/** @file\r
This file declares Pei Security2 PPI.\r
\r
- This PPI is installed by some platform PEIM that abstracts the security \r
- policy to the PEI Foundation, namely the case of a PEIM's authentication \r
+ This PPI is installed by some platform PEIM that abstracts the security\r
+ policy to the PEI Foundation, namely the case of a PEIM's authentication\r
state being returned during the PEI section extraction process.\r
\r
- Copyright (c) 2006 - 2008, Intel Corporation\r
- All rights reserved. This program and the accompanying materials \r
- are licensed and made available under the terms and conditions of the BSD License \r
- which accompanies this distribution. The full text of the license may be found at \r
- http://opensource.org/licenses/bsd-license.php \r
+ Copyright (c) 2006 - 2018, Intel Corporation. All rights reserved.<BR>\r
+ This program and the accompanying materials\r
+ are licensed and made available under the terms and conditions of the BSD License\r
+ which accompanies this distribution. The full text of the license may be found at\r
+ http://opensource.org/licenses/bsd-license.php\r
\r
- THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
- WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED. \r
+ THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,\r
+ WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
\r
@par Revision Reference:\r
This PPI is introduced in PI Version 1.0.\r
typedef struct _EFI_PEI_SECURITY2_PPI EFI_PEI_SECURITY2_PPI;\r
\r
/**\r
- Allows the platform builder to implement a security policy \r
+ Allows the platform builder to implement a security policy\r
in response to varying file authentication states.\r
\r
This service is published by some platform PEIM. The purpose of\r
@param This Interface pointer that implements the\r
particular EFI_PEI_SECURITY2_PPI instance.\r
@param AuthenticationStatus Authentication status of the file.\r
+ xx00 Image was not signed.\r
+ xxx1 Platform security policy override.\r
+ Assumes same meaning as 0010 (the image was signed, the\r
+ signature was tested, and the signature passed authentication test).\r
+ 0010 Image was signed, the signature was tested,\r
+ and the signature passed authentication test.\r
+ 0110 Image was signed and the signature was not tested.\r
+ 1010 Image was signed, the signature was tested,\r
+ and the signature failed the authentication test.\r
@param FvHandle Handle of the volume in which the file\r
resides. This allows different policies\r
depending on different firmware volumes.\r
IN CONST EFI_PEI_SECURITY2_PPI *This,\r
IN UINT32 AuthenticationStatus,\r
IN EFI_PEI_FV_HANDLE FvHandle,\r
- IN EFI_PEI_FV_HANDLE FileHandle,\r
+ IN EFI_PEI_FILE_HANDLE FileHandle,\r
IN OUT BOOLEAN *DeferExecution\r
);\r
\r