Efi_bis.verifyobjectwithcredential(), Verifyobjectwithcredential(), Func – Intel Extensible Firmware Interface User Manual

Extensible Firmware Interface Specification

15-102

12/01/02

Version 1.10

EFI_BIS.VerifyObjectWithCredential()

Summary

Verifies the integrity and authorization of the indicated data object according to the indicated
credentials and authority certificate.

Prototype

typedef
EFI_STATUS
(EFIAPI *EFI_BIS_VERIFY_OBJECT_WITH_CREDENTIAL)(
IN BIS_APPLICATION_HANDLE

AppHandle,

IN EFI_BIS_DATA

*Credentials,

IN EFI_BIS_DATA

*DataObject,

IN EFI_BIS_DATA

*SectionName,

IN EFI_BIS_DATA

*AuthorityCertificate,

OUT BOOLEAN

*IsVerified

);

Parameters

AppHandle

An opaque handle that identifies the caller’s instance of initialization of
the BIS service. Type

BIS_APPLICATION_HANDLE

is defined in the

Initialize()

function description.

Credentials

A Signed Manifest containing verification information for the indicated
data object. The Manifest signature itself must meet the requirements
described below. The required syntax of the Signed Manifest is
described in the Related Definition of Manifest Syntax below. Type

EFI_BIS_DATA

is defined in the

Initialize()

function

description.

DataObject

An in-memory copy of the raw data object to be verified. Type

EFI_BIS_DATA

is defined in the

Initialize()

function

description.

SectionName

An ASCII (not Unicode) string giving the section name in the manifest
holding the verification information (in other words, hash value) that
corresponds to

DataObject

. Type

EFI_BIS_DATA

is defined in the

Initialize()

function description.