Re: [EXTERNAL] [edk2-discuss] Customize Secure Boot Configuration


Yao, Jiewen
 

We generate the FD image with an empty var storage FV.

Then use a tool to enroll the PK, KEK, DB - https://github.com/tianocore/edk2-staging/blob/TDVF/TdvfPkg/scripts/VarEnroll.py

Thank you
Yao Jiewen

-----Original Message-----
From: discuss@edk2.groups.io <discuss@edk2.groups.io> On Behalf Of Vu Dinh
Sent: Thursday, April 8, 2021 5:03 PM
To: Yao; Yao, Jiewen <jiewen.yao@intel.com>; discuss@edk2.groups.io
Subject: Re: [edk2-discuss] [EXTERNAL] [edk2-discuss] Customize Secure Boot
Configuration

Hi Yao,

The "read only FV" that you mentioned is generated by a tool? I had PK, KEK, DB,
DBX .cer and don't know how to merge them to a FV file to include it to FDF file
in edk2.

Thank you!
Vu



Join discuss@edk2.groups.io to automatically receive all group messages.