mirror of https://github.com/acidanthera/audk.git
b7dc8888f3
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=415 When SetVariable() to a time based auth variable with APPEND_WRITE attribute, and if the EFI_VARIABLE_AUTHENTICATION_2.TimeStamp in the input Data is earlier than current value, it will cause timestamp zeroing. This issue may bring time based auth variable downgrade problem. For example: A vendor released three certs at 2014, 2015, and 2016, and system integrated the 2016 cert. User can SetVariable() with 2015 cert and APPEND_WRITE attribute to cause timestamp zeroing first, then SetVariable() with 2014 cert to downgrade the cert. This patch fixes this issue. Cc: Jiewen Yao <jiewen.yao@intel.com> Cc: Chao Zhang <chao.b.zhang@intel.com> Cc: Jian J Wang <jian.j.wang@intel.com> Contributed-under: TianoCore Contribution Agreement 1.1 Signed-off-by: Star Zeng <star.zeng@intel.com> Reviewed-by: Jiewen Yao <jiewen.yao@intel.com> |
||
|---|---|---|
| .. | ||
| LoadFenceDxe.c | ||
| LoadFenceSmm.c | ||
| Measurement.c | ||
| PrivilegePolymorphic.h | ||
| Reclaim.c | ||
| TcgMorLockDxe.c | ||
| TcgMorLockSmm.c | ||
| VarCheck.c | ||
| Variable.c | ||
| Variable.h | ||
| VariableDxe.c | ||
| VariableExLib.c | ||
| VariableRuntimeDxe.inf | ||
| VariableRuntimeDxe.uni | ||
| VariableRuntimeDxeExtra.uni | ||
| VariableSmm.c | ||
| VariableSmm.inf | ||
| VariableSmm.uni | ||
| VariableSmmExtra.uni | ||
| VariableSmmRuntimeDxe.c | ||
| VariableSmmRuntimeDxe.inf | ||
| VariableSmmRuntimeDxe.uni | ||
| VariableSmmRuntimeDxeExtra.uni | ||