]> git.proxmox.com Git - mirror_edk2.git/commit
projects / mirror_edk2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 048bcba) | patch
MdeModulePkg/SecurityStubDxe: Report failure if image is load earlier
authorRuiyu Ni <ruiyu.ni@intel.com>
Tue, 1 Nov 2016 08:42:21 +0000 (16:42 +0800)
committerRuiyu Ni <ruiyu.ni@intel.com>
Thu, 10 Nov 2016 07:58:00 +0000 (15:58 +0800)
commite048823f57f66b5be38d46b0095af2fc905c4033
treeb0eca77e1bbd909bcbe78955ce4c012ed256c86btree
parent048bcba1bcd082e4527dd1b17e5dfb6470285260commit | diff
MdeModulePkg/SecurityStubDxe: Report failure if image is load earlier

The 3rd party image should be loaded after EndOfDxe event signal and
DxeSmmReadyToLock protocol installation. But non-SMM platform doesn't
published DxeSmmReadyToLock protocol.
So the SecurityStubDxe can only depend on EndOfDxe event.

This patch enhances the SecurityStubDxe to listen on
DxeSmmReadyToLock protocol installation and if any 3rd party image
is loaded before DxeSmmReadyToLock, it reports failure.

Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Ruiyu Ni <ruiyu.ni@intel.com>
Reviewed-by: Jiewen Yao <jiewen.yao@intel.com>
Reviewed-by: Sunny Wang <sunnywang@hpe.com>
MdeModulePkg/Universal/SecurityStubDxe/Defer3rdPartyImageLoad.c diff | blob | blame | history
MdeModulePkg/Universal/SecurityStubDxe/Defer3rdPartyImageLoad.h diff | blob | blame | history
MdeModulePkg/Universal/SecurityStubDxe/SecurityStubDxe.inf diff | blob | blame | history
EFI Development Kit II mirror for PVE