+ ## Indicates which type allocation need guard page.\r
+ #\r
+ # If a bit is set, a head guard page and a tail guard page will be added just\r
+ # before and after corresponding type of pages allocated if there's enough\r
+ # free pages for all of them. The page allocation for the type related to\r
+ # cleared bits keeps the same as ususal.\r
+ #\r
+ # This PCD is only valid if BIT0 and/or BIT2 are set in PcdHeapGuardPropertyMask.\r
+ #\r
+ # Below is bit mask for this PCD: (Order is same as UEFI spec)<BR>\r
+ # EfiReservedMemoryType 0x0000000000000001<BR>\r
+ # EfiLoaderCode 0x0000000000000002<BR>\r
+ # EfiLoaderData 0x0000000000000004<BR>\r
+ # EfiBootServicesCode 0x0000000000000008<BR>\r
+ # EfiBootServicesData 0x0000000000000010<BR>\r
+ # EfiRuntimeServicesCode 0x0000000000000020<BR>\r
+ # EfiRuntimeServicesData 0x0000000000000040<BR>\r
+ # EfiConventionalMemory 0x0000000000000080<BR>\r
+ # EfiUnusableMemory 0x0000000000000100<BR>\r
+ # EfiACPIReclaimMemory 0x0000000000000200<BR>\r
+ # EfiACPIMemoryNVS 0x0000000000000400<BR>\r
+ # EfiMemoryMappedIO 0x0000000000000800<BR>\r
+ # EfiMemoryMappedIOPortSpace 0x0000000000001000<BR>\r
+ # EfiPalCode 0x0000000000002000<BR>\r
+ # EfiPersistentMemory 0x0000000000004000<BR>\r
+ # OEM Reserved 0x4000000000000000<BR>\r
+ # OS Reserved 0x8000000000000000<BR>\r
+ # e.g. LoaderCode+LoaderData+BootServicesCode+BootServicesData are needed, 0x1E should be used.<BR>\r
+ # @Prompt The memory type mask for Page Guard.\r
+ gEfiMdeModulePkgTokenSpaceGuid.PcdHeapGuardPageType|0x0|UINT64|0x30001052\r
+\r
+ ## Indicates which type allocation need guard page.\r
+ #\r
+ # If a bit is set, a head guard page and a tail guard page will be added just\r
+ # before and after corresponding type of pages which the allocated pool occupies,\r
+ # if there's enough free memory for all of them. The pool allocation for the\r
+ # type related to cleared bits keeps the same as ususal.\r
+ #\r
+ # This PCD is only valid if BIT1 and/or BIT3 are set in PcdHeapGuardPropertyMask.\r
+ #\r
+ # Below is bit mask for this PCD: (Order is same as UEFI spec)<BR>\r
+ # EfiReservedMemoryType 0x0000000000000001<BR>\r
+ # EfiLoaderCode 0x0000000000000002<BR>\r
+ # EfiLoaderData 0x0000000000000004<BR>\r
+ # EfiBootServicesCode 0x0000000000000008<BR>\r
+ # EfiBootServicesData 0x0000000000000010<BR>\r
+ # EfiRuntimeServicesCode 0x0000000000000020<BR>\r
+ # EfiRuntimeServicesData 0x0000000000000040<BR>\r
+ # EfiConventionalMemory 0x0000000000000080<BR>\r
+ # EfiUnusableMemory 0x0000000000000100<BR>\r
+ # EfiACPIReclaimMemory 0x0000000000000200<BR>\r
+ # EfiACPIMemoryNVS 0x0000000000000400<BR>\r
+ # EfiMemoryMappedIO 0x0000000000000800<BR>\r
+ # EfiMemoryMappedIOPortSpace 0x0000000000001000<BR>\r
+ # EfiPalCode 0x0000000000002000<BR>\r
+ # EfiPersistentMemory 0x0000000000004000<BR>\r
+ # OEM Reserved 0x4000000000000000<BR>\r
+ # OS Reserved 0x8000000000000000<BR>\r
+ # e.g. LoaderCode+LoaderData+BootServicesCode+BootServicesData are needed, 0x1E should be used.<BR>\r
+ # @Prompt The memory type mask for Pool Guard.\r
+ gEfiMdeModulePkgTokenSpaceGuid.PcdHeapGuardPoolType|0x0|UINT64|0x30001053\r
+\r
+ ## This mask is to control Heap Guard behavior.\r
+ #\r
+ # Note:\r
+ # a) Heap Guard is for debug purpose and should not be enabled in product\r
+ # BIOS.\r
+ # b) Due to the limit of pool memory implementation and the alignment\r
+ # requirement of UEFI spec, BIT7 is a try-best setting which cannot\r
+ # guarantee that the returned pool is exactly adjacent to head guard\r
+ # page or tail guard page.\r
+ # c) UEFI freed-memory guard and UEFI pool/page guard cannot be enabled\r
+ # at the same time.\r
+ #\r
+ # BIT0 - Enable UEFI page guard.<BR>\r
+ # BIT1 - Enable UEFI pool guard.<BR>\r
+ # BIT2 - Enable SMM page guard.<BR>\r
+ # BIT3 - Enable SMM pool guard.<BR>\r
+ # BIT4 - Enable UEFI freed-memory guard (Use-After-Free memory detection).<BR>\r
+ # BIT6 - Enable non-stop mode.<BR>\r
+ # BIT7 - The direction of Guard Page for Pool Guard.\r
+ # 0 - The returned pool is near the tail guard page.<BR>\r
+ # 1 - The returned pool is near the head guard page.<BR>\r
+ # @Prompt The Heap Guard feature mask\r
+ gEfiMdeModulePkgTokenSpaceGuid.PcdHeapGuardPropertyMask|0x0|UINT8|0x30001054\r
+\r
+ ## Indicates if UEFI Stack Guard will be enabled.\r
+ # If enabled, stack overflow in UEFI can be caught, preventing chaotic consequences.<BR><BR>\r
+ # TRUE - UEFI Stack Guard will be enabled.<BR>\r
+ # FALSE - UEFI Stack Guard will be disabled.<BR>\r
+ # @Prompt Enable UEFI Stack Guard.\r
+ gEfiMdeModulePkgTokenSpaceGuid.PcdCpuStackGuard|FALSE|BOOLEAN|0x30001055\r
+\r