]> git.proxmox.com Git - mirror_edk2.git/blame - SecurityPkg/VariableAuthenticated/SecureBootConfigDxe/SecureBootConfig.vfr
projects / mirror_edk2.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
SecurityPkg: SecureBootConfigDxe: Fix string typo
[mirror_edk2.git] / SecurityPkg / VariableAuthenticated / SecureBootConfigDxe / SecureBootConfig.vfr
CommitLineData
beda2356 1/** @file\r
2 VFR file used by the SecureBoot configuration component.\r
3\r
96832eef 4Copyright (c) 2011 - 2015, Intel Corporation. All rights reserved.<BR>\r
20333c6d
QL		 5This program and the accompanying materials\r
6are licensed and made available under the terms and conditions of the BSD License\r
7which accompanies this distribution. The full text of the license may be found at\r
beda2356 8http://opensource.org/licenses/bsd-license.php\r
9\r
20333c6d 10THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,\r
beda2356 11WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
12\r
13**/\r
14\r
15#include "SecureBootConfigNvData.h"\r
16\r
17formset\r
18 guid = SECUREBOOT_CONFIG_FORM_SET_GUID,\r
19 title = STRING_TOKEN(STR_SECUREBOOT_TITLE),\r
20 help = STRING_TOKEN(STR_SECUREBOOT_HELP),\r
21 classguid = EFI_HII_PLATFORM_SETUP_FORMSET_GUID,\r
22\r
23 varstore SECUREBOOT_CONFIGURATION,\r
24 varid = SECUREBOOT_CONFIGURATION_VARSTORE_ID,\r
25 name = SECUREBOOT_CONFIGURATION,\r
26 guid = SECUREBOOT_CONFIG_FORM_SET_GUID;\r
20333c6d 27\r
ecc722ad 28 //\r
29 // ##1 Form "Secure Boot Configuration"\r
30 //\r
beda2356 31 form formid = SECUREBOOT_CONFIGURATION_FORM_ID,\r
32 title = STRING_TOKEN(STR_SECUREBOOT_TITLE);\r
33\r
34 subtitle text = STRING_TOKEN(STR_NULL);\r
f71ed839 35\r
96832eef
CZ		 36 //\r
37 // Display current secure boot mode(one of SetupMode/AuditMode/UserMode/DeployedMode)\r
38 //\r
39 text\r
40 help = STRING_TOKEN(STR_CUR_SECURE_BOOT_MODE_HELP),\r
41 text = STRING_TOKEN(STR_CUR_SECURE_BOOT_MODE_PROMPT),\r
42 text = STRING_TOKEN(STR_CUR_SECURE_BOOT_MODE_CONTENT);\r
43\r
f71ed839 44 text\r
45 help = STRING_TOKEN(STR_SECURE_BOOT_STATE_HELP),\r
46 text = STRING_TOKEN(STR_SECURE_BOOT_STATE_PROMPT),\r
47 text = STRING_TOKEN(STR_SECURE_BOOT_STATE_CONTENT);\r
20333c6d 48\r
ecc722ad 49 //\r
50 // Display of Check Box: Attempt Secure Boot\r
51 //\r
beda2356 52 grayoutif ideqval SECUREBOOT_CONFIGURATION.HideSecureBoot == 1;\r
f71ed839 53 checkbox varid = SECUREBOOT_CONFIGURATION.AttemptSecureBoot,\r
beda2356 54 questionid = KEY_SECURE_BOOT_ENABLE,\r
55 prompt = STRING_TOKEN(STR_SECURE_BOOT_PROMPT),\r
56 help = STRING_TOKEN(STR_SECURE_BOOT_HELP),\r
8f8ca22e 57 flags = INTERACTIVE | RESET_REQUIRED,\r
ecc722ad 58 endcheckbox;\r
59 endif;\r
20333c6d 60\r
ecc722ad 61 //\r
62 // Display of Oneof: 'Secure Boot Mode'\r
63 //\r
142d2dcb
CZ		 64 oneof name = SecureBootMode,\r
65 questionid = KEY_SECURE_BOOT_MODE,\r
66 prompt = STRING_TOKEN(STR_SECURE_BOOT_MODE_PROMPT),\r
67 help = STRING_TOKEN(STR_SECURE_BOOT_MODE_HELP),\r
