Hi, all
Please help review this patch.
MdeModulePkg: DxeCore
If GUIDED section has AUTH attribute only, DxeCore may wrongly set its
AuthenticationStatus to 0 when its matched GUIDED extraction handler is not
installed and Auth data is not verified. For this case, the return
AuthenticationStatus should be EFI_AUTH_STATUS_NOT_TESTED.
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Gao, Liming <[email protected]<mailto:[email protected]>>
Reviewed-by: Kinney, Michael D <[email protected]>
----
Index: Dxe/SectionExtraction/CoreSectionExtraction.c
===================================================================
--- Dxe/SectionExtraction/CoreSectionExtraction.c (revision 15745)
+++ Dxe/SectionExtraction/CoreSectionExtraction.c (working copy)
@@ -903,6 +903,10 @@
//
AuthenticationStatus = Stream->AuthenticationStatus;
+ if ((GuidedSectionAttributes & EFI_GUIDED_SECTION_AUTH_STATUS_VALID)
== EFI_GUIDED_SECTION_AUTH_STATUS_VALID) {
+ AuthenticationStatus |= EFI_AUTH_STATUS_IMAGE_SIGNED |
EFI_AUTH_STATUS_NOT_TESTED;
+ }
+
if (IS_SECTION2 (GuidedHeader)) {
Status = OpenSectionStreamEx (
SECTION2_SIZE (GuidedHeader) -
((EFI_GUID_DEFINED_SECTION2 *) GuidedHeader)->DataOffset,
Thanks
Liming
------------------------------------------------------------------------------
Infragistics Professional
Build stunning WinForms apps today!
Reboot your WinForms applications with our WinForms controls.
Build a bridge from your legacy apps to the future.
http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
_______________________________________________
edk2-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/edk2-devel
