHdyF98r83RYp3caf0ED64scRyMUXl0OX0yo5OrTI0vS8A94aWVAYFSmnQgDspgJM=
x-ms-exchange-transport-forked: True
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CY4PR21MB0743.namprd21.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e91cb9c7-c50c-4d22-d7ae-08d81e5390df
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Jul 2020 06:45:53.3733
 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: FnhnVzrXLgjNfwfoUv4Y+zVMiF5+Eo9TU3GRK9H4JOIulpXFIDqqNph7aXI/VStrfjK0/mWD/7Uo3PEGLTCX8g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY4PR21MB0167
Content-Language: en-US
Content-Type: multipart/alternative;
	boundary="_000_CY4PR21MB0743F6EBBD4CED2B2579CAF7EF6D0CY4PR21MB0743namp_"

--_000_CY4PR21MB0743F6EBBD4CED2B2579CAF7EF6D0CY4PR21MB0743namp_
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable

Certainly do:
https://github.com/corthon/edk2/tree/var_policy_dev_submission_v6

I=92ve already made a change from some of your feedback in that branch and=
 will restructure the patches for v7 once all feedback is in.
Thanks!

- Bret

From: Dandan Bi via groups.io<mailto:dandan.bi=3Dintel.com@groups.io>
Sent: Wednesday, July 1, 2020 7:13 PM
To: devel@edk2.groups.io<mailto:devel@edk2.groups.io>; bret@corthon.com<ma=
ilto:bret@corthon.com>
Cc: Yao, Jiewen<mailto:jiewen.yao@intel.com>; Zhang, Chao B<mailto:chao.b.=
zhang@intel.com>; Wang, Jian J<mailto:jian.j.wang@intel.com>; Wu, Hao A<mai=
lto:hao.a.wu@intel.com>; liming.gao<mailto:liming.gao@intel.com>; Justen, J=
ordan L<mailto:jordan.l.justen@intel.com>; Laszlo Ersek<mailto:lersek@redha=
t.com>; Ard Biesheuvel<mailto:ard.biesheuvel@arm.com>; Andrew Fish<mailto:a=
fish@apple.com>; Ni, Ray<mailto:ray.ni@intel.com>
Subject: [EXTERNAL] Re: [edk2-devel] [PATCH v6 00/14] Add the VariablePoli=
cy feature

Hi Bret,

Thanks for the contribution.

I have taken an overview of this patch series and have some small comments=
 in the related patches, please check in sub-patch.

I will review the patch series more in details and bring more comments bac=
k if have. Do you have a branch for these patches in GitHub? Which should b=
e easy for review.


Thanks,
Dandan

> -----Original Message-----
> From: devel@edk2.groups.io <devel@edk2.groups.io> On Behalf Of Bret
> Barkelew
> Sent: Tuesday, June 23, 2020 2:41 PM
> To: devel@edk2.groups.io
> Cc: Yao, Jiewen <jiewen.yao@intel.com>; Zhang, Chao B
> <chao.b.zhang@intel.com>; Wang, Jian J <jian.j.wang@intel.com>; Wu, Hao
> A <hao.a.wu@intel.com>; Gao, Liming <liming.gao@intel.com>; Justen,
> Jordan L <jordan.l.justen@intel.com>; Laszlo Ersek <lersek@redhat.com>;
> Ard Biesheuvel <ard.biesheuvel@arm.com>; Andrew Fish
> <afish@apple.com>; Ni, Ray <ray.ni@intel.com>
> Subject: [edk2-devel] [PATCH v6 00/14] Add the VariablePolicy feature
>
> REF:https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2F=
bugzilla.tianocore.org%2Fshow_bug.cgi%3Fid%3D2522&amp;data=3D02%7C01%7Cbret=
.barkelew%40microsoft.com%7C3fb90fd337a24d2c965d08d81e2d9081%7C72f988bf86f1=
41af91ab2d7cd011db47%7C1%7C0%7C637292528333631839&amp;sdata=3D7hyxOuoJb08Nc=
pj6Ww4ABCFx48tdOUKmGZq5uCxLHjo%3D&amp;reserved=3D0
>
> The 14 patches in this series add the VariablePolicy feature to the core=
,
> deprecate Edk2VarLock (while adding a compatibility layer to reduce code
> churn), and integrate the VariablePolicy libraries and protocols into Va=
riable
> Services.
>
> Since the integration requires multiple changes, including adding librar=
ies, a
> protocol, an SMI communication handler, and VariableServices integration=
,
> the patches are broken up by individual library additions and then a fin=
al
> integration. Security-sensitive changes like bypassing Authenticated Var=
iable
> enforcement are also broken out into individual patches so that attentio=
n can
> be called directly to them.