68 flags = INTERACTIVE | NUMERIC_SIZE_1,\r
69 option text = STRING_TOKEN(STR_STANDARD_MODE), value = SECURE_BOOT_MODE_STANDARD, flags = DEFAULT;\r
70 option text = STRING_TOKEN(STR_CUSTOM_MODE), value = SECURE_BOOT_MODE_CUSTOM, flags = 0;\r
71 endoneof;\r
20333c6d 72\r
ecc722ad 73 //\r
96832eef 74 // Display PK include page\r
ecc722ad 75 //\r
a365eed4 76 suppressif questionref(SecureBootMode) == SECURE_BOOT_MODE_STANDARD;\r
96832eef
CZ		 77 grayoutif NOT ideqval SECUREBOOT_CONFIGURATION.PhysicalPresent == 1;\r
78 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
79 prompt = STRING_TOKEN(STR_SECURE_BOOT_OPTION),\r
80 help = STRING_TOKEN(STR_SECURE_BOOT_OPTION_HELP),\r
81 flags = INTERACTIVE,\r
82 key = KEY_SECURE_BOOT_OPTION;\r
83 endif;\r
ecc722ad 84 endif;\r
96832eef 85\r
ecc722ad 86 endform;\r
20333c6d 87\r
ecc722ad 88 //\r
89 // ##2 Form: 'Custom Secure Boot Options'\r
90 //\r
91 form formid = FORMID_SECURE_BOOT_OPTION_FORM,\r
92 title = STRING_TOKEN(STR_SECURE_BOOT_OPTION_TITLE);\r
20333c6d 93\r
ecc722ad 94 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d 95\r
96832eef
CZ		 96 //\r
97 // Display of SetupMode/UserMode/AuditMode/DeployedMode transition\r
98 //\r
142d2dcb 99 oneof name = TransSecureBootMode,\r
96832eef
CZ		 100 questionid = KEY_TRANS_SECURE_BOOT_MODE,\r
101 prompt = STRING_TOKEN(STR_TRANS_SECURE_BOOT_MODE_PROMPT),\r
102 help = STRING_TOKEN(STR_TRANS_SECURE_BOOT_MODE_HELP),\r
103 flags = INTERACTIVE | NUMERIC_SIZE_1,\r
104 suppressif ideqval SECUREBOOT_CONFIGURATION.CurSecureBootMode == SECURE_BOOT_MODE_AUDIT_MODE \r
105 OR (ideqval SECUREBOOT_CONFIGURATION.CurSecureBootMode == SECURE_BOOT_MODE_DEPLOYED_MODE AND\r
106 ideqval SECUREBOOT_CONFIGURATION.PhysicalPresent == 0);\r
107 option text = STRING_TOKEN(STR_USER_MODE), value = SECURE_BOOT_MODE_USER_MODE, flags = 0;\r
108 endif\r
109 suppressif ideqval SECUREBOOT_CONFIGURATION.CurSecureBootMode == SECURE_BOOT_MODE_AUDIT_MODE;\r
110 option text = STRING_TOKEN(STR_SETUP_MODE), value = SECURE_BOOT_MODE_SETUP_MODE, flags = 0;\r
111 endif\r
112 suppressif ideqval SECUREBOOT_CONFIGURATION.CurSecureBootMode == SECURE_BOOT_MODE_DEPLOYED_MODE;\r
113 option text = STRING_TOKEN(STR_AUDIT_MODE), value = SECURE_BOOT_MODE_AUDIT_MODE, flags = 0;\r
114 endif\r
115 suppressif ideqval SECUREBOOT_CONFIGURATION.CurSecureBootMode == SECURE_BOOT_MODE_SETUP_MODE;\r
116 option text = STRING_TOKEN(STR_DEPLOYED_MODE), value = SECURE_BOOT_MODE_DEPLOYED_MODE, flags = 0;\r
117 endif\r
118\r
142d2dcb 119 endoneof;\r
96832eef
CZ		 120\r
121 subtitle text = STRING_TOKEN(STR_NULL);\r
122\r
ecc722ad 123 goto FORMID_SECURE_BOOT_PK_OPTION_FORM,\r
124 prompt = STRING_TOKEN(STR_SECURE_BOOT_PK_OPTION),\r
125 help = STRING_TOKEN(STR_SECURE_BOOT_PK_OPTION_HELP),\r
126 flags = INTERACTIVE,\r
127 key = KEY_SECURE_BOOT_PK_OPTION;\r
20333c6d 128\r
ecc722ad 129 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d 130\r
ecc722ad 131 goto FORMID_SECURE_BOOT_KEK_OPTION_FORM,\r
