git.proxmox.com Git - mirror

author	Jan Bobek <jbobek@nvidia.com>
	Fri, 20 Jan 2023 22:58:33 +0000 (06:58 +0800)
committer	mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
	Sat, 4 Feb 2023 11:53:59 +0000 (11:53 +0000)
commit	f6e4824533be5e4951b17e1938e4fb53bf66b7a5
tree	9e7e461575366080e1e2a4e7a82c5b4633a789d6	tree
parent	566cdfc675fa0da486af34cb12cb5f2e01578a5c	commit \| diff

OvmfPkg: require self-signed PK when secure boot is enabled

REF: https://bugzilla.tianocore.org/show_bug.cgi?id=2506

In all DSC files that define SECURE_BOOT_ENABLE, opt-in into requiring
self-signed PK when SECURE_BOOT_ENABLE is TRUE.

Cc: Ard Biesheuvel <ardb+tianocore@kernel.org>
Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Jordan Justen <jordan.l.justen@intel.com>
Cc: Gerd Hoffmann <kraxel@redhat.com>
Cc: Rebecca Cran <rebecca@bsdio.com>
Cc: Peter Grehan <grehan@freebsd.org>
Cc: Sebastien Boeuf <sebastien.boeuf@intel.com>
Signed-off-by: Jan Bobek <jbobek@nvidia.com>
Reviewed-by: Sean Brogan <sean.brogan@microsoft.com>
Acked-by: Jiewen Yao <jiewen.yao@intel.com>

OvmfPkg/Bhyve/BhyveX64.dsc		diff \| blob \| blame \| history
OvmfPkg/CloudHv/CloudHvX64.dsc		diff \| blob \| blame \| history
OvmfPkg/IntelTdx/IntelTdxX64.dsc		diff \| blob \| blame \| history
OvmfPkg/Microvm/MicrovmX64.dsc		diff \| blob \| blame \| history
OvmfPkg/OvmfPkgIa32.dsc		diff \| blob \| blame \| history
OvmfPkg/OvmfPkgIa32X64.dsc		diff \| blob \| blame \| history
OvmfPkg/OvmfPkgX64.dsc		diff \| blob \| blame \| history