Not all files within the iPXE codebase are allowed to be included in UEFI Secure Boot signed builds. More...

Macros
#define	FILE_SECBOOT_PERMITTED PROVIDE_SYMBOL ( PREFIX_OBJECT ( __secboot__permitted__ ) )
	Declare a file as being permitted in a UEFI Secure Boot build.
#define	FILE_SECBOOT_FORBIDDEN PROVIDE_SYMBOL ( PREFIX_OBJECT ( __secboot__forbidden__ ) )
	Declare a file as being forbidden in a UEFI Secure Boot build.
#define	FILE_SECBOOT(_status)
	Declare a file's UEFI Secure Boot permission status.

Detailed Description

Not all files within the iPXE codebase are allowed to be included in UEFI Secure Boot signed builds.

Files that are permitted in a UEFI Secure Boot build are subject to stricter code review requirements. In particular, contributions from third parties may not be marked as permitted unless they have passed an approved security review.

Macro Definition Documentation

◆ FILE_SECBOOT_PERMITTED

#define FILE_SECBOOT_PERMITTED PROVIDE_SYMBOL ( PREFIX_OBJECT ( __secboot__permitted__ ) )

Declare a file as being permitted in a UEFI Secure Boot build.

Definition at line 918 of file compiler.h.

918#define FILE_SECBOOT_PERMITTED \

919 PROVIDE_SYMBOL ( PREFIX_OBJECT ( __secboot__permitted__ ) )

◆ FILE_SECBOOT_FORBIDDEN

#define FILE_SECBOOT_FORBIDDEN PROVIDE_SYMBOL ( PREFIX_OBJECT ( __secboot__forbidden__ ) )

Declare a file as being forbidden in a UEFI Secure Boot build.

Definition at line 922 of file compiler.h.

922#define FILE_SECBOOT_FORBIDDEN \

923 PROVIDE_SYMBOL ( PREFIX_OBJECT ( __secboot__forbidden__ ) )

◆ FILE_SECBOOT

#define FILE_SECBOOT ( _status )

Value:

FILE_SECBOOT_ ## _status

Declare a file's UEFI Secure Boot permission status.

Definition at line 926 of file compiler.h.

Macros

Detailed Description

Macro Definition Documentation

◆ FILE_SECBOOT_PERMITTED

◆ FILE_SECBOOT_FORBIDDEN

◆ FILE_SECBOOT