132 prompt = STRING_TOKEN(STR_SECURE_BOOT_KEK_OPTION),\r
133 help = STRING_TOKEN(STR_SECURE_BOOT_KEK_OPTION_HELP),\r
134 flags = INTERACTIVE,\r
135 key = KEY_SECURE_BOOT_KEK_OPTION;\r
20333c6d 136\r
ecc722ad 137 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d 138\r
ecc722ad 139 goto FORMID_SECURE_BOOT_DB_OPTION_FORM,\r
140 prompt = STRING_TOKEN(STR_SECURE_BOOT_DB_OPTION),\r
141 help = STRING_TOKEN(STR_SECURE_BOOT_DB_OPTION_HELP),\r
142 flags = INTERACTIVE,\r
143 key = KEY_SECURE_BOOT_DB_OPTION;\r
20333c6d 144\r
ecc722ad 145 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d 146\r
ecc722ad 147 goto FORMID_SECURE_BOOT_DBX_OPTION_FORM,\r
148 prompt = STRING_TOKEN(STR_SECURE_BOOT_DBX_OPTION),\r
149 help = STRING_TOKEN(STR_SECURE_BOOT_DBX_OPTION_HELP),\r
150 flags = INTERACTIVE,\r
151 key = KEY_SECURE_BOOT_DBX_OPTION;\r
152\r
20333c6d
QL		 153 subtitle text = STRING_TOKEN(STR_NULL);\r
154\r
155 goto FORMID_SECURE_BOOT_DBT_OPTION_FORM,\r
156 prompt = STRING_TOKEN(STR_SECURE_BOOT_DBT_OPTION),\r
157 help = STRING_TOKEN(STR_SECURE_BOOT_DBT_OPTION_HELP),\r
158 flags = INTERACTIVE,\r
159 key = KEY_SECURE_BOOT_DBT_OPTION;\r
160\r
ecc722ad 161 endform;\r
20333c6d 162\r
ecc722ad 163 //\r
164 // ##3 Form: 'PK Options'\r
165 //\r
166 form formid = FORMID_SECURE_BOOT_PK_OPTION_FORM,\r
167 title = STRING_TOKEN(STR_SECURE_BOOT_PK_OPTION);\r
20333c6d 168\r
ecc722ad 169 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d 170\r
ecc722ad 171 //\r
142d2dcb 172 // Display of 'Enroll PK'\r
ecc722ad 173 //\r
ecc722ad 174 grayoutif ideqval SECUREBOOT_CONFIGURATION.HasPk == 1;\r
175 goto FORMID_ENROLL_PK_FORM,\r
176 prompt = STRING_TOKEN(STR_ENROLL_PK),\r
177 help = STRING_TOKEN(STR_ENROLL_PK_HELP),\r
178 flags = INTERACTIVE,\r
179 key = KEY_ENROLL_PK;\r
180 endif;\r
20333c6d 181\r
ecc722ad 182 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d 183\r
ecc722ad 184 //\r
20333c6d 185 // Display of Check Box: 'Delete Pk'\r
ecc722ad 186 //\r
187 grayoutif ideqval SECUREBOOT_CONFIGURATION.HideSecureBoot == 1;\r
188 checkbox varid = SECUREBOOT_CONFIGURATION.DeletePk,\r
189 questionid = KEY_SECURE_BOOT_DELETE_PK,\r
20333c6d 190 prompt = STRING_TOKEN(STR_DELETE_PK),\r
ecc722ad 191 help = STRING_TOKEN(STR_DELETE_PK_HELP),\r
0fb450fb 192 flags = INTERACTIVE | RESET_REQUIRED,\r
beda2356 193 endcheckbox;\r
194 endif;\r
ecc722ad 195 endform;\r
20333c6d 196\r
ecc722ad 197 //\r
198 // ##4 Form: 'Enroll PK'\r
199 //\r
200 form formid = FORMID_ENROLL_PK_FORM,\r
201 title = STRING_TOKEN(STR_ENROLL_PK);\r
20333c6d 202\r
ecc722ad 203 subtitle text = STRING_TOKEN(STR_NULL);\r
204\r
205 goto FORM_FILE_EXPLORER_ID_PK,\r
206 prompt = STRING_TOKEN(STR_SECURE_BOOT_ENROLL_PK_FILE),\r
207 help = STRING_TOKEN(STR_SECURE_BOOT_ENROLL_PK_FILE),\r
208 flags = INTERACTIVE,\r
209 key = SECUREBOOT_ADD_PK_FILE_FORM_ID;\r
210 endform;\r
20333c6d 211\r
ecc722ad 212 //\r
213 // ##5 Form: 'KEK Options'\r
214 //\r
