From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89419+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89419+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255509; cv=none; d=zohomail.com; s=zohoarc; b=QwU4VlZll3Uimm38EZfPBxgfzY2RxkaMdDJm7mS0OMFrIL3UrnNkNE5AjJkPS051nixJGLHjcFFQOar9ev7+8Df2i/1YtQ3OJGJKGEEW84Y2DlUmeBn2Bn8Xf7nY1NDKGhsbzUGl4kHHraQL1rKc6uq1LpUjXMDLiEY1iY9lEQc= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255509; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=v9xZn6ZfpUQ2wViV3AgC8VxfUWbmtLjMn8ALwc8lTj8=; b=B/FV6InXdruWOuTY2qk9BOfRqPxB7DdXnAMB3TNkjRFS8hoAAz75IT0pN3+Hykjj+OzMaAX3xN0tyVLR805XWgzYq6Bb0FHSV9qFkkxNfTMkPp5z8NagZ8CY1i9+jNYacxxGM4kpbMqlu1ZVWhTausQCIwQRlkm+GRQpk2G8rO0= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89419+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255509150103.46341284680591; Fri, 29 Apr 2022 11:05:09 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id Wyw0YY1788612xTbdSVG0UHv; Fri, 29 Apr 2022 11:05:08 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web10.13694.1651255507314257486 for ; Fri, 29 Apr 2022 11:05:07 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659083" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659083" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:06 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955434" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:06 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 01/28] MdeModulePkg: Add new GUID for Variable Store Info Date: Fri, 29 Apr 2022 11:04:03 -0700 Message-Id: <20220429180430.3292-2-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: mvv5ZmEZ91UlshQYXakAw02Jx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255508; bh=bQ3F3UXRvk8YoiNHxcmepMQ6BIWQglkA6zbBWkTm6eE=; h=Cc:Date:From:Reply-To:Subject:To; b=fOAXQbc3vnWBqXVNmSx1oi3eGj5bTjqCiUmiKpLSSIvjjw0Q+2R+brPKWBisao6rq27 WKjLsZRgAyfC23MWf5btL9Ps7myth3x09HW8Y8uwSpOGXw03mp9zvqD8aJXDqDnIgjF30 Ki7J2gDaIiU8BCoWl05cYzWN7TBpvUTlgdM= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255510706100002 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Discover if Variable Store Info HOB has been published by platform driver. It contains information in regards to HOB or NV Variable Store availability Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Reviewed-by: Jian J Wang --- MdeModulePkg/MdeModulePkg.dec | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/MdeModulePkg/MdeModulePkg.dec b/MdeModulePkg/MdeModulePkg.dec index cf79292ec877..f39827e4eacd 100644 --- a/MdeModulePkg/MdeModulePkg.dec +++ b/MdeModulePkg/MdeModulePkg.dec @@ -4,7 +4,7 @@ # and libraries instances, which are used for those modules. # # Copyright (c) 2019, NVIDIA CORPORATION. All rights reserved. -# Copyright (c) 2007 - 2021, Intel Corporation. All rights reserved.
+# Copyright (c) 2007 - 2022, Intel Corporation. All rights reserved.
# Copyright (c) 2016, Linaro Ltd. All rights reserved.
# (C) Copyright 2016 - 2019 Hewlett Packard Enterprise Development LP
# Copyright (c) 2017, AMD Incorporated. All rights reserved.
@@ -93,6 +93,14 @@ [LibraryClasses] # TpmMeasurementLib|Include/Library/TpmMeasurementLib.h =20 + ## @libraryclass Provides interfaces to encrypt/decrypt variable. + # + EncryptionVariableLib|Include/Library/EncryptionVariableLib.h + + ## @libraryclass Provides interfaces to encrypt/decrypt variable. + # + ProtectedVariableLib|Include/Library/ProtectedVariableLib.h + ## @libraryclass Provides authenticated variable services. # AuthVariableLib|Include/Library/AuthVariableLib.h @@ -505,6 +513,9 @@ [Ppis] gEdkiiPeiCapsuleOnDiskPpiGuid =3D { 0x71a9ea61, 0x5a35, 0x4a= 5d, { 0xac, 0xef, 0x9c, 0xf8, 0x6d, 0x6d, 0x67, 0xe0 } } gEdkiiPeiBootInCapsuleOnDiskModePpiGuid =3D { 0xb08a11e4, 0xe2b7, 0x4b= 75, { 0xb5, 0x15, 0xaf, 0x61, 0x6, 0x68, 0xbf, 0xd1 } } =20 + ## Include/Ppi/ReadOnlyVariable2.h + gEfiPeiVariableStoreDiscoveredPpiGuid =3D { 0xa2fc038d, 0xfdf5, 0x45= 01, { 0xaf, 0x8e, 0x69, 0xb0, 0x20, 0xec, 0xe6, 0x63 } } + [Protocols] ## Load File protocol provides capability to load and unload EFI image i= nto memory and execute it. # Include/Protocol/LoadPe32Image.h --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89419): https://edk2.groups.io/g/devel/message/89419 Mute This Topic: https://groups.io/mt/90781884/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89420+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89420+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255511; cv=none; d=zohomail.com; s=zohoarc; b=LOha4SbvbxEv07+yeBa2H6wvz/5F3gH9lHFltIW90s2hXiJSTNdOllbTJC+h4mwEFVL19vF1If5DunPv4VHyDKDK4OTO/2d2/GgRO08AcwtY7dst1PTfw5OlOWrItibZkrKurZtB0++7a3P8+XB94wbWx0V3fN6ygA6/s4+5cCw= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255511; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=j3qbpHws0JcgscqHHuhhk0ERr2VzoAkiw9KrWqlwHTA=; b=JoDBW2LUpkzT+fid7arVbE3FQhUzC9gRy/MfOhdk+LAuuZdAlPX9DEiYdcK5wLwOgcTmKkTZKYzsdx9DHxO+OJdsgXo0eD5rcWiuPUlKxE/PpUieSIpJlXj92mPG1nLIjhu8UoHRXu4o7Bxzyo417UPx1xQNYmeiBaH9SJ2EnUQ= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89420+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255511137660.3940411424562; Fri, 29 Apr 2022 11:05:11 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id 89SQYY1788612x81B2JPMwVy; Fri, 29 Apr 2022 11:05:10 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web10.13694.1651255507314257486 for ; Fri, 29 Apr 2022 11:05:10 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659095" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659095" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:09 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955487" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:08 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 02/28] SecurityPkg: Add new GUIDs for Date: Fri, 29 Apr 2022 11:04:04 -0700 Message-Id: <20220429180430.3292-3-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: Nj7PzkXkQmmaLv0QE5JDv1qdx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255510; bh=pxDmfzXSdrAPX3HaoCbz9x9UkNRd1SHa1tTK9RxjcaE=; h=Cc:Date:From:Reply-To:Subject:To; b=TEEFnTwLlr9ATe23wpKgieYTaKxoI4DyBYQO2xFNLck8iBCdztbouWWG9qDVl88ESmq cCvA+jJcLjnvp+mtuv4uv7f+IXWYUGtQqvzHrnzw+6glOm1SAzXdLPGcTYWvthpMcuEI3 WoVxYwBSxw/3Qnqir8zEyyNOqoqBL/eUxRQ= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255512735100005 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 The gEdkiiProtectedVariableGlobalGuid HOB contains the global configuration data structure which is verified in PEI Phase. The gEdkiiMetaDataHmacVariableGuid is used for saving the meta data HMAC variable. The gEdkiiProtectedVariableContextGuid contains the Protected Variable context saved in PEI phase to be used later. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Reviewed-by: Jian J Wang --- SecurityPkg/SecurityPkg.dec | 43 +++++++++++++++++++- 1 file changed, 42 insertions(+), 1 deletion(-) diff --git a/SecurityPkg/SecurityPkg.dec b/SecurityPkg/SecurityPkg.dec index 9f7a032d60d5..ea88908ea7d2 100644 --- a/SecurityPkg/SecurityPkg.dec +++ b/SecurityPkg/SecurityPkg.dec @@ -5,7 +5,7 @@ # It also provides the definitions(including PPIs/PROTOCOLs/GUIDs and lib= rary classes) # and libraries instances, which are used for those features. # -# Copyright (c) 2009 - 2020, Intel Corporation. All rights reserved.
+# Copyright (c) 2009 - 2022, Intel Corporation. All rights reserved.
# (C) Copyright 2015 Hewlett Packard Enterprise Development LP
# Copyright (c) Microsoft Corporation.
# SPDX-License-Identifier: BSD-2-Clause-Patent @@ -217,6 +217,18 @@ [Guids] ## GUID used to specify section with default dbt content gDefaultdbtFileGuid =3D { 0x36c513ee, 0xa338, 0x4976, { 0= xa0, 0xfb, 0x6d, 0xdb, 0xa3, 0xda, 0xfe, 0x87 } } =20 + ## Include/Guid/ProtectedVariable.h + # {8EBF379A-F18E-4728-A410-00CF9A65BE91} + gEdkiiProtectedVariableGlobalGuid =3D { 0x8ebf379a, 0xf18e, 0x4728, { 0x= a4, 0x10, 0x0, 0xcf, 0x9a, 0x65, 0xbe, 0x91 } } + + ## Include/Guid/ProtectedVariable.h + # {e3e890ad-5b67-466e-904f-94ca7e9376bb} + gEdkiiMetaDataHmacVariableGuid =3D {0xe3e890ad, 0x5b67, 0x466e, {0x90, 0= x4f, 0x94, 0xca, 0x7e, 0x93, 0x76, 0xbb}} + + ## Include/Guid/ProtectedVariable.h + # {a11a3652-875b-495a-b097-200917580b98} + gEdkiiProtectedVariableContextGuid =3D {0xa11a3652, 0x875b, 0x495a, {0xb= 0, 0x97, 0x20, 0x09, 0x17, 0x58, 0x0b, 0x98} } + [Ppis] ## The PPI GUID for that TPM physical presence should be locked. # Include/Ppi/LockPhysicalPresence.h @@ -242,6 +254,10 @@ [Ppis] ## Include/Ppi/Tcg.h gEdkiiTcgPpiGuid =3D {0x57a13b87, 0x133d, 0x4bf3, { 0xbf, 0xf1, 0x1b, 0x= ca, 0xc7, 0x17, 0x6c, 0xf1 } } =20 + ## Key Service Ppi + # Include/Ppi/KeyServicePpi.h + gKeyServicePpiGuid =3D {0x583592f6, 0xEC34, 0x4CED, {0x8E, 0x81, 0xC8, 0= xD1, 0x36, 0x93, 0x04, 0x27}} + # # [Error.gEfiSecurityPkgTokenSpaceGuid] # 0x80000001 | Invalid value provided. @@ -325,6 +341,31 @@ [PcdsFixedAtBuild, PcdsPatchableInModule] =20 gEfiSecurityPkgTokenSpaceGuid.PcdCpuRngSupportedAlgorithm|{0x00,0x00,0x0= 0,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00}|VOID*|0= x00010032 =20 + ## Progress Code for variable integrity check result.

+ # DEFAULT: (EFI_PERIPHERAL_FIXED_MEDIA | [EFI_STATUS&0xFF]) + # @Prompt Status Code for variable integiry check result + gEfiSecurityPkgTokenSpaceGuid.PcdStatusCodeVariableIntegrity|0x01070000|= UINT32|0x00010033 + + ## Null-terminated Unicode string of the Platform Variable Name + # @Prompt known unprotected variable name + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableName|L""|VOID*|0x000100= 34 + + ## Guid name to identify Platform Variable Guid + # @Prompt known unprotected variable guid + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableGuid|{ 0x00, 0x00, 0x00= , 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0= x00 }|VOID*|0x00010035 + + ## Defines Protected Variable Integrity support. + # TRUE - Enable Protected Variable Integrity.
+ # FALSE - Disable Protected Variable Integrity.
+ # @Prompt Protected Variable Integrity support. + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableIntegrity|FALSE|BOOLEA= N|0x00010036 + + ## Defines Protected Variable Confidentiality support. + # TRUE - Enable Protected Variable Confidentiality.
+ # FALSE - Disable Protected Variable Confidentiality.
+ # @Prompt Protected Variable Integrity support. + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableConfidentiality|FALSE|= BOOLEAN|0x00010037 + [PcdsFixedAtBuild, PcdsPatchableInModule, PcdsDynamic, PcdsDynamicEx] ## Image verification policy for OptionRom. Only following values are va= lid:

# NOTE: Do NOT use 0x5 and 0x2 since it violates the UEFI specification= and has been removed.
--=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89420): https://edk2.groups.io/g/devel/message/89420 Mute This Topic: https://groups.io/mt/90781887/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89421+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89421+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255512; cv=none; d=zohomail.com; s=zohoarc; b=nRMbnWsp/ymKosJi4qTJHhiSqQya1bClxgj1itJzNLcFNvnNJMDUcnW4ohiJrgVSEOwa5V/XAmCCCLJRC1kr4nQqEKQQ0SrCveoQx714Hod6zspIPb8ZWgAyNuJ5ZdgBTrHYyFq1Vo85f2yOS2mf9Q1frGZMBK59rwOcKy8E5SM= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255512; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=XAMSp+ft48NJmh2OJLqHPjn1EG1SImhgw1o7SpMqw4M=; b=Y2eqrNbOsVUBAwMsDo6LK3iQ+Og66t5HshLYaoaHoz3eoV75ZHAb0xpn1Z/mrzdK4RjL3jLDCLSaEg8mjeJN1FaxHz0n5XrZsSmw7GnBXkkJWzOIaF8hPGVVz6myJEWOQzUEDpy1n5Mn4S+uIUU841SW/5QOXBIEq4oKOjQlxrk= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89421+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255512536792.0444850692057; Fri, 29 Apr 2022 11:05:12 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id cmOdYY1788612xTLYJqHDRQ4; Fri, 29 Apr 2022 11:05:12 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web10.13694.1651255507314257486 for ; Fri, 29 Apr 2022 11:05:11 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659110" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659110" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:10 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955539" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:09 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 03/28] MdeModulePkg: Update AUTH_VARIABLE_INFO struct Date: Fri, 29 Apr 2022 11:04:05 -0700 Message-Id: <20220429180430.3292-4-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: bnpG3GcA0Fyb14S2GBHK88tfx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255512; bh=EYj4IIpSpPUO9nTGncB4UDv1nOHhWjwpHwJXsP1/tKA=; h=Cc:Date:From:Reply-To:Subject:To; b=QtAvyeoIKPUOGqS49Zfm85ZgcXQf9Yb6dY1ZqIZBtG+FqVP8nKeoDXnokaYxstzZwHD ZcPSAFf+8K2GTJ/PAOa+kksB/4if4VTzHq4wDGKhQiZf4yLaSeNCp/CjnDtCnQeiB/JoK 9KLRi9zM9wu2qNa3FVx+klwkJPtTrtivC5k= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255514705100013 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Added NameSize and State to AUTH_VARIABLE_INFO struct. The size of the name and state is needed when creating the variable digest. Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Reviewed-by: Jian J Wang --- MdeModulePkg/Include/Library/AuthVariableLib.h | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/MdeModulePkg/Include/Library/AuthVariableLib.h b/MdeModulePkg/= Include/Library/AuthVariableLib.h index 37aceba699e6..32391bbf2b61 100644 --- a/MdeModulePkg/Include/Library/AuthVariableLib.h +++ b/MdeModulePkg/Include/Library/AuthVariableLib.h @@ -1,7 +1,7 @@ /** @file Provides services to initialize and process authenticated variables. =20 -Copyright (c) 2015 - 2017, Intel Corporation. All rights reserved.
+Copyright (c) 2015 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ @@ -25,9 +25,11 @@ SPDX-License-Identifier: BSD-2-Clause-Patent (OFFSET_OF (WIN_CERTIFICATE_UEFI_GU= ID, CertData))) =20 typedef struct { + UINTN NameSize; CHAR16 *VariableName; EFI_GUID *VendorGuid; UINT32 Attributes; + UINT8 State; UINTN DataSize; VOID *Data; UINT32 PubKeyIndex; --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89421): https://edk2.groups.io/g/devel/message/89421 Mute This Topic: https://groups.io/mt/90781888/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89422+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89422+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255514; cv=none; d=zohomail.com; s=zohoarc; b=LxhiOrm/Z15OWTSjrQmQQBmP3sWp9ppWcBzy97r1gWQ1g2tDtrypIYP2pndidVL0LdFwkG9bc488cGi9Zm3AERF/0auzv2ZvxZBLQlqTJyc2W7kMah4O+1epyDGcyYoy4d9MHSHyvdFdjlVdCZ4y22eW3xXnfTmAaq8PuJnoHZo= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255514; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=qGVX7ZQW2ME3E8JD2QkewKzWf04c9hbfUnO998pQ9Ok=; b=lLFDYRn2C0ZRTBPLExcMmWXIu7FfzfsWfLb3D4ATXKDfRKyfCDakRfTa2Nst9XOmXN4Bf7WRWuM8if6d3RVIk5qNC9lMPxA2WpZdRbUsgZ1X+YTWbnJ/8yLkXrG41cgRqBPNMLRAYiNLf5YRmhBQI3AebgDX93mX8VZt8OH9wVc= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89422+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255514353743.394190696647; Fri, 29 Apr 2022 11:05:14 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id q6AVYY1788612x6qqfKmHseP; Fri, 29 Apr 2022 11:05:14 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web12.13561.1651255513347566730 for ; Fri, 29 Apr 2022 11:05:13 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659131" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659131" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:12 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955589" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:11 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 04/28] MdeModulePkg: Add reference to new Ppi Guid Date: Fri, 29 Apr 2022 11:04:06 -0700 Message-Id: <20220429180430.3292-5-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: ZmYW1Ptc5kJFXVw0EJZj6hlJx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255514; bh=qWmwc+G5X0TtEG7uz/nRKm4QIXBJh5Zf1vtsxgrpycA=; h=Cc:Date:From:Reply-To:Subject:To; b=kbsutso+KFuu0McKz+GHb++Pvonv8ARGek8MnlecVhAZzuQA29fWMYqY358tUzJie2z lzIu1J+TmEz+RNOi5z7xRQdjkHZl6vRRG/4/EADccxaTBP1DRg3wuthyuhfbkNqph7Y4Y lBlhcO+4SsKvgz5r3IP7qcBJ32qUL4s4dwI= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255514719100014 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add reference to gEfiPeiVariableStoreDiscoveredPpiGuid which contains information whether variable store is available. Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Reviewed-by: Jian J Wang --- MdePkg/Include/Ppi/ReadOnlyVariable2.h | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/MdePkg/Include/Ppi/ReadOnlyVariable2.h b/MdePkg/Include/Ppi/Re= adOnlyVariable2.h index 926c0bc82a43..c5a8470565bb 100644 --- a/MdePkg/Include/Ppi/ReadOnlyVariable2.h +++ b/MdePkg/Include/Ppi/ReadOnlyVariable2.h @@ -2,7 +2,7 @@ This file declares Read-only Variable Service2 PPI. This ppi permits read-only access to the UEFI variable store during the = PEI phase. =20 -Copyright (c) 2006 - 2018, Intel Corporation. All rights reserved.
+Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 @par Revision Reference: @@ -106,4 +106,6 @@ struct _EFI_PEI_READ_ONLY_VARIABLE2_PPI { =20 extern EFI_GUID gEfiPeiReadOnlyVariable2PpiGuid; =20 +extern EFI_GUID gEfiPeiVariableStoreDiscoveredPpiGuid; + #endif --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89422): https://edk2.groups.io/g/devel/message/89422 Mute This Topic: https://groups.io/mt/90781889/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89423+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89423+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255517; cv=none; d=zohomail.com; s=zohoarc; b=KA9thZk2aWs5fgtySW5XqOEQtMric1+D4xJ7FPcfrpCRs0p9byDLyJBC6NoGhV7zXe7FUlvt01T1TfaLI0gw63BzDJH/bhoGFfrcO1Bxi/qCPSwvwki80GW0vFZJGJ5CmNhlW7/ETW3XQ/xMDc/ItwVKb+wU5AfPGwA/54Q16Vk= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255517; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=fY01y3oD2EFOO1dGc4gAA7opOXXEMOHqLiUO8Pf4HGY=; b=Fu054CI0ATtoLxF10UNQnazExhZK0oDGfpHOZzvsG93StQZ/u+U4BKGij8EuzDTyrl56WExZzfGc9sFhhEWqVwSoMzN1X01WivsJx5Qael16wa90YKDmMNsZES8ot+hwwBqTbAKvkh/HNKZOGey2aMOfLQiKAXZhK+37ok2fcQo= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89423+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255517568835.9843293195764; Fri, 29 Apr 2022 11:05:17 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id rAyUYY1788612xBLeRCjetE9; Fri, 29 Apr 2022 11:05:16 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web12.13561.1651255513347566730 for ; Fri, 29 Apr 2022 11:05:16 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659165" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659165" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:15 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955645" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:14 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 05/28] MdeModulePkg: Add new ProtectedVariable GUIDs Date: Fri, 29 Apr 2022 11:04:07 -0700 Message-Id: <20220429180430.3292-6-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: 65Pbl8qaLFN1ZlXW3c9pvhrBx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255516; bh=Z2ZfxNdeyF63DEslfW/k+aC/vlurcoFrTs4as9XsPdI=; h=Cc:Date:From:Reply-To:Subject:To; b=Iou7J905T8Y7H/e1KZEHGy1veuQ0dIMDFG9UNivbFAZRx6CKpvFhDgKiyrU9BdIdcHK /xe9cCAVcM1oi3E/Yi5ELrYkjPGKYYAd3uqeBiBYtoxzLKFs+wtEKnURJ5vx3Qq3Lntss SfGeybVPdYsRpklKqgpfOEbXjT7//hYJcC4= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255518804100003 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 New ProtectVariable GUIDs for passing variable information from PEI phase to SMM phase. Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Reviewed-by: Jian J Wang --- MdeModulePkg/Include/Guid/ProtectedVariable.h | 22 ++++++++++++++++++++ 1 file changed, 22 insertions(+) diff --git a/MdeModulePkg/Include/Guid/ProtectedVariable.h b/MdeModulePkg/I= nclude/Guid/ProtectedVariable.h new file mode 100644 index 000000000000..0c6e19e0456b --- /dev/null +++ b/MdeModulePkg/Include/Guid/ProtectedVariable.h @@ -0,0 +1,22 @@ +/** @file + The GUID definitions specific for protected variable services. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#ifndef PROTECTED_VARIABLE_H_ +#define PROTECTED_VARIABLE_H_ + +#define EDKII_PROTECTED_VARIABLE_GLOBAL_GUID \ + { 0x8ebf379a, 0xf18e, 0x4728, { 0xa4, 0x10, 0x0, 0xcf, 0x9a, 0x65, 0xbe,= 0x91 } } + +#define EDKII_METADATA_HMAC_VARIABLE_GUID \ + { 0xb54cda50, 0xec54, 0x4b20, { 0x85, 0xb4, 0x57, 0xbf, 0x52, 0x98, 0x68= , 0x3d } } + +extern EFI_GUID gEdkiiProtectedVariableGlobalGuid; +extern EFI_GUID gEdkiiMetaDataHmacVariableGuid; +extern EFI_GUID gEdkiiProtectedVariableContextGuid; + +#endif // __PROTECTED_VARIABLE_H__ --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89423): https://edk2.groups.io/g/devel/message/89423 Mute This Topic: https://groups.io/mt/90781890/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89424+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89424+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255517; cv=none; d=zohomail.com; s=zohoarc; b=VIDR35DohzdtnsJ2zulModDtb2trS7IhOKCr/QQUlYuzv3LjPtPUNYLKCBKlPGcaxMegGzrE/otgarZ9msjVUEp4eo0gzXKP7GCJXeqjl3I1Qyh7xxXt9pvyCo9RoKeQlA+iVflLgpe9Z25rOSYB2cbJyJ9h5g15LKMDO9qBKtE= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255517; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=qpJOKGcPf3GD+k1ZO2RpvZtCgVgkTmiYBaTeRKVUv8E=; b=fFhGGXUDZ0qjIo1RDRyWt/2EJPA5hz2Sn7GT9xHpxZw3EtlJrNDg3vr6B680hzGde7fXGM6XAGZLetJnsDebAVAXLynbFMKi1ahps0sZVgZhI/d+aJj/CvP3QgaOAbcgcRLtC4lp+P9e+6JcSbMNSB1O7/RjYAmTyxeo3+6aqQs= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89424+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255517679629.3450934218025; Fri, 29 Apr 2022 11:05:17 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id FXkoYY1788612x0J090sh0L3; Fri, 29 Apr 2022 11:05:17 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web09.13406.1651255516658458883 for ; Fri, 29 Apr 2022 11:05:16 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659175" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659175" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:15 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955658" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:15 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 06/28] MdeModulePkg: Add new include files Date: Fri, 29 Apr 2022 11:04:08 -0700 Message-Id: <20220429180430.3292-7-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: ceuitmpc26UXr6UPIFyONuAMx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255517; bh=I5SofvQ40iVD9oJh+HOl48adKZznncbWJmVQmJmDyJw=; h=Cc:Date:From:Reply-To:Subject:To; b=mw4Ix+WiG4cf/q+JcXQMy6EitJhhf9pIusnGl1VUCcNq4IC7/R4kA8RrVmdcBVpRPv0 5uu55GwUdLkRZdvj3F+iJVRyl+cgn/e/S9LBtXt9i1uM3QWE41aIEz8lGl3MkSpA4cjNQ CkgRuSD1EhENLeghDkjWSSznnYT8PXSTkpA= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255518865100005 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add EncryptionVariableLib.h for providing encryption and decryption services for protected variables. Add ProtectedVariableLib.h for providing integrity or variables. Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- MdeModulePkg/Include/Library/EncryptionVariableLib.h | 165 +++++ MdeModulePkg/Include/Library/ProtectedVariableLib.h | 700 +++++++++++++++= +++++ 2 files changed, 865 insertions(+) diff --git a/MdeModulePkg/Include/Library/EncryptionVariableLib.h b/MdeModu= lePkg/Include/Library/EncryptionVariableLib.h new file mode 100644 index 000000000000..c7740e659dcf --- /dev/null +++ b/MdeModulePkg/Include/Library/EncryptionVariableLib.h @@ -0,0 +1,165 @@ +/** @file + Provides services to encrypt/decrypt variables. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#ifndef ENCRYPTION_VARIABLE_LIB_H_ +#define ENCRYPTION_VARIABLE_LIB_H_ + +#include + +#include + +#include + +#define ENC_TYPE_NULL 0 +#define ENC_TYPE_AES TPM_ALG_AES + +typedef struct _VARIABLE_ENCRYPTION_FLAGS { + BOOLEAN Auth; // Variable is authenticated or not + BOOLEAN DecryptInPlace; // Do decryption in place + BOOLEAN Protected; // Variable is protected or not +} VARIABLE_ENCRYPTION_FLAGS; + +typedef struct _VARIABLE_ENCRYPTION_INFO { + AUTH_VARIABLE_INFO Header; // Authenticated varabil= e header + VARIABLE_HEADER *Buffer; // Pointer to variable b= uffer + UINT64 StoreIndex; // Variable store index + VOID *PlainData; // Pointer to plain data + UINT32 PlainDataSize; // Size of plain data + VOID *CipherData; // Pointer to cipher data + UINT32 CipherDataSize; // Size of cipher data + UINT32 CipherHeaderSize; // Size of cipher header + UINT32 CipherDataType; // Type of cipher data + VOID *Key; // Pointer to encrypt/de= crypt key + UINT32 KeySize; // Size of key + VARIABLE_ENCRYPTION_FLAGS Flags; // Encryption flags +} VARIABLE_ENCRYPTION_INFO; + +/** + Encrypt variable data. + + @param[in, out] VarInfo Pointer to structure containing detailed inf= ormation about a variable. + + @retval EFI_SUCCESS Function successfully executed. + @retval EFI_INVALID_PARAMETER If ProtectedVarLibContextIn =3D=3D NUL= L or ProtectedVarLibContextOut =3D=3D NULL. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_UNSUPPORTED Unsupported to process authenticated v= ariable. + +**/ +EFI_STATUS +EFIAPI +EncryptVariable ( + IN OUT VARIABLE_ENCRYPTION_INFO *VarInfo + ); + +/** + Decrypt variable data. + + If VarEncInfo->CipherData is not NULL, it must holds the cipher data to = be + decrypted. Otherwise, assume the cipher data from variable data buffer, = i.e. + VarEncInfo->Header.Data. + + If VarEncInfo->Flags.DecryptInPlace is TRUE, the decrypted data will be = put + back in the same buffer as cipher buffer got above, after encryption hea= der, + which helps to identify later if the data in buffer is decrypted or not.= This + can avoid repeat decryption when accessing the same variable more than o= nce. + + If VarEncInfo->Flags.DecryptInPlace is FALSE, VarEncInfo->PlainData must= be + passed in with a valid buffer with VarEncInfo->PlainDataSize set correct= ly + with its size. + + Note the VarEncInfo->PlainData is always pointing to the buffer address = with + decrypted data without encryption header, and VarEncInfo->PlainDataSize = is + always the size of original variable data, if this function returned + successfully. + + @param[in, out] VarInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_SUCCESS Variable was decrypted successfully. + @retval EFI_INVALID_PARAMETER Variable information in VarEncInfo is in= valid. + @retval EFI_BUFFER_TOO_SMALL VarEncInfo->PlainData is not NULL but + VarEncInfo->PlainDataSize is too small. + @retval EFI_ABORTED Uknown error occurred during decrypting. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_COMPROMISED_DATA The cipher header is not valid. + @retval EFI_UNSUPPORTED Unsupported to encrypt variable. + +**/ +EFI_STATUS +EFIAPI +DecryptVariable ( + IN OUT VARIABLE_ENCRYPTION_INFO *VarInfo + ); + +/** + Get cipher information about a variable, including plaindata size, + cipher algorithm type, etc. + + For data passed in with VarEncInfo, + + VarEncInfo->Header.Data + - The variable data in normal variable structure. + VarEncInfo->Header.DataSize + - The size of variable data. + + For data passed out with VarEncInfo (valid only if EFI_SUCCESS is return= ed), + + VarEncInfo->CipherDataType + - ENC_TYPE_NULL, if the variable is not encrypted or has been decryp= ted; + - ENC_TYPE_AES, if the variable is encrypted. + VarEncInfo->CipherHeaderSize + - Size of cipher header put before encrypted or decrypted data. + VarEncInfo->PlainData + - NULL, if the variable is encrypted; Or + - pointer to original variable data, if the variable has been decryp= ted. + VarEncInfo->PlainDataSize + - The size of original variable data + VarEncInfo->CipherData + - NULL, if the variable is decrypted; Or + - pointer to start of encrypted variable data, including encryption = header; + VarEncInfo->CipherDataSize + - The size of encrypted variable data, including encryption header. + + @param[in, out] VarInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_SUCCESS The information was retrieved successful= ly. + @retval EFI_INVALID_PARAMETER Variable information in VarEncInfo is in= valid. + @retval EFI_NOT_FOUND No cipher information recognized. + @retval EFI_UNSUPPORTED Unsupported interface. + +**/ +EFI_STATUS +EFIAPI +GetCipherDataInfo ( + IN OUT VARIABLE_ENCRYPTION_INFO *VarInfo + ); + +/** + Force set cipher information for a variable, like plaindata size, + cipher algorithm type, cipher data etc. + + The destination buffer must be passed via VarEncInfo->Header.Data. + + This method is only used to update and/or change plain data information. + + @param[in, out] VarInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_SUCCESS The information was updated successfully. + @retval EFI_INVALID_PARAMETER Variable information in VarEncInfo is in= valid. + @retval EFI_UNSUPPORTED If this method is not supported. + +**/ +EFI_STATUS +EFIAPI +SetCipherDataInfo ( + IN OUT VARIABLE_ENCRYPTION_INFO *VarInfo + ); + +#endif //_ENCRYPTION_VARIABLE_LIB_H_ diff --git a/MdeModulePkg/Include/Library/ProtectedVariableLib.h b/MdeModul= ePkg/Include/Library/ProtectedVariableLib.h new file mode 100644 index 000000000000..2f57b4ebbc70 --- /dev/null +++ b/MdeModulePkg/Include/Library/ProtectedVariableLib.h @@ -0,0 +1,700 @@ +/** @file + Defines interfaces of protected variable services for non-volatile varia= ble + storage. + +Copyright (c) 2020 - 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#ifndef PROTECTED_VARIABLE_LIB_H_ +#define PROTECTED_VARIABLE_LIB_H_ + +#include +#include + +#include + +#include +#include + +#include +#include + +#pragma pack(1) + +typedef struct _VARIABLE_DIGEST_FLAGS { + BOOLEAN Auth; // Authenticated variable for= mat + BOOLEAN Valid; // Valid variable data in cur= rent variable + BOOLEAN Protected; // Protected variable (used i= n calculating HMAC) + BOOLEAN Encrypted; // Encrypted variable + BOOLEAN Freeable; // Memory reserved for curren= t node can be freed + BOOLEAN CacheIndexAhead; // Indicates if CacheIndex is= Ahead relative to Global structure + BOOLEAN Reserved[2]; // Reserved fields +} VARIABLE_DIGEST_FLAGS; + +typedef struct _VARIABLE_DIGEST { + /// + /// Pointer to digest of next variable in a pre-defined rule of order for + /// integration verification. In other words, the final HMAC of all + /// protected variables is calculated by concatenating digest of each + /// variable in the order of this singly linked list. + /// + EFI_PHYSICAL_ADDRESS Prev; + EFI_PHYSICAL_ADDRESS Next; + /// + /// Index to variable in physical store, used to locate the variable dir= ectly + /// inside the store (Implementation dependent). + /// + EFI_PHYSICAL_ADDRESS StoreIndex; + /// + /// Index to variable in memory cache, used to locate the variable direc= tly + /// inside the cache (Implementation dependent). + /// + EFI_PHYSICAL_ADDRESS CacheIndex; + + /// + /// Pointer to Cache offset within Global Structure + /// + UINT32 CacheOffset; + + /// + /// Frequently accessed information relating to the variable. + /// + UINT16 DigestSize; // Size of digest value + UINT16 NameSize; // Size of variable name + UINT32 DataSize; // Size of variable data + UINT32 PlainDataSize; // Size of plain data of current= variable (if encrypted) + UINT32 State; // State of current variable + UINT32 Attributes; // Attributes of current variable + + EFI_GUID VendorGuid; // GUID + VARIABLE_DIGEST_FLAGS Flags; // Variable digest flags + // + // Data with variable length are put at the end of this structure. + // + // CHAR16 VariableName[NameSize/2]; + // UINT8 DigestValue[DigestSize]; +} VARIABLE_DIGEST; + +#pragma pack() + +#define VAR_DIG_NAMEOFF(VarDig) (sizeof (VARIABLE_DIGEST)) +#define VAR_DIG_DIGOFF(VarDig) (VAR_DIG_NAMEOFF (VarDig) + (VarDig)->Nam= eSize) + +#define VAR_DIG_END(VarDig) (VAR_DIG_DIGOFF (VarDig) + (VarDig)->DigestSi= ze) + +#define VAR_DIG_VALUE(VarDig) (VOID *)((UINTN)(VarDig) + VAR_DIG_DIGOFF (= VarDig)) +#define VAR_DIG_NAME(VarDig) (CHAR16 *)((UINTN)(VarDig) + VAR_DIG_NAMEOF= F (VarDig)) +#define VAR_DIG_GUID(VarDig) &(VAR_DIG_PTR (VarDig)->VendorGuid) + +#define VAR_DIG_PTR(Addr) ((VARIABLE_DIGEST *)(UINTN)(Addr)) +#define VAR_DIG_ADR(Ptr) ((EFI_PHYSICAL_ADDRESS)(UINTN)(Ptr)) +#define VAR_DIG_NEXT(VarDig) (VAR_DIG_PTR ((VarDig)->Next)) +#define VAR_DIG_PREV(VarDig) (VAR_DIG_PTR ((VarDig)->Prev)) + +#define VAR_INDEX_INVALID ((UINT64)(-1)) + +#define VAR_HDR_PTR(Addr) ((VARIABLE_HEADER *)(UINTN)(Addr)) + +typedef VARIABLE_ENCRYPTION_INFO PROTECTED_VARIABLE_INFO; + +/** + + This function writes data to the NV variable storage at given position. + + Note: Per current variable service architecture, only SMM is allowed to + (directly) change NV variable storage. + + @param VariableInfo Pointer to structure holding details of = a variable. + @param Offset Offset to the given variable to write fr= om. + @param Size Size of data to be written. + @param Buffer Pointer to the buffer from which data is= written. + + @retval EFI_INVALID_PARAMETER Invalid parameters passed in. + @retval EFI_UNSUPPORTED Updating NV variable storage is not suppo= rted. + @retval EFI_OUT_OF_RESOURCES Not enough resource to complete the opera= tion. + @retval EFI_SUCCESS Variable store successfully updated. + +**/ +typedef +EFI_STATUS +(EFIAPI *PROTECTED_VAR_LIB_UPDATE_VARIABLE_STORE)( + IN PROTECTED_VARIABLE_INFO *VariableInfo, + IN UINTN Offset, + IN UINT32 Size, + IN UINT8 *Buffer + ); + +/** + Update the variable region with Variable information. + + @param[in] AuthVariableInfo Pointer AUTH_VARIABLE_INFO structure f= or + input of the variable. + + @retval EFI_SUCCESS The update operation is success. + @retval EFI_INVALID_PARAMETER Invalid parameter. + @retval EFI_WRITE_PROTECTED Variable is write-protected. + @retval EFI_OUT_OF_RESOURCES There is not enough resource. + +**/ +typedef +EFI_STATUS +(EFIAPI *PROTECTED_VAR_LIB_UPDATE_VARIABLE)( + IN AUTH_VARIABLE_INFO *AuthVariableInfo + ); + +/** + + Retrieve details about a variable and return them in VariableInfo->Heade= r. + + If VariableInfo->Address is given, this function will calculate its offs= et + relative to given variable storage via VariableStore; Otherwise, it will= try + other internal variable storages or cached copies. It's assumed that, fo= r all + copies of NV variable storage, all variables are stored in the same rela= tive + position. If VariableInfo->Address is found in the range of any storage = copies, + its offset relative to that storage should be the same in other copies. + + If VariableInfo->Offset is given (non-zero) but not VariableInfo->Addres= s, + this function will return the variable memory address inside VariableSto= re, + if given, via VariableInfo->Address; Otherwise, the address of other sto= rage + copies will be returned, if any. + + For a new variable whose offset has not been determined, a value of -1 as + VariableInfo->Offset should be passed to skip the offset calculation. + + @param VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo is NULL or both VariableInfo= ->Address + and VariableInfo->Offset are NULL (0). + @retval EFI_NOT_FOUND If given Address or Offset is out of rang= e of + any given or internal storage copies. + @retval EFI_SUCCESS Variable details are retrieved successful= ly. + +**/ +typedef +EFI_STATUS +(EFIAPI *PROTECTED_VAR_LIB_GET_VAR_INFO)( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo + ); + +/** + + Retrieve details of the variable next to given variable within VariableS= tore. + + If VarInfo->Address is NULL, the first one in VariableStore is returned. + + VariableStart and/or VariableEnd can be given optionally for the situati= on + in which the valid storage space is smaller than the VariableStore->Size. + This usually happens when PEI variable services make a compact variable + cache to save memory, which cannot make use VariableStore->Size to deter= mine + the correct variable storage range. + + @param VariableStore Pointer to a variable storage. It's opti= onal. + @param VariableStart Start point of valid range in VariableSt= ore. + @param VariableEnd End point of valid range in VariableStor= e. + @param VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo or VariableStore is NULL. + @retval EFI_NOT_FOUND If the end of VariableStore is reached. + @retval EFI_SUCCESS The next variable is retrieved successful= ly. + +**/ +typedef +EFI_STATUS +(EFIAPI *PROTECTED_VAR_LIB_GET_NEXT_VAR_INFO)( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo + ); + +typedef +EFI_STATUS +(EFIAPI *DIGEST_METHOD_CALLBACK)( + IN VARIABLE_HEADER *Variable, + IN OUT VARIABLE_DIGEST *Digest + ); + +/** + + Initialize a memory copy of NV variable storage. + + To save memory consumption (especially in PEI phase), it's allowed to ca= che + only valid variables. In such case, an index table recording offset of e= ach + valid variables could be employed. The index table makes sure the cached= copy + to be synchronized with the original copy in NV variable storage. To avo= id + TOCTOU issue, once the variables are cached in memory and verified, NV + variable storage should not be used to read variable information. The ca= ched + copy should be used instead. + + If StoreCacheBase is not given, this function should return the required + cache size and valid variable number, if VariableNumber is not NULL. Then + the caller can prepare correct cache buffer and index table buffer before + next calling. + + @param[in] CacheBase Base address of NV variable storage cach= e. + @param[in] CacheSize Size of CacheBuffer. + @param[out] CacheSize Size of required cache buffer. + @param[out] DigBuffer Base address of digest of each variable. + @param[in, out] DigBufferSize Digest size of one variable if DigestBuf= fer is NULL. + Size of DigestBuffer if DigestBuffer is = NOT NULL. + @param[out] DigSize Required size of DigestBuffer if DigestB= uffer is NULL. + @param[out] DigMethod Method used to generate digest for each = variable. + @param[out] VarNumber Number of valid variables. + @param[out] AuthFlag Auth-variable indicator. + + @retval EFI_INVALID_PARAMETER CacheSize is NULL; Or, + StoreCacheBase is 0 but *CacheSize it no= t. + @retval EFI_VOLUME_CORRUPTED If original NV variable storage is corru= pted. + @retval EFI_BUFFER_TOO_SMALL If *CacheSize is smaller than required m= emory. + @retval EFI_SUCCESS The cached variable storage is initializ= ed. + +**/ +typedef +EFI_STATUS +(EFIAPI *PROTECTED_VAR_LIB_INIT_VAR_STORE)( + OUT VOID *CacheBase OPTIONAL, + IN OUT UINT32 *CacheSize OPTIONAL, + OUT VOID *DigBuffer OPTIONAL, + IN OUT UINT32 *DigBufferSize OPTIONAL, + IN UINT32 DigSize OPTIONAL, + IN DIGEST_METHOD_CALLBACK DigMethod OPTIONAL, + OUT UINT32 *VarNumber OPTIONAL, + OUT BOOLEAN *AuthFlag OPTIONAL + ); + +/** + + Initiate a variable retrieval in SMM environment from non-SMM environmen= t. + + This is usually required in BS/RT environment when local cached copy is = in + encrypted form. Variable decryption can only be done in SMM environment. + + @param[in] VariableName Name of Variable to be found. + @param[in] VendorGuid Variable vendor GUID. + @param[out] Attributes Attribute value of the variable found. + @param[in, out] DataSize Size of Data found. If size is less t= han the + data, this value contains the require= d size. + @param[out] Data Data pointer. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER Invalid parameter. + @retval EFI_NOT_FOUND The specified variable could not be f= ound. + +**/ +typedef +EFI_STATUS +(EFIAPI *PROTECTED_VAR_LIB_FIND_VAR_SMM)( + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + OUT UINT32 *Attributes OPTIONAL, + IN OUT UINTN *DataSize, + OUT VOID *Data OPTIONAL + ); + +/** + Check if a variable is user variable or not. + + @param[in] Variable Pointer to variable header. + + @retval TRUE User variable. + @retval FALSE System variable. + +**/ +typedef +BOOLEAN +(EFIAPI *PROTECTED_VAR_LIB_IS_USER_VAR)( + IN VARIABLE_HEADER *Variable + ); + +/** + Check if a HOB variable store is available or not. + + @retval EFI_NOT_READY HOB variable store info not available. + @retval EFI_NOT_FOUND HOB variable store is NOT available. + @retval EFI_SUCCESS HOB variable store is available. +**/ +typedef +EFI_STATUS +(EFIAPI *PROTECTED_VAR_LIB_HOB_STORE_AVAILABLE)( + VOID + ); + +typedef enum { + FromPeiModule, + FromBootServiceModule, + FromRuntimeModule, + FromSmmModule +} VARIABLE_SERVICE_USER; + +#pragma pack(1) + +#define PROTECTED_VARIABLE_CONTEXT_IN_STRUCT_VERSION 0x02 + +typedef struct _PROTECTED_VARIABLE_CONTEXT_IN { + UINT32 StructVersion; + UINT32 StructSize; + UINT32 MaxVariableSize; + + VARIABLE_SERVICE_USER VariableServiceUser; + + PROTECTED_VAR_LIB_FIND_VAR_SMM FindVariableSmm; + PROTECTED_VAR_LIB_GET_VAR_INFO GetVariableInfo; + PROTECTED_VAR_LIB_GET_NEXT_VAR_INFO GetNextVariableInfo; + PROTECTED_VAR_LIB_UPDATE_VARIABLE_STORE UpdateVariableStore; + PROTECTED_VAR_LIB_UPDATE_VARIABLE UpdateVariable; + PROTECTED_VAR_LIB_HOB_STORE_AVAILABLE IsHobVariableStoreAvailable; +} PROTECTED_VARIABLE_CONTEXT_IN; + +#pragma pack() + +/** + + Initialization for protected variable services. + + If this initialization failed upon any error, the whole variable services + should not be used. A system reset might be needed to re-construct NV + variable storage to be the default state. + + @param[in] ContextIn Pointer to variable service context needed by + protected variable. + + @retval EFI_SUCCESS Protected variable services are ready. + @retval EFI_INVALID_PARAMETER If ContextIn =3D=3D NULL or something = missing or + mismatching in the content in ContextI= n. + @retval EFI_COMPROMISED_DATA If failed to check integrity of protec= ted variables. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibInitialize ( + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn + ); + +/** + + An alternative version of ProtectedVariableLibGetData to get plain data,= if + encrypted, from given variable, for different use cases. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER VarInfo is NULL or both VarInfo->Addre= ss and + VarInfo->Offset are invalid. + @retval EFI_NOT_FOUND The specified variable could not be fo= und. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ); + +/** + This service retrieves a variable's value using its name and GUID. + + Read the specified variable from the UEFI variable store. If the Data + buffer is too small to hold the contents of the variable, the error + EFI_BUFFER_TOO_SMALL is returned and DataSize is set to the required buf= fer + size to obtain the data. + + @param VariableName A pointer to a null-terminated string that= is the variable's name. + @param VariableGuid A pointer to an EFI_GUID that is the varia= ble's GUID. The combination of + VariableGuid and VariableName must be uniq= ue. + @param Attributes If non-NULL, on return, points to the vari= able's attributes. + @param DataSize On entry, points to the size in bytes of t= he Data buffer. + On return, points to the size of the data = returned in Data. + @param Data Points to the buffer which will hold the r= eturned variable value. + May be NULL with a zero DataSize in order = to determine the size of the buffer needed. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable was be found. + @retval EFI_BUFFER_TOO_SMALL The DataSize is too small for the resultin= g data. + DataSize is updated with the size required= for + the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid, DataSize or Da= ta is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByName ( + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VariableGuid, + OUT UINT32 *Attributes, + IN OUT UINTN *DataSize, + OUT VOID *Data OPTIONAL + ); + +/** + + Retrieve plain data, if encrypted, of given variable. + + If variable encryption is employed, this function will initiate a SMM re= quest + to get the plain data. Due to security consideration, the decryption can= only + be done in SMM environment. + + @param[in] Variable Pointer to header of a Variable. + @param[out] Data Pointer to plain data of the given va= riable. + @param[in, out] DataSize Size of data returned or data buffer = needed. + @param[in] AuthFlag Auth-variable indicator. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER Invalid parameter. + @retval EFI_NOT_FOUND The specified variable could not be f= ound. + @retval EFI_BUFFER_TOO_SMALL If *DataSize is smaller than needed. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByBuffer ( + IN VARIABLE_HEADER *Variable, + IN OUT VOID *Data, + IN OUT UINT32 *DataSize, + IN BOOLEAN AuthFlag + ); + +/** + + Prepare for variable update. + + This is needed only once during current boot to mitigate replay attack. = Its + major job is to advance RPMC (Replay Protected Monotonic Counter). + + @retval EFI_SUCCESS Variable is ready to update hereafter. + @retval EFI_UNSUPPORTED Updating variable is not supported. + @retval EFI_DEVICE_ERROR Error in advancing RPMC. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteInit ( + VOID + ); + +/** + + Update a variable with protection provided by this library. + + If variable encryption is employed, the new variable data will be encryp= ted + before being written to NV variable storage. + + A special variable, called "MetaDataHmacVar", will always be updated alo= ng + with variable being updated to reflect the changes (HMAC value) of all + protected valid variables. The only exceptions, currently, are variable + "MetaDataHmacVar" itself and variable "VarErrorLog". + + The buffer passed by NewVariable must be double of maximum variable size, + which allows to pass the "MetaDataHmacVar" back to caller along with enc= rypted + new variable data, if any. This can make sure the new variable data and + "MetaDataHmacVar" can be written at almost the same time to reduce the c= hance + of compromising the integrity. + + If *NewVariableSize is zero, it means to delete variable passed by CurrV= ariable + and/or CurrVariableInDel. "MetaDataHmacVar" will be updated as well in s= uch + case because of less variables in storage. NewVariable should be always = passed + in to convey new "MetaDataHmacVar" back. + + @param[in,out] CurrVariable Variable to be updated. It's NULL if + adding a new variable. + @param[in,out] CurrVariableInDel In-delete-transition copy of updatin= g variable. + @param[in] NewVariable Buffer of new variable data. + @param[out] NewVariable Buffer of "MetaDataHmacVar" and new + variable (encrypted). + @param[in] NewVariableSize Size of NewVariable. + @param[out] NewVariableSize Size of (encrypted) NewVariable and + "MetaDataHmacVar". + + @retval EFI_SUCCESS The variable is updated with protection = successfully. + @retval EFI_INVALID_PARAMETER NewVariable is NULL. + @retval EFI_NOT_FOUND Information missing to finish the operat= ion. + @retval EFI_ABORTED Failed to encrypt variable or calculate = HMAC. + @retval EFI_NOT_READY The RPMC device is not yet initialized. + @retval EFI_DEVICE_ERROR The RPMC device has error in updating. + @retval EFI_ACCESS_DENIED The given variable is not allowed to upd= ate. + Currently this only happens on updating + "MetaDataHmacVar" from code outside of t= his + library. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibUpdate ( + IN OUT VARIABLE_HEADER *CurrVariable OPTIONAL, + IN OUT VARIABLE_HEADER *CurrVariableInDel OPTIONAL, + IN OUT VARIABLE_HEADER *NewVariable, + IN OUT UINTN *NewVariableSize + ); + +/** + + Finalize a variable updating after it's written to NV variable storage + successfully. + + This usually includes works like increasing RPMC, synchronizing local ca= che, + updating new position of "MetaDataHmacVar", deleting old copy of "MetaDa= taHmacVar" + completely, etc. + + @param[in] NewVariable Buffer of new variables and MetaDataHm= acVar. + @param[in] VariableSize Size of buffer pointed by NewVariable. + @param[in] Offset Offset to NV variable storage from whe= re the new + variable and MetaDataHmacVar have been= written. + + @retval EFI_SUCCESS No problem in winding up the variable write = operation. + @retval Others Failed to updating state of old copy of upda= ted + variable, or failed to increase RPMC, etc. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteFinal ( + IN VARIABLE_HEADER *NewVariable, + IN UINTN VariableSize, + IN UINT64 StoreIndex + ); + +/** + Return the request variable name and GUID as per StoreIndex. + + This function is called multiple times to retrieve the VariableName + and VariableGuid of all variables currently available in the system. + On each call, the previous results are passed into the interface, + and, on return, the interface returns the data for the next + interface. When the entire variable list has been returned, + EFI_NOT_FOUND is returned. + + @param This A pointer to this instance of the EFI_PEI_READ= _ONLY_VARIABLE2_PPI. + + @param VariableNameSize On entry, points to the size of the buffer poi= nted to by VariableName. + On return, the size of the variable name buffe= r. + @param VariableName On entry, a pointer to a null-terminated strin= g that is the variable's name. + On return, points to the next variable's null-= terminated name string. + @param VariableGuid On entry, a pointer to an EFI_GUID that is the= variable's GUID. + On return, a pointer to the next variable's GU= ID. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable could not be found. + @retval EFI_BUFFER_TOO_SMALL The VariableNameSize is too small for the = resulting + data. VariableNameSize is updated with the= size + required for the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid or + VariableNameSize is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFind ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ); + +/** + Return the next variable name and GUID. + + This function is called multiple times to retrieve the VariableName + and VariableGuid of all variables currently available in the system. + On each call, the previous results are passed into the interface, + and, on return, the interface returns the data for the next + interface. When the entire variable list has been returned, + EFI_NOT_FOUND is returned. + + @param VariableNameSize On entry, points to the size of the buffer poi= nted to by VariableName. + On return, the size of the variable name buffe= r. + @param VariableName On entry, a pointer to a null-terminated strin= g that is the variable's name. + On return, points to the next variable's null-= terminated name string. + @param VariableGuid On entry, a pointer to an EFI_GUID that is the= variable's GUID. + On return, a pointer to the next variable's GU= ID. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable could not be found. + @retval EFI_BUFFER_TOO_SMALL The VariableNameSize is too small for the = resulting + data. VariableNameSize is updated with the= size + required for the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid or + VariableNameSize is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFindNext ( + IN OUT UINTN *VariableNameSize, + IN OUT CHAR16 *VariableName, + IN OUT EFI_GUID *VariableGuid + ); + +/** + Find variable via information in data structure PROTECTED_VARIABLE_INFO. + + If VarInfo->StoreIndex is given and valid, always used it to search var= iable + in store. Otherwise, search the variable via variable name and guid poi= nted + by VarInfo->Header.VariableName and VarInfo->Header.VendorGuid. + + @param VarInfo Pointer to data containing variable information. + + @return EFI_SUCCESS Found the variable. + @return EFI_INVALID_PARAMETER No valid variable information is given. + @return EFI_NOT_FOUND The given variable was not found or no more + variables available. +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFindNextEx ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ); + +/** + Refresh variable information changed by variable service. + + @param Variable Pointer to buffer of the updated variable. + @param VariableSize Size of variable pointed by Variable. + @param StoreIndex New index of the variable in store. + @param RefreshData Flag to indicate if the variable has been update= d. + + @return EFI_SUCCESS No error occurred in updating. + @return EFI_NOT_FOUND The given variable was not found in + ProtectedVariableLib. +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibRefresh ( + IN VARIABLE_HEADER *Variable, + IN UINTN VariableSize, + IN UINT64 StoreIndex, + IN BOOLEAN RefreshData + ); + +/** + Refresh variable information changed by variable service. + + @param Buffer Pointer to a pointer of buffer. + @param NumElements Pointer to number of elements in list. + + + @return EFI_SUCCESS Successfully retrieved sorted list. + @return others Unsuccessful. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetSortedList ( + IN OUT EFI_PHYSICAL_ADDRESS **Buffer, + IN OUT UINTN *NumElements + ); + +/** + + Determine if the variable is the HMAC variable + + @param VariableName Pointer to variable name. + + @return TRUE Variable is HMAC variable + @return FALSE Variable is not HMAC variable + +**/ +BOOLEAN +ProtectedVariableLibIsHmac ( + IN CHAR16 *VariableName + ); + +#endif --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89424): https://edk2.groups.io/g/devel/message/89424 Mute This Topic: https://groups.io/mt/90781891/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89425+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89425+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255519; cv=none; d=zohomail.com; s=zohoarc; b=XZx0hZhuEQGLk9DmlrkcOqrAZ5hPftYI+j+L/WVs03zOdrlqa5blv4lnZkWDMW/VQyw6jzmDPVUMnlMdqgbA4F28Z0zgX7t3NYk5DQ2djQ2rMsA2SmQ2lH4AgFM7tKVBXT4mUonXfbJIuZmqE0KHIsbNi7wwPeHRlHbD0p9Wwfk= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255519; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=0iaO60Ln0ztsH3q9Rm2dvBFY5vdrYgQuhDdcp1YRmLk=; b=nkCA7z+7bYb0qqCAMhKdL654FTvfer24VbbXAGPni8pDqoJxcMtLlzYqlMEIcy/q8i9pQMyeZhlteEccRwNhLYuLMeeDE6gBCWt4rKRF5m36gKOdpgcxEqK96DcoTWp5aMzVvu2QABERs/MU5q+lkTUWeOz+z+FgG4leHpSnhoc= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89425+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255519011177.81594378740795; Fri, 29 Apr 2022 11:05:19 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id R5BXYY1788612xeLDiaUiN2R; Fri, 29 Apr 2022 11:05:18 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web12.13561.1651255513347566730 for ; Fri, 29 Apr 2022 11:05:17 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659178" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659178" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:16 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955665" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:15 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 07/28] MdeModulePkg: Add Null ProtectedVariable Library Date: Fri, 29 Apr 2022 11:04:09 -0700 Message-Id: <20220429180430.3292-8-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: flqGdDi3czrpEgnbxrLyPXdox1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255518; bh=vhLp/T9Rv+rtXs5K9TawXUhT5XI9fGhosOaJXgp7058=; h=Cc:Date:From:Reply-To:Subject:To; b=n1ZgOGNw1BDWK0sWF58TcDsAAW5UKtiygDoGImeU6bjcxHcxnLufyL+RwpKnpW6o9qZ bBcvmCOZvpgGwmbSwXoUaKtAf+i4OZ2eH4FxNOHM4nfTNcq7rpgQGZRPZG9E7IFVfFP8j VBSip1FxgC6flduVt8rZ6DZCWUOSdYHstN0= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255520856100013 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add Null versions of the ProtectedVariable Library. This will be the default libraries for platforms that do not support ProtectedVariable. Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVariableLibNull.inf= | 34 ++ MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVariable.c = | 449 ++++++++++++++++++++ 2 files changed, 483 insertions(+) diff --git a/MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVariabl= eLibNull.inf b/MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVaria= bleLibNull.inf new file mode 100644 index 000000000000..6a17191c4e1e --- /dev/null +++ b/MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVariableLibNul= l.inf @@ -0,0 +1,34 @@ +## @file +# Provides null version of protected variable services. +# +# Copyright (c) 2022, Intel Corporation. All rights reserved.
+# SPDX-License-Identifier: BSD-2-Clause-Patent +# +## + +[Defines] + INF_VERSION =3D 0x00010029 + BASE_NAME =3D ProtectedVariableLibNull + FILE_GUID =3D 352C6A1B-403A-4E37-8517-FAA50BC45251 + MODULE_TYPE =3D BASE + VERSION_STRING =3D 0.1 + LIBRARY_CLASS =3D ProtectedVariableLib + +# +# The following information is for reference only and not required by the = build tools. +# +# VALID_ARCHITECTURES =3D IA32 X64 +# + +[Sources] + ProtectedVariable.c + +[Packages] + MdePkg/MdePkg.dec + MdeModulePkg/MdeModulePkg.dec + +[LibraryClasses] + BaseLib + BaseMemoryLib + DebugLib + diff --git a/MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVariabl= e.c b/MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVariable.c new file mode 100644 index 000000000000..cc1e16c1a671 --- /dev/null +++ b/MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVariable.c @@ -0,0 +1,449 @@ +/** @file + NULL version of ProtectedVariableLib used to disable protected variable = services. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include +#include + +#include +#include +#include + +/** + + Initialization for protected varibale services. + + @param[in] ContextIn Pointer to variable service context needed by + protected variable. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibInitialize ( + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Get a verified copy of NV variable storage. + + @param[out] VariableFvHeader Pointer to the header of whole NV = firmware volume. + @param[out] VariableStoreHeader Pointer to the header of variable = storage. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetStore ( + OUT EFI_FIRMWARE_VOLUME_HEADER **VariableFvHeader, + OUT VARIABLE_STORE_HEADER **VariableStoreHeader + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Prepare for variable update. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteInit ( + VOID + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Update a variable with protection provided by this library. + + @param[in,out] CurrVariable Variable to be updated. It's NULL if + adding a new variable. + @param[in] CurrVariableInDel In-delete-transiion copy of updating= variable. + @param[in,out] NewVariable Buffer of new variable data. + Buffer of "MetaDataHmacVar" and new + variable (encrypted). + @param[in,out] NewVariableSize Size of NewVariable. + Size of (encrypted) NewVariable and + "MetaDataHmacVar". + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibUpdate ( + IN OUT VARIABLE_HEADER *CurrVariable, + IN VARIABLE_HEADER *CurrVariableInDel, + IN OUT VARIABLE_HEADER *NewVariable, + IN OUT UINTN *NewVariableSize + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Finalize a variable updating after it's written to NV variable storage + successfully. + + @param[in] NewVariable Buffer of new variables and MetaDataHm= acVar. + @param[in] VariableSize Size of buffer pointed by NewVariable. + @param[in] StoreIndex New index of the variable in store. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteFinal ( + IN VARIABLE_HEADER *NewVariable, + IN UINTN VariableSize, + IN UINT64 StoreIndex + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Perform garbage collection against the cached copy of NV variable storag= e. + + @param[in] VariableStoreBuffer Buffer used to do the reclai= m. + @param[out] LastVariableOffset New free space start point. + @param[in] CurrVariableOffset Offset of existing variable. + @param[in] CurrVariableInDelOffset Offset of old copy of existi= ng variable. + @param[in,out] NewVariable Buffer of new variable data. + @param[in] NewVariableSize Size of new variable data. + @param[in,out] HwErrVariableTotalSize Total size of variables with= HR attribute. + @param[in,out] CommonVariableTotalSize Total size of common variabl= es. + @param[in,out] CommonUserVariableTotalSize Total size of user variables. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibReclaim ( + IN VARIABLE_STORE_HEADER *VariableStoreBuffer, + OUT UINTN *LastVariableOffset, + IN UINTN CurrVariableOffset, + IN UINTN CurrVariableInDelOffset, + IN OUT VARIABLE_HEADER **NewVariable, + IN UINTN NewVariableSize, + IN OUT UINTN *HwErrVariableTotalSize, + IN OUT UINTN *CommonVariableTotalSize, + IN OUT UINTN *CommonUserVariableTotalSize + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + An alternative version of ProtectedVariableLibGetData to get plain data,= if + encrypted, from given variable, for different use cases. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetDataInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Retrieve plain data, if encrypted, of given variable. + + @param[in] Variable Pointer to header of a Variable. + @param[in,out] Data Pointer to plain data of the given va= riable. + @param[in,out] DataSize Size of data returned or data buffer = needed. + @param[in] AuthFlag Auth-variable indicator. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetData ( + IN VARIABLE_HEADER *Variable, + IN OUT VOID *Data, + IN OUT UINT32 *DataSize, + IN BOOLEAN AuthFlag + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Retrieve next protected variable stub. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetNextEx ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Retrieve next protected variable. + + @param[in,out] VariableNameSize Pointer to size of variable name. + @param[in,out] VariableName Pointer to variable name. + @param[in,out] VariableGuid Pointer to vairable GUID. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetNext ( + IN OUT UINTN *VariableNameSize, + IN OUT CHAR16 *VariableName, + IN OUT EFI_GUID *VariableGuid + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Get the specified protected variable. + + @param[in] VariableName Pointer to variable name. + @param[in] VariableGuid Pointer to vairable GUID. + @param[out] Attributes Pointer to attributes. + @param[in,out] DataSize Pointer to data size. + @param[out] Data Pointer to data. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGet ( + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VariableGuid, + OUT UINT32 *Attributes, + IN OUT UINTN *DataSize, + OUT VOID *Data OPTIONAL + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Find the protected variable. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFind ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Find next protected variable. + + @param[in,out] VariableNameSize Pointer to size of variable name. + @param[in,out] VariableName Pointer to variable name. + @param[in,out] VariableGuid Pointer to vairable GUID. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFindNext ( + IN OUT UINTN *VariableNameSize, + IN OUT CHAR16 *VariableName, + IN OUT EFI_GUID *VariableGuid + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Find next protected variable stub. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFindNextEx ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Get protected variable by information. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Get protected variable by name. + + @param[in] VariableName Pointer to variable name. + @param[in] VariableGuid Pointer to vairable GUID. + @param[out] Attributes Pointer to attributes. + @param[in,out] DataSize Pointer to data size. + @param[out] Data Pointer to data. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByName ( + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VariableGuid, + OUT UINT32 *Attributes, + IN OUT UINTN *DataSize, + OUT VOID *Data OPTIONAL + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Get protected variable by name. + + @param[in] Variable Pointer to variable name. + @param[in,out] Data Pointer to variable data. + @param[in,out] DataSize Pointer to data size. + @param[in] AuthFlag Authenticate flag. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByBuffer ( + IN VARIABLE_HEADER *Variable, + IN OUT VOID *Data, + IN OUT UINT32 *DataSize, + IN BOOLEAN AuthFlag + ) +{ + return EFI_UNSUPPORTED; +} + +/** + Refresh variable information changed by variable service. + + @param[in] Variable Pointer to buffer of the updated variable. + @param[in] VariableSize Size of variable pointed by Variable. + @param[in] StoreIndex New index of the variable in store. + @param[in] RefreshData Flag to indicate if the variable has been u= pdated. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibRefresh ( + IN VARIABLE_HEADER *Variable, + IN UINTN VariableSize, + IN UINT64 StoreIndex, + IN BOOLEAN RefreshData + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Get sorted protected variable list. + + @param[in,out] Buffer Pointer to buffer. + @param[in,out] NumElements Pointer to number of elements. + + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetSortedList ( + IN OUT EFI_PHYSICAL_ADDRESS **Buffer, + IN OUT UINTN *NumElements + ) +{ + return EFI_UNSUPPORTED; +} + +/** + + Determine if the variable is the HMAC variable. + + @param[in] VariableName Pointer to variable name. + + @return FALSE Variable is not HMAC variable + +**/ +BOOLEAN +ProtectedVariableLibIsHmac ( + IN CHAR16 *VariableName + ) +{ + return FALSE; +} --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89425): https://edk2.groups.io/g/devel/message/89425 Mute This Topic: https://groups.io/mt/90781892/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89426+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89426+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255520; cv=none; d=zohomail.com; s=zohoarc; b=WzocphhEvll/L4K6DqU2it1MTVNzM5OZDFtYWZxWrKIVc0jWQpAc8VK5PgXprooe7xcL72f3sJwf9dzUcDM8zQ2sBqe4fj1R+GkEWBlco/VXaq0SNUz6yLIXWDGktwrn20S08twFMmDuSveA2SvMT3Nflv+U//PrTF/DyuOLeAQ= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255520; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=NhnusA+g8MsQ7kwPJPOKKN+ujHqekMrdYojKuDf4OxA=; b=O7cv37/ahQntuweuKBAnQT9DziYNc+yQyI3es5ATw9dv+WasCKGzfixQe7W7dCZBTbtyqnSYABhw6E8D3TPQ/D0DLkkjv+UR+WU9pPk6JYQem2veFS+ycXWp+uYjcfPr4ngxNyUJAwrfQ1W98KcPXmfhrOCKthnDAFBsC3f/4LE= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89426+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255520740546.715346491471; Fri, 29 Apr 2022 11:05:20 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id rD6fYY1788612xb2pLfZcOHd; Fri, 29 Apr 2022 11:05:19 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web08.13430.1651255518273693340 for ; Fri, 29 Apr 2022 11:05:18 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659185" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659185" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:16 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955675" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:16 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 08/28] MdeModulePkg: Add new Variable functionality Date: Fri, 29 Apr 2022 11:04:10 -0700 Message-Id: <20220429180430.3292-9-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: AccEojvFbOHDdOiPDwxCPU6Bx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255519; bh=B9UvBhtnwBcmVEHhhHelbTW4WTvTZfX12EfO35bMBgg=; h=Cc:Date:From:Reply-To:Subject:To; b=o6YokZHnhLLgjFJLph5ixgDpnbytiTo7I/ns6lqZUKLjEyfquAlX4v7oTZbZji0Jtn6 AsdWth/u5gtg0qrdAk+O0kag0tckW5RXouWTtrGkqH9R3hSL4mN7F97gRp5SPpUtyau1M sfw4cVGBm1ADSSk7cKfD95q7q09gZWhwcOw= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255522901100024 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Provide new APIs for retrieving variable information. Add new function stubs for retrieving Protected variable information. Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- MdeModulePkg/Universal/Variable/Pei/VariablePei.inf | 10 +- MdeModulePkg/Universal/Variable/Pei/Variable.h | 80 +- MdeModulePkg/Universal/Variable/Pei/VariableParsing.h | 309 +++++++ MdeModulePkg/Universal/Variable/Pei/VariableStore.h | 116 +++ MdeModulePkg/Universal/Variable/Pei/Variable.c | 886 +++-----------= ---- MdeModulePkg/Universal/Variable/Pei/VariableParsing.c | 941 ++++++++++++++= ++++++ MdeModulePkg/Universal/Variable/Pei/VariableStore.c | 305 +++++++ 7 files changed, 1891 insertions(+), 756 deletions(-) diff --git a/MdeModulePkg/Universal/Variable/Pei/VariablePei.inf b/MdeModul= ePkg/Universal/Variable/Pei/VariablePei.inf index 7cbdd2385e8f..af172126a011 100644 --- a/MdeModulePkg/Universal/Variable/Pei/VariablePei.inf +++ b/MdeModulePkg/Universal/Variable/Pei/VariablePei.inf @@ -3,7 +3,7 @@ # # This module implements ReadOnly Variable Services required by PEIM and = installs PEI ReadOnly Varaiable2 PPI. # -# Copyright (c) 2006 - 2019, Intel Corporation. All rights reserved.
+# Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
# SPDX-License-Identifier: BSD-2-Clause-Patent # ## @@ -26,6 +26,10 @@ [Defines] [Sources] Variable.c Variable.h + VariableStore.c + VariableStore.h + VariableParsing.c + VariableParsing.h =20 [Packages] MdePkg/MdePkg.dec @@ -39,6 +43,7 @@ [LibraryClasses] DebugLib PeiServicesTablePointerLib PeiServicesLib + ProtectedVariableLib =20 [Guids] ## CONSUMES ## GUID # Variable store header @@ -56,7 +61,8 @@ [Guids] gEdkiiFaultTolerantWriteGuid =20 [Ppis] - gEfiPeiReadOnlyVariable2PpiGuid ## PRODUCES + gEfiPeiReadOnlyVariable2PpiGuid ## PRODUCES + gEfiPeiVariableStoreDiscoveredPpiGuid ## CONSUMES =20 [Pcd] gEfiMdeModulePkgTokenSpaceGuid.PcdFlashNvStorageVariableBase ## SOM= ETIMES_CONSUMES diff --git a/MdeModulePkg/Universal/Variable/Pei/Variable.h b/MdeModulePkg/= Universal/Variable/Pei/Variable.h index 7f9ad5bfc357..115426edd626 100644 --- a/MdeModulePkg/Universal/Variable/Pei/Variable.h +++ b/MdeModulePkg/Universal/Variable/Pei/Variable.h @@ -2,7 +2,7 @@ The internal header file includes the common header files, defines internal structure and functions used by PeiVariable module. =20 -Copyright (c) 2006 - 2017, Intel Corporation. All rights reserved.
+Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ @@ -20,11 +20,13 @@ SPDX-License-Identifier: BSD-2-Clause-Patent #include #include #include +#include =20 #include #include #include #include +#include =20 typedef enum { VariableStoreTypeHob, @@ -142,4 +144,80 @@ PeiGetNextVariableName ( IN OUT EFI_GUID *VariableGuid ); =20 +/** + This service retrieves a variable's value using its name and GUID. + + Read the specified variable from the UEFI variable store. If the Data + buffer is too small to hold the contents of the variable, the error + EFI_BUFFER_TOO_SMALL is returned and DataSize is set to the required buf= fer + size to obtain the data. + + @param This A pointer to this instance of the EFI_PEI_= READ_ONLY_VARIABLE2_PPI. + @param VariableName A pointer to a null-terminated string that= is the variable's name. + @param VariableGuid A pointer to an EFI_GUID that is the varia= ble's GUID. The combination of + VariableGuid and VariableName must be uniq= ue. + @param Attributes If non-NULL, on return, points to the vari= able's attributes. + @param DataSize On entry, points to the size in bytes of t= he Data buffer. + On return, points to the size of the data = returned in Data. + @param Data Points to the buffer which will hold the r= eturned variable value. + May be NULL with a zero DataSize in order = to determine the size of the buffer needed. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable was not found. + @retval EFI_BUFFER_TOO_SMALL The DataSize is too small for the resultin= g data. + DataSize is updated with the size required= for + the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid, DataSize or Da= ta is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +PeiGetVariableEx ( + IN CONST EFI_PEI_READ_ONLY_VARIABLE2_PPI *This, + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VariableGuid, + OUT UINT32 *Attributes, + IN OUT UINTN *DataSize, + OUT VOID *Data OPTIONAL + ); + +/** + Return the next variable name and GUID. + + This function is called multiple times to retrieve the VariableName + and VariableGuid of all variables currently available in the system. + On each call, the previous results are passed into the interface, + and, on return, the interface returns the data for the next + interface. When the entire variable list has been returned, + EFI_NOT_FOUND is returned. + + @param This A pointer to this instance of the EFI_PEI_READ= _ONLY_VARIABLE2_PPI. + + @param VariableNameSize On entry, points to the size of the buffer poi= nted to by VariableName. + @param VariableName On entry, a pointer to a null-terminated strin= g that is the variable's name. + On return, points to the next variable's null-= terminated name string. + + @param VariableGuid On entry, a pointer to an UEFI _GUID that is t= he variable's GUID. + On return, a pointer to the next variable's GU= ID. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable could not be found. + @retval EFI_BUFFER_TOO_SMALL The VariableNameSize is too small for the = resulting + data. VariableNameSize is updated with the= size + required for the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid or + VariableNameSize is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +PeiGetNextVariableNameEx ( + IN CONST EFI_PEI_READ_ONLY_VARIABLE2_PPI *This, + IN OUT UINTN *VariableNameSize, + IN OUT CHAR16 *VariableName, + IN OUT EFI_GUID *VariableGuid + ); + #endif diff --git a/MdeModulePkg/Universal/Variable/Pei/VariableParsing.h b/MdeMod= ulePkg/Universal/Variable/Pei/VariableParsing.h new file mode 100644 index 000000000000..d7af6cb6e8be --- /dev/null +++ b/MdeModulePkg/Universal/Variable/Pei/VariableParsing.h @@ -0,0 +1,309 @@ +/** @file + The internal header file includes the common header files, defines + internal structure and functions used by PeiVariable module. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#ifndef PEI_VARIABLE_PARSING_H_ +#define PEI_VARIABLE_PARSING_H_ + +#include "Variable.h" + +/** + + Gets the pointer to the first variable header in given variable store ar= ea. + + @param[in] VarStoreHeader Pointer to the Variable Store Header. + + @return Pointer to the first variable header. + +**/ +VARIABLE_HEADER * +GetStartPointer ( + IN VARIABLE_STORE_HEADER *VarStoreHeader + ); + +/** + + Gets the pointer to the end of the variable storage area. + + This function gets pointer to the end of the variable storage + area, according to the input variable store header. + + @param[in] VarStoreHeader Pointer to the Variable Store Header. + + @return Pointer to the end of the variable storage area. + +**/ +VARIABLE_HEADER * +GetEndPointer ( + IN VARIABLE_STORE_HEADER *VarStoreHeader + ); + +/** + This code checks if variable header is valid or not. + + @param[in] Variable Pointer to the Variable Header. + + @retval TRUE Variable header is valid. + @retval FALSE Variable header is not valid. + +**/ +BOOLEAN +IsValidVariableHeader ( + IN VARIABLE_HEADER *Variable + ); + +/** + This code gets the pointer to the next variable header. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] Variable Pointer to the Variable Header. + @param[in] VariableHeader Pointer to the Variable Header that has co= nsecutive content. + + @return A VARIABLE_HEADER* pointer to next variable header. + +**/ +VARIABLE_HEADER * +GetNextVariablePtr ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN VARIABLE_HEADER *Variable, + IN VARIABLE_HEADER *VariableHeader + ); + +/** + This code gets the pointer to the variable guid. + + @param[in] Variable Pointer to the Variable Header. + @param[in] AuthFlag Authenticated variable flag. + + @return A EFI_GUID* pointer to Vendor Guid. + +**/ +EFI_GUID * +GetVendorGuidPtr ( + IN VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ); + +/** + This code gets the pointer to the variable name. + + @param[in] Variable Pointer to the Variable Header. + @param[in] AuthFlag Authenticated variable flag. + + @return A CHAR16* pointer to Variable Name. + +**/ +CHAR16 * +GetVariableNamePtr ( + IN VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ); + +/** + This code gets the size of name of variable. + + @param[in] Variable Pointer to the Variable Header. + @param[in] AuthFlag Authenticated variable flag. + + @return Size of variable in bytes in type UINTN. + +**/ +UINTN +NameSizeOfVariable ( + IN VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ); + +/** + This code gets the size of data of variable. + + @param[in] Variable Pointer to the Variable Header. + @param[in] AuthFlag Authenticated variable flag. + + @return Size of variable in bytes in type UINTN. + +**/ +UINTN +DataSizeOfVariable ( + IN VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ); + +/** + This code gets the pointer to the variable data. + + @param[in] Variable Pointer to the Variable Header. + @param[in] VariableHeader Pointer to the Variable Header that has co= nsecutive content. + @param[in] AuthFlag Authenticated variable flag. + + @return A UINT8* pointer to Variable Data. + +**/ +UINT8 * +GetVariableDataPtr ( + IN VARIABLE_HEADER *Variable, + IN VARIABLE_HEADER *VariableHeader, + IN BOOLEAN AuthFlag + ); + +/** + Get variable header that has consecutive content. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] Variable Pointer to the Variable Header. + @param[out] VariableHeader Pointer to Pointer to the Variable Header tha= t has consecutive content. + + @retval TRUE Variable header is valid. + @retval FALSE Variable header is not valid. + +**/ +BOOLEAN +GetVariableHeader ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN VARIABLE_HEADER *Variable, + OUT VARIABLE_HEADER **VariableHeader + ); + +/** + This code gets the size of variable header. + + @param[in] AuthFlag Authenticated variable flag. + + @return Size of variable header in bytes in type UINTN. + +**/ +UINTN +GetVariableHeaderSize ( + IN BOOLEAN AuthFlag + ); + +/** + Get variable name or data to output buffer. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] NameOrData Pointer to the variable name/data that may be = inconsecutive. + @param[in] Size Variable name/data size. + @param[out] Buffer Pointer to output buffer to hold the variable = name/data. + +**/ +VOID +GetVariableNameOrData ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN UINT8 *NameOrData, + IN UINTN Size, + OUT UINT8 *Buffer + ); + +/** + This function compares a variable with variable entries in database. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] Variable Pointer to the variable in our database + @param[in] VariableHeader Pointer to the Variable Header that has conse= cutive content. + @param[in] VariableName Name of the variable to compare to 'Variable' + @param[in] VendorGuid GUID of the variable to compare to 'Variable' + @param[out] PtrTrack Variable Track Pointer structure that contains= Variable Information. + + @retval EFI_SUCCESS Found match variable + @retval EFI_NOT_FOUND Variable not found + +**/ +EFI_STATUS +CompareWithValidVariable ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN VARIABLE_HEADER *Variable, + IN VARIABLE_HEADER *VariableHeader, + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VendorGuid, + OUT VARIABLE_POINTER_TRACK *PtrTrack + ); + +/** + + Retrieve details of the variable next to given variable within VariableS= tore. + + If VarInfo->Address is NULL, the first one in VariableStore is returned. + + VariableStart and/or VariableEnd can be given optionally for the situati= on + in which the valid storage space is smaller than the VariableStore->Size. + This usually happens when PEI variable services make a compact variable + cache to save memory, which cannot make use VariableStore->Size to deter= mine + the correct variable storage range. + + @param[in,out] VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo or VariableStore is NULL. + @retval EFI_NOT_FOUND If the end of VariableStore is reached. + @retval EFI_SUCCESS The next variable is retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetNextVariableInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo + ); + +/** + + Retrieve details about a variable and return them in VariableInfo->Heade= r. + + If VariableInfo->Address is given, this function will calculate its offs= et + relative to given variable storage via VariableStore; Otherwise, it will= try + other internal variable storages or cached copies. It's assumed that, fo= r all + copies of NV variable storage, all variables are stored in the same rela= tive + position. If VariableInfo->Address is found in the range of any storage = copies, + its offset relative to that storage should be the same in other copies. + + If VariableInfo->Offset is given (non-zero) but not VariableInfo->Addres= s, + this function will return the variable memory address inside VariableSto= re, + if given, via VariableInfo->Address; Otherwise, the address of other sto= rage + copies will be returned, if any. + + For a new variable whose offset has not been determined, a value of -1 as + VariableInfo->Offset should be passed to skip the offset calculation. + + @param[in,out] VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo is NULL or both VariableInfo= ->Address + and VariableInfo->Offset are NULL (0). + @retval EFI_NOT_FOUND If given Address or Offset is out of rang= e of + any given or internal storage copies. + @retval EFI_SUCCESS Variable details are retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetVariableInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo + ); + +/** + + Find variable specified with input parameters. + + @param[in] StoreInfo Pointer to variable information. + @param[in] VariableName Pointer to variable name. + @param[in] VendorGuid Pointer to variable GUID. + @param[in] PtrTrack Pointer to variable track. + + @retval EFI_INVALID_PARAMETER VariableInfo is NULL or both VariableInfo= ->Address + and VariableInfo->Offset are NULL (0). + @retval EFI_NOT_FOUND If given Address or Offset is out of rang= e of + any given or internal storage copies. + @retval EFI_SUCCESS Variable details are retrieved successful= ly. + +**/ +EFI_STATUS +FindVariableEx ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VendorGuid, + OUT VARIABLE_POINTER_TRACK *PtrTrack + ); + +#endif diff --git a/MdeModulePkg/Universal/Variable/Pei/VariableStore.h b/MdeModul= ePkg/Universal/Variable/Pei/VariableStore.h new file mode 100644 index 000000000000..6e2f6f939bab --- /dev/null +++ b/MdeModulePkg/Universal/Variable/Pei/VariableStore.h @@ -0,0 +1,116 @@ +/** @file + Implement ReadOnly Variable Services required by PEIM and install + PEI ReadOnly Varaiable2 PPI. These services operates the non volatile st= orage space. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#ifndef PEI_VARIABLE_STORE_H_ +#define PEI_VARIABLE_STORE_H_ + +/** + Get variable store status. + + @param[in] VarStoreHeader Pointer to the Variable Store Header. + + @retval EfiRaw Variable store is raw + @retval EfiValid Variable store is valid + @retval EfiInvalid Variable store is invalid + +**/ +VARIABLE_STORE_STATUS +GetVariableStoreStatus ( + IN VARIABLE_STORE_HEADER *VarStoreHeader + ); + +/** + Reports HOB variable store is available or not. + + @retval EFI_NOT_READY HOB variable store info not available. + @retval EFI_NOT_FOUND HOB variable store is NOT available. + @retval EFI_SUCCESS HOB variable store is available. +**/ +EFI_STATUS +EFIAPI +IsHobVariableStoreAvailable ( + VOID + ); + +/** + Get HOB variable store. + + @param[out] StoreInfo Return the store info. + +**/ +VOID +GetHobVariableStore ( + OUT VARIABLE_STORE_INFO *StoreInfo + ); + +/** + Get NV variable store. + + @param[out] StoreInfo Return the store info. + @param[out] VariableStoreHeader Return header of FV containing the sto= re. + +**/ +VOID +GetNvVariableStore ( + OUT VARIABLE_STORE_INFO *StoreInfo, + OUT EFI_FIRMWARE_VOLUME_HEADER **VariableFvHeader + ); + +/** + Return the variable store header and the store info based on the Index. + + @param[in] Type The type of the variable store. + @param[out] StoreInfo Return the store info. + + @return Pointer to the variable store header. +**/ +VARIABLE_STORE_HEADER * +GetVariableStore ( + IN VARIABLE_STORE_TYPE Type, + OUT VARIABLE_STORE_INFO *StoreInfo + ); + +/** + Make a cached copy of NV variable storage. + + To save memory in PEI phase, only valid variables are copied into cache. + An IndexTable could be used to store the offset (relative to NV storage + base) of each copied variable, in case we need to restore the storage + as the same (valid) variables layout as in original one. + + Variables with valid format and following state can be taken as valid: + - with state VAR_ADDED; + - with state VAR_IN_DELETED_TRANSITION but without the same variable + with state VAR_ADDED; + - with state VAR_ADDED and/or VAR_IN_DELETED_TRANSITION for variable + MetaDataHmacVar. + + @param[out] StoreCacheBase Base address of variable storage cache. + @param[in,out] StoreCacheSize Size of space in StoreCacheBase. + @param[out] IndexTable Buffer of index (offset) table with en= tries of + VariableNumber. + @param[out] VariableNumber Number of valid variables. + @param[out] AuthFlag Aut-variable indicator. + + @return EFI_INVALID_PARAMETER Invalid StoreCacheSize and/or StoreCacheBa= se. + @return EFI_VOLUME_CORRUPTED Invalid or no NV variable storage found. + @return EFI_BUFFER_TOO_SMALL StoreCacheSize is smaller than needed. + @return EFI_SUCCESS NV variable storage is cached successfully. +**/ +EFI_STATUS +EFIAPI +InitNvVariableStore ( + OUT EFI_PHYSICAL_ADDRESS StoreCacheBase OPTIONAL, + IN OUT UINT32 *StoreCacheSize, + OUT UINT32 *IndexTable OPTIONAL, + OUT UINT32 *VariableNumber OPTIONAL, + OUT BOOLEAN *AuthFlag OPTIONAL + ); + +#endif diff --git a/MdeModulePkg/Universal/Variable/Pei/Variable.c b/MdeModulePkg/= Universal/Variable/Pei/Variable.c index b36dd0de67b2..ce790946626e 100644 --- a/MdeModulePkg/Universal/Variable/Pei/Variable.c +++ b/MdeModulePkg/Universal/Variable/Pei/Variable.c @@ -2,20 +2,22 @@ Implement ReadOnly Variable Services required by PEIM and install PEI ReadOnly Varaiable2 PPI. These services operates the non volatile st= orage space. =20 -Copyright (c) 2006 - 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
Copyright (c) Microsoft Corporation.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ =20 #include "Variable.h" +#include "VariableParsing.h" +#include "VariableStore.h" =20 // // Module globals // EFI_PEI_READ_ONLY_VARIABLE2_PPI mVariablePpi =3D { - PeiGetVariable, - PeiGetNextVariableName + PeiGetVariableEx, + PeiGetNextVariableNameEx }; =20 EFI_PEI_PPI_DESCRIPTOR mPpiListVariable =3D { @@ -41,759 +43,33 @@ PeimInitializeVariableServices ( IN CONST EFI_PEI_SERVICES **PeiServices ) { + EFI_STATUS Status; + PROTECTED_VARIABLE_CONTEXT_IN ContextIn; + + // + // If protected variable services are not supported, EFI_UNSUPPORTED sho= uld + // be always returned. Check it here. + // + ContextIn.StructVersion =3D PROTECTED_VARIABLE_CONTEXT_IN_STRUCT_VERSION; + ContextIn.StructSize =3D sizeof (ContextIn); + + ContextIn.MaxVariableSize =3D 0; + ContextIn.VariableServiceUser =3D FromPeiModule; + ContextIn.GetVariableInfo =3D GetVariableInfo; + ContextIn.GetNextVariableInfo =3D GetNextVariableInfo; + ContextIn.FindVariableSmm =3D NULL; + ContextIn.UpdateVariableStore =3D NULL; + ContextIn.UpdateVariable =3D NULL; + ContextIn.IsHobVariableStoreAvailable =3D IsHobVariableStoreAvailable; + + Status =3D ProtectedVariableLibInitialize (&ContextIn); + if (EFI_ERROR (Status) && (Status !=3D EFI_UNSUPPORTED)) { + return Status; + } + return PeiServicesInstallPpi (&mPpiListVariable); } =20 -/** - - Gets the pointer to the first variable header in given variable store ar= ea. - - @param VarStoreHeader Pointer to the Variable Store Header. - - @return Pointer to the first variable header. - -**/ -VARIABLE_HEADER * -GetStartPointer ( - IN VARIABLE_STORE_HEADER *VarStoreHeader - ) -{ - // - // The start of variable store - // - return (VARIABLE_HEADER *)HEADER_ALIGN (VarStoreHeader + 1); -} - -/** - - Gets the pointer to the end of the variable storage area. - - This function gets pointer to the end of the variable storage - area, according to the input variable store header. - - @param VarStoreHeader Pointer to the Variable Store Header. - - @return Pointer to the end of the variable storage area. - -**/ -VARIABLE_HEADER * -GetEndPointer ( - IN VARIABLE_STORE_HEADER *VarStoreHeader - ) -{ - // - // The end of variable store - // - return (VARIABLE_HEADER *)HEADER_ALIGN ((UINTN)VarStoreHeader + VarStore= Header->Size); -} - -/** - This code checks if variable header is valid or not. - - @param Variable Pointer to the Variable Header. - - @retval TRUE Variable header is valid. - @retval FALSE Variable header is not valid. - -**/ -BOOLEAN -IsValidVariableHeader ( - IN VARIABLE_HEADER *Variable - ) -{ - if ((Variable =3D=3D NULL) || (Variable->StartId !=3D VARIABLE_DATA)) { - return FALSE; - } - - return TRUE; -} - -/** - This code gets the size of variable header. - - @param AuthFlag Authenticated variable flag. - - @return Size of variable header in bytes in type UINTN. - -**/ -UINTN -GetVariableHeaderSize ( - IN BOOLEAN AuthFlag - ) -{ - UINTN Value; - - if (AuthFlag) { - Value =3D sizeof (AUTHENTICATED_VARIABLE_HEADER); - } else { - Value =3D sizeof (VARIABLE_HEADER); - } - - return Value; -} - -/** - This code gets the size of name of variable. - - @param Variable Pointer to the Variable Header. - @param AuthFlag Authenticated variable flag. - - @return Size of variable in bytes in type UINTN. - -**/ -UINTN -NameSizeOfVariable ( - IN VARIABLE_HEADER *Variable, - IN BOOLEAN AuthFlag - ) -{ - AUTHENTICATED_VARIABLE_HEADER *AuthVariable; - - AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; - if (AuthFlag) { - if ((AuthVariable->State =3D=3D (UINT8)(-1)) || - (AuthVariable->DataSize =3D=3D (UINT32)(-1)) || - (AuthVariable->NameSize =3D=3D (UINT32)(-1)) || - (AuthVariable->Attributes =3D=3D (UINT32)(-1))) - { - return 0; - } - - return (UINTN)AuthVariable->NameSize; - } else { - if ((Variable->State =3D=3D (UINT8)(-1)) || - (Variable->DataSize =3D=3D (UINT32)(-1)) || - (Variable->NameSize =3D=3D (UINT32)(-1)) || - (Variable->Attributes =3D=3D (UINT32)(-1))) - { - return 0; - } - - return (UINTN)Variable->NameSize; - } -} - -/** - This code gets the size of data of variable. - - @param Variable Pointer to the Variable Header. - @param AuthFlag Authenticated variable flag. - - @return Size of variable in bytes in type UINTN. - -**/ -UINTN -DataSizeOfVariable ( - IN VARIABLE_HEADER *Variable, - IN BOOLEAN AuthFlag - ) -{ - AUTHENTICATED_VARIABLE_HEADER *AuthVariable; - - AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; - if (AuthFlag) { - if ((AuthVariable->State =3D=3D (UINT8)(-1)) || - (AuthVariable->DataSize =3D=3D (UINT32)(-1)) || - (AuthVariable->NameSize =3D=3D (UINT32)(-1)) || - (AuthVariable->Attributes =3D=3D (UINT32)(-1))) - { - return 0; - } - - return (UINTN)AuthVariable->DataSize; - } else { - if ((Variable->State =3D=3D (UINT8)(-1)) || - (Variable->DataSize =3D=3D (UINT32)(-1)) || - (Variable->NameSize =3D=3D (UINT32)(-1)) || - (Variable->Attributes =3D=3D (UINT32)(-1))) - { - return 0; - } - - return (UINTN)Variable->DataSize; - } -} - -/** - This code gets the pointer to the variable name. - - @param Variable Pointer to the Variable Header. - @param AuthFlag Authenticated variable flag. - - @return A CHAR16* pointer to Variable Name. - -**/ -CHAR16 * -GetVariableNamePtr ( - IN VARIABLE_HEADER *Variable, - IN BOOLEAN AuthFlag - ) -{ - return (CHAR16 *)((UINTN)Variable + GetVariableHeaderSize (AuthFlag)); -} - -/** - This code gets the pointer to the variable guid. - - @param Variable Pointer to the Variable Header. - @param AuthFlag Authenticated variable flag. - - @return A EFI_GUID* pointer to Vendor Guid. - -**/ -EFI_GUID * -GetVendorGuidPtr ( - IN VARIABLE_HEADER *Variable, - IN BOOLEAN AuthFlag - ) -{ - AUTHENTICATED_VARIABLE_HEADER *AuthVariable; - - AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; - if (AuthFlag) { - return &AuthVariable->VendorGuid; - } else { - return &Variable->VendorGuid; - } -} - -/** - This code gets the pointer to the variable data. - - @param Variable Pointer to the Variable Header. - @param VariableHeader Pointer to the Variable Header that has consec= utive content. - @param AuthFlag Authenticated variable flag. - - @return A UINT8* pointer to Variable Data. - -**/ -UINT8 * -GetVariableDataPtr ( - IN VARIABLE_HEADER *Variable, - IN VARIABLE_HEADER *VariableHeader, - IN BOOLEAN AuthFlag - ) -{ - UINTN Value; - - // - // Be careful about pad size for alignment - // - Value =3D (UINTN)GetVariableNamePtr (Variable, AuthFlag); - Value +=3D NameSizeOfVariable (VariableHeader, AuthFlag); - Value +=3D GET_PAD_SIZE (NameSizeOfVariable (VariableHeader, AuthFlag)); - - return (UINT8 *)Value; -} - -/** - This code gets the pointer to the next variable header. - - @param StoreInfo Pointer to variable store info structure. - @param Variable Pointer to the Variable Header. - @param VariableHeader Pointer to the Variable Header that has consec= utive content. - - @return A VARIABLE_HEADER* pointer to next variable header. - -**/ -VARIABLE_HEADER * -GetNextVariablePtr ( - IN VARIABLE_STORE_INFO *StoreInfo, - IN VARIABLE_HEADER *Variable, - IN VARIABLE_HEADER *VariableHeader - ) -{ - EFI_PHYSICAL_ADDRESS TargetAddress; - EFI_PHYSICAL_ADDRESS SpareAddress; - UINTN Value; - - Value =3D (UINTN)GetVariableDataPtr (Variable, VariableHeader, StoreIn= fo->AuthFlag); - Value +=3D DataSizeOfVariable (VariableHeader, StoreInfo->AuthFlag); - Value +=3D GET_PAD_SIZE (DataSizeOfVariable (VariableHeader, StoreInfo->= AuthFlag)); - // - // Be careful about pad size for alignment - // - Value =3D HEADER_ALIGN (Value); - - if (StoreInfo->FtwLastWriteData !=3D NULL) { - TargetAddress =3D StoreInfo->FtwLastWriteData->TargetAddress; - SpareAddress =3D StoreInfo->FtwLastWriteData->SpareAddress; - if (((UINTN)Variable < (UINTN)TargetAddress) && (Value >=3D (UINTN)Tar= getAddress)) { - // - // Next variable is in spare block. - // - Value =3D (UINTN)SpareAddress + (Value - (UINTN)TargetAddress); - } - } - - return (VARIABLE_HEADER *)Value; -} - -/** - Get variable store status. - - @param VarStoreHeader Pointer to the Variable Store Header. - - @retval EfiRaw Variable store is raw - @retval EfiValid Variable store is valid - @retval EfiInvalid Variable store is invalid - -**/ -VARIABLE_STORE_STATUS -GetVariableStoreStatus ( - IN VARIABLE_STORE_HEADER *VarStoreHeader - ) -{ - if ((CompareGuid (&VarStoreHeader->Signature, &gEfiAuthenticatedVariable= Guid) || - CompareGuid (&VarStoreHeader->Signature, &gEfiVariableGuid)) && - (VarStoreHeader->Format =3D=3D VARIABLE_STORE_FORMATTED) && - (VarStoreHeader->State =3D=3D VARIABLE_STORE_HEALTHY) - ) - { - return EfiValid; - } - - if ((((UINT32 *)(&VarStoreHeader->Signature))[0] =3D=3D 0xffffffff) && - (((UINT32 *)(&VarStoreHeader->Signature))[1] =3D=3D 0xffffffff) && - (((UINT32 *)(&VarStoreHeader->Signature))[2] =3D=3D 0xffffffff) && - (((UINT32 *)(&VarStoreHeader->Signature))[3] =3D=3D 0xffffffff) && - (VarStoreHeader->Size =3D=3D 0xffffffff) && - (VarStoreHeader->Format =3D=3D 0xff) && - (VarStoreHeader->State =3D=3D 0xff) - ) - { - return EfiRaw; - } else { - return EfiInvalid; - } -} - -/** - Compare two variable names, one of them may be inconsecutive. - - @param StoreInfo Pointer to variable store info structure. - @param Name1 Pointer to one variable name. - @param Name2 Pointer to another variable name. - @param NameSize Variable name size. - - @retval TRUE Name1 and Name2 are identical. - @retval FALSE Name1 and Name2 are not identical. - -**/ -BOOLEAN -CompareVariableName ( - IN VARIABLE_STORE_INFO *StoreInfo, - IN CONST CHAR16 *Name1, - IN CONST CHAR16 *Name2, - IN UINTN NameSize - ) -{ - EFI_PHYSICAL_ADDRESS TargetAddress; - EFI_PHYSICAL_ADDRESS SpareAddress; - UINTN PartialNameSize; - - if (StoreInfo->FtwLastWriteData !=3D NULL) { - TargetAddress =3D StoreInfo->FtwLastWriteData->TargetAddress; - SpareAddress =3D StoreInfo->FtwLastWriteData->SpareAddress; - if (((UINTN)Name1 < (UINTN)TargetAddress) && (((UINTN)Name1 + NameSize= ) > (UINTN)TargetAddress)) { - // - // Name1 is inconsecutive. - // - PartialNameSize =3D (UINTN)TargetAddress - (UINTN)Name1; - // - // Partial content is in NV storage. - // - if (CompareMem ((UINT8 *)Name1, (UINT8 *)Name2, PartialNameSize) =3D= =3D 0) { - // - // Another partial content is in spare block. - // - if (CompareMem ((UINT8 *)(UINTN)SpareAddress, (UINT8 *)Name2 + Par= tialNameSize, NameSize - PartialNameSize) =3D=3D 0) { - return TRUE; - } - } - - return FALSE; - } else if (((UINTN)Name2 < (UINTN)TargetAddress) && (((UINTN)Name2 + N= ameSize) > (UINTN)TargetAddress)) { - // - // Name2 is inconsecutive. - // - PartialNameSize =3D (UINTN)TargetAddress - (UINTN)Name2; - // - // Partial content is in NV storage. - // - if (CompareMem ((UINT8 *)Name2, (UINT8 *)Name1, PartialNameSize) =3D= =3D 0) { - // - // Another partial content is in spare block. - // - if (CompareMem ((UINT8 *)(UINTN)SpareAddress, (UINT8 *)Name1 + Par= tialNameSize, NameSize - PartialNameSize) =3D=3D 0) { - return TRUE; - } - } - - return FALSE; - } - } - - // - // Both Name1 and Name2 are consecutive. - // - if (CompareMem ((UINT8 *)Name1, (UINT8 *)Name2, NameSize) =3D=3D 0) { - return TRUE; - } - - return FALSE; -} - -/** - This function compares a variable with variable entries in database. - - @param StoreInfo Pointer to variable store info structure. - @param Variable Pointer to the variable in our database - @param VariableHeader Pointer to the Variable Header that has consecuti= ve content. - @param VariableName Name of the variable to compare to 'Variable' - @param VendorGuid GUID of the variable to compare to 'Variable' - @param PtrTrack Variable Track Pointer structure that contains Var= iable Information. - - @retval EFI_SUCCESS Found match variable - @retval EFI_NOT_FOUND Variable not found - -**/ -EFI_STATUS -CompareWithValidVariable ( - IN VARIABLE_STORE_INFO *StoreInfo, - IN VARIABLE_HEADER *Variable, - IN VARIABLE_HEADER *VariableHeader, - IN CONST CHAR16 *VariableName, - IN CONST EFI_GUID *VendorGuid, - OUT VARIABLE_POINTER_TRACK *PtrTrack - ) -{ - VOID *Point; - EFI_GUID *TempVendorGuid; - - TempVendorGuid =3D GetVendorGuidPtr (VariableHeader, StoreInfo->AuthFlag= ); - - if (VariableName[0] =3D=3D 0) { - PtrTrack->CurrPtr =3D Variable; - return EFI_SUCCESS; - } else { - // - // Don't use CompareGuid function here for performance reasons. - // Instead we compare the GUID a UINT32 at a time and branch - // on the first failed comparison. - // - if ((((INT32 *)VendorGuid)[0] =3D=3D ((INT32 *)TempVendorGuid)[0]) && - (((INT32 *)VendorGuid)[1] =3D=3D ((INT32 *)TempVendorGuid)[1]) && - (((INT32 *)VendorGuid)[2] =3D=3D ((INT32 *)TempVendorGuid)[2]) && - (((INT32 *)VendorGuid)[3] =3D=3D ((INT32 *)TempVendorGuid)[3]) - ) - { - ASSERT (NameSizeOfVariable (VariableHeader, StoreInfo->AuthFlag) != =3D 0); - Point =3D (VOID *)GetVariableNamePtr (Variable, StoreInfo->AuthFlag); - if (CompareVariableName (StoreInfo, VariableName, Point, NameSizeOfV= ariable (VariableHeader, StoreInfo->AuthFlag))) { - PtrTrack->CurrPtr =3D Variable; - return EFI_SUCCESS; - } - } - } - - return EFI_NOT_FOUND; -} - -/** - Get HOB variable store. - - @param[out] StoreInfo Return the store info. - @param[out] VariableStoreHeader Return variable store header. - -**/ -VOID -GetHobVariableStore ( - OUT VARIABLE_STORE_INFO *StoreInfo, - OUT VARIABLE_STORE_HEADER **VariableStoreHeader - ) -{ - EFI_HOB_GUID_TYPE *GuidHob; - - // - // Make sure there is no more than one Variable HOB. - // - DEBUG_CODE_BEGIN (); - GuidHob =3D GetFirstGuidHob (&gEfiAuthenticatedVariableGuid); - if (GuidHob !=3D NULL) { - if ((GetNextGuidHob (&gEfiAuthenticatedVariableGuid, GET_NEXT_HOB (Gui= dHob)) !=3D NULL)) { - DEBUG ((DEBUG_ERROR, "ERROR: Found two Auth Variable HOBs\n")); - ASSERT (FALSE); - } else if (GetFirstGuidHob (&gEfiVariableGuid) !=3D NULL) { - DEBUG ((DEBUG_ERROR, "ERROR: Found one Auth + one Normal Variable HO= Bs\n")); - ASSERT (FALSE); - } - } else { - GuidHob =3D GetFirstGuidHob (&gEfiVariableGuid); - if (GuidHob !=3D NULL) { - if ((GetNextGuidHob (&gEfiVariableGuid, GET_NEXT_HOB (GuidHob)) !=3D= NULL)) { - DEBUG ((DEBUG_ERROR, "ERROR: Found two Normal Variable HOBs\n")); - ASSERT (FALSE); - } - } - } - - DEBUG_CODE_END (); - - GuidHob =3D GetFirstGuidHob (&gEfiAuthenticatedVariableGuid); - if (GuidHob !=3D NULL) { - *VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)GET_GUID_HOB_DATA (G= uidHob); - StoreInfo->AuthFlag =3D TRUE; - } else { - GuidHob =3D GetFirstGuidHob (&gEfiVariableGuid); - if (GuidHob !=3D NULL) { - *VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)GET_GUID_HOB_DATA = (GuidHob); - StoreInfo->AuthFlag =3D FALSE; - } - } -} - -/** - Return the variable store header and the store info based on the Index. - - @param Type The type of the variable store. - @param StoreInfo Return the store info. - - @return Pointer to the variable store header. -**/ -VARIABLE_STORE_HEADER * -GetVariableStore ( - IN VARIABLE_STORE_TYPE Type, - OUT VARIABLE_STORE_INFO *StoreInfo - ) -{ - EFI_HOB_GUID_TYPE *GuidHob; - EFI_FIRMWARE_VOLUME_HEADER *FvHeader; - VARIABLE_STORE_HEADER *VariableStoreHeader; - EFI_PHYSICAL_ADDRESS NvStorageBase; - UINT32 NvStorageSize; - FAULT_TOLERANT_WRITE_LAST_WRITE_DATA *FtwLastWriteData; - UINT32 BackUpOffset; - - StoreInfo->IndexTable =3D NULL; - StoreInfo->FtwLastWriteData =3D NULL; - StoreInfo->AuthFlag =3D FALSE; - VariableStoreHeader =3D NULL; - switch (Type) { - case VariableStoreTypeHob: - GetHobVariableStore (StoreInfo, &VariableStoreHeader); - - break; - - case VariableStoreTypeNv: - if (!PcdGetBool (PcdEmuVariableNvModeEnable)) { - // - // Emulated non-volatile variable mode is not enabled. - // - - NvStorageSize =3D PcdGet32 (PcdFlashNvStorageVariableSize); - NvStorageBase =3D (EFI_PHYSICAL_ADDRESS)(PcdGet64 (PcdFlashNvStora= geVariableBase64) !=3D 0 ? - PcdGet64 (PcdFlashNvStorage= VariableBase64) : - PcdGet32 (PcdFlashNvStorage= VariableBase) - ); - ASSERT (NvStorageBase !=3D 0); - - // - // First let FvHeader point to NV storage base. - // - FvHeader =3D (EFI_FIRMWARE_VOLUME_HEADER *)(UINTN)NvStorageBase; - - // - // Check the FTW last write data hob. - // - BackUpOffset =3D 0; - GuidHob =3D GetFirstGuidHob (&gEdkiiFaultTolerantWriteGuid); - if (GuidHob !=3D NULL) { - FtwLastWriteData =3D (FAULT_TOLERANT_WRITE_LAST_WRITE_DATA *)GET= _GUID_HOB_DATA (GuidHob); - if (FtwLastWriteData->TargetAddress =3D=3D NvStorageBase) { - // - // Let FvHeader point to spare block. - // - FvHeader =3D (EFI_FIRMWARE_VOLUME_HEADER *)(UINTN)FtwLastWrite= Data->SpareAddress; - DEBUG ((DEBUG_INFO, "PeiVariable: NV storage is backed up in s= pare block: 0x%x\n", (UINTN)FtwLastWriteData->SpareAddress)); - } else if ((FtwLastWriteData->TargetAddress > NvStorageBase) && = (FtwLastWriteData->TargetAddress < (NvStorageBase + NvStorageSize))) { - StoreInfo->FtwLastWriteData =3D FtwLastWriteData; - // - // Flash NV storage from the offset is backed up in spare bloc= k. - // - BackUpOffset =3D (UINT32)(FtwLastWriteData->TargetAddress - Nv= StorageBase); - DEBUG ((DEBUG_INFO, "PeiVariable: High partial NV storage from= offset: %x is backed up in spare block: 0x%x\n", BackUpOffset, (UINTN)FtwL= astWriteData->SpareAddress)); - // - // At least one block data in flash NV storage is still valid,= so still leave FvHeader point to NV storage base. - // - } - } - - // - // Check if the Firmware Volume is not corrupted - // - if ((FvHeader->Signature !=3D EFI_FVH_SIGNATURE) || (!CompareGuid = (&gEfiSystemNvDataFvGuid, &FvHeader->FileSystemGuid))) { - DEBUG ((DEBUG_ERROR, "Firmware Volume for Variable Store is corr= upted\n")); - break; - } - - VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)((UINT8 *)FvHeade= r + FvHeader->HeaderLength); - - StoreInfo->AuthFlag =3D (BOOLEAN)(CompareGuid (&VariableStoreHeade= r->Signature, &gEfiAuthenticatedVariableGuid)); - - GuidHob =3D GetFirstGuidHob (&gEfiVariableIndexTableGuid); - if (GuidHob !=3D NULL) { - StoreInfo->IndexTable =3D GET_GUID_HOB_DATA (GuidHob); - } else { - // - // If it's the first time to access variable region in flash, cr= eate a guid hob to record - // VAR_ADDED type variable info. - // Note that as the resource of PEI phase is limited, only store= the limited number of - // VAR_ADDED type variables to reduce access time. - // - StoreInfo->IndexTable =3D (VARIABLE_INDEX_TABLE *)B= uildGuidHob (&gEfiVariableIndexTableGuid, sizeof (VARIABLE_INDEX_TABLE)); - StoreInfo->IndexTable->Length =3D 0; - StoreInfo->IndexTable->StartPtr =3D GetStartPointer (Variable= StoreHeader); - StoreInfo->IndexTable->EndPtr =3D GetEndPointer (VariableSt= oreHeader); - StoreInfo->IndexTable->GoneThrough =3D 0; - } - } - - break; - - default: - ASSERT (FALSE); - break; - } - - StoreInfo->VariableStoreHeader =3D VariableStoreHeader; - return VariableStoreHeader; -} - -/** - Get variable header that has consecutive content. - - @param StoreInfo Pointer to variable store info structure. - @param Variable Pointer to the Variable Header. - @param VariableHeader Pointer to Pointer to the Variable Header that has= consecutive content. - - @retval TRUE Variable header is valid. - @retval FALSE Variable header is not valid. - -**/ -BOOLEAN -GetVariableHeader ( - IN VARIABLE_STORE_INFO *StoreInfo, - IN VARIABLE_HEADER *Variable, - OUT VARIABLE_HEADER **VariableHeader - ) -{ - EFI_PHYSICAL_ADDRESS TargetAddress; - EFI_PHYSICAL_ADDRESS SpareAddress; - EFI_HOB_GUID_TYPE *GuidHob; - UINTN PartialHeaderSize; - - if (Variable =3D=3D NULL) { - return FALSE; - } - - // - // First assume variable header pointed by Variable is consecutive. - // - *VariableHeader =3D Variable; - - if (StoreInfo->FtwLastWriteData !=3D NULL) { - TargetAddress =3D StoreInfo->FtwLastWriteData->TargetAddress; - SpareAddress =3D StoreInfo->FtwLastWriteData->SpareAddress; - if (((UINTN)Variable > (UINTN)SpareAddress) && - (((UINTN)Variable - (UINTN)SpareAddress + (UINTN)TargetAddress) >= =3D (UINTN)GetEndPointer (StoreInfo->VariableStoreHeader))) - { - // - // Reach the end of variable store. - // - return FALSE; - } - - if (((UINTN)Variable < (UINTN)TargetAddress) && (((UINTN)Variable + Ge= tVariableHeaderSize (StoreInfo->AuthFlag)) > (UINTN)TargetAddress)) { - // - // Variable header pointed by Variable is inconsecutive, - // create a guid hob to combine the two partial variable header cont= ent together. - // - GuidHob =3D GetFirstGuidHob (&gEfiCallerIdGuid); - if (GuidHob !=3D NULL) { - *VariableHeader =3D (VARIABLE_HEADER *)GET_GUID_HOB_DATA (GuidHob); - } else { - *VariableHeader =3D (VARIABLE_HEADER *)BuildGuidHob (&gEfiCaller= IdGuid, GetVariableHeaderSize (StoreInfo->AuthFlag)); - PartialHeaderSize =3D (UINTN)TargetAddress - (UINTN)Variable; - // - // Partial content is in NV storage. - // - CopyMem ((UINT8 *)*VariableHeader, (UINT8 *)Variable, PartialHeade= rSize); - // - // Another partial content is in spare block. - // - CopyMem ((UINT8 *)*VariableHeader + PartialHeaderSize, (UINT8 *)(U= INTN)SpareAddress, GetVariableHeaderSize (StoreInfo->AuthFlag) - PartialHea= derSize); - } - } - } else { - if (Variable >=3D GetEndPointer (StoreInfo->VariableStoreHeader)) { - // - // Reach the end of variable store. - // - return FALSE; - } - } - - return IsValidVariableHeader (*VariableHeader); -} - -/** - Get variable name or data to output buffer. - - @param StoreInfo Pointer to variable store info structure. - @param NameOrData Pointer to the variable name/data that may be inco= nsecutive. - @param Size Variable name/data size. - @param Buffer Pointer to output buffer to hold the variable name= /data. - -**/ -VOID -GetVariableNameOrData ( - IN VARIABLE_STORE_INFO *StoreInfo, - IN UINT8 *NameOrData, - IN UINTN Size, - OUT UINT8 *Buffer - ) -{ - EFI_PHYSICAL_ADDRESS TargetAddress; - EFI_PHYSICAL_ADDRESS SpareAddress; - UINTN PartialSize; - - if (StoreInfo->FtwLastWriteData !=3D NULL) { - TargetAddress =3D StoreInfo->FtwLastWriteData->TargetAddress; - SpareAddress =3D StoreInfo->FtwLastWriteData->SpareAddress; - if (((UINTN)NameOrData < (UINTN)TargetAddress) && (((UINTN)NameOrData = + Size) > (UINTN)TargetAddress)) { - // - // Variable name/data is inconsecutive. - // - PartialSize =3D (UINTN)TargetAddress - (UINTN)NameOrData; - // - // Partial content is in NV storage. - // - CopyMem (Buffer, NameOrData, PartialSize); - // - // Another partial content is in spare block. - // - CopyMem (Buffer + PartialSize, (UINT8 *)(UINTN)SpareAddress, Size - = PartialSize); - return; - } - } - - // - // Variable name/data is consecutive. - // - CopyMem (Buffer, NameOrData, Size); -} - /** Find the variable in the specified variable store. =20 @@ -1246,3 +522,107 @@ PeiGetNextVariableName ( } } } + +/** + This service retrieves a variable's value using its name and GUID. + + Read the specified variable from the UEFI variable store. If the Data + buffer is too small to hold the contents of the variable, the error + EFI_BUFFER_TOO_SMALL is returned and DataSize is set to the required buf= fer + size to obtain the data. + + @param This A pointer to this instance of the EFI_PEI_= READ_ONLY_VARIABLE2_PPI. + @param VariableName A pointer to a null-terminated string that= is the variable's name. + @param VariableGuid A pointer to an EFI_GUID that is the varia= ble's GUID. The combination of + VariableGuid and VariableName must be uniq= ue. + @param Attributes If non-NULL, on return, points to the vari= able's attributes. + @param DataSize On entry, points to the size in bytes of t= he Data buffer. + On return, points to the size of the data = returned in Data. + @param Data Points to the buffer which will hold the r= eturned variable value. + May be NULL with a zero DataSize in order = to determine the size of the buffer needed. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable was be found. + @retval EFI_BUFFER_TOO_SMALL The DataSize is too small for the resultin= g data. + DataSize is updated with the size required= for + the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid, DataSize or Da= ta is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +PeiGetVariableEx ( + IN CONST EFI_PEI_READ_ONLY_VARIABLE2_PPI *This, + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VariableGuid, + OUT UINT32 *Attributes, + IN OUT UINTN *DataSize, + OUT VOID *Data OPTIONAL + ) +{ + EFI_STATUS Status; + + // + // If variable protection is employed, always get variable data through + // ProtectedVariableLib. + // + Status =3D ProtectedVariableLibGetByName (VariableName, VariableGuid, At= tributes, DataSize, Data); + if (Status !=3D EFI_UNSUPPORTED) { + return Status; + } + + return PeiGetVariable (This, VariableName, VariableGuid, Attributes, Dat= aSize, Data); +} + +/** + Return the next variable name and GUID. + + This function is called multiple times to retrieve the VariableName + and VariableGuid of all variables currently available in the system. + On each call, the previous results are passed into the interface, + and, on return, the interface returns the data for the next + interface. When the entire variable list has been returned, + EFI_NOT_FOUND is returned. + + @param This A pointer to this instance of the EFI_PEI_READ= _ONLY_VARIABLE2_PPI. + + @param VariableNameSize On entry, points to the size of the buffer poi= nted to by VariableName. + On return, the size of the variable name buffe= r. + @param VariableName On entry, a pointer to a null-terminated strin= g that is the variable's name. + On return, points to the next variable's null-= terminated name string. + @param VariableGuid On entry, a pointer to an EFI_GUID that is the= variable's GUID. + On return, a pointer to the next variable's GU= ID. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable could not be found. + @retval EFI_BUFFER_TOO_SMALL The VariableNameSize is too small for the = resulting + data. VariableNameSize is updated with the= size + required for the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid or + VariableNameSize is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +PeiGetNextVariableNameEx ( + IN CONST EFI_PEI_READ_ONLY_VARIABLE2_PPI *This, + IN OUT UINTN *VariableNameSize, + IN OUT CHAR16 *VariableName, + IN OUT EFI_GUID *VariableGuid + ) +{ + EFI_STATUS Status; + + // + // If variable protection is employed, always get next variable through + // ProtectedVariableLib. + // + Status =3D ProtectedVariableLibFindNext (VariableNameSize, VariableName,= VariableGuid); + if (Status !=3D EFI_UNSUPPORTED) { + return Status; + } + + return PeiGetNextVariableName (This, VariableNameSize, VariableName, Var= iableGuid); +} diff --git a/MdeModulePkg/Universal/Variable/Pei/VariableParsing.c b/MdeMod= ulePkg/Universal/Variable/Pei/VariableParsing.c new file mode 100644 index 000000000000..2d605d39cbb6 --- /dev/null +++ b/MdeModulePkg/Universal/Variable/Pei/VariableParsing.c @@ -0,0 +1,941 @@ +/** @file + Implement ReadOnly Variable Services required by PEIM and install + PEI ReadOnly Varaiable2 PPI. These services operates the non volatile st= orage space. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include "Variable.h" +#include "VariableStore.h" + +/** + + Gets the pointer to the first variable header in given variable store ar= ea. + + @param[in] VarStoreHeader Pointer to the Variable Store Header. + + @return Pointer to the first variable header. + +**/ +VARIABLE_HEADER * +GetStartPointer ( + IN VARIABLE_STORE_HEADER *VarStoreHeader + ) +{ + // + // The start of variable store + // + return (VARIABLE_HEADER *)HEADER_ALIGN (VarStoreHeader + 1); +} + +/** + + Gets the pointer to the end of the variable storage area. + + This function gets pointer to the end of the variable storage + area, according to the input variable store header. + + @param[in] VarStoreHeader Pointer to the Variable Store Header. + + @return Pointer to the end of the variable storage area. + +**/ +VARIABLE_HEADER * +GetEndPointer ( + IN VARIABLE_STORE_HEADER *VarStoreHeader + ) +{ + // + // The end of variable store + // + return (VARIABLE_HEADER *)HEADER_ALIGN ((UINTN)VarStoreHeader + VarStore= Header->Size); +} + +/** + This code checks if variable header is valid or not. + + @param[in] Variable Pointer to the Variable Header. + + @retval TRUE Variable header is valid. + @retval FALSE Variable header is not valid. + +**/ +BOOLEAN +IsValidVariableHeader ( + IN VARIABLE_HEADER *Variable + ) +{ + if ((Variable =3D=3D NULL) || (Variable->StartId !=3D VARIABLE_DATA)) { + return FALSE; + } + + return TRUE; +} + +/** + This code gets the size of variable header. + + @param[in] AuthFlag Authenticated variable flag. + + @return Size of variable header in bytes in type UINTN. + +**/ +UINTN +GetVariableHeaderSize ( + IN BOOLEAN AuthFlag + ) +{ + UINTN Value; + + if (AuthFlag) { + Value =3D sizeof (AUTHENTICATED_VARIABLE_HEADER); + } else { + Value =3D sizeof (VARIABLE_HEADER); + } + + return Value; +} + +/** + This code gets the size of name of variable. + + @param[in] Variable Pointer to the Variable Header. + @param[in] AuthFlag Authenticated variable flag. + + @return Size of variable in bytes in type UINTN. + +**/ +UINTN +NameSizeOfVariable ( + IN VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ) +{ + AUTHENTICATED_VARIABLE_HEADER *AuthVariable; + + AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; + if (AuthFlag) { + if ((AuthVariable->State =3D=3D (UINT8)(-1)) || + (AuthVariable->DataSize =3D=3D (UINT32)(-1)) || + (AuthVariable->NameSize =3D=3D (UINT32)(-1)) || + (AuthVariable->Attributes =3D=3D (UINT32)(-1))) + { + return 0; + } + + return (UINTN)AuthVariable->NameSize; + } else { + if ((Variable->State =3D=3D (UINT8)(-1)) || + (Variable->DataSize =3D=3D (UINT32)(-1)) || + (Variable->NameSize =3D=3D (UINT32)(-1)) || + (Variable->Attributes =3D=3D (UINT32)(-1))) + { + return 0; + } + + return (UINTN)Variable->NameSize; + } +} + +/** + This code gets the size of data of variable. + + @param[in] Variable Pointer to the Variable Header. + @param[in] AuthFlag Authenticated variable flag. + + @return Size of variable in bytes in type UINTN. + +**/ +UINTN +DataSizeOfVariable ( + IN VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ) +{ + AUTHENTICATED_VARIABLE_HEADER *AuthVariable; + + AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; + if (AuthFlag) { + if ((AuthVariable->State =3D=3D (UINT8)(-1)) || + (AuthVariable->DataSize =3D=3D (UINT32)(-1)) || + (AuthVariable->NameSize =3D=3D (UINT32)(-1)) || + (AuthVariable->Attributes =3D=3D (UINT32)(-1))) + { + return 0; + } + + return (UINTN)AuthVariable->DataSize; + } else { + if ((Variable->State =3D=3D (UINT8)(-1)) || + (Variable->DataSize =3D=3D (UINT32)(-1)) || + (Variable->NameSize =3D=3D (UINT32)(-1)) || + (Variable->Attributes =3D=3D (UINT32)(-1))) + { + return 0; + } + + return (UINTN)Variable->DataSize; + } +} + +/** + This code gets the pointer to the variable name. + + @param[in] Variable Pointer to the Variable Header. + @param[in] AuthFlag Authenticated variable flag. + + @return A CHAR16* pointer to Variable Name. + +**/ +CHAR16 * +GetVariableNamePtr ( + IN VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ) +{ + return (CHAR16 *)((UINTN)Variable + GetVariableHeaderSize (AuthFlag)); +} + +/** + This code gets the pointer to the variable guid. + + @param[in] Variable Pointer to the Variable Header. + @param[in] AuthFlag Authenticated variable flag. + + @return A EFI_GUID* pointer to Vendor Guid. + +**/ +EFI_GUID * +GetVendorGuidPtr ( + IN VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ) +{ + AUTHENTICATED_VARIABLE_HEADER *AuthVariable; + + AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; + if (AuthFlag) { + return &AuthVariable->VendorGuid; + } else { + return &Variable->VendorGuid; + } +} + +/** + This code gets the pointer to the variable data. + + @param[in] Variable Pointer to the Variable Header. + @param[in] VariableHeader Pointer to the Variable Header that has co= nsecutive content. + @param[in] AuthFlag Authenticated variable flag. + + @return A UINT8* pointer to Variable Data. + +**/ +UINT8 * +GetVariableDataPtr ( + IN VARIABLE_HEADER *Variable, + IN VARIABLE_HEADER *VariableHeader, + IN BOOLEAN AuthFlag + ) +{ + UINTN Value; + + // + // Be careful about pad size for alignment + // + Value =3D (UINTN)GetVariableNamePtr (Variable, AuthFlag); + Value +=3D NameSizeOfVariable (VariableHeader, AuthFlag); + Value +=3D GET_PAD_SIZE (NameSizeOfVariable (VariableHeader, AuthFlag)); + + return (UINT8 *)Value; +} + +/** + This code gets the pointer to the next variable header. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] Variable Pointer to the Variable Header. + @param[in] VariableHeader Pointer to the Variable Header that has co= nsecutive content. + + @return A VARIABLE_HEADER* pointer to next variable header. + +**/ +VARIABLE_HEADER * +GetNextVariablePtr ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN VARIABLE_HEADER *Variable, + IN VARIABLE_HEADER *VariableHeader + ) +{ + EFI_PHYSICAL_ADDRESS TargetAddress; + EFI_PHYSICAL_ADDRESS SpareAddress; + UINTN Value; + + Value =3D (UINTN)GetVariableDataPtr (Variable, VariableHeader, StoreIn= fo->AuthFlag); + Value +=3D DataSizeOfVariable (VariableHeader, StoreInfo->AuthFlag); + Value +=3D GET_PAD_SIZE (DataSizeOfVariable (VariableHeader, StoreInfo->= AuthFlag)); + // + // Be careful about pad size for alignment + // + Value =3D HEADER_ALIGN (Value); + + if (StoreInfo->FtwLastWriteData !=3D NULL) { + TargetAddress =3D StoreInfo->FtwLastWriteData->TargetAddress; + SpareAddress =3D StoreInfo->FtwLastWriteData->SpareAddress; + if (((UINTN)Variable < (UINTN)TargetAddress) && (Value >=3D (UINTN)Tar= getAddress)) { + // + // Next variable is in spare block. + // + Value =3D (UINTN)SpareAddress + (Value - (UINTN)TargetAddress); + } + } + + return (VARIABLE_HEADER *)Value; +} + +/** + Compare two variable names, one of them may be inconsecutive. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] Name1 Pointer to one variable name. + @param[in] Name2 Pointer to another variable name. + @param[in] NameSize Variable name size. + + @retval TRUE Name1 and Name2 are identical. + @retval FALSE Name1 and Name2 are not identical. + +**/ +BOOLEAN +CompareVariableName ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN CONST CHAR16 *Name1, + IN CONST CHAR16 *Name2, + IN UINTN NameSize + ) +{ + EFI_PHYSICAL_ADDRESS TargetAddress; + EFI_PHYSICAL_ADDRESS SpareAddress; + UINTN PartialNameSize; + + if (StoreInfo->FtwLastWriteData !=3D NULL) { + TargetAddress =3D StoreInfo->FtwLastWriteData->TargetAddress; + SpareAddress =3D StoreInfo->FtwLastWriteData->SpareAddress; + if (((UINTN)Name1 < (UINTN)TargetAddress) && (((UINTN)Name1 + NameSize= ) > (UINTN)TargetAddress)) { + // + // Name1 is inconsecutive. + // + PartialNameSize =3D (UINTN)TargetAddress - (UINTN)Name1; + // + // Partial content is in NV storage. + // + if (CompareMem ((UINT8 *)Name1, (UINT8 *)Name2, PartialNameSize) =3D= =3D 0) { + // + // Another partial content is in spare block. + // + if (CompareMem ((UINT8 *)(UINTN)SpareAddress, (UINT8 *)Name2 + Par= tialNameSize, NameSize - PartialNameSize) =3D=3D 0) { + return TRUE; + } + } + + return FALSE; + } else if (((UINTN)Name2 < (UINTN)TargetAddress) && (((UINTN)Name2 + N= ameSize) > (UINTN)TargetAddress)) { + // + // Name2 is inconsecutive. + // + PartialNameSize =3D (UINTN)TargetAddress - (UINTN)Name2; + // + // Partial content is in NV storage. + // + if (CompareMem ((UINT8 *)Name2, (UINT8 *)Name1, PartialNameSize) =3D= =3D 0) { + // + // Another partial content is in spare block. + // + if (CompareMem ((UINT8 *)(UINTN)SpareAddress, (UINT8 *)Name1 + Par= tialNameSize, NameSize - PartialNameSize) =3D=3D 0) { + return TRUE; + } + } + + return FALSE; + } + } + + // + // Both Name1 and Name2 are consecutive. + // + if (CompareMem ((UINT8 *)Name1, (UINT8 *)Name2, NameSize) =3D=3D 0) { + return TRUE; + } + + return FALSE; +} + +/** + This function compares a variable with variable entries in database. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] Variable Pointer to the variable in our database + @param[in] VariableHeader Pointer to the Variable Header that has + consecutive content. + @param[in] VariableName Name of the variable to compare to 'Variab= le' + @param[in] VendorGuid GUID of the variable to compare to 'Variab= le' + @param[out] PtrTrack Variable Track Pointer structure that cont= ains + Variable Information. + + @retval EFI_SUCCESS Found match variable + @retval EFI_NOT_FOUND Variable not found + +**/ +EFI_STATUS +CompareWithValidVariable ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN VARIABLE_HEADER *Variable, + IN VARIABLE_HEADER *VariableHeader, + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VendorGuid, + OUT VARIABLE_POINTER_TRACK *PtrTrack + ) +{ + VOID *Point; + EFI_GUID *TempVendorGuid; + + TempVendorGuid =3D GetVendorGuidPtr (VariableHeader, StoreInfo->AuthFlag= ); + + if (VariableName[0] =3D=3D 0) { + PtrTrack->CurrPtr =3D Variable; + return EFI_SUCCESS; + } else { + // + // Don't use CompareGuid function here for performance reasons. + // Instead we compare the GUID a UINT32 at a time and branch + // on the first failed comparison. + // + if ((((INT32 *)VendorGuid)[0] =3D=3D ((INT32 *)TempVendorGuid)[0]) && + (((INT32 *)VendorGuid)[1] =3D=3D ((INT32 *)TempVendorGuid)[1]) && + (((INT32 *)VendorGuid)[2] =3D=3D ((INT32 *)TempVendorGuid)[2]) && + (((INT32 *)VendorGuid)[3] =3D=3D ((INT32 *)TempVendorGuid)[3]) + ) + { + ASSERT (NameSizeOfVariable (VariableHeader, StoreInfo->AuthFlag) != =3D 0); + Point =3D (VOID *)GetVariableNamePtr (Variable, StoreInfo->AuthFlag); + if (CompareVariableName (StoreInfo, VariableName, Point, NameSizeOfV= ariable (VariableHeader, StoreInfo->AuthFlag))) { + PtrTrack->CurrPtr =3D Variable; + return EFI_SUCCESS; + } + } + } + + return EFI_NOT_FOUND; +} + +/** + Get variable header that has consecutive content. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] Variable Pointer to the Variable Header. + @param[out] VariableHeader Pointer to Pointer to the Variable Header + that has consecutive content. + + @retval TRUE Variable header is valid. + @retval FALSE Variable header is not valid. + +**/ +BOOLEAN +GetVariableHeader ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN VARIABLE_HEADER *Variable, + OUT VARIABLE_HEADER **VariableHeader + ) +{ + EFI_PHYSICAL_ADDRESS TargetAddress; + EFI_PHYSICAL_ADDRESS SpareAddress; + EFI_HOB_GUID_TYPE *GuidHob; + UINTN PartialHeaderSize; + + if (Variable =3D=3D NULL) { + return FALSE; + } + + // + // First assume variable header pointed by Variable is consecutive. + // + *VariableHeader =3D Variable; + + if (StoreInfo->FtwLastWriteData !=3D NULL) { + TargetAddress =3D StoreInfo->FtwLastWriteData->TargetAddress; + SpareAddress =3D StoreInfo->FtwLastWriteData->SpareAddress; + if (((UINTN)Variable > (UINTN)SpareAddress) && + (((UINTN)Variable - (UINTN)SpareAddress + (UINTN)TargetAddress) >= =3D (UINTN)GetEndPointer (StoreInfo->VariableStoreHeader))) + { + // + // Reach the end of variable store. + // + return FALSE; + } + + if (((UINTN)Variable < (UINTN)TargetAddress) && (((UINTN)Variable + Ge= tVariableHeaderSize (StoreInfo->AuthFlag)) > (UINTN)TargetAddress)) { + // + // Variable header pointed by Variable is inconsecutive, + // create a guid hob to combine the two partial variable header cont= ent together. + // + GuidHob =3D GetFirstGuidHob (&gEfiCallerIdGuid); + if (GuidHob !=3D NULL) { + *VariableHeader =3D (VARIABLE_HEADER *)GET_GUID_HOB_DATA (GuidHob); + } else { + *VariableHeader =3D (VARIABLE_HEADER *)BuildGuidHob (&gEfiCaller= IdGuid, GetVariableHeaderSize (StoreInfo->AuthFlag)); + PartialHeaderSize =3D (UINTN)TargetAddress - (UINTN)Variable; + // + // Partial content is in NV storage. + // + CopyMem ((UINT8 *)*VariableHeader, (UINT8 *)Variable, PartialHeade= rSize); + // + // Another partial content is in spare block. + // + CopyMem ((UINT8 *)*VariableHeader + PartialHeaderSize, (UINT8 *)(U= INTN)SpareAddress, GetVariableHeaderSize (StoreInfo->AuthFlag) - PartialHea= derSize); + } + } + } else { + if (Variable >=3D GetEndPointer (StoreInfo->VariableStoreHeader)) { + // + // Reach the end of variable store. + // + return FALSE; + } + } + + return IsValidVariableHeader (*VariableHeader); +} + +/** + Get variable name or data to output buffer. + + @param[in] StoreInfo Pointer to variable store info structure. + @param[in] NameOrData Pointer to the variable name/data that may be= inconsecutive. + @param[in] Size Variable name/data size. + @param[out] Buffer Pointer to output buffer to hold the variable= name/data. + +**/ +VOID +GetVariableNameOrData ( + IN VARIABLE_STORE_INFO *StoreInfo, + IN UINT8 *NameOrData, + IN UINTN Size, + OUT UINT8 *Buffer + ) +{ + EFI_PHYSICAL_ADDRESS TargetAddress; + EFI_PHYSICAL_ADDRESS SpareAddress; + UINTN PartialSize; + + if (StoreInfo->FtwLastWriteData !=3D NULL) { + TargetAddress =3D StoreInfo->FtwLastWriteData->TargetAddress; + SpareAddress =3D StoreInfo->FtwLastWriteData->SpareAddress; + if (((UINTN)NameOrData < (UINTN)TargetAddress) && (((UINTN)NameOrData = + Size) > (UINTN)TargetAddress)) { + // + // Variable name/data is inconsecutive. + // + PartialSize =3D (UINTN)TargetAddress - (UINTN)NameOrData; + // + // Partial content is in NV storage. + // + CopyMem (Buffer, NameOrData, PartialSize); + // + // Another partial content is in spare block. + // + CopyMem (Buffer + PartialSize, (UINT8 *)(UINTN)SpareAddress, Size - = PartialSize); + return; + } + } + + // + // Variable name/data is consecutive. + // + CopyMem (Buffer, NameOrData, Size); +} + +/** + + Internal function to retrieve variable information. + + @param[in,out] VariableInfo Pointer to variable information. + @param[in] StoreInfo Pointer to store copy of variable (optio= nal). + @param[in] VariablePtr Pointer to variable buffer. + @param[in] VariableHeader Pointer to variable header. + + @retval EFI_INVALID_PARAMETER One ore more required parameters are NULL. + @retval EFI_BUFFER_TOO_SMALL Given buffer is too small to hold data. + @retval EFI_SUCCESS Variable details are retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetVariableInfoInternal ( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo, + IN VARIABLE_STORE_INFO *StoreInfo OPTIONAL, + IN VARIABLE_HEADER *VariablePtr, + IN VARIABLE_HEADER *VariableHeader + ) +{ + VARIABLE_HEADER *VariableBuffer; + AUTHENTICATED_VARIABLE_HEADER *AuthVariableHeader; + UINTN NameSize; + UINTN DataSize; + UINTN VariableSize; + + if ((VariableInfo =3D=3D NULL) || (VariablePtr =3D=3D NULL) || (Variable= Header =3D=3D NULL)) { + ASSERT (VariableInfo !=3D NULL); + ASSERT (VariablePtr !=3D NULL); + ASSERT (VariableHeader !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + VariableBuffer =3D VariableInfo->Buffer; + + // + // Make a copy of the whole variable if VariableInfo->Buffer is given. B= ut + // don't do this if StoreInfo is not given, because VariableInfo->Buffer + // has already hold a copy of variable in such situation. + // + NameSize =3D NameSizeOfVariable (VariableHeader, VariableInfo->Flags.Aut= h); + DataSize =3D DataSizeOfVariable (VariableHeader, VariableInfo->Flags.Aut= h); + if ((VariableBuffer !=3D NULL) && (VariableBuffer !=3D VariablePtr)) { + if (StoreInfo !=3D NULL) { + CopyMem ( + VariableBuffer, + VariableHeader, + GetVariableHeaderSize (VariableInfo->Flags.Auth) + ); + GetVariableNameOrData ( + StoreInfo, + (UINT8 *)GetVariableNamePtr (VariablePtr, VariableInfo->Flags.Auth= ), + NameSize, + (UINT8 *)GetVariableNamePtr (VariableBuffer, VariableInfo->Flags.A= uth) + ); + GetVariableNameOrData ( + StoreInfo, + (UINT8 *)GetVariableDataPtr (VariablePtr, VariableHeader, Variable= Info->Flags.Auth), + DataSize, + (UINT8 *)GetVariableDataPtr (VariableBuffer, VariableHeader, Varia= bleInfo->Flags.Auth) + ); + } else { + // + // Suppose the variable is in consecutive space. + // + VariableSize =3D GetVariableHeaderSize (VariableInfo->Flags.Auth) + + NameSize + GET_PAD_SIZE (NameSize) + + DataSize; + CopyMem (VariableBuffer, VariablePtr, VariableSize); + } + } + + // + // Generally, if no consecutive buffer passed in, don't return back any = data. + // + // If follow pointers are NULL, return back pointers to following data i= nside + // VariableInfo->Buffer, if it's given. + // + // VariableInfo->Header.VariableName + // VariableInfo->Header.Data + // VariableInfo->Header.VendorGuid + // VariableInfo->Header.TimeStamp + // + // Otherwise, suppose they're buffers used to hold a copy of correspondi= ng + // data. + // + // + + // + // AuthVariable header + // + if (VariableInfo->Flags.Auth) { + AuthVariableHeader =3D (AUTHENTICATED_VARIABLE_HEADER *)VariableHeader; + + VariableInfo->Header.State =3D AuthVariableHeader->State; + VariableInfo->Header.Attributes =3D AuthVariableHeader->Attributes; + VariableInfo->Header.PubKeyIndex =3D AuthVariableHeader->PubKeyInde= x; + VariableInfo->Header.MonotonicCount =3D ReadUnaligned64 ( + &(AuthVariableHeader->Monotoni= cCount) + ); + if (VariableInfo->Header.TimeStamp !=3D NULL) { + CopyMem ( + VariableInfo->Header.TimeStamp, + &AuthVariableHeader->TimeStamp, + sizeof (EFI_TIME) + ); + } else if (VariableBuffer !=3D NULL) { + AuthVariableHeader =3D (AUTHENTICATED_VARIABLE_HEADER *)= VariableBuffer; + VariableInfo->Header.TimeStamp =3D &AuthVariableHeader->TimeStamp; + } + } else { + VariableInfo->Header.State =3D VariableHeader->State; + VariableInfo->Header.Attributes =3D VariableHeader->Attributes; + VariableInfo->Header.PubKeyIndex =3D 0; + VariableInfo->Header.MonotonicCount =3D 0; + VariableInfo->Header.TimeStamp =3D NULL; + } + + // + // VendorGuid + // + if (VariableInfo->Header.VendorGuid !=3D NULL) { + CopyGuid ( + VariableInfo->Header.VendorGuid, + GetVendorGuidPtr (VariableHeader, VariableInfo->Flags.Auth) + ); + } else if (VariableBuffer !=3D NULL) { + VariableInfo->Header.VendorGuid + =3D GetVendorGuidPtr (VariableBuffer, VariableInfo->Flags.Auth); + } + + // + // VariableName + // + if ( (VariableInfo->Header.VariableName !=3D NULL) + && (VariableInfo->Header.NameSize >=3D NameSize)) + { + GetVariableNameOrData ( + StoreInfo, + (UINT8 *)GetVariableNamePtr (VariablePtr, VariableInfo->Flags.Auth), + NameSize, + (UINT8 *)VariableInfo->Header.VariableName + ); + } else if (VariableBuffer !=3D NULL) { + VariableInfo->Header.VariableName + =3D GetVariableNamePtr (VariableBuffer, VariableInfo->Flags.Auth); + } else if (VariableInfo->Header.VariableName !=3D NULL) { + return EFI_BUFFER_TOO_SMALL; + } + + // + // Data + // + if ( (VariableInfo->Header.Data !=3D NULL) + && (VariableInfo->Header.DataSize >=3D DataSize)) + { + GetVariableNameOrData ( + StoreInfo, + GetVariableDataPtr (VariablePtr, VariableHeader, StoreInfo->AuthFlag= ), + DataSize, + VariableInfo->Header.Data + ); + } else if (VariableBuffer !=3D NULL) { + VariableInfo->Header.Data + =3D GetVariableDataPtr (VariableBuffer, VariableBuffer, VariableInfo= ->Flags.Auth); + } else if (VariableInfo->Header.Data !=3D NULL) { + return EFI_BUFFER_TOO_SMALL; + } + + // + // Update size information about name & data. + // + VariableInfo->Header.NameSize =3D NameSize; + VariableInfo->Header.DataSize =3D DataSize; + + return EFI_SUCCESS; +} + +/** + + Retrieve details about a variable, given by VariableInfo->Buffer or + VariableInfo->Index, and pass the details back in VariableInfo->Header. + + This function is used to resolve the variable data structure into + VariableInfo->Header, for easier access later without revisiting the var= iable + data in variable store. If pointers in the structure of VariableInfo->He= ader + are not NULL, it's supposed that they are buffers passed in to hold a co= py of + data of corresponding data fields in variable data structure. Otherwise,= this + function simply returns pointers pointing to address of those data field= s. + + The variable is specified by either VariableInfo->Index or VariableInfo-= >Buffer. + If VariableInfo->Index is given, this function finds the corresponding v= ariable + first from variable storage according to the Index. + + If both VariableInfo->Index and VariableInfo->Buffer are given, it's sup= posed + that VariableInfo->Buffer is a buffer passed in to hold a whole copy of + requested variable data to be returned. + + @param[in,out] VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo is NULL or both VariableInfo= ->Buffer + and VariableInfo->Index are NULL (0). + @retval EFI_NOT_FOUND If given Buffer or Index is out of range = of + any given or internal storage copies. + @retval EFI_SUCCESS Variable details are retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetVariableInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo + ) +{ + VARIABLE_HEADER *VariablePtr; + VARIABLE_HEADER *VariableHeader; + VARIABLE_STORE_TYPE StoreType; + VARIABLE_STORE_INFO StoreInfo; + UINTN Offset; + + if ((VariableInfo =3D=3D NULL) || + ((VariableInfo->Buffer =3D=3D NULL) && (VariableInfo->StoreIndex =3D= =3D VAR_INDEX_INVALID))) + { + ASSERT (VariableInfo !=3D NULL); + ASSERT (VariableInfo->StoreIndex !=3D VAR_INDEX_INVALID || VariableInf= o->Buffer !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + StoreInfo.VariableStoreHeader =3D NULL; + for (StoreType =3D VariableStoreTypeHob; StoreType < VariableStoreTypeMa= x; ++StoreType) { + GetVariableStore (StoreType, &StoreInfo); + if (StoreInfo.VariableStoreHeader !=3D NULL) { + break; + } + } + + ASSERT (StoreInfo.VariableStoreHeader !=3D NULL); + + // + // No StoreIndex? Don't retrieve variable information from store but jus= t from + // VariableInfo->Buffer. + // + if (VariableInfo->StoreIndex =3D=3D VAR_INDEX_INVALID) { + VariablePtr =3D VariableInfo->Buffer; + VariableHeader =3D VariablePtr; + + return GetVariableInfoInternal (VariableInfo, NULL, VariablePtr, Varia= bleHeader); + } + + Offset =3D (UINTN)VariableInfo->StoreIndex; + if ( (StoreInfo.FtwLastWriteData !=3D NULL) + && (Offset >=3D ((UINTN)StoreInfo.FtwLastWriteData->TargetAddress + - (UINTN)StoreInfo.VariableStoreHeader))) + { + Offset -=3D ((UINTN)StoreInfo.FtwLastWriteData->TargetAddress + - (UINTN)StoreInfo.VariableStoreHeader); + VariablePtr =3D (VARIABLE_HEADER *) + ((UINTN)StoreInfo.FtwLastWriteData->SpareAddress + Offse= t); + } else { + VariablePtr =3D (VARIABLE_HEADER *) + ((UINTN)StoreInfo.VariableStoreHeader + Offset); + } + + // + // Note that variable might be in unconsecutive space. Always get a copy + // of its header in consecutive buffer. + // + if (!GetVariableHeader (&StoreInfo, VariablePtr, &VariableHeader)) { + return EFI_NOT_FOUND; + } + + return GetVariableInfoInternal (VariableInfo, &StoreInfo, VariablePtr, V= ariableHeader); +} + +/** + + Retrieve details of the variable next to given variable within VariableS= tore. + + If VarInfo->Buffer is NULL, the first one in VariableStore is returned. + + VariableStart and/or VariableEnd can be given optionally for the situati= on + in which the valid storage space is smaller than the VariableStore->Size. + This usually happens when PEI variable services make a compact variable + cache to save memory, which cannot make use VariableStore->Size to deter= mine + the correct variable storage range. + + @param[in,out] VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo or VariableStore is NULL. + @retval EFI_NOT_FOUND If the end of VariableStore is reached. + @retval EFI_SUCCESS The next variable is retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetNextVariableInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo + ) +{ + VARIABLE_HEADER *VariablePtr; + VARIABLE_HEADER *VariableHeader; + VARIABLE_STORE_INFO StoreInfo; + VARIABLE_STORE_TYPE StoreType; + UINTN Offset; + + if (VariableInfo =3D=3D NULL) { + ASSERT (VariableInfo !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + StoreInfo.VariableStoreHeader =3D NULL; + for (StoreType =3D VariableStoreTypeHob; StoreType < VariableStoreTypeMa= x; ++StoreType) { + GetVariableStore (StoreType, &StoreInfo); + if (StoreInfo.VariableStoreHeader !=3D NULL) { + break; + } + } + + ASSERT (StoreInfo.VariableStoreHeader !=3D NULL); + + // + // VariableInfo->StoreIndex is supposed to be the index to variable found + // last time. Use it to get the variable next to it in store. If it's in= valid, + // return the first variable available in store. + // + VariableInfo->Flags.Auth =3D StoreInfo.AuthFlag; + if (VariableInfo->StoreIndex =3D=3D VAR_INDEX_INVALID) { + VariablePtr =3D GetStartPointer (StoreInfo.VariableStoreHeader); + } else { + Offset =3D (UINTN)VariableInfo->StoreIndex; + if ( (StoreInfo.FtwLastWriteData !=3D NULL) + && (Offset >=3D ((UINTN)StoreInfo.FtwLastWriteData->TargetAddress + - (UINTN)StoreInfo.VariableStoreHeader))) + { + Offset -=3D ((UINTN)StoreInfo.FtwLastWriteData->TargetAddress + - (UINTN)StoreInfo.VariableStoreHeader); + VariablePtr =3D (VARIABLE_HEADER *) + ((UINTN)StoreInfo.FtwLastWriteData->SpareAddress + Off= set); + } else { + VariablePtr =3D (VARIABLE_HEADER *) + ((UINTN)StoreInfo.VariableStoreHeader + Offset); + } + + // + // Note that variable might be in unconsecutive space. Always get a co= py + // of its header in consecutive buffer. + // + if (!GetVariableHeader (&StoreInfo, VariablePtr, &VariableHeader)) { + return EFI_NOT_FOUND; + } + + VariablePtr =3D GetNextVariablePtr (&StoreInfo, VariablePtr, VariableH= eader); + } + + // + // Get a copy of variable header in consecutive buffer. + // + if (!GetVariableHeader (&StoreInfo, VariablePtr, &VariableHeader)) { + return EFI_NOT_FOUND; + } + + // + // Use the offset to the start of variable store as index of the variabl= e. + // + if ( (StoreInfo.FtwLastWriteData =3D=3D NULL) + || ((UINTN)VariablePtr < (UINTN)StoreInfo.FtwLastWriteData->TargetAdd= ress)) + { + VariableInfo->StoreIndex + =3D (UINT64)((UINTN)VariablePtr - (UINTN)StoreInfo.VariableStoreHead= er); + } else { + VariableInfo->StoreIndex + =3D (UINT64)((UINTN)StoreInfo.FtwLastWriteData->TargetAddress + - (UINTN)StoreInfo.VariableStoreHeader); + VariableInfo->StoreIndex + +=3D (UINT64)((UINTN)VariablePtr - (UINTN)StoreInfo.FtwLastWriteData= ->SpareAddress); + } + + if ((StoreType =3D=3D VariableStoreTypeHob) && (VariableInfo->Buffer =3D= =3D NULL)) { + VariableInfo->Buffer =3D VariablePtr; + } + + return GetVariableInfoInternal (VariableInfo, &StoreInfo, VariablePtr, V= ariableHeader); +} diff --git a/MdeModulePkg/Universal/Variable/Pei/VariableStore.c b/MdeModul= ePkg/Universal/Variable/Pei/VariableStore.c new file mode 100644 index 000000000000..72bd17a43048 --- /dev/null +++ b/MdeModulePkg/Universal/Variable/Pei/VariableStore.c @@ -0,0 +1,305 @@ +/** @file + Implement ReadOnly Variable Services required by PEIM and install + PEI ReadOnly Varaiable2 PPI. These services operates the non volatile st= orage space. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include "VariableParsing.h" +#include "VariableStore.h" + +/** + Get variable store status. + + @param[in] VarStoreHeader Pointer to the Variable Store Header. + + @retval EfiRaw Variable store is raw + @retval EfiValid Variable store is valid + @retval EfiInvalid Variable store is invalid + +**/ +VARIABLE_STORE_STATUS +GetVariableStoreStatus ( + IN VARIABLE_STORE_HEADER *VarStoreHeader + ) +{ + if ((CompareGuid (&VarStoreHeader->Signature, &gEfiAuthenticatedVariable= Guid) || + CompareGuid (&VarStoreHeader->Signature, &gEfiVariableGuid)) && + (VarStoreHeader->Format =3D=3D VARIABLE_STORE_FORMATTED) && + (VarStoreHeader->State =3D=3D VARIABLE_STORE_HEALTHY) + ) + { + return EfiValid; + } + + if ((((UINT32 *)(&VarStoreHeader->Signature))[0] =3D=3D 0xffffffff) && + (((UINT32 *)(&VarStoreHeader->Signature))[1] =3D=3D 0xffffffff) && + (((UINT32 *)(&VarStoreHeader->Signature))[2] =3D=3D 0xffffffff) && + (((UINT32 *)(&VarStoreHeader->Signature))[3] =3D=3D 0xffffffff) && + (VarStoreHeader->Size =3D=3D 0xffffffff) && + (VarStoreHeader->Format =3D=3D 0xff) && + (VarStoreHeader->State =3D=3D 0xff) + ) + { + return EfiRaw; + } else { + return EfiInvalid; + } +} + +/** + Reports HOB variable store is available or not. + + @retval EFI_NOT_READY HOB variable store info not available. + @retval EFI_NOT_FOUND HOB variable store is NOT available. + @retval EFI_SUCCESS HOB variable store is available. +**/ +EFI_STATUS +EFIAPI +IsHobVariableStoreAvailable ( + VOID + ) +{ + EFI_HOB_GUID_TYPE *GuidHob; + VOID *VariableStoreInfoHob; + + // + // Discover if Variable Store Info Hob has been published by platform dr= iver. + // It contains information regards to HOB or NV Variable Store availabil= ity + // + GuidHob =3D GetFirstGuidHob (&gEfiPeiVariableStoreDiscoveredPpiGuid); + if (GuidHob =3D=3D NULL) { + return EFI_NOT_READY; + } + + // + // Check if HOB Variable Store is available + // + VariableStoreInfoHob =3D GET_GUID_HOB_DATA (GuidHob); + if (*(BOOLEAN *)VariableStoreInfoHob =3D=3D TRUE) { + return EFI_SUCCESS; + } + + // + // This might be NV Variable Store + // + return EFI_NOT_FOUND; +} + +/** + Get HOB variable store. + + @param[out] StoreInfo Return the store info. + +**/ +VOID +GetHobVariableStore ( + OUT VARIABLE_STORE_INFO *StoreInfo + ) +{ + EFI_HOB_GUID_TYPE *GuidHob; + + // + // Make sure there is no more than one Variable HOB. + // + DEBUG_CODE_BEGIN (); + GuidHob =3D GetFirstGuidHob (&gEfiAuthenticatedVariableGuid); + if (GuidHob !=3D NULL) { + if ((GetNextGuidHob (&gEfiAuthenticatedVariableGuid, GET_NEXT_HOB (Gui= dHob)) !=3D NULL)) { + DEBUG ((DEBUG_ERROR, "ERROR: Found two Auth Variable HOBs\n")); + ASSERT (FALSE); + } else if (GetFirstGuidHob (&gEfiVariableGuid) !=3D NULL) { + DEBUG ((DEBUG_ERROR, "ERROR: Found one Auth + one Normal Variable HO= Bs\n")); + ASSERT (FALSE); + } + } else { + GuidHob =3D GetFirstGuidHob (&gEfiVariableGuid); + if (GuidHob !=3D NULL) { + if ((GetNextGuidHob (&gEfiVariableGuid, GET_NEXT_HOB (GuidHob)) !=3D= NULL)) { + DEBUG ((DEBUG_ERROR, "ERROR: Found two Normal Variable HOBs\n")); + ASSERT (FALSE); + } + } + } + + DEBUG_CODE_END (); + + GuidHob =3D GetFirstGuidHob (&gEfiAuthenticatedVariableGuid); + if (GuidHob !=3D NULL) { + StoreInfo->VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)GET_GUID_H= OB_DATA (GuidHob); + StoreInfo->AuthFlag =3D TRUE; + } else { + GuidHob =3D GetFirstGuidHob (&gEfiVariableGuid); + if (GuidHob !=3D NULL) { + StoreInfo->VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)GET_GUID= _HOB_DATA (GuidHob); + StoreInfo->AuthFlag =3D FALSE; + } + } +} + +/** + Get NV variable store. + + @param[out] StoreInfo Return the store info. + @param[out] VariableFvHeader Return header of FV containing the sto= re. + +**/ +VOID +GetNvVariableStore ( + OUT VARIABLE_STORE_INFO *StoreInfo, + OUT EFI_FIRMWARE_VOLUME_HEADER **VariableFvHeader + ) +{ + EFI_HOB_GUID_TYPE *GuidHob; + EFI_FIRMWARE_VOLUME_HEADER *FvHeader; + VARIABLE_STORE_HEADER *StoreHeader; + FAULT_TOLERANT_WRITE_LAST_WRITE_DATA *HobData; + FAULT_TOLERANT_WRITE_LAST_WRITE_DATA *FtwLastWriteData; + EFI_PHYSICAL_ADDRESS NvStorageBase; + UINT32 NvStorageSize; + UINT32 BackUpOffset; + + NvStorageSize =3D PcdGet32 (PcdFlashNvStorageVariableSize); + NvStorageBase =3D (EFI_PHYSICAL_ADDRESS) + (PcdGet64 (PcdFlashNvStorageVariableBase64) !=3D 0) + ? PcdGet64 (PcdFlashNvStorageVariableBase64) + : PcdGet32 (PcdFlashNvStorageVariableBase); + ASSERT (NvStorageBase !=3D 0); + + FvHeader =3D (EFI_FIRMWARE_VOLUME_HEADER *)(UINTN)NvStorageBase; + + // + // Check the FTW last write data hob. + // + BackUpOffset =3D 0; + FtwLastWriteData =3D NULL; + HobData =3D NULL; + GuidHob =3D GetFirstGuidHob (&gEdkiiFaultTolerantWriteGuid); + + if (GuidHob !=3D NULL) { + HobData =3D (FAULT_TOLERANT_WRITE_LAST_WRITE_DATA *)GET_GUID_HOB_DATA = (GuidHob); + if (HobData->TargetAddress =3D=3D NvStorageBase) { + // + // Let FvHeader point to spare block. + // + DEBUG (( + EFI_D_INFO, + "PeiVariable: NV storage is backed up in spare block: 0x%x\n", + (UINTN)HobData->SpareAddress + )); + + FvHeader =3D (EFI_FIRMWARE_VOLUME_HEADER *)(UINTN)HobData->SpareAddr= ess; + HobData =3D NULL; + } else if ((HobData->TargetAddress > NvStorageBase) && + (HobData->TargetAddress < (NvStorageBase + NvStorageSize))) + { + // + // Flash NV storage from the offset is backed up in spare block. + // + BackUpOffset =3D (UINT32)(HobData->TargetAddress - NvStorageBase); + DEBUG (( + EFI_D_INFO, + "PeiVariable: High partial NV storage from offset: %x is backed up= in spare block: 0x%x\n", + BackUpOffset, + (UINTN)FtwLastWriteData->SpareAddress + )); + // + // At least one block data in flash NV storage is still valid, so st= ill + // leave FvHeader point to NV storage base. + // + } + } + + if (StoreInfo !=3D NULL) { + StoreInfo->FtwLastWriteData =3D HobData; + } + + if (VariableFvHeader !=3D NULL) { + *VariableFvHeader =3D FvHeader; + } + + // + // Check if the Firmware Volume is not corrupted + // + if ((FvHeader->Signature =3D=3D EFI_FVH_SIGNATURE) && + CompareGuid (&gEfiSystemNvDataFvGuid, &FvHeader->FileSystemGuid)) + { + StoreHeader =3D (VARIABLE_STORE_HEADER *)((UINTN)FvHeader + FvHeader->= HeaderLength); + } else { + StoreHeader =3D NULL; + DEBUG ((DEBUG_ERROR, "Firmware Volume for Variable Store is corrupted\= n")); + } + + if (StoreInfo !=3D NULL) { + StoreInfo->VariableStoreHeader =3D StoreHeader; + if (StoreHeader !=3D NULL) { + StoreInfo->AuthFlag =3D CompareGuid ( + &StoreHeader->Signature, + &gEfiAuthenticatedVariableGuid + ); + } + } +} + +/** + Return the variable store header and the store info based on the Index. + + @param[in] Type The type of the variable store. + @param[out] StoreInfo Return the store info. + + @return Pointer to the variable store header. +**/ +VARIABLE_STORE_HEADER * +GetVariableStore ( + IN VARIABLE_STORE_TYPE Type, + OUT VARIABLE_STORE_INFO *StoreInfo + ) +{ + EFI_HOB_GUID_TYPE *GuidHob; + + StoreInfo->VariableStoreHeader =3D NULL; + StoreInfo->IndexTable =3D NULL; + StoreInfo->FtwLastWriteData =3D NULL; + StoreInfo->AuthFlag =3D FALSE; + switch (Type) { + case VariableStoreTypeHob: + GetHobVariableStore (StoreInfo); + break; + + case VariableStoreTypeNv: + if (!PcdGetBool (PcdEmuVariableNvModeEnable)) { + // + // Emulated non-volatile variable mode is not enabled. + // + GetNvVariableStore (StoreInfo, NULL); + if (StoreInfo->VariableStoreHeader !=3D NULL) { + GuidHob =3D GetFirstGuidHob (&gEfiVariableIndexTableGuid); + if (GuidHob !=3D NULL) { + StoreInfo->IndexTable =3D GET_GUID_HOB_DATA (GuidHob); + } else { + // + // If it's the first time to access variable region in flash, = create a guid hob to record + // VAR_ADDED type variable info. + // Note that as the resource of PEI phase is limited, only sto= re the limited number of + // VAR_ADDED type variables to reduce access time. + // + StoreInfo->IndexTable =3D (VARIABLE_INDEX_TABLE *= )BuildGuidHob (&gEfiVariableIndexTableGuid, sizeof (VARIABLE_INDEX_TABLE)); + StoreInfo->IndexTable->Length =3D 0; + StoreInfo->IndexTable->StartPtr =3D GetStartPointer (StoreI= nfo->VariableStoreHeader); + StoreInfo->IndexTable->EndPtr =3D GetEndPointer (StoreInf= o->VariableStoreHeader); + StoreInfo->IndexTable->GoneThrough =3D 0; + } + } + } + + break; + + default: + ASSERT (FALSE); + break; + } + + return StoreInfo->VariableStoreHeader; +} --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89426): https://edk2.groups.io/g/devel/message/89426 Mute This Topic: https://groups.io/mt/90781893/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89428+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89428+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255521; cv=none; d=zohomail.com; s=zohoarc; b=XZE6HvFCAd01vaEj4ruxAdcnX+mURsRdHux8uLTl0I0iP8jKQihsB9vz0j3l8ALPbKkeW18dWz1lT6FLeJj/VtlCvp32l0L2bB4rSO9/MWtW+WYFQ5kg0qZkrN90tGHa7p10M+QJgCbr/biY1+R2TiBiJUh5ba9svZ1CxEJATWk= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255521; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=7Qd0vSppBpK9Y9veiO/h68VTzdf1QganRdvXYQhQHwo=; b=P+0KeqN2z72xU1w88ocKi+xD+Njes2jIqMN+xmcUNue592FalzcE4wFQH3s45FcmpJPJHhv9h41IWw//CuaHvB6XnCFJqEzs5PZQHgL+/saWcEc3tp75jsMLRJ4NrgK/nsCoQVCenffxbkLJE/459aCB2v2SXppVELxU7XXKTmQ= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89428+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255521642295.686450146404; Fri, 29 Apr 2022 11:05:21 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id nCwpYY1788612xILdDsQHR82; Fri, 29 Apr 2022 11:05:21 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web08.13430.1651255518273693340 for ; Fri, 29 Apr 2022 11:05:20 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659205" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659205" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:17 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955685" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:16 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 09/28] MdeModulePkg: Add support for Protected Variables Date: Fri, 29 Apr 2022 11:04:11 -0700 Message-Id: <20220429180430.3292-10-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: BDshcsX4X9cfloPSXqQq1kk8x1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255521; bh=qCik+zdReI3bhdNErAIBoGSGBDQIvYaxZVXNiF4WyM0=; h=Cc:Date:From:Reply-To:Subject:To; b=Gm5DMJ7hYqmFGV9S0LvvYRwmCKMolZs9ugdvudps5pH/tqasFY62ErluK7tbu3m59Xu rjgmqrSETlP4ORfUjwgcR1I+9xo14Yb0qky+GnXafT10VmYRt4B7wS7gK0ph8mxeNrS5K JESpBGGae7sF7L09v3zvxuVfaCbajOEP11E= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255522959100028 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add support for Protected Variables. Add new API to retrieve Variable Infomation and data. Add new API to update variable in non-volatile storage or cached copy. Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeDxe.inf | = 3 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.inf | = 3 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.inf | = 4 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableStandaloneMm.inf | = 3 +- MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.h | 12= 6 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.h | 9= 1 +- MdeModulePkg/Universal/Variable/RuntimeDxe/Reclaim.c | 34= 9 +++- MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.c | 213= 9 +++++++++++--------- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableDxe.c | 2= 6 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableExLib.c | 16= 7 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableNonVolatile.c | 19= 4 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.c | 32= 0 ++- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeCache.c | = 2 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.c | 3= 9 +- MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.c | 4= 1 +- 15 files changed, 2454 insertions(+), 1053 deletions(-) diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeDxe.= inf b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeDxe.inf index c9434df631ee..c0b90e6ca066 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeDxe.inf +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeDxe.inf @@ -9,7 +9,7 @@ # This external input must be validated carefully to avoid security issue= s such as # buffer overflow or integer overflow. # -# Copyright (c) 2006 - 2019, Intel Corporation. All rights reserved.
+# Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
# Copyright (c) Microsoft Corporation. # SPDX-License-Identifier: BSD-2-Clause-Patent # @@ -73,6 +73,7 @@ [LibraryClasses] VarCheckLib VariablePolicyLib VariablePolicyHelperLib + ProtectedVariableLib =20 [Protocols] gEfiFirmwareVolumeBlockProtocolGuid ## CONSUMES diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.inf b/M= deModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.inf index eaa97a01c6e5..6f9f027fbb0f 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.inf +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.inf @@ -18,7 +18,7 @@ # may not be modified without authorization. If platform fails to protect= these resources, # the authentication service provided in this driver will be broken, and = the behavior is undefined. # -# Copyright (c) 2010 - 2019, Intel Corporation. All rights reserved.
+# Copyright (c) 2010 - 2022, Intel Corporation. All rights reserved.
# Copyright (c) Microsoft Corporation. # SPDX-License-Identifier: BSD-2-Clause-Patent # @@ -82,6 +82,7 @@ [LibraryClasses] UefiBootServicesTableLib VariablePolicyLib VariablePolicyHelperLib + ProtectedVariableLib =20 [Protocols] gEfiSmmFirmwareVolumeBlockProtocolGuid ## CONSUMES diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeD= xe.inf b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.i= nf index a0d8b2267e92..5d2fc78ea917 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.inf +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.inf @@ -13,7 +13,7 @@ # may not be modified without authorization. If platform fails to protect= these resources, # the authentication service provided in this driver will be broken, and = the behavior is undefined. # -# Copyright (c) 2010 - 2019, Intel Corporation. All rights reserved.
+# Copyright (c) 2010 - 2022, Intel Corporation. All rights reserved.
# Copyright (c) Microsoft Corporation.
# SPDX-License-Identifier: BSD-2-Clause-Patent # @@ -61,6 +61,8 @@ [LibraryClasses] SafeIntLib PcdLib MmUnblockMemoryLib + ProtectedVariableLib + IoLib =20 [Protocols] gEfiVariableWriteArchProtocolGuid ## PRODUCES diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableStandaloneM= m.inf b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableStandaloneMm.inf index d8c4f77e7f1f..6ea7b8d4293e 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableStandaloneMm.inf +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableStandaloneMm.inf @@ -18,7 +18,7 @@ # may not be modified without authorization. If platform fails to protect= these resources, # the authentication service provided in this driver will be broken, and = the behavior is undefined. # -# Copyright (c) 2010 - 2019, Intel Corporation. All rights reserved.
+# Copyright (c) 2010 - 2022, Intel Corporation. All rights reserved.
# Copyright (c) 2018, Linaro, Ltd. All rights reserved.
# Copyright (c) Microsoft Corporation. # SPDX-License-Identifier: BSD-2-Clause-Patent @@ -78,6 +78,7 @@ [LibraryClasses] VarCheckLib VariablePolicyLib VariablePolicyHelperLib + ProtectedVariableLib =20 [Protocols] gEfiSmmFirmwareVolumeBlockProtocolGuid ## CONSUMES diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.h b/MdeMod= ulePkg/Universal/Variable/RuntimeDxe/Variable.h index 31e408976a35..97b4f9c906ff 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.h +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.h @@ -2,7 +2,7 @@ The internal header file includes the common header files, defines internal structure and functions used by Variable modules. =20 -Copyright (c) 2006 - 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ @@ -31,6 +31,7 @@ SPDX-License-Identifier: BSD-2-Clause-Patent #include #include #include +#include #include #include #include @@ -823,4 +824,127 @@ VariableExLibAtRuntime ( VOID ); =20 +/** + Is user variable? + + @param[in] Variable Pointer to variable header. + + @retval TRUE User variable. + @retval FALSE System variable. + +**/ +BOOLEAN +IsUserVariable ( + IN VARIABLE_HEADER *Variable + ); + +/** + + Variable store garbage collection and reclaim operation. + + @param[in] VariableBase Base address of variable store. + @param[out] LastVariableOffset Offset of last variable. + @param[in] IsVolatile The variable store is volatile o= r not; + if it is non-volatile, need FTW. + @param[in, out] UpdatingPtrTrack Pointer to updating variable poi= nter track structure. + @param[in] NewVariable Pointer to new variable. + @param[in] NewVariableSize New variable size. + + @return EFI_SUCCESS Reclaim operation has finished succ= essfully. + @return EFI_OUT_OF_RESOURCES No enough memory resources or varia= ble space. + @return Others Unexpect error happened during recl= aim operation. + +**/ +EFI_STATUS +Reclaim ( + IN EFI_PHYSICAL_ADDRESS VariableBase, + OUT UINTN *LastVariableOffset, + IN BOOLEAN IsVolatile, + IN OUT VARIABLE_POINTER_TRACK *UpdatingPtrTrack, + IN VARIABLE_HEADER *NewVariable, + IN UINTN NewVariableSize + ); + +/** + + This function writes data to the FWH at the correct LBA even if the LBAs + are fragmented. + + @param Global Pointer to VARIABLE_GLOBAL structure. + @param Volatile Point out the Variable is Volatile or Non= -Volatile. + @param SetByIndex TRUE if target pointer is given as index. + FALSE if target pointer is absolute. + @param Fvb Pointer to the writable FVB protocol. + @param DataPtrIndex Pointer to the Data from the end of VARIA= BLE_STORE_HEADER + structure. + @param DataSize Size of data to be written. + @param Buffer Pointer to the buffer from which data is = written. + + @retval EFI_INVALID_PARAMETER Parameters not valid. + @retval EFI_UNSUPPORTED Fvb is a NULL for Non-Volatile variable u= pdate. + @retval EFI_OUT_OF_RESOURCES The remaining size is not enough. + @retval EFI_SUCCESS Variable store successfully updated. + +**/ +EFI_STATUS +UpdateVariableStore ( + IN VARIABLE_GLOBAL *Global, + IN BOOLEAN Volatile, + IN BOOLEAN SetByIndex, + IN EFI_FIRMWARE_VOLUME_BLOCK_PROTOCOL *Fvb, + IN UINTN DataPtrIndex, + IN UINT32 DataSize, + IN UINT8 *Buffer + ); + +/** + Update partial data of a variable on NV storage and/or cached copy. + + @param[in] VariableInfo Pointer to a variable with detailed informatio= n. + @param[in] Offset Offset to write from. + @param[in] Size Size of data Buffer to update. + @param[in] Buffer Pointer to data buffer to update. + + @retval EFI_SUCCESS The variable data was updated successful= ly. + @retval EFI_UNSUPPORTED If this function is called directly in r= untime. + @retval EFI_INVALID_PARAMETER If VariableInfo, Buffer or Size are not = valid. + @retval Others Failed to update NV storage or variable = cache. + +**/ +EFI_STATUS +EFIAPI +VariableExLibUpdateNvVariable ( + IN PROTECTED_VARIABLE_INFO *VariableInfo, + IN UINTN Offset, + IN UINT32 Size, + IN UINT8 *Buffer + ); + +/** + Finds the given variable in a variable store in SMM. + + Caution: This function may receive untrusted input. + The data size is external input, so this function will validate it caref= ully to avoid buffer overflow. + + @param[in] VariableName Name of Variable to be found. + @param[in] VendorGuid Variable vendor GUID. + @param[out] Attributes Attribute value of the variable found. + @param[in, out] DataSize Size of Data found. If size is less t= han the + data, this value contains the require= d size. + @param[out] Data Data pointer. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER Invalid parameter. + @retval EFI_NOT_FOUND The specified variable could not be f= ound. + +**/ +EFI_STATUS +FindVariableInSmm ( + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + OUT UINT32 *Attributes OPTIONAL, + IN OUT UINTN *DataSize, + OUT VOID *Data OPTIONAL + ); + #endif diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.h b= /MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.h index 951e8a089e34..3a4e8019aaf9 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.h +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.h @@ -2,7 +2,7 @@ Functions in this module are associated with variable parsing operations= and are intended to be usable across variable driver source files. =20 -Copyright (c) 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2019 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ @@ -19,6 +19,7 @@ SPDX-License-Identifier: BSD-2-Clause-Patent =20 @param[in] Variable Pointer to the Variable Header. @param[in] VariableStoreEnd Pointer to the Variable Store End. + @param[in] AuthFormat Auth-variable indicator. =20 @retval TRUE Variable header is valid. @retval FALSE Variable header is not valid. @@ -27,7 +28,8 @@ SPDX-License-Identifier: BSD-2-Clause-Patent BOOLEAN IsValidVariableHeader ( IN VARIABLE_HEADER *Variable, - IN VARIABLE_HEADER *VariableStoreEnd + IN VARIABLE_HEADER *VariableStoreEnd, + IN BOOLEAN AuthFormat ); =20 /** @@ -192,6 +194,28 @@ GetVariableDataOffset ( IN BOOLEAN AuthFormat ); =20 +/** + Get variable data payload. + + @param[in] Variable Pointer to the Variable Header. + @param[out] Data Pointer to buffer used to store the variabl= e data. + @param[in] DataSize Size of buffer passed by Data. + @param[out] DataSize Size of data copied into Data buffer. + @param[in] AuthFlag Auth-variable indicator. + + @return EFI_SUCCESS Data was fetched. + @return EFI_INVALID_PARAMETER DataSize is NULL. + @return EFI_BUFFER_TOO_SMALL DataSize is smaller than size of variabl= e data. + +**/ +EFI_STATUS +GetVariableData ( + IN VARIABLE_HEADER *Variable, + IN OUT VOID *Data, + IN OUT UINT32 *DataSize, + IN BOOLEAN AuthFlag + ); + /** =20 This code gets the pointer to the next variable header. @@ -344,4 +368,67 @@ UpdateVariableInfo ( IN OUT VARIABLE_INFO_ENTRY **VariableInfo ); =20 +/** + + Retrieve details of the variable next to given variable within VariableS= tore. + + If VarInfo->Address is NULL, the first one in VariableStore is returned. + + VariableStart and/or VariableEnd can be given optionally for the situati= on + in which the valid storage space is smaller than the VariableStore->Size. + This usually happens when PEI variable services make a compact variable + cache to save memory, which cannot make use VariableStore->Size to deter= mine + the correct variable storage range. + + @param VariableStore Pointer to a variable storage. It's opti= onal. + @param VariableStart Start point of valid range in VariableSt= ore. + @param VariableEnd End point of valid range in VariableStor= e. + @param VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo or VariableStore is NULL. + @retval EFI_NOT_FOUND If the end of VariableStore is reached. + @retval EFI_SUCCESS The next variable is retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetNextVariableInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ); + +/** + + Retrieve details about a variable and return them in VariableInfo->Heade= r. + + If VariableInfo->Address is given, this function will calculate its offs= et + relative to given variable storage via VariableStore; Otherwise, it will= try + other internal variable storages or cached copies. It's assumed that, fo= r all + copies of NV variable storage, all variables are stored in the same rela= tive + position. If VariableInfo->Address is found in the range of any storage = copies, + its offset relative to that storage should be the same in other copies. + + If VariableInfo->Offset is given (non-zero) but not VariableInfo->Addres= s, + this function will return the variable memory address inside VariableSto= re, + if given, via VariableInfo->Address; Otherwise, the address of other sto= rage + copies will be returned, if any. + + For a new variable whose offset has not been determined, a value of -1 as + VariableInfo->Offset should be passed to skip the offset calculation. + + @param VariableStore Pointer to a variable storage. It's opti= onal. + @param VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo is NULL or both VariableInfo= ->Address + and VariableInfo->Offset are NULL (0). + @retval EFI_NOT_FOUND If given Address or Offset is out of rang= e of + any given or internal storage copies. + @retval EFI_SUCCESS Variable details are retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetVariableInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ); + #endif diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/Reclaim.c b/MdeModu= lePkg/Universal/Variable/RuntimeDxe/Reclaim.c index fe64d0a2b3dd..a5b7f8a1fbe2 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/Reclaim.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/Reclaim.c @@ -2,12 +2,15 @@ Handles non-volatile variable store garbage collection, using FTW (Fault Tolerant Write) protocol. =20 -Copyright (c) 2006 - 2015, Intel Corporation. All rights reserved.
+Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ =20 #include "Variable.h" +#include "VariableNonVolatile.h" +#include "VariableParsing.h" +#include "VariableRuntimeCache.h" =20 /** Gets LBA of block and offset by given address. @@ -155,3 +158,347 @@ FtwVariableSpace ( =20 return Status; } + +/** + + Variable store garbage collection and reclaim operation. + + @param[in] VariableBase Base address of variable store. + @param[out] LastVariableOffset Offset of last variable. + @param[in] IsVolatile The variable store is volatile o= r not; + if it is non-volatile, need FTW. + @param[in, out] UpdatingPtrTrack Pointer to updating variable poi= nter track structure. + @param[in] NewVariable Pointer to new variable. + @param[in] NewVariableSize New variable size. + + @return EFI_SUCCESS Reclaim operation has finished succ= essfully. + @return EFI_OUT_OF_RESOURCES No enough memory resources or varia= ble space. + @return Others Unexpect error happened during recl= aim operation. + +**/ +EFI_STATUS +Reclaim ( + IN EFI_PHYSICAL_ADDRESS VariableBase, + OUT UINTN *LastVariableOffset, + IN BOOLEAN IsVolatile, + IN OUT VARIABLE_POINTER_TRACK *UpdatingPtrTrack, + IN VARIABLE_HEADER *NewVariable, + IN UINTN NewVariableSize + ) +{ + VARIABLE_HEADER *Variable; + VARIABLE_HEADER *AddedVariable; + VARIABLE_HEADER *NextVariable; + VARIABLE_HEADER *NextAddedVariable; + VARIABLE_STORE_HEADER *VariableStoreHeader; + UINT8 *ValidBuffer; + UINTN MaximumBufferSize; + UINTN VariableSize; + UINTN NameSize; + UINT8 *CurrPtr; + VOID *Point0; + VOID *Point1; + BOOLEAN FoundAdded; + EFI_STATUS Status; + EFI_STATUS DoneStatus; + UINTN CommonVariableTotalSize; + UINTN CommonUserVariableTotalSize; + UINTN HwErrVariableTotalSize; + VARIABLE_HEADER *UpdatingVariable; + VARIABLE_HEADER *UpdatingInDeletedTransition; + BOOLEAN AuthFormat; + + AuthFormat =3D mVariableModuleGlobal->VariableGlobal.Au= thFormat; + UpdatingVariable =3D NULL; + UpdatingInDeletedTransition =3D NULL; + if (UpdatingPtrTrack !=3D NULL) { + UpdatingVariable =3D UpdatingPtrTrack->CurrPtr; + UpdatingInDeletedTransition =3D UpdatingPtrTrack->InDeletedTransitionP= tr; + } + + VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)((UINTN)VariableBase); + + CommonVariableTotalSize =3D 0; + CommonUserVariableTotalSize =3D 0; + HwErrVariableTotalSize =3D 0; + + if (IsVolatile || mVariableModuleGlobal->VariableGlobal.EmuNvMode) { + // + // Start Pointers for the variable. + // + Variable =3D GetStartPointer (VariableStoreHeader); + MaximumBufferSize =3D sizeof (VARIABLE_STORE_HEADER); + + while (IsValidVariableHeader (Variable, GetEndPointer (VariableStoreHe= ader), AuthFormat)) { + NextVariable =3D GetNextVariablePtr (Variable, AuthFormat); + if (((Variable->State =3D=3D VAR_ADDED) || (Variable->State =3D=3D (= VAR_IN_DELETED_TRANSITION & VAR_ADDED))) && + (Variable !=3D UpdatingVariable) && + (Variable !=3D UpdatingInDeletedTransition) + ) + { + VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; + MaximumBufferSize +=3D VariableSize; + } + + Variable =3D NextVariable; + } + + if (NewVariable !=3D NULL) { + // + // Add the new variable size. + // + MaximumBufferSize +=3D NewVariableSize; + } + + // + // Reserve the 1 Bytes with Oxff to identify the + // end of the variable buffer. + // + MaximumBufferSize +=3D 1; + ValidBuffer =3D AllocatePool (MaximumBufferSize); + if (ValidBuffer =3D=3D NULL) { + return EFI_OUT_OF_RESOURCES; + } + } else { + // + // For NV variable reclaim, don't allocate pool here and just use mNvV= ariableCache + // as the buffer to reduce SMRAM consumption for SMM variable driver. + // + MaximumBufferSize =3D mNvVariableCache->Size; + ValidBuffer =3D (UINT8 *)mNvVariableCache; + } + + SetMem (ValidBuffer, MaximumBufferSize, 0xff); + + // + // Copy variable store header. + // + CopyMem (ValidBuffer, VariableStoreHeader, sizeof (VARIABLE_STORE_HEADER= )); + CurrPtr =3D (UINT8 *)GetStartPointer ((VARIABLE_STORE_HEADER *)ValidBuff= er); + + // + // Reinstall all ADDED variables as long as they are not identical to Up= dating Variable. + // + Variable =3D GetStartPointer (VariableStoreHeader); + while (IsValidVariableHeader (Variable, GetEndPointer (VariableStoreHead= er), AuthFormat)) { + NextVariable =3D GetNextVariablePtr (Variable, AuthFormat); + if ((Variable !=3D UpdatingVariable) && (Variable->State =3D=3D VAR_AD= DED)) { + VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; + CopyMem (CurrPtr, (UINT8 *)Variable, VariableSize); + if (!IsVolatile) { + (VOID)ProtectedVariableLibRefresh ( + (VARIABLE_HEADER *)CurrPtr, + VariableSize, + (UINTN)CurrPtr - (UINTN)ValidBuffer, + FALSE + ); + + if ((Variable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) + =3D=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) + { + HwErrVariableTotalSize +=3D VariableSize; + } else { + CommonVariableTotalSize +=3D VariableSize; + if (IsUserVariable (Variable)) { + CommonUserVariableTotalSize +=3D VariableSize; + } + } + } + + CurrPtr +=3D VariableSize; + } + + Variable =3D NextVariable; + } + + // + // Reinstall all in delete transition variables. + // + Variable =3D GetStartPointer (VariableStoreHeader); + while (IsValidVariableHeader (Variable, GetEndPointer (VariableStoreHead= er), AuthFormat)) { + NextVariable =3D GetNextVariablePtr (Variable, AuthFormat); + if ((Variable !=3D UpdatingVariable) && (Variable !=3D UpdatingInDelet= edTransition) && (Variable->State =3D=3D (VAR_IN_DELETED_TRANSITION & VAR_A= DDED)) && + (ProtectedVariableLibIsHmac (GetVariableNamePtr (Variable, AuthFor= mat)) =3D=3D FALSE)) + { + FoundAdded =3D FALSE; + AddedVariable =3D GetStartPointer ((VARIABLE_STORE_HEADER *)ValidBuf= fer); + while (IsValidVariableHeader (AddedVariable, GetEndPointer ((VARIABL= E_STORE_HEADER *)ValidBuffer), AuthFormat)) { + NextAddedVariable =3D GetNextVariablePtr (AddedVariable, AuthForma= t); + NameSize =3D NameSizeOfVariable (AddedVariable, AuthForma= t); + if (CompareGuid ( + GetVendorGuidPtr (AddedVariable, AuthFormat), + GetVendorGuidPtr (Variable, AuthFormat) + ) && (NameSize =3D=3D NameSizeOfVariable (Variable, AuthForm= at))) + { + Point0 =3D (VOID *)GetVariableNamePtr (AddedVariable, AuthFormat= ); + Point1 =3D (VOID *)GetVariableNamePtr (Variable, AuthFormat); + if (CompareMem (Point0, Point1, NameSize) =3D=3D 0) { + FoundAdded =3D TRUE; + break; + } + } + + AddedVariable =3D NextAddedVariable; + } + + if (!FoundAdded) { + // + // Promote VAR_IN_DELETED_TRANSITION to VAR_ADDED. + // + VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; + CopyMem (CurrPtr, (UINT8 *)Variable, VariableSize); + ((VARIABLE_HEADER *)CurrPtr)->State =3D VAR_ADDED; + if (!IsVolatile) { + (VOID)ProtectedVariableLibRefresh ( + (VARIABLE_HEADER *)CurrPtr, + VariableSize, + (UINTN)CurrPtr - (UINTN)ValidBuffer, + FALSE + ); + + if ((Variable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) + =3D=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) + { + HwErrVariableTotalSize +=3D VariableSize; + } else { + CommonVariableTotalSize +=3D VariableSize; + if (IsUserVariable (Variable)) { + CommonUserVariableTotalSize +=3D VariableSize; + } + } + } + + CurrPtr +=3D VariableSize; + } + } + + Variable =3D NextVariable; + } + + // + // Install the new variable if it is not NULL. + // + if (NewVariable !=3D NULL) { + if (((UINTN)CurrPtr - (UINTN)ValidBuffer) + NewVariableSize > Variable= StoreHeader->Size) { + // + // No enough space to store the new variable. + // + Status =3D EFI_OUT_OF_RESOURCES; + goto Done; + } + + if (!IsVolatile) { + if ((NewVariable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) = =3D=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) { + HwErrVariableTotalSize +=3D NewVariableSize; + } else if ((NewVariable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RE= CORD) !=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) { + CommonVariableTotalSize +=3D NewVariableSize; + if (IsUserVariable (NewVariable)) { + CommonUserVariableTotalSize +=3D NewVariableSize; + } + } + + if ((HwErrVariableTotalSize > PcdGet32 (PcdHwErrStorageSize)) || + (CommonVariableTotalSize > mVariableModuleGlobal->CommonVariable= Space) || + (CommonUserVariableTotalSize > mVariableModuleGlobal->CommonMaxU= serVariableSpace)) + { + // + // No enough space to store the new variable by NV or NV+HR attrib= ute. + // + Status =3D EFI_OUT_OF_RESOURCES; + goto Done; + } + } + + CopyMem (CurrPtr, (UINT8 *)NewVariable, NewVariableSize); + ((VARIABLE_HEADER *)CurrPtr)->State =3D VAR_ADDED; + if (UpdatingVariable !=3D NULL) { + UpdatingPtrTrack->CurrPtr =3D (VARIABLE_HEADER *)((UI= NTN)UpdatingPtrTrack->StartPtr + ((UINTN)CurrPtr - (UINTN)GetStartPointer (= (VARIABLE_STORE_HEADER *)ValidBuffer))); + UpdatingPtrTrack->InDeletedTransitionPtr =3D NULL; + } + + CurrPtr +=3D NewVariableSize; + } + + if (IsVolatile || mVariableModuleGlobal->VariableGlobal.EmuNvMode) { + // + // If volatile/emulated non-volatile variable store, just copy valid b= uffer. + // + SetMem ((UINT8 *)(UINTN)VariableBase, VariableStoreHeader->Size, 0xff); + CopyMem ((UINT8 *)(UINTN)VariableBase, ValidBuffer, (UINTN)CurrPtr - (= UINTN)ValidBuffer); + *LastVariableOffset =3D (UINTN)CurrPtr - (UINTN)ValidBuffer; + if (!IsVolatile) { + // + // Emulated non-volatile variable mode. + // + mVariableModuleGlobal->HwErrVariableTotalSize =3D HwErrVariable= TotalSize; + mVariableModuleGlobal->CommonVariableTotalSize =3D CommonVariabl= eTotalSize; + mVariableModuleGlobal->CommonUserVariableTotalSize =3D CommonUserVar= iableTotalSize; + } + + Status =3D EFI_SUCCESS; + } else { + // + // If non-volatile variable store, perform FTW here. + // + Status =3D FtwVariableSpace ( + VariableBase, + (VARIABLE_STORE_HEADER *)ValidBuffer + ); + if (!EFI_ERROR (Status)) { + *LastVariableOffset =3D (UINTN)CurrPt= r - (UINTN)ValidBuffer; + mVariableModuleGlobal->HwErrVariableTotalSize =3D HwErrVariable= TotalSize; + mVariableModuleGlobal->CommonVariableTotalSize =3D CommonVariabl= eTotalSize; + mVariableModuleGlobal->CommonUserVariableTotalSize =3D CommonUserVar= iableTotalSize; + } else { + mVariableModuleGlobal->HwErrVariableTotalSize =3D 0; + mVariableModuleGlobal->CommonVariableTotalSize =3D 0; + mVariableModuleGlobal->CommonUserVariableTotalSize =3D 0; + Variable =3D GetStartPoint= er ((VARIABLE_STORE_HEADER *)(UINTN)VariableBase); + while (IsValidVariableHeader (Variable, GetEndPointer ((VARIABLE_STO= RE_HEADER *)(UINTN)VariableBase), AuthFormat)) { + NextVariable =3D GetNextVariablePtr (Variable, AuthFormat); + VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; + if ((Variable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) = =3D=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) { + mVariableModuleGlobal->HwErrVariableTotalSize +=3D VariableSize; + } else if ((Variable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_REC= ORD) !=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) { + mVariableModuleGlobal->CommonVariableTotalSize +=3D VariableSize; + if (IsUserVariable (Variable)) { + mVariableModuleGlobal->CommonUserVariableTotalSize +=3D Variab= leSize; + } + } + + Variable =3D NextVariable; + } + + *LastVariableOffset =3D (UINTN)Variable - (UINTN)VariableBase; + } + } + +Done: + DoneStatus =3D EFI_SUCCESS; + if (IsVolatile || mVariableModuleGlobal->VariableGlobal.EmuNvMode) { + DoneStatus =3D SynchronizeRuntimeVariableCache ( + &mVariableModuleGlobal->VariableGlobal.VariableRuntimeC= acheContext.VariableRuntimeVolatileCache, + 0, + VariableStoreHeader->Size + ); + ASSERT_EFI_ERROR (DoneStatus); + FreePool (ValidBuffer); + } else { + // + // For NV variable reclaim, we use mNvVariableCache as the buffer, so = copy the data back. + // + CopyMem (mNvVariableCache, (UINT8 *)(UINTN)VariableBase, VariableStore= Header->Size); + DoneStatus =3D SynchronizeRuntimeVariableCache ( + &mVariableModuleGlobal->VariableGlobal.VariableRuntimeC= acheContext.VariableRuntimeNvCache, + 0, + VariableStoreHeader->Size + ); + ASSERT_EFI_ERROR (DoneStatus); + } + + if (!EFI_ERROR (Status) && EFI_ERROR (DoneStatus)) { + Status =3D DoneStatus; + } + + return Status; +} diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.c b/MdeMod= ulePkg/Universal/Variable/RuntimeDxe/Variable.c index 6c1a3440ac8c..6e86099eb72b 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.c @@ -16,7 +16,7 @@ VariableServiceSetVariable() should also check authenticate data to avoi= d buffer overflow, integer overflow. It should also check attribute to avoid authentication= bypass. =20 -Copyright (c) 2006 - 2020, Intel Corporation. All rights reserved.
+Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
(C) Copyright 2015-2018 Hewlett Packard Enterprise Development LP
Copyright (c) Microsoft Corporation.
Copyright (c) 2022, ARM Limited. All rights reserved.
