Update DEC file and DxeImageVerificationLib to note user that ALLOW_EXECUTE_ON_SECURITY_VIOLATION is no longer supported.

Signed-off-by: Fu Siyuan <siyuan.fu@intel.com> Reviewed-by: Dong, Guo <guo.dong@intel.com> git-svn-id: https://svn.code.sf.net/p/edk2/code/trunk/edk2@14923 6f19259b-4bc3-4df7-8a09-765794883524
author: Fu Siyuan <siyuan.fu@intel.com> 2013-12-02 07:52:35 +0000
committer: sfu5 <sfu5@6f19259b-4bc3-4df7-8a09-765794883524> 2013-12-02 07:52:35 +0000
commit: 68fc0c7319d9c72e2f2e7fffdf9e1e8fb1e272d1 (patch)
tree: 03f771237c4face65c76f8825ff58f439feaaac5 /SecurityPkg/SecurityPkg.dec
parent: 1925ea691792bb7f8b54901f07384101699c0dcc (diff)
download: edk2-68fc0c7319d9c72e2f2e7fffdf9e1e8fb1e272d1.zip
edk2-68fc0c7319d9c72e2f2e7fffdf9e1e8fb1e272d1.tar.gz
edk2-68fc0c7319d9c72e2f2e7fffdf9e1e8fb1e272d1.tar.bz2
1 files changed, 6 insertions, 3 deletions
diff --git a/SecurityPkg/SecurityPkg.dec b/SecurityPkg/SecurityPkg.dec
index c07435e..8cf9b39 100644
--- a/SecurityPkg/SecurityPkg.dec
+++ b/SecurityPkg/SecurityPkg.dec
@@ -114,7 +114,8 @@
   #  DEFER_EXECUTE_ON_SECURITY_VIOLATION    0x00000003
   #  DENY_EXECUTE_ON_SECURITY_VIOLATION     0x00000004
   #  QUERY_USER_ON_SECURITY_VIOLATION       0x00000005 
-  #  NOTE: Do NOT use QUERY_USER_ON_SECURITY_VIOLATION since it violates the UEFI specification and has been removed.
+  #  NOTE: Do NOT use QUERY_USER_ON_SECURITY_VIOLATION and ALLOW_EXECUTE_ON_SECURITY_VIOLATION since
+  #  it violates the UEFI specification and has been removed.
   gEfiSecurityPkgTokenSpaceGuid.PcdOptionRomImageVerificationPolicy|0x04|UINT32|0x00000001
   
   ## Pcd for removable media.
@@ -126,7 +127,8 @@
   #  DEFER_EXECUTE_ON_SECURITY_VIOLATION    0x00000003
   #  DENY_EXECUTE_ON_SECURITY_VIOLATION     0x00000004
   #  QUERY_USER_ON_SECURITY_VIOLATION       0x00000005
-  #  NOTE: Do NOT use QUERY_USER_ON_SECURITY_VIOLATION since it violates the UEFI specification and has been removed.
+  #  NOTE: Do NOT use QUERY_USER_ON_SECURITY_VIOLATION and ALLOW_EXECUTE_ON_SECURITY_VIOLATION since
+  #  it violates the UEFI specification and has been removed.
   gEfiSecurityPkgTokenSpaceGuid.PcdRemovableMediaImageVerificationPolicy|0x04|UINT32|0x00000002
   
   ## Pcd for fixed media.
@@ -138,7 +140,8 @@
   #  DEFER_EXECUTE_ON_SECURITY_VIOLATION    0x00000003
   #  DENY_EXECUTE_ON_SECURITY_VIOLATION     0x00000004
   #  QUERY_USER_ON_SECURITY_VIOLATION       0x00000005  
-  #  NOTE: Do NOT use QUERY_USER_ON_SECURITY_VIOLATION since it violates the UEFI specification and has been removed.
+  #  NOTE: Do NOT use QUERY_USER_ON_SECURITY_VIOLATION and ALLOW_EXECUTE_ON_SECURITY_VIOLATION since
+  #  it violates the UEFI specification and has been removed.
   gEfiSecurityPkgTokenSpaceGuid.PcdFixedMediaImageVerificationPolicy|0x04|UINT32|0x00000003
   
   ## Defer Image Load policy settings.
author	Fu Siyuan <siyuan.fu@intel.com>	2013-12-02 07:52:35 +0000
committer	sfu5 <sfu5@6f19259b-4bc3-4df7-8a09-765794883524>	2013-12-02 07:52:35 +0000
commit	68fc0c7319d9c72e2f2e7fffdf9e1e8fb1e272d1 (patch)
tree	03f771237c4face65c76f8825ff58f439feaaac5 /SecurityPkg/SecurityPkg.dec
parent	1925ea691792bb7f8b54901f07384101699c0dcc (diff)
download	edk2-68fc0c7319d9c72e2f2e7fffdf9e1e8fb1e272d1.zip edk2-68fc0c7319d9c72e2f2e7fffdf9e1e8fb1e272d1.tar.gz edk2-68fc0c7319d9c72e2f2e7fffdf9e1e8fb1e272d1.tar.bz2