DEFINE NETWORK_TLS_ENABLE = FALSE\r
DEFINE NETWORK_HTTP_BOOT_ENABLE = FALSE\r
DEFINE NETWORK_ISCSI_ENABLE = FALSE\r
+ DEFINE SECURE_BOOT_ENABLE = FALSE\r
\r
[SkuIds]\r
0|DEFAULT\r
LockBoxLib|MdeModulePkg/Library/LockBoxNullLib/LockBoxNullLib.inf\r
CpuExceptionHandlerLib|MdeModulePkg/Library/CpuExceptionHandlerLibNull/CpuExceptionHandlerLibNull.inf\r
TpmMeasurementLib|MdeModulePkg/Library/TpmMeasurementLibNull/TpmMeasurementLibNull.inf\r
- AuthVariableLib|MdeModulePkg/Library/AuthVariableLibNull/AuthVariableLibNull.inf\r
VarCheckLib|MdeModulePkg/Library/VarCheckLib/VarCheckLib.inf\r
SortLib|MdeModulePkg/Library/BaseSortLib/BaseSortLib.inf\r
ShellLib|ShellPkg/Library/UefiShellLib/UefiShellLib.inf\r
FileHandleLib|MdePkg/Library/UefiFileHandleLib/UefiFileHandleLib.inf\r
\r
+!if $(SECURE_BOOT_ENABLE) == TRUE\r
+ IntrinsicLib|CryptoPkg/Library/IntrinsicLib/IntrinsicLib.inf\r
+ OpensslLib|CryptoPkg/Library/OpensslLib/OpensslLibCrypto.inf\r
+ PlatformSecureLib|SecurityPkg/Library/PlatformSecureLibNull/PlatformSecureLibNull.inf\r
+ AuthVariableLib|SecurityPkg/Library/AuthVariableLib/AuthVariableLib.inf\r
+!else\r
+ AuthVariableLib|MdeModulePkg/Library/AuthVariableLibNull/AuthVariableLibNull.inf\r
+!endif\r
+\r
[LibraryClasses.common.SEC]\r
PeiServicesLib|EmulatorPkg/Library/SecPeiServicesLib/SecPeiServicesLib.inf\r
PcdLib|MdePkg/Library/BasePcdLibNull/BasePcdLibNull.inf\r
TimerLib|EmulatorPkg/Library/DxeCoreTimerLib/DxeCoreTimerLib.inf\r
EmuThunkLib|EmulatorPkg/Library/DxeEmuLib/DxeEmuLib.inf\r
\r
+[LibraryClasses.common.DXE_DRIVER, LibraryClasses.common.UEFI_DRIVER, LibraryClasses.common.UEFI_APPLICATION]\r
+!if $(SECURE_BOOT_ENABLE) == TRUE\r
+ BaseCryptLib|CryptoPkg/Library/BaseCryptLib/BaseCryptLib.inf\r
+!endif\r
+\r
+[LibraryClasses.common.DXE_RUNTIME_DRIVER]\r
+!if $(SECURE_BOOT_ENABLE) == TRUE\r
+ BaseCryptLib|CryptoPkg/Library/BaseCryptLib/RuntimeCryptLib.inf\r
+!endif\r
+\r
[LibraryClasses.common.DXE_RUNTIME_DRIVER, LibraryClasses.common.UEFI_DRIVER, LibraryClasses.common.DXE_DRIVER, LibraryClasses.common.UEFI_APPLICATION]\r
HobLib|MdePkg/Library/DxeHobLib/DxeHobLib.inf\r
PcdLib|MdePkg/Library/DxePcdLib/DxePcdLib.inf\r
gEmulatorPkgTokenSpaceGuid.PcdEmuFirmwareFdSize|0x002a0000\r
gEmulatorPkgTokenSpaceGuid.PcdEmuFirmwareBlockSize|0x10000\r
gEmulatorPkgTokenSpaceGuid.PcdEmuFirmwareVolume|L"../FV/FV_RECOVERY.fd"\r