@@ -30,7 +30,7 @@ SPDX-License-Identifier: BSD-2-Clause-Patent #include "VariableParsing.h" #include "VariableRuntimeCache.h" =20 -VARIABLE_MODULE_GLOBAL *mVariableModuleGlobal; +VARIABLE_MODULE_GLOBAL *mVariableModuleGlobal =3D NULL; =20 /// /// Define a memory cache that improves the search performance for a varia= ble. @@ -458,7 +458,7 @@ CalculateCommonUserVariableTotalSize ( // if (mEndOfDxe && (mVariableModuleGlobal->CommonMaxUserVariableSpace !=3D= mVariableModuleGlobal->CommonVariableSpace)) { Variable =3D GetStartPointer (mNvVariableCache); - while (IsValidVariableHeader (Variable, GetEndPointer (mNvVariableCach= e))) { + while (IsValidVariableHeader (Variable, GetEndPointer (mNvVariableCach= e), mVariableModuleGlobal->VariableGlobal.AuthFormat)) { NextVariable =3D GetNextVariablePtr (Variable, mVariableModuleGlobal= ->VariableGlobal.AuthFormat); VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; if ((Variable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) !=3D= EFI_VARIABLE_HARDWARE_ERROR_RECORD) { @@ -497,330 +497,6 @@ InitializeVariableQuota ( CalculateCommonUserVariableTotalSize (); } =20 -/** - - Variable store garbage collection and reclaim operation. - - @param[in] VariableBase Base address of variable store. - @param[out] LastVariableOffset Offset of last variable. - @param[in] IsVolatile The variable store is volatile o= r not; - if it is non-volatile, need FTW. - @param[in, out] UpdatingPtrTrack Pointer to updating variable poi= nter track structure. - @param[in] NewVariable Pointer to new variable. - @param[in] NewVariableSize New variable size. - - @return EFI_SUCCESS Reclaim operation has finished succ= essfully. - @return EFI_OUT_OF_RESOURCES No enough memory resources or varia= ble space. - @return Others Unexpect error happened during recl= aim operation. - -**/ -EFI_STATUS -Reclaim ( - IN EFI_PHYSICAL_ADDRESS VariableBase, - OUT UINTN *LastVariableOffset, - IN BOOLEAN IsVolatile, - IN OUT VARIABLE_POINTER_TRACK *UpdatingPtrTrack, - IN VARIABLE_HEADER *NewVariable, - IN UINTN NewVariableSize - ) -{ - VARIABLE_HEADER *Variable; - VARIABLE_HEADER *AddedVariable; - VARIABLE_HEADER *NextVariable; - VARIABLE_HEADER *NextAddedVariable; - VARIABLE_STORE_HEADER *VariableStoreHeader; - UINT8 *ValidBuffer; - UINTN MaximumBufferSize; - UINTN VariableSize; - UINTN NameSize; - UINT8 *CurrPtr; - VOID *Point0; - VOID *Point1; - BOOLEAN FoundAdded; - EFI_STATUS Status; - EFI_STATUS DoneStatus; - UINTN CommonVariableTotalSize; - UINTN CommonUserVariableTotalSize; - UINTN HwErrVariableTotalSize; - VARIABLE_HEADER *UpdatingVariable; - VARIABLE_HEADER *UpdatingInDeletedTransition; - BOOLEAN AuthFormat; - - AuthFormat =3D mVariableModuleGlobal->VariableGlobal.Au= thFormat; - UpdatingVariable =3D NULL; - UpdatingInDeletedTransition =3D NULL; - if (UpdatingPtrTrack !=3D NULL) { - UpdatingVariable =3D UpdatingPtrTrack->CurrPtr; - UpdatingInDeletedTransition =3D UpdatingPtrTrack->InDeletedTransitionP= tr; - } - - VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)((UINTN)VariableBase); - - CommonVariableTotalSize =3D 0; - CommonUserVariableTotalSize =3D 0; - HwErrVariableTotalSize =3D 0; - - if (IsVolatile || mVariableModuleGlobal->VariableGlobal.EmuNvMode) { - // - // Start Pointers for the variable. - // - Variable =3D GetStartPointer (VariableStoreHeader); - MaximumBufferSize =3D sizeof (VARIABLE_STORE_HEADER); - - while (IsValidVariableHeader (Variable, GetEndPointer (VariableStoreHe= ader))) { - NextVariable =3D GetNextVariablePtr (Variable, AuthFormat); - if (((Variable->State =3D=3D VAR_ADDED) || (Variable->State =3D=3D (= VAR_IN_DELETED_TRANSITION & VAR_ADDED))) && - (Variable !=3D UpdatingVariable) && - (Variable !=3D UpdatingInDeletedTransition) - ) - { - VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; - MaximumBufferSize +=3D VariableSize; - } - - Variable =3D NextVariable; - } - - if (NewVariable !=3D NULL) { - // - // Add the new variable size. - // - MaximumBufferSize +=3D NewVariableSize; - } - - // - // Reserve the 1 Bytes with Oxff to identify the - // end of the variable buffer. - // - MaximumBufferSize +=3D 1; - ValidBuffer =3D AllocatePool (MaximumBufferSize); - if (ValidBuffer =3D=3D NULL) { - return EFI_OUT_OF_RESOURCES; - } - } else { - // - // For NV variable reclaim, don't allocate pool here and just use mNvV= ariableCache - // as the buffer to reduce SMRAM consumption for SMM variable driver. - // - MaximumBufferSize =3D mNvVariableCache->Size; - ValidBuffer =3D (UINT8 *)mNvVariableCache; - } - - SetMem (ValidBuffer, MaximumBufferSize, 0xff); - - // - // Copy variable store header. - // - CopyMem (ValidBuffer, VariableStoreHeader, sizeof (VARIABLE_STORE_HEADER= )); - CurrPtr =3D (UINT8 *)GetStartPointer ((VARIABLE_STORE_HEADER *)ValidBuff= er); - - // - // Reinstall all ADDED variables as long as they are not identical to Up= dating Variable. - // - Variable =3D GetStartPointer (VariableStoreHeader); - while (IsValidVariableHeader (Variable, GetEndPointer (VariableStoreHead= er))) { - NextVariable =3D GetNextVariablePtr (Variable, AuthFormat); - if ((Variable !=3D UpdatingVariable) && (Variable->State =3D=3D VAR_AD= DED)) { - VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; - CopyMem (CurrPtr, (UINT8 *)Variable, VariableSize); - CurrPtr +=3D VariableSize; - if ((!IsVolatile) && ((Variable->Attributes & EFI_VARIABLE_HARDWARE_= ERROR_RECORD) =3D=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD)) { - HwErrVariableTotalSize +=3D VariableSize; - } else if ((!IsVolatile) && ((Variable->Attributes & EFI_VARIABLE_HA= RDWARE_ERROR_RECORD) !=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD)) { - CommonVariableTotalSize +=3D VariableSize; - if (IsUserVariable (Variable)) { - CommonUserVariableTotalSize +=3D VariableSize; - } - } - } - - Variable =3D NextVariable; - } - - // - // Reinstall all in delete transition variables. - // - Variable =3D GetStartPointer (VariableStoreHeader); - while (IsValidVariableHeader (Variable, GetEndPointer (VariableStoreHead= er))) { - NextVariable =3D GetNextVariablePtr (Variable, AuthFormat); - if ((Variable !=3D UpdatingVariable) && (Variable !=3D UpdatingInDelet= edTransition) && (Variable->State =3D=3D (VAR_IN_DELETED_TRANSITION & VAR_A= DDED))) { - // - // Buffer has cached all ADDED variable. - // Per IN_DELETED variable, we have to guarantee that - // no ADDED one in previous buffer. - // - - FoundAdded =3D FALSE; - AddedVariable =3D GetStartPointer ((VARIABLE_STORE_HEADER *)ValidBuf= fer); - while (IsValidVariableHeader (AddedVariable, GetEndPointer ((VARIABL= E_STORE_HEADER *)ValidBuffer))) { - NextAddedVariable =3D GetNextVariablePtr (AddedVariable, AuthForma= t); - NameSize =3D NameSizeOfVariable (AddedVariable, AuthForma= t); - if (CompareGuid ( - GetVendorGuidPtr (AddedVariable, AuthFormat), - GetVendorGuidPtr (Variable, AuthFormat) - ) && (NameSize =3D=3D NameSizeOfVariable (Variable, AuthForm= at))) - { - Point0 =3D (VOID *)GetVariableNamePtr (AddedVariable, AuthFormat= ); - Point1 =3D (VOID *)GetVariableNamePtr (Variable, AuthFormat); - if (CompareMem (Point0, Point1, NameSize) =3D=3D 0) { - FoundAdded =3D TRUE; - break; - } - } - - AddedVariable =3D NextAddedVariable; - } - - if (!FoundAdded) { - // - // Promote VAR_IN_DELETED_TRANSITION to VAR_ADDED. - // - VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; - CopyMem (CurrPtr, (UINT8 *)Variable, VariableSize); - ((VARIABLE_HEADER *)CurrPtr)->State =3D VAR_ADDED; - CurrPtr +=3D VariableSize; - if ((!IsVolatile) && ((Variable->Attributes & EFI_VARIABLE_HARDWAR= E_ERROR_RECORD) =3D=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD)) { - HwErrVariableTotalSize +=3D VariableSize; - } else if ((!IsVolatile) && ((Variable->Attributes & EFI_VARIABLE_= HARDWARE_ERROR_RECORD) !=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD)) { - CommonVariableTotalSize +=3D VariableSize; - if (IsUserVariable (Variable)) { - CommonUserVariableTotalSize +=3D VariableSize; - } - } - } - } - - Variable =3D NextVariable; - } - - // - // Install the new variable if it is not NULL. - // - if (NewVariable !=3D NULL) { - if (((UINTN)CurrPtr - (UINTN)ValidBuffer) + NewVariableSize > Variable= StoreHeader->Size) { - // - // No enough space to store the new variable. - // - Status =3D EFI_OUT_OF_RESOURCES; - goto Done; - } - - if (!IsVolatile) { - if ((NewVariable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) = =3D=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) { - HwErrVariableTotalSize +=3D NewVariableSize; - } else if ((NewVariable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RE= CORD) !=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) { - CommonVariableTotalSize +=3D NewVariableSize; - if (IsUserVariable (NewVariable)) { - CommonUserVariableTotalSize +=3D NewVariableSize; - } - } - - if ((HwErrVariableTotalSize > PcdGet32 (PcdHwErrStorageSize)) || - (CommonVariableTotalSize > mVariableModuleGlobal->CommonVariable= Space) || - (CommonUserVariableTotalSize > mVariableModuleGlobal->CommonMaxU= serVariableSpace)) - { - // - // No enough space to store the new variable by NV or NV+HR attrib= ute. - // - Status =3D EFI_OUT_OF_RESOURCES; - goto Done; - } - } - - CopyMem (CurrPtr, (UINT8 *)NewVariable, NewVariableSize); - ((VARIABLE_HEADER *)CurrPtr)->State =3D VAR_ADDED; - if (UpdatingVariable !=3D NULL) { - UpdatingPtrTrack->CurrPtr =3D (VARIABLE_HEADER *)((UI= NTN)UpdatingPtrTrack->StartPtr + ((UINTN)CurrPtr - (UINTN)GetStartPointer (= (VARIABLE_STORE_HEADER *)ValidBuffer))); - UpdatingPtrTrack->InDeletedTransitionPtr =3D NULL; - } - - CurrPtr +=3D NewVariableSize; - } - - if (IsVolatile || mVariableModuleGlobal->VariableGlobal.EmuNvMode) { - // - // If volatile/emulated non-volatile variable store, just copy valid b= uffer. - // - SetMem ((UINT8 *)(UINTN)VariableBase, VariableStoreHeader->Size, 0xff); - CopyMem ((UINT8 *)(UINTN)VariableBase, ValidBuffer, (UINTN)CurrPtr - (= UINTN)ValidBuffer); - *LastVariableOffset =3D (UINTN)CurrPtr - (UINTN)ValidBuffer; - if (!IsVolatile) { - // - // Emulated non-volatile variable mode. - // - mVariableModuleGlobal->HwErrVariableTotalSize =3D HwErrVariable= TotalSize; - mVariableModuleGlobal->CommonVariableTotalSize =3D CommonVariabl= eTotalSize; - mVariableModuleGlobal->CommonUserVariableTotalSize =3D CommonUserVar= iableTotalSize; - } - - Status =3D EFI_SUCCESS; - } else { - // - // If non-volatile variable store, perform FTW here. - // - Status =3D FtwVariableSpace ( - VariableBase, - (VARIABLE_STORE_HEADER *)ValidBuffer - ); - if (!EFI_ERROR (Status)) { - *LastVariableOffset =3D (UINTN)CurrPt= r - (UINTN)ValidBuffer; - mVariableModuleGlobal->HwErrVariableTotalSize =3D HwErrVariable= TotalSize; - mVariableModuleGlobal->CommonVariableTotalSize =3D CommonVariabl= eTotalSize; - mVariableModuleGlobal->CommonUserVariableTotalSize =3D CommonUserVar= iableTotalSize; - } else { - mVariableModuleGlobal->HwErrVariableTotalSize =3D 0; - mVariableModuleGlobal->CommonVariableTotalSize =3D 0; - mVariableModuleGlobal->CommonUserVariableTotalSize =3D 0; - Variable =3D GetStartPoint= er ((VARIABLE_STORE_HEADER *)(UINTN)VariableBase); - while (IsValidVariableHeader (Variable, GetEndPointer ((VARIABLE_STO= RE_HEADER *)(UINTN)VariableBase))) { - NextVariable =3D GetNextVariablePtr (Variable, AuthFormat); - VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; - if ((Variable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) = =3D=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) { - mVariableModuleGlobal->HwErrVariableTotalSize +=3D VariableSize; - } else if ((Variable->Attributes & EFI_VARIABLE_HARDWARE_ERROR_REC= ORD) !=3D EFI_VARIABLE_HARDWARE_ERROR_RECORD) { - mVariableModuleGlobal->CommonVariableTotalSize +=3D VariableSize; - if (IsUserVariable (Variable)) { - mVariableModuleGlobal->CommonUserVariableTotalSize +=3D Variab= leSize; - } - } - - Variable =3D NextVariable; - } - - *LastVariableOffset =3D (UINTN)Variable - (UINTN)VariableBase; - } - } - -Done: - DoneStatus =3D EFI_SUCCESS; - if (IsVolatile || mVariableModuleGlobal->VariableGlobal.EmuNvMode) { - DoneStatus =3D SynchronizeRuntimeVariableCache ( - &mVariableModuleGlobal->VariableGlobal.VariableRuntimeC= acheContext.VariableRuntimeVolatileCache, - 0, - VariableStoreHeader->Size - ); - ASSERT_EFI_ERROR (DoneStatus); - FreePool (ValidBuffer); - } else { - // - // For NV variable reclaim, we use mNvVariableCache as the buffer, so = copy the data back. - // - CopyMem (mNvVariableCache, (UINT8 *)(UINTN)VariableBase, VariableStore= Header->Size); - DoneStatus =3D SynchronizeRuntimeVariableCache ( - &mVariableModuleGlobal->VariableGlobal.VariableRuntimeC= acheContext.VariableRuntimeNvCache, - 0, - VariableStoreHeader->Size - ); - ASSERT_EFI_ERROR (DoneStatus); - } - - if (!EFI_ERROR (Status) && EFI_ERROR (DoneStatus)) { - Status =3D DoneStatus; - } - - return Status; -} - /** Finds variable in storage blocks of volatile and non-volatile storage ar= eas. =20 @@ -1657,9 +1333,665 @@ AutoUpdateLangVariable ( } =20 /** - Update the variable region with Variable information. If EFI_VARIABLE_AU= THENTICATED_WRITE_ACCESS is set, - index of associated public key is needed. + Check if there's enough free space in storage to write the new variable. =20 + @param[in] NewVariable Pointer to buffer of new variable. + @param[in] VariableSize Size of new variable. + @param[in] VariableName Name of variable. + @param[in] VendorGuid Guid of variable. + @param[in] Attributes Attributes of the variable. + @param[in] VolatileFlag Volatile/non-volatile variable indicator. + + @retval EFI_SUCCESS Enough free space on variable storage. + @retval EFI_BUFFER_TOO_SMALL There's not enough continuous free space. + @retval EFI_OUT_OF_RESOURCES There's not enough free space in total. +**/ +EFI_STATUS +CheckVariableStoreSpace ( + IN VARIABLE_HEADER *NewVariable, + IN UINTN VariableSize, + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + IN UINT32 Attributes, + IN BOOLEAN VolatileFlag + ) +{ + BOOLEAN IsCommonVariable; + BOOLEAN IsCommonUserVariable; + UINTN CommonVariableTotalSize; + UINTN CommonUserVariableTotalSize; + UINTN HwErrVariableTotalSize; + VARIABLE_STORE_HEADER *VarStore; + + if ((NewVariable =3D=3D NULL) || (VariableSize =3D=3D 0)) { + return EFI_SUCCESS; + } + + if (VolatileFlag) { + VarStore =3D (VARIABLE_STORE_HEADER *)(UINTN) + mVariableModuleGlobal->VariableGlobal.VolatileVariableBase; + if ((UINT32)(VariableSize + mVariableModuleGlobal->VolatileLastVariabl= eOffset) + > VarStore->Size) + { + return EFI_BUFFER_TOO_SMALL; + } + } else { + if ((Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) =3D=3D 0) { + IsCommonVariable =3D TRUE; + IsCommonUserVariable =3D IsUserVariable (NewVariable); + } else { + IsCommonVariable =3D FALSE; + IsCommonUserVariable =3D FALSE; + } + + CommonVariableTotalSize =3D mVariableModuleGlobal->CommonVariableT= otalSize + VariableSize; + CommonUserVariableTotalSize =3D mVariableModuleGlobal->CommonUserVaria= bleTotalSize + VariableSize; + HwErrVariableTotalSize =3D mVariableModuleGlobal->HwErrVariableTo= talSize + VariableSize; + + if ( (((Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) !=3D 0) && + (HwErrVariableTotalSize > PcdGet32 (PcdHwErrStorageSize))) + || (IsCommonVariable && (CommonVariableTotalSize > mVariableModuleG= lobal->CommonVariableSpace)) + || (IsCommonVariable && + AtRuntime () && + (CommonVariableTotalSize > mVariableModuleGlobal->CommonRuntime= VariableSpace)) + || (IsCommonUserVariable && + (CommonUserVariableTotalSize > mVariableModuleGlobal->CommonMax= UserVariableSpace))) + { + if (AtRuntime ()) { + if (IsCommonUserVariable && + ((VariableSize + mVariableModuleGlobal->CommonUserVariableTota= lSize) + > mVariableModuleGlobal->CommonMaxUserVariableSpace)) + { + RecordVarErrorFlag ( + VAR_ERROR_FLAG_USER_ERROR, + VariableName, + VendorGuid, + Attributes, + VariableSize + ); + } + + if (IsCommonVariable && + ((VariableSize + mVariableModuleGlobal->CommonVariableTotalSiz= e) + > mVariableModuleGlobal->CommonRuntimeVariableSpace)) + { + RecordVarErrorFlag ( + VAR_ERROR_FLAG_SYSTEM_ERROR, + VariableName, + VendorGuid, + Attributes, + VariableSize + ); + } + + return EFI_OUT_OF_RESOURCES; + } + + return EFI_BUFFER_TOO_SMALL; + } + } + + return EFI_SUCCESS; +} + +/** + Fill specific data of auth-variable in buffer. + + @param[in,out] NewVariable Pointer to buffer of new variable. + @param[in] OldVariable Pointer to buffer of old copy of the = variable. + @param[in] Attributes Attributes of the variable. + @param[in] KeyIndex Index of associated public key. + @param[in] MonotonicCount Value of associated monotonic count. + @param[in] TimeStamp Value of associated TimeStamp. + +**/ +VOID +SetVariableAuthData ( + IN OUT AUTHENTICATED_VARIABLE_HEADER *NewVariable, + IN AUTHENTICATED_VARIABLE_HEADER *OldVariable, + IN UINT32 Attributes, + IN UINT32 KeyIndex, + IN UINT64 MonotonicCount, + IN EFI_TIME *TimeStamp + ) +{ + NewVariable->PubKeyIndex =3D KeyIndex; + NewVariable->MonotonicCount =3D MonotonicCount; + + if ((TimeStamp !=3D NULL) && + ((Attributes & EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS) != =3D 0)) + { + // + // In the case when the EFI_VARIABLE_APPEND_WRITE attribute is set, on= ly + // when the new TimeStamp value is later than the current timestamp as= sociated + // with the variable, we need associate the new timestamp with the upd= ated value. + // + if (((Attributes & EFI_VARIABLE_APPEND_WRITE) !=3D 0) && + (OldVariable !=3D NULL) && + !VariableCompareTimeStampInternal (&OldVariable->TimeStamp, TimeSt= amp)) + { + TimeStamp =3D &OldVariable->TimeStamp; + } + + CopyMem (&NewVariable->TimeStamp, TimeStamp, sizeof (EFI_TIME)); + } else { + ZeroMem (&NewVariable->TimeStamp, sizeof (EFI_TIME)); + } +} + +/** + Fill the variable data buffer according to variable format on storage. + + @param[in,out] NewVariable Pointer to buffer of new variable. + @param[in] OldVariable Pointer to buffer of old copy of the = variable. + @param[in] VariableName Name of variable. + @param[in] VendorGuid Guid of variable. + @param[in] Data Variable data. + @param[in] DataSize Size of data. 0 means delete. + @param[in] Attributes Attributes of the variable. + @param[in] KeyIndex Index of associated public key. + @param[in] MonotonicCount Value of associated monotonic count. + @param[in] TimeStamp Value of associated TimeStamp. + + @retval Size of the new variable. + +**/ +UINTN +SetVariableData ( + IN OUT VARIABLE_HEADER *NewVariable, + IN VARIABLE_HEADER *OldVariable, + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + IN VOID *Data, + IN UINTN DataSize, + IN UINT32 Attributes, + IN UINT32 KeyIndex, + IN UINT64 MonotonicCount, + IN EFI_TIME *TimeStamp + ) +{ + EFI_STATUS Status; + BOOLEAN AuthFormat; + UINT8 *DataPtr; + UINTN NameSize; + UINTN OldDataSize; + + AuthFormat =3D mVariableModuleGlobal->VariableGlobal.AuthFormat; + + if (AuthFormat) { + SetVariableAuthData ( + (AUTHENTICATED_VARIABLE_HEADER *)NewVariable, + (AUTHENTICATED_VARIABLE_HEADER *)OldVariable, + Attributes, + KeyIndex, + MonotonicCount, + TimeStamp + ); + } + + NewVariable->StartId =3D VARIABLE_DATA; + NewVariable->State =3D VAR_ADDED; + NewVariable->Reserved =3D 0; + NewVariable->Attributes =3D Attributes & (~EFI_VARIABLE_APPEND_WRITE); + + CopyMem ( + GetVendorGuidPtr (NewVariable, AuthFormat), + VendorGuid, + sizeof (EFI_GUID) + ); + + NameSize =3D StrSize (VariableName); + SetNameSizeOfVariable (NewVariable, NameSize, AuthFormat); + CopyMem ( + (UINT8 *)GetVariableNamePtr (NewVariable, AuthFormat), + VariableName, + NameSize + ); + + // + // Set data size first otherwise we can't get correct data pointer in the + // buffer of new variable. + // + SetDataSizeOfVariable (NewVariable, DataSize, AuthFormat); + DataPtr =3D GetVariableDataPtr (NewVariable, AuthFormat); + if (((Attributes & EFI_VARIABLE_APPEND_WRITE) !=3D 0) && + (OldVariable !=3D NULL) && + ((OldVariable->State =3D=3D VAR_ADDED) || + (OldVariable->State =3D=3D (VAR_ADDED & VAR_IN_DELETED_TRANSITION))= )) + { + // + // Get old data, which might be encrypted. + // + OldDataSize =3D mVariableModuleGlobal->ScratchBufferSize + - ((UINTN)DataPtr - (UINTN)NewVariable); + Status =3D ProtectedVariableLibGetByBuffer ( + OldVariable, + DataPtr, + (UINT32 *)&OldDataSize, + AuthFormat + ); + if (Status =3D=3D EFI_UNSUPPORTED) { + OldDataSize =3D DataSizeOfVariable (OldVariable, AuthFormat); + CopyMem (DataPtr, GetVariableDataPtr (OldVariable, AuthFormat), OldD= ataSize); + } else if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return 0; + } + + DataPtr +=3D OldDataSize; + // + // Update data size. + // + SetDataSizeOfVariable (NewVariable, DataSize + OldDataSize, AuthFormat= ); + } + + CopyMem (DataPtr, Data, DataSize); + + // + // The actual size of the variable stored in storage should include padd= ing. + // + return ((UINTN)GetNextVariablePtr (NewVariable, AuthFormat) - (UINTN)New= Variable); +} + +/** + Update state of given variable as well as its cached copy. + + @param[in,out] Variable Pointer to the buffer of the variable. + @param[in,out] CacheVariable Cache copy of the variable. + @param[in] NewState New state value. + @param[in] Volatile Volatile/non-volatile variable indicator. + + @retval EFI_SUCCESS Variable state was updated successfully. + @retval Others Failed to update the variable state. + +**/ +EFI_STATUS +UpdateVariableState ( + IN OUT VARIABLE_HEADER *Variable, + IN OUT VARIABLE_HEADER *CacheVariable, + IN UINT8 NewState, + IN BOOLEAN Volatile + ) +{ + EFI_STATUS Status; + + Status =3D UpdateVariableStore ( + &mVariableModuleGlobal->VariableGlobal, + Volatile, + FALSE, + mVariableModuleGlobal->FvbInstance, + (UINTN)&Variable->State, + sizeof (NewState), + &NewState + ); + if (!EFI_ERROR (Status) && (CacheVariable !=3D NULL)) { + CacheVariable->State =3D NewState; + } + + return Status; +} + +/** + Flush variable data to variable storage. + + @param[in] VarStoreBase Base address of variable storage. + @param[in,out] Offset Offset to write the variable from. + Offset from where next variable can be w= ritten. + @param[in,out] NewVariable Pointer to the buffer of new variable. + @param[in] VariableSize Size of new variable. + @param[in] Volatile Volatile/non-volatile variable indicator. + @param[in] AuthFormat Auth-variable indicator. + + @retval EFI_SUCCESS Variable(s) were written successfully. + @retval Others Failed to write the variable data. + +**/ +EFI_STATUS +WriteVariable ( + IN EFI_PHYSICAL_ADDRESS VarStoreBase, + IN OUT UINTN *Offset, + IN OUT VARIABLE_HEADER **NewVariable, + IN UINT32 VariableSize, + IN BOOLEAN Volatile, + IN BOOLEAN AuthFormat + ) +{ + EFI_STATUS Status; + + struct { + UINTN Offset; + UINT8 *Buffer; + UINT32 Size; + UINT8 State; + } WriteSteps[4]; + UINTN Index; + UINTN Steps; + VARIABLE_HEADER *Variable; + + Variable =3D *NewVariable; + if (Volatile) { + // + // For non-volatile variable, one step only : + // + WriteSteps[0].Offset =3D *Offset; + WriteSteps[0].Buffer =3D (UINT8 *)Variable; + WriteSteps[0].Size =3D VariableSize; + + Steps =3D 1; + } else { + // + // Four steps for non-volatile variable: + // + // 1. Write variable header + // 2. Set variable state to header valid + // 3. Write variable name and data + // 4. Set variable state to valid + // + Variable->State =3D 0xff; + WriteSteps[0].Offset =3D *Offset; + WriteSteps[0].Buffer =3D (UINT8 *)Variable; + WriteSteps[0].Size =3D (UINT32)GetVariableHeaderSize (AuthFormat); + + WriteSteps[1].State =3D VAR_HEADER_VALID_ONLY; + WriteSteps[1].Offset =3D *Offset + OFFSET_OF (VARIABLE_HEADER, State); + WriteSteps[1].Buffer =3D &WriteSteps[1].State; + WriteSteps[1].Size =3D sizeof (Variable->State); + + WriteSteps[2].Offset =3D *Offset + GetVariableHeaderSize (AuthFormat); + WriteSteps[2].Buffer =3D (UINT8 *)Variable + GetVariableHeaderSize (Au= thFormat); + WriteSteps[2].Size =3D VariableSize - (UINT32)GetVariableHeaderSize = (AuthFormat); + + WriteSteps[3].State =3D VAR_ADDED; + WriteSteps[3].Offset =3D *Offset + OFFSET_OF (VARIABLE_HEADER, State); + WriteSteps[3].Buffer =3D &WriteSteps[3].State; + WriteSteps[3].Size =3D sizeof (Variable->State); + + Steps =3D ARRAY_SIZE (WriteSteps); + } + + for (Index =3D 0; Index < Steps; ++Index) { + Status =3D UpdateVariableStore ( + &mVariableModuleGlobal->VariableGlobal, + Volatile, + TRUE, + mVariableModuleGlobal->FvbInstance, + WriteSteps[Index].Offset, + WriteSteps[Index].Size, + WriteSteps[Index].Buffer + ); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + } + + Variable->State =3D VAR_ADDED; + if (!Volatile) { + CopyMem ((UINT8 *)mNvVariableCache + *Offset, Variable, VariableSize); + } + + *NewVariable =3D (VARIABLE_HEADER *)((UINTN)VarStoreBase + *Offset); + *Offset +=3D HEADER_ALIGN (VariableSize); + + return EFI_SUCCESS; +} + +/** + Rebase the given variable pointer(s) to the equivalent one in given vari= able + storage via VarStore. + + @param[in] InVarTrackPtr Pointer to current variable in cache. + @param[out] OutVarTrackPtr Pointer to rebased variable against Va= rStore. + @param[in] VarStore Start of variable storage to rebase ag= ainst. + @param[in] VariableName Name of variable. + @param[in] VendorGuid Guid of variable. + @param[in] ByOffset If TRUE, don't do variable search in V= arStore. + + @retval EFI_SUCCESS Variable(s) were deleted successfully. + @retval EFI_INVALID_PARAMETER Invalid parameters passed. + @retval EFI_NOT_FOUND Given variable (VariableName & VendorGuid)= was + not found in VarStore, if ByOffset is FALS= E. + +**/ +EFI_STATUS +RebaseVariablePtr ( + IN VARIABLE_POINTER_TRACK *InVarTrackPtr, + OUT VARIABLE_POINTER_TRACK *OutVarTrackPtr, + IN VARIABLE_STORE_HEADER *VarStore, + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + IN BOOLEAN ByOffset + ) +{ + EFI_STATUS Status; + BOOLEAN AuthFormat; + VARIABLE_HEADER *NewStart; + + if ((InVarTrackPtr =3D=3D NULL) || (OutVarTrackPtr =3D=3D NULL) || (VarS= tore =3D=3D NULL)) { + ASSERT (InVarTrackPtr !=3D NULL); + ASSERT (OutVarTrackPtr !=3D NULL); + ASSERT (VarStore !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + AuthFormat =3D mVariableModuleGlobal->VariableGlobal.AuthFormat; + + if ( (InVarTrackPtr->CurrPtr =3D=3D NULL) + || (InVarTrackPtr->StartPtr =3D=3D GetStartPointer (VarStore))) + { + CopyMem (OutVarTrackPtr, InVarTrackPtr, sizeof (VARIABLE_POINTER_TRACK= )); + return EFI_SUCCESS; + } + + NewStart =3D GetStartPointer (VarStore); + if (ByOffset) { + OutVarTrackPtr->CurrPtr =3D (VARIABLE_HEADER *) + ((UINTN)NewStart + ((UINTN)InVarTrackPtr->Cu= rrPtr - + (UINTN)InVarTrackPtr->St= artPtr)); + + if (InVarTrackPtr->InDeletedTransitionPtr !=3D NULL) { + OutVarTrackPtr->InDeletedTransitionPtr =3D + (VARIABLE_HEADER *)((UINTN)NewStart + + ((UINTN)InVarTrackPtr->InDeletedTransitionPtr - + (UINTN)InVarTrackPtr->StartPtr)); + } else { + OutVarTrackPtr->InDeletedTransitionPtr =3D NULL; + } + + OutVarTrackPtr->StartPtr =3D NewStart; + OutVarTrackPtr->EndPtr =3D GetEndPointer (VarStore); + } else { + OutVarTrackPtr->StartPtr =3D NewStart; + OutVarTrackPtr->EndPtr =3D GetEndPointer (VarStore); + + Status =3D FindVariableEx (VariableName, VendorGuid, FALSE, OutVarTrac= kPtr, AuthFormat); + if ((OutVarTrackPtr->CurrPtr =3D=3D NULL) || EFI_ERROR (Status)) { + return EFI_NOT_FOUND; + } + } + + if ( (VarStore =3D=3D mNvVariableCache) + || ((UINTN)VarStore =3D=3D (UINTN)mVariableModuleGlobal->VariableGlob= al.NonVolatileVariableBase)) + { + OutVarTrackPtr->Volatile =3D FALSE; + } + + return EFI_SUCCESS; +} + +/** + Check if the given variable is from HOB. + + @param[in] CacheVariable Pointer to current variable in cache. + + @retval TRUE The variable is from HOB. + @retval FALSE The variable is NOT from HOB. + +**/ +BOOLEAN +IsHobVariable ( + IN VARIABLE_POINTER_TRACK *CacheVariable + ) +{ + VARIABLE_STORE_HEADER *HobVarStore; + + HobVarStore =3D (VARIABLE_STORE_HEADER *)(UINTN) + mVariableModuleGlobal->VariableGlobal.HobVariableBase; + return (CacheVariable->CurrPtr !=3D NULL && + HobVarStore !=3D NULL && + CacheVariable->StartPtr =3D=3D GetStartPointer (HobVarStore)); +} + +/** + Get temporary buffer for a new variable data. + + @retval Pointer to the buffer address. + +**/ +VARIABLE_HEADER * +GetNewVariableBuffer ( + VOID + ) +{ + VARIABLE_HEADER *NewVariable; + VARIABLE_STORE_HEADER *VarStore; + + // + // Tricky part: Use scratch data area at the end of volatile variable st= ore + // as a temporary storage. + // + VarStore =3D (VARIABLE_STORE_HEADER *)(UINTN) + mVariableModuleGlobal->VariableGlobal.VolatileVariableBase; + NewVariable =3D GetEndPointer (VarStore); + + SetMem (NewVariable, mVariableModuleGlobal->ScratchBufferSize, 0xff); + + return NewVariable; +} + +/** + Delete old copies of variable completely. + + @param[in] VariableName Name of variable. + @param[in] VendorGuid Guid of variable. + @param[in] Variable Pointer to current variable on storag= e. + @param[in,out] CacheVariable Pointer to current variable in cache. + @param[in] VolatileFlag Auth-variable indicator. + + @retval EFI_SUCCESS Variable(s) were deleted successfully. + @retval Others Failed to update variable state. + +**/ +EFI_STATUS +DeleteVariable ( + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + IN VARIABLE_POINTER_TRACK *Variable, + IN OUT VARIABLE_POINTER_TRACK *CacheVariable, + IN BOOLEAN VolatileFlag + ) +{ + EFI_STATUS Status; + + if (Variable->InDeletedTransitionPtr !=3D NULL) { + ASSERT (CacheVariable->InDeletedTransitionPtr !=3D NULL); + // + // Both ADDED and IN_DELETED_TRANSITION variable are present, + // set IN_DELETED_TRANSITION one to DELETED state first. + // + Status =3D UpdateVariableState ( + Variable->InDeletedTransitionPtr, + CacheVariable->InDeletedTransitionPtr, + CacheVariable->InDeletedTransitionPtr->State & VAR_DELETED, + VolatileFlag + ); + if (EFI_ERROR (Status)) { + return Status; + } + } + + ASSERT (CacheVariable->CurrPtr !=3D NULL); + Status =3D UpdateVariableState ( + Variable->CurrPtr, + CacheVariable->CurrPtr, + CacheVariable->CurrPtr->State & VAR_DELETED, + VolatileFlag + ); + + if (!EFI_ERROR (Status)) { + UpdateVariableInfo ( + VariableName, + VendorGuid, + Variable->Volatile, + FALSE, + FALSE, + TRUE, + FALSE, + &gVariableInfo + ); + if (!Variable->Volatile) { + FlushHobVariableToFlash (VariableName, VendorGuid); + } + } + + return Status; +} + +/** + Check if it's the right time to update a variable. + + @param[in] Attributes Attributes of a variable. + + @retval TRUE It's ready for variable update. + @retval FALSE It's NOT ready for variable update. + +**/ +BOOLEAN +ReadyForUpdate ( + IN UINT32 Attributes + ) +{ + if ((mVariableModuleGlobal->FvbInstance =3D=3D NULL) && + !mVariableModuleGlobal->VariableGlobal.EmuNvMode) + { + // + // The FVB protocol is not ready, so the EFI_VARIABLE_WRITE_ARCH_PROTO= COL + // is not installed. + // + if ((Attributes & EFI_VARIABLE_NON_VOLATILE) !=3D 0) { + // + // Trying to update NV variable prior to the installation of + // EFI_VARIABLE_WRITE_ARCH_PROTOCOL + // + DEBUG (( + DEBUG_ERROR, + "Update NV variable before EFI_VARIABLE_WRITE_ARCH_PROTOCOL ready = - %r\n", + EFI_NOT_AVAILABLE_YET + )); + return FALSE; + } else if ((Attributes & VARIABLE_ATTRIBUTE_AT_AW) !=3D 0) { + // + // Trying to update volatile authenticated variable prior to the + // installation of EFI_VARIABLE_WRITE_ARCH_PROTOCOL. The authenticat= ed + // variable perhaps is not initialized, just return here. + // + DEBUG (( + DEBUG_ERROR, + "Update AUTH variable before EFI_VARIABLE_WRITE_ARCH_PROTOCOL read= y - %r\n", + EFI_NOT_AVAILABLE_YET + )); + return FALSE; + } + } + + return TRUE; +} + +/** + Check parameters associated with the variable to update. + + @param[in] Variable Pointer to current variable on storage. + @param[in] CacheVariable Pointer to current variable in cache. @param[in] VariableName Name of variable. @param[in] VendorGuid Guid of variable. @param[in] Data Variable data. @@ -1667,9 +1999,130 @@ AutoUpdateLangVariable ( @param[in] Attributes Attributes of the variable. @param[in] KeyIndex Index of associated public key. @param[in] MonotonicCount Value of associated monotonic count. - @param[in, out] CacheVariable The variable information which is used to = keep track of variable usage. @param[in] TimeStamp Value of associated TimeStamp. =20 + @retval EFI_SUCCESS The variable is ok to be updated. + @retval EFI_ALREADY_STARTED No need to update the variable. + @retval EFI_WRITE_PROTECTED The variable cannot be updated. + @retval EFI_INVALID_PARAMETER The variable attributes are not valid. + @retval EFI_NOT_FOUND Trying to delete non-existing variable. + +**/ +EFI_STATUS +ValidateVariableParameters ( + IN VARIABLE_POINTER_TRACK *Variable, + IN VARIABLE_POINTER_TRACK *CacheVariable, + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + IN VOID *Data, + IN UINTN DataSize, + IN UINT32 Attributes, + IN UINT32 KeyIndex, + IN UINT64 MonotonicCount, + IN EFI_TIME *TimeStamp + ) +{ + BOOLEAN AuthFlag; + + AuthFlag =3D mVariableModuleGlobal->VariableGlobal.AuthFormat; + + if ((DataSize =3D=3D 0) && ((Attributes & EFI_VARIABLE_APPEND_WRITE) != =3D 0)) { + return EFI_ALREADY_STARTED; + } + + if (Variable->CurrPtr !=3D NULL) { + // + // Update/Delete existing variable. + // + if (AtRuntime ()) { + // + // If AtRuntime and the variable is Volatile and Runtime Access, + // the volatile is ReadOnly, and SetVariable should be aborted and + // return EFI_WRITE_PROTECTED. + // + if (Variable->Volatile) { + return EFI_WRITE_PROTECTED; + } + + // + // Only variable that have NV attributes can be updated/deleted in R= untime. + // + if ((CacheVariable->CurrPtr->Attributes & EFI_VARIABLE_NON_VOLATILE)= =3D=3D 0) { + return EFI_INVALID_PARAMETER; + } + + // + // Only variable that have RT attributes can be updated/deleted in R= untime. + // + if ((CacheVariable->CurrPtr->Attributes & EFI_VARIABLE_RUNTIME_ACCES= S) =3D=3D 0) { + return EFI_INVALID_PARAMETER; + } + } + + // + // Variable content unchanged and no need to update timestamp, just re= turn. + // + if ( ((Attributes & EFI_VARIABLE_APPEND_WRITE) =3D=3D 0) + && (TimeStamp =3D=3D NULL) + && (DataSizeOfVariable (CacheVariable->CurrPtr, AuthFlag) =3D=3D Da= taSize) + && (CompareMem (Data, GetVariableDataPtr (CacheVariable->CurrPtr, A= uthFlag), DataSize) =3D=3D 0)) + { + UpdateVariableInfo ( + VariableName, + VendorGuid, + Variable->Volatile, + FALSE, + TRUE, + FALSE, + FALSE, + &gVariableInfo + ); + return EFI_ALREADY_STARTED; + } + } else { + // + // Create a new variable. + // + + // + // Make sure we are trying to create a new variable. You cannot delete= a new + // variable. + // + if ((DataSize =3D=3D 0) || + ((Attributes & (EFI_VARIABLE_RUNTIME_ACCESS|EFI_VARIABLE_BOOTSERVI= CE_ACCESS)) =3D=3D 0)) + { + return EFI_NOT_FOUND; + } + + // + // Only variable have NV|RT attribute can be created in Runtime. + // + if ( AtRuntime () + && ( ((Attributes & EFI_VARIABLE_RUNTIME_ACCESS) =3D=3D 0) + || ((Attributes & EFI_VARIABLE_NON_VOLATILE) =3D=3D 0))) + { + return EFI_INVALID_PARAMETER; + } + } + + return EFI_SUCCESS; +} + +/** + Update the variable region with Variable information. If EFI_VARIABLE_AU= THENTICATED_WRITE_ACCESS is set, + index of associated public key is needed. + + @param[in] VariableName Name of variable. + @param[in] VendorGuid Guid of variable. + @param[in] Data Variable data. + @param[in] DataSize Size of data. 0 means delete. + @param[in] Attributes Attributes of the variable. + @param[in] KeyIndex Index of associated public key. + @param[in] MonotonicCount Value of associated monotonic count. + @param[in,out] CacheVariable The variable information which is used + to keep track of variable usage. + @param[in] TimeStamp Value of associated TimeStamp. + @retval EFI_SUCCESS The update operation is success. @retval EFI_OUT_OF_RESOURCES Variable region is full, can not write oth= er data into this region. =20 @@ -1687,710 +2140,381 @@ UpdateVariable ( IN EFI_TIME *TimeStamp OPTIONAL ) { - EFI_STATUS Status; - VARIABLE_HEADER *NextVariable; - UINTN ScratchSize; - UINTN MaxDataSize; - UINTN VarNameOffset; - UINTN VarDataOffset; - UINTN VarNameSize; - UINTN VarSize; - BOOLEAN Volatile; - EFI_FIRMWARE_VOLUME_BLOCK_PROTOCOL *Fvb; - UINT8 State; - VARIABLE_POINTER_TRACK *Variable; - VARIABLE_POINTER_TRACK NvVariable; - VARIABLE_STORE_HEADER *VariableStoreHeader; - VARIABLE_RUNTIME_CACHE *VolatileCacheInstance; - UINT8 *BufferForMerge; - UINTN MergedBufSize; - BOOLEAN DataReady; - UINTN DataOffset; - BOOLEAN IsCommonVariable; - BOOLEAN IsCommonUserVariable; - AUTHENTICATED_VARIABLE_HEADER *AuthVariable; - BOOLEAN AuthFormat; + EFI_STATUS Status; + VARIABLE_GLOBAL *VarGlobal; + VARIABLE_HEADER *NewVariable; + VARIABLE_HEADER *NextVariable; + VARIABLE_HEADER *UpdatingVariable; + UINTN VarSize; + UINTN UpdateSize; + UINTN Offset; + VARIABLE_POINTER_TRACK *Variable; + VARIABLE_POINTER_TRACK NvVariable; + VARIABLE_STORE_HEADER *VariableStoreHeader; + VARIABLE_RUNTIME_CACHE *VolatileCacheInstance; + BOOLEAN IsCommonVariable; + BOOLEAN IsCommonUserVariable; + BOOLEAN DeleteFlag; + BOOLEAN VolatileFlag; + BOOLEAN HobVarOnlyFlag; + EFI_PHYSICAL_ADDRESS VarStoreBase; + UINTN *LastVariableOffset; =20 - if ((mVariableModuleGlobal->FvbInstance =3D=3D NULL) && !mVariableModule= Global->VariableGlobal.EmuNvMode) { - // - // The FVB protocol is not ready, so the EFI_VARIABLE_WRITE_ARCH_PROTO= COL is not installed. - // - if ((Attributes & EFI_VARIABLE_NON_VOLATILE) !=3D 0) { - // - // Trying to update NV variable prior to the installation of EFI_VAR= IABLE_WRITE_ARCH_PROTOCOL - // - DEBUG ((DEBUG_ERROR, "Update NV variable before EFI_VARIABLE_WRITE_A= RCH_PROTOCOL ready - %r\n", EFI_NOT_AVAILABLE_YET)); - return EFI_NOT_AVAILABLE_YET; - } else if ((Attributes & VARIABLE_ATTRIBUTE_AT_AW) !=3D 0) { - // - // Trying to update volatile authenticated variable prior to the ins= tallation of EFI_VARIABLE_WRITE_ARCH_PROTOCOL - // The authenticated variable perhaps is not initialized, just retur= n here. - // - DEBUG ((DEBUG_ERROR, "Update AUTH variable before EFI_VARIABLE_WRITE= _ARCH_PROTOCOL ready - %r\n", EFI_NOT_AVAILABLE_YET)); - return EFI_NOT_AVAILABLE_YET; - } + if (!ReadyForUpdate (Attributes)) { + return EFI_NOT_AVAILABLE_YET; } =20 - AuthFormat =3D mVariableModuleGlobal->VariableGlobal.AuthFormat; + VarGlobal =3D &mVariableModuleGlobal->VariableGlobal; + + if ( (((Attributes & EFI_VARIABLE_APPEND_WRITE) =3D=3D 0) && (DataSize = =3D=3D 0)) + || (Attributes =3D=3D 0) + || (AtRuntime () && ((Attributes & (EFI_VARIABLE_RUNTIME_ACCESS + |EFI_VARIABLE_BOOTSERVICE_ACCESS)= ) =3D=3D 0))) + { + DeleteFlag =3D TRUE; + } else { + DeleteFlag =3D FALSE; + } + + if ( ((Attributes & EFI_VARIABLE_NON_VOLATILE) !=3D 0) + || ((CacheVariable->CurrPtr !=3D NULL) && + ((CacheVariable->CurrPtr->Attributes & EFI_VARIABLE_NON_VOLATILE)= !=3D 0))) + { + VolatileFlag =3D FALSE; + } else { + VolatileFlag =3D TRUE; + } =20 // // Check if CacheVariable points to the variable in variable HOB. // If yes, let CacheVariable points to the variable in NV variable cache. // - if ((CacheVariable->CurrPtr !=3D NULL) && - (mVariableModuleGlobal->VariableGlobal.HobVariableBase !=3D 0) && - (CacheVariable->StartPtr =3D=3D GetStartPointer ((VARIABLE_STORE_HEA= DER *)(UINTN)mVariableModuleGlobal->VariableGlobal.HobVariableBase)) - ) - { - CacheVariable->StartPtr =3D GetStartPointer (mNvVariableCache); - CacheVariable->EndPtr =3D GetEndPointer (mNvVariableCache); - CacheVariable->Volatile =3D FALSE; - Status =3D FindVariableEx (VariableName, VendorGuid, = FALSE, CacheVariable, AuthFormat); + HobVarOnlyFlag =3D FALSE; + if (IsHobVariable (CacheVariable)) { + Status =3D RebaseVariablePtr ( + CacheVariable, + CacheVariable, + mNvVariableCache, + VariableName, + VendorGuid, + FALSE + ); if ((CacheVariable->CurrPtr =3D=3D NULL) || EFI_ERROR (Status)) { // // There is no matched variable in NV variable cache. // - if ((((Attributes & EFI_VARIABLE_APPEND_WRITE) =3D=3D 0) && (DataSiz= e =3D=3D 0)) || (Attributes =3D=3D 0)) { + if (DeleteFlag) { // - // It is to delete variable, - // go to delete this variable in variable HOB and - // try to flush other variables from HOB to flash. + // Leave the deletion to FlushHobVariableToFlash() before return. // - UpdateVariableInfo (VariableName, VendorGuid, FALSE, FALSE, FALSE,= TRUE, FALSE, &gVariableInfo); - FlushHobVariableToFlash (VariableName, VendorGuid); - return EFI_SUCCESS; + HobVarOnlyFlag =3D TRUE; + Status =3D EFI_SUCCESS; + goto Done; } } } =20 + // + // Determine the physical position of variable store to update, due to c= ache + // mechanims of variable service. + // if ((CacheVariable->CurrPtr =3D=3D NULL) || CacheVariable->Volatile) { + // + // - Add new variable (volatile or non-volatile); Or + // - Update/delete volatile variable in place. + // Variable =3D CacheVariable; } else { // - // Update/Delete existing NV variable. - // CacheVariable points to the variable in the memory copy of Flash ar= ea - // Now let Variable points to the same variable in Flash area. + // - Update/Delete existing NV variable. + // CacheVariable points to the variable in the memory copy of Flash= area. + // Now let Variable points to the same variable in Flash area. // - VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)((UINTN)mVariableModu= leGlobal->VariableGlobal.NonVolatileVariableBase); - Variable =3D &NvVariable; - Variable->StartPtr =3D GetStartPointer (VariableStoreHeader); - Variable->EndPtr =3D (VARIABLE_HEADER *)((UINTN)Variable->StartPtr = + ((UINTN)CacheVariable->EndPtr - (UINTN)CacheVariable->StartPtr)); - - Variable->CurrPtr =3D (VARIABLE_HEADER *)((UINTN)Variable->StartPtr + = ((UINTN)CacheVariable->CurrPtr - (UINTN)CacheVariable->StartPtr)); - if (CacheVariable->InDeletedTransitionPtr !=3D NULL) { - Variable->InDeletedTransitionPtr =3D (VARIABLE_HEADER *)((UINTN)Vari= able->StartPtr + ((UINTN)CacheVariable->InDeletedTransitionPtr - (UINTN)Cac= heVariable->StartPtr)); - } else { - Variable->InDeletedTransitionPtr =3D NULL; - } - - Variable->Volatile =3D FALSE; + VariableStoreHeader =3D (VARIABLE_STORE_HEADER *)(UINTN) + VarGlobal->NonVolatileVariableBase; + Variable =3D &NvVariable; + Status =3D RebaseVariablePtr ( + CacheVariable, + Variable, + VariableStoreHeader, + VariableName, + VendorGuid, + TRUE + ); + ASSERT_EFI_ERROR (Status); } =20 - Fvb =3D mVariableModuleGlobal->FvbInstance; - // - // Tricky part: Use scratch data area at the end of volatile variable st= ore - // as a temporary storage. + // Validate variable parameters. // - NextVariable =3D GetEndPointer ((VARIABLE_STORE_HEADER *)((UINTN)mVariab= leModuleGlobal->VariableGlobal.VolatileVariableBase)); - ScratchSize =3D mVariableModuleGlobal->ScratchBufferSize; - SetMem (NextVariable, ScratchSize, 0xff); - DataReady =3D FALSE; - - if (Variable->CurrPtr !=3D NULL) { - // - // Update/Delete existing variable. - // - if (AtRuntime ()) { - // - // If AtRuntime and the variable is Volatile and Runtime Access, - // the volatile is ReadOnly, and SetVariable should be aborted and - // return EFI_WRITE_PROTECTED. - // - if (Variable->Volatile) { - Status =3D EFI_WRITE_PROTECTED; - goto Done; - } - - // - // Only variable that have NV attributes can be updated/deleted in R= untime. - // - if ((CacheVariable->CurrPtr->Attributes & EFI_VARIABLE_NON_VOLATILE)= =3D=3D 0) { - Status =3D EFI_INVALID_PARAMETER; - goto Done; - } - - // - // Only variable that have RT attributes can be updated/deleted in R= untime. - // - if ((CacheVariable->CurrPtr->Attributes & EFI_VARIABLE_RUNTIME_ACCES= S) =3D=3D 0) { - Status =3D EFI_INVALID_PARAMETER; - goto Done; - } - } - - // - // Setting a data variable with no access, or zero DataSize attributes - // causes it to be deleted. - // When the EFI_VARIABLE_APPEND_WRITE attribute is set, DataSize of ze= ro will - // not delete the variable. - // - if ((((Attributes & EFI_VARIABLE_APPEND_WRITE) =3D=3D 0) && (DataSize = =3D=3D 0)) || ((Attributes & (EFI_VARIABLE_RUNTIME_ACCESS | EFI_VARIABLE_BO= OTSERVICE_ACCESS)) =3D=3D 0)) { - if (Variable->InDeletedTransitionPtr !=3D NULL) { - // - // Both ADDED and IN_DELETED_TRANSITION variable are present, - // set IN_DELETED_TRANSITION one to DELETED state first. - // - ASSERT (CacheVariable->InDeletedTransitionPtr !=3D NULL); - State =3D CacheVariable->InDeletedTransitionPtr->State; - State &=3D VAR_DELETED; - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - Variable->Volatile, - FALSE, - Fvb, - (UINTN)&Variable->InDeletedTransitionPtr->State, - sizeof (UINT8), - &State - ); - if (!EFI_ERROR (Status)) { - if (!Variable->Volatile) { - CacheVariable->InDeletedTransitionPtr->State =3D State; - } - } else { - goto Done; - } - } - - State =3D CacheVariable->CurrPtr->State; - State &=3D VAR_DELETED; - - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - Variable->Volatile, - FALSE, - Fvb, - (UINTN)&Variable->CurrPtr->State, - sizeof (UINT8), - &State - ); - if (!EFI_ERROR (Status)) { - UpdateVariableInfo (VariableName, VendorGuid, Variable->Volatile, = FALSE, FALSE, TRUE, FALSE, &gVariableInfo); - if (!Variable->Volatile) { - CacheVariable->CurrPtr->State =3D State; - FlushHobVariableToFlash (VariableName, VendorGuid); - } - } + Status =3D ValidateVariableParameters ( + Variable, + CacheVariable, + VariableName, + VendorGuid, + Data, + DataSize, + Attributes, + KeyIndex, + MonotonicCount, + TimeStamp + ); + if (EFI_ERROR (Status)) { + goto Done; + } =20 - goto Done; - } + // + // Add or update a variable. Allocate a buffer to hold it temporarily. + // + NewVariable =3D GetNewVariableBuffer (); =20 + // + // Fill-up variable data first, if necessary. + // + IsCommonVariable =3D FALSE; + IsCommonUserVariable =3D FALSE; + if (DeleteFlag) { // - // If the variable is marked valid, and the same data has been passed = in, - // then return to the caller immediately. + // No need to fill up variable buffer when deleting a variable. But the + // buffer is still needed if variable protection is employed. // - if ((DataSizeOfVariable (CacheVariable->CurrPtr, AuthFormat) =3D=3D Da= taSize) && - (CompareMem (Data, GetVariableDataPtr (CacheVariable->CurrPtr, Aut= hFormat), DataSize) =3D=3D 0) && - ((Attributes & EFI_VARIABLE_APPEND_WRITE) =3D=3D 0) && - (TimeStamp =3D=3D NULL)) - { - // - // Variable content unchanged and no need to update timestamp, just = return. - // - UpdateVariableInfo (VariableName, VendorGuid, Variable->Volatile, FA= LSE, TRUE, FALSE, FALSE, &gVariableInfo); - Status =3D EFI_SUCCESS; - goto Done; - } else if ((CacheVariable->CurrPtr->State =3D=3D VAR_ADDED) || - (CacheVariable->CurrPtr->State =3D=3D (VAR_ADDED & VAR_IN_D= ELETED_TRANSITION))) - { - // - // EFI_VARIABLE_APPEND_WRITE attribute only effects for existing var= iable. - // - if ((Attributes & EFI_VARIABLE_APPEND_WRITE) !=3D 0) { - // - // NOTE: From 0 to DataOffset of NextVariable is reserved for Vari= able Header and Name. - // From DataOffset of NextVariable is to save the existing variabl= e data. - // - DataOffset =3D GetVariableDataOffset (CacheVariable->CurrPtr, = AuthFormat); - BufferForMerge =3D (UINT8 *)((UINTN)NextVariable + DataOffset); - CopyMem ( - BufferForMerge, - (UINT8 *)((UINTN)CacheVariable->CurrPtr + DataOffset), - DataSizeOfVariable (CacheVariable->CurrPtr, AuthFormat) - ); - - // - // Set Max Auth/Non-Volatile/Volatile Variable Data Size as defaul= t MaxDataSize. - // - if ((Attributes & VARIABLE_ATTRIBUTE_AT_AW) !=3D 0) { - MaxDataSize =3D mVariableModuleGlobal->MaxAuthVariableSize - Dat= aOffset; - } else if ((Attributes & EFI_VARIABLE_NON_VOLATILE) !=3D 0) { - MaxDataSize =3D mVariableModuleGlobal->MaxVariableSize - DataOff= set; - } else { - MaxDataSize =3D mVariableModuleGlobal->MaxVolatileVariableSize -= DataOffset; - } - - // - // Append the new data to the end of existing data. - // Max Harware error record variable data size is different from c= ommon/auth variable. - // - if ((Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) =3D=3D EFI_V= ARIABLE_HARDWARE_ERROR_RECORD) { - MaxDataSize =3D PcdGet32 (PcdMaxHardwareErrorVariableSize) - Dat= aOffset; - } - - if (DataSizeOfVariable (CacheVariable->CurrPtr, AuthFormat) + Data= Size > MaxDataSize) { - // - // Existing data size + new data size exceed maximum variable si= ze limitation. - // - Status =3D EFI_INVALID_PARAMETER; - goto Done; - } - - CopyMem ( - (UINT8 *)( - (UINTN)BufferForMerge + DataSizeOfVariable (CacheVaria= ble->CurrPtr, AuthFormat) - ), - Data, - DataSize - ); - MergedBufSize =3D DataSizeOfVariable (CacheVariable->CurrPtr, Auth= Format) + - DataSize; - - // - // BufferForMerge(from DataOffset of NextVariable) has included th= e merged existing and new data. - // - Data =3D BufferForMerge; - DataSize =3D MergedBufSize; - DataReady =3D TRUE; - } - - // - // Mark the old variable as in delete transition. - // - State =3D CacheVariable->CurrPtr->State; - State &=3D VAR_IN_DELETED_TRANSITION; - - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - Variable->Volatile, - FALSE, - Fvb, - (UINTN)&Variable->CurrPtr->State, - sizeof (UINT8), - &State - ); - if (EFI_ERROR (Status)) { - goto Done; - } - - if (!Variable->Volatile) { - CacheVariable->CurrPtr->State =3D State; - } - } + VarSize =3D 0; } else { - // - // Not found existing variable. Create a new variable. - // + VarSize =3D SetVariableData ( + NewVariable, + CacheVariable->CurrPtr, + VariableName, + VendorGuid, + Data, + DataSize, + Attributes, + KeyIndex, + MonotonicCount, + TimeStamp + ); =20 - if ((DataSize =3D=3D 0) && ((Attributes & EFI_VARIABLE_APPEND_WRITE) != =3D 0)) { - Status =3D EFI_SUCCESS; - goto Done; - } - - // - // Make sure we are trying to create a new variable. - // Setting a data variable with zero DataSize or no access attributes = means to delete it. - // - if ((DataSize =3D=3D 0) || ((Attributes & (EFI_VARIABLE_RUNTIME_ACCESS= | EFI_VARIABLE_BOOTSERVICE_ACCESS)) =3D=3D 0)) { - Status =3D EFI_NOT_FOUND; - goto Done; - } - - // - // Only variable have NV|RT attribute can be created in Runtime. - // - if (AtRuntime () && - (((Attributes & EFI_VARIABLE_RUNTIME_ACCESS) =3D=3D 0) || ((Attrib= utes & EFI_VARIABLE_NON_VOLATILE) =3D=3D 0))) - { - Status =3D EFI_INVALID_PARAMETER; - goto Done; - } - } - - // - // Function part - create a new variable and copy the data. - // Both update a variable and create a variable will come here. - // - NextVariable->StartId =3D VARIABLE_DATA; - // - // NextVariable->State =3D VAR_ADDED; - // - NextVariable->Reserved =3D 0; - if (mVariableModuleGlobal->VariableGlobal.AuthFormat) { - AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Next= Variable; - AuthVariable->PubKeyIndex =3D KeyIndex; - AuthVariable->MonotonicCount =3D MonotonicCount; - ZeroMem (&AuthVariable->TimeStamp, sizeof (EFI_TIME)); - - if (((Attributes & EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS)= !=3D 0) && - (TimeStamp !=3D NULL)) - { - if ((Attributes & EFI_VARIABLE_APPEND_WRITE) =3D=3D 0) { - CopyMem (&AuthVariable->TimeStamp, TimeStamp, sizeof (EFI_TIME)); - } else { - // - // In the case when the EFI_VARIABLE_APPEND_WRITE attribute is set= , only - // when the new TimeStamp value is later than the current timestam= p associated - // with the variable, we need associate the new timestamp with the= updated value. - // - if (Variable->CurrPtr !=3D NULL) { - if (VariableCompareTimeStampInternal (&(((AUTHENTICATED_VARIABLE= _HEADER *)CacheVariable->CurrPtr)->TimeStamp), TimeStamp)) { - CopyMem (&AuthVariable->TimeStamp, TimeStamp, sizeof (EFI_TIME= )); - } else { - CopyMem (&AuthVariable->TimeStamp, &(((AUTHENTICATED_VARIABLE_= HEADER *)CacheVariable->CurrPtr)->TimeStamp), sizeof (EFI_TIME)); - } - } - } - } - } - - // - // The EFI_VARIABLE_APPEND_WRITE attribute will never be set in the retu= rned - // Attributes bitmask parameter of a GetVariable() call. - // - NextVariable->Attributes =3D Attributes & (~EFI_VARIABLE_APPEND_WRITE); - - VarNameOffset =3D GetVariableHeaderSize (AuthFormat); - VarNameSize =3D StrSize (VariableName); - CopyMem ( - (UINT8 *)((UINTN)NextVariable + VarNameOffset), - VariableName, - VarNameSize - ); - VarDataOffset =3D VarNameOffset + VarNameSize + GET_PAD_SIZE (VarNameSiz= e); - - // - // If DataReady is TRUE, it means the variable data has been saved into - // NextVariable during EFI_VARIABLE_APPEND_WRITE operation preparation. - // - if (!DataReady) { - CopyMem ( - (UINT8 *)((UINTN)NextVariable + VarDataOffset), - Data, - DataSize - ); - } - - CopyMem ( - GetVendorGuidPtr (NextVariable, AuthFormat), - VendorGuid, - sizeof (EFI_GUID) - ); - // - // There will be pad bytes after Data, the NextVariable->NameSize and - // NextVariable->DataSize should not include pad size so that variable - // service can get actual size in GetVariable. - // - SetNameSizeOfVariable (NextVariable, VarNameSize, AuthFormat); - SetDataSizeOfVariable (NextVariable, DataSize, AuthFormat); - - // - // The actual size of the variable that stores in storage should - // include pad size. - // - VarSize =3D VarDataOffset + DataSize + GET_PAD_SIZE (DataSize); - if ((Attributes & EFI_VARIABLE_NON_VOLATILE) !=3D 0) { - // - // Create a nonvolatile variable. - // - Volatile =3D FALSE; - - IsCommonVariable =3D FALSE; - IsCommonUserVariable =3D FALSE; if ((Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) =3D=3D 0) { IsCommonVariable =3D TRUE; - IsCommonUserVariable =3D IsUserVariable (NextVariable); + IsCommonUserVariable =3D IsUserVariable (NewVariable); } + } =20 - if ( ( ((Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) !=3D 0) - && ((VarSize + mVariableModuleGlobal->HwErrVariableTotalSize) > = PcdGet32 (PcdHwErrStorageSize))) - || (IsCommonVariable && ((VarSize + mVariableModuleGlobal->CommonVa= riableTotalSize) > mVariableModuleGlobal->CommonVariableSpace)) - || (IsCommonVariable && AtRuntime () && ((VarSize + mVariableModule= Global->CommonVariableTotalSize) > mVariableModuleGlobal->CommonRuntimeVari= ableSpace)) - || (IsCommonUserVariable && ((VarSize + mVariableModuleGlobal->Comm= onUserVariableTotalSize) > mVariableModuleGlobal->CommonMaxUserVariableSpac= e))) - { - if (AtRuntime ()) { - if (IsCommonUserVariable && ((VarSize + mVariableModuleGlobal->Com= monUserVariableTotalSize) > mVariableModuleGlobal->CommonMaxUserVariableSpa= ce)) { - RecordVarErrorFlag (VAR_ERROR_FLAG_USER_ERROR, VariableName, Ven= dorGuid, Attributes, VarSize); - } - - if (IsCommonVariable && ((VarSize + mVariableModuleGlobal->CommonV= ariableTotalSize) > mVariableModuleGlobal->CommonRuntimeVariableSpace)) { - RecordVarErrorFlag (VAR_ERROR_FLAG_SYSTEM_ERROR, VariableName, V= endorGuid, Attributes, VarSize); - } - - Status =3D EFI_OUT_OF_RESOURCES; - goto Done; - } - - // - // Perform garbage collection & reclaim operation, and integrate the= new variable at the same time. - // - Status =3D Reclaim ( - mVariableModuleGlobal->VariableGlobal.NonVolatileVariable= Base, - &mVariableModuleGlobal->NonVolatileLastVariableOffset, - FALSE, - Variable, - NextVariable, - HEADER_ALIGN (VarSize) - ); - if (!EFI_ERROR (Status)) { - // - // The new variable has been integrated successfully during reclai= ming. - // - if (Variable->CurrPtr !=3D NULL) { - CacheVariable->CurrPtr =3D (VARIABLE_HEADER *)((U= INTN)CacheVariable->StartPtr + ((UINTN)Variable->CurrPtr - (UINTN)Variable-= >StartPtr)); - CacheVariable->InDeletedTransitionPtr =3D NULL; - } - - UpdateVariableInfo (VariableName, VendorGuid, FALSE, FALSE, TRUE, = FALSE, FALSE, &gVariableInfo); - FlushHobVariableToFlash (VariableName, VendorGuid); - } else { - if (IsCommonUserVariable && ((VarSize + mVariableModuleGlobal->Com= monUserVariableTotalSize) > mVariableModuleGlobal->CommonMaxUserVariableSpa= ce)) { - RecordVarErrorFlag (VAR_ERROR_FLAG_USER_ERROR, VariableName, Ven= dorGuid, Attributes, VarSize); - } + // + // We might need to do protection for non-volatile variable before flush= ing + // the data to storage. A null version (meaning no protection) of follow= ing + // APIs should simply return EFI_SUCCESS or EFI_UNSUPPORTED without any + // changes to original data. + // + if (!VolatileFlag) { + Status =3D ProtectedVariableLibUpdate ( + Variable->CurrPtr, + Variable->InDeletedTransitionPtr, + NewVariable, + &VarSize + ); + if (EFI_ERROR (Status) && (Status !=3D EFI_UNSUPPORTED)) { + return Status; + } =20 - if (IsCommonVariable && ((VarSize + mVariableModuleGlobal->CommonV= ariableTotalSize) > mVariableModuleGlobal->CommonVariableSpace)) { - RecordVarErrorFlag (VAR_ERROR_FLAG_SYSTEM_ERROR, VariableName, V= endorGuid, Attributes, VarSize); - } - } + Status =3D EFI_SUCCESS; + } =20 + // + // Mark the old variable as in delete transition first. There's no such = need + // for deleting a variable, even if variable protection is employed. + // + if ( !DeleteFlag + && (CacheVariable->CurrPtr !=3D NULL) + && ( (CacheVariable->CurrPtr->State =3D=3D VAR_ADDED) + || (CacheVariable->CurrPtr->State =3D=3D (VAR_ADDED & VAR_IN_DELET= ED_TRANSITION)))) + { + Status =3D UpdateVariableState ( + Variable->CurrPtr, + CacheVariable->CurrPtr, + CacheVariable->CurrPtr->State & VAR_IN_DELETED_TRANSITION, + Variable->Volatile + ); + if (EFI_ERROR (Status)) { goto Done; } - - if (!mVariableModuleGlobal->VariableGlobal.EmuNvMode) { - // - // Four steps - // 1. Write variable header - // 2. Set variable state to header valid - // 3. Write variable data - // 4. Set variable state to valid - // - // - // Step 1: - // - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - FALSE, - TRUE, - Fvb, - mVariableModuleGlobal->NonVolatileLastVariableOffset, - (UINT32)GetVariableHeaderSize (AuthFormat), - (UINT8 *)NextVariable - ); - - if (EFI_ERROR (Status)) { - goto Done; - } - - // - // Step 2: - // - NextVariable->State =3D VAR_HEADER_VALID_ONLY; - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - FALSE, - TRUE, - Fvb, - mVariableModuleGlobal->NonVolatileLastVariab= leOffset + OFFSET_OF (VARIABLE_HEADER, State), - sizeof (UINT8), - &NextVariable->State - ); - - if (EFI_ERROR (Status)) { - goto Done; - } - - // - // Step 3: - // - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - FALSE, - TRUE, - Fvb, - mVariableModuleGlobal->NonVolatileLastVariableOffset + Ge= tVariableHeaderSize (AuthFormat), - (UINT32)(VarSize - GetVariableHeaderSize (AuthFormat)), - (UINT8 *)NextVariable + GetVariableHeaderSize (AuthFormat) + } + + // + // Have enough space to store the variable? + // + Status =3D CheckVariableStoreSpace ( + NewVariable, + VarSize, + VariableName, + VendorGuid, + Attributes, + VolatileFlag + ); + if (Status =3D=3D EFI_OUT_OF_RESOURCES) { + // + // Not a chance. + // + goto Done; + } + + // + // Maybe not... + // + VarStoreBase =3D (VolatileFlag) ? VarGlobal->VolatileVariableBase + : VarGlobal->NonVolatileVariableBase; + LastVariableOffset =3D (VolatileFlag) + ? &mVariableModuleGlobal->VolatileLastVariableOffs= et + : &mVariableModuleGlobal->NonVolatileLastVariableO= ffset; + if (!EFI_ERROR (Status)) { + // + // There's enough free space at the tail of variable storage. + // + + // + // If non-volatile variable is protected, a separate variable (MetaDat= aHmacVar) + // is always updated along with current updating variable. The buffer = pointed + // by NewVariable must have two variables. They should be written at t= his + // time orderly. + // + NextVariable =3D NewVariable; + UpdatingVariable =3D NULL; + UpdateSize =3D 0; + while ( !EFI_ERROR (Status) + && ((UINTN)NextVariable - (UINTN)NewVariable) < VarSize) + { + UpdatingVariable =3D NextVariable; + NextVariable =3D GetNextVariablePtr (UpdatingVariable, VarGlobal= ->AuthFormat); + UpdateSize =3D (UINTN)NextVariable - (UINTN)UpdatingVariable; + + Status =3D WriteVariable ( + VarStoreBase, + LastVariableOffset, + &UpdatingVariable, + (UINT32)UpdateSize, + VolatileFlag, + VarGlobal->AuthFormat ); - - if (EFI_ERROR (Status)) { - goto Done; - } - - // - // Step 4: - // - NextVariable->State =3D VAR_ADDED; - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - FALSE, - TRUE, - Fvb, - mVariableModuleGlobal->NonVolatileLastVariab= leOffset + OFFSET_OF (VARIABLE_HEADER, State), - sizeof (UINT8), - &NextVariable->State - ); - - if (EFI_ERROR (Status)) { - goto Done; - } - - // - // Update the memory copy of Flash region. - // - CopyMem ((UINT8 *)mNvVariableCache + mVariableModuleGlobal->NonVolat= ileLastVariableOffset, (UINT8 *)NextVariable, VarSize); - } else { - // - // Emulated non-volatile variable mode. - // - NextVariable->State =3D VAR_ADDED; - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - FALSE, - TRUE, - Fvb, - mVariableModuleGlobal->NonVolatileLastVariab= leOffset, - (UINT32)VarSize, - (UINT8 *)NextVariable - ); - - if (EFI_ERROR (Status)) { - goto Done; - } } =20 - mVariableModuleGlobal->NonVolatileLastVariableOffset +=3D HEADER_ALIGN= (VarSize); - + // + // UpdatingVariable must point to the last written variable. Restore i= t to + // the first one so that we can calculate the offset in variable stora= ge. + // + UpdatingVariable =3D (VARIABLE_HEADER *)((UINTN)UpdatingVariable + Upd= ateSize + - VarSize); if ((Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) !=3D 0) { - mVariableModuleGlobal->HwErrVariableTotalSize +=3D HEADER_ALIGN (Var= Size); + mVariableModuleGlobal->HwErrVariableTotalSize +=3D VarSize; } else { - mVariableModuleGlobal->CommonVariableTotalSize +=3D HEADER_ALIGN (Va= rSize); + mVariableModuleGlobal->CommonVariableTotalSize +=3D VarSize; if (IsCommonUserVariable) { - mVariableModuleGlobal->CommonUserVariableTotalSize +=3D HEADER_ALI= GN (VarSize); + mVariableModuleGlobal->CommonUserVariableTotalSize +=3D VarSize; } } - } else { - // - // Create a volatile variable. - // - Volatile =3D TRUE; =20 - if ((UINT32)(VarSize + mVariableModuleGlobal->VolatileLastVariableOffs= et) > - ((VARIABLE_STORE_HEADER *)((UINTN)(mVariableModuleGlobal->Variable= Global.VolatileVariableBase)))->Size) - { - // - // Perform garbage collection & reclaim operation, and integrate the= new variable at the same time. - // - Status =3D Reclaim ( - mVariableModuleGlobal->VariableGlobal.VolatileVariableBas= e, - &mVariableModuleGlobal->VolatileLastVariableOffset, - TRUE, + // + // Mark the old variable(s) as deleted. + // + if (!EFI_ERROR (Status) && (Variable->CurrPtr !=3D NULL)) { + Status =3D DeleteVariable ( + VariableName, + VendorGuid, Variable, - NextVariable, - HEADER_ALIGN (VarSize) + CacheVariable, + VolatileFlag ); - if (!EFI_ERROR (Status)) { - // - // The new variable has been integrated successfully during reclai= ming. - // - if (Variable->CurrPtr !=3D NULL) { - CacheVariable->CurrPtr =3D (VARIABLE_HEADER *)((U= INTN)CacheVariable->StartPtr + ((UINTN)Variable->CurrPtr - (UINTN)Variable-= >StartPtr)); - CacheVariable->InDeletedTransitionPtr =3D NULL; - } - - UpdateVariableInfo (VariableName, VendorGuid, TRUE, FALSE, TRUE, F= ALSE, FALSE, &gVariableInfo); - } - - goto Done; } - - NextVariable->State =3D VAR_ADDED; - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - TRUE, - TRUE, - Fvb, - mVariableModuleGlobal->VolatileLastVariableOff= set, - (UINT32)VarSize, - (UINT8 *)NextVariable - ); - - if (EFI_ERROR (Status)) { - goto Done; - } - - mVariableModuleGlobal->VolatileLastVariableOffset +=3D HEADER_ALIGN (V= arSize); - } - - // - // Mark the old variable as deleted. - // - if (!EFI_ERROR (Status) && (Variable->CurrPtr !=3D NULL)) { - if (Variable->InDeletedTransitionPtr !=3D NULL) { - // - // Both ADDED and IN_DELETED_TRANSITION old variable are present, - // set IN_DELETED_TRANSITION one to DELETED state first. - // - ASSERT (CacheVariable->InDeletedTransitionPtr !=3D NULL); - State =3D CacheVariable->InDeletedTransitionPtr->State; - State &=3D VAR_DELETED; - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - Variable->Volatile, - FALSE, - Fvb, - (UINTN)&Variable->InDeletedTransitionPtr->State, - sizeof (UINT8), - &State - ); - if (!EFI_ERROR (Status)) { - if (!Variable->Volatile) { - CacheVariable->InDeletedTransitionPtr->State =3D State; - } - } else { - goto Done; - } - } - - State =3D CacheVariable->CurrPtr->State; - State &=3D VAR_DELETED; - - Status =3D UpdateVariableStore ( - &mVariableModuleGlobal->VariableGlobal, - Variable->Volatile, - FALSE, - Fvb, - (UINTN)&Variable->CurrPtr->State, - sizeof (UINT8), - &State + } else { + // + // There's not enough space at the tail of variable storage but there's + // enough free space holes in the whole storage. Perform garbage colle= ction + // & reclaim operation, and integrate the new variable at the same tim= e. + // + Status =3D Reclaim ( + VarStoreBase, + LastVariableOffset, + VolatileFlag, + Variable, + NewVariable, + VarSize ); - if (!EFI_ERROR (Status) && !Variable->Volatile) { - CacheVariable->CurrPtr->State =3D State; - } - } + UpdatingVariable =3D Variable->CurrPtr; =20 - if (!EFI_ERROR (Status)) { - UpdateVariableInfo (VariableName, VendorGuid, Volatile, FALSE, TRUE, F= ALSE, FALSE, &gVariableInfo); - if (!Volatile) { - FlushHobVariableToFlash (VariableName, VendorGuid); + if (EFI_ERROR (Status) && + ((Attributes & EFI_VARIABLE_HARDWARE_ERROR_RECORD) =3D=3D 0)) + { + // + // Out of space. + // + IsCommonUserVariable =3D IsUserVariable (NewVariable); + IsCommonVariable =3D TRUE; + + if (IsCommonUserVariable && + ((VarSize + mVariableModuleGlobal->CommonUserVariableTotalSize) + > mVariableModuleGlobal->CommonMaxUserVariableSpace)) + { + RecordVarErrorFlag ( + VAR_ERROR_FLAG_USER_ERROR, + VariableName, + VendorGuid, + Attributes, + VarSize + ); + } + + if (IsCommonVariable && + ((VarSize + mVariableModuleGlobal->CommonVariableTotalSize) + > mVariableModuleGlobal->CommonVariableSpace)) + { + RecordVarErrorFlag ( + VAR_ERROR_FLAG_SYSTEM_ERROR, + VariableName, + VendorGuid, + Attributes, + VarSize + ); + } } } =20 Done: if (!EFI_ERROR (Status)) { - if (((Variable->CurrPtr !=3D NULL) && !Variable->Volatile) || ((Attrib= utes & EFI_VARIABLE_NON_VOLATILE) !=3D 0)) { - VolatileCacheInstance =3D &(mVariableModuleGlobal->VariableGlobal.Va= riableRuntimeCacheContext.VariableRuntimeNvCache); + if (!VolatileFlag) { + Offset =3D (UpdatingVariable !=3D NULL) ? (UINTN)UpdatingVariable - = (UINTN)VarStoreBase + : 0; + Status =3D ProtectedVariableLibWriteFinal ( + NewVariable, + VarSize, + Offset + ); + if (EFI_ERROR (Status) && (Status !=3D EFI_UNSUPPORTED)) { + return Status; + } + + Status =3D EFI_SUCCESS; + } + + UpdateVariableInfo ( + VariableName, + VendorGuid, + VolatileFlag, + FALSE, + TRUE, + FALSE, + FALSE, + &gVariableInfo + ); + // + // HOB copy of the same variable is no longer needed, no matter it has + // been deleted, updated or added from/to real variable storage. + // + if (HobVarOnlyFlag || !VolatileFlag) { + FlushHobVariableToFlash (VariableName, VendorGuid); + } + + if (!VolatileFlag) { + VolatileCacheInstance =3D &(VarGlobal->VariableRuntimeCacheContext.V= ariableRuntimeNvCache); } else { - VolatileCacheInstance =3D &(mVariableModuleGlobal->VariableGlobal.Va= riableRuntimeCacheContext.VariableRuntimeVolatileCache); + VolatileCacheInstance =3D &(VarGlobal->VariableRuntimeCacheContext.V= ariableRuntimeVolatileCache); } =20 if (VolatileCacheInstance->Store !=3D NULL) { @@ -2401,6 +2525,11 @@ Done: ); ASSERT_EFI_ERROR (Status); } + } else if (Status =3D=3D EFI_ALREADY_STARTED) { + // + // Meaning nothing needs to be done. Just return success. + // + Status =3D EFI_SUCCESS; } =20 return Status; @@ -2440,7 +2569,6 @@ VariableServiceGetVariable ( { EFI_STATUS Status; VARIABLE_POINTER_TRACK Variable; - UINTN VarDataSize; =20 if ((VariableName =3D=3D NULL) || (VendorGuid =3D=3D NULL) || (DataSize = =3D=3D NULL)) { return EFI_INVALID_PARAMETER; @@ -2458,28 +2586,26 @@ VariableServiceGetVariable ( } =20 // - // Get data size + // Get data and its size // - VarDataSize =3D DataSizeOfVariable (Variable.CurrPtr, mVariableModuleGlo= bal->VariableGlobal.AuthFormat); - ASSERT (VarDataSize !=3D 0); + if (!Variable.Volatile) { + // + // Currently only non-volatile variable needs protection. + // + Status =3D ProtectedVariableLibGetByBuffer ( + Variable.CurrPtr, + Data, + (UINT32 *)DataSize, + mVariableModuleGlobal->VariableGlobal.AuthFormat + ); + } =20 - if (*DataSize >=3D VarDataSize) { - if (Data =3D=3D NULL) { - Status =3D EFI_INVALID_PARAMETER; - goto Done; - } + if (Variable.Volatile || (Status =3D=3D EFI_UNSUPPORTED)) { + Status =3D GetVariableData (Variable.CurrPtr, Data, (UINT32 *)DataSize= , mVariableModuleGlobal->VariableGlobal.AuthFormat); + } =20 - CopyMem (Data, GetVariableDataPtr (Variable.CurrPtr, mVariableModuleGl= obal->VariableGlobal.AuthFormat), VarDataSize); - - *DataSize =3D VarDataSize; + if (!EFI_ERROR (Status)) { UpdateVariableInfo (VariableName, VendorGuid, Variable.Volatile, TRUE,= FALSE, FALSE, FALSE, &gVariableInfo); - - Status =3D EFI_SUCCESS; - goto Done; - } else { - *DataSize =3D VarDataSize; - Status =3D EFI_BUFFER_TOO_SMALL; - goto Done; } =20 Done: @@ -2860,7 +2986,7 @@ VariableServiceSetVariable ( // Parse non-volatile variable data and get last variable offset. // NextVariable =3D GetStartPointer ((VARIABLE_STORE_HEADER *)(UINTN)Poin= t); - while (IsValidVariableHeader (NextVariable, GetEndPointer ((VARIABLE_S= TORE_HEADER *)(UINTN)Point))) { + while (IsValidVariableHeader (NextVariable, GetEndPointer ((VARIABLE_S= TORE_HEADER *)(UINTN)Point), AuthFormat)) { NextVariable =3D GetNextVariablePtr (NextVariable, AuthFormat); } =20 @@ -3022,7 +3148,12 @@ VariableServiceQueryVariableInfoInternal ( // // Now walk through the related variable store. // - while (IsValidVariableHeader (Variable, GetEndPointer (VariableStoreHead= er))) { + while (IsValidVariableHeader ( + Variable, + GetEndPointer (VariableStoreHeader), + mVariableModuleGlobal->VariableGlobal.AuthFormat + )) + { NextVariable =3D GetNextVariablePtr (Variable, mVariableModuleGlobal->= VariableGlobal.AuthFormat); VariableSize =3D (UINT64)(UINTN)NextVariable - (UINT64)(UINTN)Variable; =20 @@ -3315,7 +3446,7 @@ FlushHobVariableToFlash ( // mVariableModuleGlobal->VariableGlobal.HobVariableBase =3D 0; for ( Variable =3D GetStartPointer (VariableStoreHeader) - ; IsValidVariableHeader (Variable, GetEndPointer (VariableStoreH= eader)) + ; IsValidVariableHeader (Variable, GetEndPointer (VariableStoreH= eader), AuthFormat) ; Variable =3D GetNextVariablePtr (Variable, AuthFormat) ) { @@ -3525,11 +3656,11 @@ ConvertNormalVarStorageToAuthVarStorage ( VARIABLE_HEADER *StartPtr; UINT8 *NextPtr; VARIABLE_HEADER *EndPtr; - UINTN AuthVarStroageSize; + UINTN AuthVarStorageSize; AUTHENTICATED_VARIABLE_HEADER *AuthStartPtr; VARIABLE_STORE_HEADER *AuthVarStorage; =20 - AuthVarStroageSize =3D sizeof (VARIABLE_STORE_HEADER); + AuthVarStorageSize =3D sizeof (VARIABLE_STORE_HEADER); // // Set AuthFormat as FALSE for normal variable storage // @@ -3542,10 +3673,10 @@ ConvertNormalVarStorageToAuthVarStorage ( EndPtr =3D GetEndPointer (NormalVarStorage); while (StartPtr < EndPtr) { if (StartPtr->State =3D=3D VAR_ADDED) { - AuthVarStroageSize =3D HEADER_ALIGN (AuthVarStroageSize); - AuthVarStroageSize +=3D sizeof (AUTHENTICATED_VARIABLE_HEADER); - AuthVarStroageSize +=3D StartPtr->NameSize + GET_PAD_SIZE (StartPtr-= >NameSize); - AuthVarStroageSize +=3D StartPtr->DataSize + GET_PAD_SIZE (StartPtr-= >DataSize); + AuthVarStorageSize =3D HEADER_ALIGN (AuthVarStorageSize); + AuthVarStorageSize +=3D sizeof (AUTHENTICATED_VARIABLE_HEADER); + AuthVarStorageSize +=3D StartPtr->NameSize + GET_PAD_SIZE (StartPtr-= >NameSize); + AuthVarStorageSize +=3D StartPtr->DataSize + GET_PAD_SIZE (StartPtr-= >DataSize); } =20 StartPtr =3D GetNextVariablePtr (StartPtr, mVariableModuleGlobal->Vari= ableGlobal.AuthFormat); @@ -3554,7 +3685,7 @@ ConvertNormalVarStorageToAuthVarStorage ( // // Allocate Runtime memory for Auth Variable Storage // - AuthVarStorage =3D AllocateRuntimeZeroPool (AuthVarStroageSize); + AuthVarStorage =3D AllocateRuntimeZeroPool (AuthVarStorageSize); ASSERT (AuthVarStorage !=3D NULL); if (AuthVarStorage =3D=3D NULL) { return NULL; @@ -3608,7 +3739,7 @@ ConvertNormalVarStorageToAuthVarStorage ( AuthVarStorage->State =3D NormalVarStorage->State; AuthVarStorage->Size =3D (UINT32)((UINTN)AuthStartPtr - (UINTN)AuthVar= Storage); CopyGuid (&AuthVarStorage->Signature, &gEfiAuthenticatedVariableGuid); - ASSERT (AuthVarStorage->Size <=3D AuthVarStroageSize); + ASSERT (AuthVarStorage->Size <=3D AuthVarStorageSize); =20 // // Restore AuthFormat @@ -3774,7 +3905,7 @@ VariableCommonInitialize ( // // Allocate memory for volatile variable store, note that there is a scr= atch space to store scratch data. // - ScratchSize =3D GetMaxVariableSize (); + ScratchSize =3D GetMaxVariableSize () * 2; mVariableModuleGlobal->ScratchBufferSize =3D ScratchSize; VolatileVariableStore =3D AllocateRuntimePool (PcdGet= 32 (PcdVariableStoreSize) + ScratchSize); if (VolatileVariableStore =3D=3D NULL) { diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableDxe.c b/Mde= ModulePkg/Universal/Variable/RuntimeDxe/VariableDxe.c index 03fec3048dc4..52bf29ec4c5c 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableDxe.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableDxe.c @@ -3,7 +3,7 @@ and volatile storage space and install variable architecture protocol. =20 Copyright (C) 2013, Red Hat, Inc. -Copyright (c) 2006 - 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
