Jiaqi Gao 5396354b86 SecurityPkg: Add constraints on PK strength ... REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3293 Add constraints on the key strength of enrolled platform key(PK), which must be greater than or equal to 2048 bit. PK key strength is required by Intel SDL and MSFT, etc. This limitation prevents user from using weak keys as PK. The original code to check the certificate file type is placed in a new function CheckX509Certificate(), which checks if the X.509 certificate meets the requirements of encode type, RSA-Key strengh, etc. Cc: Min Xu <min.m.xu@intel.com> Cc: Jiewen Yao <jiewen.yao@intel.com> Signed-off-by: Jiaqi Gao <jiaqi.gao@intel.com> Reviewed-by: Min Xu <min.m.xu@intel.com> Acked-by: Jiewen Yao <jiewen.yao@intel.com>		2021-04-26 16:24:32 +00:00
..
SecureBootConfig.vfr	SecurityPkg: Replace BSD License with BSD+Patent License	2019-04-09 10:58:23 -07:00
SecureBootConfigDevicePath.c	SecurityPkg: Replace BSD License with BSD+Patent License	2019-04-09 10:58:23 -07:00
SecureBootConfigDriver.c	SecurityPkg: Fix spelling errors	2019-10-23 10:23:23 -07:00
SecureBootConfigDxe.inf	SecurityPkg: Fix spelling errors	2019-10-23 10:23:23 -07:00
SecureBootConfigDxe.uni	SecurityPkg: Fix spelling errors	2019-10-23 10:23:23 -07:00
SecureBootConfigDxeExtra.uni	SecurityPkg: Replace BSD License with BSD+Patent License	2019-04-09 10:58:23 -07:00
SecureBootConfigFileExplorer.c	SecurityPkg/VariableAuthenticated: Fix few typos	2020-02-10 22:30:07 +00:00
SecureBootConfigImpl.c	SecurityPkg: Add constraints on PK strength	2021-04-26 16:24:32 +00:00
SecureBootConfigImpl.h	SecurityPkg: Add constraints on PK strength	2021-04-26 16:24:32 +00:00
SecureBootConfigMisc.c	SecurityPkg: Fix spelling errors	2019-10-23 10:23:23 -07:00
SecureBootConfigNvData.h	SecurityPkg: Fix spelling errors	2019-10-23 10:23:23 -07:00
SecureBootConfigStrings.uni	SecurityPkg: Fix spelling errors	2019-10-23 10:23:23 -07:00