git.proxmox.com Git - mirror_edk2.git/commit - SecurityPkg/SecurityPkg.dsc

author	Kun Qin <kuqin@microsoft.com>
	Mon, 11 Apr 2022 22:07:34 +0000 (15:07 -0700)
committer	mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
	Thu, 7 Jul 2022 01:07:00 +0000 (01:07 +0000)
commit	d6bee54c45b32546f19209f571d2ce59ed42bc23
tree	bbbcf05ee8585baf1d691eaa59b4bf6d9a16c4a0	tree
parent	134fbd552cbd808df8d9369c03abd88daa0d0e20	commit \| diff

SecurityPkg: PlatformPKProtectionLib: Added PK protection interface

REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3911

This patch provides an abstracted interface for platform to implement PK
variable related protection interface, which is designed to be used when
PK variable is about to be changed by UEFI firmware.

This change also provided a variable policy based library implementation
to accomodate platforms that supports variable policy for variable
protections.

Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Min Xu <min.m.xu@intel.com>
Signed-off-by: Kun Qin <kun.qin@microsoft.com>
Reviewed-by: Jiewen Yao <Jiewen.yao@intel.com>
Acked-by: Michael Kubacki <michael.kubacki@microsoft.com>

SecurityPkg/Include/Library/PlatformPKProtectionLib.h	[new file with mode: 0644]	blob
SecurityPkg/Library/PlatformPKProtectionLibVarPolicy/PlatformPKProtectionLibVarPolicy.c	[new file with mode: 0644]	blob
SecurityPkg/Library/PlatformPKProtectionLibVarPolicy/PlatformPKProtectionLibVarPolicy.inf	[new file with mode: 0644]	blob
SecurityPkg/SecurityPkg.dec		diff \| blob \| blame \| history
SecurityPkg/SecurityPkg.dsc		diff \| blob \| blame \| history