>
> Platform porting instructions are described in this wiki entry:
> https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgith=
ub.com%2Ftianocore%2Ftianocore.github.io%2Fwiki%2FVariablePolicy-&amp;data=
=3D02%7C01%7Cbret.barkelew%40microsoft.com%7C3fb90fd337a24d2c965d08d81e2d9=
081%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637292528333631839&amp;sda=
ta=3DB%2Bl%2F43l6xTTzvLw00gyXElHqUlu%2BfwhuUJOIEh%2BHN6g%3D&amp;reserved=3D=
0
> Protocol---Enhanced-Method-for-Managing-Variables#platform-porting
>
> Discussion of the feature can be found in multiple places throughout the=
 last
> year on the RFC channel, staging branches, and in devel.
>
> Most recently, this subject was discussed in this thread:
> https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2=
.groups.io%2Fg%2Fdevel%2Fmessage%2F53712&amp;data=3D02%7C01%7Cbret.barkelew=
%40microsoft.com%7C3fb90fd337a24d2c965d08d81e2d9081%7C72f988bf86f141af91ab2=
d7cd011db47%7C1%7C0%7C637292528333631839&amp;sdata=3DUMEtJ5hxVBmvcWPSLRwDZ6=
P6bOaE8N3v5sEgdzyPffw%3D&amp;reserved=3D0
> (the code branches shared in that discussion are now out of date, but th=
e
> whitepapers and discussion are relevant).
>
> Cc: Jiewen Yao <jiewen.yao@intel.com>
> Cc: Chao Zhang <chao.b.zhang@intel.com>
> Cc: Jian J Wang <jian.j.wang@intel.com>
> Cc: Hao A Wu <hao.a.wu@intel.com>
> Cc: Liming Gao <liming.gao@intel.com>
> Cc: Jordan Justen <jordan.l.justen@intel.com>
> Cc: Laszlo Ersek <lersek@redhat.com>
> Cc: Ard Biesheuvel <ard.biesheuvel@arm.com>
> Cc: Andrew Fish <afish@apple.com>
> Cc: Ray Ni <ray.ni@intel.com>
> Cc: Bret Barkelew <brbarkel@microsoft.com>
> Signed-off-by: Bret Barkelew <brbarkel@microsoft.com>
>
> v6 changes:
> * Fix an issue with uninitialized Status in InitVariablePolicyLib() and
> DeinitVariablePolicyLib()
> * Fix GCC building in shell-based functional test
> * Rebase on latest origin/master
>
> v5 changes:
> * Fix the CONST mismatch in VariablePolicy.h and VariablePolicySmmDxe.c
> * Fix EFIAPI mismatches in the functional unittest
> * Rebase on latest origin/master
>
> v4 changes:
> * Remove Optional PcdAllowVariablePolicyEnforcementDisable PCD from
> platforms
> * Rebase on master
> * Migrate to new MmCommunicate2 protocol
> * Fix an oversight in the default return value for
> InitMmCommonCommBuffer
> * Fix in VariablePolicyLib to allow ExtraInitRuntimeDxe to consume varia=
bles
>
> V3 changes:
> * Address all non-unittest issues with ECC
> * Make additional style changes
> * Include section name in hunk headers in "ini-style" files
> * Remove requirement for the EdkiiPiSmmCommunicationsRegionTable
> driver
>   (now allocates its own buffer)
> * Change names from VARIABLE_POLICY_PROTOCOL and
> gVariablePolicyProtocolGuid
>   to EDKII_VARIABLE_POLICY_PROTOCOL and
> gEdkiiVariablePolicyProtocolGuid
> * Fix GCC warning about initializing externs
> * Add UNI strings for new PCD
> * Add patches for ArmVirtPkg, OvmfXen, and UefiPayloadPkg
> * Reorder patches according to Liming's feedback about adding to platfor=
ms
>   before changing variable driver
>
> V2 changes:
> * Fixed implementation for RuntimeDxe
> * Add PCD to block DisableVariablePolicy
> * Fix the DumpVariablePolicy pagination in SMM
>
> Bret Barkelew (14):
>   MdeModulePkg: Define the VariablePolicy protocol interface
>   MdeModulePkg: Define the VariablePolicyLib
>   MdeModulePkg: Define the VariablePolicyHelperLib
>   MdeModulePkg: Define the VarCheckPolicyLib and SMM interface
>   OvmfPkg: Add VariablePolicy engine to OvmfPkg platform
>   EmulatorPkg: Add VariablePolicy engine to EmulatorPkg platform
>   ArmVirtPkg: Add VariablePolicy engine to ArmVirtPkg platform
>   UefiPayloadPkg: Add VariablePolicy engine to UefiPayloadPkg platform
>   MdeModulePkg: Connect VariablePolicy business logic to
>     VariableServices
>   MdeModulePkg: Allow VariablePolicy state to delete protected variables
>   SecurityPkg: Allow VariablePolicy state to delete authenticated
>     variables
>   MdeModulePkg: Change TCG MOR variables to use VariablePolicy
>   MdeModulePkg: Drop VarLock from RuntimeDxe variable driver
>   MdeModulePkg: Add a shell-based functional test for VariablePolicy
>
>  MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.c
> |  320 +++
>  MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.c
> |  396 ++++
>  MdeModulePkg/Library/VariablePolicyLib/VariablePolicyExtraInitNull.c
> |   46 +
>
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyExtraInitRuntimeDx
> e.c               |   85 +
>  MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.c
> |  816 +++++++
>
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyUnitTest/VariablePo
> licyUnitTest.c   | 2440 ++++++++++++++++++++
>
> MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/VariablePolicyFu
> ncTestApp.c        | 1978 ++++++++++++++++
>  MdeModulePkg/Universal/Variable/RuntimeDxe/TcgMorLockDxe.c
> |   52 +-
>  MdeModulePkg/Universal/Variable/RuntimeDxe/TcgMorLockSmm.c
> |   60 +-
>  MdeModulePkg/Universal/Variable/RuntimeDxe/VarCheck.c
> |   49 +-
>  MdeModulePkg/Universal/Variable/RuntimeDxe/VariableDxe.c
> |   53 +
>
> MdeModulePkg/Universal/Variable/RuntimeDxe/VariableLockRequstToLock
> .c                    |   71 +
>  MdeModulePkg/Universal/Variable/RuntimeDxe/VariablePolicySmmDxe.c
> |  642 +++++
>
> MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.
