vck-loader — UEFI loader framework for volumecrypt-kit.
This crate provides the loader-side mechanisms described in
docs/architecture.md ("lib/loader"); the sample loader drives the flow
itself and owns the crypto policy:
- [
init]: start banner + enable the SSE/XMM control bits AES-NI needs. - Block IO hooking engine ([
hook::BlockIoHookEngine]): given a sample-built [HookGeometry] +VolumeCipher, hooksEFI_BLOCK_IO_PROTOCOLandEFI_BLOCK_IO2_PROTOCOLso that the OS volume data region is decrypted transparently while it is read during boot. - Handover ([
handover]): publishes the driver handover payload as a UEFI runtime variable (the driver reads it at OS runtime). - Chainloading ([
chainload]): loads and starts the next EFI image (the OS boot manager).
Full compilation targets a UEFI triple and requires the WEDK toolchain
(G:\, see AGENTS.md); host builds are not expected.