/** @file\r
This file declares Pei Security2 PPI.\r
\r
- This PPI is installed by some platform PEIM that abstracts the security \r
- policy to the PEI Foundation, namely the case of a PEIM's authentication \r
+ This PPI is installed by some platform PEIM that abstracts the security\r
+ policy to the PEI Foundation, namely the case of a PEIM's authentication\r
state being returned during the PEI section extraction process.\r
\r
- Copyright (c) 2006 - 2008, Intel Corporation\r
- All rights reserved. This program and the accompanying materials \r
- are licensed and made available under the terms and conditions of the BSD License \r
- which accompanies this distribution. The full text of the license may be found at \r
- http://opensource.org/licenses/bsd-license.php \r
-\r
- THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
- WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED. \r
+ Copyright (c) 2006 - 2018, Intel Corporation. All rights reserved.<BR>\r
+ SPDX-License-Identifier: BSD-2-Clause-Patent\r
\r
@par Revision Reference:\r
- This PPI is defined in PI.\r
- Version 1.0.\r
+ This PPI is introduced in PI Version 1.0.\r
\r
**/\r
\r
#define EFI_PEI_SECURITY2_PPI_GUID \\r
{ 0xdcd0be23, 0x9586, 0x40f4, { 0xb6, 0x43, 0x6, 0x52, 0x2c, 0xed, 0x4e, 0xde } }\r
\r
-\r
-typedef struct _EFI_PEI_SECURITY2_PPI EFI_PEI_SECURITY2_PPI;\r
+typedef struct _EFI_PEI_SECURITY2_PPI EFI_PEI_SECURITY2_PPI;\r
\r
/**\r
- Allows the platform builder to implement a security policy \r
+ Allows the platform builder to implement a security policy\r
in response to varying file authentication states.\r
\r
This service is published by some platform PEIM. The purpose of\r
@param This Interface pointer that implements the\r
particular EFI_PEI_SECURITY2_PPI instance.\r
@param AuthenticationStatus Authentication status of the file.\r
+ xx00 Image was not signed.\r
+ xxx1 Platform security policy override.\r
+ Assumes same meaning as 0010 (the image was signed, the\r
+ signature was tested, and the signature passed authentication test).\r
+ 0010 Image was signed, the signature was tested,\r
+ and the signature passed authentication test.\r
+ 0110 Image was signed and the signature was not tested.\r
+ 1010 Image was signed, the signature was tested,\r
+ and the signature failed the authentication test.\r
@param FvHandle Handle of the volume in which the file\r
resides. This allows different policies\r
depending on different firmware volumes.\r
IN CONST EFI_PEI_SECURITY2_PPI *This,\r
IN UINT32 AuthenticationStatus,\r
IN EFI_PEI_FV_HANDLE FvHandle,\r
- IN EFI_PEI_FV_HANDLE FileHandle,\r
+ IN EFI_PEI_FILE_HANDLE FileHandle,\r
IN OUT BOOLEAN *DeferExecution\r
-);\r
+ );\r
\r
///\r
/// This PPI is a means by which the platform builder can indicate\r
/// trusted.\r
///\r
struct _EFI_PEI_SECURITY2_PPI {\r
- EFI_PEI_SECURITY_AUTHENTICATION_STATE AuthenticationState;\r
+ EFI_PEI_SECURITY_AUTHENTICATION_STATE AuthenticationState;\r
};\r
\r
-\r
-extern EFI_GUID gEfiPeiSecurity2PpiGuid;\r
+extern EFI_GUID gEfiPeiSecurity2PpiGuid;\r
\r
#endif\r