(C) Copyright 2015 Hewlett Packard Enterprise Development LP
Copyright (c) Microsoft Corporation. SPDX-License-Identifier: BSD-2-Clause-Patent @@ -14,6 +14,7 @@ SPDX-License-Identifier: BSD-2-Clause-Patent =20 #include #include +#include "VariableParsing.h" =20 EFI_STATUS EFIAPI @@ -534,6 +535,29 @@ VariableServiceInitialize ( EFI_EVENT ReadyToBootEvent; EFI_EVENT EndOfDxeEvent; =20 + PROTECTED_VARIABLE_CONTEXT_IN ContextIn; + + // + // Initialze protected variable service, if enabled. + // + ContextIn.StructSize =3D sizeof (ContextIn); + ContextIn.StructVersion =3D PROTECTED_VARIABLE_CONTEXT_IN_STRUCT_VERSION; + + ContextIn.FindVariableSmm =3D NULL; + ContextIn.GetVariableInfo =3D GetVariableInfo; + ContextIn.GetNextVariableInfo =3D GetNextVariableInfo; + ContextIn.UpdateVariableStore =3D VariableExLibUpdateNvVariable; + ContextIn.UpdateVariable =3D VariableExLibUpdateVariable; + + ContextIn.MaxVariableSize =3D (UINT32)GetMaxVariableSize (); + ContextIn.VariableServiceUser =3D FromSmmModule; + + Status =3D ProtectedVariableLibInitialize (&ContextIn); + if (EFI_ERROR (Status) && (Status !=3D EFI_UNSUPPORTED)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + Status =3D VariableCommonInitialize (); ASSERT_EFI_ERROR (Status); =20 diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableExLib.c b/M= deModulePkg/Universal/Variable/RuntimeDxe/VariableExLib.c index 62cde0335512..5904bcbff78a 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableExLib.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableExLib.c @@ -1,13 +1,14 @@ /** @file Provides variable driver extended services. =20 -Copyright (c) 2015 - 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2015 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ =20 #include "Variable.h" #include "VariableParsing.h" +#include "VariableRuntimeCache.h" =20 /** Finds variable in storage blocks of volatile and non-volatile storage ar= eas. @@ -38,6 +39,7 @@ VariableExLibFindVariable ( EFI_STATUS Status; VARIABLE_POINTER_TRACK Variable; AUTHENTICATED_VARIABLE_HEADER *AuthVariable; + PROTECTED_VARIABLE_INFO VarInfo; =20 Status =3D FindVariable ( VariableName, @@ -56,9 +58,12 @@ VariableExLibFindVariable ( return Status; } =20 - AuthVariableInfo->DataSize =3D DataSizeOfVariable (Variable.CurrPtr, m= VariableModuleGlobal->VariableGlobal.AuthFormat); - AuthVariableInfo->Data =3D GetVariableDataPtr (Variable.CurrPtr, m= VariableModuleGlobal->VariableGlobal.AuthFormat); - AuthVariableInfo->Attributes =3D Variable.CurrPtr->Attributes; + AuthVariableInfo->NameSize =3D NameSizeOfVariable (Variable.CurrPtr,= mVariableModuleGlobal->VariableGlobal.AuthFormat); + AuthVariableInfo->VariableName =3D GetVariableNamePtr (Variable.CurrPtr,= mVariableModuleGlobal->VariableGlobal.AuthFormat); + AuthVariableInfo->VendorGuid =3D GetVendorGuidPtr (Variable.CurrPtr, m= VariableModuleGlobal->VariableGlobal.AuthFormat); + AuthVariableInfo->DataSize =3D DataSizeOfVariable (Variable.CurrPtr,= mVariableModuleGlobal->VariableGlobal.AuthFormat); + AuthVariableInfo->Data =3D GetVariableDataPtr (Variable.CurrPtr,= mVariableModuleGlobal->VariableGlobal.AuthFormat); + AuthVariableInfo->Attributes =3D Variable.CurrPtr->Attributes; if (mVariableModuleGlobal->VariableGlobal.AuthFormat) { AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)= Variable.CurrPtr; AuthVariableInfo->PubKeyIndex =3D AuthVariable->PubKeyIndex; @@ -66,6 +71,24 @@ VariableExLibFindVariable ( AuthVariableInfo->TimeStamp =3D &AuthVariable->TimeStamp; } =20 + CopyMem (&VarInfo.Header, AuthVariableInfo, sizeof (VarInfo.Header)); + + VarInfo.Buffer =3D Variable.CurrPtr; + VarInfo.PlainData =3D NULL; + VarInfo.PlainDataSize =3D 0; + VarInfo.Flags.Auth =3D mVariableModuleGlobal->VariableGlobal.AuthForm= at; + + // + // In case the variable is encrypted. + // + Status =3D ProtectedVariableLibGetByInfo (&VarInfo); + if (!EFI_ERROR (Status)) { + if (VarInfo.PlainData !=3D NULL) { + AuthVariableInfo->Data =3D VarInfo.PlainData; + AuthVariableInfo->DataSize =3D VarInfo.PlainDataSize; + } + } + return EFI_SUCCESS; } =20 @@ -99,6 +122,7 @@ VariableExLibFindNextVariable ( VARIABLE_HEADER *VariablePtr; AUTHENTICATED_VARIABLE_HEADER *AuthVariablePtr; VARIABLE_STORE_HEADER *VariableStoreHeader[VariableStoreTypeMax= ]; + PROTECTED_VARIABLE_INFO VarInfo; =20 VariableStoreHeader[VariableStoreTypeVolatile] =3D (VARIABLE_STORE_HEADE= R *)(UINTN)mVariableModuleGlobal->VariableGlobal.VolatileVariableBase; VariableStoreHeader[VariableStoreTypeHob] =3D (VARIABLE_STORE_HEADE= R *)(UINTN)mVariableModuleGlobal->VariableGlobal.HobVariableBase; @@ -123,6 +147,7 @@ VariableExLibFindNextVariable ( return Status; } =20 + AuthVariableInfo->NameSize =3D NameSizeOfVariable (VariablePtr, mVar= iableModuleGlobal->VariableGlobal.AuthFormat); AuthVariableInfo->VariableName =3D GetVariableNamePtr (VariablePtr, mVar= iableModuleGlobal->VariableGlobal.AuthFormat); AuthVariableInfo->VendorGuid =3D GetVendorGuidPtr (VariablePtr, mVaria= bleModuleGlobal->VariableGlobal.AuthFormat); AuthVariableInfo->DataSize =3D DataSizeOfVariable (VariablePtr, mVar= iableModuleGlobal->VariableGlobal.AuthFormat); @@ -135,6 +160,20 @@ VariableExLibFindNextVariable ( AuthVariableInfo->TimeStamp =3D &AuthVariablePtr->TimeStamp; } =20 + CopyMem (&VarInfo.Header, AuthVariableInfo, sizeof (VarInfo.Header)); + + VarInfo.Buffer =3D VariablePtr; + VarInfo.PlainData =3D NULL; + VarInfo.PlainDataSize =3D 0; + + Status =3D ProtectedVariableLibGetByInfo (&VarInfo); + if (!EFI_ERROR (Status)) { + if (VarInfo.PlainData !=3D NULL) { + AuthVariableInfo->Data =3D VarInfo.PlainData; + AuthVariableInfo->DataSize =3D VarInfo.PlainDataSize; + } + } + return EFI_SUCCESS; } =20 @@ -256,3 +295,123 @@ VariableExLibAtRuntime ( { return AtRuntime (); } + +/** + Update partial data of a variable on NV storage and/or cached copy. + + @param[in] VariableInfo Pointer to a variable with detailed informatio= n. + @param[in] Offset Offset to write from. + @param[in] Size Size of data Buffer to update. + @param[in] Buffer Pointer to data buffer to update. + + @retval EFI_SUCCESS The variable data was updated successful= ly. + @retval EFI_UNSUPPORTED If this function is called directly in r= untime. + @retval EFI_INVALID_PARAMETER If VariableInfo, Buffer or Size are not = valid. + @retval Others Failed to update NV storage or variable = cache. + +**/ +EFI_STATUS +EFIAPI +VariableExLibUpdateNvVariable ( + IN PROTECTED_VARIABLE_INFO *VariableInfo, + IN UINTN Offset, + IN UINT32 Size, + IN UINT8 *Buffer + ) +{ + EFI_STATUS Status; + VARIABLE_GLOBAL *Global; + VARIABLE_RUNTIME_CACHE *CacheInstance; + VARIABLE_HEADER *VariableCache; + + if ((mVariableModuleGlobal =3D=3D NULL) || (mNvVariableCache =3D=3D NULL= )) { + return EFI_UNSUPPORTED; + } + + // + // Flush the cache to store. + // + if (Size =3D=3D (UINT32)-1) { + Status =3D FtwVariableSpace ( + mVariableModuleGlobal->VariableGlobal.NonVolatileVariableBa= se, + mNvVariableCache + ); + if ( !EFI_ERROR (Status) + && (mVariableModuleGlobal->VariableGlobal.HobVariableBase !=3D 0)) + { + FlushHobVariableToFlash (NULL, NULL); + if (mVariableModuleGlobal->VariableGlobal.HobVariableBase !=3D 0) { + FreePool ((VOID *)(UINTN)mVariableModuleGlobal->VariableGlobal.Hob= VariableBase); + mVariableModuleGlobal->VariableGlobal.HobVariableBase =3D 0; + } + } + + return Status; + } + + if ( (VariableInfo =3D=3D NULL) + || (VariableInfo->StoreIndex =3D=3D VAR_INDEX_INVALID) + || (Buffer =3D=3D NULL) + || (Size =3D=3D 0)) + { + ASSERT (VariableInfo !=3D NULL); + ASSERT (VariableInfo->StoreIndex !=3D VAR_INDEX_INVALID); + ASSERT (Buffer !=3D NULL); + ASSERT (Size !=3D 0); + return EFI_INVALID_PARAMETER; + } + + Global =3D &mVariableModuleGlobal->VariableGlobal; + + VariableCache =3D (VARIABLE_HEADER *)((UINTN)mNvVariableCache + (UINTN)V= ariableInfo->StoreIndex); + + ASSERT ( + StrCmp ( + VariableInfo->Header.VariableName, + GetVariableNamePtr (VariableCache, Global->AuthFormat) + ) =3D=3D 0 + ); + ASSERT ( + CompareGuid ( + VariableInfo->Header.VendorGuid, + GetVendorGuidPtr (VariableCache, Global->AuthFormat) + ) + ); + + // + // Forcibly update part data of flash copy of the variable ... + // + Status =3D UpdateVariableStore ( + Global, + FALSE, + FALSE, + mVariableModuleGlobal->FvbInstance, + (UINTN)(Global->NonVolatileVariableBase + VariableInfo->Stor= eIndex + Offset), + Size, + Buffer + ); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + // + // ... as well as the local cached copy. + // + CopyMem ((VOID *)((UINTN)VariableCache + Offset), Buffer, Size); + + // + // Sync remote cached copy. + // + CacheInstance =3D &Global->VariableRuntimeCacheContext.VariableRuntimeNv= Cache; + if (CacheInstance->Store !=3D NULL) { + Status =3D SynchronizeRuntimeVariableCache ( + CacheInstance, + (UINTN)VariableInfo->StoreIndex + Offset, + Size + ); + ASSERT_EFI_ERROR (Status); + } + + return EFI_SUCCESS; +} diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableNonVolatile= .c b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableNonVolatile.c index 5e9d40b67ac2..e8b8f0b7f705 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableNonVolatile.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableNonVolatile.c @@ -1,7 +1,7 @@ /** @file Common variable non-volatile store routines. =20 -Copyright (c) 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2019 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ @@ -120,6 +120,181 @@ InitEmuNonVolatileVariableStore ( return EFI_SUCCESS; } =20 +/** + + Create a dummy variable used to fill the gap in NV variable storage caus= ed by + the invalid variables found in HMAC verification phase. + + @param[out] Variable Variable buffer. + @param[in] Name Variable Name. + @param[in] Guid Vendor GUID of the variable. + @param[in] Size Whole size of the variable requested. + @param[in] AuthFlag Variable format flag. + +**/ +STATIC +VOID +CreateDummyVariable ( + OUT VARIABLE_HEADER *Variable, + IN CHAR16 *Name, + IN EFI_GUID *Guid, + IN UINT32 Size, + IN BOOLEAN AuthFlag + ) +{ + AUTHENTICATED_VARIABLE_HEADER *AuthVariable; + + ASSERT (Variable !=3D NULL); + + if (Name =3D=3D NULL) { + Name =3D L"Dummy"; + } + + if (AuthFlag) { + AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; + + AuthVariable->StartId =3D VARIABLE_DATA; + AuthVariable->State =3D VAR_ADDED & VAR_DELETED; + AuthVariable->Attributes =3D EFI_VARIABLE_NON_VOLATILE; + AuthVariable->NameSize =3D (UINT32)StrSize (Name); + AuthVariable->DataSize =3D Size - sizeof (AUTHENTICATED_VARIABLE_HEA= DER) + - AuthVariable->NameSize; + if (Guid !=3D NULL) { + CopyMem ((VOID *)&AuthVariable->VendorGuid, (VOID *)Guid, sizeof (EF= I_GUID)); + } + + CopyMem (GetVariableNamePtr (Variable, AuthFlag), (VOID *)Name, AuthVa= riable->NameSize); + } else { + Variable->StartId =3D VARIABLE_DATA; + Variable->State =3D VAR_ADDED & VAR_DELETED; + Variable->Attributes =3D EFI_VARIABLE_NON_VOLATILE; + Variable->NameSize =3D (UINT32)StrSize (Name); + Variable->DataSize =3D Size - sizeof (VARIABLE_HEADER) - Variable->N= ameSize; + if (Guid !=3D NULL) { + CopyMem ((VOID *)&Variable->VendorGuid, (VOID *)Guid, sizeof (EFI_GU= ID)); + } + + CopyMem (GetVariableNamePtr (Variable, AuthFlag), (VOID *)Name, Variab= le->NameSize); + } +} + +/** + + Init protected variable store. + + @param[in, out] VariableStore Pointer to real protected variable store= base. + +**/ +EFI_STATUS +InitProtectedVariableStore ( + IN OUT VARIABLE_STORE_HEADER *VariableStore + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_INFO VarInfo; + UINTN Size; + UINTN Index; + BOOLEAN AuthFlag; + EFI_PHYSICAL_ADDRESS NextVariableStore; + EFI_PHYSICAL_ADDRESS *VarList; + UINTN NumVars; + UINTN CurrVar; + + SetMem ( + (UINT8 *)VariableStore + sizeof (VARIABLE_STORE_HEADER), + VariableStore->Size - sizeof (VARIABLE_STORE_HEADER), + 0xFF + ); + Index =3D sizeof (VARIABLE_STORE_HEADER); + + VarList =3D NULL; + NumVars =3D 0; + ProtectedVariableLibGetSortedList (&VarList, &NumVars); + + // + // Search variable in the order of StoreIndex + // + ZeroMem (&VarInfo, sizeof (VarInfo)); + + for (CurrVar =3D 0; CurrVar < NumVars; CurrVar++) { + VarInfo.Buffer =3D NULL; + VarInfo.StoreIndex =3D VarList[CurrVar]; + if (VarInfo.StoreIndex =3D=3D VAR_INDEX_INVALID) { + break; + } + + Status =3D ProtectedVariableLibFind (&VarInfo); + if (EFI_ERROR (Status)) { + break; + } + + ASSERT (VarInfo.Buffer !=3D NULL); + + AuthFlag =3D VarInfo.Flags.Auth; + if (VarInfo.StoreIndex =3D=3D VAR_INDEX_INVALID) { + continue; + } else { + ASSERT (VarInfo.StoreIndex =3D=3D HEADER_ALIGN (VarInfo.StoreIndex)); + ASSERT (VarInfo.StoreIndex < (VariableStore->Size - sizeof (VARIABLE= _STORE_HEADER))); + ASSERT ((VariableStore->Size - VarInfo.StoreIndex) > GetVariableHead= erSize (AuthFlag)); + } + + // + // Fill gap caused by invalid variable. + // + if (VarInfo.StoreIndex > Index) { + Size =3D (UINTN)VarInfo.StoreIndex - Index; + CreateDummyVariable ( + (VARIABLE_HEADER *)((UINT8 *)VariableStore + Index), + NULL, + NULL, + (UINT32)Size, + AuthFlag + ); + Index +=3D Size; + } + + Size =3D (UINTN)GetNextVariablePtr (VarInfo.Buffer, AuthFlag) + - (UINTN)VarInfo.Buffer; + CopyMem ((UINT8 *)VariableStore + VarInfo.StoreIndex, VarInfo.Buffer, = Size); + + Index +=3D Size; + Index =3D HEADER_ALIGN (Index); + + NextVariableStore =3D (EFI_PHYSICAL_ADDRESS)((UINTN)VariableStore + Va= rInfo.StoreIndex + Size); + } + + // + // Search variable in the order of StoreIndex + // + ZeroMem (&VarInfo, sizeof (VarInfo)); + for ( ; CurrVar < NumVars; CurrVar++) { + VarInfo.Buffer =3D NULL; + VarInfo.StoreIndex =3D VarList[CurrVar]; + Status =3D ProtectedVariableLibFind (&VarInfo); + if (EFI_ERROR (Status)) { + break; + } + + ASSERT (VarInfo.Buffer !=3D NULL); + + AuthFlag =3D VarInfo.Flags.Auth; + if (VarInfo.StoreIndex =3D=3D VAR_INDEX_INVALID) { + Size =3D (UINTN)GetNextVariablePtr (VarInfo.Buffer, AuthFlag) + - (UINTN)VarInfo.Buffer; + CopyMem ((UINT8 *)&NextVariableStore, VarInfo.Buffer, Size); + Status =3D ProtectedVariableLibRefresh (VarInfo.Buffer, 0= , NextVariableStore - (UINTN)VariableStore, FALSE); + NextVariableStore =3D NextVariableStore + Size; + } + } + + if (Status =3D=3D EFI_UNSUPPORTED) { + return Status; + } + + return EFI_SUCCESS; +} + /** Init real non-volatile variable store. =20 @@ -230,6 +405,16 @@ InitRealNonVolatileVariableStore ( return EFI_VOLUME_CORRUPTED; } =20 + // + // Overwrite the store with verified copy of protected variables, if ena= bled. + // + Status =3D InitProtectedVariableStore (VariableStore); + if ((Status !=3D EFI_SUCCESS) && (Status !=3D EFI_UNSUPPORTED)) { + FreePool (NvStorageData); + DEBUG ((DEBUG_ERROR, "Variable integrity might have been compromised\n= ")); + return Status; + } + mNvFvHeaderCache =3D FvHeader; =20 *VariableStoreBase =3D (EFI_PHYSICAL_ADDRESS)(UINTN)VariableStore; @@ -323,7 +508,12 @@ InitNonVolatileVariableStore ( // Parse non-volatile variable data and get last variable offset. // Variable =3D GetStartPointer (mNvVariableCache); - while (IsValidVariableHeader (Variable, GetEndPointer (mNvVariableCache)= )) { + while (IsValidVariableHeader ( + Variable, + GetEndPointer (mNvVariableCache), + mVariableModuleGlobal->VariableGlobal.AuthFormat + )) + { NextVariable =3D GetNextVariablePtr (Variable, mVariableModuleGlobal->= VariableGlobal.AuthFormat); VariableSize =3D (UINTN)NextVariable - (UINTN)Variable; if ((Variable->Attributes & (EFI_VARIABLE_NON_VOLATILE | EFI_VARIABLE_= HARDWARE_ERROR_RECORD)) =3D=3D (EFI_VARIABLE_NON_VOLATILE | EFI_VARIABLE_HA= RDWARE_ERROR_RECORD)) { diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.c b= /MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.c index 39060ed405b8..000e4b546888 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableParsing.c @@ -2,11 +2,12 @@ Functions in this module are associated with variable parsing operations= and are intended to be usable across variable driver source files. =20 -Copyright (c) 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2019 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ =20 +#include "Variable.h" #include "VariableParsing.h" =20 /** @@ -15,6 +16,8 @@ SPDX-License-Identifier: BSD-2-Clause-Patent =20 @param[in] Variable Pointer to the Variable Header. @param[in] VariableStoreEnd Pointer to the Variable Store End. + @param[in] AuthFormat TRUE indicates authenticated variables are= used. + FALSE indicates authenticated variables ar= e not used. =20 @retval TRUE Variable header is valid. @retval FALSE Variable header is not valid. @@ -23,10 +26,14 @@ SPDX-License-Identifier: BSD-2-Clause-Patent BOOLEAN IsValidVariableHeader ( IN VARIABLE_HEADER *Variable, - IN VARIABLE_HEADER *VariableStoreEnd + IN VARIABLE_HEADER *VariableStoreEnd, + IN BOOLEAN AuthFormat ) { - if ((Variable =3D=3D NULL) || (Variable >=3D VariableStoreEnd) || (Varia= ble->StartId !=3D VARIABLE_DATA)) { + if ( (Variable =3D=3D NULL) + || (((UINTN)Variable + GetVariableHeaderSize (AuthFormat)) >=3D (UINT= N)VariableStoreEnd) + || (Variable->StartId !=3D VARIABLE_DATA)) + { // // Variable is NULL or has reached the end of variable store, // or the StartId is not correct. @@ -341,6 +348,52 @@ GetVariableDataOffset ( return Value; } =20 +/** + Get variable data payload. + + @param[in] Variable Pointer to the Variable Header. + @param[in,out] Data Pointer to buffer used to store the variabl= e data. + @param[in,out] DataSize Size of buffer passed by Data. + Size of data copied into Data buffer. + @param[in] AuthFlag Auth-variable indicator. + + @return EFI_SUCCESS Data was fetched. + @return EFI_INVALID_PARAMETER DataSize is NULL. + @return EFI_BUFFER_TOO_SMALL DataSize is smaller than size of variabl= e data. + +**/ +EFI_STATUS +GetVariableData ( + IN VARIABLE_HEADER *Variable, + IN OUT VOID *Data, + IN OUT UINT32 *DataSize, + IN BOOLEAN AuthFlag + ) +{ + UINT32 Size; + + if (DataSize =3D=3D NULL) { + ASSERT (DataSize !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + Size =3D (UINT32)DataSizeOfVariable (Variable, AuthFlag); + if (*DataSize < Size) { + *DataSize =3D Size; + return EFI_BUFFER_TOO_SMALL; + } + + if (Data =3D=3D NULL) { + ASSERT (Data !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + CopyMem (Data, GetVariableDataPtr (Variable, AuthFlag), Size); + *DataSize =3D Size; + + return EFI_SUCCESS; +} + /** =20 This code gets the pointer to the next variable header. @@ -479,7 +532,7 @@ FindVariableEx ( InDeletedVariable =3D NULL; =20 for ( PtrTrack->CurrPtr =3D PtrTrack->StartPtr - ; IsValidVariableHeader (PtrTrack->CurrPtr, PtrTrack->EndPtr) + ; IsValidVariableHeader (PtrTrack->CurrPtr, PtrTrack->EndPtr, Auth= Format) ; PtrTrack->CurrPtr =3D GetNextVariablePtr (PtrTrack->CurrPtr, Aut= hFormat) ) { @@ -608,7 +661,7 @@ VariableServiceGetNextVariableInternal ( // // Switch to the next variable store if needed // - while (!IsValidVariableHeader (Variable.CurrPtr, Variable.EndPtr)) { + while (!IsValidVariableHeader (Variable.CurrPtr, Variable.EndPtr, Auth= Format)) { // // Find current storage index // @@ -804,3 +857,260 @@ UpdateVariableInfo ( } } } + +/** + + Retrieve details about a variable and return them in VariableInfo->Heade= r. + + If VariableInfo->Address is given, this function will calculate its offs= et + relative to given variable storage via VariableStore; Otherwise, it will= try + other internal variable storages or cached copies. It's assumed that, fo= r all + copies of NV variable storage, all variables are stored in the same rela= tive + position. If VariableInfo->Address is found in the range of any storage = copies, + its offset relative to that storage should be the same in other copies. + + If VariableInfo->Offset is given (non-zero) but not VariableInfo->Addres= s, + this function will return the variable memory address inside VariableSto= re, + if given, via VariableInfo->Address; Otherwise, the address of other sto= rage + copies will be returned, if any. + + For a new variable whose offset has not been determined, a value of -1 as + VariableInfo->Offset should be passed to skip the offset calculation. + + @param[in,out] VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo is NULL or both VariableInfo= ->Address + and VariableInfo->Offset are NULL (0). + @retval EFI_NOT_FOUND If given Address or Offset is out of rang= e of + any given or internal storage copies. + @retval EFI_SUCCESS Variable details are retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetVariableInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo + ) +{ + VARIABLE_STORE_HEADER *Stores[2]; + UINTN Index; + VARIABLE_HEADER *VariablePtr; + VARIABLE_HEADER *VariableBuffer; + AUTHENTICATED_VARIABLE_HEADER *AuthVariablePtr; + BOOLEAN AuthFlag; + UINTN NameSize; + UINTN DataSize; + UINTN VariableSize; + + if ((VariableInfo =3D=3D NULL) || ( (VariableInfo->Buffer =3D=3D NULL) + && (VariableInfo->StoreIndex =3D=3D VAR_IN= DEX_INVALID))) + { + ASSERT (VariableInfo !=3D NULL); + ASSERT (VariableInfo->Buffer !=3D NULL || VariableInfo->StoreIndex != =3D VAR_INDEX_INVALID); + return EFI_INVALID_PARAMETER; + } + + Stores[0] =3D mNvVariableCache; + Stores[1] =3D (mVariableModuleGlobal !=3D NULL) + ? (VARIABLE_STORE_HEADER *)(UINTN)mVariableModuleGlobal->Var= iableGlobal.NonVolatileVariableBase + : NULL; + + VariableBuffer =3D VariableInfo->Buffer; + VariablePtr =3D NULL; + if (VariableInfo->StoreIndex !=3D VAR_INDEX_INVALID) { + for (Index =3D 0; Index < ARRAY_SIZE (Stores); ++Index) { + if (Stores[Index] =3D=3D NULL) { + continue; + } + + if ((UINTN)VariableInfo->StoreIndex + < ((UINTN)GetEndPointer (Stores[Index]) - (UINTN)Stores[Index])) + { + VariablePtr =3D (VARIABLE_HEADER *)((UINTN)Stores[Index] = + (UINTN)VariableInfo->StoreIndex); + VariableInfo->Buffer =3D VariablePtr; + break; + } + } + } else { + VariablePtr =3D VariableInfo->Buffer; + } + + if (VariablePtr =3D=3D NULL) { + return EFI_NOT_FOUND; + } + + AuthFlag =3D VariableInfo->Flags.Auth; + ASSERT (AuthFlag =3D=3D TRUE || AuthFlag =3D=3D FALSE); + + // + // Make a copy of the whole variable if a buffer is passed in. + // + if ((VariableBuffer !=3D NULL) && (VariableBuffer !=3D VariablePtr)) { + VariableSize =3D (UINTN)GetNextVariablePtr (VariablePtr, AuthFlag) + - (UINTN)VariablePtr; + CopyMem (VariableBuffer, VariablePtr, VariableSize); + } + + // + // AuthVariable header + // + if (AuthFlag) { + AuthVariablePtr =3D (AUTHENTICATED_VARIABLE_HEADER *)VariablePtr; + + VariableInfo->Header.State =3D AuthVariablePtr->State; + VariableInfo->Header.Attributes =3D AuthVariablePtr->Attributes; + VariableInfo->Header.PubKeyIndex =3D AuthVariablePtr->PubKeyIndex; + VariableInfo->Header.MonotonicCount =3D ReadUnaligned64 ( + &(AuthVariablePtr->MonotonicCo= unt) + ); + if (VariableInfo->Header.TimeStamp !=3D NULL) { + CopyMem ( + VariableInfo->Header.TimeStamp, + &AuthVariablePtr->TimeStamp, + sizeof (EFI_TIME) + ); + } else if (VariableBuffer !=3D NULL) { + AuthVariablePtr =3D (AUTHENTICATED_VARIABLE_HEADER *)= VariableBuffer; + VariableInfo->Header.TimeStamp =3D &AuthVariablePtr->TimeStamp; + } + } else { + VariableInfo->Header.State =3D VariablePtr->State; + VariableInfo->Header.Attributes =3D VariablePtr->Attributes; + VariableInfo->Header.PubKeyIndex =3D 0; + VariableInfo->Header.MonotonicCount =3D 0; + VariableInfo->Header.TimeStamp =3D NULL; + } + + // + // VendorGuid + // + if (VariableInfo->Header.VendorGuid !=3D NULL) { + CopyGuid ( + VariableInfo->Header.VendorGuid, + GetVendorGuidPtr (VariablePtr, AuthFlag) + ); + } else { + VariableInfo->Header.VendorGuid =3D GetVendorGuidPtr (VariablePtr, Aut= hFlag); + } + + // + // VariableName + // + NameSize =3D NameSizeOfVariable (VariablePtr, AuthFlag); + if ( (VariableInfo->Header.VariableName !=3D NULL) + && (VariableInfo->Header.NameSize >=3D NameSize)) + { + CopyMem ( + VariableInfo->Header.VariableName, + GetVariableNamePtr (VariablePtr, AuthFlag), + NameSize + ); + } else if (VariableInfo->Header.VariableName !=3D NULL) { + return EFI_BUFFER_TOO_SMALL; + } else { + VariableInfo->Header.VariableName =3D GetVariableNamePtr (VariablePtr,= AuthFlag); + } + + // + // Data + // + DataSize =3D DataSizeOfVariable (VariablePtr, AuthFlag); + if ( (VariableInfo->Header.Data !=3D NULL) + && (VariableInfo->Header.DataSize >=3D DataSize)) + { + CopyMem ( + VariableInfo->Header.Data, + GetVariableDataPtr (VariablePtr, AuthFlag), + NameSize + ); + } else if (VariableInfo->Header.Data !=3D NULL) { + return EFI_BUFFER_TOO_SMALL; + } else { + VariableInfo->Header.Data =3D GetVariableDataPtr (VariablePtr, AuthFla= g); + } + + // + // Update size information about name & data. + // + VariableInfo->Header.NameSize =3D NameSize; + VariableInfo->Header.DataSize =3D DataSize; + + return EFI_SUCCESS; +} + +/** + + Retrieve details of the variable next to given variable within VariableS= tore. + + If VarInfo->Address is NULL, the first one in VariableStore is returned. + + VariableStart and/or VariableEnd can be given optionally for the situati= on + in which the valid storage space is smaller than the VariableStore->Size. + This usually happens when PEI variable services make a compact variable + cache to save memory, which cannot make use VariableStore->Size to deter= mine + the correct variable storage range. + + @param[in,out] VariableInfo Pointer to variable information. + + @retval EFI_INVALID_PARAMETER VariableInfo or VariableStore is NULL. + @retval EFI_NOT_FOUND If the end of VariableStore is reached. + @retval EFI_SUCCESS The next variable is retrieved successful= ly. + +**/ +EFI_STATUS +EFIAPI +GetNextVariableInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VariableInfo + ) +{ + VARIABLE_STORE_HEADER *VarStore; + VARIABLE_HEADER *VariablePtr; + VARIABLE_HEADER *VariableStart; + VARIABLE_HEADER *VariableEnd; + BOOLEAN AuthFlag; + + if (VariableInfo =3D=3D NULL) { + ASSERT (VariableInfo !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + if (mNvVariableCache !=3D NULL) { + VarStore =3D mNvVariableCache; + } else if (mVariableModuleGlobal !=3D NULL) { + VarStore =3D (VARIABLE_STORE_HEADER *)(UINTN) + mVariableModuleGlobal->VariableGlobal.NonVolatileVariableBa= se; + } else { + return EFI_NOT_FOUND; + } + + VariableStart =3D GetStartPointer (VarStore); + VariableEnd =3D GetEndPointer (VarStore); + + if ((VariableInfo->Flags.Auth !=3D TRUE) && (VariableInfo->Flags.Auth != =3D FALSE)) { + VariableInfo->Flags.Auth =3D CompareGuid ( + &VarStore->Signature, + &gEfiAuthenticatedVariableGuid + ); + } + + AuthFlag =3D VariableInfo->Flags.Auth; + + if (VariableInfo->StoreIndex =3D=3D VAR_INDEX_INVALID) { + VariablePtr =3D VariableStart; + } else { + VariablePtr =3D (VARIABLE_HEADER *) + ((UINTN)VarStore + (UINTN)VariableInfo->StoreIndex); + if (VariablePtr >=3D VariableEnd) { + return EFI_NOT_FOUND; + } + + VariablePtr =3D GetNextVariablePtr (VariablePtr, AuthFlag); + } + + if (!IsValidVariableHeader (VariablePtr, VariableEnd, AuthFlag)) { + return EFI_NOT_FOUND; + } + + VariableInfo->StoreIndex =3D (UINTN)VariablePtr - (UINTN)VarStore; + return GetVariableInfo (VariableInfo); +} diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeCach= e.c b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeCache.c index 9bb30bc1e804..dc319feee727 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeCache.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableRuntimeCache.c @@ -7,7 +7,7 @@ This external input must be validated carefully to avoid security issue = like buffer overflow, integer overflow. =20 -Copyright (c) 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2019 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.c b/Mde= ModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.c index 517cae7b00f8..c2b689f6202d 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmm.c @@ -14,7 +14,7 @@ VariableServiceSetVariable(), VariableServiceQueryVariableInfo(), Reclai= mForOS(), SmmVariableGetStatistics() should also do validation based on its own kn= owledge. =20 -Copyright (c) 2010 - 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2010 - 2022, Intel Corporation. All rights reserved.
Copyright (c) 2018, Linaro, Ltd. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 @@ -1045,6 +1045,13 @@ VariableWriteServiceInitializeSmm ( { EFI_STATUS Status; =20 + Status =3D ProtectedVariableLibWriteInit (); + if (EFI_ERROR (Status) && (Status !=3D EFI_UNSUPPORTED)) { + DEBUG ((DEBUG_ERROR, "Variable protection service: write-init failed. = Status =3D %r\n", Status)); + ASSERT_EFI_ERROR (Status); + return; + } + Status =3D VariableWriteServiceInitialize (); if (EFI_ERROR (Status)) { DEBUG ((DEBUG_ERROR, "Variable write service initialization failed. St= atus =3D %r\n", Status)); @@ -1143,10 +1150,32 @@ MmVariableServiceInitialize ( VOID ) { - EFI_STATUS Status; - EFI_HANDLE VariableHandle; - VOID *SmmFtwRegistration; - VOID *SmmEndOfDxeRegistration; + EFI_STATUS Status; + EFI_HANDLE VariableHandle; + VOID *SmmFtwRegistration; + VOID *SmmEndOfDxeRegistration; + PROTECTED_VARIABLE_CONTEXT_IN ContextIn; + + // + // Initialize protected variable service, if enabled. + // + ContextIn.StructSize =3D sizeof (ContextIn); + ContextIn.StructVersion =3D PROTECTED_VARIABLE_CONTEXT_IN_STRUCT_VERSION; + + ContextIn.FindVariableSmm =3D NULL; + ContextIn.GetVariableInfo =3D GetVariableInfo; + ContextIn.GetNextVariableInfo =3D GetNextVariableInfo; + ContextIn.UpdateVariableStore =3D VariableExLibUpdateNvVariable; + ContextIn.UpdateVariable =3D VariableExLibUpdateVariable; + + ContextIn.MaxVariableSize =3D (UINT32)GetMaxVariableSize (); + ContextIn.VariableServiceUser =3D FromSmmModule; + + Status =3D ProtectedVariableLibInitialize (&ContextIn); + if (EFI_ERROR (Status) && (Status !=3D EFI_UNSUPPORTED)) { + ASSERT_EFI_ERROR (Status); + return Status; + } =20 // // Variable initialize. diff --git a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeD= xe.c b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.c index 4aaeb5ba8806..8fb8679671ad 100644 --- a/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.c +++ b/MdeModulePkg/Universal/Variable/RuntimeDxe/VariableSmmRuntimeDxe.c @@ -13,7 +13,7 @@ =20 InitCommunicateBuffer() is really function to check the variable data si= ze. =20 -Copyright (c) 2010 - 2019, Intel Corporation. All rights reserved.
+Copyright (c) 2010 - 2022, Intel Corporation. All rights reserved.
Copyright (c) Microsoft Corporation.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 @@ -36,11 +36,13 @@ SPDX-License-Identifier: BSD-2-Clause-Patent #include #include #include +#include =20 #include #include =20 #include "PrivilegePolymorphic.h" +#include "Variable.h" #include "VariableParsing.h" =20 EFI_HANDLE mHandle =3D N= ULL; @@ -53,6 +55,8 @@ VARIABLE_INFO_ENTRY *mVariableInfo = =3D NULL; VARIABLE_STORE_HEADER *mVariableRuntimeHobCacheBuffer =3D N= ULL; VARIABLE_STORE_HEADER *mVariableRuntimeNvCacheBuffer =3D N= ULL; VARIABLE_STORE_HEADER *mVariableRuntimeVolatileCacheBuffer =3D N= ULL; +VARIABLE_STORE_HEADER *mNvVariableCache =3D N= ULL; +VARIABLE_MODULE_GLOBAL *mVariableModuleGlobal =3D N= ULL; UINTN mVariableBufferSize; UINTN mVariableRuntimeHobCacheBufferSize; UINTN mVariableRuntimeNvCacheBufferSize; @@ -616,7 +620,6 @@ FindVariableInRuntimeCache ( ) { EFI_STATUS Status; - UINTN TempDataSize; VARIABLE_POINTER_TRACK RtPtrTrack; VARIABLE_STORE_TYPE StoreType; VARIABLE_STORE_HEADER *VariableStoreList[VariableStoreTypeMax]; @@ -669,31 +672,23 @@ FindVariableInRuntimeCache ( // // Get data size // - TempDataSize =3D DataSizeOfVariable (RtPtrTrack.CurrPtr, mVariableAu= thFormat); - ASSERT (TempDataSize !=3D 0); - - if (*DataSize >=3D TempDataSize) { - if (Data =3D=3D NULL) { - Status =3D EFI_INVALID_PARAMETER; - goto Done; - } - - CopyMem (Data, GetVariableDataPtr (RtPtrTrack.CurrPtr, mVariableAu= thFormat), TempDataSize); - *DataSize =3D TempDataSize; - - UpdateVariableInfo (VariableName, VendorGuid, RtPtrTrack.Volatile,= TRUE, FALSE, FALSE, TRUE, &mVariableInfo); - - Status =3D EFI_SUCCESS; - goto Done; - } else { - *DataSize =3D TempDataSize; - Status =3D EFI_BUFFER_TOO_SMALL; - goto Done; + if (!RtPtrTrack.Volatile) { + // + // Currently only non-volatile variable needs protection. + // + Status =3D ProtectedVariableLibGetByBuffer (RtPtrTrack.CurrPtr, Da= ta, (UINT32 *)DataSize, mVariableAuthFormat); + } + + if (RtPtrTrack.Volatile || (Status =3D=3D EFI_UNSUPPORTED)) { + Status =3D GetVariableData (RtPtrTrack.CurrPtr, Data, (UINT32 *)Da= taSize, mVariableAuthFormat); + } + + if (!EFI_ERROR (Status)) { + UpdateVariableInfo (VariableName, VendorGuid, RtPtrTrack.Volatile,= TRUE, FALSE, FALSE, FALSE, &mVariableInfo); } } } =20 -Done: if ((Status =3D=3D EFI_SUCCESS) || (Status =3D=3D EFI_BUFFER_TOO_SMALL))= { if ((Attributes !=3D NULL) && (RtPtrTrack.CurrPtr !=3D NULL)) { *Attributes =3D RtPtrTrack.CurrPtr->Attributes; --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89428): https://edk2.groups.io/g/devel/message/89428 Mute This Topic: https://groups.io/mt/90781896/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89427+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89427+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255521; cv=none; d=zohomail.com; s=zohoarc; b=NOgn/izE2u9DmXyo462/1N9e5rDov2I7O+ic5n+MOblvCQMfXBR8bLf7HWJ1JbpQHlxQNL0Qzpp1KUFXIwuaEHOSxghz6pqCWG/g9Pw5/S0hiOaGMlIfEd7FMsh8fodLPTSgYMEfTEc6p4bxl5zxMbVE1/pBAokM5WGfhCr8AQA= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255521; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=+JUZQSJyfwkFq/Nua/mlIvRRQiNPO7gi/Yiz2gs4R/8=; b=ONagHKyV3MrHq9sFrMgldleTK8ZJyID6GH8pkyohqIaYX2B3YvnZ985wg0s89VlkSwiMvbmkIRvdb4GZ/1OG+0fbtWlEid/tU2BsMLzhJqSya3sYUU9ZFWdcaMUGF7VXJlIFm/blKMd3ivPD1NMCsabVVe+YKoY6vhe0xlzftN4= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89427+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255521205393.77259755681905; Fri, 29 Apr 2022 11:05:21 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id ilSxYY1788612xzuTSfspamJ; Fri, 29 Apr 2022 11:05:20 -0700 X-Received: from mga06.intel.com (mga06.intel.com [134.134.136.31]) by mx.groups.io with SMTP id smtpd.web11.13470.1651255520033914775 for ; Fri, 29 Apr 2022 11:05:20 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="327227216" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="327227216" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:17 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955697" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:17 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 10/28] SecurityPkg: Add new KeyService types and defines Date: Fri, 29 Apr 2022 11:04:12 -0700 Message-Id: <20220429180430.3292-11-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: 38FvpKXEpFZptNweoLXaZmi8x1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255520; bh=LxCaELOwj6/HSSzth3W2gQlWieF/S2zPXsWWD3AlWXM=; h=Cc:Date:From:Reply-To:Subject:To; b=J/31Kgbl1ARvajg6ePZWOM8Hnoz63NLhXMgD4cJmmUuLw+U5cBUeEnYcO35PpP5EPCk FiImsRZSaKh9C0WLWIf9Tu/G+Re1HpcJBWdn5OiED2WGw5f0s/SQzQlHjUt0seK7vE1Uj PUl01Zdw2yEIG78+y70qlk/QeiUNcl3789s= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255522820100019 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add new KeyService types and defines. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- SecurityPkg/Include/Ppi/KeyServicePpi.h | 57 ++++++++++++++++++++ 1 file changed, 57 insertions(+) diff --git a/SecurityPkg/Include/Ppi/KeyServicePpi.h b/SecurityPkg/Include/= Ppi/KeyServicePpi.h new file mode 100644 index 000000000000..f126913d2d81 --- /dev/null +++ b/SecurityPkg/Include/Ppi/KeyServicePpi.h @@ -0,0 +1,57 @@ +/** @file + Provides Key Services. + +Copyright (c) 2008 - 2018, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +@par Specification Reference: +**/ + +#ifndef PEI_KEY_SERVICE_PPI_H_ +#define PEI_KEY_SERVICE_PPI_H_ +/// +/// KEY SERVICE PPI GUID +/// +extern EFI_GUID gKeyServicePpiGuid; + +/** + Generate a new key from root key. + + @param[in] Salt Pointer to the salt(non-secret) va= lue. + @param[in] SaltSize Salt size in bytes. + @param[out] NewKey Pointer to buffer to receive new k= ey. + @param[in] NewKeySize Size of new key bytes to generate. + + @retval EFI_SUCCESS The function completed successfully + @retval OTHER The function completed with failur= e. +**/ +typedef +EFI_STATUS +(EFIAPI *KEY_SERVICE_GEN_KEY)( + IN UINT8 *Salt, + IN UINTN SaltSize, + OUT UINT8 *NewKey, + IN UINTN NewKeySize + ); + +#define KEY_SERVICE_PPI_REVISION 1 +#define ROOT_KEY_LEN 64 +#define SALT_SIZE_MIN_LEN 64 +#define KEY_SERVICE_KEY_NAME L"KEY_SERVICE_KEY" + +typedef struct { + UINT8 RootKey[ROOT_KEY_LEN]; + UINT8 PreviousRootKey[ROOT_KEY_LEN]; +} KEY_SERVICE_DATA; + +typedef struct _KEY_SERVICE_PPI KEY_SERVICE_PPI; + +/// +/// KEY SERVICE PPI +/// The interface functions are for Key Service in PEI Phase +/// +struct _KEY_SERVICE_PPI { + KEY_SERVICE_GEN_KEY GenerateKey; /// Generate Key +}; + +#endif --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89427): https://edk2.groups.io/g/devel/message/89427 Mute This Topic: https://groups.io/mt/90781895/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89429+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89429+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255522; cv=none; d=zohomail.com; s=zohoarc; b=gMxwv+w8Zn2qTB9BhgnSmgA/YPbtHVOFwIt1IOQoIhYk15njU23zNZK5otXVLUGVXCv6Tu2B7AGemKwewRF/ilmVNNbNZD2wEDF5W03KHIvHzf2VNi1x0sieJQCy7TVBC1a7Ody24CqtK/bDxO8Yuetu5EbZc9Y1lEF3/r+ZFOc= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255522; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=SCxloOKZ+O0ZyYmz0p0yRrR83XQrgG507G3JnxJTDzA=; b=cRLmEeT1p/IC86Ji+4PMnQXGqi1qGrH8MW2ZcR8qJcGU+xl6dFVhBcwme0Q6a2hoZ62eCZHAFsgxNuf0W2S5HBiam6U7PWTsp0uJ1wyWBu6LFxNzfMU99Zu3UUrfGxLKlDj3kk+nzJmS2UDmo0o90f+FvSqbkhOyj5GS5zyhWe0= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89429+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255522161453.65931096096165; Fri, 29 Apr 2022 11:05:22 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id UNpLYY1788612xfp7RK8rbgh; Fri, 29 Apr 2022 11:05:21 -0700 X-Received: from mga06.intel.com (mga06.intel.com [134.134.136.31]) by mx.groups.io with SMTP id smtpd.web11.13470.1651255520033914775 for ; Fri, 29 Apr 2022 11:05:20 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="327227220" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="327227220" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:18 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955707" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:17 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 11/28] SecurityPkg: Update RPMC APIs with index Date: Fri, 29 Apr 2022 11:04:13 -0700 Message-Id: <20220429180430.3292-12-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: L9Y4YmT9sfx5P3IkM2iyMERdx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255521; bh=XR/qrELUn3zM2HgKGZrSvPGLuM4OLDNv+lXFDVcXP9g=; h=Cc:Date:From:Reply-To:Subject:To; b=tnBdgNinMdymg4qXg7zvKKgl1Jv/QFgS4IhZqG/xsMhIaFCqDEKYglkWFUJLbzZY+I4 jkMmEV+LgDuqV3pkxPwX3mk5FVJDqSqDVyJ9cVI784YbX8QGuE+3F8mX5LdrkcZ49tgym axS0ut9QS8v5nmemNd0DeXPEi+3A1hnEu58= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255522835100021 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Update RPMC APIs with index parameter because sometimes there are more than 1 RPMC counter on the platform. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Reviewed-by: Jian J Wang --- SecurityPkg/Library/RpmcLibNull/RpmcLibNull.c | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/SecurityPkg/Library/RpmcLibNull/RpmcLibNull.c b/SecurityPkg/Li= brary/RpmcLibNull/RpmcLibNull.c index 792e48250e5d..557aeb6abf09 100644 --- a/SecurityPkg/Library/RpmcLibNull/RpmcLibNull.c +++ b/SecurityPkg/Library/RpmcLibNull/RpmcLibNull.c @@ -1,7 +1,7 @@ /** @file NULL RpmcLib instance for build purpose. =20 -Copyright (c) 2020, Intel Corporation. All rights reserved.
+Copyright (c) 2020 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ @@ -12,6 +12,7 @@ SPDX-License-Identifier: BSD-2-Clause-Patent /** Requests the monotonic counter from the designated RPMC counter. =20 + @param[in] CounterIndex The RPMC index @param[out] CounterValue A pointer to a buffer to store the= RPMC value. =20 @retval EFI_SUCCESS The operation completed successful= ly. @@ -21,6 +22,7 @@ SPDX-License-Identifier: BSD-2-Clause-Patent EFI_STATUS EFIAPI RequestMonotonicCounter ( + IN UINT8 CounterIndex, OUT UINT32 *CounterValue ) { @@ -31,6 +33,8 @@ RequestMonotonicCounter ( /** Increments the monotonic counter in the SPI flash device by 1. =20 + @param[in] CounterIndex The RPMC index + @retval EFI_SUCCESS The operation completed successful= ly. @retval EFI_DEVICE_ERROR A device error occurred while atte= mpting to update the counter. @retval EFI_UNSUPPORTED The operation is un-supported. @@ -38,7 +42,7 @@ RequestMonotonicCounter ( EFI_STATUS EFIAPI IncrementMonotonicCounter ( - VOID + IN UINT8 CounterIndex ) { ASSERT (FALSE); --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89429): https://edk2.groups.io/g/devel/message/89429 Mute This Topic: https://groups.io/mt/90781897/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89431+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89431+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255522; cv=none; d=zohomail.com; s=zohoarc; b=n6VDt1dVDV7t6BX7RdqjDr9ocE28t3NFz7kG+3o9dhOFUrGDRdiS98Gcfxzkh7Yig8Rwv2rqujq+zth/zoCx0K/9wLD8wlVkMp2bbpeZh1f8tr5w45XO5Hv7ii2g2etFYdKT7w9jr4G5CxrAgtEmcJiddZ9reMIvkF5E9ozG8Ek= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255522; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=6UvBxXfaFoo4UuxkmuBzr3BmrWBm7YLnJ71l+Az49n4=; b=lSnEhl23bqi2yZVI9ahEtxW2CQ907lchfhtHw1x5x6S3DkAPufmx1OwBwqDiFSK7ur8185MzXCu48KhpABL38goFegpH7+7NrdNf4ii3lFggsEH8pRiSrM9RnC3vFBR/MfIGLjoWi3Z+VMy4qPw0EHInB2wpkFIgWiTLQ18c5AE= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89431+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255522949463.2568391512086; Fri, 29 Apr 2022 11:05:22 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id uS2FYY1788612x0oIgT3tYM7; Fri, 29 Apr 2022 11:05:22 -0700 X-Received: from mga06.intel.com (mga06.intel.com [134.134.136.31]) by mx.groups.io with SMTP id smtpd.web11.13470.1651255520033914775 for ; Fri, 29 Apr 2022 11:05:21 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="327227230" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="327227230" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:18 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955712" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:18 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 12/28] SecurityPkg: Add new variable types and functions Date: Fri, 29 Apr 2022 11:04:14 -0700 Message-Id: <20220429180430.3292-13-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: VPMon5o5hgDZmFSmyCNqGZkpx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255522; bh=A+8hqBF9nZByyP2YsF32khZpoBDayUtSTctTZgZtstM=; h=Cc:Date:From:Reply-To:Subject:To; b=L+ntmaTRmgHchx4JempgtOq5eu26KHRtXKbNDqbbkcNA6Dvjuh1hIsi9d6+kdAtby9u dSZw554zZ1OfQWx/VJvoiqxzeQ3hhT5xyCtf4h4OBcLt3ugvdDiVd6NL0o8/zGGALq7l0 8lru+ypHKHekJ/0MTPRPli35MSvNWCEVAZo= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255524964100041 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add new variable encryption/decryption function prototypes. Add new variable digest structure. Add new Protected variable function prototypes. Update RPMC APIs to Add an index because there is could more than one counter. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- SecurityPkg/Include/Library/RpmcLib.h | 15 +++++--- SecurityPkg/Include/Library/VariableKeyLib.h | 37 +++----------------- 2 files changed, 16 insertions(+), 36 deletions(-) diff --git a/SecurityPkg/Include/Library/RpmcLib.h b/SecurityPkg/Include/Li= brary/RpmcLib.h index df4ba34ba8cf..cb71dfcd7e4d 100644 --- a/SecurityPkg/Include/Library/RpmcLib.h +++ b/SecurityPkg/Include/Library/RpmcLib.h @@ -1,19 +1,23 @@ /** @file Public definitions for the Replay Protected Monotonic Counter (RPMC) Lib= rary. =20 -Copyright (c) 2020, Intel Corporation. All rights reserved.
+Copyright (c) 2020 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ =20 -#ifndef _RPMC_LIB_H_ -#define _RPMC_LIB_H_ +#ifndef RPMC_LIB_H_ +#define RPMC_LIB_H_ =20 #include =20 +#define RPMC_COUNTER_1 0 +#define RPMC_COUNTER_2 1 + /** Requests the monotonic counter from the designated RPMC counter. =20 + @param[in] CounterIndex The RPMC index @param[out] CounterValue A pointer to a buffer to store the= RPMC value. =20 @retval EFI_SUCCESS The operation completed successful= ly. @@ -23,12 +27,15 @@ SPDX-License-Identifier: BSD-2-Clause-Patent EFI_STATUS EFIAPI RequestMonotonicCounter ( + IN UINT8 CounterIndex, OUT UINT32 *CounterValue ); =20 /** Increments the monotonic counter in the SPI flash device by 1. =20 + @param[in] CounterIndex The RPMC index + @retval EFI_SUCCESS The operation completed successful= ly. @retval EFI_DEVICE_ERROR A device error occurred while atte= mpting to update the counter. @retval EFI_UNSUPPORTED The operation is un-supported. @@ -36,7 +43,7 @@ RequestMonotonicCounter ( EFI_STATUS EFIAPI IncrementMonotonicCounter ( - VOID + IN UINT8 CounterIndex ); =20 #endif diff --git a/SecurityPkg/Include/Library/VariableKeyLib.h b/SecurityPkg/Inc= lude/Library/VariableKeyLib.h index 561ebad09da2..6076c4d4731b 100644 --- a/SecurityPkg/Include/Library/VariableKeyLib.h +++ b/SecurityPkg/Include/Library/VariableKeyLib.h @@ -1,13 +1,13 @@ /** @file Public definitions for Variable Key Library. =20 -Copyright (c) 2020, Intel Corporation. All rights reserved.
+Copyright (c) 2020 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ =20 -#ifndef _VARIABLE_KEY_LIB_H_ -#define _VARIABLE_KEY_LIB_H_ +#ifndef VARIABLE_KEY_LIB_H_ +#define VARIABLE_KEY_LIB_H_ =20 #include =20 @@ -25,35 +25,8 @@ SPDX-License-Identifier: BSD-2-Clause-Patent EFI_STATUS EFIAPI GetVariableKey ( - OUT VOID **VariableKey, - IN OUT UINTN *VariableKeySize - ); - -/** - Regenerates the variable key. - - @retval EFI_SUCCESS The variable key was regenerated s= uccessfully. - @retval EFI_DEVICE_ERROR An error occurred while attempting= to regenerate the key. - @retval EFI_ACCESS_DENIED The function was invoked after loc= king the key interface. - @retval EFI_UNSUPPORTED Key regeneration is not supported = in the current boot configuration. -**/ -EFI_STATUS -EFIAPI -RegenerateVariableKey ( - VOID - ); - -/** - Locks the regenerate key interface. - - @retval EFI_SUCCESS The key interface was locked succe= ssfully. - @retval EFI_UNSUPPORTED Locking the key interface is not s= upported in the current boot configuration. - @retval Others An error occurred while attempting= to lock the key interface. -**/ -EFI_STATUS -EFIAPI -LockVariableKeyInterface ( - VOID + OUT VOID *VariableKey, + IN UINTN VariableKeySize ); =20 #endif --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89431): https://edk2.groups.io/g/devel/message/89431 Mute This Topic: https://groups.io/mt/90781899/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89432+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89432+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255523; cv=none; d=zohomail.com; s=zohoarc; b=Wo/EW/h2HdpMF40Y+sHrV4vsE7rZNeP4D+BDdKxEPRFctRTEwPboZ6HmZKgO+ixAQOboCqWAF0ngFYzTeq5l6fslyd9UrGTkiMaZlb6kuz5CW5SKNNKvc1E+qDIl9WQe9d6cby6+QZ7yr5mcOY1JzKOcxsEdbXoEOm5v5N3IPdM= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255523; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=kwDdzQU3sjy/AI4b9/9R+rgDaiGtjKw8JzK782Ew+8c=; b=NT6yE9F2WsTj9bU9ZDtgnVVkqZxhJXLPSV4pCJJIuhjsRB2FsoMc6mbG1HG0i/qrnywAubpSufhF80hjKFfBuEeHmCBlV9GebJMvOMb/X0jgqQXgL9sOYZ7s2dLCA2hRshqs0zTxTv5rY79a+N5u0Ids4W4JL+f4TmTuBSUyC6o= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89432+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 165125552326691.47194060780043; Fri, 29 Apr 2022 11:05:23 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id QxW2YY1788612x0oQJ19vZwi; Fri, 29 Apr 2022 11:05:22 -0700 X-Received: from mga03.intel.com (mga03.intel.com [134.134.136.65]) by mx.groups.io with SMTP id smtpd.web11.13472.1651255521036807512 for ; Fri, 29 Apr 2022 11:05:21 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="266550636" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="266550636" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga103.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:19 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955721" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:18 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 13/28] SecurityPkg: Fix GetVariableKey API Date: Fri, 29 Apr 2022 11:04:15 -0700 Message-Id: <20220429180430.3292-14-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: noaXafzwLXFxX1YwoMaRsQAlx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255522; bh=nUVO2kqHtN0pQugL/RKeGpCrgoF8GuDUamkQ6CoHpJY=; h=Cc:Date:From:Reply-To:Subject:To; b=ZO7vpTxAR1fTzGy2+5NdhaVdrFWEO91JcpcjNTcWLh6n7El6+V9pDGW8+qKPHkEZw/+ RhDhY4wn9YqrW7vN7hcgHTMUSPdVkxEsBuz9SnwJvWTxgrYA+ozlM3NDdP5rtuDr+MTz2 48SLUO2e1ggNehcGIVxkTOkIb0Ork9V6AN8= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255524955100040 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Fix GetVariableKey API to match changes in header files. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- SecurityPkg/Library/VariableKeyLibNull/VariableKeyLibNull.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/SecurityPkg/Library/VariableKeyLibNull/VariableKeyLibNull.c b/= SecurityPkg/Library/VariableKeyLibNull/VariableKeyLibNull.c index a08def767b5f..cfbad54ba106 100644 --- a/SecurityPkg/Library/VariableKeyLibNull/VariableKeyLibNull.c +++ b/SecurityPkg/Library/VariableKeyLibNull/VariableKeyLibNull.c @@ -1,7 +1,7 @@ /** @file Null version of VariableKeyLib for build purpose. Don't use it in real p= roduct. =20 -Copyright (c) 2020, Intel Corporation. All rights reserved.
+Copyright (c) 2020 - 2022, Intel Corporation. All rights reserved.
SPDX-License-Identifier: BSD-2-Clause-Patent =20 **/ @@ -22,8 +22,8 @@ SPDX-License-Identifier: BSD-2-Clause-Patent EFI_STATUS EFIAPI GetVariableKey ( - OUT VOID **VariableKey, - IN OUT UINTN *VariableKeySize + OUT VOID *VariableKey, + IN UINTN VariableKeySize ) { ASSERT (FALSE); --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89432): https://edk2.groups.io/g/devel/message/89432 Mute This Topic: https://groups.io/mt/90781902/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89430+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89430+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255522; cv=none; d=zohomail.com; s=zohoarc; b=GMgfBruSlW4UyQwM/YWxvxt+cvVCwM6ZUVtzs3L9DLfyy1TZ/GCp9rJdNE9iUqxXqQ2DOQ55I1ZALMb/+dJF4CZTkHAWnEi6alevOWanrg8J3QMK/gyr3JNqtGWfmy4WdX2flCyvcilNWR5/BLGBy2QkxPIhls6SAgGUfDuKeX0= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255522; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=W/uVJLyqHpxzi2d8Ms3QG2OXemG8TYEkmCkc7RTJUUE=; b=TFMFJwmwNGsiHVqistakDr6B8VjxFvKR77gl9/EBImsHmmnzmNdVEN/6LnbGqmpzoHg3Cl0vxhHe1O0UMyRaUrNQh8MpVIyJo2ZVO4a32Ct/gWRIVLgzzwsLZMciQkIVvDikkNlVQoWNaQUloySWBIa58FymSvEwROuTHFJX5Uk= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89430+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255522478753.7649604286128; Fri, 29 Apr 2022 11:05:22 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id bjErYY1788612x3DSZ8OxMgi; Fri, 29 Apr 2022 11:05:22 -0700 X-Received: from mga03.intel.com (mga03.intel.com [134.134.136.65]) by mx.groups.io with SMTP id smtpd.web11.13472.1651255521036807512 for ; Fri, 29 Apr 2022 11:05:21 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="266550638" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="266550638" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga103.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:19 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955727" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:19 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 14/28] SecurityPkg: Add null encryption variable libs Date: Fri, 29 Apr 2022 11:04:16 -0700 Message-Id: <20220429180430.3292-15-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: fWnRdVUYPosLBDI7TwKYAq8xx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255522; bh=4/E8O+zeFGmBizFLLoU5o4VHX8Ps10msuMe6W0F0zPQ=; h=Cc:Date:From:Reply-To:Subject:To; b=GZkLNOafqbtViySeEdelxBvLXcWXynArW6lvcaeOVtmg4TZFDTC7CbPz8daFDoOpGc2 2+FwVi774t+bqvVat626/Bud25/HJ85tbpTDSFVc28ayOHWojXj/oLWSQ86U1qgtkqGNw Fa8O/O+PgyHwEi0wuJ4YbAOIcKfdmkBslg4= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255522840100022 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Provide null ecryption variable libraries. These will be used by default for platforms that don't support protected variable encryption. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariableLibNull.in= f | 38 +++++++ SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariable.c = | 107 ++++++++++++++++++++ SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariableLibNull.un= i | 16 +++ 3 files changed, 161 insertions(+) diff --git a/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariab= leLibNull.inf b/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVar= iableLibNull.inf new file mode 100644 index 000000000000..ff5631b336eb --- /dev/null +++ b/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariableLibNu= ll.inf @@ -0,0 +1,38 @@ +## @file +# Provides NULL version of encryption variable services. +# +# Copyright (c) 2015 - 2022, Intel Corporation. All rights reserved.
+# +# SPDX-License-Identifier: BSD-2-Clause-Patent +# +## + +[Defines] + INF_VERSION =3D 0x00010005 + BASE_NAME =3D EncryptionVariableLibNull + MODULE_UNI_FILE =3D EncryptionVariableLib.uni + FILE_GUID =3D 3972E6FE-74D5-45C3-A9FB-DB9E5E5C9C17 + MODULE_TYPE =3D BASE + VERSION_STRING =3D 1.0 + LIBRARY_CLASS =3D EncryptionVariableLib + +# +# The following information is for reference only and not required by the = build tools. +# +# VALID_ARCHITECTURES =3D IA32 X64 +# + +[Sources] + EncryptionVariable.c + +[Packages] + MdePkg/MdePkg.dec + MdeModulePkg/MdeModulePkg.dec + SecurityPkg/SecurityPkg.dec + +[LibraryClasses] + BaseLib + DebugLib + +[Guids] + diff --git a/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariab= le.c b/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariable.c new file mode 100644 index 000000000000..58a4ae9f4282 --- /dev/null +++ b/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariable.c @@ -0,0 +1,107 @@ +/** @file + The common variable operation routines shared by DXE_RUNTIME variable + module and DXE_SMM variable module. + + Caution: This module requires additional review when modified. + This driver will have external input - variable data. They may be input = in SMM mode. + This external input must be validated carefully to avoid security issue = like + buffer overflow, integer overflow. + + VariableServiceGetNextVariableName () and VariableServiceQueryVariableIn= fo() are external API. + They need check input parameter. + + VariableServiceGetVariable() and VariableServiceSetVariable() are extern= al API + to receive datasize and data buffer. The size should be checked carefull= y. + + VariableServiceSetVariable() should also check authenticate data to avoi= d buffer overflow, + integer overflow. It should also check attribute to avoid authentication= bypass. + +Copyright (c) 2019 - 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include + +#include +#include + +/** + Encrypt variable data. + + Null version. + + @param[in, out] VarEncInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_UNSUPPORTED Unsupported to encrypt variable. + +**/ +EFI_STATUS +EFIAPI +EncryptVariable ( + IN OUT VARIABLE_ENCRYPTION_INFO *VarEncInfo + ) +{ + return EFI_UNSUPPORTED; +} + +/** + Decrypt variable data. + + Null version. + + @param[in, out] VarEncInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_UNSUPPORTED Unsupported to encrypt variable. + +**/ +EFI_STATUS +EFIAPI +DecryptVariable ( + IN OUT VARIABLE_ENCRYPTION_INFO *VarEncInfo + ) +{ + return EFI_UNSUPPORTED; +} + +/** + Get cipher information. + + Null version. + + @param[in] VarEncInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_UNSUPPORTED Unsupported interface. + +**/ +EFI_STATUS +EFIAPI +GetCipherDataInfo ( + IN VARIABLE_ENCRYPTION_INFO *VarEncInfo + ) +{ + return EFI_UNSUPPORTED; +} + +/** + Set cipher information for a variable. + + Null version. + + @param[in] VarEncInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_UNSUPPORTED If this method is not supported. + +**/ +EFI_STATUS +EFIAPI +SetCipherDataInfo ( + IN VARIABLE_ENCRYPTION_INFO *VarEncInfo + ) +{ + return EFI_UNSUPPORTED; +} diff --git a/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariab= leLibNull.uni b/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVar= iableLibNull.uni new file mode 100644 index 000000000000..856fa201b8df --- /dev/null +++ b/SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariableLibNu= ll.uni @@ -0,0 +1,16 @@ +// /** @file +// Provides authenticated variable services. +// +// Provides authenticated variable services. +// +// Copyright (c) 2015 - 2022, Intel Corporation. All rights reserved.
+// +// SPDX-License-Identifier: BSD-2-Clause-Patent +// +// **/ + + +#string STR_MODULE_ABSTRACT #language en-US "Provides authenti= cated variable services" + +#string STR_MODULE_DESCRIPTION #language en-US "Provides authenti= cated variable services." + --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89430): https://edk2.groups.io/g/devel/message/89430 Mute This Topic: https://groups.io/mt/90781898/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89433+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89433+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255523; cv=none; d=zohomail.com; s=zohoarc; b=AQ/QOljRD3iXPESZU0/fcNlZXdsJgM9sywbJu5qaFVhM8+FYWeIH79k1jyLfqDXn6u4ArZ2/IeGG9O4Jt2oHJsmCqLM7MSi9wIc0ds229C7GFDu96qtlIqahJ9N4/MBvloGkblgkam+2a0DA7xAn+o+dfax2qtZuRX6dnsLN/LY= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255523; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=TEQf1NFisXPBXtk3Jx3wNPW9n01J7wM01x2gH5GjVxA=; b=UzLX+4yulpe6FbdayOibrsit9OukMyEeq1RP+wfRhcHUpSTZJmjr6OzGx3FRl4XddgS+1gCXSWApT5TTJUzqf+D4aiyuZZx4yxAKdKWbBkTHkRxRAIE7Igj/ZicJD6V95eec9T2xlKybPZyGlSmkvXnEbZt+xbL4miBdB83BIV4= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89433+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255523574970.4798545988962; Fri, 29 Apr 2022 11:05:23 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id OTrgYY1788612xDtbqwmJ0p4; Fri, 29 Apr 2022 11:05:23 -0700 X-Received: from mga03.intel.com (mga03.intel.com [134.134.136.65]) by mx.groups.io with SMTP id smtpd.web12.13562.1651255521776053976 for ; Fri, 29 Apr 2022 11:05:21 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="266550644" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="266550644" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga103.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:20 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955733" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:19 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 15/28] SecurityPkg: Add VariableKey library function Date: Fri, 29 Apr 2022 11:04:17 -0700 Message-Id: <20220429180430.3292-16-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: p2IlYmSbbPV54STEgiQHHJ1Jx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255523; bh=PGd188di8LGODHdcElbPtUT2G1JqEQBZnVn0GHPye6k=; h=Cc:Date:From:Reply-To:Subject:To; b=jr0jhF+01E5IXfq4uQHFwjgfM77nSiouNsGPOTkROS9xFdcL8WU/r7BiztGbl9JfkmM JOqnjizk+PgaNZHKlAK413jXBD3PW+Y9cogzeq3gz/1G5oK782ZBHRvfl8dVpKkFow6d6 WIV+MCi/bYOZEs20uce4O5pHoaSTV/W4k+I= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255524950100039 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Provide function that retrieves the key for protected variables. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- SecurityPkg/Library/VariableKeyLib/VariableKeyLib.inf | 36 ++++++++++++ SecurityPkg/Library/VariableKeyLib/VariableKeyLib.c | 59 +++++++++++++++= +++++ 2 files changed, 95 insertions(+) diff --git a/SecurityPkg/Library/VariableKeyLib/VariableKeyLib.inf b/Securi= tyPkg/Library/VariableKeyLib/VariableKeyLib.inf new file mode 100644 index 000000000000..f62c80ce9943 --- /dev/null +++ b/SecurityPkg/Library/VariableKeyLib/VariableKeyLib.inf @@ -0,0 +1,36 @@ +## @file +# Provides default implementation of VariableKeyLib. +# +# Copyright (c) 2022, Intel Corporation. All rights reserved.