> c                       |   14 +
>  SecurityPkg/Library/AuthVariableLib/AuthService.c                      =
                  |   22
> +-
>  ArmVirtPkg/ArmVirt.dsc.inc                                             =
                  |    4 +
>  EmulatorPkg/EmulatorPkg.dsc                                            =
                  |    3 +
>  MdeModulePkg/Include/Guid/VarCheckPolicyMmi.h                          =
                  |
> 54 +
>  MdeModulePkg/Include/Library/VariablePolicyHelperLib.h
> |  164 ++
>  MdeModulePkg/Include/Library/VariablePolicyLib.h                       =
                  |
> 207 ++
>  MdeModulePkg/Include/Protocol/VariablePolicy.h                         =
                  |
> 157 ++
>  MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.inf
> |   42 +
>  MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.uni
> |   12 +
>  MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.in=
f
> |   35 +
>  MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.un=
i
> |   12 +
>  MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.inf
> |   44 +
>  MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.uni
> |   12 +
>  MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLibRuntimeDxe.inf
> |   51 +
>
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyUnitTest/VariablePo
> licyUnitTest.inf |   40 +
>  MdeModulePkg/MdeModulePkg.ci.yaml                                      =
                  |    4 +-
>  MdeModulePkg/MdeModulePkg.dec                                          =
                  |   26 +-
>  MdeModulePkg/MdeModulePkg.dsc                                          =
                  |   15 +
>  MdeModulePkg/MdeModulePkg.uni                                          =
                  |    7 +
>  MdeModulePkg/Test/MdeModulePkgHostTest.dsc                             =
                  |
> 11 +
>  MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/Readme.md
> |   55 +
>
> MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/VariablePolicyFu
> ncTestApp.inf      |   42 +
>  MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeDxe.inf
> |    5 +
>  MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.inf
> |    4 +
>
> MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.i
> nf                     |   10 +
>
> MdeModulePkg/Universal/Variable/RuntimeDxe/VariableStandaloneMm.inf
> |    4 +
>  OvmfPkg/OvmfPkgIa32.dsc                                                =
                  |    5 +
>  OvmfPkg/OvmfPkgIa32X64.dsc                                             =
                  |    5 +
>  OvmfPkg/OvmfPkgX64.dsc                                                 =
                  |    5 +
>  OvmfPkg/OvmfXen.dsc                                                    =
                  |    4 +
>  SecurityPkg/Library/AuthVariableLib/AuthVariableLib.inf                =
                  |
> 2 +
>  UefiPayloadPkg/UefiPayloadPkgIa32.dsc                                  =
                  |    4 +
>  UefiPayloadPkg/UefiPayloadPkgIa32X64.dsc                               =
                  |    4 +
>  47 files changed, 8015 insertions(+), 78 deletions(-)  create mode 1006=
44
> MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.c
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.c
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyExtraInitNull.c
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyExtraInitRuntimeDx
> e.c
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.c
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyUnitTest/VariablePo
> licyUnitTest.c
>  create mode 100644
> MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/VariablePolicyFu
> ncTestApp.c
>  create mode 100644
> MdeModulePkg/Universal/Variable/RuntimeDxe/VariableLockRequstToLock
> .c
>  create mode 100644
> MdeModulePkg/Universal/Variable/RuntimeDxe/VariablePolicySmmDxe.c
>  create mode 100644 MdeModulePkg/Include/Guid/VarCheckPolicyMmi.h
>  create mode 100644
> MdeModulePkg/Include/Library/VariablePolicyHelperLib.h
>  create mode 100644 MdeModulePkg/Include/Library/VariablePolicyLib.h
