80 lines
2.8 KiB
C
80 lines
2.8 KiB
C
/** @file
|
|
Provides a secure platform-specific method to detect physically present user.
|
|
|
|
@copyright
|
|
INTEL CONFIDENTIAL
|
|
Copyright 2016 Intel Corporation.
|
|
|
|
The source code contained or described herein and all documents related to the
|
|
source code ("Material") are owned by Intel Corporation or its suppliers or
|
|
licensors. Title to the Material remains with Intel Corporation or its suppliers
|
|
and licensors. The Material may contain trade secrets and proprietary and
|
|
confidential information of Intel Corporation and its suppliers and licensors,
|
|
and is protected by worldwide copyright and trade secret laws and treaty
|
|
provisions. No part of the Material may be used, copied, reproduced, modified,
|
|
published, uploaded, posted, transmitted, distributed, or disclosed in any way
|
|
without Intel's prior express written permission.
|
|
|
|
No license under any patent, copyright, trade secret or other intellectual
|
|
property right is granted to or conferred upon you by disclosure or delivery
|
|
of the Materials, either expressly, by implication, inducement, estoppel or
|
|
otherwise. Any license under such intellectual property rights must be
|
|
express and approved by Intel in writing.
|
|
|
|
Unless otherwise agreed by Intel in writing, you may not remove or alter
|
|
this notice or any other notice embedded in Materials by Intel or
|
|
Intel's suppliers or licensors in any way.
|
|
|
|
This file contains a 'Sample Driver' and is licensed as such under the terms
|
|
of your license agreement with Intel or your vendor. This file may be modified
|
|
by the user, subject to the additional terms of the license agreement.
|
|
|
|
@par Specification
|
|
**/
|
|
|
|
#ifndef __PLATFORM_SECURE_LIB_H__
|
|
#define __PLATFORM_SECURE_LIB_H__
|
|
|
|
|
|
/**
|
|
Constructor function for Platform Security library.
|
|
|
|
@param[in] ImageHandle The firmware allocated handle for the EFI image.
|
|
@param[in] SystemTable A pointer to the EFI System Table.
|
|
|
|
@retval EFI_SUCCESS When this function completed.
|
|
|
|
**/
|
|
EFI_STATUS
|
|
EFIAPI
|
|
PlatformSecureLibTestConstructor (
|
|
IN EFI_HANDLE ImageHandle,
|
|
IN EFI_SYSTEM_TABLE *SystemTable
|
|
)
|
|
|
|
|
|
/**
|
|
|
|
This function provides a platform-specific method to detect whether the platform
|
|
is operating by a physically present user.
|
|
|
|
Programmatic changing of platform security policy (such as disable Secure Boot,
|
|
or switch between Standard/Custom Secure Boot mode) MUST NOT be possible during
|
|
Boot Services or after exiting EFI Boot Services. Only a physically present user
|
|
is allowed to perform these operations.
|
|
|
|
NOTE THAT: This function cannot depend on any EFI Variable Service since they are
|
|
not available when this function is called in AuthenticateVariable driver.
|
|
|
|
@retval TRUE The platform is operated by a physically present user.
|
|
@retval FALSE The platform is NOT operated by a physically present user.
|
|
|
|
**/
|
|
BOOLEAN
|
|
EFIAPI
|
|
UserPhysicalPresent (
|
|
VOID
|
|
);
|
|
|
|
#endif
|