--- /dev/null
+/** @file\r
+ Provides a secure platform-specific method to clear PK(Platform Key).\r
+\r
+Copyright (c) 2011, Intel Corporation. All rights reserved.<BR>\r
+This program and the accompanying materials \r
+are licensed and made available under the terms and conditions of the BSD License \r
+which accompanies this distribution. The full text of the license may be found at \r
+http://opensource.org/licenses/bsd-license.php\r
+\r
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
+WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
+\r
+**/\r
+\r
+/**\r
+\r
+ This function detects whether a secure platform-specific method to clear PK(Platform Key)\r
+ is configured by platform owner. This method is provided for users force to clear PK \r
+ in case incorrect enrollment mis-haps.\r
+ \r
+ UEFI231 spec chapter 27.5.2 stipulates: The platform key may also be cleared using \r
+ a secure platform-specific method. In this case, the global variable SetupMode \r
+ must also be updated to 1.\r
+ \r
+ NOTE THAT: This function cannot depend on any EFI Variable Service since they are\r
+ not available when this function is called in AuthenticateVariable driver.\r
+\r
+ @retval TRUE The Platform owner wants to force clear PK.\r
+ @retval FALSE The Platform owner doesn't want to force clear PK. \r
+\r
+**/\r
+BOOLEAN\r
+EFIAPI\r
+ForceClearPK (\r
+ VOID\r
+ )\r
+{\r
+ return FALSE;\r
+}\r
projects / mirror_edk2.git / blobdiff