>  create mode 100644 MdeModulePkg/Include/Protocol/VariablePolicy.h
>  create mode 100644
> MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.inf
>  create mode 100644
> MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.uni
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.inf
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.uni
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.inf
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.uni
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLibRuntimeDxe.inf
>  create mode 100644
> MdeModulePkg/Library/VariablePolicyLib/VariablePolicyUnitTest/VariablePo
> licyUnitTest.inf
>  create mode 100644
> MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/Readme.md
>  create mode 100644
> MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/VariablePolicyFu
> ncTestApp.inf
>
> --
> 2.26.2.windows.1.8.g01c50adf56.20200515075929
>
>
>





--_000_CY4PR21MB0743F6EBBD4CED2B2579CAF7EF6D0CY4PR21MB0743namp_
Content-Type: text/html; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable

<html xmlns:o=3D"urn:schemas-microsoft-com:office:office" xmlns:w=3D"urn:sc=
hemas-microsoft-com:office:word" xmlns:m=3D"http://schemas.microsoft.com/of=
fice/2004/12/omml" xmlns=3D"http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3DWindows-=
1252">
<meta name=3D"Generator" content=3D"Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
	{font-family:"Cambria Math";
	panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
	{font-family:DengXian;
	panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
	{font-family:"\@DengXian";
	panose-1:2 1 6 0 3 1 1 1 1 1;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	margin-bottom:.0001pt;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:blue;
	text-decoration:underline;}
.MsoChpDefault
	{mso-style-type:export-only;}
@page WordSection1
	{size:8.5in 11.0in;
	margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
	{page:WordSection1;}
--></style>
</head>
<body lang=3D"EN-US" link=3D"blue" vlink=3D"#954F72">
<div class=3D"WordSection1">
<p class=3D"MsoNormal">Certainly do:<br>
<a href=3D"https://github.com/corthon/edk2/tree/var_policy_dev_submission_=
v6">https://github.com/corthon/edk2/tree/var_policy_dev_submission_v6</a><o=
:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal">I=92ve already made a change from some of your feed=
back in that branch and will restructure the patches for v7 once all feedba=
ck is in.<o:p></o:p></p>
<p class=3D"MsoNormal">Thanks!</p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal">- Bret</p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<div style=3D"mso-element:para-border-div;border:none;border-top:solid #E1=
E1E1 1.0pt;padding:3.0pt 0in 0in 0in">
<p class=3D"MsoNormal" style=3D"border:none;padding:0in"><b>From: </b><a h=
ref=3D"mailto:dandan.bi=3Dintel.com@groups.io">Dandan Bi via groups.io</a><=
br>
<b>Sent: </b>Wednesday, July 1, 2020 7:13 PM<br>
<b>To: </b><a href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a=
>; <a href=3D"mailto:bret@corthon.com">
bret@corthon.com</a><br>
<b>Cc: </b><a href=3D"mailto:jiewen.yao@intel.com">Yao, Jiewen</a>; <a hre=
f=3D"mailto:chao.b.zhang@intel.com">
Zhang, Chao B</a>; <a href=3D"mailto:jian.j.wang@intel.com">Wang, Jian J</=
a>; <a href=3D"mailto:hao.a.wu@intel.com">
Wu, Hao A</a>; <a href=3D"mailto:liming.gao@intel.com">liming.gao</a>; <a =
href=3D"mailto:jordan.l.justen@intel.com">
Justen, Jordan L</a>; <a href=3D"mailto:lersek@redhat.com">Laszlo Ersek</a=
>; <a href=3D"mailto:ard.biesheuvel@arm.com">
Ard Biesheuvel</a>; <a href=3D"mailto:afish@apple.com">Andrew Fish</a>; <a=
 href=3D"mailto:ray.ni@intel.com">
Ni, Ray</a><br>
<b>Subject: </b>[EXTERNAL] Re: [edk2-devel] [PATCH v6 00/14] Add the Varia=
blePolicy feature</p>
</div>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal" style=3D"margin-bottom:12.0pt">Hi Bret,<br>
<br>
Thanks for the contribution.<br>
<br>
I have taken an overview of this patch series and have some small comments=
 in the related patches, please check in sub-patch.<br>
<br>
