]>
Commit | Line | Data |
---|---|---|
0c18794e | 1 | ## @file\r |
60c944c7 | 2 | # Provides SMM authenticated variable service\r |
0c18794e | 3 | #\r |
4 | # This module installs SMM variable protocol into SMM protocol database,\r | |
2d3fb919 | 5 | # which can be used by SMM driver, and installs SMM variable protocol\r |
0c18794e | 6 | # into BS protocol database, which can be used to notify the SMM Runtime\r |
7 | # Dxe driver that the SMM variable service is ready.\r | |
2d3fb919 | 8 | # This module should be used with SMM Runtime DXE module together. The\r |
60c944c7 | 9 | # SMM Runtime DXE module installs variable arch protocol and variable\r |
0c18794e | 10 | # write arch protocol based on SMM variable module.\r |
11 | #\r | |
dc204d5a JY |
12 | # Caution: This module requires additional review when modified.\r |
13 | # This driver will have external input - variable data and communicate buffer in SMM mode.\r | |
60c944c7 DG |
14 | # This external input must be validated carefully to avoid security issues such as \r |
15 | # buffer overflow or integer overflow.\r | |
36bdec3c CZ |
16 | # The whole SMM authentication variable design relies on the integrity of flash part and SMM.\r |
17 | # which is assumed to be protected by platform. All variable code and metadata in flash/SMM Memory\r | |
18 | # may not be modified without authorization. If platform fails to protect these resources, \r | |
19 | # the authentication service provided in this driver will be broken, and the behavior is undefined.\r | |
dc204d5a | 20 | #\r |
201edad3 | 21 | # Copyright (c) 2010 - 2014, Intel Corporation. All rights reserved.<BR>\r |
0c18794e | 22 | # This program and the accompanying materials\r |
23 | # are licensed and made available under the terms and conditions of the BSD License\r | |
24 | # which accompanies this distribution. The full text of the license may be found at\r | |
25 | # http://opensource.org/licenses/bsd-license.php\r | |
26 | # THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,\r | |
27 | # WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r | |
28 | #\r | |
29 | ##\r | |
30 | \r | |
31 | [Defines]\r | |
32 | INF_VERSION = 0x00010005\r | |
201edad3 | 33 | BASE_NAME = VariableAuthSmm\r |
60c944c7 | 34 | MODULE_UNI_FILE = VariableAuthSmm.uni\r |
0c18794e | 35 | FILE_GUID = D34BDC5E-968A-40f5-A48C-E594F45AE211\r |
36 | MODULE_TYPE = DXE_SMM_DRIVER\r | |
37 | VERSION_STRING = 1.0\r | |
38 | PI_SPECIFICATION_VERSION = 0x0001000A\r | |
39 | ENTRY_POINT = VariableServiceInitialize\r | |
40 | \r | |
41 | #\r | |
42 | # The following information is for reference only and not required by the build tools.\r | |
43 | #\r | |
44 | # VALID_ARCHITECTURES = IA32 X64\r | |
45 | #\r | |
46 | \r | |
47 | \r | |
48 | [Sources]\r | |
49 | Reclaim.c\r | |
50 | Variable.c\r | |
51 | VariableSmm.c\r | |
52 | AuthService.c\r | |
53 | Variable.h\r | |
54 | AuthService.h\r | |
55 | \r | |
56 | [Packages]\r | |
57 | MdePkg/MdePkg.dec\r | |
58 | MdeModulePkg/MdeModulePkg.dec\r | |
59 | CryptoPkg/CryptoPkg.dec\r | |
60 | SecurityPkg/SecurityPkg.dec\r | |
61 | \r | |
62 | [LibraryClasses]\r | |
63 | UefiDriverEntryPoint\r | |
64 | MemoryAllocationLib\r | |
65 | BaseLib\r | |
66 | SynchronizationLib\r | |
67 | UefiLib\r | |
68 | SmmServicesTableLib\r | |
69 | BaseMemoryLib\r | |
70 | DebugLib\r | |
71 | DxeServicesTableLib\r | |
72 | BaseCryptLib\r | |
2d3fb919 | 73 | PlatformSecureLib\r |
9a000b46 | 74 | HobLib\r |
0c18794e | 75 | \r |
76 | [Protocols]\r | |
60c944c7 DG |
77 | gEfiSmmFirmwareVolumeBlockProtocolGuid ## CONSUMES\r |
78 | gEfiSmmAccess2ProtocolGuid ## CONSUMES\r | |
79 | \r | |
80 | ## PRODUCES\r | |
81 | ## UNDEFINED # SmiHandlerRegister\r | |
82 | gEfiSmmVariableProtocolGuid\r | |
83 | \r | |
