[edk2] [RFC PATCH v4 02/12] MdePkg: Add a PCD to enable secure storage of variables

Jagadeesh Ujja jagadeesh.ujja at arm.com
Mon Dec 10 22:21:32 PST 2018

Add a flag that allows selecting the variables to be stored on a
secure or a non-secure non-volatile memory. In case of secure storage
of variables, the variable service will be implemented by code executing
within the Standalone MM.

Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Jagadeesh Ujja <jagadeesh.ujja at arm.com>
 MdePkg/MdePkg.dec | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/MdePkg/MdePkg.dec b/MdePkg/MdePkg.dec
index 712bd46..dc2277d 100644
--- a/MdePkg/MdePkg.dec
+++ b/MdePkg/MdePkg.dec
@@ -2073,6 +2073,11 @@
   # @Prompt Fixed Debug Message Print Level.
+  ## This flag is used to enable the Secure Storage for the Variables.
+  #  TRUE  - Secure variable storage supported by Standalone MM code.
+  #  FALSE - Non secure variable storage.
+  gEfiMdePkgTokenSpaceGuid.PcdStandaloneMmVariableEnabled|FALSE|BOOLEAN|0x30001017
   ## Indicates the maximum length of unicode string used in the following
   #  BaseLib functions: StrLen(), StrSize(), StrCmp(), StrnCmp(), StrCpy(), StrnCpy()<BR><BR>

More information about the edk2-devel mailing list