215 form formid = FORMID_SECURE_BOOT_KEK_OPTION_FORM,\r
216 title = STRING_TOKEN(STR_SECURE_BOOT_KEK_OPTION);\r
217\r
218 //\r
20333c6d 219 // Display of 'Enroll KEK'\r
ecc722ad 220 //\r
221 goto FORMID_ENROLL_KEK_FORM,\r
222 prompt = STRING_TOKEN(STR_ENROLL_KEK),\r
223 help = STRING_TOKEN(STR_ENROLL_KEK_HELP),\r
224 flags = INTERACTIVE;\r
20333c6d
QL		 225\r
226 subtitle text = STRING_TOKEN(STR_NULL);\r
227\r
ecc722ad 228 //\r
20333c6d 229 // Display of 'Delete KEK'\r
ecc722ad 230 //\r
231 goto FORMID_DELETE_KEK_FORM,\r
232 prompt = STRING_TOKEN(STR_DELETE_KEK),\r
233 help = STRING_TOKEN(STR_DELETE_KEK_HELP),\r
234 flags = INTERACTIVE,\r
235 key = KEY_DELETE_KEK;\r
20333c6d
QL		 236\r
237 subtitle text = STRING_TOKEN(STR_NULL);\r
ecc722ad 238 endform;\r
239\r
240 //\r
20333c6d 241 // ##6 Form: 'Enroll KEK'\r
ecc722ad 242 //\r
243 form formid = FORMID_ENROLL_KEK_FORM,\r
244 title = STRING_TOKEN(STR_ENROLL_KEK_TITLE);\r
245\r
246 subtitle text = STRING_TOKEN(STR_NULL);\r
247\r
248 goto FORM_FILE_EXPLORER_ID_KEK,\r
249 prompt = STRING_TOKEN(STR_FORM_ENROLL_KEK_FROM_FILE_TITLE),\r
250 help = STRING_TOKEN(STR_FORM_ENROLL_KEK_FROM_FILE_TITLE_HELP),\r
251 flags = INTERACTIVE,\r
252 key = FORMID_ENROLL_KEK_FORM;\r
253\r
254 subtitle text = STRING_TOKEN(STR_NULL);\r
255 label FORMID_ENROLL_KEK_FORM;\r
256 label LABEL_END;\r
257 subtitle text = STRING_TOKEN(STR_NULL);\r
258\r
259 string varid = SECUREBOOT_CONFIGURATION.SignatureGuid,\r
260 prompt = STRING_TOKEN(STR_SECURE_BOOT_SIGNATURE_GUID),\r
261 help = STRING_TOKEN(STR_SECURE_BOOT_SIGNATURE_GUID_HELP),\r
262 flags = INTERACTIVE,\r
263 key = KEY_SECURE_BOOT_KEK_GUID,\r
264 minsize = SECURE_BOOT_GUID_SIZE,\r
265 maxsize = SECURE_BOOT_GUID_SIZE,\r
266 endstring;\r
267\r
268 subtitle text = STRING_TOKEN(STR_NULL);\r
269 subtitle text = STRING_TOKEN(STR_NULL);\r
270\r
271 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
272 prompt = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
273 help = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
274 flags = INTERACTIVE,\r
275 key = KEY_VALUE_SAVE_AND_EXIT_KEK;\r
20333c6d 276\r
ecc722ad 277 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
278 prompt = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
279 help = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
280 flags = INTERACTIVE,\r
281 key = KEY_VALUE_NO_SAVE_AND_EXIT_KEK;\r
282\r
283 endform;\r
284\r
285 //\r
286 // ##7 Form: 'Delete KEK'\r
20333c6d 287 //\r
ecc722ad 288 form formid = FORMID_DELETE_KEK_FORM,\r
289 title = STRING_TOKEN(STR_DELETE_KEK_TITLE);\r
290\r
291 label LABEL_KEK_DELETE;\r
292 label LABEL_END;\r
20333c6d 293\r
ecc722ad 294 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d 295\r
ecc722ad 296 endform;\r
297\r
298 //\r
299 // ##8 Form: 'DB Options'\r
300 //\r
301 form formid = FORMID_SECURE_BOOT_DB_OPTION_FORM,\r
302 title = STRING_TOKEN(STR_SECURE_BOOT_DB_OPTION);\r
303\r
304 subtitle text = STRING_TOKEN(STR_NULL);\r
