Branch: refs/heads/master
Home: https://github.com/tianocore/edk2
Commit: c3a8ca7b54a9fd17acdf16c6282a92cc989fa92a
https://github.com/tianocore/edk2/commit/c3a8ca7b54a9fd17acdf16c6282a92cc989fa92a
Author: Pedro Falcato <[email protected]>
Date: 2024-06-13 (Thu, 13 Jun 2024)
Changed paths:
M MdePkg/Library/BaseRngLib/Rand/RdRand.c
Log Message:
-----------
MdePkg/BaseRngLib: Add a smoketest for RDRAND and check CPUID
RDRAND has notoriously been broken many times over its lifespan.
Add a smoketest to RDRAND, in order to better sniff out potential
security concerns.
Also add a proper CPUID test in order to support older CPUs which may
not have it; it was previously being tested but then promptly ignored.
Testing algorithm inspired by linux's arch/x86/kernel/cpu/rdrand.c
:x86_init_rdrand() per commit 049f9ae9..
Many thanks to Jason Donenfeld for relicensing his linux RDRAND detection
code to MIT and the public domain.
>On Tue, Nov 22, 2022 at 2:21 PM Jason A. Donenfeld <[email protected]> wrote:
<..>
> I (re)wrote that function in Linux. I hereby relicense it as MIT, and
> also place it into public domain. Do with it what you will now.
>
> Jason
BZ: https://bugzilla.tianocore.org/show_bug.cgi?id=4163
Signed-off-by: Pedro Falcato <[email protected]>
Cc: Michael D Kinney <[email protected]>
Cc: Liming Gao <[email protected]>
Cc: Zhiguang Liu <[email protected]>
Cc: Jason A. Donenfeld <[email protected]>
Commit: a61bc0accb8a76edba4f073fdc7bafc908df045d
https://github.com/tianocore/edk2/commit/a61bc0accb8a76edba4f073fdc7bafc908df045d
Author: Gerd Hoffmann <[email protected]>
Date: 2024-06-13 (Thu, 13 Jun 2024)
Changed paths:
M SecurityPkg/RandomNumberGenerator/RngDxe/Rand/RngDxe.c
Log Message:
-----------
SecurityPkg/RngDxe: add rng test
Check whenever RngLib actually returns random numbers, only return
a non-zero number of Algorithms if that is the case.
This has the effect that RndDxe loads and installs EFI_RNG_PROTOCOL
only in case it can actually deliver random numbers.
Signed-off-by: Gerd Hoffmann <[email protected]>
Commit: 712797cf19acd292bf203522a79e40e7e13d268b
https://github.com/tianocore/edk2/commit/712797cf19acd292bf203522a79e40e7e13d268b
Author: Gerd Hoffmann <[email protected]>
Date: 2024-06-13 (Thu, 13 Jun 2024)
Changed paths:
M OvmfPkg/AmdSev/AmdSevX64.dsc
M OvmfPkg/AmdSev/AmdSevX64.fdf
A OvmfPkg/Include/Dsc/OvmfRngComponents.dsc.inc
A OvmfPkg/Include/Fdf/OvmfRngDxe.fdf.inc
M OvmfPkg/IntelTdx/IntelTdxX64.dsc
M OvmfPkg/IntelTdx/IntelTdxX64.fdf
M OvmfPkg/Microvm/MicrovmX64.dsc
M OvmfPkg/Microvm/MicrovmX64.fdf
M OvmfPkg/OvmfPkgIa32.dsc
M OvmfPkg/OvmfPkgIa32.fdf
M OvmfPkg/OvmfPkgIa32X64.dsc
M OvmfPkg/OvmfPkgIa32X64.fdf
M OvmfPkg/OvmfPkgX64.dsc
M OvmfPkg/OvmfPkgX64.fdf
Log Message:
-----------
OvmfPkg: wire up RngDxe
Add OvmfRng include snippets with the random number generator
configuration for OVMF. Include RngDxe, build with BaseRngLib,
so the rdrand instruction is used (if available).
Also move VirtioRng to the include snippets.
Use the new include snippets for OVMF builds.
Signed-off-by: Gerd Hoffmann <[email protected]>
Compare: https://github.com/tianocore/edk2/compare/d3b32dca06b9...712797cf19ac
To unsubscribe from these emails, change your notification settings at
https://github.com/tianocore/edk2/settings/notifications
_______________________________________________
edk2-commits mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/edk2-commits
