Gitiles
Code Review Sign In
gerrit.devboardsforandroid.linaro.org / platform / external / u-boot / c6361e73b5c21216fc49ed46721015283414d77e
commitc6361e73b5c21216fc49ed46721015283414d77e[log] [tgz]
authorAKASHI Takahiro <takahiro.akashi@linaro.org>Wed Jul 08 14:02:01 2020 +0900
committerHeinrich Schuchardt <xypron.glpk@gmx.de>Sat Jul 11 23:14:16 2020 +0200
tree442e2674fde16235fb15ec20c1d7234d788e36f4
parent48ead6097bb614698a53c898243c456e8d6737a3 [diff]
test/py: efi_secboot: add a test against certificate revocation

Revocation database (dbx) may have not only certificates, but also
message digests of certificates with revocation time
(EFI_CERT_X509_SHA256_GUILD).

In this test case, if the database has such a digest and if the value
matches to a certificate that created a given image's signature,
authentication should fail.

Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>

Set defined time stamp for dbx_hash.auth.
Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>
2 files changed
tree: 442e2674fde16235fb15ec20c1d7234d788e36f4
  1. .github/
  2. api/
  3. arch/
  4. board/
  5. cmd/
  6. common/
  7. configs/
  8. disk/
  9. doc/
  10. drivers/
  11. dts/
  12. env/
  13. examples/
  14. fs/
  15. include/
  16. lib/
  17. Licenses/
  18. net/
  19. post/
  20. scripts/
  21. test/
  22. tools/
  23. .azure-pipelines.yml
  24. .checkpatch.conf
  25. .gitattributes
  26. .gitignore
  27. .gitlab-ci.yml
  28. .mailmap
  29. .readthedocs.yml
  30. .travis.yml
  31. config.mk
  32. Kbuild
  33. Kconfig
  34. MAINTAINERS
  35. Makefile
  36. README