+!if $(SECURE_BOOT_ENABLE) == TRUE\r
+ gEfiMdeModulePkgTokenSpaceGuid.PcdMaxAuthVariableSize|0x2800\r
+ gEfiSecurityPkgTokenSpaceGuid.PcdUserPhysicalPresence|TRUE\r
+!endif\r
\r
gEmulatorPkgTokenSpaceGuid.PcdEmuMemorySize|L"64!64"\r
\r
EmulatorPkg/ResetRuntimeDxe/Reset.inf\r
MdeModulePkg/Core/RuntimeDxe/RuntimeDxe.inf\r
EmulatorPkg/FvbServicesRuntimeDxe/FvbServicesRuntimeDxe.inf\r
- MdeModulePkg/Universal/SecurityStubDxe/SecurityStubDxe.inf\r
+\r
+ MdeModulePkg/Universal/SecurityStubDxe/SecurityStubDxe.inf {\r
+ <LibraryClasses>\r
+!if $(SECURE_BOOT_ENABLE) == TRUE\r
+ NULL|SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.inf\r
+!endif\r
+ }\r
+\r
MdeModulePkg/Universal/EbcDxe/EbcDxe.inf\r
MdeModulePkg/Universal/MemoryTest/NullMemoryTestDxe/NullMemoryTestDxe.inf\r
EmulatorPkg/EmuThunkDxe/EmuThunk.inf\r
EmulatorPkg/PlatformSmbiosDxe/PlatformSmbiosDxe.inf\r
EmulatorPkg/TimerDxe/Timer.inf\r
\r
+!if $(SECURE_BOOT_ENABLE) == TRUE\r
+ SecurityPkg/VariableAuthenticated/SecureBootConfigDxe/SecureBootConfigDxe.inf\r
+!endif\r
\r
MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeDxe.inf {\r
<LibraryClasses>\r
# Blockmap[1]: End\r
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\r
## This is the VARIABLE_STORE_HEADER\r
+!if $(SECURE_BOOT_ENABLE) == FALSE\r
#Signature: gEfiVariableGuid =\r
# { 0xddcf3616, 0x3275, 0x4164, { 0x98, 0xb6, 0xfe, 0x85, 0x70, 0x7f, 0xfe, 0x7d }}\r
0x16, 0x36, 0xcf, 0xdd, 0x75, 0x32, 0x64, 0x41,\r
0x98, 0xb6, 0xfe, 0x85, 0x70, 0x7f, 0xfe, 0x7d,\r
+!else\r
+ # Signature: gEfiAuthenticatedVariableGuid =\r
+ # { 0xaaf32c78, 0x947b, 0x439a, { 0xa1, 0x80, 0x2e, 0x14, 0x4e, 0xc3, 0x77, 0x92 }}\r
+ 0x78, 0x2c, 0xf3, 0xaa, 0x7b, 0x94, 0x9a, 0x43,\r
+ 0xa1, 0x80, 0x2e, 0x14, 0x4e, 0xc3, 0x77, 0x92,\r
+!endif\r
#Size: 0xc000 (gEfiMdeModulePkgTokenSpaceGuid.PcdFlashNvStorageVariableSize) - 0x48 (size of EFI_FIRMWARE_VOLUME_HEADER) = 0xBFB8\r
# This can speed up the Variable Dispatch a bit.\r
0xB8, 0xBF, 0x00, 0x00,\r
INF MdeModulePkg/Application/BootManagerMenuApp/BootManagerMenuApp.inf\r
INF MdeModulePkg/Universal/DriverSampleDxe/DriverSampleDxe.inf\r
\r
+#\r
+# Secure Boot Key Enroll\r
+#\r
+!if $(SECURE_BOOT_ENABLE) == TRUE\r
+INF SecurityPkg/VariableAuthenticated/SecureBootConfigDxe/SecureBootConfigDxe.inf\r
+!endif\r
+\r
#\r
# Network stack drivers\r
#\r