305\r
306 goto SECUREBOOT_ENROLL_SIGNATURE_TO_DB,\r
307 prompt = STRING_TOKEN (STR_SECURE_BOOT_ENROLL_SIGNATURE),\r
308 help = STRING_TOKEN (STR_SECURE_BOOT_ENROLL_SIGNATURE),\r
309 flags = 0;\r
310\r
311 subtitle text = STRING_TOKEN(STR_NULL);\r
312\r
313 goto SECUREBOOT_DELETE_SIGNATURE_FROM_DB,\r
314 prompt = STRING_TOKEN (STR_SECURE_BOOT_DELETE_SIGNATURE),\r
315 help = STRING_TOKEN (STR_SECURE_BOOT_DELETE_SIGNATURE),\r
316 flags = INTERACTIVE,\r
317 key = SECUREBOOT_DELETE_SIGNATURE_FROM_DB;\r
20333c6d 318\r
ecc722ad 319 endform;\r
320\r
321 //\r
322 // ##9 Form: 'DBX Options'\r
323 //\r
324 form formid = FORMID_SECURE_BOOT_DBX_OPTION_FORM,\r
325 title = STRING_TOKEN(STR_SECURE_BOOT_DBX_OPTION);\r
326\r
327 subtitle text = STRING_TOKEN(STR_NULL);\r
328\r
329 goto SECUREBOOT_ENROLL_SIGNATURE_TO_DBX,\r
330 prompt = STRING_TOKEN (STR_SECURE_BOOT_ENROLL_SIGNATURE),\r
331 help = STRING_TOKEN (STR_SECURE_BOOT_ENROLL_SIGNATURE),\r
332 flags = 0;\r
333\r
334 subtitle text = STRING_TOKEN(STR_NULL);\r
335\r
336 goto SECUREBOOT_DELETE_SIGNATURE_FROM_DBX,\r
337 prompt = STRING_TOKEN (STR_SECURE_BOOT_DELETE_SIGNATURE),\r
338 help = STRING_TOKEN (STR_SECURE_BOOT_DELETE_SIGNATURE),\r
339 flags = INTERACTIVE,\r
340 key = SECUREBOOT_DELETE_SIGNATURE_FROM_DBX;\r
341\r
342 endform;\r
343\r
20333c6d
QL		 344 //\r
345 // ##9 Form: 'DBT Options'\r
346 //\r
347 form formid = FORMID_SECURE_BOOT_DBT_OPTION_FORM,\r
348 title = STRING_TOKEN(STR_SECURE_BOOT_DBT_OPTION);\r
349\r
350 subtitle text = STRING_TOKEN(STR_NULL);\r
351\r
352 goto SECUREBOOT_ENROLL_SIGNATURE_TO_DBT,\r
353 prompt = STRING_TOKEN (STR_SECURE_BOOT_ENROLL_SIGNATURE),\r
354 help = STRING_TOKEN (STR_SECURE_BOOT_ENROLL_SIGNATURE),\r
355 flags = 0;\r
356\r
357 subtitle text = STRING_TOKEN(STR_NULL);\r
358\r
359 goto SECUREBOOT_DELETE_SIGNATURE_FROM_DBT,\r
360 prompt = STRING_TOKEN (STR_SECURE_BOOT_DELETE_SIGNATURE),\r
361 help = STRING_TOKEN (STR_SECURE_BOOT_DELETE_SIGNATURE),\r
362 flags = INTERACTIVE,\r
363 key = SECUREBOOT_DELETE_SIGNATURE_FROM_DBT;\r
364\r
365 endform;\r
366\r
ecc722ad 367 //\r
368 // Form: 'Delete Signature' for DB Options.\r
369 //\r
370 form formid = SECUREBOOT_DELETE_SIGNATURE_FROM_DB,\r
371 title = STRING_TOKEN(STR_SECURE_BOOT_DELETE_SIGNATURE);\r
372\r
373 label LABEL_DB_DELETE;\r
374 label LABEL_END;\r
375 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d 376\r
ecc722ad 377 endform;\r
378\r
379 //\r
380 // Form: 'Delete Signature' for DBX Options.\r
381 //\r
382 form formid = SECUREBOOT_DELETE_SIGNATURE_FROM_DBX,\r
383 title = STRING_TOKEN(STR_SECURE_BOOT_DELETE_SIGNATURE);\r
384\r
385 label LABEL_DBX_DELETE;\r
386 label LABEL_END;\r
387 subtitle text = STRING_TOKEN(STR_NULL);\r
20333c6d
QL		 388\r
389 endform;\r
390\r
391 //\r
392 // Form: 'Delete Signature' for DBT Options.\r
393 //\r
394 form formid = SECUREBOOT_DELETE_SIGNATURE_FROM_DBT,\r
395 title = STRING_TOKEN(STR_SECURE_BOOT_DELETE_SIGNATURE);\r
