On 6/20/19 2:19 PM, Philippe Mathieu-Daudé wrote: > Hi, > > This series add edk2_add_host_crypto_policy() and the Edk2Crypto object. > > The Edk2Crypto object is used to hold configuration values specific > to EDK2. > > So far only the 'https' policy is supported. > > A usercase example is the 'HTTPS Boof' feature of OVMF [*]. > > Usage example: > > $ qemu-system-x86_64 \ > --object edk2_crypto,id=https,\ > ciphers=/etc/crypto-policies/back-ends/openssl.config,\ > cacerts=/etc/pki/ca-trust/extracted/edk2/cacerts.bin > > (On Fedora these files are provided by the ca-certificates and > crypto-policies packages). > > [*]: https://github.com/tianocore/edk2/blob/master/OvmfPkg/README > > Since v4: > - Addressed Laszlo comments (see patch#1 description) > Since v3: > - Addressed Markus' comments (do not care about heap) > Since v2: > - Split of > Since v1: > - Addressed Michael and Laszlo comments.
Please discard this cover, series sent again with patches properly attached.
