tyler.durden
/
audk
mirror of https://github.com/acidanthera/audk.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
audk/SecurityPkg/Library/AuthVariableLib
History
Jan Bobek 566cdfc675 SecurityPkg: limit verification of enrolled PK in setup mode 
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=2506

Per UEFI spec, enrolling a new PK in setup mode should not require a
self-signature. Introduce a feature PCD called PcdRequireSelfSignedPk
to control this requirement. Default to TRUE in order to preserve the
legacy behavior.

Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Min Xu <min.m.xu@intel.com>
Co-authored-by: Matthew Carlson <macarl@microsoft.com>
Signed-off-by: Jan Bobek <jbobek@nvidia.com>
Reviewed-by: Sean Brogan <sean.brogan@microsoft.com>
Acked-by: Jiewen Yao <jiewen.yao@intel.com>
 		2023-02-04 11:53:59 +00:00
..
AuthService.c SecurityPkg: limit verification of enrolled PK in setup mode 2023-02-04 11:53:59 +00:00
AuthServiceInternal.h SecurityPkg: Apply uncrustify changes 2021-12-07 17:24:28 +00:00
AuthVariableLib.c SecurityPkg: Apply uncrustify changes 2021-12-07 17:24:28 +00:00
AuthVariableLib.inf SecurityPkg: limit verification of enrolled PK in setup mode 2023-02-04 11:53:59 +00:00
AuthVariableLib.uni SecurityPkg: Replace BSD License with BSD+Patent License 2019-04-09 10:58:23 -07:00