396\r
397 label LABEL_DBT_DELETE;\r
398 label LABEL_END;\r
399 subtitle text = STRING_TOKEN(STR_NULL);\r
400\r
ecc722ad 401 endform;\r
402\r
403 //\r
404 // Form: 'Enroll Signature' for DB options.\r
405 //\r
406 form formid = SECUREBOOT_ENROLL_SIGNATURE_TO_DB,\r
407 title = STRING_TOKEN(STR_SECURE_BOOT_ENROLL_SIGNATURE);\r
408\r
409 subtitle text = STRING_TOKEN(STR_NULL);\r
410\r
411 goto FORM_FILE_EXPLORER_ID_DB,\r
412 prompt = STRING_TOKEN(STR_SECURE_BOOT_ADD_SIGNATURE_FILE),\r
413 help = STRING_TOKEN(STR_SECURE_BOOT_ADD_SIGNATURE_FILE),\r
414 flags = INTERACTIVE,\r
415 key = SECUREBOOT_ENROLL_SIGNATURE_TO_DB;\r
416\r
417 subtitle text = STRING_TOKEN(STR_NULL);\r
418 label SECUREBOOT_ENROLL_SIGNATURE_TO_DB;\r
419 label LABEL_END;\r
420 subtitle text = STRING_TOKEN(STR_NULL);\r
421\r
422 string varid = SECUREBOOT_CONFIGURATION.SignatureGuid,\r
423 prompt = STRING_TOKEN(STR_SECURE_BOOT_SIGNATURE_GUID),\r
424 help = STRING_TOKEN(STR_SECURE_BOOT_SIGNATURE_GUID_HELP),\r
425 flags = INTERACTIVE,\r
426 key = KEY_SECURE_BOOT_SIGNATURE_GUID_DB,\r
427 minsize = SECURE_BOOT_GUID_SIZE,\r
428 maxsize = SECURE_BOOT_GUID_SIZE,\r
429 endstring;\r
430\r
431 subtitle text = STRING_TOKEN(STR_NULL);\r
432 subtitle text = STRING_TOKEN(STR_NULL);\r
433\r
434 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
435 prompt = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
436 help = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
437 flags = INTERACTIVE,\r
438 key = KEY_VALUE_SAVE_AND_EXIT_DB;\r
20333c6d 439\r
ecc722ad 440 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
441 prompt = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
442 help = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
443 flags = INTERACTIVE,\r
444 key = KEY_VALUE_NO_SAVE_AND_EXIT_DB;\r
445\r
446 endform;\r
447\r
448 //\r
449 // Form: 'Enroll Signature' for DBX options.\r
450 //\r
451 form formid = SECUREBOOT_ENROLL_SIGNATURE_TO_DBX,\r
452 title = STRING_TOKEN(STR_SECURE_BOOT_ENROLL_SIGNATURE);\r
453\r
454 subtitle text = STRING_TOKEN(STR_NULL);\r
455\r
456 goto FORM_FILE_EXPLORER_ID_DBX,\r
457 prompt = STRING_TOKEN(STR_SECURE_BOOT_ADD_SIGNATURE_FILE),\r
458 help = STRING_TOKEN(STR_SECURE_BOOT_ADD_SIGNATURE_FILE),\r
459 flags = INTERACTIVE,\r
460 key = SECUREBOOT_ENROLL_SIGNATURE_TO_DBX;\r
461\r
ecc722ad 462 label SECUREBOOT_ENROLL_SIGNATURE_TO_DBX;\r
463 label LABEL_END;\r
464 subtitle text = STRING_TOKEN(STR_NULL);\r
465\r
466 string varid = SECUREBOOT_CONFIGURATION.SignatureGuid,\r
467 prompt = STRING_TOKEN(STR_SECURE_BOOT_SIGNATURE_GUID),\r
468 help = STRING_TOKEN(STR_SECURE_BOOT_SIGNATURE_GUID_HELP),\r
469 flags = INTERACTIVE,\r
470 key = KEY_SECURE_BOOT_SIGNATURE_GUID_DBX,\r
471 minsize = SECURE_BOOT_GUID_SIZE,\r
472 maxsize = SECURE_BOOT_GUID_SIZE,\r
473 endstring;\r
474\r
20333c6d
QL		 475 oneof name = SignatureFormatInDbx,\r
476 varid = SECUREBOOT_CONFIGURATION.CertificateFormat,\r
