// These represent UEFI SPEC defined algorithms that should be supported by\r
// the RNG protocol and are generally considered secure.\r
//\r
-// The order of the algorithms in this array is important. This order is the order\r
-// in which the algorithms will be tried by the RNG protocol.\r
-// If your platform needs to use a specific algorithm for the random number generator,\r
-// then you should place that algorithm first in the array.\r
+// Assuming that PcdEnforceSecureRngAlgorithms is TRUE (the default) then\r
+// only the algorithms defined here will be used by the network stack, and\r
+// none of these being available will result in an error condition (even if\r
+// some other RNG implementation is available).\r
+//\r
+// If PcdEnforceSecureRngAlgorithms is FALSE this list is not consulted,\r
+// and the first available RNG algorithm is used.\r
+//\r
+// If your platform needs to use a specific algorithm for the random number\r
+// generator, then you should modify this array.\r
//\r
GLOBAL_REMOVE_IF_UNREFERENCED EFI_GUID *mSecureHashAlgorithms[] = {\r
&gEfiRngAlgorithmSp80090Ctr256Guid, // SP800-90A DRBG CTR using AES-256\r
projects / people / aperard / ovmf.git / commitdiff