Add security package to repository.

git-svn-id: https://edk2.svn.sourceforge.net/svnroot/edk2/trunk/edk2@12261 6f19259b-4bc3-4df7-8a09-765794883524
author: gdong1 <gdong1@6f19259b-4bc3-4df7-8a09-765794883524> 2011-09-02 07:49:32 +0000
committer: gdong1 <gdong1@6f19259b-4bc3-4df7-8a09-765794883524> 2011-09-02 07:49:32 +0000
commit: 0c18794ea4289f03fefc7117b56740414cc0536c (patch)
tree: 4e51c5cc23c69a67cead8c58464da870daa4c029 /SecurityPkg/SecurityPkg.dec
parent: 986d1dfb0813d6a7623531e85c2e2a7e1f956cf8 (diff)
download: edk2-platforms-0c18794ea4289f03fefc7117b56740414cc0536c.tar.xz
1 files changed, 122 insertions, 0 deletions
diff --git a/SecurityPkg/SecurityPkg.dec b/SecurityPkg/SecurityPkg.dec
new file mode 100644
index 0000000000..8121f390a5
--- /dev/null
+++ b/SecurityPkg/SecurityPkg.dec
@@ -0,0 +1,122 @@
+## @file  SecurityPkg.dec
+#  This package includes the security drivers, defintions(including PPIs/PROTOCOLs/GUIDs  
+#  and library classes) and libraries instances.
+#
+# Copyright (c) 2009 - 2011, Intel Corporation. All rights reserved.<BR>
+# This program and the accompanying materials are licensed and made available under
+# the terms and conditions of the BSD License which accompanies this distribution.
+# The full text of the license may be found at
+# http://opensource.org/licenses/bsd-license.php
+#
+# THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+# WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
+#
+##
+
+[Defines]
+  DEC_SPECIFICATION              = 0x00010005
+  PACKAGE_NAME                   = SecurityPkg
+  PACKAGE_GUID                   = 24369CAC-6AA6-4fb8-88DB-90BF061668AD
+  PACKAGE_VERSION                = 0.91
+
+[Includes]
+  Include
+
+[LibraryClasses]
+  ##  @libraryclass  Definitions for common TPM commands as library API for TPM
+  #                  module use.
+  TpmCommLib|Include/Library/TpmCommLib.h
+
+[Guids]
+  ## Security package token space guid
+  # Include/Guid/SecurityPkgTokenSpace.h
+  gEfiSecurityPkgTokenSpaceGuid  = { 0xd3fb176, 0x9569, 0x4d51, { 0xa3, 0xef, 0x7d, 0x61, 0xc6, 0x4f, 0xea, 0xba }}
+  ## Guid acted as the authenticated variable store header's signature, and to specify the variable list entries put in the EFI system table.
+  #  Include/Guid/AuthenticatedVariableFormat.h
+  gEfiAuthenticatedVariableGuid  = { 0xaaf32c78, 0x947b, 0x439a, { 0xa1, 0x80, 0x2e, 0x14, 0x4e, 0xc3, 0x77, 0x92 } }
+
+  ## Include/Guid/TcgEventHob.h
+  gTcgEventEntryHobGuid              = { 0x2e3044ac, 0x879f, 0x490f, {0x97, 0x60, 0xbb, 0xdf, 0xaf, 0x69, 0x5f, 0x50 }}
+
+  ## Include/Guid/PhysicalPresenceData.h
+  gEfiPhysicalPresenceGuid           = { 0xf6499b1, 0xe9ad, 0x493d, { 0xb9, 0xc2, 0x2f, 0x90, 0x81, 0x5c, 0x6c, 0xbc }}
+
+[Ppis]
+  ## Include/Ppi/LockPhysicalPresence.h
+  gPeiLockPhysicalPresencePpiGuid    = { 0xef9aefe5, 0x2bd3, 0x4031, { 0xaf, 0x7d, 0x5e, 0xfe, 0x5a, 0xbb, 0x9a, 0xd } }
+
+  ## Include/Ppi/TpmInitialized.h
+  gPeiTpmInitializedPpiGuid      = { 0xe9db0d58, 0xd48d, 0x47f6, { 0x9c, 0x6e, 0x6f, 0x40, 0xe8, 0x6c, 0x7b, 0x41 }}
+
+[PcdsFixedAtBuild]
+  ## Pcd for OptionRom.
+  #  Image verification policy settings:
+  #  ALWAYS_EXECUTE                         0x00000000
+  #  NEVER_EXECUTE                          0x00000001
+  #  ALLOW_EXECUTE_ON_SECURITY_VIOLATION    0x00000002
+  #  DEFER_EXECUTE_ON_SECURITY_VIOLATION    0x00000003
+  #  DENY_EXECUTE_ON_SECURITY_VIOLATION     0x00000004
+  #  QUERY_USER_ON_SECURITY_VIOLATION       0x00000005 
+  gEfiSecurityPkgTokenSpaceGuid.PcdOptionRomImageVerificationPolicy|0x00|UINT32|0x00000001
+  
+  ## Pcd for removable media.
