Skip to content

Commit

Permalink
ArmVirtPkg: Resolve RngLib via RngDxe for TRNG support
Browse files Browse the repository at this point in the history 
Gerd reports that ArmVirtQemu running under KVM lost network boot
support on systems that do not implement the RNDR/RNDRRS system
registers, which provide an architectural, CPU-based source of random
numbers. Under KVM, the TRNG SMCCC is available as a fallback, which is
exposed via RngDxe but not via the base RngLib library. This means that
direct users of RngLib, such as OpensslLib, have no access to the TRNG
based entropy source.

Let's fix this by resolving RngLib dependencies for UEFI_DRIVER type
drivers via DxeRngLib, which uses the protocol exposed by RngDxe
internally.

Signed-off-by: Ard Biesheuvel <[email protected]>
  • Loading branch information
@ardbiesheuvel @mergify
ardbiesheuvel authored and mergify[bot] committed Sep 3, 2024
1 parent 8504d2b commit afba535
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions ArmVirtPkg/ArmVirt.dsc.inc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -232,6 +232,10 @@
DebugLib|ArmVirtPkg/Library/DebugLibFdtPL011Uart/DebugLibFdtPL011UartFlash.inf
!endif

[LibraryClasses.common.UEFI_DRIVER]
# resolve RngLib via RngDxe's EFI_RNG_PROTOCOL for UEFI_DRIVER type drivers such as TlsDxe
RngLib|MdePkg/Library/DxeRngLib/DxeRngLib.inf
[LibraryClasses.common.DXE_CORE]
HobLib|MdePkg/Library/DxeCoreHobLib/DxeCoreHobLib.inf
MemoryAllocationLib|MdeModulePkg/Library/DxeCoreMemoryAllocationLib/DxeCoreMemoryAllocationLib.inf
Expand Down

0 comments on commit afba535

Please sign in to comment.