OrgACRN
/
slimbootloader
mirror of https://github.com/slimbootloader/slimbootloader.git
1
0
Fork 0
Code Issues Releases Wiki Activity

Enable Oem key has generation for Btg0 profile (#1279) 

Latest BpmGen2 require Oem Key hash generation for
Btg legacy profile also. This patch enabled oem key generation
for Btg0 profile.

Signed-off-by: Raghava Gudla <raghava.gudla@intel.com>
This commit is contained in:
Raghava Gudla 2021-08-31 10:54:42 -07:00 committed by GitHub
parent f2b6d0e602
commit 878190fadf
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 15 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

31
Platform/CommonBoardPkg/Script/security_stitch_help.py
View File

@ -78,25 +78,24 @@ def update_btGuard_xml(btg_profile, stitch_dir, tree):
print ("Boot Guard is NOT enabled.....")
btguardprofile = 0
if btguardprofile != 0:
# Convert OEM key hash into hexadecimal for Fit tool consumption
with open(kmsigpubkeyhashfile,"rb") as kmsigpubkeyhash_fh:
hash = bytearray (kmsigpubkeyhash_fh.read())
oemkeyhash = ""
for b in hash:
oemkeyhash = oemkeyhash + "%02X " % b
oemkeyhash = oemkeyhash[:-1]
print("oemkeyhash:")
print(oemkeyhash)
# Convert OEM key hash into hexadecimal for Fit tool consumption
with open(kmsigpubkeyhashfile,"rb") as kmsigpubkeyhash_fh:
hash = bytearray (kmsigpubkeyhash_fh.read())
oemkeyhash = ""
for b in hash:
oemkeyhash = oemkeyhash + "%02X " % b
oemkeyhash = oemkeyhash[:-1]
print("oemkeyhash:")
print(oemkeyhash)
node = tree.find('./PlatformProtection/PlatformIntegrity/OemPublicKeyHash')
node.attrib['value'] = oemkeyhash
node = tree.find('./PlatformProtection/PlatformIntegrity/OemPublicKeyHash')
node.attrib['value'] = oemkeyhash
node = tree.find('./PlatformProtection/BootGuardConfiguration/BtGuardKeyManifestId')
node.attrib['value'] = '0x1'
node = tree.find('./PlatformProtection/BootGuardConfiguration/BtGuardKeyManifestId')
node.attrib['value'] = '0x1'
node = tree.find('./PlatformProtection/PlatformIntegrity/OemExtInputFile')
node.attrib['value'] = os.path.join(output_dir, "OemExtInputFile.bin")
node = tree.find('./PlatformProtection/PlatformIntegrity/OemExtInputFile')
node.attrib['value'] = os.path.join(output_dir, "OemExtInputFile.bin")
node = tree.find('./PlatformProtection/BootGuardConfiguration/BtGuardProfileConfig')
node.attrib['value'] = btg_profile_values[btguardprofile]