X-Git-Url: https://git.proxmox.com/?p=mirror_edk2.git;a=blobdiff_plain;f=SecurityPkg%2FSecurityPkg.dec;h=d568b4757a0bd01325ee564f5e112198eb3bf708;hp=61bf4c434a829124ad08e90ba3249e8a0d96a139;hb=af9af05bec5b1880f8e4f9142ecc0044fd0acb33;hpb=0cebfe81f94be36116af66d0a3134ce18d89eec1 diff --git a/SecurityPkg/SecurityPkg.dec b/SecurityPkg/SecurityPkg.dec index 61bf4c434a..d568b4757a 100644 --- a/SecurityPkg/SecurityPkg.dec +++ b/SecurityPkg/SecurityPkg.dec @@ -71,6 +71,15 @@ ## @libraryclass Provides support for TrEE PP >= 128 Vendor Specific PPI Operation. # TrEEPpVendorLib|Include/Library/TrEEPpVendorLib.h + + ## @libraryclass Provides support for TCG Physical Presence Interface (PPI) specification + # >= 128 Vendor Specific PPI Operation. + # + Tcg2PpVendorLib|Include/Library/TcgPpVendorLib.h + + ## @libraryclass Handle TPM 2.0 physical presence request from OS. + # + Tcg2PhysicalPresenceLib|Include/Library/Tcg2PhysicalPresenceLib.h [Guids] ## Security package token space guid. @@ -100,7 +109,11 @@ ## GUID used to "certdb" variable to store the signer's certificates for common variables with EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS attribute. # Include/Guid/AuthenticatedVariableFormat.h gEfiCertDbGuid = { 0xd9bee56e, 0x75dc, 0x49d9, { 0xb4, 0xd7, 0xb5, 0x34, 0x21, 0xf, 0x63, 0x7a } } - + + ## GUID used to "SecureBootMode" variable to save platform secure boot mode + # Include/Guid/AuthenticatedVariableFormat.h + gEdkiiSecureBootModeGuid = { 0xc573b77, 0xeb93, 0x4d3d, { 0xaf, 0xfc, 0x5f, 0xeb, 0xca, 0xfb, 0x65, 0xb0 } } + ## Hob GUID used to pass a TCG_PCR_EVENT from a TPM PEIM to a TPM DXE Driver. # Include/Guid/TcgEventHob.h gTcgEventEntryHobGuid = { 0x2b9ffb52, 0x1b13, 0x416f, { 0xa8, 0x7b, 0xbc, 0x93, 0xd, 0xef, 0x92, 0xa8 }} @@ -367,6 +380,7 @@ ## This PCR means the OEM configurated number of PCR banks. # 0 means dynamic get from supported HASH algorithm + # @Prompt OEM configurated number of PCR banks. gEfiSecurityPkgTokenSpaceGuid.PcdTcg2NumberOfPCRBanks|0x0|UINT32|0x00010015 ## Provides one or more SHA 256 Hashes of the RSA 2048 public keys used to verify Recovery and Capsule Update images @@ -391,6 +405,7 @@ ## This PCD indicated final BIOS supported Hash mask. # Bios may choose to register a subset of PcdTpm2HashMask. # So this PCD is final value of how many hash algo is extended to PCR. + # @Prompt Hash Algorithm bitmap. gEfiSecurityPkgTokenSpaceGuid.PcdTcg2HashAlgorithmBitmap|0xFFFFFFFF|UINT32|0x00010016 [UserExtensions.TianoCore."ExtraFiles"]