review.tizen.org Git - platform/kernel/linux-starfive.git/commit

author	Chester Lin <clin@suse.com>
	Fri, 30 Oct 2020 06:08:38 +0000 (14:08 +0800)
committer	Ard Biesheuvel <ardb@kernel.org>
	Wed, 4 Nov 2020 22:05:40 +0000 (23:05 +0100)
commit	e1ac4b2406d94eddce8ac2c5ab4235f6075a9602
tree	668816181cf8a034e3af08297f94a0e1e33c1350	tree \| snapshot
parent	6edcf9dc2e1aff3aa1f5a69ee420fb30dd0e968a	commit \| diff

efi: generalize efi_get_secureboot

Generalize the efi_get_secureboot() function so not only efistub but also
other subsystems can use it.

Note that the MokSbState handling is not factored out: the variable is
boot time only, and so it cannot be parameterized as easily. Also, the
IMA code will switch to this version in a future patch, and it does not
incorporate the MokSbState exception in the first place.

Note that the new efi_get_secureboot_mode() helper treats any failures
to read SetupMode as setup mode being disabled.

Co-developed-by: Chester Lin <clin@suse.com>
Signed-off-by: Chester Lin <clin@suse.com>
Acked-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Ard Biesheuvel <ardb@kernel.org>

arch/x86/boot/compressed/Makefile		diff \| blob \| history
drivers/firmware/efi/libstub/efistub.h		diff \| blob \| history
drivers/firmware/efi/libstub/secureboot.c		diff \| blob \| history
include/linux/efi.h		diff \| blob \| history