+  #  Removable media include CD-ROM, Floppy, USB and network.
+  #  Image verification policy settings:
+  #  ALWAYS_EXECUTE                         0x00000000
+  #  NEVER_EXECUTE                          0x00000001
+  #  ALLOW_EXECUTE_ON_SECURITY_VIOLATION    0x00000002
+  #  DEFER_EXECUTE_ON_SECURITY_VIOLATION    0x00000003
+  #  DENY_EXECUTE_ON_SECURITY_VIOLATION     0x00000004
+  #  QUERY_USER_ON_SECURITY_VIOLATION       0x00000005
+  gEfiSecurityPkgTokenSpaceGuid.PcdRemovableMediaImageVerificationPolicy|0x05|UINT32|0x00000002
+  
+  ## Pcd for fixed media.
+  #  Fixed media include hard disk.
+  #  Image verification policy settings:
+  #  ALWAYS_EXECUTE                         0x00000000
+  #  NEVER_EXECUTE                          0x00000001
+  #  ALLOW_EXECUTE_ON_SECURITY_VIOLATION    0x00000002
+  #  DEFER_EXECUTE_ON_SECURITY_VIOLATION    0x00000003
+  #  DENY_EXECUTE_ON_SECURITY_VIOLATION     0x00000004
+  #  QUERY_USER_ON_SECURITY_VIOLATION       0x00000005  
+  gEfiSecurityPkgTokenSpaceGuid.PcdFixedMediaImageVerificationPolicy|0x05|UINT32|0x00000003
+  
+  ## Defer Image Load policy settings.
+  #  The policy is bitwise. 
+  #  If bit is set, the image from corresponding device will be trust when loading.
+  #
+  # IMAGE_UNKNOWN                         0x00000001
+  # IMAGE_FROM_FV                         0x00000002
+  # IMAGE_FROM_OPTION_ROM                 0x00000004
+  # IMAGE_FROM_REMOVABLE_MEDIA            0x00000008
+  # IMAGE_FROM_FIXED_MEDIA                0x00000010
+  gEfiSecurityPkgTokenSpaceGuid.PcdDeferImageLoadPolicy|0x0000001F|UINT32|0x0000004
+  
+  ## The token file name used to save credential in USB credential provider driver.
+  #  The specified file should be saved at the root directory of USB storage disk.
+  gEfiSecurityPkgTokenSpaceGuid.PcdFixedUsbCredentialProviderTokenFileName|L"Token.bin"|VOID*|0x00000005
+
+  ## The size of Append variable buffer. This buffer is reserved for runtime use, OS can append data into one existing variable.
+  gEfiSecurityPkgTokenSpaceGuid.PcdMaxAppendVariableSize|0x2000|UINT32|0x30000005  
+
+  ## This PCD specifies the type of TCG platform that contains TPM chip. 
+  #  This PCD is only avaiable when PcdTpmPhysicalPresence is TRUE.
+  #  If 0, TCG platform type is PC client.
+  #  If 1, TCG platform type is server.
+  gEfiSecurityPkgTokenSpaceGuid.PcdTpmPlatformClass|0|UINT8|0x00000006
+
+  ## The PCD is used to control whether to support hiding the TPM.
+  #  If TRUE, PcdHideTpm controls whether to hide the TPM.
+  gEfiSecurityPkgTokenSpaceGuid.PcdHideTpmSupport|FALSE|BOOLEAN|0x00000007
+  
+[PcdsDynamic, PcdsDynamicEx]
+  ## The PCD is used to control whether to hide the TPM.
+  gEfiSecurityPkgTokenSpaceGuid.PcdHideTpm|FALSE|BOOLEAN|0x00010002
+
+  ## The PCD is used to specify whether or not MOR (MemoryOverwriteControl) feature is enabled.
+  gEfiSecurityPkgTokenSpaceGuid.PcdMorEnable|FALSE|BOOLEAN|0x00010000
+
+[PcdsFixedAtBuild, PcdsPatchableInModule, PcdsDynamic, PcdsDynamicEx]
+  ## This PCD indicates the presence or absence of the platform operator.
+  gEfiSecurityPkgTokenSpaceGuid.PcdTpmPhysicalPresence|TRUE|BOOLEAN|0x00010001
+
author	gdong1 <gdong1@6f19259b-4bc3-4df7-8a09-765794883524>	2011-09-02 07:49:32 +0000
committer	gdong1 <gdong1@6f19259b-4bc3-4df7-8a09-765794883524>	2011-09-02 07:49:32 +0000
commit	0c18794ea4289f03fefc7117b56740414cc0536c (patch)
tree	4e51c5cc23c69a67cead8c58464da870daa4c029 /SecurityPkg/SecurityPkg.dec
parent	986d1dfb0813d6a7623531e85c2e2a7e1f956cf8 (diff)
download	edk2-platforms-0c18794ea4289f03fefc7117b56740414cc0536c.tar.xz