84 | ## CONSUMES\r | |
85 | ## NOTIFY \r | |
86 | gEfiSmmFaultTolerantWriteProtocolGuid\r | |
87 | gEfiSmmEndOfDxeProtocolGuid ## NOTIFY\r | |
0c18794e | 88 | \r |
89 | [Guids]\r | |
60c944c7 DG |
90 | ## PRODUCES ## GUID # Variable store header\r |
91 | ## CONSUMES ## GUID # Variable store header\r | |
92 | ## SOMETIMES_CONSUMES ## HOB\r | |
93 | gEfiAuthenticatedVariableGuid\r | |
94 | \r | |
95 | ## SOMETIMES_CONSUMES ## Variable:L"PlatformLang"\r | |
96 | ## SOMETIMES_PRODUCES ## Variable:L"PlatformLang"\r | |
97 | ## SOMETIMES_CONSUMES ## Variable:L"Lang"\r | |
98 | ## SOMETIMES_PRODUCES ## Variable:L"Lang"\r | |
99 | ## SOMETIMES_CONSUMES ## Variable:L"HwErrRecSupport"\r | |
100 | ## CONSUMES ## Variable:L"SetupMode"\r | |
101 | ## PRODUCES ## Variable:L"SetupMode"\r | |
102 | ## SOMETIMES_CONSUMES ## Variable:L"PK"\r | |
103 | ## SOMETIMES_CONSUMES ## Variable:L"KEK"\r | |
104 | ## CONSUMES ## Variable:L"SecureBoot"\r | |
105 | ## PRODUCES ## Variable:L"SecureBoot"\r | |
106 | ## CONSUMES ## Variable:L"SignatureSupport"\r | |
107 | ## PRODUCES ## Variable:L"SignatureSupport"\r | |
108 | ## PRODUCES ## Variable:L"VendorKeys"\r | |
109 | gEfiGlobalVariableGuid\r | |
110 | \r | |
111 | ## SOMETIMES_CONSUMES ## Variable:L"DB"\r | |
112 | ## SOMETIMES_CONSUMES ## Variable:L"DBX"\r | |
0c18794e | 113 | gEfiImageSecurityDatabaseGuid\r |
60c944c7 DG |
114 | \r |
115 | ## CONSUMES ## Variable:L"SecureBootEnable"\r | |
116 | ## PRODUCES ## Variable:L"SecureBootEnable"\r | |
beda2356 | 117 | gEfiSecureBootEnableDisableGuid\r |
60c944c7 DG |
118 | \r |
119 | ## CONSUMES ## Variable:L"CustomMode"\r | |
120 | ## PRODUCES ## Variable:L"CustomMode"\r | |
ecc722ad | 121 | gEfiCustomModeEnableGuid\r |
60c944c7 DG |
122 | \r |
123 | ## CONSUMES ## Variable:L"certdb"\r | |
124 | ## PRODUCES ## Variable:L"certdb"\r | |
ed47ae02 | 125 | gEfiCertDbGuid\r |
0c18794e | 126 | \r |
60c944c7 DG |
127 | ## CONSUMES ## Variable:L"VendorKeysNv"\r |
128 | ## PRODUCES ## Variable:L"VendorKeysNv"\r | |
129 | gEfiVendorKeysNvGuid\r | |
130 | \r | |
131 | gSmmVariableWriteGuid ## PRODUCES ## GUID # Install protocol\r | |
132 | gEfiCertTypeRsa2048Sha256Guid ## SOMETIMES_CONSUMES ## GUID # Unique ID for the format of the CertData.\r | |
133 | gEfiCertPkcs7Guid ## SOMETIMES_CONSUMES ## GUID # Unique ID for the format of the CertData.\r | |
134 | gEfiCertX509Guid ## SOMETIMES_CONSUMES ## GUID # Unique ID for the type of the signature.\r | |
135 | gEfiSystemNvDataFvGuid ## CONSUMES ## GUID\r | |
136 | gEfiHardwareErrorVariableGuid ## SOMETIMES_CONSUMES ## Variable:L"HwErrRec####"\r | |
137 | gEdkiiFaultTolerantWriteGuid ## SOMETIMES_CONSUMES ## HOB\r | |
138 | \r | |
0c18794e | 139 | [Pcd]\r |
60c944c7 DG |
140 | gEfiMdeModulePkgTokenSpaceGuid.PcdFlashNvStorageVariableSize ## CONSUMES\r |
141 | gEfiMdeModulePkgTokenSpaceGuid.PcdFlashNvStorageVariableBase ## SOMETIMES_CONSUMES\r | |
142 | gEfiMdeModulePkgTokenSpaceGuid.PcdFlashNvStorageVariableBase64 ## CONSUMES\r | |
143 | gEfiMdeModulePkgTokenSpaceGuid.PcdMaxVariableSize ## CONSUMES\r | |
144 | gEfiMdeModulePkgTokenSpaceGuid.PcdMaxHardwareErrorVariableSize ## CONSUMES\r | |
145 | gEfiMdeModulePkgTokenSpaceGuid.PcdVariableStoreSize ## CONSUMES\r | |
146 | gEfiMdeModulePkgTokenSpaceGuid.PcdHwErrStorageSize ## CONSUMES\r | |
147 | \r | |
0c18794e | 148 | [FeaturePcd]\r |
60c944c7 DG |
149 | gEfiMdeModulePkgTokenSpaceGuid.PcdVariableCollectStatistics ## CONSUMES # statistic the information of variable.\r |
150 | gEfiMdePkgTokenSpaceGuid.PcdUefiVariableDefaultLangDeprecate ## CONSUMES # Auto update PlatformLang/Lang\r | |
0c18794e | 151 | \r |
152 | [Depex]\r | |
2d3fb919 | 153 | TRUE\r |
60c944c7 DG |
154 | \r |
155 | [UserExtensions.TianoCore."ExtraFiles"]\r | |
156 | VariableSmmExtra.uni |