Dear Tom,

The following changes since commit 0cc846dafcf6f6270c6587d6fe79011834d6e49a:

Prepare v2022.07-rc6 (2022-07-04 08:18:33 -0400)

are available in the Git repository at:

https://source.denx.de/u-boot/custodians/u-boot-efi.git tags/efi-2022-07-rc7

for you to fetch changes up to 8fb9dbdea716ab764c7a3c544569f903cbfdd744:

test/py: efi_secboot: add a test for a forged signed image (2022-07-05 14:37:16 +0200)

Gitlab-CI showed no issues: https://source.denx.de/u-boot/custodians/u-boot-efi/-/pipelines/12623

---------------------------------------------------------------- Pull request efi-2022-07-rc7

UEFI:

* correct verification of signed UEFI binaries

---------------------------------------------------------------- AKASHI Takahiro (5): lib: crypto: add mscode_parser efi_loader: signature: export efi_hash_regions() efi_loader: image_loader: replace EFI_PRINT with log macros efi_loader: image_loader: add a missing digest verification for signed PE image test/py: efi_secboot: add a test for a forged signed image

include/crypto/mscode.h | 43 ++++++++ include/efi_loader.h | 2 + lib/crypto/Kconfig | 9 ++ lib/crypto/Makefile | 12 +++ lib/crypto/mscode.asn1 | 28 ++++++ lib/crypto/mscode_parser.c | 135 ++++++++++++++++++++++++++ lib/efi_loader/Kconfig | 1 + lib/efi_loader/efi_image_loader.c | 114 ++++++++++++++++------ lib/efi_loader/efi_signature.c | 4 +- test/py/tests/test_efi_secboot/conftest.py | 3 + test/py/tests/test_efi_secboot/forge_image.sh | 5 + test/py/tests/test_efi_secboot/test_signed.py | 35 +++++++ 12 files changed, 361 insertions(+), 30 deletions(-) create mode 100644 include/crypto/mscode.h create mode 100644 lib/crypto/mscode.asn1 create mode 100644 lib/crypto/mscode_parser.c create mode 100644 test/py/tests/test_efi_secboot/forge_image.sh