1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
|
//**********************************************************************
//**********************************************************************
//** **
//** (C)Copyright 1985-2012, American Megatrends, Inc. **
//** **
//** All Rights Reserved. **
//** **
//** 5555 Oakbrook Pkwy, Suite 200, Norcross, GA 30093 **
//** **
//** Phone: (770)-246-8600 **
//** **
//**********************************************************************
//**********************************************************************
//**********************************************************************
// $Header: /Alaska/SOURCE/Modules/SecureBoot_WIN8/SecureBootMod.h 6 8/15/13 10:10a Alexp $
//
// $Revision: 6 $
//
// $Date: 8/15/13 10:10a $
//**********************************************************************
// Revision History
// ----------------
// $Log: /Alaska/SOURCE/Modules/SecureBoot_WIN8/SecureBootMod.h $
//
// 6 8/15/13 10:10a Alexp
// supported Signatures include 3 more: EFI_CERT_X509_SHAXXX_GUID
//
// 5 7/26/13 3:30p Alexp
// add dbt related defines
//
// 4 5/17/13 6:02p Alexp
// add placeholder defines for "dbt"
//
// 3 12/06/12 7:32p Alexp
// define AMI_SECURE_VAR_PRESENT_VAR
//
// 2 11/26/12 10:43a Alexp
//
//
//**********************************************************************
//<AMI_FHDR_START>
//----------------------------------------------------------------------------
//
// Name: SecureBootMod.h
//
// Description: Common Secure Boot definitions
//
//----------------------------------------------------------------------------
//<AMI_FHDR_END>
#ifndef _SECURE_BOOT_MODE_H_
#define _SECURE_BOOT_MODE_H_
#define AMI_SECURE_BOOT_SETUP_VAR L"SecureBootSetup"
#define AMI_SECURE_VAR_PRESENT_VAR L"SecureVarPresent"
#pragma pack(1)
typedef struct{
UINT8 SecureBootSupport;
UINT8 SecureBootMode;
UINT8 DefaultKeyProvision;
UINT8 Load_from_FV;
UINT8 Load_from_OROM;
UINT8 Load_from_REMOVABLE_MEDIA;
UINT8 Load_from_FIXED_MEDIA;
} SECURE_BOOT_SETUP_VAR;
typedef struct{
UINT8 Value;
} SETUP_MODE_VAR;
typedef struct{
UINT8 Value;
} SECURE_BOOT_VAR;
typedef struct{
UINT8 DBX;
UINT8 DBT;
UINT8 DB;
UINT8 KEK;
UINT8 PK;
} SECURE_VAR_INSTALL_VAR;
#pragma pack()
// EFI_IMAGE_SECURITY_DATABASE_DEFAULT must be defined in ImageAuthentication.h (Core 4.6.5.4 +)
// UEFI ECR874: Install Factory defaults as Read-only volatile variables for key distribution.
#ifndef EFI_IMAGE_SECURITY_DATABASE_DEFAULT
#define EFI_IMAGE_SECURITY_DATABASE_DEFAULT L"dbDefault"
#define EFI_IMAGE_SECURITY_DATABASE1_DEFAULT L"dbxDefault"
#define EFI_PLATFORM_KEY_NAME_DEFAULT L"PKDefault"
#define EFI_KEY_EXCHANGE_KEY_NAME_DEFAULT L"KEKDefault"
#define EFI_IMAGE_SECURITY_DATABASE2_DEFAULT L"dbtDefault"
#endif
#ifndef EFI_IMAGE_SECURITY_DATABASE2
#define EFI_IMAGE_SECURITY_DATABASE2 L"dbt"
#define EFI_IMAGE_SECURITY_DATABASE2_DEFAULT L"dbtDefault"
#endif
#define SIGSUPPORT_NUM 8
#define SIGSUPPORT_LIST EFI_CERT_X509_SHA256_GUID, EFI_CERT_X509_SHA384_GUID, EFI_CERT_X509_SHA512_GUID, EFI_CERT_SHA256_GUID, EFI_CERT_X509, EFI_CERT_RSA2048_GUID, EFI_CERT_RSA2048_SHA256_GUID, EFI_CERT_RSA2048_SHA1_GUID
#endif //_SECURE_BOOT_MODE_H_
//**********************************************************************
//**********************************************************************
//** **
//** (C)Copyright 1985-2012, American Megatrends, Inc. **
//** **
//** All Rights Reserved. **
//** **
//** 5555 Oakbrook Pkwy, Suite 200, Norcross, GA 30093 **
//** **
//** Phone: (770)-246-8600 **
//** **
//**********************************************************************
//**********************************************************************
|