+# SPDX-License-Identifier: BSD-2-Clause-Patent +# +## + +[Defines] + INF_VERSION =3D 0x00010029 + BASE_NAME =3D VariableKeyLib + FILE_GUID =3D 7DF5A0BA-1DBB-4E67-A9F7-9FCCB1F9D250 + MODULE_TYPE =3D BASE + VERSION_STRING =3D 1.0 + LIBRARY_CLASS =3D VariableKeyLib + +# +# The following information is for reference only and not required by the = build tools. +# +# VALID_ARCHITECTURES =3D IA32 X64 Arm AArch64 +# + +[Sources] + VariableKeyLib.c + +[Packages] + MdePkg/MdePkg.dec + SecurityPkg/SecurityPkg.dec + +[LibraryClasses] + BaseLib + DebugLib + +[PpiS] + gKeyServicePpiGuid ## CONSUMES + diff --git a/SecurityPkg/Library/VariableKeyLib/VariableKeyLib.c b/Security= Pkg/Library/VariableKeyLib/VariableKeyLib.c new file mode 100644 index 000000000000..31b22782cb0c --- /dev/null +++ b/SecurityPkg/Library/VariableKeyLib/VariableKeyLib.c @@ -0,0 +1,59 @@ +/** @file + VariableKeyLib implementation. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include + +#include +#include +#include + +#include + +#define VAR_KEY_SALT L"Key for RPMC Variable" +#define VAR_KEY_SALT_SIZE sizeof (VAR_KEY_SALT) + +/** + Retrieves the key for integrity and/or confidentiality of variables. + + @param[out] VariableKey A pointer to pointer for the variabl= e key buffer. + @param[in] VariableKeySize The size in bytes of the variable ke= y. + + @retval EFI_SUCCESS The variable key was returned. + @retval EFI_DEVICE_ERROR An error occurred while attempting= to get the variable key. + @retval EFI_ACCESS_DENIED The function was invoked after loc= king the key interface. + @retval EFI_UNSUPPORTED The variable key is not supported = in the current boot configuration. +**/ +EFI_STATUS +EFIAPI +GetVariableKey ( + OUT VOID *VariableKey, + IN UINTN VariableKeySize + ) +{ + EFI_STATUS Status; + KEY_SERVICE_PPI *KeyService; + + Status =3D PeiServicesLocatePpi ( + &gKeyServicePpiGuid, + 0, + NULL, + (void **)&KeyService + ); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + Status =3D KeyService->GenerateKey ( + (UINT8 *)VAR_KEY_SALT, + VAR_KEY_SALT_SIZE, + VariableKey, + VariableKeySize + ); + return Status; +} --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89433): https://edk2.groups.io/g/devel/message/89433 Mute This Topic: https://groups.io/mt/90781903/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89434+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89434+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255524; cv=none; d=zohomail.com; s=zohoarc; b=G5tfO8zS1cKzp+VezbULkgioxAYa/MjuK3tVYdq5FUGSKmWHNbvUdKiDUBz3u6nJaJZ3D68lbwhMW5wM9H4GiuHcCnXJRf7ooINdPIMvM2I3Z0//R5SoZh1xMsPeEyZnS+j2pRtTjF3lp0sFWs4P3Vn4gOrKiJ4L0SfNTqNICKk= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255524; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=NjcoZ2JQZjqbMI3N6mZDh76NQ//IKFxLLUZTrwDH1fU=; b=dLezvh3Bg79jlAi0he9kfANZXuwrXn9+Q4c9jS6VE21LMXs32aMG3pywJrcXzcQNQlSXk94qDxNGQQ0JmyfbTkNNIbQrVu4xQzjhrqpxACCSOecyELqC2UxDDQgmTzrOLg/fBNjglMA3bRE7jrFwbDKxl7hSC9C5/2ZHPYq/IYY= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89434+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255524674718.1013952280558; Fri, 29 Apr 2022 11:05:24 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id 0DoKYY1788612xCUv5r5gAcX; Fri, 29 Apr 2022 11:05:24 -0700 X-Received: from mga03.intel.com (mga03.intel.com [134.134.136.65]) by mx.groups.io with SMTP id smtpd.web11.13472.1651255521036807512 for ; Fri, 29 Apr 2022 11:05:22 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="266550652" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="266550652" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga103.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:20 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955740" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:20 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 16/28] SecurityPkg: Add EncryptionVariable lib with AES Date: Fri, 29 Apr 2022 11:04:18 -0700 Message-Id: <20220429180430.3292-17-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: JQj3xlqTclN0WKoeKODG13oJx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255524; bh=4dMKsIAyCoEw1T/zz8xx4Nu0/48En+0WS/lrCzlZUsw=; h=Cc:Date:From:Reply-To:Subject:To; b=b8kSbrbLR6PIuR073sUNvuPBTVSx8P9/UvRnikhPVFH1lAq6/ugVaqOnD0pAWkUtj1W Qxb4l68qhkKcaFh/MU7MZqkatR+ZTKwaQ0s5Eua0zfLlE3Tmn79efbfw//5/6GjBl8RiM xHo0hDnF0ULHpSo+J4VTQ+u+kSxNOcED8Bs= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255528327100061 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add encryption/decryption of protected variable functionality. Add functions to get/set cipher data of a protected variable. This is use for supporting confidentiality for protected variables. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- SecurityPkg/Library/EncryptionVariableLib/EncryptionVariableLib.inf | 43 = ++ SecurityPkg/Library/EncryptionVariableLib/EncryptionVariable.h | 49 = ++ SecurityPkg/Library/EncryptionVariableLib/EncryptionVariable.c | 728 = ++++++++++++++++++++ 3 files changed, 820 insertions(+) diff --git a/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariableLi= b.inf b/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariableLib.inf new file mode 100644 index 000000000000..7ece52f2fb58 --- /dev/null +++ b/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariableLib.inf @@ -0,0 +1,43 @@ +## @file +# Provides variable encryption/decryption services. +# +# Copyright (c) 2022, Intel Corporation. All rights reserved.
+# +# SPDX-License-Identifier: BSD-2-Clause-Patent +# +## + +[Defines] + INF_VERSION =3D 0x00010029 + BASE_NAME =3D EncryptionVariableLib + FILE_GUID =3D 459E2CB0-AF4B-4415-B6A1-335E71FD8B85 + MODULE_TYPE =3D BASE + VERSION_STRING =3D 1.0 + LIBRARY_CLASS =3D EncryptionVariableLib + +# +# The following information is for reference only and not required by the = build tools. +# +# VALID_ARCHITECTURES =3D IA32 X64 +# + +[Sources] + EncryptionVariable.c + EncryptionVariable.h + +[Packages] + MdePkg/MdePkg.dec + MdeModulePkg/MdeModulePkg.dec + SecurityPkg/SecurityPkg.dec + CryptoPkg/CryptoPkg.dec + +[LibraryClasses] + BaseLib + BaseMemoryLib + DebugLib + MemoryAllocationLib + BaseCryptLib + +[Guids] + gEfiVariableGuid + gEfiAuthenticatedVariableGuid diff --git a/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariable.h= b/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariable.h new file mode 100644 index 000000000000..f35f9f9e3ad7 --- /dev/null +++ b/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariable.h @@ -0,0 +1,49 @@ +/** @file + Definitions used by this library implementation. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#ifndef ENCRYPTION_VARIABLE_H_ +#define ENCRYPTION_VARIABLE_H_ + +#define ENC_KEY_SEP L":" +#define ENC_KEY_SEP_SIZE 2 +#define ENC_KEY_NAME L"VAR_ENC_KEY" +#define ENC_KEY_NAME_SIZE 22 + +#define ENC_KEY_SIZE (256/8) +#define ENC_BLOCK_SIZE AES_BLOCK_SIZE +#define ENC_IVEC_SIZE ENC_BLOCK_SIZE + +#define ENC_PADDING_BYTE 0x0F + +// +// PKCS#5 padding +// +// #define AES_CIPHER_DATA_SIZE(PlainDataSize) +// (AES_BLOCK_SIZE + (PlainDataSize)) & (~(AES_BLOCK_SIZE - 1)) +// +#define AES_CIPHER_DATA_SIZE(PlainDataSize) ALIGN_VALUE (PlainDataSize, A= ES_BLOCK_SIZE) + +#define FREE_POOL(Address) \ + if ((Address) !=3D NULL) { \ + FreePool (Address); \ + (Address) =3D NULL; \ + } + +#pragma pack(1) + +typedef struct { + UINT32 DataType; // SYM_TYPE_AES + UINT32 HeaderSize; // sizeof(VARIABLE_ENCRYPTION_HEADER) + UINT32 PlainDataSize; // Plain data size + UINT32 CipherDataSize; // Cipher data size + UINT8 KeyIvec[ENC_IVEC_SIZE]; +} VARIABLE_ENCRYPTION_HEADER; + +#pragma pack() + +#endif // _ENCRYPTION_VARIABLE_H_ diff --git a/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariable.c= b/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariable.c new file mode 100644 index 000000000000..58ffb09e0373 --- /dev/null +++ b/SecurityPkg/Library/EncryptionVariableLib/EncryptionVariable.c @@ -0,0 +1,728 @@ +/** @file + Implementation of EncryptionVariableLib with AES algorithm support. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include + +#include +#include +#include +#include +#include +#include + +#include "EncryptionVariable.h" + +/** + Derive encryption key for given variable from variable root key. + + The derivation algorithm is depicted below + + HKDF_Expand(SHA256, RootKey, Name||':'||Guid||':'||Attr||"VAR_ENC_KEY") + + @param[in] VarEncInfo Pointer to structure containing detailed + information about a variable. + @param[in] EncKeySize Size of key requested. + @param[out] EncKey Buffer of key. + + @retval TRUE The key was derived successfully. + @retval FALSE Failed to generate encryption key. + +**/ +STATIC +BOOLEAN +EncVarLibGenEncKey ( + IN VARIABLE_ENCRYPTION_INFO *VarEncInfo, + IN UINTN EncKeySize, + OUT UINT8 *EncKey + ) +{ + BOOLEAN Status; + + struct { + VOID *Data; + UINTN Size; + } InfoGroup[6]; + UINT8 *Info; + UINTN InfoSize; + UINTN Index; + UINT8 Salt[16]; + + // + // info: Name||':'||Guid||':'||Attr||"VAR_ENC_KEY" + // + InfoGroup[0].Size =3D VarEncInfo->Header.NameSize; + InfoGroup[0].Data =3D VarEncInfo->Header.VariableName; + + InfoGroup[1].Size =3D ENC_KEY_SEP_SIZE; + InfoGroup[1].Data =3D ENC_KEY_SEP; + + InfoGroup[2].Size =3D sizeof (*VarEncInfo->Header.VendorGuid); + InfoGroup[2].Data =3D VarEncInfo->Header.VendorGuid; + + InfoGroup[3].Size =3D ENC_KEY_SEP_SIZE; + InfoGroup[3].Data =3D ENC_KEY_SEP; + + InfoGroup[4].Size =3D sizeof (VarEncInfo->Header.Attributes); + InfoGroup[4].Data =3D &VarEncInfo->Header.Attributes; + + InfoGroup[5].Size =3D ENC_KEY_NAME_SIZE; + InfoGroup[5].Data =3D ENC_KEY_NAME; + + for (InfoSize =3D 0, Index =3D 0; Index < ARRAY_SIZE (InfoGroup); ++Inde= x) { + InfoSize +=3D InfoGroup[Index].Size; + } + + Info =3D AllocateZeroPool (InfoSize); + if (Info =3D=3D NULL) { + ASSERT (Info !=3D NULL); + return FALSE; + } + + for (InfoSize =3D 0, Index =3D 0; Index < ARRAY_SIZE (InfoGroup); ++Inde= x) { + CopyMem (Info + InfoSize, InfoGroup[Index].Data, InfoGroup[Index].Size= ); + InfoSize +=3D InfoGroup[Index].Size; + } + + Status =3D HkdfSha256ExtractAndExpand ( + VarEncInfo->Key, + VarEncInfo->KeySize, + Salt, + 0, + Info, + InfoSize, + EncKey, + EncKeySize + ); + + FreePool (Info); + + return Status; +} + +/** + Generate init-vector for AES encryption. + + @param[out] InitVector IVEC buffer. + @param[in] Size Size of IVEC requested. + + @retval TRUE IVEC was generated successfully. + @retval FALSE Failed to generate IVEC. + +**/ +STATIC +BOOLEAN +EncVarLibGenIvec ( + OUT UINT8 *InitVector, + IN UINTN Size + ) +{ + return RandomBytes (InitVector, Size); +} + +/** + Check if there's valid variable information needed by encrypting or decr= ypting. + + @param[in] VarEncInfo Buffer conveying details about a variable. + @param[in] CheckForEnc Flag indicating check for encrypting (TRUE) = or + decrypting (FALSE). + + @retval TRUE VarEncInfo is valid. + @retval FALSE VarEncInfo is invalid. + +**/ +STATIC +BOOLEAN +IsValidVariableInfo ( + IN VARIABLE_ENCRYPTION_INFO *VarEncInfo, + IN BOOLEAN CheckForEnc + ) +{ + BOOLEAN Valid; + + if (CheckForEnc) { + Valid =3D (VarEncInfo->Header.Data !=3D NULL && VarEncInfo->Header.Dat= aSize > 0) + || (VarEncInfo->PlainData !=3D NULL && VarEncInfo->PlainDataSi= ze > 0); + if (!Valid) { + ASSERT ( + (VarEncInfo->Header.Data !=3D NULL && VarEncInfo->Header.DataSize = > 0) + || (VarEncInfo->PlainData !=3D NULL && VarEncInfo->PlainDataS= ize > 0) + ); + } + } else { + Valid =3D (VarEncInfo->Header.Data !=3D NULL && VarEncInfo->Header.Dat= aSize > 0) + || (VarEncInfo->CipherData !=3D NULL && VarEncInfo->CipherData= Size > 0); + if (!Valid) { + ASSERT ( + (VarEncInfo->Header.Data !=3D NULL && VarEncInfo->Header.DataSize = > 0) + || (VarEncInfo->CipherData !=3D NULL && VarEncInfo->CipherDat= aSize > 0) + ); + } + } + + Valid =3D Valid + && VarEncInfo->Header.VariableName !=3D NULL + && VarEncInfo->Header.NameSize > 0 + && VarEncInfo->Header.VendorGuid !=3D NULL + && VarEncInfo->Key !=3D NULL + && VarEncInfo->KeySize > 0; + if (!Valid) { + ASSERT (VarEncInfo->Header.VariableName !=3D NULL); + ASSERT (VarEncInfo->Header.NameSize !=3D 0); + ASSERT (VarEncInfo->Header.VendorGuid !=3D NULL); + ASSERT (VarEncInfo->Key !=3D NULL); + ASSERT (VarEncInfo->KeySize > 0); + } + + return Valid; +} + +/** + Sanity check of encrption header prefixed to encrypted data. + + @param[in] EncHeader Pointer to VARIABLE_ENCRYPTION_HEADER. + @param[in] DataSize Size of variable data payload. + + @retval TRUE EncHeader is valid. + @retval FALSE EncHeader is invalid. + +**/ +STATIC +BOOLEAN +IsValidEncrptionHeader ( + IN VARIABLE_ENCRYPTION_HEADER *EncHeader, + IN UINT32 DataSize + ) +{ + if ( (DataSize > sizeof (VARIABLE_ENCRYPTION_HEADER)) + && ((EncHeader->DataType =3D=3D ENC_TYPE_AES) || (EncHeader->DataType= =3D=3D ENC_TYPE_NULL)) + && (EncHeader->HeaderSize >=3D sizeof (VARIABLE_ENCRYPTION_HEADER)) + && (EncHeader->CipherDataSize > 0) + && ((EncHeader->CipherDataSize % ENC_BLOCK_SIZE) =3D=3D 0) + && (EncHeader->PlainDataSize > 0) + && (EncHeader->PlainDataSize <=3D EncHeader->CipherDataSize) + && ((EncHeader->CipherDataSize + EncHeader->HeaderSize) <=3D DataSize= )) + { + return TRUE; + } + + return FALSE; +} + +/** + Encrypt variable data. + + If VarEncInfo->PlainData is not NULL, VarEncInfo->PlainData holds the pl= ain + data. Otherwise, VarEncInfo->Headr.Data is supposed to be the plain data. + + If VarEncInfo->CipherData is not NULL, The encrypted data is stored in + VarEncInfo->CipherData. Otherwise, the encrypted data is stored directly + in variable data buffer, i.e. VarEncInfo->Headr.Data. + + @param[in, out] VarEncInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_SUCCESS Variable was encrypted successfully. + @retval EFI_INVALID_PARAMETER Variable information in VarEncInfo is in= valid. + @retval EFI_BUFFER_TOO_SMALL VarEncInfo->CipherData is not NULL but + VarEncInfo->CipherDataSize is too small. + @retval EFI_ABORTED Uknown error occurred during encrypting. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_UNSUPPORTED Unsupported to encrypt variable. + +**/ +EFI_STATUS +EFIAPI +EncryptVariable ( + IN OUT VARIABLE_ENCRYPTION_INFO *VarEncInfo + ) +{ + EFI_STATUS Status; + VOID *AesContext; + UINT8 EncKey[ENC_KEY_SIZE]; + UINT8 Ivec[ENC_IVEC_SIZE]; + UINT8 *PlainBuffer; + UINT8 *CipherBuffer; + UINT8 *PlainData; + UINT32 PlainDataSize; + VARIABLE_ENCRYPTION_HEADER *CipherData; + UINT32 CipherDataSize; + UINT32 PaddingBytes; + + Status =3D EFI_ABORTED; + AesContext =3D NULL; + PlainBuffer =3D NULL; + CipherBuffer =3D NULL; + + if (!IsValidVariableInfo (VarEncInfo, TRUE)) { + return EFI_INVALID_PARAMETER; + } + + if (VarEncInfo->PlainData !=3D NULL) { + PlainData =3D VarEncInfo->PlainData; + PlainDataSize =3D VarEncInfo->PlainDataSize; + } else { + PlainData =3D VarEncInfo->Header.Data; + PlainDataSize =3D (UINT32)VarEncInfo->Header.DataSize; + } + + CipherDataSize =3D AES_CIPHER_DATA_SIZE (PlainDataSize); + if (VarEncInfo->CipherData !=3D NULL) { + if (VarEncInfo->CipherDataSize + < (CipherDataSize + sizeof (VARIABLE_ENCRYPTION_HEADER))) + { + VarEncInfo->CipherDataSize =3D CipherDataSize + + sizeof (VARIABLE_ENCRYPTION_HEADER); + return EFI_BUFFER_TOO_SMALL; + } + + CipherData =3D VarEncInfo->CipherData; + } else { + CipherData =3D VarEncInfo->Header.Data; + } + + // + // Prepare buffer for encrypted data. + // + if ((UINTN)CipherData =3D=3D (UINTN)PlainData) { + // + // Need buffer to store the encrypted data temporarily. + // + CipherBuffer =3D (UINT8 *)AllocateZeroPool ( + CipherDataSize + + sizeof (VARIABLE_ENCRYPTION_HEADER) + ); + if (CipherBuffer =3D=3D NULL) { + ASSERT (CipherBuffer !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + } else { + CipherBuffer =3D (UINT8 *)CipherData; + } + + // + // Plain variable data must also be multiple of ENC_BLOCK_SIZE. + // + PaddingBytes =3D ALIGN_VALUE (PlainDataSize, ENC_BLOCK_SIZE) - PlainData= Size; + if (PaddingBytes !=3D 0) { + // + // Since the plain data size will be saved in the VARIABLE_ENCRYPTION_= HEADER, + // there's no need to do PKCS way of padding. To save space, just padd= ing + // the plain data to be of the nearest n*ENC_BLOCK_SIZE. + // + PlainBuffer =3D AllocateZeroPool (PlainDataSize + PaddingBytes); + if (PlainBuffer =3D=3D NULL) { + ASSERT (PlainBuffer !=3D NULL); + goto Done; + } + + CopyMem (PlainBuffer, PlainData, PlainDataSize); + SetMem (PlainBuffer + PlainDataSize, PaddingBytes, ENC_PADDING_BYTE); + } else { + PlainBuffer =3D PlainData; + } + + // + // Skip EFI_VARIABLE_APPEND_WRITE bit in generating encryption key. + // + VarEncInfo->Header.Attributes &=3D (~EFI_VARIABLE_APPEND_WRITE); + if (!EncVarLibGenEncKey (VarEncInfo, ENC_KEY_SIZE, EncKey)) { + ASSERT (FALSE); + return EFI_ABORTED; + } + + if (!EncVarLibGenIvec (Ivec, ENC_IVEC_SIZE)) { + ASSERT (FALSE); + return EFI_ABORTED; + } + + AesContext =3D AllocateZeroPool (AesGetContextSize ()); + if (AesContext =3D=3D NULL) { + ASSERT (AesContext !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + if (!AesInit (AesContext, EncKey, ENC_KEY_SIZE * 8)) { + ASSERT (FALSE); + goto Done; + } + + if (AesCbcEncrypt ( + AesContext, + PlainBuffer, + PlainDataSize + PaddingBytes, + Ivec, + CipherBuffer + sizeof (VARIABLE_ENCRYPTION_HEADER) + )) + { + // + // Keep the IV for decryption. + // + CopyMem (CipherData->KeyIvec, Ivec, ENC_BLOCK_SIZE); + + if ((UINTN)CipherBuffer !=3D (UINTN)CipherData) { + CopyMem ( + CipherData + 1, + CipherBuffer + sizeof (VARIABLE_ENCRYPTION_HEADER), + CipherDataSize + ); + } + + CipherData->CipherDataSize =3D CipherDataSize; + CipherData->PlainDataSize =3D PlainDataSize; + CipherData->DataType =3D ENC_TYPE_AES; + CipherData->HeaderSize =3D sizeof (VARIABLE_ENCRYPTION_HEADER); + + VarEncInfo->CipherData =3D CipherData; + VarEncInfo->CipherDataSize =3D CipherDataSize + sizeof (VARIABLE_ENC= RYPTION_HEADER); + VarEncInfo->CipherHeaderSize =3D sizeof (VARIABLE_ENCRYPTION_HEADER); + VarEncInfo->CipherDataType =3D ENC_TYPE_AES; + + Status =3D EFI_SUCCESS; + } else { + VarEncInfo->CipherData =3D NULL; + VarEncInfo->CipherDataSize =3D 0; + VarEncInfo->CipherHeaderSize =3D 0; + VarEncInfo->CipherDataType =3D ENC_TYPE_NULL; + + ASSERT (FALSE); + } + +Done: + FREE_POOL (AesContext); + if (PlainBuffer !=3D PlainData) { + FREE_POOL (PlainBuffer); + } + + if (CipherBuffer !=3D (UINT8 *)CipherData) { + FREE_POOL (CipherBuffer); + } + + return Status; +} + +/** + Decrypt variable data. + + If VarEncInfo->CipherData is not NULL, it must holds the cipher data to = be + decrypted. Otherwise, assume the cipher data from variable data buffer, = i.e. + VarEncInfo->Header.Data. + + If VarEncInfo->Flags.DecryptInPlace is TRUE, the decrypted data will be = put + back in the same buffer as cipher buffer got above, after encryption hea= der, + which helps to identify later if the data in buffer is decrypted or not.= This + can avoid repeat decryption when accessing the same variable more than o= nce. + + If VarEncInfo->Flags.DecryptInPlace is FALSE, VarEncInfo->PlainData must= be + passed in with a valid buffer with VarEncInfo->PlainDataSize set correct= ly + with its size. + + Note the VarEncInfo->PlainData is always pointing to the buffer address = with + decrypted data without encryption header, and VarEncInfo->PlainDataSize = is + always the size of original variable data, if this function returned + successfully. + + @param[in, out] VarEncInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_SUCCESS Variable was decrypted successfully. + @retval EFI_INVALID_PARAMETER Variable information in VarEncInfo is in= valid. + @retval EFI_BUFFER_TOO_SMALL VarEncInfo->PlainData is not NULL but + VarEncInfo->PlainDataSize is too small. + @retval EFI_ABORTED Uknown error occurred during decrypting. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_COMPROMISED_DATA The cipher header is not valid. + @retval EFI_UNSUPPORTED Unsupported to encrypt variable. + +**/ +EFI_STATUS +EFIAPI +DecryptVariable ( + IN OUT VARIABLE_ENCRYPTION_INFO *VarEncInfo + ) +{ + VOID *AesContext; + UINT8 EncKey[ENC_KEY_SIZE]; + UINT8 *PlainBuffer; + UINT8 *PlainData; + VARIABLE_ENCRYPTION_HEADER *CipherData; + UINT32 CipherDataSize; + EFI_STATUS Status; + + Status =3D EFI_ABORTED; + AesContext =3D NULL; + PlainBuffer =3D NULL; + + if (!IsValidVariableInfo (VarEncInfo, FALSE)) { + return EFI_INVALID_PARAMETER; + } + + if (VarEncInfo->CipherData !=3D NULL) { + CipherData =3D VarEncInfo->CipherData; + CipherDataSize =3D VarEncInfo->CipherDataSize; + } else { + CipherData =3D VarEncInfo->Header.Data; + CipherDataSize =3D (UINT32)VarEncInfo->Header.DataSize; + } + + // + // Sanity check of cipher header. + // + if (!IsValidEncrptionHeader (CipherData, CipherDataSize)) { + return EFI_COMPROMISED_DATA; + } + + if ( (VarEncInfo->PlainData !=3D NULL) + && (VarEncInfo->PlainDataSize < CipherData->PlainDataSize)) + { + VarEncInfo->PlainDataSize =3D CipherData->PlainDataSize; + return EFI_BUFFER_TOO_SMALL; + } + + if (CipherData->DataType =3D=3D ENC_TYPE_AES) { + if (VarEncInfo->Flags.DecryptInPlace) { + // + // Reusing cipher data buffer needs to keep the encryption header. + // + PlainData =3D (UINT8 *)CipherData + CipherData->HeaderSize; + } else { + PlainData =3D VarEncInfo->PlainData; + } + + if (PlainData =3D=3D NULL) { + return EFI_INVALID_PARAMETER; + } + + // + // Always need buffer to store the decrypted data temporarily, due to + // padding bytes or buffer reuse. Then the buffer must be larger than + // CipherData->PlainDataSize. + // + PlainBuffer =3D AllocatePages (EFI_SIZE_TO_PAGES (CipherDataSize)); + if (PlainBuffer =3D=3D NULL) { + ASSERT (PlainBuffer !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + if (!EncVarLibGenEncKey (VarEncInfo, ENC_KEY_SIZE, EncKey)) { + ASSERT (FALSE); + goto Done; + } + + AesContext =3D AllocatePages (EFI_SIZE_TO_PAGES (AesGetContextSize ())= ); + if (AesContext =3D=3D NULL) { + ASSERT (AesContext !=3D NULL); + Status =3D EFI_OUT_OF_RESOURCES; + goto Done; + } + + if (!AesInit (AesContext, EncKey, ENC_KEY_SIZE * 8)) { + ASSERT (FALSE); + goto Done; + } + + if (AesCbcDecrypt ( + AesContext, + (UINT8 *)CipherData + CipherData->HeaderSize, + CipherDataSize - CipherData->HeaderSize, + CipherData->KeyIvec, + PlainBuffer + )) + { + Status =3D EFI_SUCCESS; + } else { + Status =3D EFI_COMPROMISED_DATA; + } + } else { + // + // The data has been decrypted already. + // + PlainBuffer =3D (UINT8 *)CipherData + CipherData->HeaderSize; + + if (VarEncInfo->PlainData !=3D NULL) { + PlainData =3D VarEncInfo->PlainData; + } else { + PlainData =3D PlainBuffer; + } + + Status =3D EFI_SUCCESS; + } + + if (!EFI_ERROR (Status)) { + if (PlainBuffer !=3D PlainData) { + CopyMem (PlainData, PlainBuffer, CipherData->PlainDataSize); + } + + if (VarEncInfo->PlainData !=3D NULL) { + if (VarEncInfo->PlainData !=3D PlainBuffer) { + CopyMem (VarEncInfo->PlainData, PlainBuffer, CipherData->PlainData= Size); + } + } else { + VarEncInfo->PlainData =3D PlainData; + } + + VarEncInfo->PlainDataSize =3D CipherData->PlainDataSize; + VarEncInfo->CipherHeaderSize =3D CipherData->HeaderSize; + VarEncInfo->CipherDataType =3D CipherData->DataType; + + if (VarEncInfo->Flags.DecryptInPlace) { + CipherData->DataType =3D ENC_TYPE_NULL; + } + } + +Done: + FreePages (PlainBuffer, EFI_SIZE_TO_PAGES ((CipherDataSize))); + FreePages (AesContext, EFI_SIZE_TO_PAGES (AesGetContextSize ())); + return Status; +} + +/** + Get cipher information about a variable, including plaindata size, + cipher algorithm type, etc. + + For data passed in with VarEncInfo, + + VarEncInfo->Header.Data + - The variable data in normal variable structure. + VarEncInfo->Header.DataSize + - The size of variable data. + + For data passed out with VarEncInfo (valid only if EFI_SUCCESS is return= ed), + + VarEncInfo->CipherDataType + - ENC_TYPE_NULL, if the variable is not encrypted or has been decryp= ted; + - ENC_TYPE_AES, if the variable is encrypted. + VarEncInfo->CipherHeaderSize + - Size of cipher header put before encrypted or decrypted data. + VarEncInfo->PlainData + - NULL, if the variable is encrypted; Or + - pointer to original variable data, if the variable has been decryp= ted. + VarEncInfo->PlainDataSize + - The size of original variable data + VarEncInfo->CipherData + - NULL, if the variable is decrypted; Or + - pointer to start of encrypted variable data, including encryption = header; + VarEncInfo->CipherDataSize + - The size of encrypted variable data, including encryption header. + + @param[in] VarEncInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_SUCCESS The information was retrieved successful= ly. + @retval EFI_INVALID_PARAMETER Variable information in VarEncInfo is in= valid. + @retval EFI_NOT_FOUND No cipher information recognized. + @retval EFI_UNSUPPORTED Unsupported interface. + +**/ +EFI_STATUS +EFIAPI +GetCipherDataInfo ( + IN VARIABLE_ENCRYPTION_INFO *VarEncInfo + ) +{ + VARIABLE_ENCRYPTION_HEADER *EncHeader; + + if ((VarEncInfo->Header.Data =3D=3D NULL) || (VarEncInfo->Header.DataSiz= e =3D=3D 0)) { + ASSERT (VarEncInfo->Header.Data !=3D NULL); + ASSERT (VarEncInfo->Header.DataSize !=3D 0); + return EFI_INVALID_PARAMETER; + } + + // + // Validate encryption header. + // + EncHeader =3D (VARIABLE_ENCRYPTION_HEADER *)VarEncInfo->Header.Data; + if (!IsValidEncrptionHeader (EncHeader, (UINT32)VarEncInfo->Header.DataS= ize)) { + // + // Not an encrypted variable. + // + return EFI_NOT_FOUND; + } + + if (EncHeader->DataType =3D=3D ENC_TYPE_NULL) { + // + // The data must have been decrypted. + // + VarEncInfo->PlainData =3D (UINT8 *)VarEncInfo->Header.Data = + EncHeader->HeaderSize; + VarEncInfo->CipherData =3D NULL; + VarEncInfo->Flags.DecryptInPlace =3D TRUE; + } else { + // + // The data is encrypted. + // + VarEncInfo->CipherData =3D VarEncInfo->Header.Data; + VarEncInfo->PlainData =3D NULL; + VarEncInfo->Flags.DecryptInPlace =3D FALSE; + } + + VarEncInfo->PlainDataSize =3D EncHeader->PlainDataSize; + VarEncInfo->CipherDataSize =3D EncHeader->CipherDataSize + EncHeader->= HeaderSize; + VarEncInfo->CipherDataType =3D EncHeader->DataType; + VarEncInfo->CipherHeaderSize =3D EncHeader->HeaderSize; + + return EFI_SUCCESS; +} + +/** + Force set cipher information for a variable, like plaindata size, + cipher algorithm type, cipher data etc. + + The destination buffer must be passed via VarEncInfo->Header.Data. + + This method is only used to update and/or change plain data information. + + @param[in] VarEncInfo Pointer to structure containing detailed + information about a variable. + + @retval EFI_SUCCESS The information was updated successfully. + @retval EFI_INVALID_PARAMETER Variable information in VarEncInfo is in= valid. + @retval EFI_UNSUPPORTED If this method is not supported. + +**/ +EFI_STATUS +EFIAPI +SetCipherDataInfo ( + IN VARIABLE_ENCRYPTION_INFO *VarEncInfo + ) +{ + VARIABLE_ENCRYPTION_HEADER *EncHeader; + UINT8 *Data; + + if ( (VarEncInfo->Header.Data =3D=3D NULL) + || (VarEncInfo->Header.DataSize < sizeof (VARIABLE_ENCRYPTION_HEADER)) + || (VarEncInfo->CipherDataType !=3D ENC_TYPE_NULL)) + { + ASSERT (VarEncInfo->Header.Data !=3D NULL); + ASSERT (VarEncInfo->Header.DataSize >=3D sizeof (VARIABLE_ENCRYPTION_H= EADER)); + ASSERT (VarEncInfo->CipherDataType =3D=3D ENC_TYPE_NULL); + return EFI_INVALID_PARAMETER; + } + + Data =3D VarEncInfo->Header.Data; + EncHeader =3D (VARIABLE_ENCRYPTION_HEADER *)Data; + + if ( !IsValidEncrptionHeader (EncHeader, (UINT32)VarEncInfo->Header.Dat= aSize) + || (VarEncInfo->PlainDataSize > EncHeader->CipherDataSize)) + { + return EFI_INVALID_PARAMETER; + } + + if ((VarEncInfo->PlainData !=3D NULL) && (VarEncInfo->PlainDataSize > 0)= ) { + CopyMem ( + Data + EncHeader->HeaderSize, + VarEncInfo->PlainData, + VarEncInfo->PlainDataSize + ); + } + + EncHeader->DataType =3D VarEncInfo->CipherDataType; + if (VarEncInfo->PlainDataSize !=3D 0) { + EncHeader->PlainDataSize =3D VarEncInfo->PlainDataSize; + } + + return EFI_SUCCESS; +} --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89434): https://edk2.groups.io/g/devel/message/89434 Mute This Topic: https://groups.io/mt/90781904/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89438+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89438+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255526; cv=none; d=zohomail.com; s=zohoarc; b=EXKEcJg7QGwxw5HW6nSmXgUTRQQYVh2BsLp8jT3R6QK9yrNX2T2SQfYZg91Bk6czgLeF0XK/Oy9qPkYx+brT6W8b0vnkltUkr2EeNR+XG++196OzwNiG6FyXXk0xJw3RigJj7GzHaW5OgbCGZlNzvF4SBLA+4+yDH73uUCA/6Mc= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255526; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=WjajerPxSmVBPmcr49TFg4q40OsVGJbVaaFF6Vts1D8=; b=gfem1fNLJNYgFDAeI3XOpGWmyy4+nQzbDlpkvsHrYH9/WuCywKFHgiNwOJ2+JzixJhPmcPXzVs9YXi5rk0pHk6Ao5FZVWkuBH0h/hy2Df44iJn2XWhm0giSEEK4t6jKa+CmleppkPWr9ZLiNF5sZ1zkCI/oQSi342R/cjcjQXto= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89438+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255526775337.65541374754866; Fri, 29 Apr 2022 11:05:26 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id E02IYY1788612x3VnwEsIuel; Fri, 29 Apr 2022 11:05:26 -0700 X-Received: from mga03.intel.com (mga03.intel.com [134.134.136.65]) by mx.groups.io with SMTP id smtpd.web11.13473.1651255524516534427 for ; Fri, 29 Apr 2022 11:05:24 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="266550663" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="266550663" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga103.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:21 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955750" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:20 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 17/28] SecurityPkg: Add Protected Variable Services Date: Fri, 29 Apr 2022 11:04:19 -0700 Message-Id: <20220429180430.3292-18-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: 2SPav5XFNdCqsxArx9OEaDx8x1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255526; bh=jpEXSP+AMksYAjXrFVHTD7x2Jl9uw2PImQJC97DlmGw=; h=Cc:Date:From:Reply-To:Subject:To; b=Co565bTvNq3bH0/nqf6VPBP0tiymNYaBQ6oOA2ZVwi5EDO9kpraRYrc21ow24rtPGWg tUq6a+NrKGUVk1b2tKDVg1jxVYeFD0l0ZT1K7dpfIO07hneT5ZJsMHCT00Ro0Evc2Pt1I gbnyFebOSxpJWvcq87Oahj7tB7V59YvINMY= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255528460100062 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add Protected Variable Services across the different UEFI phases. Functions includes creating variable digest, performing integrity check, initializing protected variables, updating protected variables, and verifying the MetaDataHmacVar variable. This module prevents UEFI variable tampering. It provides variable integrity and confidentiality. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- SecurityPkg/Library/ProtectedVariableLib/DxeProtectedVariableLib.inf = | 64 + SecurityPkg/Library/ProtectedVariableLib/PeiProtectedVariableLib.inf = | 68 + SecurityPkg/Library/ProtectedVariableLib/SmmProtectedVariableLib.inf = | 67 + SecurityPkg/Library/ProtectedVariableLib/SmmRuntimeProtectedVariableLib.in= f | 62 + SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableInternal.h = | 611 ++++++ SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableCommon.c = | 2095 ++++++++++++++++++++ SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableDxe.c = | 163 ++ SecurityPkg/Library/ProtectedVariableLib/ProtectedVariablePei.c = | 1331 +++++++++++++ SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmm.c = | 209 ++ SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmmDxeCommon.c = | 975 +++++++++ SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmmRuntime.c = | 233 +++ 11 files changed, 5878 insertions(+) diff --git a/SecurityPkg/Library/ProtectedVariableLib/DxeProtectedVariableL= ib.inf b/SecurityPkg/Library/ProtectedVariableLib/DxeProtectedVariableLib.i= nf new file mode 100644 index 000000000000..74a0285af7ef --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/DxeProtectedVariableLib.inf @@ -0,0 +1,64 @@ +## @file +# Provides protected variable services for EmulatorPkg. +# +# Copyright (c) 2022, Intel Corporation. All rights reserved.
+# SPDX-License-Identifier: BSD-2-Clause-Patent +# +## + +[Defines] + INF_VERSION =3D 0x00010029 + BASE_NAME =3D DxeProtectedVariableLib + MODULE_UNI_FILE =3D ProtectedVariableLib.uni + FILE_GUID =3D 6F424E10-0F75-4716-9F97-58C2E1C643AD + MODULE_TYPE =3D DXE_RUNTIME_DRIVER + VERSION_STRING =3D 0.1 + LIBRARY_CLASS =3D ProtectedVariableLib|DXE_RUNTIME_DRIV= ER + +# +# The following information is for reference only and not required by the = build tools. +# +# VALID_ARCHITECTURES =3D IA32 X64 +# + +[Sources] + ProtectedVariableDxe.c + ProtectedVariableCommon.c + ProtectedVariableSmmDxeCommon.c + ProtectedVariableInternal.h + +[Packages] + MdePkg/MdePkg.dec + MdeModulePkg/MdeModulePkg.dec + SecurityPkg/SecurityPkg.dec + CryptoPkg/CryptoPkg.dec + +[LibraryClasses] + BaseLib + BaseMemoryLib + DebugLib + MemoryAllocationLib + HobLib + BaseCryptLib + EncryptionVariableLib + RpmcLib + HashApiLib + SortLib + +[Protocols] + gEfiVariableWriteArchProtocolGuid + +[Guids] + gEdkiiMetaDataHmacVariableGuid + gEdkiiProtectedVariableGlobalGuid + gEdkiiVarErrorFlagGuid + gEdkiiProtectedVariableContextGuid + +[Pcd] + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableName + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableGuid + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableIntegrity + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableConfidentiality + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxVariableSize + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxAuthVariableSize + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxHardwareErrorVariableSize diff --git a/SecurityPkg/Library/ProtectedVariableLib/PeiProtectedVariableL= ib.inf b/SecurityPkg/Library/ProtectedVariableLib/PeiProtectedVariableLib.i= nf new file mode 100644 index 000000000000..44c959a94ca3 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/PeiProtectedVariableLib.inf @@ -0,0 +1,68 @@ +## @file +# Provides protected variable services. +# +# Copyright (c) 2022, Intel Corporation. All rights reserved.
+# SPDX-License-Identifier: BSD-2-Clause-Patent +# +## + +[Defines] + INF_VERSION =3D 0x00010029 + BASE_NAME =3D PeiProtectedVariableLib + MODULE_UNI_FILE =3D ProtectedVariableLib.uni + FILE_GUID =3D 76FBFBCE-ACBB-4084-A348-8FCC97AAEB9D + MODULE_TYPE =3D PEIM + VERSION_STRING =3D 0.1 + LIBRARY_CLASS =3D ProtectedVariableLib|PEIM + +# +# The following information is for reference only and not required by the = build tools. +# +# VALID_ARCHITECTURES =3D IA32 X64 AARCH64 +# + +[Sources] + ProtectedVariablePei.c + ProtectedVariableCommon.c + ProtectedVariableInternal.h + +[Packages] + MdePkg/MdePkg.dec + MdeModulePkg/MdeModulePkg.dec + SecurityPkg/SecurityPkg.dec + CryptoPkg/CryptoPkg.dec + +[LibraryClasses] + BaseLib + BaseMemoryLib + DebugLib + MemoryAllocationLib + HobLib + BaseCryptLib + RpmcLib + VariableKeyLib + EncryptionVariableLib + ReportStatusCodeLib + PeiServicesLib + HashApiLib + SortLib + +[Guids] + gEdkiiMetaDataHmacVariableGuid + gEdkiiProtectedVariableGlobalGuid + gEdkiiVarErrorFlagGuid + gEdkiiProtectedVariableContextGuid + +[Ppis] + gEfiPeiMemoryDiscoveredPpiGuid + gEfiPeiVariableStoreDiscoveredPpiGuid + +[Pcd] + gEfiSecurityPkgTokenSpaceGuid.PcdStatusCodeVariableIntegrity + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableName + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableGuid + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableIntegrity + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableConfidentiality + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxVariableSize + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxAuthVariableSize + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxHardwareErrorVariableSize diff --git a/SecurityPkg/Library/ProtectedVariableLib/SmmProtectedVariableL= ib.inf b/SecurityPkg/Library/ProtectedVariableLib/SmmProtectedVariableLib.i= nf new file mode 100644 index 000000000000..ecf0b1a43d30 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/SmmProtectedVariableLib.inf @@ -0,0 +1,67 @@ +## @file +# Provides protected variable services. +# +# Copyright (c) 2022, Intel Corporation. All rights reserved.
+# SPDX-License-Identifier: BSD-2-Clause-Patent +# +## + +[Defines] + INF_VERSION =3D 0x00010029 + BASE_NAME =3D SmmProtectedVariableLib + MODULE_UNI_FILE =3D ProtectedVariableLib.uni + FILE_GUID =3D 2BEE71E5-259B-4057-A2C1-2115DF43C76A + MODULE_TYPE =3D DXE_SMM_DRIVER + VERSION_STRING =3D 0.1 + LIBRARY_CLASS =3D ProtectedVariableLib|DXE_SMM_DRIVER M= M_STANDALONE + +# +# The following information is for reference only and not required by the = build tools. +# +# VALID_ARCHITECTURES =3D IA32 X64 +# + +[Sources] + ProtectedVariableSmm.c + ProtectedVariableCommon.c + ProtectedVariableSmmDxeCommon.c + ProtectedVariableInternal.h + +[Packages] + MdePkg/MdePkg.dec + MdeModulePkg/MdeModulePkg.dec + SecurityPkg/SecurityPkg.dec + CryptoPkg/CryptoPkg.dec + +[LibraryClasses] + BaseLib + BaseMemoryLib + DebugLib + MemoryAllocationLib + HobLib + BaseCryptLib + EncryptionVariableLib + RpmcLib + VariableKeyLib + HashApiLib + SortLib + +[Protocols] + gEfiMmEndOfDxeProtocolGuid + +[Guids] + gSmmVariableWriteGuid + gEdkiiMetaDataHmacVariableGuid + gEdkiiProtectedVariableGlobalGuid + gEdkiiVarErrorFlagGuid + gEdkiiProtectedVariableContextGuid + +[Pcd] + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableName + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableGuid + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableIntegrity + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableConfidentiality + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxVariableSize + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxAuthVariableSize + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxHardwareErrorVariableSize + diff --git a/SecurityPkg/Library/ProtectedVariableLib/SmmRuntimeProtectedVa= riableLib.inf b/SecurityPkg/Library/ProtectedVariableLib/SmmRuntimeProtecte= dVariableLib.inf new file mode 100644 index 000000000000..011ccdce2db8 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/SmmRuntimeProtectedVariableL= ib.inf @@ -0,0 +1,62 @@ +## @file +# Provides protected variable services. +# +# Copyright (c) 2022, Intel Corporation. All rights reserved.
+# SPDX-License-Identifier: BSD-2-Clause-Patent +# +## + +[Defines] + INF_VERSION =3D 0x00010029 + BASE_NAME =3D SmmRuntimeProtectedVariableLib + MODULE_UNI_FILE =3D ProtectedVariableLib.uni + FILE_GUID =3D 99A623DE-1AD3-4AB3-909D-E3AADD7845EF + MODULE_TYPE =3D DXE_RUNTIME_DRIVER + VERSION_STRING =3D 0.1 + LIBRARY_CLASS =3D ProtectedVariableLib|DXE_DRIVER DXE_R= UNTIME_DRIVER + +# +# The following information is for reference only and not required by the = build tools. +# +# VALID_ARCHITECTURES =3D IA32 X64 +# + +[Sources] + ProtectedVariableSmmRuntime.c + ProtectedVariableCommon.c + ProtectedVariableInternal.h + +[Packages] + MdePkg/MdePkg.dec + MdeModulePkg/MdeModulePkg.dec + SecurityPkg/SecurityPkg.dec + CryptoPkg/CryptoPkg.dec + +[LibraryClasses] + BaseLib + BaseMemoryLib + DebugLib + MemoryAllocationLib + HobLib + BaseCryptLib + EncryptionVariableLib + RpmcLib + HashApiLib + SortLib + +[Guids] + gEfiEventVirtualAddressChangeGuid + gEdkiiMetaDataHmacVariableGuid + gEdkiiProtectedVariableGlobalGuid + gEdkiiVarErrorFlagGuid + gEdkiiProtectedVariableContextGuid + +[Pcd] + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableName + gEfiSecurityPkgTokenSpaceGuid.PcdPlatformVariableGuid + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableIntegrity + gEfiSecurityPkgTokenSpaceGuid.PcdProtectedVariableConfidentiality + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxVariableSize + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxAuthVariableSize + gEfiMdeModulePkgTokenSpaceGuid.PcdMaxHardwareErrorVariableSize + diff --git a/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableInte= rnal.h b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableInternal= .h new file mode 100644 index 000000000000..fd38b5bd2019 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableInternal.h @@ -0,0 +1,611 @@ +/** @file + Definitions shared among different implementation of ProtectedVariableLi= b. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#ifndef PROTECTED_VARIABLE_INTERNAL_H_ +#define PROTECTED_VARIABLE_INTERNAL_H_ + +#include +#include + +#include +#include +#include +#include +#include +#include +#include +#include + +#define VARIABLE_KEY_SIZE (256/8) + +#define METADATA_HMAC_SIZE (256/8) +#define METADATA_HMAC_KEY_NAME L"HMAC_KEY" +#define METADATA_HMAC_KEY_NAME_SIZE 0x10 + +#define METADATA_HMAC_SEP L":" +#define METADATA_HMAC_SEP_SIZE 2 + +#define METADATA_HMAC_VARIABLE_NAME L"MetaDataHmacVar" +#define METADATA_HMAC_VARIABLE_NAME_SIZE sizeof (METADATA_HMAC_VARIABLE_N= AME) +#define METADATA_HMAC_VARIABLE_GUID gEdkiiMetaDataHmacVariableGuid +#define METADATA_HMAC_VARIABLE_ATTR VARIABLE_ATTRIBUTE_NV_BS_RT + +#define DIGEST_CONTEXT_SIZE (HashApiGetContextSize()) + +#define MAX_VARIABLE_SIZE = \ + MAX (MAX (PcdGet32 (PcdMaxVariableSize), PcdGet32 (PcdMaxAuthVariableSiz= e)), \ + PcdGet32 (PcdMaxHardwareErrorVariableSize)) + +#define IS_VARIABLE(Var, Name, Guid) \ + (StrCmp ((Var)->VariableName, (Name)) =3D=3D 0 \ + && CompareGuid ((CONST EFI_GUID *)(Var)->VendorGuid, (CONST EFI_GUID *)= (Guid))) + +#define VARIABLE_SIZE(VarInfo) \ + (((UINTN)(VarInfo)->Header.Data - (UINTN)(VarInfo)->Buffer) \ + + (VarInfo)->Header.DataSize \ + + GET_PAD_SIZE ((VarInfo)->Header.DataSize)) + +#define VARIABLE_HEADER_SIZE(AuthFlag) \ + ((AuthFlag) ? sizeof (AUTHENTICATED_VARIABLE_HEADER) \ + : sizeof (VARIABLE_HEADER)) + +#define VARIABLE_NAME(Var, AuthFlag) \ + ((CHAR16 *)((UINTN)(Var) + VARIABLE_HEADER_SIZE(AuthFlag))) + +#define VARIABLE_START(VarStore) \ + ((VARIABLE_HEADER *)HEADER_ALIGN ((VARIABLE_STORE_HEADER *)(VarStore) += 1)) + +#define VARIABLE_END(VarStore) \ + ((VARIABLE_HEADER *)HEADER_ALIGN ((UINTN)(VarStore) \ + + ((VARIABLE_STORE_HEADER *)(VarStore))->Size)) + +#define SET_VARIABLE_DATA_SIZE(VarInfo, Size) = \ + if ((VarInfo)->Flags.Auth) { = \ + ((AUTHENTICATED_VARIABLE_HEADER *)((VarInfo)->Buffer))->DataSize =3D S= ize; \ + (VarInfo)->Header.DataSize =3D Size; = \ + } else { = \ + ((VARIABLE_HEADER *)((VarInfo)->Buffer))->DataSize =3D Size; = \ + (VarInfo)->Header.DataSize =3D Size; = \ + } + +#define IS_KNOWN_UNPROTECTED_VARIABLE(Global, VarInfo) \ + (CheckKnownUnprotectedVariable ((Global), (VarInfo)) < UnprotectedVarInd= exMax) + +#define GET_CNTX(Global) ((PROTECTED_VARIABLE_CONTEXT_IN *)(UINTN)((Glob= al)->ContextIn)) +#define GET_BUFR(Address) ((VOID *)(UINTN)(Address)) +#define GET_ADRS(Buffer) ((EFI_PHYSICAL_ADDRESS)(UINTN)(Buffer)) + +typedef struct _VARIABLE_IDENTIFIER { + CHAR16 *VariableName; + EFI_GUID *VendorGuid; + UINT8 State; +} VARIABLE_IDENTIFIER; + +typedef enum { + IndexHmacInDel =3D 0, /// MetaDataHmacVar with state VAR_IN_DELETED_= TRANSITION + IndexHmacAdded, /// MetaDataHmacVar with state VAR_ADDED + IndexErrorFlag, /// VarErrorFlag + IndexPlatformVar, /// Platform Variable + UnprotectedVarIndexMax +} UNPROTECTED_VARIABLE_INDEX; + +#pragma pack(1) + +#define PROTECTED_VARIABLE_CONTEXT_OUT_STRUCT_VERSION 0x02 + +typedef struct _PROTECTED_VARIABLE_FLAG { + BOOLEAN Auth; // Authenticated variable format + BOOLEAN WriteInit; // Write-init-done + BOOLEAN WriteReady; // Ready-to-write + BOOLEAN RecoveryMode; // Variable storage recovery or provisioning + BOOLEAN CacheReady; // Indicates Cache is available + BOOLEAN Reserved; // reserved +} PROTECTED_VARIABLE_FLAG; + +typedef struct _PROTECTED_VARIABLE_GLOBAL { + UINT32 StructVersion; + UINT32 StructSize; + + /// + /// Variable root key used to derive Encryption key and HMAC key. + /// + UINT8 RootKey[VARIABLE_KEY_SIZE]; + /// + /// HMAC key derived from RootKey. + /// + UINT8 MetaDataHmacKey[VARIABLE_KEY_SIZE]; + /// + /// Number of variables in linked list pointed by VariableDigests. + /// + UINT32 VariableNumber; + /// + /// Size of memory reserved by VariableCache. + /// + UINT32 VariableCacheSize; + /// + /// Memory reserved to temporarily hold data of one variable, for integr= ity + /// validation purpose. + /// + EFI_PHYSICAL_ADDRESS VariableCache; + /// + /// Pointer to linked list, in which each node holds the digest value of= each + /// variable. + /// + EFI_PHYSICAL_ADDRESS VariableDigests; + /// + /// Memory reserved for Context used in hash API to avoid repeat alloc/f= ree. + /// + EFI_PHYSICAL_ADDRESS DigestContext; + /// + /// Pointer to one of node in linked list pointed by VariableDigests, wh= ich + /// has been just accessed. This is mainly used to facilitate the two ca= lls + /// use case of GetVariable(). + /// + EFI_PHYSICAL_ADDRESS LastAccessedVariable; + /// + /// Cached copy of pointers to nodes of unprotected variables in the lin= ked + /// list pointed by VariableDigests. + /// + EFI_PHYSICAL_ADDRESS Unprotected[UnprotectedVarIndexMax]; + /// + /// Pointer to data structure holding helper functions passed by user of + /// ProtectedVariableLib, most of which are used to complete operations = on + /// variable storage. + /// + EFI_PHYSICAL_ADDRESS ContextIn; + + /// + /// Pointer to Global data structure. This is to hold pre-mem address va= lue. + /// Later to be used to identify pre-mem to post-mem transition. + /// + EFI_PHYSICAL_ADDRESS GlobalSelf; + + PROTECTED_VARIABLE_FLAG Flags; +} PROTECTED_VARIABLE_GLOBAL; + +#pragma pack() + +/* Sort method function pointer taking two parameters */ +typedef +INTN +(*SORT_METHOD) ( + IN VARIABLE_DIGEST *Variable1, + IN VARIABLE_DIGEST *Variable2 + ); + +/* Update variable digest data function pointer */ +typedef +BOOLEAN +(*DIGEST_UPDATE) ( + IN OUT VOID *Context, + IN VOID *Data, + IN UINTN DataSize + ); + +/** + + Print variable information + + @param[in] Data8 Pointer to data + @param[out] DataSize Size of data + +**/ +VOID +PrintVariableData ( + IN UINT8 *Data8, + IN UINTN DataSize + ); + +/** + + Derive HMAC key from given variable root key. + + @param[in] RootKey Pointer to root key to derive from. + @param[in] RootKeySize Size of root key. + @param[out] HmacKey Pointer to generated HMAC key. + @param[in] HmacKeySize Size of HMAC key. + + @retval TRUE The HMAC key is derived successfully. + @retval FALSE Failed to generate HMAC key from given root key. + +**/ +BOOLEAN +EFIAPI +GenerateMetaDataHmacKey ( + IN CONST UINT8 *RootKey, + IN UINTN RootKeySize, + OUT UINT8 *HmacKey, + IN UINTN HmacKeySize + ); + +/** + + Digests the given variable data and updates HMAC context. + + @param[in,out] Context Pointer to initialized HMAC context. + @param[in] VarInfo Pointer to variable data. + + @retval TRUE HMAC context was updated successfully. + @retval FALSE Failed to update HMAC context. + +**/ +BOOLEAN +UpdateVariableMetadataHmac ( + IN VOID *Context, + IN PROTECTED_VARIABLE_INFO *VarInfo + ); + +/** + + Re-calculate HMAC based on new variable data and re-generate MetaDataHma= cVar. + + @param[in] Global Pointer to global configuration data. + @param[in] NewVarInfo Pointer to buffer of new variable data. + @param[in,out] NewHmacVarInfo Pointer to buffer of new MetaDataHmacVar. + + @return EFI_SUCCESS The HMAC value was updated successfully. + @return EFI_ABORTED Failed to calculate the HMAC value. + @return EFI_OUT_OF_RESOURCES Not enough resource to calculate HMC value. + @return EFI_NOT_FOUND The MetaDataHmacVar was not found in stora= ge. + +**/ +EFI_STATUS +RefreshVariableMetadataHmac ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *NewVarInfo, + IN OUT PROTECTED_VARIABLE_INFO *NewHmacVarInfo + ); + +/** + + Retrieve the context and global configuration data structure from HOB. + + Once protected NV variable storage is cached and verified in PEI phase, + all related information are stored in a HOB which can be used by PEI var= iable + service itself and passed to SMM along with the boot flow, which can avo= id + many duplicate works, like generating HMAC key, verifying NV variable st= orage, + etc. + + The HOB can be identified by gEdkiiProtectedVariableGlobalGuid. + + @param[out] Global Pointer to global configuration data from PEI = phase. + + @retval EFI_SUCCESS The HOB was found, and Context and Global are re= trieved. + @retval EFI_NOT_FOUND The HOB was not found. + +**/ +EFI_STATUS +EFIAPI +GetProtectedVariableGlobalFromHob ( + OUT PROTECTED_VARIABLE_GLOBAL **Global OPTIONAL + ); + +/** + + Get context and/or global data structure used to process protected varia= ble. + + @param[out] Global Pointer to global configuration data. + + @retval EFI_SUCCESS Get requested structure successfully. + +**/ +EFI_STATUS +EFIAPI +GetProtectedVariableGlobal ( + OUT PROTECTED_VARIABLE_GLOBAL **Global OPTIONAL + ); + +/** + + Get context data structure used to process protected variable. + + @param[out] ContextIn Pointer to context provided by variable runtim= e services. + + @retval EFI_SUCCESS Get requested structure successfully. + +**/ +EFI_STATUS +EFIAPI +GetProtectedVariableContext ( + PROTECTED_VARIABLE_CONTEXT_IN **ContextIn OPTIONAL + ); + +/** + + Check if a given variable is unprotected variable specified in advance + and return its index ID. + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to variable information data. + + @retval IndexHmacInDel Variable is MetaDataHmacVar in delete-transiti= on state. + @retval IndexHmacAdded Variable is MetaDataHmacVar in valid state. + @retval IndexErrorFlag Variable is VarErrorLog. + @retval Others Variable is not any known unprotected variable= s. + +**/ +UNPROTECTED_VARIABLE_INDEX +CheckKnownUnprotectedVariable ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *VarInfo + ); + +/** + + Return the size of variable MetaDataHmacVar. + + @param[in] AuthFlag Auth-variable indicator. + + @retval size of variable MetaDataHmacVar. + +**/ +UINTN +GetMetaDataHmacVarSize ( + IN BOOLEAN AuthFlag + ); + +/** + + Fix state of MetaDataHmacVar on NV variable storage, if there's failure = at + last boot during updating variable. + + This must be done before the first writing of variable in current boot, + including storage reclaim. + + @retval EFI_UNSUPPORTED Updating NV variable storage is not suppo= rted. + @retval EFI_OUT_OF_RESOURCES Not enough resource to complete the opera= tion. + @retval EFI_SUCCESS Variable store was successfully updated. + +**/ +EFI_STATUS +FixupHmacVariable ( + VOID + ); + +/** + + Verify the variable digest. + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to verified copy of protected variables. + @param[in] VarDig Pointer to variable digest data. + + @retval EFI_INVALID_PARAMETER Invalid parameter was passed in. + @retval EFI_OUT_OF_RESOURCES Not enough resource to calculate hash. + @retval EFI_ABORTED An error was encountered. + @retval EFI_COMPROMISED_DATA The data was compromised. + @retval EFI_SUCCESS Variable digest was successfully verified. + +**/ +EFI_STATUS +VerifyVariableDigest ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *VarInfo, + IN VARIABLE_DIGEST *VarDig + ); + +/** + + Get the variable digest. + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to verified copy of protected vari= ables. + @param[in,out] DigestValue Pointer to variable digest value. + + @retval EFI_INVALID_PARAMETER Invalid parameter was passed in. + @retval EFI_OUT_OF_RESOURCES Not enough resource to calculate hash. + @retval EFI_ABORTED An error was encountered. + @retval EFI_COMPROMISED_DATA The data was compromised. + @retval EFI_SUCCESS Variable digest was successfully verified. + +**/ +EFI_STATUS +GetVariableDigest ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *VarInfo, + IN OUT UINT8 *DigestValue + ); + +/** + + Compare variable name and Guid + + @param[in] Name1 Name of first variable. + @param[in] Name1Size Size of first variable. + @param[in] Name2 Name of second variable. + @param[in] Name2Size Size of second variable. + @param[in] Guid1 Guid for first variable. + @param[in] Guid2 Guid for second variable. + + @retval 0 First name is identical to Second name. + @return others First name is not identical to Second name. + +**/ +INTN +CompareVariableNameAndGuid ( + IN CONST CHAR16 *Name1, + IN UINTN Name1Size, + IN CONST CHAR16 *Name2, + IN UINTN Name2Size, + IN EFI_GUID *Guid1, + IN EFI_GUID *Guid2 + ); + +/** + + Compare variable digest. + + @param[in] Variable1 Pointer to first variable digest. + @param[in] Variable2 Pointer to second variable digest. + + @retval 0 Variables are identical. + @return others Variables are not identical. + +**/ +INTN +CompareVariableDigestInfo ( + IN VARIABLE_DIGEST *Variable1, + IN VARIABLE_DIGEST *Variable2 + ); + +/** + + Move a node backward in the order controlled by SortMethod. + + @param[in] Node Pointer to node to be moved. + @param[in] SortMethod Method used to compare node in list. + +**/ +VOID +MoveNodeBackward ( + IN OUT VARIABLE_DIGEST *Node, + IN SORT_METHOD SortMethod + ); + +/** + + Remove variable digest node. + + @param[in,out] Global Pointer to global configuration data. + @param[in,out] VarDig Pointer to variable digest value. + @param[in] FreeResource Flag to indicate whether to free resource. + +**/ +VOID +RemoveVariableDigestNode ( + IN OUT PROTECTED_VARIABLE_GLOBAL *Global, + IN OUT VARIABLE_DIGEST *VarDig, + IN BOOLEAN FreeResource + ); + +/** + + Insert variable digest node. + + @param[in,out] Global Pointer to global configuration data. + @param[in] VarDig Pointer to variable digest value. + @param[in] SortMethod Method for sorting. + +**/ +VOID +InsertVariableDigestNode ( + IN OUT PROTECTED_VARIABLE_GLOBAL *Global, + IN VARIABLE_DIGEST *VarDig, + IN SORT_METHOD SortMethod + ); + +/** + + Create variable digest node. + + @param[in] VariableName Name of variable. + @param[in] VendorGuid Guid of variable. + @param[in] NameSize Size of variable name. + @param[in] DataSize Size of variable data. + @param[in] AuthVar Authenticated variable flag. + @param[in] Global Pointer to global configuration data. + + @retval Ptr Pointer to variable digest + +**/ +VARIABLE_DIGEST * +CreateVariableDigestNode ( + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + IN UINT16 NameSize, + IN UINT32 DataSize, + IN BOOLEAN AuthVar, + IN PROTECTED_VARIABLE_GLOBAL *Global + ); + +/** + + This function is used to enumerate the variables managed by current + ProtectedVariableLib. + + If the VarInfo->StoreIndex is invalid (VAR_INDEX_INVALID), the first var= iable + with the smallest StoreIndex will be returned. Otherwise, the variable w= ith + StoreIndex just after than the VarInfo->StoreIndex will be returned. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER VarInfo is NULL. + @retval EFI_NOT_FOUND The specified variable could not be fo= und. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetNextInternal ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ); + +/** + + Find the specified variable digest + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to variable data. + @param[in] FindNext Flag to continue looking for variable. + +**/ +VARIABLE_DIGEST * +FindVariableInternal ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *VarInfo, + IN BOOLEAN FindNext + ); + +/** + + Synchronize the RPMC counters + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to variable data. + @param[in] FindNext Flag to continue looking for variable. + + @retval EFI_SUCCESS Successfully sync RPMC counters. + @return others Failed to sync RPMC counters. + +**/ +EFI_STATUS +SyncRpmcCounter ( + VOID + ); + +/** + + Perform for protected variable integrity check. + + If this initialization failed upon any error, the whole variable services + should not be used. A system reset might be needed to re-construct NV + variable storage to be the default state. + + @param[in] ContextIn Pointer to variable service context needed by + protected variable. + + @retval EFI_SUCCESS Protected variable services are ready. + @retval EFI_INVALID_PARAMETER If ContextIn =3D=3D NULL or something = missing or + mismatching in the content in ContextI= n. + @retval EFI_COMPROMISED_DATA If failed to check integrity of protec= ted variables. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +PerformVariableIntegrityCheck ( + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn + ); + +extern EFI_TIME mDefaultTimeStamp; +extern VARIABLE_IDENTIFIER mUnprotectedVariables[UnprotectedVar= IndexMax]; +extern PROTECTED_VARIABLE_CONTEXT_IN mVariableContextIn; +extern PROTECTED_VARIABLE_GLOBAL mProtectedVariableGlobal; + +#endif diff --git a/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableComm= on.c b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableCommon.c new file mode 100644 index 000000000000..ed1a8e1ec545 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableCommon.c @@ -0,0 +1,2095 @@ +/** @file + The common protected variable operation routines. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include +#include +#include + +#include +#include + +#include +#include +#include +#include + +#include "ProtectedVariableInternal.h" + +EFI_TIME mDefaultTimeStamp =3D { 0, 0, 0, 0, 0, 0, 0, 0,= 0, 0, 0 }; +VARIABLE_IDENTIFIER mUnprotectedVariables[] =3D { + { + METADATA_HMAC_VARIABLE_NAME, + &METADATA_HMAC_VARIABLE_GUID, + VAR_ADDED & VAR_IN_DELETED_TRANSITION + }, + { + METADATA_HMAC_VARIABLE_NAME, + &METADATA_HMAC_VARIABLE_GUID, + VAR_ADDED + }, + { + VAR_ERROR_FLAG_NAME, + &gEdkiiVarErrorFlagGuid, + VAR_ADDED + }, + { + (CHAR16 *)PcdGetPtr (PcdPlatformVariableName), + (EFI_GUID *)PcdGetPtr (PcdPlatformVariableGuid), + VAR_ADDED + } +}; + +/** + Print variable information. + + @param[in] Data8 Pointer to data. + @param[in] DataSize Size of data. + +**/ +VOID +PrintVariableData ( + IN UINT8 *Data8, + IN UINTN DataSize + ) +{ + UINTN Index; + + for (Index =3D 0; Index < DataSize; Index++) { + if (Index % 0x10 =3D=3D 0) { + DEBUG ((DEBUG_INFO, "\n%08X:", Index)); + } + + DEBUG ((DEBUG_INFO, " %02X", *Data8++)); + } + + DEBUG ((DEBUG_INFO, "\n")); +} + +/** + + Retrieve the context and global configuration data structure from HOB. + + Once protected NV variable storage is cached and verified in PEI phase, + all related information are stored in a HOB which can be used by PEI var= iable + service itself and passed to SMM along with the boot flow, which can avo= id + many duplicate works, like generating HMAC key, verifying NV variable st= orage, + etc. + + The HOB can be identified by gEdkiiProtectedVariableGlobalGuid. + + @param[out] Global Pointer to global configuration data from PEI = phase. + + @retval EFI_SUCCESS The HOB was found, and Context and Global are re= trieved. + @retval EFI_NOT_FOUND The HOB was not found. + +**/ +EFI_STATUS +EFIAPI +GetProtectedVariableGlobalFromHob ( + OUT PROTECTED_VARIABLE_GLOBAL **Global + ) +{ + VOID *Data; + EFI_PEI_HOB_POINTERS Hob; + EFI_HOB_MEMORY_ALLOCATION *MemoryAllocationHob; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + EFI_PHYSICAL_ADDRESS OldStart; + VARIABLE_DIGEST *VarDig; + EFI_HOB_GUID_TYPE *GuidHob; + UINTN Index; + + Hob.Raw =3D GetFirstGuidHob (&gEdkiiProtectedVariableGlobalGuid); + if (Hob.Raw !=3D NULL) { + Data =3D GET_GUID_HOB_DATA (Hob); + } else { + // + // Search the global from allocated memory blob. + // + Data =3D NULL; + MemoryAllocationHob =3D NULL; + + Hob.Raw =3D GetFirstHob (EFI_HOB_TYPE_MEMORY_ALLOCATION); + while (Hob.Raw !