]> git.baikalelectronics.ru Git - uboot.git/commit
projects / uboot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 690295c) | patch
efi_loader: don't load signature database from file
authorHeinrich Schuchardt <heinrich.schuchardt@canonical.com>
Wed, 25 Aug 2021 17:13:24 +0000 (19:13 +0200)
committerHeinrich Schuchardt <xypron.glpk@gmx.de>
Sat, 4 Sep 2021 10:03:57 +0000 (12:03 +0200)
commit5f21ee001e42fe7473d7cb729cad049bd8a6c994
tree50276c339c16fc0dddce721de81515e980c4a89btree | snapshot
parent690295c8562e400c6c66a6151df5504ee403cb85commit | diff
efi_loader: don't load signature database from file

The UEFI specification requires that the signature database may only be
stored in tamper-resistant storage. So these variable may not be read
from an unsigned file.

Signed-off-by: Heinrich Schuchardt <heinrich.schuchardt@canonical.com>
include/efi_variable.h diff | blob | history
lib/efi_loader/efi_var_common.c diff | blob | history
lib/efi_loader/efi_var_file.c diff | blob | history
lib/efi_loader/efi_variable.c diff | blob | history
"Das U-Boot" Source Tree.