efi_leader: delete rng-seed if having EFI RNG protocol
For measured be boot we must avoid any volatile values in the device-tree. We already delete /chosen/kaslr-seed if we provide and EFI RNG protocol. Additionally remove /chosen/rng-seed provided by QEMU or U-Boot. Reviewed-by: Ilias Apalodimas <ilias.apalodimas@linaro.org> Signed-off-by: Heinrich Schuchardt <heinrich.schuchardt@canonical.com>
This commit is contained in:
Heinrich Schuchardt
committed by
Tom Rini
Tom Rini
parent
93b9cd7920
commit
b03b2a45f9
@@ -567,7 +567,7 @@ efi_status_t EFIAPI efi_convert_pointer(efi_uintn_t debug_disposition,
|
||||
/* Carve out DT reserved memory ranges */
|
||||
void efi_carve_out_dt_rsv(void *fdt);
|
||||
/* Purge unused kaslr-seed */
|
||||
void efi_try_purge_kaslr_seed(void *fdt);
|
||||
void efi_try_purge_rng_seed(void *fdt);
|
||||
/* Called by bootefi to make console interface available */
|
||||
efi_status_t efi_console_register(void);
|
||||
/* Called by efi_init_obj_list() to proble all block devices */
|
||||
|
||||
Reference in New Issue
Block a user