Gitiles
Code Review Sign In
git01.mediatek.com / filogic / uboot / 1d2a656f7685f177c766e5eae5ddef58219fef42
commit1d2a656f7685f177c766e5eae5ddef58219fef42[log] [tgz]
authorMasahisa Kojima <masahisa.kojima@linaro.org>Fri Aug 13 16:12:39 2021 +0900
committerHeinrich Schuchardt <xypron.glpk@gmx.de>Sat Aug 14 20:54:41 2021 +0200
tree109598db349ecabe1bb4264c3fef415ba5da33ab
parent5629aaac9f11dab4f9e031da0e9a36b60740ad08 [diff]
efi_loader: add secure boot variable measurement

TCG PC Client PFP spec requires to measure the secure
boot policy before validating the UEFI image.
This commit adds the secure boot variable measurement
of "SecureBoot", "PK", "KEK", "db", "dbx", "dbt", and "dbr".

Note that this implementation assumes that secure boot
variables are pre-configured and not be set/updated in runtime.

Signed-off-by: Masahisa Kojima <masahisa.kojima@linaro.org>
2 files changed
tree: 109598db349ecabe1bb4264c3fef415ba5da33ab
  1. .github/
  2. api/
  3. arch/
  4. board/
  5. cmd/
  6. common/
  7. configs/
  8. disk/
  9. doc/
  10. drivers/
  11. dts/
  12. env/
  13. examples/
  14. fs/
  15. include/
  16. lib/
  17. Licenses/
  18. net/
  19. post/
  20. scripts/
  21. test/
  22. tools/
  23. .azure-pipelines.yml
  24. .checkpatch.conf
  25. .gitattributes
  26. .gitignore
  27. .gitlab-ci.yml
  28. .mailmap
  29. .readthedocs.yml
  30. config.mk
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. README