Hi,
> > The design idea is to reuse the request serialization protocol edk2 uses
>
> I suppose this is a stable protocol. (some parts are set by the UEFI
> spec probably)
Partly yes, partly this is edk2-internal stuff. In theory there is some
freedom to change the internal parts, in practice
Hi,
> > Typically the kind of new code that I wish would be in Rust. But I
> > suppose it is too early yet, and you came to the same conclusion.
> > Probably a good candidate for rewrite though!
>
> Perhaps too early for the device impl, but I would have thought
> the general var-service code c
On Wed, Jan 08, 2025 at 03:53:21PM +0400, Marc-André Lureau wrote:
> Hi
>
> On Tue, Jan 7, 2025 at 7:34 PM Gerd Hoffmann wrote:
> >
> > This patch adds a virtual device to qemu which the uefi firmware can use
> > to store variables. This moves the UEFI variable management from
> > privileged gue
Hi
On Tue, Jan 7, 2025 at 7:34 PM Gerd Hoffmann wrote:
>
> This patch adds a virtual device to qemu which the uefi firmware can use
> to store variables. This moves the UEFI variable management from
> privileged guest code (managing vars in pflash) to the host. Main
> advantage is that the need
Hi,
> > The design idea is to reuse the request serialization protocol edk2 uses
> > for communication between SMM and non-SMM code, so large chunks of the
> > edk2 variable driver stack can be used unmodified. Only the driver
> > which traps into SMM mode must be replaced by a driver which tal
On Tue, Jan 07, 2025 at 04:33:27PM +0100, Gerd Hoffmann wrote:
> This patch adds a virtual device to qemu which the uefi firmware can use
> to store variables. This moves the UEFI variable management from
> privileged guest code (managing vars in pflash) to the host. Main
> advantage is that the
This patch adds a virtual device to qemu which the uefi firmware can use
to store variables. This moves the UEFI variable management from
privileged guest code (managing vars in pflash) to the host. Main
advantage is that the need to have privilege separation in the guest
goes away.
On x86 privi
