2011-09-02 09:49:32 +02:00
|
|
|
/** @file
|
2012-03-27 10:17:23 +02:00
|
|
|
Provides a secure platform-specific method to detect physically present user.
|
2011-09-02 09:49:32 +02:00
|
|
|
|
2018-06-27 15:13:09 +02:00
|
|
|
Copyright (c) 2011 - 2018, Intel Corporation. All rights reserved.<BR>
|
2019-04-04 01:06:56 +02:00
|
|
|
SPDX-License-Identifier: BSD-2-Clause-Patent
|
2011-09-02 09:49:32 +02:00
|
|
|
|
|
|
|
**/
|
|
|
|
|
|
|
|
#ifndef __PLATFORM_SECURE_LIB_H__
|
|
|
|
#define __PLATFORM_SECURE_LIB_H__
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
2012-03-27 10:17:23 +02:00
|
|
|
This function provides a platform-specific method to detect whether the platform
|
2018-06-27 15:13:09 +02:00
|
|
|
is operating by a physically present user.
|
2012-03-27 10:17:23 +02:00
|
|
|
|
|
|
|
Programmatic changing of platform security policy (such as disable Secure Boot,
|
|
|
|
or switch between Standard/Custom Secure Boot mode) MUST NOT be possible during
|
|
|
|
Boot Services or after exiting EFI Boot Services. Only a physically present user
|
|
|
|
is allowed to perform these operations.
|
2011-09-02 09:49:32 +02:00
|
|
|
|
|
|
|
NOTE THAT: This function cannot depend on any EFI Variable Service since they are
|
|
|
|
not available when this function is called in AuthenticateVariable driver.
|
2018-06-27 15:13:09 +02:00
|
|
|
|
2012-03-27 10:17:23 +02:00
|
|
|
@retval TRUE The platform is operated by a physically present user.
|
|
|
|
@retval FALSE The platform is NOT operated by a physically present user.
|
2011-09-02 09:49:32 +02:00
|
|
|
|
|
|
|
**/
|
|
|
|
BOOLEAN
|
|
|
|
EFIAPI
|
2012-03-27 10:17:23 +02:00
|
|
|
UserPhysicalPresent (
|
2011-09-02 09:49:32 +02:00
|
|
|
VOID
|
|
|
|
);
|
|
|
|
|
2012-03-27 10:17:23 +02:00
|
|
|
#endif
|