=3D NULL) { + MemoryAllocationHob =3D (EFI_HOB_MEMORY_ALLOCATION *)Hob.Raw; + if (CompareGuid ( + &MemoryAllocationHob->AllocDescriptor.Name, + &gEdkiiProtectedVariableGlobalGuid + )) + { + Data =3D (VOID *)(UINTN) + MemoryAllocationHob->AllocDescriptor.MemoryBaseAddress; + break; + } + + Hob.Raw =3D GET_NEXT_HOB (Hob); + Hob.Raw =3D GetNextHob (EFI_HOB_TYPE_MEMORY_ALLOCATION, Hob.Raw); + } + } + + if (Data =3D=3D NULL) { + return EFI_NOT_FOUND; + } + + if (Global !=3D NULL) { + GuidHob =3D GetFirstGuidHob (&gEdkiiProtectedVariableContextGuid); + if (GuidHob !=3D NULL) { + ContextIn =3D (PROTECTED_VARIABLE_CONTEXT_IN *)GET_GUID_HOB_DATA (Gu= idHob); + } else { + ASSERT (GuidHob =3D=3D NULL); + } + + *Global =3D (PROTECTED_VARIABLE_GLOBAL *)((UINT8 *)Data); + // + // Fix pointers in the HOB (due to physical memory readiness) + // + if ((*Global)->GlobalSelf !=3D (EFI_PHYSICAL_ADDRESS)(UINTN)(*Global))= { + OldStart =3D (*Global)->GlobalSelf; + (*Global)->ContextIn =3D GET_ADRS (ContextIn); + + // + // Mark Memory caching is available + // + (*Global)->Flags.CacheReady =3D TRUE; + + // + // Re-allocate new minimum cache + // + (*Global)->VariableCache =3D GET_ADRS (Data) + + ((*Global)->VariableCache - OldStart); + + (*Global)->DigestContext =3D GET_ADRS (((*Global) + 1)); + for (Index =3D 0; Index < UnprotectedVarIndexMax; Index++) { + if ((*Global)->Unprotected[Index] !=3D VAR_INDEX_INVALID) { + (*Global)->Unprotected[Index] =3D GET_ADRS (Data) + + ((*Global)->Unprotected[Index]= - OldStart); + } + } + + (*Global)->LastAccessedVariable =3D GET_ADRS (Data) + + ((*Global)->LastAccessedVariable= - OldStart); + + // + // Fix all linked-list pointers inside VARIABLE_SIGNATURE. + // + (*Global)->VariableDigests =3D GET_ADRS (Data) + + ((*Global)->VariableDigests - OldStar= t); + VarDig =3D VAR_DIG_PTR ((*Global)->VariableDigests); + while (VarDig !=3D NULL) { + if (VarDig->Prev !=3D 0) { + VarDig->Prev =3D GET_ADRS (Data) + (VarDig->Prev - OldStart); + } + + if (VarDig->Next !=3D 0) { + VarDig->Next =3D GET_ADRS (Data) + (VarDig->Next - OldStart); + } + + VarDig =3D VAR_DIG_NEXT (VarDig); + } + + (*Global)->GlobalSelf =3D (EFI_PHYSICAL_ADDRESS)(UINTN)(*Global); + } + } + + return EFI_SUCCESS; +} + +/** + + Derive HMAC key from given variable root key. + + @param[in] RootKey Pointer to root key to derive from. + @param[in] RootKeySize Size of root key. + @param[out] HmacKey Pointer to generated HMAC key. + @param[in] HmacKeySize Size of HMAC key. + + @retval TRUE The HMAC key is derived successfully. + @retval FALSE Failed to generate HMAC key from given root key. + +**/ +BOOLEAN +EFIAPI +GenerateMetaDataHmacKey ( + IN CONST UINT8 *RootKey, + IN UINTN RootKeySize, + OUT UINT8 *HmacKey, + IN UINTN HmacKeySize + ) +{ + UINT8 Salt[AES_BLOCK_SIZE]; + + return HkdfSha256ExtractAndExpand ( + RootKey, + RootKeySize, + Salt, + 0, + (UINT8 *)METADATA_HMAC_KEY_NAME, + METADATA_HMAC_KEY_NAME_SIZE, + HmacKey, + HmacKeySize + ); +} + +/** + + Return the size of variable MetaDataHmacVar. + + @param[in] AuthFlag Auth-variable indicator. + + @retval size of variable MetaDataHmacVar. + +**/ +UINTN +GetMetaDataHmacVarSize ( + IN BOOLEAN AuthFlag + ) +{ + UINTN Size; + + if (AuthFlag) { + Size =3D sizeof (AUTHENTICATED_VARIABLE_HEADER); + } else { + Size =3D sizeof (VARIABLE_HEADER); + } + + Size +=3D METADATA_HMAC_VARIABLE_NAME_SIZE; + Size +=3D GET_PAD_SIZE (Size); + Size +=3D METADATA_HMAC_SIZE; + Size +=3D GET_PAD_SIZE (Size); + + return Size; +} + +/** + + Digests the given variable data and updates HMAC context. + + @param[in] Context Pointer to initialized HMAC context. + @param[in] VarInfo Pointer to variable data. + @param[in] UpdateMethod Function to run when updating variable di= gest. + + @retval TRUE HMAC context was updated successfully. + @retval FALSE Failed to update HMAC context. + +**/ +STATIC +BOOLEAN +UpdateVariableDigestData ( + IN VOID *Context, + IN PROTECTED_VARIABLE_INFO *VarInfo, + IN DIGEST_UPDATE UpdateMethod + ) +{ + VOID *Buffer[12]; + UINT32 BufferSize[12]; + UINTN Index; + BOOLEAN Status; + + // + // Empty variable is legal here (e.g. variable deletion case or write-in= it case). + // + if ((VarInfo =3D=3D NULL) || + (VarInfo->CipherData =3D=3D NULL) || + (VarInfo->CipherDataSize =3D=3D 0)) + { + return TRUE; + } + + // + // HMAC (":" || VariableName) + // + Buffer[0] =3D METADATA_HMAC_SEP; + BufferSize[0] =3D METADATA_HMAC_SEP_SIZE; + + Buffer[1] =3D VarInfo->Header.VariableName; + BufferSize[1] =3D (UINT32)VarInfo->Header.NameSize; + + // + // HMAC (":" || VendorGuid || Attributes || DataSize) + // + Buffer[2] =3D METADATA_HMAC_SEP; + BufferSize[2] =3D METADATA_HMAC_SEP_SIZE; + + Buffer[3] =3D VarInfo->Header.VendorGuid; + BufferSize[3] =3D sizeof (EFI_GUID); + + Buffer[4] =3D &VarInfo->Header.Attributes; + BufferSize[4] =3D sizeof (VarInfo->Header.Attributes); + + Buffer[5] =3D &VarInfo->CipherDataSize; + BufferSize[5] =3D sizeof (VarInfo->CipherDataSize); + + // + // HMAC (":" || CipherData) + // + Buffer[6] =3D METADATA_HMAC_SEP; + BufferSize[6] =3D METADATA_HMAC_SEP_SIZE; + + Buffer[7] =3D VarInfo->CipherData; + BufferSize[7] =3D VarInfo->CipherDataSize; + + // + // HMAC (":" || PubKeyIndex || AuthMonotonicCount || TimeStamp) + // + Buffer[8] =3D METADATA_HMAC_SEP; + BufferSize[8] =3D METADATA_HMAC_SEP_SIZE; + + Buffer[9] =3D &VarInfo->Header.PubKeyIndex; + BufferSize[9] =3D sizeof (VarInfo->Header.PubKeyIndex); + + Buffer[10] =3D &VarInfo->Header.MonotonicCount; + BufferSize[10] =3D sizeof (VarInfo->Header.MonotonicCount); + + Buffer[11] =3D (VarInfo->Header.TimeStamp !=3D NULL) ? + VarInfo->Header.TimeStamp : &mDefaultTimeStamp; + BufferSize[11] =3D sizeof (EFI_TIME); + + for (Index =3D 0; Index < ARRAY_SIZE (Buffer); ++Index) { + Status =3D UpdateMethod (Context, Buffer[Index], BufferSize[Index]); + if (!Status) { + ASSERT (FALSE); + return FALSE; + } + } + + return TRUE; +} + +/** + + Digests the given variable data and updates HMAC context. + + @param[in] Context Pointer to initialized HMAC context. + @param[in] VarInfo Pointer to variable data. + + @retval TRUE HMAC context was updated successfully. + @retval FALSE Failed to update HMAC context. + +**/ +BOOLEAN +UpdateVariableMetadataHmac ( + IN VOID *Context, + IN PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + return UpdateVariableDigestData (Context, VarInfo, (DIGEST_UPDATE)HmacSh= a256Update); +} + +/** + + Get the variable digest. + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to verified copy of protected vari= ables. + @param[in,out] DigestValue Pointer to variable digest value. + + @retval EFI_INVALID_PARAMETER Invalid parameter was passed in. + @retval EFI_OUT_OF_RESOURCES Not enough resource to calculate hash. + @retval EFI_ABORTED An error was encountered. + @retval EFI_COMPROMISED_DATA The data was compromised. + @retval EFI_SUCCESS Variable digest was successfully verified. + +**/ +EFI_STATUS +GetVariableDigest ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *VarInfo, + IN OUT UINT8 *DigestValue + ) +{ + EFI_STATUS Status; + VOID *Context; + + if ((Global =3D=3D NULL) || (VarInfo =3D=3D NULL) || (DigestValue =3D=3D= NULL)) { + ASSERT (Global !=3D NULL); + ASSERT (VarInfo !=3D NULL); + ASSERT (DigestValue !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + Context =3D GET_BUFR (Global->DigestContext); + if (!HashApiInit (Context)) { + ASSERT (Context !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + if (VarInfo->CipherData =3D=3D NULL) { + VarInfo->CipherData =3D VarInfo->Header.Data; + VarInfo->CipherDataSize =3D (UINT32)VarInfo->Header.DataSize; + } + + if ( !UpdateVariableDigestData (Context, VarInfo, (DIGEST_UPDATE)HashAp= iUpdate) + || !HashApiFinal (Context, DigestValue)) + { + ASSERT (FALSE); + Status =3D EFI_ABORTED; + } else { + Status =3D EFI_SUCCESS; + } + + return Status; +} + +/** + + Verify the variable digest. + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to verified copy of protected variables. + @param[in] VarDig Pointer to variable digest data. + + @retval EFI_INVALID_PARAMETER Invalid parameter was passed in. + @retval EFI_OUT_OF_RESOURCES Not enough resource to calculate hash. + @retval EFI_ABORTED An error was encountered. + @retval EFI_COMPROMISED_DATA The data was compromised. + @retval EFI_SUCCESS Variable digest was successfully verified. + +**/ +EFI_STATUS +VerifyVariableDigest ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *VarInfo, + IN VARIABLE_DIGEST *VarDig + ) +{ + EFI_STATUS Status; + UINT8 NewDigest[METADATA_HMAC_SIZE]; + + if (Global->Flags.RecoveryMode || !VarDig->Flags.Protected) { + return EFI_SUCCESS; + } + + ASSERT (VarDig->DigestSize =3D=3D sizeof (NewDigest)); + + Status =3D GetVariableDigest (Global, VarInfo, NewDigest); + if (!EFI_ERROR (Status)) { + if (CompareMem (VAR_DIG_VALUE (VarDig), NewDigest, VarDig->DigestSize)= !=3D 0) { + Status =3D EFI_COMPROMISED_DATA; + } + } + + return Status; +} + +/** + Initialize variable MetaDataHmacVar. + + @param[in,out] Variable Pointer to buffer of MetaDataHmacVar. + @param[in] AuthFlag Variable format flag. + +**/ +VOID +InitMetadataHmacVariable ( + IN OUT VARIABLE_HEADER *Variable, + IN BOOLEAN AuthFlag + ) +{ + UINT8 *NamePtr; + AUTHENTICATED_VARIABLE_HEADER *AuthVariable; + + Variable->StartId =3D VARIABLE_DATA; + Variable->State =3D VAR_ADDED; + Variable->Reserved =3D 0; + Variable->Attributes =3D VARIABLE_ATTRIBUTE_NV_BS_RT; + + if (AuthFlag) { + AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; + + AuthVariable->NameSize =3D METADATA_HMAC_VARIABLE_NAME_SIZE; + AuthVariable->DataSize =3D METADATA_HMAC_SIZE; + AuthVariable->PubKeyIndex =3D 0; + AuthVariable->MonotonicCount =3D 0; + + ZeroMem (&AuthVariable->TimeStamp, sizeof (EFI_TIME)); + CopyMem (&AuthVariable->VendorGuid, &METADATA_HMAC_VARIABLE_GUID, size= of (EFI_GUID)); + + NamePtr =3D (UINT8 *)AuthVariable + sizeof (AUTHENTICATED_VARIABLE_HEA= DER); + } else { + Variable->NameSize =3D METADATA_HMAC_VARIABLE_NAME_SIZE; + Variable->DataSize =3D METADATA_HMAC_SIZE; + + CopyMem (&Variable->VendorGuid, &METADATA_HMAC_VARIABLE_GUID, sizeof (= EFI_GUID)); + + NamePtr =3D (UINT8 *)Variable + sizeof (VARIABLE_HEADER); + } + + CopyMem (NamePtr, METADATA_HMAC_VARIABLE_NAME, METADATA_HMAC_VARIABLE_NA= ME_SIZE); +} + +/** + Re-calculate HMAC based on new variable data and re-generate MetaDataHma= cVar. + + @param[in] Global Pointer to global configuration data. + @param[in] NewVarInfo Pointer to buffer of new variable data. + @param[in,out] NewHmacVarInfo Pointer to buffer of new MetaDataHmacVar. + + @return EFI_SUCCESS The HMAC value was updated successfully. + @return EFI_ABORTED Failed to calculate the HMAC value. + @return EFI_OUT_OF_RESOURCES Not enough resource to calculate HMC value. + @return EFI_NOT_FOUND The MetaDataHmacVar was not found in stora= ge. + +**/ +EFI_STATUS +RefreshVariableMetadataHmac ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *NewVarInfo, + IN OUT PROTECTED_VARIABLE_INFO *NewHmacVarInfo + ) +{ + EFI_STATUS Status; + VOID *Context; + UINT32 Counter; + PROTECTED_VARIABLE_INFO VarInfo; + PROTECTED_VARIABLE_INFO CurrHmacVarInfo; + UINT8 *HmacValue; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + VARIABLE_DIGEST *VarDig; + VARIABLE_DIGEST *HmacVarDig; + + ZeroMem ((VOID *)&VarInfo, sizeof (VarInfo)); + ZeroMem ((VOID *)&CurrHmacVarInfo, sizeof (CurrHmacVarInfo)); + + Status =3D RequestMonotonicCounter (RPMC_COUNTER_2, &Counter); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + Counter +=3D 1; + ContextIn =3D GET_CNTX (Global); + + // + // Delete current MetaDataHmacVariable first, if any. + // + if (Global->Unprotected[IndexHmacAdded] !=3D VAR_INDEX_INVALID) { + HmacVarDig =3D VAR_DIG_PTR (Global->Unprotected[IndexHmacAdded]); + + CurrHmacVarInfo.Header.NameSize =3D HmacVarDig->NameSize; + CurrHmacVarInfo.Header.VariableName =3D VAR_DIG_NAME (HmacVarDig); + CurrHmacVarInfo.Header.VendorGuid =3D VAR_DIG_GUID (HmacVarDig); + + CurrHmacVarInfo.Buffer =3D VAR_HDR_PTR (HmacVarDig->CacheIndex); + CurrHmacVarInfo.StoreIndex =3D HmacVarDig->StoreIndex; + CurrHmacVarInfo.Flags.Auth =3D HmacVarDig->Flags.Auth; + // + // Force marking current MetaDataHmacVariable as VAR_IN_DELETED_TRANSI= TION. + // + CurrHmacVarInfo.Buffer->State &=3D VAR_IN_DELETED_TRANSITION; + HmacVarDig->State &=3D VAR_IN_DELETED_TRANSITION; + Status =3D ContextIn->UpdateVariableStore ( + &CurrHmacVarInfo, + OFFSET_OF (VARIABLE_HEAD= ER, State), + sizeof (CurrHmacVarInfo.= Buffer->State), + &CurrHmacVarInfo.Buffer-= >State + ); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + } else if (Global->Unprotected[IndexHmacInDel] !=3D VAR_INDEX_INVALID) { + HmacVarDig =3D VAR_DIG_PTR (Global->Unprotected[IndexHmacInDel]); + } else { + // + // No MetaDataHmacVar. Allocate space to cache its value. + // + HmacVarDig =3D CreateVariableDigestNode ( + METADATA_HMAC_VARIABLE_NAME, + &METADATA_HMAC_VARIABLE_GUID, + METADATA_HMAC_VARIABLE_NAME_SIZE, + METADATA_HMAC_SIZE, + Global->Flags.Auth, + Global + ); + if (HmacVarDig =3D=3D NULL) { + ASSERT (HmacVarDig !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + HmacVarDig->Flags.Protected =3D FALSE; + } + + if (HmacVarDig->CacheIndex =3D=3D VAR_INDEX_INVALID) { + HmacVarDig->CacheIndex =3D (GET_ADRS (Global)) + (Global->StructSize -= GetMetaDataHmacVarSize (Global->Flags.Auth)); + } + + // + // Construct new MetaDataHmacVar. + // + if (NewHmacVarInfo =3D=3D NULL) { + NewHmacVarInfo =3D &VarInfo; + NewHmacVarInfo->Buffer =3D GET_BUFR (HmacVarDig->CacheIndex); + } + + InitMetadataHmacVariable (NewHmacVarInfo->Buffer, Global->Flags.Auth); + + NewHmacVarInfo->StoreIndex =3D VAR_INDEX_INVALID; // Skip calculatin= g offset + NewHmacVarInfo->Flags.Auth =3D Global->Flags.Auth; + Status =3D ContextIn->GetVariableInfo (NewHmacVarInf= o); + ASSERT_EFI_ERROR (Status); + HmacValue =3D NewHmacVarInfo->Header.Data; + + // + // Re-calculate HMAC for all valid variables + // + Context =3D HmacSha256New (); + if (Context =3D=3D NULL) { + ASSERT (Context !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + Status =3D EFI_ABORTED; + if (!HmacSha256SetKey ( + Context, + Global->MetaDataHmacKey, + sizeof (Global->MetaDataHmacKey) + )) + { + ASSERT (FALSE); + goto Done; + } + + // + // HMAC (|| hash(Var1) || hash(Var2) || ... || hash(VarN)) + // + VarDig =3D VAR_DIG_PTR (Global->VariableDigests); + while (VarDig !=3D NULL) { + if (VarDig->Flags.Valid && VarDig->Flags.Protected) { + HmacSha256Update (Context, VAR_DIG_VALUE (VarDig), VarDig->DigestSiz= e); + } + + VarDig =3D VAR_DIG_NEXT (VarDig); + } + + // + // HMAC (RpmcMonotonicCounter) + // + if (!HmacSha256Update (Context, &Counter, sizeof (Counter))) { + ASSERT (FALSE); + goto Done; + } + + if (!HmacSha256Final (Context, HmacValue)) { + ASSERT (FALSE); + goto Done; + } + + // + // Update HMAC value in cache. + // + CopyMem (VAR_DIG_VALUE (HmacVarDig), HmacValue, HmacVarDig->DataSize); + if ((HmacVarDig->Prev =3D=3D 0) && (HmacVarDig->Next =3D=3D 0)) { + InsertVariableDigestNode (Global, HmacVarDig, NULL); + } + + // + // Just one MetaDataHmacVar is needed for normal operation. + // + Global->Unprotected[IndexHmacAdded] =3D VAR_DIG_ADR (HmacVarDig); + Global->Unprotected[IndexHmacInDel] =3D VAR_INDEX_INVALID; + + Status =3D EFI_SUCCESS; + +Done: + if (Context !=3D NULL) { + HmacSha256Free (Context); + } + + return Status; +} + +/** + + Check if a given variable is unprotected variable specified in advance + and return its index ID. + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to variable information data. + + @retval IndexHmacInDel Variable is MetaDataHmacVar in delete-transiti= on state. + @retval IndexHmacAdded Variable is MetaDataHmacVar in valid state. + @retval IndexErrorFlag Variable is VarErrorLog. + @retval Others Variable is not any known unprotected variable= s. + +**/ +UNPROTECTED_VARIABLE_INDEX +CheckKnownUnprotectedVariable ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + UNPROTECTED_VARIABLE_INDEX Index; + + if ((VarInfo =3D=3D NULL) || ( (VarInfo->StoreIndex =3D=3D VAR_INDEX_IN= VALID) + && ( (VarInfo->Header.VariableName =3D=3D NULL) + || (VarInfo->Header.VendorGuid =3D=3D NULL))= )) + { + ASSERT (VarInfo !=3D NULL); + ASSERT (VarInfo->StoreIndex !=3D VAR_INDEX_INVALID); + ASSERT (VarInfo->Header.VariableName !=3D NULL); + ASSERT (VarInfo->Header.VendorGuid !=3D NULL); + return UnprotectedVarIndexMax; + } + + for (Index =3D 0; Index < UnprotectedVarIndexMax; ++Index) { + if ( (Global->Unprotected[Index] !=3D VAR_INDEX_INVALID) + && (VarInfo->StoreIndex !=3D VAR_INDEX_INVALID)) + { + if (VarInfo->StoreIndex =3D=3D VAR_DIG_PTR (Global->Unprotected[Inde= x])->StoreIndex) { + break; + } + } else if (IS_VARIABLE ( + &VarInfo->Header, + mUnprotectedVariables[Index].VariableName, + mUnprotectedVariables[Index].VendorGuid + ) && (VarInfo->Header.State =3D=3D mUnprotectedVariables[= Index].State)) + { + break; + } + } + + return Index; +} + +/** + + Compare variable name and Guid + + @param[in] Name1 Name of first variable. + @param[in] Name1Size Size of first variable. + @param[in] Name2 Name of second variable. + @param[in] Name2Size Size of second variable. + @param[in] Guid1 Guid for first variable. + @param[in] Guid2 Guid for second variable. + + @retval 0 First name is identical to Second name. + @return others First name is not identical to Second name. + +**/ +INTN +CompareVariableNameAndGuid ( + IN CONST CHAR16 *Name1, + IN UINTN Name1Size, + IN CONST CHAR16 *Name2, + IN UINTN Name2Size, + IN EFI_GUID *Guid1, + IN EFI_GUID *Guid2 + ) +{ + INTN Result; + + Result =3D StrnCmp ( + Name1, + Name2, + MIN (Name1Size, Name2Size) / sizeof (CHAR16) + ); + if (Result =3D=3D 0) { + if (Name1Size !=3D Name2Size) { + // + // Longer name is 'bigger' than shorter one. + // + Result =3D (INTN)Name1Size - (INTN)Name2Size; + } else { + // + // The variable name is the same. Compare the GUID. + // + Result =3D CompareMem ((VOID *)Guid1, (VOID *)Guid2, sizeof (EFI_GUI= D)); + } + } + + return Result; +} + +/** + + Compare variable digest. + + @param[in] Variable1 Pointer to first variable digest. + @param[in] Variable2 Pointer to second variable digest. + + @retval 0 Variables are identical. + @return others Variables are not identical. + +**/ +INTN +CompareVariableDigestInfo ( + IN VARIABLE_DIGEST *Variable1, + IN VARIABLE_DIGEST *Variable2 + ) +{ + return CompareVariableNameAndGuid ( + VAR_DIG_NAME (Variable1), + Variable1->NameSize, + VAR_DIG_NAME (Variable2), + Variable2->NameSize, + &Variable1->VendorGuid, + &Variable2->VendorGuid + ); +} + +/** + + Move a node backward in the order controlled by SortMethod. + + @param[in,out] Node Pointer to node to be moved. + @param[in] SortMethod Method used to compare node in list. + +**/ +VOID +MoveNodeBackward ( + IN OUT VARIABLE_DIGEST *Node, + IN SORT_METHOD SortMethod + ) +{ + VARIABLE_DIGEST *Curr; + VARIABLE_DIGEST *Prev; + INTN Result; + + Curr =3D Node; + while (Curr !=3D NULL) { + Prev =3D VAR_DIG_PREV (Curr); + if (Prev =3D=3D NULL) { + Result =3D -1; + } else { + Result =3D SortMethod (Prev, Node); + } + + // + // 'Result > 0' means the 'Prev' is 'bigger' than 'Node'. Continue to = check + // previous node til a node 'smaller' than 'Node' found. + // + if (Result > 0) { + Curr =3D Prev; + continue; + } + + if (Curr !=3D Node) { + // + // Remove Node first + // + if (VAR_DIG_PREV (Node) !=3D NULL) { + VAR_DIG_PREV (Node)->Next =3D Node->Next; + } + + if (VAR_DIG_NEXT (Node) !=3D NULL) { + VAR_DIG_NEXT (Node)->Prev =3D Node->Prev; + } + + // + // Insert Node before Curr. + // + Node->Prev =3D Curr->Prev; + Node->Next =3D VAR_DIG_ADR (Curr); + + if (Curr->Prev !=3D 0) { + VAR_DIG_PREV (Curr)->Next =3D VAR_DIG_ADR (Node); + } + + Curr->Prev =3D VAR_DIG_ADR (Node); + } + + // + // If there're two identical variables in storage, one of them must be + // "in-delete-transition" state. Mark it as "deleted" anyway. + // + if (Result =3D=3D 0) { + if (Curr->State =3D=3D (VAR_ADDED & VAR_IN_DELETED_TRANSITION)) { + Curr->State &=3D VAR_DELETED; + } + + if (Prev->State =3D=3D (VAR_ADDED & VAR_IN_DELETED_TRANSITION)) { + Prev->State &=3D VAR_DELETED; + } + } + + break; + } +} + +/** + + Create variable digest node. + + @param[in] VariableName Name of variable. + @param[in] VendorGuid Guid of variable. + @param[in] NameSize Size of variable name. + @param[in] DataSize Size of variable data. + @param[in] AuthVar Authenticated variable flag. + @param[in] Global Pointer to global configuration data. + + @retval Ptr Pointer to variable digest + +**/ +VARIABLE_DIGEST * +CreateVariableDigestNode ( + IN CHAR16 *VariableName, + IN EFI_GUID *VendorGuid, + IN UINT16 NameSize, + IN UINT32 DataSize, + IN BOOLEAN AuthVar, + IN PROTECTED_VARIABLE_GLOBAL *Global + ) +{ + VARIABLE_DIGEST *VarDig; + VOID *Buffer; + UINTN VarSize; + + VarDig =3D (VARIABLE_DIGEST *)AllocateZeroPool ( + sizeof (VARIABLE_DIGEST) + NameSize + META= DATA_HMAC_SIZE + ); + if ((VarDig =3D=3D NULL) || (Global =3D=3D NULL)) { + ASSERT (VarDig !=3D NULL); + ASSERT (Global !=3D NULL); + return NULL; + } + + VarDig->DataSize =3D DataSize; + VarDig->NameSize =3D NameSize; + VarDig->DigestSize =3D METADATA_HMAC_SIZE; + VarDig->State =3D VAR_ADDED; + VarDig->Attributes =3D VARIABLE_ATTRIBUTE_NV_BS_RT; + VarDig->Flags.Auth =3D AuthVar; + VarDig->Flags.Valid =3D TRUE; + VarDig->Flags.Freeable =3D TRUE; + VarDig->Flags.Protected =3D PcdGetBool (PcdProtectedVariableIntegrity); + VarDig->Flags.Encrypted =3D PcdGetBool (PcdProtectedVariableConfidential= ity); + VarDig->StoreIndex =3D VAR_INDEX_INVALID; + VarDig->CacheIndex =3D VAR_INDEX_INVALID; + + if (Global->Flags.CacheReady =3D=3D TRUE) { + VarSize =3D VARIABLE_HEADER_SIZE (VarDig->Flags.Auth); + VarSize +=3D VarDig->NameSize + GET_PAD_SIZE (VarDig->NameSize); + VarSize +=3D VarDig->DataSize + GET_PAD_SIZE (VarDig->DataSize); + VarSize =3D HEADER_ALIGN (VarSize); + + Buffer =3D AllocateZeroPool (VarSize); + if (Buffer !=3D NULL) { + VarDig->CacheIndex =3D (EFI_PHYSICAL_ADDRESS)(UINTN)Buffer; + } + } + + CopyMem (VAR_DIG_NAME (VarDig), VariableName, NameSize); + CopyMem (VAR_DIG_GUID (VarDig), VendorGuid, sizeof (EFI_GUID)); + + return VarDig; +} + +/** + + Remove variable digest node. + + @param[in,out] Global Pointer to global configuration data. + @param[in,out] VarDig Pointer to variable digest value. + @param[in] FreeResource Flag to indicate whether to free resource. + +**/ +VOID +RemoveVariableDigestNode ( + IN OUT PROTECTED_VARIABLE_GLOBAL *Global, + IN OUT VARIABLE_DIGEST *VarDig, + IN BOOLEAN FreeResource + ) +{ + VARIABLE_DIGEST *Prev; + VARIABLE_DIGEST *Next; + + Prev =3D VAR_DIG_PREV (VarDig); + Next =3D VAR_DIG_NEXT (VarDig); + + if (Global->VariableDigests =3D=3D VAR_DIG_ADR (VarDig)) { + Global->VariableDigests =3D VAR_DIG_ADR (Next); + } + + if (Prev !=3D NULL) { + Prev->Next =3D VAR_DIG_ADR (Next); + } + + if (Next !=3D NULL) { + Next->Prev =3D VAR_DIG_ADR (Prev); + } + + VarDig->Prev =3D 0; + VarDig->Next =3D 0; + VarDig->Flags.Valid =3D FALSE; + + if (FreeResource && VarDig->Flags.Freeable) { + if ((VarDig->CacheIndex !=3D 0) && (VarDig->CacheIndex !=3D VAR_INDEX_= INVALID)) { + VarDig->CacheIndex =3D VAR_INDEX_INVALID; + } + } +} + +/** + + Insert variable digest node. + + @param[in,out] Global Pointer to global configuration data. + @param[in] VarDig Pointer to variable digest value. + @param[in] SortMethod Method for sorting. + +**/ +VOID +InsertVariableDigestNode ( + IN OUT PROTECTED_VARIABLE_GLOBAL *Global, + IN VARIABLE_DIGEST *VarDig, + IN SORT_METHOD SortMethod + ) +{ + VARIABLE_DIGEST *Curr; + VARIABLE_DIGEST *Prev; + BOOLEAN DoReplace; + INTN Result; + + if (SortMethod =3D=3D NULL) { + SortMethod =3D CompareVariableDigestInfo; + } + + DoReplace =3D FALSE; + Curr =3D VAR_DIG_PTR (Global->VariableDigests); + if (Curr =3D=3D NULL) { + // + // First one. + // + VarDig->Prev =3D 0; + VarDig->Next =3D 0; + Global->VariableDigests =3D VAR_DIG_ADR (VarDig); + return; + } + + while (Curr !=3D NULL && Curr !=3D VarDig) { + Result =3D SortMethod (VarDig, Curr); + + if (Result <=3D 0) { + ASSERT (VarDig->StoreIndex !=3D Curr->StoreIndex); + + // + // The same variable already in list? + // + if (Result =3D=3D 0) { + // + // Keep only the same new one, unless states are different. In such + // situation, the one with no VAR_ADDED will be deleted. + // + if (VarDig->State >=3D Curr->State) { + DoReplace =3D TRUE; + Curr->Flags.Valid =3D FALSE; // to-be-deleted + } else { + DoReplace =3D FALSE; + VarDig->Flags.Valid =3D FALSE; // to-be-deleted + } + } + + // + // Put VarDig before Curr + // + VarDig->Next =3D VAR_DIG_ADR (Curr); + VarDig->Prev =3D Curr->Prev; + + if (VAR_DIG_PREV (Curr) !=3D NULL) { + VAR_DIG_PREV (Curr)->Next =3D VAR_DIG_ADR (VarDig); + } + + Curr->Prev =3D VAR_DIG_ADR (VarDig); + + if (DoReplace) { + RemoveVariableDigestNode (Global, Curr, TRUE); + } + + break; + } + + Prev =3D Curr; + Curr =3D VAR_DIG_NEXT (Curr); + if (Curr =3D=3D NULL) { + Prev->Next =3D VAR_DIG_ADR (VarDig); + + VarDig->Prev =3D VAR_DIG_ADR (Prev); + VarDig->Next =3D 0; + } + } + + // + // Update the head node if necessary. + // + if (VAR_DIG_PTR (VarDig->Prev) =3D=3D NULL) { + Global->VariableDigests =3D VAR_DIG_ADR (VarDig); + } +} + +/** + + Find the specified variable digest + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to variable data. + @param[in] FindNext Flag to continue looking for variable. + +**/ +VARIABLE_DIGEST * +FindVariableInternal ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_INFO *VarInfo, + IN BOOLEAN FindNext + ) +{ + VARIABLE_DIGEST *VarDig; + VARIABLE_DIGEST *Found; + VARIABLE_DIGEST *FirstStoreIndexVar; + BOOLEAN ByIndex; + INTN FwdOrBwd; + + // + // If VarInfo->StoreIndex is valid, use it to find the variable. Otherwi= se, + // use the variable name and guid instead, if given. If no clue at all, = return + // the variable with lowest StoreIndex. + // + if ( (VarInfo->StoreIndex !=3D VAR_INDEX_INVALID) + || (VarInfo->Header.VariableName =3D=3D NULL) + || (VarInfo->Header.VendorGuid =3D=3D NULL)) + { + ByIndex =3D TRUE; + } else { + ByIndex =3D FALSE; + } + + Found =3D NULL; + VarDig =3D VAR_DIG_PTR (Global->VariableDigests); + FirstStoreIndexVar =3D VarDig; + FwdOrBwd =3D 1; + + // + // Discover variable with first/smallest store index + // + while (VarDig !=3D NULL) { + if (VarDig->StoreIndex < FirstStoreIndexVar->StoreIndex) { + FirstStoreIndexVar =3D VAR_DIG_PTR (VarDig); + } + + VarDig =3D VAR_DIG_NEXT (VarDig); + } + + // + // Input variable is NULL than return first variable + // with smallest store index from the variable digest list. + // + if (((VarInfo->Header.VariableName =3D=3D NULL) || + (VarInfo->Header.VendorGuid =3D=3D NULL)) && + (ByIndex =3D=3D FALSE)) + { + return FirstStoreIndexVar; + } + + // + // Start with first entry + // + VarDig =3D VAR_DIG_PTR (Global->VariableDigests); + while (VarDig !=3D NULL) { + if (ByIndex) { + if (FindNext) { + if (VarDig->StoreIndex =3D=3D VarInfo->StoreIndex) { + Found =3D VarDig =3D VAR_DIG_NEXT (VarDig); + break; + } + } else if (VarDig->StoreIndex =3D=3D VarInfo->StoreIndex) { + Found =3D VarDig; + break; + } + } else { + // + // Match given variable name and vendor guid. + // + if (IS_VARIABLE (&VarInfo->Header, VAR_DIG_NAME (VarDig), VAR_DIG_GU= ID (VarDig))) { + Found =3D (FindNext) ? VAR_DIG_NEXT (VarDig) : VarDig; + break; + } + } + + VarDig =3D (FwdOrBwd > 0) ? VAR_DIG_NEXT (VarDig) : VAR_DIG_PREV (VarD= ig); + if (VarDig =3D=3D NULL) { + } + } + + return Found; +} + +/** + + Synchronize the RPMC counters + + @param[in] Global Pointer to global configuration data. + @param[in] VarInfo Pointer to variable data. + @param[in] FindNext Flag to continue looking for variable. + + @retval EFI_SUCCESS Successfully sync RPMC counters. + @return others Failed to sync RPMC counters. + +**/ +EFI_STATUS +SyncRpmcCounter ( + VOID + ) +{ + UINT32 Counter1; + UINT32 Counter2; + EFI_STATUS Status; + + // + // Sync RPMC1 & RPMC2. + // + Status =3D RequestMonotonicCounter (RPMC_COUNTER_1, &Counter1); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + Status =3D RequestMonotonicCounter (RPMC_COUNTER_2, &Counter2); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + while (Counter1 < Counter2) { + Status =3D IncrementMonotonicCounter (RPMC_COUNTER_1); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + ++Counter1; + } + + while (Counter2 < Counter1) { + Status =3D IncrementMonotonicCounter (RPMC_COUNTER_2); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + ++Counter2; + } + + return EFI_SUCCESS; +} + +/** + + An alternative version of ProtectedVariableLibGetData to get plain data = from + given variable, if encrypted. + + @param[in] Global Pointer to global configuration data. + @param[in,out] VarInfo Pointer to structure containing variab= le + information. VarInfo->Header.Data must= point + to the original variable data. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER VarInfo is NULL or both VarInfo->Buffe= r and + VarInfo->Offset are invalid. + @retval EFI_NOT_FOUND The specified variable could not be fo= und. + +**/ +STATIC +EFI_STATUS +ProtectedVariableLibGetDataInternal ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + VOID *Buffer; + UINTN BufferSize; + + if ((Global =3D=3D NULL) || (VarInfo =3D=3D NULL)) { + return EFI_INVALID_PARAMETER; + } + + ContextIn =3D GET_CNTX (Global); + + // + // Check if the data has been decrypted or not. + // + VarInfo->CipherData =3D NULL; + VarInfo->CipherDataSize =3D 0; + VarInfo->PlainData =3D NULL; + VarInfo->PlainDataSize =3D 0; + Status =3D GetCipherDataInfo (VarInfo); + + if ((Status =3D=3D EFI_UNSUPPORTED) || (Status =3D=3D EFI_NOT_FOUND)) { + VarInfo->Flags.DecryptInPlace =3D TRUE; + VarInfo->PlainDataSize =3D (UINT32)VarInfo->Header.DataSize; + VarInfo->PlainData =3D VarInfo->Header.Data; + VarInfo->CipherDataType =3D 0; + VarInfo->CipherHeaderSize =3D 0; + Status =3D EFI_SUCCESS; + } else if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + // + // If the variable data is cipher data, decrypt it inplace if possible. + // + if ((VarInfo->PlainData =3D=3D NULL) && (VarInfo->CipherData !=3D NULL))= { + VarInfo->Key =3D Global->RootKey; + VarInfo->KeySize =3D sizeof (Global->RootKey); + + switch (ContextIn->VariableServiceUser) { + case FromPeiModule: + VarInfo->Flags.DecryptInPlace =3D FALSE; + // + // In PEI VariableCache holds Cipher header + Cipher data + // Do not override Cipher header data during decrypt operation + // + VarInfo->PlainData =3D GET_BUFR (Global->VariableCache + VarInfo->= CipherHeaderSize); + + Status =3D DecryptVariable (VarInfo); + if (Status =3D=3D EFI_UNSUPPORTED) { + VarInfo->PlainData =3D VarInfo->Header.Data; + VarInfo->PlainDataSize =3D (UINT32)VarInfo->Header.DataSize; + VarInfo->CipherDataType =3D 0; + VarInfo->CipherHeaderSize =3D 0; + + Status =3D EFI_SUCCESS; + } + + break; + + case FromSmmModule: + VarInfo->Flags.DecryptInPlace =3D FALSE; + VarInfo->PlainData =3D GET_BUFR (Global->VariableCache); + + Status =3D DecryptVariable (VarInfo); + if (Status =3D=3D EFI_UNSUPPORTED) { + VarInfo->PlainData =3D VarInfo->Header.Data; + VarInfo->PlainDataSize =3D (UINT32)VarInfo->Header.DataSize; + VarInfo->CipherDataType =3D 0; + VarInfo->CipherHeaderSize =3D 0; + + Status =3D EFI_SUCCESS; + } + + break; + + case FromBootServiceModule: + case FromRuntimeModule: + // + // The SMM passes back only decrypted data. We re-use the original= cipher + // data buffer to keep the plain data along with the cipher header. + // + VarInfo->Flags.DecryptInPlace =3D TRUE; + Buffer =3D (VOID *)((UINTN)VarInfo->CipherD= ata + VarInfo->CipherHeaderSize); + BufferSize =3D VarInfo->PlainDataSize; + Status =3D ContextIn->FindVariableSmm ( + VarInfo->Header.Varia= bleName, + VarInfo->Header.Vendo= rGuid, + &VarInfo->Header.Attr= ibutes, + &BufferSize, + Buffer + ); + if (!EFI_ERROR (Status)) { + // + // Flag the payload as plain data to avoid re-decrypting. + // + VarInfo->CipherDataType =3D ENC_TYPE_NULL; + VarInfo->PlainDataSize =3D (UINT32)BufferSize; + VarInfo->PlainData =3D Buffer; + + Status =3D SetCipherDataInfo (VarInfo); + if (Status =3D=3D EFI_UNSUPPORTED) { + Status =3D EFI_SUCCESS; + } + } + + break; + + default: + Status =3D EFI_UNSUPPORTED; + break; + } + + VarInfo->CipherData =3D NULL; + VarInfo->CipherDataSize =3D 0; + } + + return Status; +} + +/** + + An alternative version of ProtectedVariableLibGetData to get plain data,= if + encrypted, from given variable, for different use cases. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER VarInfo is NULL or both VarInfo->Buffe= r and + VarInfo->Offset are invalid. + @retval EFI_NOT_FOUND The specified variable could not be fo= und. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByInfo ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_GLOBAL *Global; + VOID **Buffer; + UINT32 BufferSize; + + Status =3D GetProtectedVariableGlobal (&Global); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + // + // Save the output data buffer because below call + // call will use this struct field internally. + // + Buffer =3D VarInfo->PlainData; + BufferSize =3D VarInfo->PlainDataSize; + + Status =3D ProtectedVariableLibGetDataInternal (Global, VarInfo); + if (EFI_ERROR (Status)) { + // + // Return with caller provided buffer with zero DataSize + // + VarInfo->PlainData =3D Buffer; + VarInfo->PlainDataSize =3D 0; + return Status; + } + + if ((Buffer =3D=3D NULL) || ((BufferSize) < VarInfo->PlainDataSize)) { + // + // Return with caller provided buffer with true PlainDataSize + // + VarInfo->PlainData =3D Buffer; + return EFI_BUFFER_TOO_SMALL; + } + + // + // Copy Plain data to ouput data buffer + // + CopyMem (Buffer, VarInfo->PlainData, VarInfo->PlainDataSize); + VarInfo->PlainData =3D Buffer; + + return Status; +} + +/** + + Retrieve plain data, if encrypted, of given variable. + + If variable encryption is employed, this function will initiate a SMM re= quest + to get the plain data. Due to security consideration, the decryption can= only + be done in SMM environment. + + @param[in] Variable Pointer to header of a Variable. + @param[in,out] Data Pointer to plain data of the given va= riable. + @param[in,out] DataSize Size of data returned or data buffer = needed. + @param[in] AuthFlag Auth-variable indicator. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER Invalid parameter. + @retval EFI_NOT_FOUND The specified variable could not be f= ound. + @retval EFI_BUFFER_TOO_SMALL If *DataSize is smaller than needed. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByBuffer ( + IN VARIABLE_HEADER *Variable, + IN OUT VOID *Data, + IN OUT UINT32 *DataSize, + IN BOOLEAN AuthFlag + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_INFO VarInfo; + PROTECTED_VARIABLE_GLOBAL *Global; + AUTHENTICATED_VARIABLE_HEADER *AuthVariable; + VOID *Buffer; + + if ((Variable =3D=3D NULL) || (DataSize =3D=3D NULL)) { + ASSERT (Variable !=3D NULL); + ASSERT (DataSize !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + Status =3D GetProtectedVariableGlobal (&Global); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + ZeroMem (&VarInfo, sizeof (VarInfo)); + + VarInfo.Buffer =3D Variable; + VarInfo.Flags.Auth =3D AuthFlag; + + if (VarInfo.Flags.Auth =3D=3D TRUE) { + AuthVariable =3D (AUTHENTICATED_VARIABLE_HEADER *)Variable; + + VarInfo.Header.VariableName =3D (CHAR16 *)((UINTN)Variable + sizeof (A= UTHENTICATED_VARIABLE_HEADER)); + VarInfo.Header.NameSize =3D AuthVariable->NameSize; + VarInfo.Header.VendorGuid =3D &AuthVariable->VendorGuid; + VarInfo.Header.Attributes =3D AuthVariable->Attributes; + VarInfo.Header.DataSize =3D AuthVariable->DataSize; + } else { + VarInfo.Header.VariableName =3D (CHAR16 *)((UINTN)Variable + sizeof (V= ARIABLE_HEADER)); + VarInfo.Header.NameSize =3D Variable->NameSize; + VarInfo.Header.VendorGuid =3D &Variable->VendorGuid; + VarInfo.Header.Attributes =3D Variable->Attributes; + VarInfo.Header.DataSize =3D Variable->DataSize; + } + + Buffer =3D VARIABLE_NAME (VarInfo.Buffer, VarInfo.Flags.Aut= h); + Buffer =3D GET_BUFR (GET_ADRS (Buffer) + VarInfo.Header.Nam= eSize); + Buffer =3D GET_BUFR (GET_ADRS (Buffer) + GET_PAD_SIZE (VarI= nfo.Header.NameSize)); + VarInfo.Header.Data =3D Buffer; + + Status =3D ProtectedVariableLibGetDataInternal (Global, &VarInfo); + if (!EFI_ERROR (Status)) { + if ((*DataSize) < VarInfo.PlainDataSize) { + *DataSize =3D VarInfo.PlainDataSize; + return EFI_BUFFER_TOO_SMALL; + } + + *DataSize =3D VarInfo.PlainDataSize; + CopyMem (Data, VarInfo.PlainData, VarInfo.PlainDataSize); + } + + return Status; +} + +/** + This service retrieves a variable's value using its name and GUID. + + Read the specified variable from the UEFI variable store. If the Data + buffer is too small to hold the contents of the variable, the error + EFI_BUFFER_TOO_SMALL is returned and DataSize is set to the required buf= fer + size to obtain the data. + + @param VariableName A pointer to a null-terminated string that= is the variable's name. + @param VariableGuid A pointer to an EFI_GUID that is the varia= ble's GUID. The combination of + VariableGuid and VariableName must be uniq= ue. + @param Attributes If non-NULL, on return, points to the vari= able's attributes. + @param DataSize On entry, points to the size in bytes of t= he Data buffer. + On return, points to the size of the data = returned in Data. + @param Data Points to the buffer which will hold the r= eturned variable value. + May be NULL with a zero DataSize in order = to determine the size of the buffer needed. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable was be found. + @retval EFI_BUFFER_TOO_SMALL The DataSize is too small for the resultin= g data. + DataSize is updated with the size required= for + the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid, DataSize or Da= ta is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetByName ( + IN CONST CHAR16 *VariableName, + IN CONST EFI_GUID *VariableGuid, + OUT UINT32 *Attributes, + IN OUT UINTN *DataSize, + OUT VOID *Data OPTIONAL + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + PROTECTED_VARIABLE_GLOBAL *Global; + VARIABLE_DIGEST *VarDig; + PROTECTED_VARIABLE_INFO VarInfo; + EFI_TIME TimeStamp; + VOID *DataBuffer; + + if ((VariableName =3D=3D NULL) || (VariableGuid =3D=3D NULL) || (DataSiz= e =3D=3D NULL)) { + ASSERT (VariableName !=3D NULL); + ASSERT (VariableGuid !=3D NULL); + ASSERT (DataSize !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + Status =3D GetProtectedVariableGlobal (&Global); + + if (EFI_ERROR (Status)) { + return EFI_UNSUPPORTED; + } + + ContextIn =3D GET_CNTX (Global); + + ZeroMem (&VarInfo, sizeof (VarInfo)); + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + VarInfo.Header.VariableName =3D (CHAR16 *)VariableName; + VarInfo.Header.NameSize =3D StrSize (VariableName); + VarInfo.Header.VendorGuid =3D (EFI_GUID *)VariableGuid; + + VarDig =3D FindVariableInternal (Global, &VarInfo, FALSE); + if (VarDig =3D=3D NULL) { + return EFI_NOT_FOUND; + } + + if (Attributes !=3D NULL) { + *Attributes =3D VarDig->Attributes; + } + + if ((Data =3D=3D NULL) || (*DataSize < VarDig->PlainDataSize)) { + *DataSize =3D VarDig->PlainDataSize; + return EFI_BUFFER_TOO_SMALL; + } + + VarInfo.Flags.Auth =3D VarDig->Flags.Auth; + VarInfo.Flags.Protected =3D VarDig->Flags.Protected; + + // + // Verify digest before copy the data back, if the variable is not in ca= che. + // + if (VarDig->CacheIndex !=3D VAR_INDEX_INVALID) { + VarInfo.Header.VariableName =3D NULL; + VarInfo.Header.VendorGuid =3D NULL; + VarInfo.Buffer =3D GET_BUFR (VarDig->CacheIndex); + + Status =3D ContextIn->GetVariableInfo (&VarInfo); + ASSERT_EFI_ERROR (Status); + } else { + // + // A buffer for at least one variable data (<=3DPcdMax(Auth)VariableSi= ze) + // must be reserved in advance. + // + ASSERT ( + Global->VariableCache !=3D 0 + && Global->VariableCacheSize >=3D VarDig->DataSize + ); + DataBuffer =3D GET_BUFR (Global->VariableCache); + // + // Note name and GUID are already there. + // + VarInfo.StoreIndex =3D VarDig->StoreIndex; + + VarInfo.Header.VariableName =3D NULL; // Prevent name from being retri= eved again. + VarInfo.Header.NameSize =3D 0; + VarInfo.Header.VendorGuid =3D NULL; // Prevent guid from being retri= eved again. + VarInfo.Header.TimeStamp =3D &TimeStamp; + VarInfo.Header.Data =3D DataBuffer; + VarInfo.Header.DataSize =3D VarDig->DataSize; + + // + // Get detailed information about the variable. + // + Status =3D ContextIn->GetVariableInfo (&VarInfo); + ASSERT_EFI_ERROR (Status); + + // + // The variable must be validated its digest value to avoid TOCTOU, if= it's + // not been cached yet. + // + VarInfo.Header.VariableName =3D VAR_DIG_NAME (VarDig); + VarInfo.Header.NameSize =3D VarDig->NameSize; + VarInfo.Header.VendorGuid =3D &VarDig->VendorGuid; + Status =3D VerifyVariableDigest (Global, &VarInfo= , VarDig); + if (EFI_ERROR (Status)) { + return Status; + } + } + + // + // Decrypt the data, if necessary. + // + Status =3D ProtectedVariableLibGetDataInternal (Global, &VarInfo); + if (!EFI_ERROR (Status)) { + if (*DataSize < VarInfo.PlainDataSize) { + *DataSize =3D VarInfo.PlainDataSize; + return EFI_BUFFER_TOO_SMALL; + } + + *DataSize =3D VarInfo.PlainDataSize; + CopyMem (Data, VarInfo.PlainData, VarInfo.PlainDataSize); + } + + return Status; +} + +/** + + This function is used to enumerate the variables managed by current + ProtectedVariableLib. + + If the VarInfo->StoreIndex is invalid (VAR_INDEX_INVALID), the first var= iable + with the smallest StoreIndex will be returned. Otherwise, the variable w= ith + StoreIndex just after than the VarInfo->StoreIndex will be returned. + + @param[in,out] VarInfo Pointer to structure containing variable= information. + + @retval EFI_SUCCESS Found the specified variable. + @retval EFI_INVALID_PARAMETER VarInfo is NULL. + @retval EFI_NOT_FOUND The specified variable could not be fo= und. + +**/ +STATIC +EFI_STATUS +GetNextVariableInternal ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_GLOBAL *Global; + VARIABLE_DIGEST *Found; + + if (VarInfo =3D=3D NULL) { + ASSERT (VarInfo !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + Status =3D GetProtectedVariableGlobal (&Global); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + Found =3D FindVariableInternal (Global, VarInfo, TRUE); + if (Found =3D=3D NULL) { + return EFI_NOT_FOUND; + } + + // + // Return all cached data. + // + VarInfo->Header.VariableName =3D VAR_DIG_NAME (Found); + VarInfo->Header.VendorGuid =3D VAR_DIG_GUID (Found); + VarInfo->Header.NameSize =3D Found->NameSize; + VarInfo->Header.DataSize =3D Found->DataSize; + VarInfo->Header.Attributes =3D Found->Attributes; + + VarInfo->PlainDataSize =3D Found->PlainDataSize; + VarInfo->StoreIndex =3D Found->StoreIndex; + if (Found->CacheIndex !=3D VAR_INDEX_INVALID) { + VarInfo->Buffer =3D GET_BUFR (Found->CacheIndex); + } + + VarInfo->Flags.Auth =3D Found->Flags.Auth; + + return EFI_SUCCESS; +} + +/** + + Find the request variable. + + @param[in, out] VarInfo Pointer to variable data. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable could not be found. + @retval EFI_INVALID_PARAMETER Variable info is NULL. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFind ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_GLOBAL *Global; + VARIABLE_DIGEST *Found; + + if (VarInfo =3D=3D NULL) { + ASSERT (VarInfo !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + Status =3D GetProtectedVariableGlobal (&Global); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + Found =3D FindVariableInternal (Global, VarInfo, FALSE); + if (Found =3D=3D NULL) { + return EFI_NOT_FOUND; + } + + // + // Return all cached data. + // + VarInfo->Header.VariableName =3D VAR_DIG_NAME (Found); + VarInfo->Header.VendorGuid =3D VAR_DIG_GUID (Found); + VarInfo->Header.NameSize =3D Found->NameSize; + VarInfo->Header.DataSize =3D Found->DataSize; + VarInfo->Header.Attributes =3D Found->Attributes; + + VarInfo->PlainDataSize =3D Found->PlainDataSize; + VarInfo->StoreIndex =3D Found->StoreIndex; + if (Found->CacheIndex !=3D VAR_INDEX_INVALID) { + VarInfo->Buffer =3D GET_BUFR (Found->CacheIndex); + } + + VarInfo->Flags.Auth =3D Found->Flags.Auth; + + return EFI_SUCCESS; +} + +/** + Return the next variable name and GUID. + + This function is called multiple times to retrieve the VariableName + and VariableGuid of all variables currently available in the system. + On each call, the previous results are passed into the interface, + and, on return, the interface returns the data for the next + interface. When the entire variable list has been returned, + EFI_NOT_FOUND is returned. + + @param VariableNameSize On entry, points to the size of the buffer poi= nted to by VariableName. + On return, the size of the variable name buffe= r. + @param VariableName On entry, a pointer to a null-terminated strin= g that is the variable's name. + On return, points to the next variable's null-= terminated name string. + @param VariableGuid On entry, a pointer to an EFI_GUID that is the= variable's GUID. + On return, a pointer to the next variable's GU= ID. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_NOT_FOUND The variable could not be found. + @retval EFI_BUFFER_TOO_SMALL The VariableNameSize is too small for the = resulting + data. VariableNameSize is updated with the= size + required for the specified variable. + @retval EFI_INVALID_PARAMETER VariableName, VariableGuid or + VariableNameSize is NULL. + @retval EFI_DEVICE_ERROR The variable could not be retrieved becaus= e of a device error. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFindNext ( + IN OUT UINTN *VariableNameSize, + IN OUT CHAR16 *VariableName, + IN OUT EFI_GUID *VariableGuid + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_INFO VarInfo; + PROTECTED_VARIABLE_GLOBAL *Global; + VARIABLE_DIGEST *VarDig; + UINTN Size; + + if ((VariableNameSize =3D=3D NULL) || (VariableName =3D=3D NULL) || (Var= iableGuid =3D=3D NULL)) { + ASSERT (VariableNameSize !=3D NULL); + ASSERT (VariableName !=3D NULL); + ASSERT (VariableGuid !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + Status =3D GetProtectedVariableGlobal (&Global); + if (EFI_ERROR (Status)) { + return Status; + } + + SetMem (&VarInfo, sizeof (VarInfo), 0); + Size =3D StrSize (VariableName); + + if (Size <=3D 2) { + VarDig =3D VAR_DIG_PTR (Global->VariableDigests); + } else { + VarInfo.Header.VariableName =3D VariableName; + VarInfo.Header.NameSize =3D Size; + VarInfo.Header.VendorGuid =3D VariableGuid; + + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + + VarDig =3D FindVariableInternal (Global, &VarInfo, TRUE); + } + + if (VarDig =3D=3D NULL) { + return EFI_NOT_FOUND; + } + + if (VarDig->NameSize > *VariableNameSize) { + return EFI_BUFFER_TOO_SMALL; + } + + CopyMem (VariableName, VAR_DIG_NAME (VarDig), VarDig->NameSize); + CopyGuid (VariableGuid, &VarDig->VendorGuid); + *VariableNameSize =3D VarInfo.Header.NameSize; + + return EFI_SUCCESS; +} + +/** + + Return the next variable name and GUID. + + @param[in, out] VarInfo Pointer to variable data. + + @retval EFI_SUCCESS The variable was read successfully. + @retval EFI_INVALID_PARAMETER VarInfo is NULL. + @retval EFI_NOT_FOUND The specified variable could not be foun= d. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibFindNextEx ( + IN OUT PROTECTED_VARIABLE_INFO *VarInfo + ) +{ + return GetNextVariableInternal (VarInfo); +} + +/** + + Return the max count of a variable. + + @return max count of a variable. + +**/ +UINTN +ProtectedVariableLibGetMaxVariablesCount ( + VOID + ) +{ + PROTECTED_VARIABLE_GLOBAL *Global; + PROTECTED_VARIABLE_INFO VarInfo; + VARIABLE_DIGEST *VarDig; + EFI_STATUS Status; + UINTN Count; + + Status =3D GetProtectedVariableGlobal (&Global); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return 0; + } + + Count =3D 0; + ZeroMem (&VarInfo, sizeof (VarInfo)); + + // + // Start with first entry + // + VarDig =3D VAR_DIG_PTR (Global->VariableDigests); + VarInfo.Header.VariableName =3D VAR_DIG_NAME (VarDig); + VarInfo.Header.VendorGuid =3D VAR_DIG_GUID (VarDig); + VarInfo.StoreIndex =3D VarDig->StoreIndex; + + do { + VarInfo.Buffer =3D NULL; + Status =3D ProtectedVariableLibFindNextEx (&VarInfo); + if (EFI_ERROR (Status)) { + return Count; + } + + Count++; + } while (TRUE); +} + +/** + The function is called by PerformQuickSort to sort. + + @param[in] Left The pointer to first buffer. + @param[in] Right The pointer to second buffer. + + @retval 0 Buffer1 equal to Buffer2. + @return < 0 Buffer1 is less than Buffer2. + @return > 0 Buffer1 is greater than Buffer2. + +**/ +INTN +EFIAPI +CompareStoreIndex ( + IN CONST VOID *Left, + IN CONST VOID *Right + ) +{ + EFI_PHYSICAL_ADDRESS StoreIndex1; + EFI_PHYSICAL_ADDRESS StoreIndex2; + + StoreIndex1 =3D (*(EFI_PHYSICAL_ADDRESS *)Left); + StoreIndex2 =3D (*(EFI_PHYSICAL_ADDRESS *)Right); + + if (StoreIndex1 =3D=3D StoreIndex2) { + return (0); + } + + if (StoreIndex1 < StoreIndex2) { + return (-1); + } + + return (1); +} + +/** + Refresh variable information changed by variable service. + + @param Buffer Pointer to a pointer of buffer. + @param NumElements Pointer to number of elements in list. + + + @return EFI_SUCCESS Successfully retrieved sorted list. + @return others Unsuccessful. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibGetSortedList ( + IN OUT EFI_PHYSICAL_ADDRESS **Buffer, + IN OUT UINTN *NumElements + ) +{ + EFI_STATUS Status; + UINTN Count; + UINTN StoreIndexTableSize; + EFI_PHYSICAL_ADDRESS *StoreIndexTable; + PROTECTED_VARIABLE_INFO VarInfo; + PROTECTED_VARIABLE_GLOBAL *Global; + VARIABLE_DIGEST *VarDig; + + Status =3D GetProtectedVariableGlobal (&Global); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + Count =3D 0; + ZeroMem (&VarInfo, sizeof (VarInfo)); + StoreIndexTableSize =3D ProtectedVariableLibGetMaxVariablesCount (); + StoreIndexTable =3D AllocateZeroPool (sizeof (EFI_PHYSICAL_ADDRESS) = * StoreIndexTableSize); + + // + // Start with first entry + // + VarDig =3D VAR_DIG_PTR (Global->VariableDigests); + VarInfo.Header.VariableName =3D VAR_DIG_NAME (VarDig); + VarInfo.Header.VendorGuid =3D VAR_DIG_GUID (VarDig); + VarInfo.StoreIndex =3D VarDig->StoreIndex; + StoreIndexTable[Count] =3D VarInfo.StoreIndex; + Count++; + + // + // Populate the un-sorted table + // + do { + VarInfo.Buffer =3D NULL; + Status =3D ProtectedVariableLibFindNextEx (&VarInfo); + if (EFI_ERROR (Status)) { + break; + } + + StoreIndexTable[Count] =3D VarInfo.StoreIndex; + Count++; + } while (TRUE); + + PerformQuickSort ( + StoreIndexTable, + Count, + sizeof (EFI_PHYSICAL_ADDRESS), + (SORT_COMPARE)CompareStoreIndex + ); + + *Buffer =3D StoreIndexTable; + *NumElements =3D Count; + + return EFI_SUCCESS; +} diff --git a/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableDxe.= c b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableDxe.c new file mode 100644 index 000000000000..94df21eacf25 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableDxe.c @@ -0,0 +1,163 @@ +/** @file + Implemention of ProtectedVariableLib for SMM variable services. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include +#include + +#include "Library/UefiBootServicesTableLib.h" +#include "Library/MemoryAllocationLib.h" + +#include "ProtectedVariableInternal.h" + +PROTECTED_VARIABLE_CONTEXT_IN mVariableContextIn =3D { + PROTECTED_VARIABLE_CONTEXT_IN_STRUCT_VERSION, + sizeof (PROTECTED_VARIABLE_CONTEXT_IN), + 0, + FromSmmModule, + NULL, + NULL, + NULL, + NULL, + NULL +}; + +PROTECTED_VARIABLE_GLOBAL mProtectedVariableGlobal =3D { + PROTECTED_VARIABLE_CONTEXT_OUT_STRUCT_VERSION, + sizeof (PROTECTED_VARIABLE_GLOBAL), + { 0 }, + { 0 }, + 0, + 0, + 0, + 0, + 0, + 0, + { 0, 0, 0 }, + 0, + 0, + { 0, 0, 0, 0, 0, 0} +}; + +/** + Fix incorrect state of MetaDataHmacVariable before any variable update. + + @param[in] Event The event that occurred + @param[in] Context For EFI compatibility. Not used. + +**/ +VOID +EFIAPI +VariableWriteProtocolCallback ( + IN EFI_EVENT Event, + IN VOID *Context + ) +{ + EFI_STATUS Status; + + // + // Fix incorrect state of MetaDataHmacVariable before any variable updat= e. + // This has to be done here due to the fact that this operation needs to + // update NV storage but the FVB and FTW protocol might not be ready dur= ing + // ProtectedVariableLibInitialize(). + // + Status =3D FixupHmacVariable (); + ASSERT_EFI_ERROR (Status); + + Status =3D ProtectedVariableLibWriteInit (); + ASSERT_EFI_ERROR (Status); + + gBS->CloseEvent (Event); +} + +/** + + Initialization for protected variable services. + + If this initialization failed upon any error, the whole variable services + should not be used. A system reset might be needed to re-construct NV + variable storage to be the default state. + + @param[in] ContextIn Pointer to variable service context needed by + protected variable. + + @retval EFI_SUCCESS Protected variable services are ready. + @retval EFI_INVALID_PARAMETER If ContextIn =3D=3D NULL or something = missing or + mismatching in the content in ContextI= n. + @retval EFI_COMPROMISED_DATA If failed to check integrity of protec= ted variables. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibInitialize ( + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_CONTEXT_IN *ProtectedVarContext; + PROTECTED_VARIABLE_GLOBAL *OldGlobal; + PROTECTED_VARIABLE_GLOBAL *NewGlobal; + VOID *VarWriteReg; + + if ( (ContextIn =3D=3D NULL) + || (ContextIn->StructVersion !=3D PROTECTED_VARIABLE_CONTEXT_IN_STRUC= T_VERSION) + || (ContextIn->StructSize !=3D sizeof (PROTECTED_VARIABLE_CONTEXT_IN)) + || (ContextIn->GetVariableInfo =3D=3D NULL) + || (ContextIn->GetNextVariableInfo =3D=3D NULL) + || (ContextIn->UpdateVariableStore =3D=3D NULL) + || (ContextIn->UpdateVariable =3D=3D NULL)) + { + ASSERT (ContextIn !=3D NULL); + ASSERT (ContextIn->StructVersion =3D=3D PROTECTED_VARIABLE_CONTEXT_IN_= STRUCT_VERSION); + ASSERT (ContextIn->StructSize =3D=3D sizeof (PROTECTED_VARIABLE_CONTEX= T_IN)); + ASSERT (ContextIn->GetVariableInfo !=3D NULL); + ASSERT (ContextIn->GetNextVariableInfo !=3D NULL); + ASSERT (ContextIn->UpdateVariableStore !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + GetProtectedVariableGlobal (&NewGlobal); + ProtectedVarContext =3D GET_CNTX (NewGlobal); + CopyMem (ProtectedVarContext, ContextIn, sizeof (mVariableContextIn)); + ProtectedVarContext->VariableServiceUser =3D FromSmmModule; + + // + // Get root key and HMAC key from HOB created by PEI variable driver. + // + Status =3D GetProtectedVariableGlobalFromHob (&OldGlobal); + ASSERT_EFI_ERROR (Status); + + CopyMem ((VOID *)NewGlobal, (CONST VOID *)OldGlobal, sizeof (*OldGlobal)= ); + + // + // The keys must not be available outside SMM. + // + if (ProtectedVarContext->VariableServiceUser =3D=3D FromSmmModule) { + ZeroMem (OldGlobal->RootKey, sizeof (OldGlobal->RootKey)); + ZeroMem (OldGlobal->MetaDataHmacKey, sizeof (OldGlobal->MetaDataHmacKe= y)); + } + + // + // Register variable write protocol notify function used to fix any + // inconsistency in MetaDataHmacVariable before the first variable write + // operation. + // + NewGlobal->Flags.WriteInit =3D FALSE; + NewGlobal->Flags.WriteReady =3D FALSE; + + EfiCreateProtocolNotifyEvent ( + &gEfiVariableWriteArchProtocolGuid, + TPL_CALLBACK, + VariableWriteProtocolCallback, + NULL, + &VarWriteReg + ); + + return EFI_SUCCESS; +} diff --git a/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariablePei.= c b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariablePei.c new file mode 100644 index 000000000000..91d71a1e8525 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariablePei.c @@ -0,0 +1,1331 @@ +/** @file + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include +#include +#include + +#include +#include + +#include +#include +#include +#include + +#include "ProtectedVariableInternal.h" + +/** + Function allocates a global buffer. + + This function allocates a buffer with the specified size. + + @param[in] Size Size of buffer to allocate. + @param[in] AllocatePage Whether to allocate pages. + + @retval Buffer Pointer to the Buffer allocated. + @retval NULL if no Buffer was found. + +**/ +VOID * +AllocateGlobalBuffer ( + IN UINT32 Size, + IN BOOLEAN AllocatePage + ) +{ + VOID *Buffer; + EFI_HOB_MEMORY_ALLOCATION *MemoryAllocationHob; + EFI_PEI_HOB_POINTERS Hob; + + Buffer =3D NULL; + if (!AllocatePage) { + Buffer =3D BuildGuidHob (&gEdkiiProtectedVariableGlobalGuid, Size); + } + + if (Buffer =3D=3D NULL) { + // + // Use the AllocatePages() to get over size limit of general GUID-ed H= OB. + // + Buffer =3D AllocatePages (EFI_SIZE_TO_PAGES (Size)); + if (Buffer =3D=3D NULL) { + ASSERT_EFI_ERROR (EFI_OUT_OF_RESOURCES); + return NULL; + } + + // + // Mark the HOB holding the pages just allocated so that it can be + // identified later. + // + MemoryAllocationHob =3D NULL; + Hob.Raw =3D GetFirstHob (EFI_HOB_TYPE_MEMORY_ALLOCATION); + while (Hob.Raw !=3D NULL) { + MemoryAllocationHob =3D (EFI_HOB_MEMORY_ALLOCATION *)Hob.Raw; + if ((UINTN)Buffer =3D=3D (UINTN)MemoryAllocationHob->AllocDescriptor= .MemoryBaseAddress) { + CopyGuid ( + &MemoryAllocationHob->AllocDescriptor.Name, + &gEdkiiProtectedVariableGlobalGuid + ); + break; + } + + Hob.Raw =3D GET_NEXT_HOB (Hob); + Hob.Raw =3D GetNextHob (EFI_HOB_TYPE_MEMORY_ALLOCATION, Hob.Raw); + } + } + + return Buffer; +} + +/** + Callback use to re-verify all variables and cache them in memory. + + @param[in] PeiServices General purpose services available to ev= ery PEIM. + @param[in] NotifyDescriptor The notification structure this PEIM reg= istered on install. + @param[in] Ppi The memory discovered PPI. Not used. + + @retval EFI_SUCCESS The function completed successfully. + @retval others There's error in MP initialization. +**/ +EFI_STATUS +EFIAPI +MemoryDiscoveredPpiNotifyCallback ( + IN EFI_PEI_SERVICES **PeiServices, + IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor, + IN VOID *Ppi + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + PROTECTED_VARIABLE_GLOBAL *Global; + VARIABLE_DIGEST *VarDig; + PROTECTED_VARIABLE_INFO VarInfo; + VOID *Buffer; + UINT32 VarSize; + INTN Result; + + Status =3D GetProtectedVariableGlobal (&Global); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + ContextIn =3D GET_CNTX (Global); + + VarSize =3D Global->VariableNumber * MAX_VARIABLE_SIZE; + Buffer =3D AllocateGlobalBuffer (VarSize, TRUE); + + // + // It's safe to store the pointer in Global->VariableCache, which has be= en + // cleared by above calling of GetProtectedVariableGlobal(). + // + Global->VariableCache =3D GET_ADRS (Buffer); + Global->VariableCacheSize =3D EFI_SIZE_TO_PAGES (VarSize); + + // + // Traverse all valid variables. + // + VarDig =3D VAR_DIG_PTR (Global->VariableDigests); + while (VarDig !=3D NULL) { + if (VarDig->CacheIndex =3D=3D VAR_INDEX_INVALID) { + ASSERT (VarDig->StoreIndex !