dany/u-boot-megous
1
0
Fork 0
mirror of https://xff.cz/git/u-boot/ synced 2025-10-15 23:11:36 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
c2f0950c33ef9d89573609b6352a9964af8833a1
u-boot-megous/lib/efi_loader
History
AKASHI Takahiro 52956e535e efi_loader: signature: correct a behavior against multiple signatures 
Under the current implementation, all the signatures, if any, in
a signed image must be verified before loading it.

Meanwhile, UEFI specification v2.8b section 32.5.3.3 says,
    Multiple signatures are allowed to exist in the binary’s certificate
    table (as per PE/COFF Section “Attribute Certificate Table”). Only
    one hash or signature is required to be present in db in order to pass
    validation, so long as neither the SHA-256 hash of the binary nor any
    present signature is reflected in dbx.

This patch makes the semantics of signature verification compliant with
the specification mentioned above.

Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>
Reported-by: Heinrich Schuchardt <xypron.glpk@gmx.de>
2020-08-14 12:28:25 +02:00
..
.gitignore
efi_acpi.c
common: Drop log.h from common header
2020-05-18 21:19:18 -04:00
efi_bootmgr.c
efi_loader: set load options in boot manager
2020-08-08 19:03:24 +02:00
efi_boottime.c
efi_loader: document efi_save_gd(), efi_restore_gd()
2020-07-22 12:32:42 +02:00
efi_console.c
efi_loader: comments EFI_SIMPLE_TEXT_OUTPUT_PROTOCOL
2020-06-05 04:04:41 +02:00
efi_device_path_to_text.c
efi_loader: device path for SATA devices
2020-05-21 10:00:17 +02:00
efi_device_path_utilities.c
efi_device_path.c
efi_loader: device path for SATA devices
2020-05-21 10:00:17 +02:00
efi_disk.c
efi_loader: use logging for block device messages
2020-07-22 12:32:42 +02:00
efi_file.c
efi_loader: loosen buffer parameter check in efi_file_read
2020-07-22 12:32:41 +02:00
efi_freestanding.c
efi_gop.c
common: Drop log.h from common header
2020-05-18 21:19:18 -04:00
efi_hii_config.c
efi_hii.c
efi_image_loader.c
efi_loader: signature: correct a behavior against multiple signatures
2020-08-14 12:28:25 +02:00
efi_load_initrd.c
efi_memory.c
efi_loader: use CONFIG_STACK_SIZE in the UEFI sub-system
2020-08-01 11:58:23 +02:00
efi_net.c
common: Drop net.h from common header
2020-05-18 17:33:31 -04:00
efi_rng.c
common: Drop log.h from common header
2020-05-18 21:19:18 -04:00
efi_root_node.c
efi_runtime.c
efi_loader: don't use memmove() in efi_var_mem_del()
2020-07-22 12:32:41 +02:00
efi_setup.c
efi_loader: OsIndicationsSupported, PlatformLangCodes
2020-07-11 23:14:16 +02:00
efi_signature.c
efi_loader: signature: correct a behavior against multiple signatures
2020-08-14 12:28:25 +02:00
efi_smbios.c
common: Drop log.h from common header
2020-05-18 21:19:18 -04:00
efi_unicode_collation.c
efi_loader: function descriptions efi_unicode_collation.c
2020-04-16 08:10:01 +02:00
efi_var_common.c
efi_loader: add copyright notice
2020-08-08 19:03:24 +02:00
efi_var_file.c
efi_loader: Enable run-time variable support for tee based variables
2020-08-01 11:57:41 +02:00
efi_var_mem.c
efi_loader: Enable run-time variable support for tee based variables
2020-08-01 11:57:41 +02:00
efi_var_seed.S
efi_loader: pre-seed UEFI variables
2020-07-16 12:37:02 +02:00
efi_variable_tee.c
efi_loader: Enable run-time variable support for tee based variables
2020-08-01 11:57:41 +02:00
efi_variable.c
efi_loader: variable: fix secure state initialization
2020-08-13 22:37:42 +02:00
efi_watchdog.c
efi_loader: function descriptions efi_watchdog.c
2020-04-16 08:10:02 +02:00
helloworld.c
Kconfig
efi_loader: signature: rework for intermediate certificates support
2020-08-13 22:37:36 +02:00
Makefile
efi_loader: Enable run-time variable support for tee based variables
2020-08-01 11:57:41 +02:00