| Message ID | 4d498c4c-5d5b-876d-976a-4db6eb2baf6e@gmx.de |
|---|---|
| State | Accepted |
| Delegated to: | Tom Rini |
| Headers | show |
| Series | Pull request efi-2022-07-rc7 | expand |
On Wed, Jul 06, 2022 at 12:03:24PM +0200, Heinrich Schuchardt wrote: > Dear Tom, > > The following changes since commit 0cc846dafcf6f6270c6587d6fe79011834d6e49a: > > Prepare v2022.07-rc6 (2022-07-04 08:18:33 -0400) > > are available in the Git repository at: > > https://source.denx.de/u-boot/custodians/u-boot-efi.git > tags/efi-2022-07-rc7 > > for you to fetch changes up to 8fb9dbdea716ab764c7a3c544569f903cbfdd744: > > test/py: efi_secboot: add a test for a forged signed image > (2022-07-05 14:37:16 +0200) > > Gitlab-CI showed no issues: > https://source.denx.de/u-boot/custodians/u-boot-efi/-/pipelines/12623 > Applied to u-boot/master, thanks!
Dear Tom, The following changes since commit 0cc846dafcf6f6270c6587d6fe79011834d6e49a: Prepare v2022.07-rc6 (2022-07-04 08:18:33 -0400) are available in the Git repository at: https://source.denx.de/u-boot/custodians/u-boot-efi.git tags/efi-2022-07-rc7 for you to fetch changes up to 8fb9dbdea716ab764c7a3c544569f903cbfdd744: test/py: efi_secboot: add a test for a forged signed image (2022-07-05 14:37:16 +0200) Gitlab-CI showed no issues: https://source.denx.de/u-boot/custodians/u-boot-efi/-/pipelines/12623 ---------------------------------------------------------------- Pull request efi-2022-07-rc7 UEFI: * correct verification of signed UEFI binaries ---------------------------------------------------------------- AKASHI Takahiro (5): lib: crypto: add mscode_parser efi_loader: signature: export efi_hash_regions() efi_loader: image_loader: replace EFI_PRINT with log macros efi_loader: image_loader: add a missing digest verification for signed PE image test/py: efi_secboot: add a test for a forged signed image include/crypto/mscode.h | 43 ++++++++ include/efi_loader.h | 2 + lib/crypto/Kconfig | 9 ++ lib/crypto/Makefile | 12 +++ lib/crypto/mscode.asn1 | 28 ++++++ lib/crypto/mscode_parser.c | 135 ++++++++++++++++++++++++++ lib/efi_loader/Kconfig | 1 + lib/efi_loader/efi_image_loader.c | 114 ++++++++++++++++------ lib/efi_loader/efi_signature.c | 4 +- test/py/tests/test_efi_secboot/conftest.py | 3 + test/py/tests/test_efi_secboot/forge_image.sh | 5 + test/py/tests/test_efi_secboot/test_signed.py | 35 +++++++ 12 files changed, 361 insertions(+), 30 deletions(-) create mode 100644 include/crypto/mscode.h create mode 100644 lib/crypto/mscode.asn1 create mode 100644 lib/crypto/mscode_parser.c create mode 100644 test/py/tests/test_efi_secboot/forge_image.sh