tyler.durden/audk
1
0
Fork 0
mirror of https://github.com/acidanthera/audk.git synced 2025-07-27 23:54:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

SecurityPkg: Fix one returned code issue in P7Verify Protocol

Browse Source 
VerifyBuffer() in PKCS7 Verify Protocol should return EFI_UNSUPPORTED
when the embedded content is found in SignedData but InData is not NULL.
This patch is to comply with the spec definition.

Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Qin Long <qin.long@intel.com>
Reviewed-by: Chao Zhang <chao.b.zhang@intel.com>

git-svn-id: https://svn.code.sf.net/p/edk2/code/trunk/edk2@18311 6f19259b-4bc3-4df7-8a09-765794883524
This commit is contained in:
Qin Long 2015-08-26 00:59:17 +00:00 committed by qlong
parent 86819ad00f
commit 173a1e688c
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
SecurityPkg/Pkcs7Verify/Pkcs7VerifyDxe/Pkcs7VerifyDxe.c
View File

@ -833,6 +833,13 @@ VerifyBuffer (
return EFI_UNSUPPORTED; return EFI_UNSUPPORTED;
} }
if (AttachedData != NULL) { if (AttachedData != NULL) {
if (InData != NULL) {
//
// The embedded content is found in SignedData but InData is not NULL
//
Status = EFI_UNSUPPORTED;
goto _Exit;
}
// //
// PKCS7-formatted signedData with attached content; Use the embedded // PKCS7-formatted signedData with attached content; Use the embedded
// content for verification // content for verification