2 # Provides security service of image verification
4 # This library hooks LoadImage() API to verify every image by the verification policy.
6 # Caution: This module requires additional review when modified.
7 # This library will have external input - PE/COFF image.
8 # This external input must be validated carefully to avoid security issues such as
9 # buffer overflow or integer overflow.
11 # Copyright (c) 2009 - 2014, Intel Corporation. All rights reserved.<BR>
12 # This program and the accompanying materials
13 # are licensed and made available under the terms and conditions of the BSD License
14 # which accompanies this distribution. The full text of the license may be found at
15 # http://opensource.org/licenses/bsd-license.php
16 # THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
17 # WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
22 INF_VERSION = 0x00010005
23 BASE_NAME = DxeImageVerificationLib
24 MODULE_UNI_FILE = DxeImageVerificationLib.uni
25 FILE_GUID = 0CA970E1-43FA-4402-BC0A-81AF336BFFD6
26 MODULE_TYPE = DXE_DRIVER
28 LIBRARY_CLASS = NULL|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
29 CONSTRUCTOR = DxeImageVerificationLibConstructor
32 # The following information is for reference only and not required by the build tools.
34 # VALID_ARCHITECTURES = IA32 X64 IPF EBC
38 DxeImageVerificationLib.c
39 DxeImageVerificationLib.h
44 MdeModulePkg/MdeModulePkg.dec
45 CryptoPkg/CryptoPkg.dec
46 SecurityPkg/SecurityPkg.dec
52 UefiBootServicesTableLib
53 UefiRuntimeServicesTableLib
63 gEfiFirmwareVolume2ProtocolGuid ## SOMETIMES_CONSUMES
64 gEfiBlockIoProtocolGuid ## SOMETIMES_CONSUMES
65 gEfiSimpleFileSystemProtocolGuid ## SOMETIMES_CONSUMES
68 ## SOMETIMES_CONSUMES ## Variable:L"DB"
69 ## SOMETIMES_CONSUMES ## Variable:L"DBX"
70 ## PRODUCES ## SystemTable
71 ## CONSUMES ## SystemTable
72 gEfiImageSecurityDatabaseGuid
74 ## SOMETIMES_CONSUMES ## GUID # Unique ID for the type of the signature.
75 ## SOMETIMES_PRODUCES ## GUID # Unique ID for the type of the signature.
78 ## SOMETIMES_CONSUMES ## GUID # Unique ID for the type of the signature.
79 ## SOMETIMES_PRODUCES ## GUID # Unique ID for the type of the signature.
82 gEfiCertX509Guid ## SOMETIMES_CONSUMES ## GUID # Unique ID for the type of the signature.
83 gEfiCertPkcs7Guid ## SOMETIMES_CONSUMES ## GUID # Unique ID for the type of the certificate.
86 gEfiSecurityPkgTokenSpaceGuid.PcdOptionRomImageVerificationPolicy ## SOMETIMES_CONSUMES
87 gEfiSecurityPkgTokenSpaceGuid.PcdRemovableMediaImageVerificationPolicy ## SOMETIMES_CONSUMES
88 gEfiSecurityPkgTokenSpaceGuid.PcdFixedMediaImageVerificationPolicy ## SOMETIMES_CONSUMES