I will review the patch series more in details and bring more comments bac=
k if have. Do you have a branch for these patches in GitHub? Which should b=
e easy for review.<br>
<br>
<br>
Thanks,<br>
Dandan<br>
<br>
&gt; -----Original Message-----<br>
&gt; From: devel@edk2.groups.io &lt;devel@edk2.groups.io&gt; On Behalf Of =
Bret<br>
&gt; Barkelew<br>
&gt; Sent: Tuesday, June 23, 2020 2:41 PM<br>
&gt; To: devel@edk2.groups.io<br>
&gt; Cc: Yao, Jiewen &lt;jiewen.yao@intel.com&gt;; Zhang, Chao B<br>
&gt; &lt;chao.b.zhang@intel.com&gt;; Wang, Jian J &lt;jian.j.wang@intel.co=
m&gt;; Wu, Hao<br>
&gt; A &lt;hao.a.wu@intel.com&gt;; Gao, Liming &lt;liming.gao@intel.com&gt=
;; Justen,<br>
&gt; Jordan L &lt;jordan.l.justen@intel.com&gt;; Laszlo Ersek &lt;lersek@r=
edhat.com&gt;;<br>
&gt; Ard Biesheuvel &lt;ard.biesheuvel@arm.com&gt;; Andrew Fish<br>
&gt; &lt;afish@apple.com&gt;; Ni, Ray &lt;ray.ni@intel.com&gt;<br>
&gt; Subject: [edk2-devel] [PATCH v6 00/14] Add the VariablePolicy feature=
<br>
&gt; <br>
&gt; REF:https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F=
%2Fbugzilla.tianocore.org%2Fshow_bug.cgi%3Fid%3D2522&amp;amp;data=3D02%7C01=
%7Cbret.barkelew%40microsoft.com%7C3fb90fd337a24d2c965d08d81e2d9081%7C72f98=
8bf86f141af91ab2d7cd011db47%7C1%7C0%7C637292528333631839&amp;amp;sdata=3D7h=
yxOuoJb08Ncpj6Ww4ABCFx48tdOUKmGZq5uCxLHjo%3D&amp;amp;reserved=3D0<br>
&gt; <br>
&gt; The 14 patches in this series add the VariablePolicy feature to the c=
ore,<br>
&gt; deprecate Edk2VarLock (while adding a compatibility layer to reduce c=
ode<br>
&gt; churn), and integrate the VariablePolicy libraries and protocols into=
 Variable<br>
&gt; Services.<br>
&gt; <br>
&gt; Since the integration requires multiple changes, including adding lib=
raries, a<br>
&gt; protocol, an SMI communication handler, and VariableServices integrat=
ion,<br>
&gt; the patches are broken up by individual library additions and then a =
final<br>
&gt; integration. Security-sensitive changes like bypassing Authenticated =
Variable<br>
&gt; enforcement are also broken out into individual patches so that atten=
tion can<br>
&gt; be called directly to them.<br>
&gt; <br>
&gt; Platform porting instructions are described in this wiki entry:<br>
&gt; <a href=3D"https://nam06.safelinks.protection.outlook.com/?url=3Dhttp=
s%3A%2F%2Fgithub.com%2Ftianocore%2Ftianocore.github.io%2Fwiki%2FVariablePol=
icy-&amp;amp;data=3D02%7C01%7Cbret.barkelew%40microsoft.com%7C3fb90fd337a24=
d2c965d08d81e2d9081%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C6372925283=
33631839&amp;amp;sdata=3DB%2Bl%2F43l6xTTzvLw00gyXElHqUlu%2BfwhuUJOIEh%2BHN6=
g%3D&amp;amp;reserved=3D0">
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgithub=
.com%2Ftianocore%2Ftianocore.github.io%2Fwiki%2FVariablePolicy-&amp;amp;dat=
a=3D02%7C01%7Cbret.barkelew%40microsoft.com%7C3fb90fd337a24d2c965d08d81e2d9=
081%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637292528333631839&amp;amp=
;sdata=3DB%2Bl%2F43l6xTTzvLw00gyXElHqUlu%2BfwhuUJOIEh%2BHN6g%3D&amp;amp;res=
erved=3D0</a><br>
&gt; Protocol---Enhanced-Method-for-Managing-Variables#platform-porting<br=
>
&gt; <br>
&gt; Discussion of the feature can be found in multiple places throughout =
the last<br>
&gt; year on the RFC channel, staging branches, and in devel.<br>
&gt; <br>
&gt; Most recently, this subject was discussed in this thread:<br>
&gt; <a href=3D"https://nam06.safelinks.protection.outlook.com/?url=3Dhttp=
s%3A%2F%2Fedk2.groups.io%2Fg%2Fdevel%2Fmessage%2F53712&amp;amp;data=3D02%7C=
01%7Cbret.barkelew%40microsoft.com%7C3fb90fd337a24d2c965d08d81e2d9081%7C72f=
988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637292528333631839&amp;amp;sdata=3D=
UMEtJ5hxVBmvcWPSLRwDZ6P6bOaE8N3v5sEgdzyPffw%3D&amp;amp;reserved=3D0">
https://nam06.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fedk2.g=
roups.io%2Fg%2Fdevel%2Fmessage%2F53712&amp;amp;data=3D02%7C01%7Cbret.barkel=
ew%40microsoft.com%7C3fb90fd337a24d2c965d08d81e2d9081%7C72f988bf86f141af91a=
b2d7cd011db47%7C1%7C0%7C637292528333631839&amp;amp;sdata=3DUMEtJ5hxVBmvcWPS=
LRwDZ6P6bOaE8N3v5sEgdzyPffw%3D&amp;amp;reserved=3D0</a><br>