477 prompt = STRING_TOKEN(STR_DBX_CERTIFICATE_FORMAT_PROMPT),\r
478 help = STRING_TOKEN(STR_DBX_CERTIFICATE_FORMAT_HELP),\r
479 option text = STRING_TOKEN(STR_DBX_CERTIFICATE_FORMAT_SHA256), value = 0x2, flags = DEFAULT;\r
480 option text = STRING_TOKEN(STR_DBX_CERTIFICATE_FORMAT_SHA384), value = 0x3, flags = 0;\r
481 option text = STRING_TOKEN(STR_DBX_CERTIFICATE_FORMAT_SHA512), value = 0x4, flags = 0;\r
482 option text = STRING_TOKEN(STR_DBX_CERTIFICATE_FORMAT_RAW), value = 0x5, flags = 0;\r
483 endoneof;\r
484\r
485 suppressif ideqval SECUREBOOT_CONFIGURATION.CertificateFormat == 5;\r
486 checkbox varid = SECUREBOOT_CONFIGURATION.AlwaysRevocation,\r
487 prompt = STRING_TOKEN(STR_ALWAYS_CERTIFICATE_REVOCATION_PROMPT),\r
488 help = STRING_TOKEN(STR_ALWAYS_CERTIFICATE_REVOCATION_HELP),\r
489 flags = INTERACTIVE,\r
490 endcheckbox;\r
491\r
492 suppressif ideqval SECUREBOOT_CONFIGURATION.AlwaysRevocation == 1;\r
493 date varid = SECUREBOOT_CONFIGURATION.RevocationDate,\r
494 prompt = STRING_TOKEN(STR_CERTIFICATE_REVOCATION_DATE_PROMPT),\r
495 help = STRING_TOKEN(STR_CERTIFICATE_REVOCATION_DATE_HELP),\r
496 flags = STORAGE_NORMAL,\r
497 enddate;\r
498\r
499 time varid = SECUREBOOT_CONFIGURATION.RevocationTime,\r
500 prompt = STRING_TOKEN(STR_CERTIFICATE_REVOCATION_TIME_PROMPT),\r
501 help = STRING_TOKEN(STR_CERTIFICATE_REVOCATION_TIME_HELP),\r
502 flags = STORAGE_NORMAL,\r
503 endtime;\r
504 endif;\r
505 endif;\r
506\r
ecc722ad 507 subtitle text = STRING_TOKEN(STR_NULL);\r
508 subtitle text = STRING_TOKEN(STR_NULL);\r
509\r
510 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
511 prompt = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
512 help = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
513 flags = INTERACTIVE,\r
514 key = KEY_VALUE_SAVE_AND_EXIT_DBX;\r
20333c6d 515\r
ecc722ad 516 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
517 prompt = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
518 help = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
519 flags = INTERACTIVE,\r
520 key = KEY_VALUE_NO_SAVE_AND_EXIT_DBX;\r
521\r
522 endform;\r
523\r
20333c6d
QL		 524 //\r
525 // Form: 'Enroll Signature' for DBT options.\r
526 //\r
527 form formid = SECUREBOOT_ENROLL_SIGNATURE_TO_DBT,\r
528 title = STRING_TOKEN(STR_SECURE_BOOT_ENROLL_SIGNATURE);\r
529\r
530 subtitle text = STRING_TOKEN(STR_NULL);\r
531\r
532 goto FORM_FILE_EXPLORER_ID_DBT,\r
533 prompt = STRING_TOKEN(STR_SECURE_BOOT_ADD_SIGNATURE_FILE),\r
534 help = STRING_TOKEN(STR_SECURE_BOOT_ADD_SIGNATURE_FILE),\r
535 flags = INTERACTIVE,\r
536 key = SECUREBOOT_ENROLL_SIGNATURE_TO_DBT;\r
537\r
538 subtitle text = STRING_TOKEN(STR_NULL);\r
539 label SECUREBOOT_ENROLL_SIGNATURE_TO_DBT;\r
540 label LABEL_END;\r
541 subtitle text = STRING_TOKEN(STR_NULL);\r
542\r
543 string varid = SECUREBOOT_CONFIGURATION.SignatureGuid,\r
544 prompt = STRING_TOKEN(STR_SECURE_BOOT_SIGNATURE_GUID),\r
545 help = STRING_TOKEN(STR_SECURE_BOOT_SIGNATURE_GUID_HELP),\r
