TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TS / trusted-services / af77b4798827fb41363326f3d22b0ad020a43194
commitaf77b4798827fb41363326f3d22b0ad020a43194[log] [tgz]
authorGabor Toth <gabor.toth2@arm.com>Fri Apr 05 11:19:37 2024 +0200
committerGabor Toth <gabor.toth2@arm.com>Mon Jun 10 12:10:20 2024 +0200
treee46cd02921607549c951014f4824c0ef4cfbe24d
parent2d4d29f5556c9838844378462652c8ec2b400839 [diff]
Support authentication of uefi priv. variables

To authenticate private uefi variables a fingerprint has to be
calculated based on the common name of the signing certificate's
Subject field and the tbsCertificate of the top-level issuer
certificate.
These variables have a public key certificate attached so the
verify_pkcs7_signature_handler is also reorganized to be able
to verify its own signature with its internal public key.
This commit implements the changes needed for the described
functionality.

Signed-off-by: Gabor Toth <gabor.toth2@arm.com>
Change-Id: Ida22977f3ef1a730ea95834ca5c9f9e4ed78d927
30 files changed
tree: e46cd02921607549c951014f4824c0ef4cfbe24d
  1. components/
  2. deployments/
  3. docs/
  4. environments/
  5. external/
  6. platform/
  7. protocols/
  8. tools/
  9. .checkpatch
  10. .clang-format
  11. .cppcheck
  12. .editorconfig
  13. .gitignore
  14. .readthedocs.yaml
  15. dco.txt
  16. license.rst
  17. readme.rst
  18. requirements.txt
  19. version.txt