&gt; (the code branches shared in that discussion are now out of date, but=
 the<br>
&gt; whitepapers and discussion are relevant).<br>
&gt; <br>
&gt; Cc: Jiewen Yao &lt;jiewen.yao@intel.com&gt;<br>
&gt; Cc: Chao Zhang &lt;chao.b.zhang@intel.com&gt;<br>
&gt; Cc: Jian J Wang &lt;jian.j.wang@intel.com&gt;<br>
&gt; Cc: Hao A Wu &lt;hao.a.wu@intel.com&gt;<br>
&gt; Cc: Liming Gao &lt;liming.gao@intel.com&gt;<br>
&gt; Cc: Jordan Justen &lt;jordan.l.justen@intel.com&gt;<br>
&gt; Cc: Laszlo Ersek &lt;lersek@redhat.com&gt;<br>
&gt; Cc: Ard Biesheuvel &lt;ard.biesheuvel@arm.com&gt;<br>
&gt; Cc: Andrew Fish &lt;afish@apple.com&gt;<br>
&gt; Cc: Ray Ni &lt;ray.ni@intel.com&gt;<br>
&gt; Cc: Bret Barkelew &lt;brbarkel@microsoft.com&gt;<br>
&gt; Signed-off-by: Bret Barkelew &lt;brbarkel@microsoft.com&gt;<br>
&gt; <br>
&gt; v6 changes:<br>
&gt; * Fix an issue with uninitialized Status in InitVariablePolicyLib() a=
nd<br>
&gt; DeinitVariablePolicyLib()<br>
&gt; * Fix GCC building in shell-based functional test<br>
&gt; * Rebase on latest origin/master<br>
&gt; <br>
&gt; v5 changes:<br>
&gt; * Fix the CONST mismatch in VariablePolicy.h and VariablePolicySmmDxe=
.c<br>
&gt; * Fix EFIAPI mismatches in the functional unittest<br>
&gt; * Rebase on latest origin/master<br>
&gt; <br>
&gt; v4 changes:<br>
&gt; * Remove Optional PcdAllowVariablePolicyEnforcementDisable PCD from<b=
r>
&gt; platforms<br>
&gt; * Rebase on master<br>
&gt; * Migrate to new MmCommunicate2 protocol<br>
&gt; * Fix an oversight in the default return value for<br>
&gt; InitMmCommonCommBuffer<br>
&gt; * Fix in VariablePolicyLib to allow ExtraInitRuntimeDxe to consume va=
riables<br>
&gt; <br>
&gt; V3 changes:<br>
&gt; * Address all non-unittest issues with ECC<br>
&gt; * Make additional style changes<br>
&gt; * Include section name in hunk headers in &quot;ini-style&quot; files=
<br>
&gt; * Remove requirement for the EdkiiPiSmmCommunicationsRegionTable<br>
&gt; driver<br>
&gt;&nbsp;&nbsp; (now allocates its own buffer)<br>
&gt; * Change names from VARIABLE_POLICY_PROTOCOL and<br>
&gt; gVariablePolicyProtocolGuid<br>
&gt;&nbsp;&nbsp; to EDKII_VARIABLE_POLICY_PROTOCOL and<br>
&gt; gEdkiiVariablePolicyProtocolGuid<br>
&gt; * Fix GCC warning about initializing externs<br>
&gt; * Add UNI strings for new PCD<br>
&gt; * Add patches for ArmVirtPkg, OvmfXen, and UefiPayloadPkg<br>
&gt; * Reorder patches according to Liming's feedback about adding to plat=
forms<br>
&gt;&nbsp;&nbsp; before changing variable driver<br>
&gt; <br>
&gt; V2 changes:<br>
&gt; * Fixed implementation for RuntimeDxe<br>
&gt; * Add PCD to block DisableVariablePolicy<br>
&gt; * Fix the DumpVariablePolicy pagination in SMM<br>
&gt; <br>
&gt; Bret Barkelew (14):<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Define the VariablePolicy protocol interfac=
e<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Define the VariablePolicyLib<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Define the VariablePolicyHelperLib<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Define the VarCheckPolicyLib and SMM interf=
ace<br>
&gt;&nbsp;&nbsp; OvmfPkg: Add VariablePolicy engine to OvmfPkg platform<br=
>
&gt;&nbsp;&nbsp; EmulatorPkg: Add VariablePolicy engine to EmulatorPkg pla=
tform<br>
&gt;&nbsp;&nbsp; ArmVirtPkg: Add VariablePolicy engine to ArmVirtPkg platf=
orm<br>
&gt;&nbsp;&nbsp; UefiPayloadPkg: Add VariablePolicy engine to UefiPayloadP=
kg platform<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Connect VariablePolicy business logic to<br=
>
&gt;&nbsp;&nbsp;&nbsp;&nbsp; VariableServices<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Allow VariablePolicy state to delete protec=
ted variables<br>
&gt;&nbsp;&nbsp; SecurityPkg: Allow VariablePolicy state to delete authent=
icated<br>
&gt;&nbsp;&nbsp;&nbsp;&nbsp; variables<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Change TCG MOR variables to use VariablePol=
icy<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Drop VarLock from RuntimeDxe variable drive=
r<br>
&gt;&nbsp;&nbsp; MdeModulePkg: Add a shell-based functional test for Varia=
blePolicy<br>
