projects / platform / kernel / u-boot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b72d09f) | patch
efi_loader: image_loader: add a missing digest verification for signed PE image
authorAKASHI Takahiro <takahiro.akashi@linaro.org>
Tue, 5 Jul 2022 05:48:14 +0000 (14:48 +0900)
committerHeinrich Schuchardt <heinrich.schuchardt@canonical.com>
Tue, 5 Jul 2022 12:37:16 +0000 (14:37 +0200)
commit634f6b2fb1056021fba603ccb7488d1864787576
tree055a12c85f577b63233ec6f8a35658cf5c134ae5tree | snapshot
parentb72d09fa7df75d56d2b618ce029bc8b001ed276bcommit | diff
efi_loader: image_loader: add a missing digest verification for signed PE image

At the last step of PE image authentication, an image's hash value must be
compared with a message digest stored as the content (of SpcPeImageData type)
of pkcs7's contentInfo.

Fixes: commit 4540dabdcaca ("efi_loader: image_loader: support image authentication")
Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>
lib/efi_loader/Kconfig diff | blob | history
lib/efi_loader/efi_image_loader.c diff | blob | history
Domain: System / Kernel;