[PATCH v2 12/28] mbedtls/external: support MicroSoft Authentication Code
Raymond Mao
raymond.mao at linaro.org
Wed May 8 16:49:15 CEST 2024
Hi Ilias,
On Wed, 8 May 2024 at 10:32, Ilias Apalodimas <ilias.apalodimas at linaro.org>
wrote:
> Hi Raymond
>
> On Tue, 7 May 2024 at 20:57, Raymond Mao <raymond.mao at linaro.org> wrote:
> >
> > Populate MicroSoft Authentication Code from the content data
> > into PKCS7 decoding context if it exists in a PKCS7 message.
> > Add OIDs for describing objects using for MicroSoft Authentication
> > Code.
> >
>
> We will need more accurate commit messages for things like this.
> IIRC this is already on a PR for mbedTLS and won't be needed in the
> future right?
> Generally speaking, we shouldn't carry out of tree patches unless we
> can prove there's a very good reason. This one needs to be marked as
> 'do not merge' and we should wait until mbedTLS merges it upstream
>
> I can add a tag here to link to the MbedTLS upstream PR for reference.
However I think we still need to merge these patches, since MbedTLS will
not merge
it in v3.6.0. Without it, the EFI Secure Boot and Capsule functions will be
broken.
In the future, when MbedTLS merges them in later v3.6.x, we can simply
update the
git subtree.
Regards,
Raymond
More information about the U-Boot
mailing list