&gt; <br>
&gt;&nbsp; MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.c<br>
&gt; |&nbsp; 320 &#43;&#43;&#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelp=
erLib.c<br>
&gt; |&nbsp; 396 &#43;&#43;&#43;&#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyExtraInitN=
ull.c<br>
&gt; |&nbsp;&nbsp; 46 &#43;<br>
&gt; <br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyExtraInitRuntime=
Dx<br>
&gt; e.c&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp; 85 &#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.c<br>
&gt; |&nbsp; 816 &#43;&#43;&#43;&#43;&#43;&#43;&#43;<br>
&gt; <br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyUnitTest/Variabl=
ePo<br>
&gt; licyUnitTest.c&nbsp;&nbsp; | 2440 &#43;&#43;&#43;&#43;&#43;&#43;&#43;=
&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;<br>
&gt; <br>
&gt; MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/VariablePolicyF=
u<br>
&gt; ncTestApp.c&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; | 1978 &#43;&#4=
3;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;&#43;<br=
>
&gt;&nbsp; MdeModulePkg/Universal/Variable/RuntimeDxe/TcgMorLockDxe.c<br>
&gt; |&nbsp;&nbsp; 52 &#43;-<br>
&gt;&nbsp; MdeModulePkg/Universal/Variable/RuntimeDxe/TcgMorLockSmm.c<br>
&gt; |&nbsp;&nbsp; 60 &#43;-<br>
&gt;&nbsp; MdeModulePkg/Universal/Variable/RuntimeDxe/VarCheck.c<br>
&gt; |&nbsp;&nbsp; 49 &#43;-<br>
&gt;&nbsp; MdeModulePkg/Universal/Variable/RuntimeDxe/VariableDxe.c<br>
&gt; |&nbsp;&nbsp; 53 &#43;<br>
&gt; <br>
&gt; MdeModulePkg/Universal/Variable/RuntimeDxe/VariableLockRequstToLock<b=
r>
&gt; .c&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp; 71 &#43;<br>
&gt;&nbsp; MdeModulePkg/Universal/Variable/RuntimeDxe/VariablePolicySmmDxe=
.c<br>
&gt; |&nbsp; 642 &#43;&#43;&#43;&#43;&#43;<br>
&gt; <br>
&gt; MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.<br>
&gt; c&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nb=
sp; 14 &#43;<br>
&gt;&nbsp; SecurityPkg/Library/AuthVariableLib/AuthService.c&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nb=
sp;&nbsp; 22<br>
&gt; &#43;-<br>
&gt;&nbsp; ArmVirtPkg/ArmVirt.dsc.inc&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp;&nbsp; 4 &#43;<br>
&gt;&nbsp; EmulatorPkg/EmulatorPkg.dsc&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp;&nbsp; 3 &#43;<br>
&gt;&nbsp; MdeModulePkg/Include/Guid/VarCheckPolicyMmi.h&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp; |<br>
&gt; 54 &#43;<br>
&gt;&nbsp; MdeModulePkg/Include/Library/VariablePolicyHelperLib.h<br>
&gt; |&nbsp; 164 &#43;&#43;<br>
&gt;&nbsp; MdeModulePkg/Include/Library/VariablePolicyLib.h&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
 |<br>
&gt; 207 &#43;&#43;<br>
&gt;&nbsp; MdeModulePkg/Include/Protocol/VariablePolicy.h&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp; |<br>
&gt; 157 &#43;&#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.inf<br=
>
&gt; |&nbsp;&nbsp; 42 &#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.uni<br=
>
&gt; |&nbsp;&nbsp; 12 &#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelp=
erLib.inf<br>
&gt; |&nbsp;&nbsp; 35 &#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelp=
erLib.uni<br>
&gt; |&nbsp;&nbsp; 12 &#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.inf<br=
>
&gt; |&nbsp;&nbsp; 44 &#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.uni<br=
>
&gt; |&nbsp;&nbsp; 12 &#43;<br>
&gt;&nbsp; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLibRuntime=
Dxe.inf<br>
&gt; |&nbsp;&nbsp; 51 &#43;<br>
&gt; <br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyUnitTest/Variabl=
ePo<br>
&gt; licyUnitTest.inf |&nbsp;&nbsp; 40 &#43;<br>
&gt;&nbsp; MdeModulePkg/MdeModulePkg.ci.yaml&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
 |&nbsp;&nbsp;&nbsp; 4 &#43;-<br>
&gt;&nbsp; MdeModulePkg/MdeModulePkg.dec&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp; 26 &#43;-<br>
&gt;&nbsp; MdeModulePkg/MdeModulePkg.dsc&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp; 15 &#43;<br>
&gt;&nbsp; MdeModulePkg/MdeModulePkg.uni&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp;&nbsp; 7 &#43;<br>
