tyler.durden
/
audk
mirror of https://github.com/acidanthera/audk.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
audk/SecurityPkg/Library/AuthVariableLib
History
Jan Bobek 37d3eb026a SecurityPkg/AuthVariableLib: Check SHA-256 OID with ContentInfo present 
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4305

Based on whether the DER-encoded ContentInfo structure is present in
authenticated SetVariable payload or not, the SHA-256 OID can be
located at different places.

UEFI specification explicitly states the driver shall support both
cases, but the old code assumed ContentInfo was not present and
incorrectly rejected authenticated variable updates when it were
present.

Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Min Xu <min.m.xu@intel.com>
Signed-off-by: Jan Bobek <jbobek@nvidia.com>
Reviewed-by: Jiewen Yao <jiewen.yao@intel.com>
 		2023-01-23 06:03:31 +00:00
..
AuthService.c SecurityPkg/AuthVariableLib: Check SHA-256 OID with ContentInfo present 2023-01-23 06:03:31 +00:00
AuthServiceInternal.h SecurityPkg: Apply uncrustify changes 2021-12-07 17:24:28 +00:00
AuthVariableLib.c SecurityPkg: Apply uncrustify changes 2021-12-07 17:24:28 +00:00
AuthVariableLib.inf SecurityPkg: Allow VariablePolicy state to delete authenticated variables 2020-11-17 01:03:43 +00:00
AuthVariableLib.uni SecurityPkg: Replace BSD License with BSD+Patent License 2019-04-09 10:58:23 -07:00