tyler.durden
/
audk
mirror of https://github.com/acidanthera/audk.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
audk/MdeModulePkg
History
Wei6 Xu 5aa6842715 MdeModulePkg/VariableStandaloneMm: Fix TCG MOR secure feature issue 
According to TCG's Platform Reset Attack Mitigation spec, the OS should
never create the MOR variable, only read and write it.
But some OSes (Fedora 24 and 25) don't follow the TCG's Platform Reset
Attack Mitigation spec and unintentionally create MOR variable.

The commit fda8f631ed added function
VariableHaveTcgProtocols() to check against Tcg/Tcg2 protocol to infer
whether the MOR variable is created by platform firmware or not. If not,
delete the variable created by OS and lock the variable to avoid OS to
create it.

But in VariableStandaloneMm, VariableHaveTcgProtocols() always returns
FALSE, it causes TCG MOR secure feature does not work in standalone MM
environment.

As Fedora 24 and 25 are EOL today, directly returns TRUE in the function
VariableHaveTcgProtocols() for VariableStandaloneMm, and rename the
function to VariableIsMorVariableLegitimate() to make it more obvious
what the narrow use-case is for which it exists.

Signed-off-by: Wei6 Xu <wei6.xu@intel.com>
 		2024-08-30 13:18:08 +00:00
..
Application MdeModulePkg/SmiHandlerProfileInfo: Declare correct XML encoding 2024-07-17 01:06:00 +00:00
Bus MdeModulePkg/Bus/Pci/NvmExpressDxe: Nvm Express Media Sanitize Protocol. 2024-08-29 18:51:07 +00:00
Core MdeModulePkg: CoreValidateHandle Optimization 2024-08-30 11:42:41 +00:00
Include MdeModulePkg/Bus/Pci/NvmExpressDxe: Nvm Express Media Sanitize Protocol. 2024-08-29 18:51:07 +00:00
Library MdeModulePkg/VariablePolicyLib: Use wildcard character constant 2024-07-22 11:52:02 +00:00
Logo MdeModulePkg/Logo: Add LoongArch64 architecture. 2022-10-14 02:16:33 +00:00
Test MdeModulePkg/Bus/Pci/NvmExpressDxe: Nvm Express Media Sanitize Protocol. 2024-08-29 18:51:07 +00:00
Universal MdeModulePkg/VariableStandaloneMm: Fix TCG MOR secure feature issue 2024-08-30 13:18:08 +00:00
MdeModulePkg.ci.yaml MdeModulePkg/Bus/Pci/NvmExpressDxe: Nvm Express Media Sanitize Protocol. 2024-08-29 18:51:07 +00:00
MdeModulePkg.dec MdeModulePkg/Bus/Pci/NvmExpressDxe: Nvm Express Media Sanitize Protocol. 2024-08-29 18:51:07 +00:00
MdeModulePkg.dsc MdeModulePkg: Add HobPrintLib instance 2024-07-07 10:12:36 +00:00
MdeModulePkg.uni MdeModulePkg/AcpiTableDxe: PCD switch to avoid using ACPI reclaim memory 2024-04-09 07:03:08 +00:00
MdeModulePkgExtra.uni