&gt;&nbsp; MdeModulePkg/Test/MdeModulePkgHostTest.dsc&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |<br>
&gt; 11 &#43;<br>
&gt;&nbsp; MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/Readme.md=
<br>
&gt; |&nbsp;&nbsp; 55 &#43;<br>
&gt; <br>
&gt; MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/VariablePolicyF=
u<br>
&gt; ncTestApp.inf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp; 42 &#43;<br=
>
&gt;&nbsp; MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeDxe.i=
nf<br>
&gt; |&nbsp;&nbsp;&nbsp; 5 &#43;<br>
&gt;&nbsp; MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.inf<br>
&gt; |&nbsp;&nbsp;&nbsp; 4 &#43;<br>
&gt; <br>
&gt; MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.i<br=
>
&gt; nf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp; 10 &#43=
;<br>
&gt; <br>
&gt; MdeModulePkg/Universal/Variable/RuntimeDxe/VariableStandaloneMm.inf<b=
r>
&gt; |&nbsp;&nbsp;&nbsp; 4 &#43;<br>
&gt;&nbsp; OvmfPkg/OvmfPkgIa32.dsc&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp;&nbsp; 5 &#=
43;<br>
&gt;&nbsp; OvmfPkg/OvmfPkgIa32X64.dsc&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp;&nbsp; 5 &#43;<br>
&gt;&nbsp; OvmfPkg/OvmfPkgX64.dsc&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp;&nbsp;=
 5 &#43;<br>
&gt;&nbsp; OvmfPkg/OvmfXen.dsc&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nb=
sp;&nbsp;&nbsp; 4 &#43;<br>
&gt;&nbsp; SecurityPkg/Library/AuthVariableLib/AuthVariableLib.inf&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |<br>
&gt; 2 &#43;<br>
&gt;&nbsp; UefiPayloadPkg/UefiPayloadPkgIa32.dsc&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp;&nbsp;=
 4 &#43;<br>
&gt;&nbsp; UefiPayloadPkg/UefiPayloadPkgIa32X64.dsc&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |&nbsp;&nbsp;&nbsp; 4 &#43;<br>
&gt;&nbsp; 47 files changed, 8015 insertions(&#43;), 78 deletions(-)&nbsp;=
 create mode 100644<br>
&gt; MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.c<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.=
c<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyExtraInitNull.c<=
br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyExtraInitRuntime=
Dx<br>
&gt; e.c<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.c<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyUnitTest/Variabl=
ePo<br>
&gt; licyUnitTest.c<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/VariablePolicyF=
u<br>
&gt; ncTestApp.c<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Universal/Variable/RuntimeDxe/VariableLockRequstToLock<b=
r>
&gt; .c<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Universal/Variable/RuntimeDxe/VariablePolicySmmDxe.c<br>
&gt;&nbsp; create mode 100644 MdeModulePkg/Include/Guid/VarCheckPolicyMmi.=
h<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Include/Library/VariablePolicyHelperLib.h<br>
&gt;&nbsp; create mode 100644 MdeModulePkg/Include/Library/VariablePolicyL=
ib.h<br>
&gt;&nbsp; create mode 100644 MdeModulePkg/Include/Protocol/VariablePolicy=
.h<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.inf<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VarCheckPolicyLib/VarCheckPolicyLib.uni<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.=
inf<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyHelperLib/VariablePolicyHelperLib.=
uni<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.inf<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.uni<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLibRuntimeDxe.in=
f<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Library/VariablePolicyLib/VariablePolicyUnitTest/Variabl=
ePo<br>
&gt; licyUnitTest.inf<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/Readme.md<br>
&gt;&nbsp; create mode 100644<br>
&gt; MdeModulePkg/Test/ShellTest/VariablePolicyFuncTestApp/VariablePolicyF=
u<br>
&gt; ncTestApp.inf<br>
&gt; <br>
&gt; --<br>
&gt; 2.26.2.windows.1.8.g01c50adf56.20200515075929<br>
&gt; <br>
&gt; <br>
&gt; <br>
<br>
<br>
<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
</div>
</body>
</html>

--_000_CY4PR21MB0743F6EBBD4CED2B2579CAF7EF6D0CY4PR21MB0743namp_--