On Wed, Apr 10, 2019 at 11:06:02AM -0700, Ard Biesheuvel wrote:
> The current secure boot enabled DeveloperBox build contains all the
> pieces to maintain the authenticated variable store, but doesn't
> actually bother to check the signature on anything it boots. Fix that.
>
> Signed-off-by: Ard Biesheuvel <ard.biesheu...@linaro.org>
We haven't actually dropped the CLA from edk2-platforms (yet), so we
probably still need the contributed-under for now. If you add that
before committing:
Reviewed-by: Leif Lindholm <leif.lindh...@linaro.org>
> ---
> Platform/Socionext/DeveloperBox/DeveloperBox.dsc | 7 ++++++-
> 1 file changed, 6 insertions(+), 1 deletion(-)
>
> diff --git a/Platform/Socionext/DeveloperBox/DeveloperBox.dsc
> b/Platform/Socionext/DeveloperBox/DeveloperBox.dsc
> index 39077ab5ee79..4ddb0d427f13 100644
> --- a/Platform/Socionext/DeveloperBox/DeveloperBox.dsc
> +++ b/Platform/Socionext/DeveloperBox/DeveloperBox.dsc
> @@ -245,7 +245,12 @@
> }
> MdeModulePkg/Universal/ResetSystemRuntimeDxe/ResetSystemRuntimeDxe.inf
> MdeModulePkg/Core/RuntimeDxe/RuntimeDxe.inf
> - MdeModulePkg/Universal/SecurityStubDxe/SecurityStubDxe.inf
> + MdeModulePkg/Universal/SecurityStubDxe/SecurityStubDxe.inf {
> + <LibraryClasses>
> +!if $(SECURE_BOOT_ENABLE) == TRUE
> +
> NULL|SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.inf
> +!endif
> + }
> ArmPkg/Drivers/TimerDxe/TimerDxe.inf
> ArmPkg/Drivers/GenericWatchdogDxe/GenericWatchdogDxe.inf
> MdeModulePkg/Universal/CapsuleRuntimeDxe/CapsuleRuntimeDxe.inf
> --
> 2.17.1
>
-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#38911): https://edk2.groups.io/g/devel/message/38911
Mute This Topic: https://groups.io/mt/31021919/21656
Group Owner: devel+ow...@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
