VariablePolicy is a proposal for an expanded “VarLock-like” interface to constrain and govern platform variables. Full details can be found in the RFC email on the RFC and Devel mailing lists (subject: "[RFC] VariablePolicy - Protocol, Libraries, and Implementation for VariableLock Alternative"). This BZ is being used to track the patches, discussion, and final adoption. Thanks!
Have started breaking the RFC up into code review patches in this branch: https://github.com/corthon/edk2/tree/personal/brbarkel/var_policy_dev_submission
Bret, please take it.
Bret is driving it.
Liming, What's the next step? Start attaching patches? I'm going to email the edk2-platform maintainers today.
v1 patches can be found here: https://edk2.groups.io/g/devel/message/57217
v4 of patches will be going out the mailing list, the TC wiki is updated with platform instructions, and all edk2-platform maintainers have been informed.
(In reply to Bret Barkelew from comment #6) > v4 of patches will be going out the mailing list, the TC wiki is updated > with platform instructions, and all edk2-platform maintainers have been > informed. v3 patch series is on the list - https://edk2.groups.io/g/devel/message/60070 Bret, I think the list version is one behind what you're tracking on your fork.
Agreed. v3 it is.
Summary of patch set versions: * [edk2-devel] [PATCH v1 0/9] Add the VariablePolicy feature http://mid.mail-archive.com/MWHPR07MB3440C61EDC28D3447901CAEAE9DE0@MWHPR07MB3440.namprd07.prod.outlook.com https://edk2.groups.io/g/devel/message/57217 * [edk2-devel] [PATCH v2 00/12] Add the VariablePolicy feature http://mid.mail-archive.com/MWHPR07MB3440F5CB92F0D7DCF94AA14FE9BE0@MWHPR07MB3440.namprd07.prod.outlook.com https://edk2.groups.io/g/devel/message/59233 * [edk2-devel] [PATCH v3 00/14] Add the VariablePolicy feature http://mid.mail-archive.com/MWHPR07MB344099884131EEBACE77E6D9E9B70@MWHPR07MB3440.namprd07.prod.outlook.com https://edk2.groups.io/g/devel/message/60070 * [edk2-devel] [PATCH v4 00/14] Add the VariablePolicy feature http://mid.mail-archive.com/20200601163310.1718-1-brbarkel@microsoft.com https://edk2.groups.io/g/devel/message/60528 * [edk2-devel] [PATCH v5 00/14] Add the VariablePolicy feature http://mid.mail-archive.com/20200603065810.806-1-brbarkel@microsoft.com https://edk2.groups.io/g/devel/message/60651 * [edk2-devel] [PATCH v6 00/14] Add the VariablePolicy feature http://mid.mail-archive.com/20200623064104.1908-1-brbarkel@microsoft.com https://edk2.groups.io/g/devel/message/61593 * [edk2-devel] [PATCH v7 00/14] Add the VariablePolicy feature http://mid.mail-archive.com/20200828055127.1610-1-brbarkel@microsoft.com https://edk2.groups.io/g/devel/message/64712 * [edk2-devel] [PATCH v8 00/14] Add the VariablePolicy feature http://mid.mail-archive.com/20200923060748.3795-1-bret.barkelew@microsoft.com https://edk2.groups.io/g/devel/message/65494
PR https://github.com/tianocore/edk2/pull/1128 is created.
(In reply to gaoliming from comment #10) > PR https://github.com/tianocore/edk2/pull/1128 is created. Commit range: d448574e7310..124b3f9289f1.
platform porting described at: https://github.com/tianocore/tianocore.github.io/wiki/VariablePolicy-Protocol---Enhanced-Method-for-Managing-Variables
Note: commit 355b181f7405 ("MdeModulePkg: Define the VariablePolicyLib", 2020-11-17) may cause a regression at OS runtime; see BZ 3092 for details.