546 flags = INTERACTIVE,\r
547 key = KEY_SECURE_BOOT_SIGNATURE_GUID_DBT,\r
548 minsize = SECURE_BOOT_GUID_SIZE,\r
549 maxsize = SECURE_BOOT_GUID_SIZE,\r
550 endstring;\r
551\r
552 subtitle text = STRING_TOKEN(STR_NULL);\r
553 subtitle text = STRING_TOKEN(STR_NULL);\r
554\r
555 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
556 prompt = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
557 help = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
558 flags = INTERACTIVE,\r
559 key = KEY_VALUE_SAVE_AND_EXIT_DBT;\r
560\r
561 goto FORMID_SECURE_BOOT_OPTION_FORM,\r
562 prompt = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
563 help = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
564 flags = INTERACTIVE,\r
565 key = KEY_VALUE_NO_SAVE_AND_EXIT_DBT;\r
566\r
567 endform;\r
568\r
ecc722ad 569 //\r
570 // File Explorer for PK\r
571 //\r
572 form formid = FORM_FILE_EXPLORER_ID_PK,\r
573 title = STRING_TOKEN(STR_FILE_EXPLORER_TITLE);\r
574\r
575 label FORM_FILE_EXPLORER_ID;\r
576 label LABEL_END;\r
577 endform;\r
20333c6d 578\r
ecc722ad 579 //\r
580 // File Explorer for KEK\r
581 //\r
582 form formid = FORM_FILE_EXPLORER_ID_KEK,\r
583 title = STRING_TOKEN(STR_FILE_EXPLORER_TITLE);\r
584\r
585 label FORM_FILE_EXPLORER_ID;\r
586 label LABEL_END;\r
587 endform;\r
588\r
589 //\r
590 // File Explorer for DB\r
591 //\r
592 form formid = FORM_FILE_EXPLORER_ID_DB,\r
593 title = STRING_TOKEN(STR_FILE_EXPLORER_TITLE);\r
594\r
595 label FORM_FILE_EXPLORER_ID;\r
596 label LABEL_END;\r
597 endform;\r
598\r
599 //\r
600 // File Explorer for DBX\r
601 //\r
602 form formid = FORM_FILE_EXPLORER_ID_DBX,\r
603 title = STRING_TOKEN(STR_FILE_EXPLORER_TITLE);\r
604\r
605 label FORM_FILE_EXPLORER_ID;\r
606 label LABEL_END;\r
607 endform;\r
608\r
20333c6d
QL		 609 //\r
610 // File Explorer for DBT\r
611 //\r
612 form formid = FORM_FILE_EXPLORER_ID_DBT,\r
613 title = STRING_TOKEN(STR_FILE_EXPLORER_TITLE);\r
614\r
615 label FORM_FILE_EXPLORER_ID;\r
616 label LABEL_END;\r
617 endform;\r
ecc722ad 618\r
619 //\r
620 // Enroll Pk from File Commit Form\r
621 //\r
622 form formid = SECUREBOOT_ADD_PK_FILE_FORM_ID,\r
623 title = STRING_TOKEN(STR_SAVE_PK_FILE);\r
624\r
625 label SECUREBOOT_ADD_PK_FILE_FORM_ID;\r
626 label LABEL_END;\r
20333c6d 627\r
ecc722ad 628 subtitle text = STRING_TOKEN(STR_NULL);\r
629\r
630 text\r
631 help = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
632 text = STRING_TOKEN(STR_SAVE_AND_EXIT),\r
20333c6d 633 text = STRING_TOKEN(STR_NULL),\r
ecc722ad 634 flags = INTERACTIVE,\r
635 key = KEY_VALUE_SAVE_AND_EXIT_PK;\r
636\r
637 text\r
638 help = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
639 text = STRING_TOKEN(STR_NO_SAVE_AND_EXIT),\r
20333c6d 640 text = STRING_TOKEN(STR_NULL),\r
ecc722ad 641 flags = INTERACTIVE,\r
642 key = KEY_VALUE_NO_SAVE_AND_EXIT_PK;\r
beda2356 643\r
644 endform;\r
645\r
20333c6d 646endformset;
EFI Development Kit II mirror for PVE