=3D VAR_INDEX_INVALID); + + VarSize =3D VARIABLE_HEADER_SIZE (Global->Flags.Auth); + VarSize +=3D VarDig->NameSize + GET_PAD_SIZE (VarDig->NameSize); + VarSize +=3D VarDig->DataSize + GET_PAD_SIZE (VarDig->DataSize); + VarSize =3D HEADER_ALIGN (VarSize); + + // + // Note the variable might be in unconsecutive space. + // + ZeroMem (&VarInfo, sizeof (VarInfo)); + VarInfo.StoreIndex =3D VarDig->StoreIndex; + VarInfo.Buffer =3D Buffer; + VarInfo.Flags.Auth =3D VarDig->Flags.Auth; + + Status =3D ContextIn->GetVariableInfo (&VarInfo); + ASSERT_EFI_ERROR (Status); + // + // VerifyVariableDigest() refers to CipherData for raw data. + // + VarInfo.CipherData =3D VarInfo.Header.Data; + VarInfo.CipherDataSize =3D (UINT32)VarInfo.Header.DataSize; + + // + // Make sure that the cached copy is not compromised. + // + Status =3D VerifyVariableDigest (Global, &VarInfo, VarDig); + if (EFI_ERROR (Status)) { + REPORT_STATUS_CODE ( + EFI_ERROR_CODE | EFI_ERROR_UNRECOVERED, + (PcdGet32 (PcdStatusCodeVariableIntegrity) | (Status & 0xFF)) + ); + ASSERT_EFI_ERROR (Status); + CpuDeadLoop (); + } + + // + // Simply use the cache address as CacheIndex of the variable. + // + VarDig->CacheIndex =3D GET_ADRS (Buffer); + Buffer =3D (UINT8 *)Buffer + MAX_VARIABLE_SIZE; + } else { + Result =3D StrnCmp ( + VAR_DIG_NAME (VarDig), + METADATA_HMAC_VARIABLE_NAME, + METADATA_HMAC_VARIABLE_NAME_SIZE + ); + if (Result =3D=3D 0) { + CopyMem ( + Buffer, + GET_BUFR (Global->GlobalSelf + (Global->StructSize - GetMetaData= HmacVarSize (Global->Flags.Auth))), + GetMetaDataHmacVarSize (Global->Flags.Auth) + ); + + // + // Simply use the cache address as CacheIndex of the variable. + // + VarDig->CacheIndex =3D GET_ADRS (Buffer); + Buffer =3D (UINT8 *)Buffer + MAX_VARIABLE_SIZE; + } + } + + VarDig =3D VAR_DIG_NEXT (VarDig); + } + + return EFI_SUCCESS; +} + +/** + Callback use to perform variable integrity check. + + @param[in] PeiServices General purpose services available to ev= ery PEIM. + @param[in] NotifyDescriptor The notification structure this PEIM reg= istered on install. + @param[in] Ppi The memory discovered PPI. Not used. + + @retval EFI_SUCCESS The function completed successfully. + @retval others There's error in MP initialization. +**/ +EFI_STATUS +EFIAPI +VariableStoreDiscoveredPpiNotifyCallback ( + IN EFI_PEI_SERVICES **PeiServices, + IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor, + IN VOID *Ppi + ) +{ + EFI_STATUS Status; + EFI_HOB_GUID_TYPE *GuidHob; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + + GuidHob =3D GetFirstGuidHob (&gEdkiiProtectedVariableContextGuid); + if (GuidHob !=3D NULL) { + ContextIn =3D (PROTECTED_VARIABLE_CONTEXT_IN *)GET_GUID_HOB_DATA (Guid= Hob); + } else { + ASSERT (GuidHob =3D=3D NULL); + } + + Status =3D ContextIn->IsHobVariableStoreAvailable (); + + if (Status =3D=3D EFI_NOT_READY) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + Status =3D PerformVariableIntegrityCheck (ContextIn); + + return Status; +} + +EFI_PEI_NOTIFY_DESCRIPTOR mPostMemNotifyList[] =3D { + { + (EFI_PEI_PPI_DESCRIPTOR_NOTIFY_CALLBACK | EFI_PEI_PPI_DESCRIPTOR_TERMI= NATE_LIST), + &gEfiPeiMemoryDiscoveredPpiGuid, + MemoryDiscoveredPpiNotifyCallback + } +}; + +EFI_PEI_NOTIFY_DESCRIPTOR mVariableStoreNotifyList[] =3D { + { + (EFI_PEI_PPI_DESCRIPTOR_NOTIFY_CALLBACK | EFI_PEI_PPI_DESCRIPTOR_TERMI= NATE_LIST), + &gEfiPeiVariableStoreDiscoveredPpiGuid, + VariableStoreDiscoveredPpiNotifyCallback + } +}; + +/** + + Get global data structure used to process protected variable. + + @param[out] Global Pointer to global configuration data. + + @retval EFI_SUCCESS Get requested structure successfully. + +**/ +EFI_STATUS +EFIAPI +GetProtectedVariableGlobal ( + OUT PROTECTED_VARIABLE_GLOBAL **Global OPTIONAL + ) +{ + return GetProtectedVariableGlobalFromHob (Global); +} + +/** + + Get context data structure used to process protected variable. + + @param[out] ContextIn Pointer to context provided by variable runtim= e services. + + @retval EFI_SUCCESS Get requested structure successfully. + +**/ +EFI_STATUS +EFIAPI +GetProtectedVariableContext ( + PROTECTED_VARIABLE_CONTEXT_IN **ContextIn OPTIONAL + ) +{ + EFI_HOB_GUID_TYPE *GuidHob; + + GuidHob =3D GetFirstGuidHob (&gEdkiiProtectedVariableContextGuid); + if (GuidHob !=3D NULL) { + *ContextIn =3D (PROTECTED_VARIABLE_CONTEXT_IN *)GET_GUID_HOB_DATA (Gui= dHob); + return EFI_SUCCESS; + } + + return EFI_NOT_FOUND; +} + +/** + Verify the HMAC value stored in MetaDataHmacVar against all valid and + protected variables in storage. + + @param[in,out] Global Pointer to global configuration data. + + @retval EFI_SUCCESS The HMAC value matches. + @retval EFI_ABORTED Error in HMAC value calculation. + @retval EFI_VOLUME_CORRUPTED Inconsistency found in NV variable stora= ge. + @retval EFI_COMPROMISED_DATA The HMAC value doesn't match. + +**/ +EFI_STATUS +VerifyMetaDataHmac ( + IN OUT PROTECTED_VARIABLE_GLOBAL *Global + ) +{ + EFI_STATUS Status; + VARIABLE_DIGEST *VariableDig; + UINT32 Counter1; + UINT32 Counter2; + VOID *Hmac1; + VOID *Hmac2; + UINT8 HmacVal1[METADATA_HMAC_SIZE]; + UINT8 HmacVal2[METADATA_HMAC_SIZE]; + + Hmac1 =3D NULL; + Hmac2 =3D HmacSha256New (); + if (Hmac2 =3D=3D NULL) { + ASSERT (Hmac2 !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + if (!HmacSha256SetKey (Hmac2, Global->MetaDataHmacKey, sizeof (Global->M= etaDataHmacKey))) { + ASSERT (FALSE); + Status =3D EFI_ABORTED; + goto Done; + } + + // + // Retrieve the RPMC counter value. + // + Status =3D RequestMonotonicCounter (RPMC_COUNTER_1, &Counter1); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + goto Done; + } + + Status =3D RequestMonotonicCounter (RPMC_COUNTER_2, &Counter2); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + goto Done; + } + + // + // Counter1 must be either equal to Counter2 or just one step ahead of C= ounter2. + // + if ((Counter1 > Counter2) && ((Counter1 - Counter2) > 1)) { + Status =3D EFI_COMPROMISED_DATA; + goto Done; + } + + VariableDig =3D VAR_DIG_PTR (Global->VariableDigests); + while (VariableDig !=3D NULL) { + // + // Only take valid protected variables into account. + // + if (VariableDig->Flags.Protected && VariableDig->Flags.Valid) { + if (!HmacSha256Update ( + Hmac2, + VAR_DIG_VALUE (VariableDig), + VariableDig->DigestSize + )) + { + ASSERT (FALSE); + Status =3D EFI_ABORTED; + goto Done; + } + } + + VariableDig =3D VAR_DIG_NEXT (VariableDig); + } + + // + // If two MetaDataHmacVariable were found, check which one is valid. We = might + // need two HMAC values to check against: one for Counter1, one for Coun= ter2. + // + if ( (Global->Unprotected[IndexHmacAdded] !=3D VAR_INDEX_INVALID) + && (Global->Unprotected[IndexHmacInDel] !=3D VAR_INDEX_INVALID) + && (Counter1 !=3D Counter2)) + { + // + // Might need to check Counter1. There must be something wrong in last= boot. + // + Hmac1 =3D HmacSha256New (); + if ((Hmac1 =3D=3D NULL) || !HmacSha256Duplicate (Hmac2, Hmac1)) { + ASSERT (FALSE); + Status =3D EFI_OUT_OF_RESOURCES; + goto Done; + } + + if ( !HmacSha256Update (Hmac1, &Counter1, sizeof (Counter1)) + || !HmacSha256Final (Hmac1, HmacVal1)) + { + ASSERT (FALSE); + Status =3D EFI_ABORTED; + goto Done; + } + } + + // + // Always check Counter2. + // + if ( !HmacSha256Update (Hmac2, &Counter2, sizeof (Counter2)) + || !HmacSha256Final (Hmac2, HmacVal2)) + { + ASSERT (FALSE); + Status =3D EFI_ABORTED; + goto Done; + } + + // + // When writing (update or add) a variable, there must be following ste= ps + // performed: + // + // A - Increment Counter1 + // B - Mark old MetaDataHmacVar as VAR_IN_DELETED_TRANSITION + // C - Calculate new HMAC value against Counter2+1, + // and force-add a new MetaDataHmacVar with state of VAR_ADDED + // D - Write the new protected variable + // E - Increment Counter2 + // F - Mark old MetaDataHmacVar as VAR_DELETED + // + Status =3D EFI_COMPROMISED_DATA; + if ( (Global->Unprotected[IndexHmacAdded] !=3D VAR_INDEX_INVALID) + && (Global->Unprotected[IndexHmacInDel] =3D=3D VAR_INDEX_INVALID)) + { + if (CompareMem ( + VAR_DIG_VALUE (VAR_DIG_PTR (Global->Unprotected[IndexHmacAdded])= ), + HmacVal2, + METADATA_HMAC_SIZE + ) =3D=3D 0) + { + // + // + // + A - Increment Counter1 + // B - Mark old MetaDataHmacVar as VAR_IN_DELETED_TRANSITION + // C - Calculate new HMAC value against Counter2+1, + // and force-add a new MetaDataHmacVar with state of VAR_ADDED + // D - Write the new protected variable + // E - Increment Counter2 + // F - Mark old MetaDataHmacVar as VAR_DELETED + // + // or, + // + // + A - Increment Counter1 + // + B - Mark old MetaDataHmacVar as VAR_IN_DELETED_TRANSITION + // + C - Calculate new HMAC value against Counter2+1, + // and force-add a new MetaDataHmacVar with state of VAR_ADDED + // + D - Write the new protected variable + // + E - Increment Counter2 + // + F - Mark old MetaDataHmacVar as VAR_DELETED + // + Status =3D EFI_SUCCESS; + + VAR_DIG_PTR (Global->Unprotected[IndexHmacAdded])->Flags.Valid =3D T= RUE; + } + } else if ( (Global->Unprotected[IndexHmacAdded] =3D=3D VAR_INDEX_INVAL= ID) + && (Global->Unprotected[IndexHmacInDel] !=3D VAR_INDEX_INVALID= )) + { + if (CompareMem ( + VAR_DIG_VALUE (VAR_DIG_PTR (Global->Unprotected[IndexHmacInDel])= ), + HmacVal2, + METADATA_HMAC_SIZE + ) =3D=3D 0) + { + // + // + A - Increment Counter1 + // + B - Mark old MetaDataHmacVar as VAR_IN_DELETED_TRANSITION + // C - Calculate new HMAC value against Counter2+1, + // and force-add a new MetaDataHmacVar with state of VAR_ADDED + // D - Write the new protected variable + // E - Increment Counter2 + // F - Mark old MetaDataHmacVar as VAR_DELETED + // + Status =3D EFI_SUCCESS; + + VAR_DIG_PTR (Global->Unprotected[IndexHmacInDel])->Flags.Valid =3D T= RUE; + } + } else if ( (Global->Unprotected[IndexHmacAdded] !=3D VAR_INDEX_INVALID) + && (Global->Unprotected[IndexHmacInDel] !=3D VAR_INDEX_INVALID= )) + { + if (Counter1 > Counter2) { + if (CompareMem ( + VAR_DIG_VALUE (VAR_DIG_PTR (Global->Unprotected[IndexHmacInDel= ])), + HmacVal2, + METADATA_HMAC_SIZE + ) =3D=3D 0) + { + // + // + A - Increment Counter1 + // + B - Mark old MetaDataHmacVar as VAR_IN_DELETED_TRANSITION + // + C - Calculate new HMAC value against Counter2+1, + // and force-add a new MetaDataHmacVar with state VAR_ADDED + // D - Write the new protected variable + // E - Increment Counter2 + // F - Mark old MetaDataHmacVar as VAR_DELETED + // + Status =3D EFI_SUCCESS; + + VAR_DIG_PTR (Global->Unprotected[IndexHmacAdded])->Flags.Valid =3D= FALSE; + VAR_DIG_PTR (Global->Unprotected[IndexHmacInDel])->Flags.Valid =3D= TRUE; + } else if (CompareMem ( + VAR_DIG_VALUE (VAR_DIG_PTR (Global->Unprotected[IndexHm= acAdded])), + HmacVal1, + METADATA_HMAC_SIZE + ) =3D=3D 0) + { + // + // + A - Increment Counter1 + // + B - Mark old MetaDataHmacVar as VAR_IN_DELETED_TRANSITION + // + C - Calculate new HMAC value against Counter2+1, + // and force-add a new MetaDataHmacVar with state of VAR_ADD= ED + // + D - Write the new protected variable + // E - Increment Counter2 + // F - Mark old MetaDataHmacVar as VAR_DELETED + // + Status =3D EFI_SUCCESS; + + VAR_DIG_PTR (Global->Unprotected[IndexHmacAdded])->Flags.Valid =3D= TRUE; + VAR_DIG_PTR (Global->Unprotected[IndexHmacInDel])->Flags.Valid =3D= FALSE; + } + } else { + if (CompareMem ( + VAR_DIG_VALUE (VAR_DIG_PTR (Global->Unprotected[IndexHmacAdded= ])), + HmacVal2, + METADATA_HMAC_SIZE + ) =3D=3D 0) + { + // + // + A - Increment Counter1 + // + B - Mark old MetaDataHmacVar as VAR_IN_DELETED_TRANSITION + // + C - Calculate new HMAC value against Counter2+1, + // and force-add a new MetaDataHmacVar with state of VAR_ADD= ED + // + D - Write the new protected variable + // + E - Increment Counter2 + // F - Mark old MetaDataHmacVar as VAR_DELETED + // + Status =3D EFI_SUCCESS; + + VAR_DIG_PTR (Global->Unprotected[IndexHmacAdded])->Flags.Valid =3D= TRUE; + VAR_DIG_PTR (Global->Unprotected[IndexHmacInDel])->Flags.Valid =3D= FALSE; + } + } + } else { + // + // There must be logic error or variable written to storage skipped + // the protected variable service, if code reaches here. + // + ASSERT (FALSE); + } + +Done: + if (Hmac1 !=3D NULL) { + HmacSha256Free (Hmac1); + } + + if (Hmac2 !=3D NULL) { + HmacSha256Free (Hmac2); + } + + return Status; +} + +/** + Collect variable digest information. + + This information is collected to be used to for integrity check. + + @param[in] Global Pointer to global configuration data. + @param[in] ContextIn Pointer to variable service context = needed by + protected variable. + @param[in, out] DigestBuffer Base address of digest of each varia= ble. + @param[out] DigestBufferSize Digest size of one variable if Diges= tBuffer is NULL. + Size of DigestBuffer if DigestBuffer= is NOT NULL. + @param[out] VariableNumber Number of valid variables. + + @retval EFI_SUCCESS Successfully retreived variable digest. + @retval EFI_INVALID_PARAMETER One ore more parameters are invalid. + @retval EFI_OUT_OF_RESOURCES Unable to allocate memory. + @retval EFI_BUFFER_TOO_SMALL The DigestBufferSize pass in is too sm= all. + +**/ +EFI_STATUS +CollectVariableDigestInfo ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn, + IN OUT VOID *DigestBuffer OPTIONAL, + OUT UINT32 *DigestBufferSize OPTIONAL, + OUT UINT32 *VariableNumber OPTIONAL + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_INFO VarInfo; + UINT32 VarNum; + UINT32 DigSize; + VARIABLE_DIGEST *VarDig; + EFI_TIME TimeStamp; + UNPROTECTED_VARIABLE_INDEX VarIndex; + + // + // This function might be called before Global is initialized. In that c= ase, + // Global must be NULL but not ContextIn. + // + if ((Global =3D=3D NULL) && (ContextIn =3D=3D NULL)) { + ASSERT (Global !=3D NULL || ContextIn !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + if ((Global =3D=3D NULL) && (DigestBuffer !=3D NULL)) { + ASSERT (Global !=3D NULL && DigestBuffer !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + if ( (DigestBuffer !=3D NULL) + && ((DigestBufferSize =3D=3D NULL) || (*DigestBufferSize =3D=3D 0))) + { + ASSERT ( + DigestBuffer !=3D NULL + && DigestBufferSize !=3D NULL && *DigestBufferSize > 0 + ); + return EFI_INVALID_PARAMETER; + } + + if ((Global !=3D NULL) && (ContextIn =3D=3D NULL)) { + ContextIn =3D GET_CNTX (Global); + } + + DigSize =3D 0; + VarNum =3D 0; + VarDig =3D NULL; + + ZeroMem (&VarInfo, sizeof (VarInfo)); + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; // To get the first variable. + + if ((Global !=3D NULL) && + (Global->VariableCache !=3D 0) && + (Global->VariableCacheSize > 0)) + { + // + // Use the variable cache to hold a copy of one variable. + // + VarInfo.Buffer =3D GET_BUFR (Global->VariableCache); + } else { + // + // Allocate a buffer to hold a copy of one variable + // + VarInfo.Buffer =3D AllocatePages (EFI_SIZE_TO_PAGES (MAX_VARIABLE_SIZE= )); + if (VarInfo.Buffer =3D=3D NULL) { + ASSERT (VarInfo.Buffer !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + } + + if ((DigestBuffer !=3D NULL) && (*DigestBufferSize > 0)) { + VarDig =3D DigestBuffer; + } + + while (TRUE) { + if (VarDig !=3D NULL) { + if (DigSize >=3D (*DigestBufferSize)) { + // + // Out of buffer. + // + break; + } + + VarInfo.Header.VendorGuid =3D &VarDig->VendorGuid; + VarInfo.Header.VariableName =3D VAR_DIG_NAME (VarDig); + VarInfo.Header.NameSize =3D (UINTN)DigestBuffer + (UINTN)*Digest= BufferSize + - (UINTN)VarInfo.Header.VariableName; + VarInfo.Header.TimeStamp =3D &TimeStamp; + VarInfo.Header.Data =3D NULL; + } else { + ZeroMem ((VOID *)&VarInfo.Header, sizeof (VarInfo.Header)); + } + + Status =3D ContextIn->GetNextVariableInfo (&VarInfo); + if (EFI_ERROR (Status)) { + break; + } + + // + // Skip deleted variables. + // + if ( (VarInfo.Header.State !=3D VAR_ADDED) + && (VarInfo.Header.State !=3D (VAR_ADDED & VAR_IN_DELETED_TRANSITIO= N))) + { + continue; + } + + if (Global !=3D NULL) { + Global->Flags.Auth &=3D VarInfo.Flags.Auth; + } + + VarNum +=3D 1; + DigSize +=3D (UINT32)(sizeof (VARIABLE_DIGEST) + + VarInfo.Header.NameSize + + METADATA_HMAC_SIZE); + if ((DigestBuffer !=3D NULL) && (DigSize > *DigestBufferSize)) { + ASSERT (DigSize <=3D *DigestBufferSize); + return EFI_BUFFER_TOO_SMALL; + } + + if (VarDig !=3D NULL) { + VarDig->Prev =3D 0; + VarDig->Next =3D 0; + VarDig->State =3D VarInfo.Header.State; + VarDig->Attributes =3D VarInfo.Header.Attributes; + VarDig->DataSize =3D (UINT32)VarInfo.Header.DataSize; + VarDig->NameSize =3D (UINT16)VarInfo.Header.NameSize; + VarDig->DigestSize =3D METADATA_HMAC_SIZE; + VarDig->StoreIndex =3D VarInfo.StoreIndex; + + if ((VarInfo.Buffer !=3D NULL) && ((UINTN)VarInfo.Buffer !=3D Global= ->VariableCache)) { + VarDig->CacheIndex =3D GET_ADRS (VarInfo.Buffer); + } else { + VarDig->CacheIndex =3D VAR_INDEX_INVALID; + } + + VarDig->Flags.Auth =3D VarInfo.Flags.Auth; + VarDig->Flags.Valid =3D TRUE; + + VarIndex =3D CheckKnownUnprotectedVariable (Global, &VarInfo); + if (VarIndex >=3D UnprotectedVarIndexMax) { + // + // Check information relating to encryption, if enabled. + // + VarDig->Flags.Encrypted =3D FALSE; + if ((VarInfo.Header.Data !=3D NULL) && (VarInfo.Header.DataSize > = 0)) { + VarInfo.CipherData =3D NULL; + VarInfo.CipherDataSize =3D 0; + VarInfo.PlainData =3D NULL; + VarInfo.PlainDataSize =3D 0; + Status =3D GetCipherDataInfo (&VarInfo); + if (!EFI_ERROR (Status)) { + // + // Discovered encrypted variable mark variable to be + // encrypted on the next SetVariable() operation + // + VarDig->Flags.Encrypted =3D PcdGetBool (PcdProtectedVariableCo= nfidentiality); + } else { + VarInfo.PlainData =3D VarInfo.Header.Data; + VarInfo.PlainDataSize =3D (UINT32)VarInfo.Header.DataSize; + VarInfo.CipherDataType =3D 0; + VarInfo.CipherHeaderSize =3D 0; + if (Status =3D=3D EFI_NOT_FOUND) { + // + // Found variable that is not encrypted mark variable to be + // encrypted on the next SetVariable() operation + // + VarDig->Flags.Encrypted =3D PcdGetBool (PcdProtectedVariable= Confidentiality); + } + } + } + + // + // Variable is protected + // + VarDig->Flags.Protected =3D PcdGetBool (PcdProtectedVariableIntegr= ity); + VarDig->PlainDataSize =3D VarInfo.PlainDataSize; + + // + // Calculate digest only for protected variable. + // + Status =3D GetVariableDigest (Global, &VarInfo, VAR_DIG_VALUE (Var= Dig)); + if (EFI_ERROR (Status)) { + return Status; + } + + // + // Keep the VarDig in an ordered list. + // + InsertVariableDigestNode (Global, VarDig, CompareVariableDigestInf= o); + } else { + VarDig->Flags.Protected =3D FALSE; + VarDig->Flags.Encrypted =3D FALSE; + VarDig->PlainDataSize =3D VarDig->DataSize; + + // + // Make use of VARIABLE_DIGEST->DigestValue to cache HMAC value fr= om + // MetaDataHmacVar, which doesn't need a digest value (only protec= ted + // variables need it for integrity check). + // + if ((VarIndex =3D=3D IndexHmacInDel) || (VarIndex =3D=3D IndexHmac= Added)) { + if (VarDig->State =3D=3D VAR_ADDED) { + VarIndex =3D IndexHmacAdded; + } else { + VarIndex =3D IndexHmacInDel; + } + } + + Global->Unprotected[VarIndex] =3D VAR_DIG_ADR (VarDig); + + if ((VarInfo.Header.Data !=3D NULL) && (VarDig->DataSize <=3D VarD= ig->DigestSize)) { + CopyMem (VAR_DIG_VALUE (VarDig), VarInfo.Header.Data, VarDig->Da= taSize); + } + + // + // Don't add the VarDig for MetaDataHmacVar into the linked list n= ow. + // Do it after the HMAC has been validated. + // + if ((VarIndex !=3D IndexHmacInDel) || (VarIndex !=3D IndexHmacAdde= d)) { + InsertVariableDigestNode (Global, VarDig, CompareVariableDigestI= nfo); + } + } + + VarDig =3D (VARIABLE_DIGEST *)((UINTN)VarDig + VAR_DIG_END (VarDig)); + } + } + + if (EFI_ERROR (Status) && (Status !=3D EFI_NOT_FOUND)) { + return Status; + } + + if (DigestBufferSize !=3D NULL) { + *DigestBufferSize =3D DigSize; + } + + if (VariableNumber !=3D NULL) { + *VariableNumber =3D VarNum; + } + + if ((Global =3D=3D NULL) && (VarInfo.Buffer !=3D NULL)) { + // + // Free Buffer + // + FreePages (VarInfo.Buffer, EFI_SIZE_TO_PAGES (MAX_VARIABLE_SIZE)); + } + + return EFI_SUCCESS; +} + +/** + + Perform for protected variable integrity check. + + If this initialization failed upon any error, the whole variable services + should not be used. A system reset might be needed to re-construct NV + variable storage to be the default state. + + @param[in] ContextIn Pointer to variable service context needed by + protected variable. + + @retval EFI_SUCCESS Protected variable services are ready. + @retval EFI_INVALID_PARAMETER If ContextIn =3D=3D NULL or something = missing or + mismatching in the content in ContextI= n. + @retval EFI_COMPROMISED_DATA If failed to check integrity of protec= ted variables. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +PerformVariableIntegrityCheck ( + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn + ) +{ + EFI_STATUS Status; + UINT32 HobDataSize; + UINT32 VarNumber; + VOID *Buffer; + PROTECTED_VARIABLE_GLOBAL *Global; + VARIABLE_DIGEST *DigBuffer; + UINT32 DigBufferSize; + UINT32 HmacMetaDataSize; + UINTN Index; + BOOLEAN PreviousKey; + EFI_HOB_GUID_TYPE *GuidHob; + + if ((ContextIn =3D=3D NULL) || (ContextIn->GetNextVariableInfo =3D=3D NU= LL)) { + ASSERT (ContextIn !=3D NULL); + ASSERT (ContextIn->GetNextVariableInfo !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + ContextIn->StructSize =3D (ContextIn->StructSize =3D=3D 0) ? sizeof (*Co= ntextIn) + : ContextIn->Struct= Size; + + // + // Enumerate all variables first to collect info for resource allocation. + // + DigBufferSize =3D 0; + Status =3D CollectVariableDigestInfo ( + NULL, + ContextIn, + NULL, + &DigBufferSize, + &VarNumber + ); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return EFI_VOLUME_CORRUPTED; + } + + // + // Allocate buffer for Global. Memory layout: + // + // Global + // Digest context + // Variable Digest List + // HmacMetaData + // + // To save precious NEM space of processor, variable cache will not be + // allocated at this point until physical memory is ready for use. + // + HmacMetaDataSize =3D (UINT32)GetMetaDataHmacVarSize (TRUE); + HobDataSize =3D sizeof (PROTECTED_VARIABLE_GLOBAL) + + (UINT32)DIGEST_CONTEXT_SIZE + + DigBufferSize + + HmacMetaDataSize; + Buffer =3D AllocateGlobalBuffer (HobDataSize, FALSE); + if (Buffer =3D=3D NULL) { + ASSERT (Buffer !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + Global =3D (PROTECTED_VARIABLE_GLOBAL *)((UINTN)Buffer); + Global->DigestContext =3D GET_ADRS (Global + 1); + + if (DigBufferSize > 0) { + DigBuffer =3D (VARIABLE_DIGEST *)(UINTN)(Global->DigestContext + DIGES= T_CONTEXT_SIZE); + ZeroMem (DigBuffer, DigBufferSize); + } else { + DigBuffer =3D NULL; + } + + // + // Keep a copy of ContextIn in HOB for later uses. + // + Global->GlobalSelf =3D GET_ADRS (Global); + Global->ContextIn =3D GET_ADRS (ContextIn); + + Global->StructVersion =3D PROTECTED_VARIABLE_CONTEXT_OUT_STRUCT_VERSION; + Global->StructSize =3D HobDataSize; + + Global->VariableNumber =3D VarNumber; + Global->VariableDigests =3D 0; + + Global->Flags.Auth =3D TRUE; + Global->Flags.WriteInit =3D FALSE; + Global->Flags.WriteReady =3D FALSE; + + GuidHob =3D GetFirstGuidHob (&gEfiAuthenticatedVariableGuid); + if (GuidHob =3D=3D NULL) { + GuidHob =3D GetFirstGuidHob (&gEfiVariableGuid); + if (GuidHob !=3D NULL) { + Global->Flags.Auth =3D FALSE; + } + } + + Global->Flags.RecoveryMode =3D (GuidHob !=3D NULL); + + // + // Before physical memory is ready, we cannot cache all variables in the= very + // limited NEM space. But we still need to reserve buffer to hold data of + // one variable as well as context for integrity check (HMAC calculation= ). + // + Global->VariableCacheSize =3D MAX_VARIABLE_SIZE; + Buffer =3D AllocatePages (EFI_SIZE_TO_PAGES (Global->= VariableCacheSize)); + if (Buffer =3D=3D NULL) { + ASSERT (Buffer !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + Global->VariableCache =3D GET_ADRS (Buffer); + Global->LastAccessedVariable =3D VAR_INDEX_INVALID; + + for (Index =3D 0; Index < UnprotectedVarIndexMax; ++Index) { + Global->Unprotected[Index] =3D VAR_INDEX_INVALID; + } + + // + // Re-enumerate all NV variables and build digest list. + // + Status =3D CollectVariableDigestInfo ( + Global, + ContextIn, + DigBuffer, + &DigBufferSize, + &VarNumber + ); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + ASSERT (Global->VariableNumber =3D=3D VarNumber); + + // + // Fix-up number of valid protected variables (i.e. exclude unprotected = ones) + // + for (Index =3D 0; VarNumber !=3D 0 && Index < UnprotectedVarIndexMax; ++= Index) { + if (Global->Unprotected[Index] !=3D VAR_INDEX_INVALID) { + --VarNumber; + } + } + + // + // Get root key and generate HMAC key. + // + PreviousKey =3D FALSE; + Status =3D GetVariableKey ((VOID *)Global->RootKey, sizeof (Global-= >RootKey)); + if (EFI_ERROR (Status)) { + ASSERT (FALSE); + Status =3D EFI_COMPROMISED_DATA; + } + + // + // Derive the MetaDataHmacKey from root key + // + if (!GenerateMetaDataHmacKey ( + Global->RootKey, + sizeof (Global->RootKey), + Global->MetaDataHmacKey, + sizeof (Global->MetaDataHmacKey) + )) + { + ASSERT (FALSE); + Status =3D EFI_COMPROMISED_DATA; + } + + // + // Check the integrity of all NV variables, if any. + // + if (( (Global->Unprotected[IndexHmacAdded] !=3D VAR_INDEX_INVALID) + || (Global->Unprotected[IndexHmacInDel] !=3D VAR_INDEX_INVALID))) + { + // + // Validate the HMAC stored in variable MetaDataHmacVar. + // + Status =3D VerifyMetaDataHmac (Global); + if (EFI_ERROR (Status)) { + // + // Try again with the previous root key if the latest key failed the= HMAC validation. + // + Status =3D GetVariableKey ((VOID *)Global->RootKey, sizeof (Global->= RootKey)); + if (!EFI_ERROR (Status)) { + // + // Derive the MetaDataHmacKey from previous root key + // + if (GenerateMetaDataHmacKey ( + Global->RootKey, + sizeof (Global->RootKey), + Global->MetaDataHmacKey, + sizeof (Global->MetaDataHmacKey) + ) =3D=3D TRUE) + { + // + // Validate the HMAC stored in variable MetaDataHmacVar. + // + Status =3D VerifyMetaDataHmac (Global); + if (!EFI_ERROR (Status)) { + Status =3D EFI_COMPROMISED_DATA; + } + } else { + Status =3D EFI_COMPROMISED_DATA; + } + } + } + } else if (Global->Flags.RecoveryMode) { + // + // Generate the first version of MetaDataHmacVar. + // + Status =3D SyncRpmcCounter (); + if (!EFI_ERROR (Status)) { + Status =3D RefreshVariableMetadataHmac (Global, NULL, NULL); + if (!EFI_ERROR (Status)) { + // + // MetaDataHmacVar is always calculated against Counter2+1. Updati= ng + // RPMCs to match it. + // + (VOID)IncrementMonotonicCounter (RPMC_COUNTER_1); + (VOID)IncrementMonotonicCounter (RPMC_COUNTER_2); + } + } + } else if ((VarNumber > 0) && !Global->Flags.RecoveryMode) { + // + // There's no MetaDataHmacVar found for protected variables. Suppose + // the variable storage is compromised. + // + Status =3D EFI_COMPROMISED_DATA; + } + + if (EFI_ERROR (Status)) { + // + // The integrity of variables have been compromised. The platform has = to do + // something to recover the variable store. But the boot should not go= on + // anyway this time. + // + DEBUG ((DEBUG_ERROR, "%a: %d Integrity check Status =3D %r\n", __FUNCT= ION__, __LINE__, Status)); + REPORT_STATUS_CODE ( + EFI_ERROR_CODE | EFI_ERROR_UNRECOVERED, + (PcdGet32 (PcdStatusCodeVariableIntegrity) | EFI_SW_PEI_PC_RECOVERY_= BEGIN) + ); + #if defined (EDKII_UNIT_TEST_FRAMEWORK_ENABLED) // Avoid test malfunction= ing. + return Status; + #else + ASSERT_EFI_ERROR (Status); + CpuDeadLoop (); + #endif + } + + // + // Everything's OK. + // + REPORT_STATUS_CODE ( + EFI_PROGRESS_CODE, + PcdGet32 (PcdStatusCodeVariableIntegrity) + ); + + if (GET_BUFR (Global->VariableCacheSize) !=3D NULL) { + // + // Free Buffer + // + FreePages (Buffer, EFI_SIZE_TO_PAGES (Global->VariableCacheSize)); + } + + // + // Keep the valid MetaDataHmacVar in the list. + // + for (Index =3D 0; Index < IndexPlatformVar; ++Index) { + if ( (Global->Unprotected[Index] !=3D VAR_INDEX_INVALID) + && VAR_DIG_PTR (Global->Unprotected[Index])->Flags.Valid) + { + InsertVariableDigestNode ( + Global, + VAR_DIG_PTR (Global->Unprotected[Index]), + NULL + ); + } + } + + // + // Restore the key to the latest one. + // + if (PreviousKey) { + Status =3D GetVariableKey ((VOID *)Global->RootKey, sizeof (Global->Ro= otKey)); + ASSERT_EFI_ERROR (Status); + + // + // Derive the MetaDataHmacKey from root key + // + if (!GenerateMetaDataHmacKey ( + Global->RootKey, + sizeof (Global->RootKey), + Global->MetaDataHmacKey, + sizeof (Global->MetaDataHmacKey) + )) + { + ASSERT (FALSE); + } + } + + // + // Make sure that the RPMC counter is in-sync. + // + Status =3D SyncRpmcCounter (); + + // + // Setup a hook to migrate data in Global once physical memory is ready. + // + Status =3D PeiServicesNotifyPpi (mPostMemNotifyList); + + return Status; +} + +/** + + Initialization for protected variable services. + + If the variable store is available than perform integrity check. + Otherwise, defer integrity check until variable store is available. + + + @param[in] ContextIn Pointer to variable service context needed by + protected variable. + + @retval EFI_SUCCESS Protected variable services are ready. + @retval EFI_INVALID_PARAMETER If ContextIn =3D=3D NULL or something = missing or + mismatching in the content in ContextI= n. + @retval EFI_COMPROMISED_DATA If failed to check integrity of protec= ted variables. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibInitialize ( + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn + ) +{ + EFI_STATUS Status; + VOID *ContextInHob; + PROTECTED_VARIABLE_INFO VarInfo; + + if ((ContextIn =3D=3D NULL) || (ContextIn->GetNextVariableInfo =3D=3D NU= LL)) { + ASSERT (ContextIn !=3D NULL); + ASSERT (ContextIn->GetNextVariableInfo !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + // + // Keep a copy of ContextIn in HOB for later uses. + // + ContextIn->StructSize =3D (ContextIn->StructSize =3D=3D 0) ? sizeof (*Co= ntextIn) + : ContextIn->Struct= Size; + ContextInHob =3D BuildGuidHob (&gEdkiiProtectedVariableContextGuid, Cont= extIn->StructSize); + CopyMem (ContextInHob, ContextIn, ContextIn->StructSize); + + // + // Discover if Variable Store Info Hob has been published by platform dr= iver. + // It contains information regards to HOB or NV Variable Store availabil= ity + // + ZeroMem ((VOID *)&VarInfo.Header, sizeof (VarInfo.Header)); + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + VarInfo.Buffer =3D AllocatePages (EFI_SIZE_TO_PAGES (MAX_VARIABLE_SI= ZE)); + if (VarInfo.Buffer =3D=3D NULL) { + ASSERT (VarInfo.Buffer !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + FreePages (VarInfo.Buffer, EFI_SIZE_TO_PAGES ((MAX_VARIABLE_SIZE))); + + Status =3D ContextIn->GetNextVariableInfo (&VarInfo); + if (EFI_ERROR (Status)) { + // + // Register for platform driver callback when Variable Store is availa= ble. + // + DEBUG ((DEBUG_INFO, "Variable Store is not available. Register for a i= ntegrity check callback\n")); + Status =3D PeiServicesNotifyPpi (mVariableStoreNotifyList); + return Status; + } + + // + // HOB Variable store is not available + // Assume NV Variable store is available instead + // Perform integrity check on NV Variable Store + // + DEBUG ((DEBUG_INFO, "NV Variable Store is available. Perform integrity c= heck\n")); + Status =3D PerformVariableIntegrityCheck (ContextInHob); + return Status; +} + +/** + + Prepare for variable update. + + (Not suppported in PEI phase.) + + @retval EFI_UNSUPPORTED Updating variable is not supported. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteInit ( + VOID + ) +{ + ASSERT (FALSE); + return EFI_UNSUPPORTED; +} + +/** + + Update a variable with protection provided by this library. + + Not supported in PEI phase. + + @param[in,out] CurrVariable Variable to be updated. It's NULL if + adding a new variable. + @param[in] CurrVariableInDel In-delete-transition copy of updatin= g variable. + @param[in,out] NewVariable Buffer of new variable data. + Buffer of "MetaDataHmacVar" and new + variable (encrypted). + @param[in,out] NewVariableSize Size of NewVariable. + Size of (encrypted) NewVariable and + "MetaDataHmacVar". + + @retval EFI_UNSUPPORTED Not support updating variable in PEI pha= se. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibUpdate ( + IN OUT VARIABLE_HEADER *CurrVariable, + IN VARIABLE_HEADER *CurrVariableInDel, + IN OUT VARIABLE_HEADER *NewVariable, + IN OUT UINTN *NewVariableSize + ) +{ + ASSERT (FALSE); + return EFI_UNSUPPORTED; +} + +/** + + Finalize a variable updating after it's written to NV variable storage + successfully. + + @param[in] NewVariable Buffer of new variables and MetaDataHm= acVar. + @param[in] VariableSize Size of buffer pointed by NewVariable. + @param[in] StoreIndex StoreIndex to NV variable storage from= where the new + variable and MetaDataHmacVar have been= written. + + @retval EFI_UNSUPPORTED Not support updating variable in PEI p= hase. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteFinal ( + IN VARIABLE_HEADER *NewVariable, + IN UINTN VariableSize, + IN UINT64 StoreIndex + ) +{ + ASSERT (FALSE); + return EFI_UNSUPPORTED; +} diff --git a/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmm.= c b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmm.c new file mode 100644 index 000000000000..8e964f4cd28d --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmm.c @@ -0,0 +1,209 @@ +/** @file + Implemention of ProtectedVariableLib for SMM variable services. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include +#include + +#include "Guid/SmmVariableCommon.h" + +#include "Library/MmServicesTableLib.h" +#include "Library/MemoryAllocationLib.h" + +#include "ProtectedVariableInternal.h" + +PROTECTED_VARIABLE_CONTEXT_IN mVariableContextIn =3D { + PROTECTED_VARIABLE_CONTEXT_IN_STRUCT_VERSION, + sizeof (PROTECTED_VARIABLE_CONTEXT_IN), + 0, + FromSmmModule, + NULL, + NULL, + NULL, + NULL, + NULL +}; + +PROTECTED_VARIABLE_GLOBAL mProtectedVariableGlobal =3D { + PROTECTED_VARIABLE_CONTEXT_OUT_STRUCT_VERSION, + sizeof (PROTECTED_VARIABLE_GLOBAL), + { 0 }, + { 0 }, + 0, + 0, + 0, + 0, + 0, + 0, + { 0, 0, 0 }, + 0, + 0, + { 0, 0, 0, 0} +}; + +/** + + Callback function to call variable write. + + @param[in] Protocol Not Used. + @param[in] Interface Not Used. + @param[in] Handle Not Used. + + @retval EFI_SUCCESS Protected variable write successful. + @retval others Protected variable write failed. + +**/ +EFI_STATUS +EFIAPI +VariableWriteProtocolCallback ( + IN CONST EFI_GUID *Protocol, + IN VOID *Interface, + IN EFI_HANDLE Handle + ) +{ + EFI_STATUS Status; + + Status =3D ProtectedVariableLibWriteInit (); + ASSERT_EFI_ERROR (Status); + + return EFI_SUCCESS; +} + +/** + + Initialization for protected variable services. + + If this initialization failed upon any error, the whole variable services + should not be used. A system reset might be needed to re-construct NV + variable storage to be the default state. + + @param[in] ContextIn Pointer to variable service context needed by + protected variable. + + @retval EFI_SUCCESS Protected variable services are ready. + @retval EFI_INVALID_PARAMETER If ContextIn =3D=3D NULL or something = missing or + mismatching in the content in ContextI= n. + @retval EFI_COMPROMISED_DATA If failed to check integrity of protec= ted variables. + @retval EFI_OUT_OF_RESOURCES Fail to allocate enough resource. + @retval EFI_UNSUPPORTED Unsupported to process protected varia= ble. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibInitialize ( + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_CONTEXT_IN *ProtectedVarContext; + PROTECTED_VARIABLE_GLOBAL *OldGlobal; + PROTECTED_VARIABLE_GLOBAL *NewGlobal; + VARIABLE_DIGEST *VarDig; + VARIABLE_DIGEST *NewVarDig; + EFI_PHYSICAL_ADDRESS NewCacheIndex; + UINTN VarSize; + UNPROTECTED_VARIABLE_INDEX Index; + + if ( (ContextIn =3D=3D NULL) + || (ContextIn->StructVersion !=3D PROTECTED_VARIABLE_CONTEXT_IN_STRUC= T_VERSION) + || (ContextIn->StructSize !=3D sizeof (PROTECTED_VARIABLE_CONTEXT_IN)) + || (ContextIn->GetVariableInfo =3D=3D NULL) + || (ContextIn->GetNextVariableInfo =3D=3D NULL) + || (ContextIn->UpdateVariableStore =3D=3D NULL) + || (ContextIn->UpdateVariable =3D=3D NULL)) + { + ASSERT (ContextIn !=3D NULL); + ASSERT (ContextIn->StructVersion =3D=3D PROTECTED_VARIABLE_CONTEXT_IN_= STRUCT_VERSION); + ASSERT (ContextIn->StructSize =3D=3D sizeof (PROTECTED_VARIABLE_CONTEX= T_IN)); + ASSERT (ContextIn->GetVariableInfo !=3D NULL); + ASSERT (ContextIn->GetNextVariableInfo !=3D NULL); + ASSERT (ContextIn->UpdateVariableStore !=3D NULL); + ASSERT (ContextIn->UpdateVariable !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + GetProtectedVariableGlobal (&NewGlobal); + ProtectedVarContext =3D GET_CNTX (NewGlobal); + CopyMem (ProtectedVarContext, ContextIn, sizeof (mVariableContextIn)); + ProtectedVarContext->VariableServiceUser =3D FromSmmModule; + + // + // Get root key and HMAC key from HOB created by PEI variable driver. + // + Status =3D GetProtectedVariableGlobalFromHob (&OldGlobal); + ASSERT_EFI_ERROR (Status); + + CopyMem ((VOID *)NewGlobal, (CONST VOID *)OldGlobal, sizeof (*OldGlobal)= ); + + // + // The keys must not be available outside SMM. + // + if (ProtectedVarContext->VariableServiceUser =3D=3D FromSmmModule) { + ZeroMem (OldGlobal->RootKey, sizeof (OldGlobal->RootKey)); + ZeroMem (OldGlobal->MetaDataHmacKey, sizeof (OldGlobal->MetaDataHmacKe= y)); + } + + NewGlobal->Flags.WriteInit =3D FALSE; + NewGlobal->Flags.WriteReady =3D FALSE; + NewGlobal->LastAccessedVariable =3D 0; + NewGlobal->VariableCache =3D GET_ADRS (AllocateZeroPool (MAX_VARI= ABLE_SIZE)); + NewGlobal->DigestContext =3D GET_ADRS (AllocateZeroPool (DIGEST_C= ONTEXT_SIZE)); + if (NewGlobal->DigestContext =3D=3D 0) { + return EFI_OUT_OF_RESOURCES; + } + + // + // Copy over variable from HOB to SMM memory + // + NewGlobal->VariableDigests =3D 0; + VarDig =3D VAR_DIG_PTR (OldGlobal->VariableDigests); + while (VarDig !=3D NULL) { + // + // Allocate new Var Digest in SMM memory + // + NewVarDig =3D (VARIABLE_DIGEST *)AllocateZeroPool ( + sizeof (VARIABLE_DIGEST) + VarDig->Na= meSize + METADATA_HMAC_SIZE + ); + if (NewVarDig =3D=3D NULL) { + ASSERT (NewVarDig !=3D NULL); + return EFI_OUT_OF_RESOURCES; + } + + CopyMem (NewVarDig, VarDig, sizeof (VARIABLE_DIGEST)); + NewVarDig->Prev =3D 0; + NewVarDig->Next =3D 0; + + CopyMem (VAR_DIG_NAME (NewVarDig), VAR_DIG_NAME (VarDig), VarDig->Name= Size); + CopyMem (VAR_DIG_VALUE (NewVarDig), VAR_DIG_VALUE (VarDig), VarDig->Di= gestSize); + + VarSize =3D VARIABLE_HEADER_SIZE (NewGlobal->Flags.Auth); + VarSize +=3D VarDig->NameSize + GET_PAD_SIZE (VarDig->NameSize); + VarSize +=3D VarDig->DataSize + GET_PAD_SIZE (VarDig->DataSize); + VarSize =3D HEADER_ALIGN (VarSize); + + NewCacheIndex =3D GET_ADRS (AllocateZeroPool (VarSize)); + if (GET_BUFR (NewCacheIndex) =3D=3D NULL) { + return EFI_OUT_OF_RESOURCES; + } + + CopyMem (GET_BUFR (NewCacheIndex), GET_BUFR (VarDig->CacheIndex), VarS= ize); + NewVarDig->CacheIndex =3D NewCacheIndex; + NewVarDig->Flags.Freeable =3D TRUE; + + for (Index =3D 0; Index < UnprotectedVarIndexMax; ++Index) { + if (OldGlobal->Unprotected[Index] =3D=3D VAR_DIG_ADR (VarDig)) { + NewGlobal->Unprotected[Index] =3D VAR_DIG_ADR (NewVarDig); + } + } + + InsertVariableDigestNode (NewGlobal, NewVarDig, NULL); + + VarDig =3D VAR_DIG_NEXT (VarDig); + } + + return Status; +} diff --git a/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmmD= xeCommon.c b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmmD= xeCommon.c new file mode 100644 index 000000000000..92ba7cb12763 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmmDxeCommo= n.c @@ -0,0 +1,975 @@ +/** @file + Implemention of ProtectedVariableLib for SMM variable services. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include +#include + +#include "Guid/SmmVariableCommon.h" + +#include "Library/MmServicesTableLib.h" +#include "Library/MemoryAllocationLib.h" +#include + +#include "ProtectedVariableInternal.h" + +/** + + Get context and/or global data structure used to process protected varia= ble. + + @param[out] Global Pointer to global configuration data. + + @retval EFI_SUCCESS Get requested structure successfully. + +**/ +EFI_STATUS +EFIAPI +GetProtectedVariableGlobal ( + OUT PROTECTED_VARIABLE_GLOBAL **Global OPTIONAL + ) +{ + if (Global !=3D NULL) { + mProtectedVariableGlobal.ContextIn =3D GET_ADRS (&mVariableContextIn); + *Global =3D &mProtectedVariableGlobal; + } + + return EFI_SUCCESS; +} + +/** + Encrypt given variable data and generate new HMAC value against it. + + @param[in] Global Pointer to global configuration data. + @param[in,out] NewVarInfo Pointer to buffer of new variable data. + @param[in,out] NewVarDig Pointer to buffer of new variable digest. + + @retval EFI_SUCCESS No error occurred during the encryption an= d HMC calculation. + @retval EFI_ABORTED Failed to do HMC calculation. + @return EFI_OUT_OF_RESOURCES Not enough resource to calculate HMC value. + @return EFI_NOT_FOUND The MetaDataHmacVar was not found in stora= ge. + +**/ +STATIC +EFI_STATUS +UpdateVariableInternal ( + IN PROTECTED_VARIABLE_GLOBAL *Global, + IN OUT PROTECTED_VARIABLE_INFO *NewVarInfo, + IN OUT VARIABLE_DIGEST *NewVarDig + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_INFO CachedVarInfo; + VOID *Buffer; + UINTN VarSize; + + if ((NewVarInfo =3D=3D NULL) || (NewVarDig =3D=3D NULL)) { + return EFI_INVALID_PARAMETER; + } + + // + // If Add or update variable, encrypt new data first. + // + if (NewVarInfo->Buffer !=3D NULL) { + Status =3D EFI_UNSUPPORTED; + + if (NewVarDig->Flags.Encrypted) { + NewVarInfo->PlainData =3D NULL; + NewVarInfo->PlainDataSize =3D 0; + NewVarInfo->CipherData =3D NULL; + NewVarInfo->CipherDataSize =3D 0; + NewVarInfo->Key =3D Global->RootKey; + NewVarInfo->KeySize =3D sizeof (Global->RootKey); + NewVarInfo->Header.Attributes &=3D (~EFI_VARIABLE_APPEND_WRITE); + Status =3D EncryptVariable (NewVarInfo); + if (!EFI_ERROR (Status)) { + // + // Update new data size in variable header. + // + SET_VARIABLE_DATA_SIZE (NewVarInfo, NewVarInfo->CipherDataSize); + } else if (Status !=3D EFI_UNSUPPORTED) { + ASSERT (FALSE); + return Status; + } + } + + if (Status =3D=3D EFI_UNSUPPORTED) { + NewVarInfo->CipherData =3D NewVarInfo->Header.Data; + NewVarInfo->CipherDataSize =3D (UINT32)NewVarInfo->Header.DataSize; + NewVarInfo->PlainData =3D NULL; + NewVarInfo->PlainDataSize =3D 0; + } + } else { + NewVarInfo->CipherData =3D NULL; + NewVarInfo->CipherDataSize =3D 0; + NewVarInfo->PlainData =3D NULL; + NewVarInfo->PlainDataSize =3D 0; + } + + if (NewVarDig->CacheIndex !=3D 0) { + // + // Update the cached copy. + // + ZeroMem ((VOID *)&CachedVarInfo, sizeof (CachedVarInfo)); + CachedVarInfo.Buffer =3D GET_BUFR (NewVarDig->CacheIndex); + CachedVarInfo.StoreIndex =3D VAR_INDEX_INVALID; + CachedVarInfo.Flags.Auth =3D NewVarInfo->Flags.Auth; + + Status =3D GET_CNTX (Global)->GetVariableInfo (&CachedVarInfo); + ASSERT_EFI_ERROR (Status); + + if ((CachedVarInfo.Header.DataSize !=3D 0) && (NewVarInfo->CipherDataS= ize > CachedVarInfo.Header.DataSize)) { + // + // allocate new VarInfo buffer that is of greater CipherDataSize + // + VarSize =3D VARIABLE_HEADER_SIZE (NewVarDig->Flags.Auth); + VarSize +=3D NewVarInfo->Header.NameSize + GET_PAD_SIZE (NewVarInfo-= >Header.NameSize); + VarSize +=3D NewVarInfo->CipherDataSize + GET_PAD_SIZE (NewVarInfo->= CipherDataSize); + VarSize =3D HEADER_ALIGN (VarSize); + Buffer =3D AllocateZeroPool (VarSize); + if (Buffer !=3D NULL) { + VarSize =3D VARIABLE_HEADER_SIZE (NewVarDig->Flags.Auth); + VarSize +=3D CachedVarInfo.Header.NameSize + GET_PAD_SIZE (CachedV= arInfo.Header.NameSize); + VarSize +=3D CachedVarInfo.Header.DataSize + GET_PAD_SIZE (CachedV= arInfo.DataSize); + VarSize =3D HEADER_ALIGN (VarSize); + + CopyMem ( + Buffer, + CachedVarInfo.Buffer, + VarSize + ); + + FreePool (CachedVarInfo.Buffer); + + // + // Update the cached copy. + // + ZeroMem ((VOID *)&CachedVarInfo, sizeof (CachedVarInfo)); + CachedVarInfo.Buffer =3D Buffer; + CachedVarInfo.StoreIndex =3D VAR_INDEX_INVALID; + CachedVarInfo.Flags.Auth =3D NewVarInfo->Flags.Auth; + Status =3D GET_CNTX (Global)->GetVariableInfo (&= CachedVarInfo); + ASSERT_EFI_ERROR (Status); + NewVarDig->CacheIndex =3D (EFI_PHYSICAL_ADDRESS)(UINTN)Buffer; + } + } + + CopyMem ( + CachedVarInfo.Header.Data, + NewVarInfo->CipherData, + NewVarInfo->CipherDataSize + ); + SET_VARIABLE_DATA_SIZE (&CachedVarInfo, NewVarInfo->CipherDataSize); + + NewVarDig->State =3D VAR_ADDED; + NewVarDig->DataSize =3D NewVarInfo->CipherDataSize; + + if (NewVarInfo->PlainDataSize > 0) { + NewVarDig->PlainDataSize =3D NewVarInfo->PlainDataSize; + } else { + NewVarDig->PlainDataSize =3D NewVarDig->DataSize; + } + + // + // (Re-)Calculate the hash of the variable. + // + if (NewVarDig->Flags.Protected) { + GetVariableDigest (Global, NewVarInfo, VAR_DIG_VALUE (NewVarDig)); + } + } + + return EFI_SUCCESS; +} + +/** + + Fix state of MetaDataHmacVar on NV variable storage, if there's failure = at + last boot during updating variable. + + This must be done before the first writing of variable in current boot, + including storage reclaim. + + @retval EFI_UNSUPPORTED Updating NV variable storage is not suppo= rted. + @retval EFI_OUT_OF_RESOURCES Not enough resource to complete the opera= tion. + @retval EFI_SUCCESS Variable store was successfully updated. + +**/ +EFI_STATUS +FixupHmacVariable ( + VOID + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_INFO HmacVarInfo; + PROTECTED_VARIABLE_GLOBAL *Global; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + VARIABLE_DIGEST *VarDig; + UINTN Index; + + Status =3D GetProtectedVariableGlobal (&Global); + ASSERT_EFI_ERROR (Status); + + if (Global->Flags.WriteReady) { + return EFI_SUCCESS; + } + + ContextIn =3D GET_CNTX (Global); + + // + // Delete invalid MetaDataHmacVar. + // + for (Index =3D 0; Index <=3D IndexHmacAdded; ++Index) { + if (Global->Unprotected[Index] =3D=3D VAR_INDEX_INVALID) { + continue; + } + + VarDig =3D VAR_DIG_PTR (Global->Unprotected[Index]); + if (VarDig->Flags.Valid) { + continue; + } + + ZeroMem ((VOID *)&HmacVarInfo, sizeof (HmacVarInfo)); + HmacVarInfo.StoreIndex =3D VarDig->StoreIndex; + HmacVarInfo.Flags.Auth =3D VarDig->Flags.Auth; + + Status =3D ContextIn->GetVariableInfo (&HmacVarInfo); + if (!EFI_ERROR (Status) && (HmacVarInfo.Buffer !=3D NULL)) { + HmacVarInfo.Buffer->State &=3D VAR_DELETED; + Status =3D ContextIn->UpdateVariableStore ( + &HmacVarInfo, + OFFSET_OF (VARIABLE_HEADER= , State), + sizeof (HmacVarInfo.Buffer= ->State), + &HmacVarInfo.Buffer->State + ); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + } + + // + // Release the resource and update related states. + // + VarDig->State &=3D VAR_DELETED; + RemoveVariableDigestNode (Global, VarDig, FALSE); + Global->Unprotected[Index] =3D VAR_INDEX_INVALID; + } + + // + // There should be no MetaDataHmacVar if in variable storage recovery mo= de. + // + if (Global->Flags.RecoveryMode) { + ASSERT (Global->Unprotected[IndexHmacAdded] =3D=3D VAR_INDEX_INVALID); + ASSERT (Global->Unprotected[IndexHmacInDel] =3D=3D VAR_INDEX_INVALID); + } + + Global->Flags.WriteReady =3D TRUE; + + return EFI_SUCCESS; +} + +/** + + Prepare for variable update. + + This is needed only once during current boot to mitigate replay attack. = Its + major job is to advance RPMC (Replay Protected Monotonic Counter). + + @retval EFI_SUCCESS Variable is ready to update hereafter. + @retval EFI_UNSUPPORTED Updating variable is not supported. + @retval EFI_DEVICE_ERROR Error in advancing RPMC. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteInit ( + VOID + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_GLOBAL *Global; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + PROTECTED_VARIABLE_INFO VarInfo; + + (VOID)GetProtectedVariableGlobal (&Global); + ContextIn =3D GET_CNTX (Global); + + // + // HmacVarInfo should be here + // + if (Global->Flags.RecoveryMode) { + // + // Flush default variables to variable storage if in variable recovery= mode. + // + Status =3D ContextIn->UpdateVariableStore (NULL, 0, (UINT32)-1, NULL); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + } else { + // + // RPMC1 is going to be one step ahead of RPMC2 here, in order to + // refresh the MetaDataHmacVar in each boot before writing any other + // variables. + // + Status =3D IncrementMonotonicCounter (RPMC_COUNTER_1); + ASSERT_EFI_ERROR (Status); + + ContextIn =3D GET_CNTX (Global); + + // + // Fix any wrong MetaDataHmacVar information before adding new one. + // + Status =3D FixupHmacVariable (); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + if (!Global->Flags.WriteReady) { + return EFI_NOT_READY; + } + + // + // Refresh MetaDataHmacVar with RPMC2 by 1 in each boot before any var= iable + // update, by deleting (attr =3D=3D 0 && datasize =3D=3D 0) the old o= ne. + // + ZeroMem (&VarInfo, sizeof (PROTECTED_VARIABLE_INFO)); // Zero attr & = datasize + + VarInfo.Flags.Auth =3D Global->Flags.Auth; + VarInfo.Header.VariableName =3D METADATA_HMAC_VARIABLE_NAME; + VarInfo.Header.NameSize =3D METADATA_HMAC_VARIABLE_NAME_SIZE; + VarInfo.Header.VendorGuid =3D &METADATA_HMAC_VARIABLE_GUID; + + // + // Pretend to delete MetaDataHmacVar. + // + Status =3D ContextIn->UpdateVariable (&VarInfo.Header); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + } + + mProtectedVariableGlobal.Flags.WriteInit =3D TRUE; + + return EFI_SUCCESS; +} + +/** + + Update a variable with protection provided by this library. + + If variable encryption is employed, the new variable data will be encryp= ted + before being written to NV variable storage. + + A special variable, called "MetaDataHmacVar", will always be updated alo= ng + with variable being updated to reflect the changes (HMAC value) of all + protected valid variables. The only exceptions, currently, is variable + variable "VarErrorLog". + + The buffer passed by NewVariable must be double of maximum variable size, + which allows to pass the "MetaDataHmacVar" back to caller along with enc= rypted + new variable data, if any. This can make sure the new variable data and + "MetaDataHmacVar" can be written at almost the same time to reduce the c= hance + of compromising the integrity. + + If *NewVariableSize is zero, it means to delete variable passed by CurrV= ariable + and/or CurrVariableInDel. "MetaDataHmacVar" will be updated as well in s= uch + case because of less variables in storage. NewVariable should be always = passed + in to convey new "MetaDataHmacVar" back. + + @param[in,out] CurrVariable Variable to be updated. It's NULL if + adding a new variable. + @param[in] CurrVariableInDel In-delete-transition copy of updatin= g variable. + @param[in,out] NewVariable Buffer of new variable data. + Buffer of "MetaDataHmacVar" and new + variable (encrypted). + @param[in,out] NewVariableSize Size of NewVariable. + Size of (encrypted) NewVariable and + "MetaDataHmacVar". + + @retval EFI_SUCCESS The variable is updated with protection = successfully. + @retval EFI_INVALID_PARAMETER NewVariable is NULL. + @retval EFI_NOT_FOUND Information missing to finish the operat= ion. + @retval EFI_ABORTED Failed to encrypt variable or calculate = HMAC. + @retval EFI_NOT_READY The RPMC device is not yet initialized. + @retval EFI_DEVICE_ERROR The RPMC device has error in updating. + @retval EFI_ACCESS_DENIED The given variable is not allowed to upd= ate. + Currently this only happens on updating + "MetaDataHmacVar" from code outside of t= his + library. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibUpdate ( + IN OUT VARIABLE_HEADER *CurrVariable, + IN VARIABLE_HEADER *CurrVariableInDel, + IN OUT VARIABLE_HEADER *NewVariable, + IN OUT UINTN *NewVariableSize + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + PROTECTED_VARIABLE_GLOBAL *Global; + PROTECTED_VARIABLE_INFO VarInfo; + VARIABLE_DIGEST *VarDig; + VARIABLE_DIGEST *CurrVarDig; + VARIABLE_DIGEST *NewVarDig; + PROTECTED_VARIABLE_INFO NewVarInfo; + PROTECTED_VARIABLE_INFO NewHmacVarInfo; + UINTN VarSize; + UINT64 UnprotectedVarIndex; + + // + // Advance RPMC + // + Status =3D IncrementMonotonicCounter (RPMC_COUNTER_1); + ASSERT_EFI_ERROR (Status); + + // + // Buffer for new variable is always needed, even this function is calle= d to + // delete an existing one, because we need to pass the MetaDataHmacVar b= ack + // which will be updated upon each variable addition or deletion. + // + if ((NewVariable =3D=3D NULL) || (NewVariableSize =3D=3D NULL)) { + ASSERT (NewVariable !=3D NULL); + ASSERT (NewVariableSize !=3D NULL); + return EFI_INVALID_PARAMETER; + } + + Status =3D GetProtectedVariableGlobal (&Global); + ASSERT_EFI_ERROR (Status); + ContextIn =3D GET_CNTX (Global); + + if (!Global->Flags.WriteReady && !Global->Flags.WriteInit) { + return EFI_NOT_READY; + } + + VarSize =3D 0; + CurrVarDig =3D NULL; + NewVarDig =3D NULL; + UnprotectedVarIndex =3D VAR_INDEX_INVALID; + + // + // Check existing copy of the same variable. + // + if (CurrVariable !=3D NULL) { + // + // Find local cached copy, if possible. + // + ZeroMem (&VarInfo, sizeof (VarInfo)); + VarInfo.Buffer =3D CurrVariable; + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + VarInfo.Flags.Auth =3D Global->Flags.Auth; + + Status =3D ContextIn->GetVariableInfo (&VarInfo); // Retrieve the name= /guid + ASSERT_EFI_ERROR (Status); + + UnprotectedVarIndex =3D CheckKnownUnprotectedVariable (Global, &VarInf= o); + if (UnprotectedVarIndex < UnprotectedVarIndexMax) { + CurrVarDig =3D VAR_DIG_PTR (Global->Unprotected[UnprotectedVarIndex]= ); + } else { + CurrVarDig =3D FindVariableInternal (Global, &VarInfo, FALSE); + } + + ASSERT (CurrVarDig !=3D NULL); + CurrVarDig->State &=3D VAR_DELETED; + } + + // + // The old copy of the variable might haven't been deleted completely. + // + if (CurrVariableInDel !=3D NULL) { + // + // Find local cached copy, if possible. + // + ZeroMem (&VarInfo, sizeof (VarInfo)); + VarInfo.Buffer =3D CurrVariableInDel; + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + VarInfo.Flags.Auth =3D Global->Flags.Auth; + + Status =3D ContextIn->GetVariableInfo (&VarInfo); // Retrieve the name= /guid + ASSERT_EFI_ERROR (Status); + + if (UnprotectedVarIndex =3D=3D VAR_INDEX_INVALID) { + UnprotectedVarIndex =3D CheckKnownUnprotectedVariable (Global, &VarI= nfo); + } + + if (UnprotectedVarIndex < UnprotectedVarIndexMax) { + VarDig =3D VAR_DIG_PTR (Global->Unprotected[UnprotectedVarIndex]); + } else { + VarDig =3D FindVariableInternal (Global, &VarInfo, FALSE); + } + + if ((VarDig !=3D NULL) && (VAR_DIG_ADR (VarDig) !=3D VAR_INDEX_INVALID= )) { + VarDig->State &=3D VAR_DELETED; + + // + // Just need one node for the same variable. So remove the one + // in-del-transition. + // + if ((CurrVarDig !=3D NULL) && (VarDig !=3D CurrVarDig)) { + RemoveVariableDigestNode (Global, VarDig, TRUE); + } else { + CurrVarDig =3D VarDig; // Reuse the one in-del-transition. + } + } + } + + // + // New data of the variable or new variable to be added. + // + if (NewVariable !=3D NULL) { + // + // Completely new variable? + // + if (UnprotectedVarIndex =3D=3D VAR_INDEX_INVALID) { + ZeroMem (&VarInfo, sizeof (VarInfo)); + VarInfo.Buffer =3D NewVariable; + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + VarInfo.Flags.Auth =3D Global->Flags.Auth; + + Status =3D ContextIn->GetVariableInfo (&VarInfo); // Retrieve the na= me/guid + ASSERT_EFI_ERROR (Status); + + UnprotectedVarIndex =3D CheckKnownUnprotectedVariable (Global, &VarI= nfo); + } + } + + // + // Reserve space for MetaDataHmacVar (before the new variable so + // that it can be written first). + // + ZeroMem (&NewVarInfo, sizeof (NewVarInfo)); + ZeroMem (&NewHmacVarInfo, sizeof (NewHmacVarInfo)); + + // + // Put the MetaDataHmacVar at the beginning of buffer. + // + NewHmacVarInfo.Buffer =3D NewVariable; + + if (*NewVariableSize =3D=3D 0) { + // + // Delete variable (but not MetaDataHmacVar) + // + if ( (UnprotectedVarIndex !=3D IndexHmacAdded) + && (UnprotectedVarIndex !=3D IndexHmacInDel)) + { + RemoveVariableDigestNode (Global, CurrVarDig, TRUE); + } + + NewVarInfo.Buffer =3D NULL; + } else if (UnprotectedVarIndex >=3D IndexPlatformVar) { + // + // Add/update variable. Move new variable data to be after MetaDataHma= cVar. + // + // TRICK: New MetaDataHmacVar will be put at the beginning of buffer + // for new variable so that they can be written into non-volati= le + // variable storage in one call. This can avoid writing one var= iable + // (NewHmacVarInfo) in the middle of writing another variable + // (NewVarInfo), which will need two calls and introduce extra + // complexities (from temp variable buffer reservation to varia= ble + // space reclaim, etc.) in current implementation of variable + // services. The caller must make sure there's enough space in + // variable buffer (i.e. at least 2 * MaxVariableSize). + // + NewVarInfo.Buffer =3D (VARIABLE_HEADER *)((UINTN)NewVariable + + GetMetaDataHmacVarSize (Glob= al->Flags.Auth)); + CopyMem ((VOID *)NewVarInfo.Buffer, (VOID *)NewVariable, *NewVariableS= ize); + + NewVarInfo.StoreIndex =3D VAR_INDEX_INVALID; // Skip offset calculat= ion (it's new one) + NewVarInfo.Flags.Auth =3D Global->Flags.Auth; + + Status =3D ContextIn->GetVariableInfo (&NewVarInfo); + ASSERT_EFI_ERROR (Status); + + if (CurrVarDig !=3D NULL) { + // + // Update existing variable. Re-use the node. + // + NewVarDig =3D CurrVarDig; + } else { + // + // Add new variable. + // + NewVarDig =3D CreateVariableDigestNode ( + NewVarInfo.Header.VariableName, + NewVarInfo.Header.VendorGuid, + (UINT16)NewVarInfo.Header.NameSize, + (UINT32)NewVarInfo.Header.DataSize, + NewVarInfo.Flags.Auth, + Global + ); + if (NewVarDig =3D=3D NULL) { + return EFI_OUT_OF_RESOURCES; + } + + NewVarDig->Attributes =3D NewVarInfo.Header.Attributes; + if (UnprotectedVarIndex < UnprotectedVarIndexMax) { + NewVarDig->Flags.Protected =3D FALSE; + NewVarDig->Flags.Encrypted =3D FALSE; + Global->Unprotected[UnprotectedVarIndex] =3D VAR_DIG_ADR (NewVarDi= g); + } + + // + // copy new variable to CacheIndex + // + VarSize =3D VARIABLE_HEADER_SIZE (NewVarInfo.Flags.Auth); + VarSize +=3D NewVarInfo.Header.NameSize + GET_PAD_SIZE (NewVarInfo.H= eader.NameSize); + VarSize +=3D NewVarInfo.Header.DataSize + GET_PAD_SIZE (NewVarInfo.H= eader.DataSize); + VarSize =3D HEADER_ALIGN (VarSize); + CopyMem (GET_BUFR (NewVarDig->CacheIndex), GET_BUFR (NewVarInfo.Buff= er), VarSize); + InsertVariableDigestNode (Global, NewVarDig, NULL); + } + } + + if ( (UnprotectedVarIndex =3D=3D IndexHmacAdded) + || (UnprotectedVarIndex =3D=3D IndexHmacInDel)) + { + // + // MetaDataHmacVar should be managed only by this library. It's not + // supposed to be updated by external users of variable service. The o= nly + // exception is that deleting it (not really delete but refresh the HM= AC + // value against RPMC+1) is allowed before WriteInit, as a way to alwa= ys + // increment RPMC once in current boot before any variable updates. + // + if ((NewVarInfo.Buffer !=3D NULL) || Global->Flags.WriteInit) { + return EFI_ACCESS_DENIED; + } + } else { + // + // Do encryption, if enabled. + // + if ((NewVarDig !=3D NULL) && (NewVarInfo.Buffer !=3D NULL)) { + Status =3D UpdateVariableInternal (Global, &NewVarInfo, NewVarDig); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + } + } + + // + // Refresh MetaDataHmacVar. + // + Status =3D RefreshVariableMetadataHmac (Global, NULL, &NewHmacVarInfo); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + + // + // Return size for both MetaDataHmacVar and added/updated one. + // + VarSize =3D VARIABLE_SIZE (&NewHmacVarInfo); + *NewVariableSize =3D HEADER_ALIGN (VarSize); + if (NewVarInfo.Buffer !=3D NULL) { + VarSize =3D VARIABLE_SIZE (&NewVarInfo); + VarSize =3D HEADER_ALIGN (VarSize); + + if (VarSize > GET_CNTX (Global)->MaxVariableSize) { + return EFI_BAD_BUFFER_SIZE; + } + + *NewVariableSize +=3D VarSize; + } + + return EFI_SUCCESS; +} + +/** + + Finalize a variable updating after it's written to NV variable storage + successfully. + + This usually includes works like increasing RPMC, synchronizing local ca= che, + updating new position of "MetaDataHmacVar", deleting old copy of "MetaDa= taHmacVar" + completely, etc. + + @param[in] NewVariable Buffer of new variables and MetaDataHm= acVar. + @param[in] VariableSize Size of buffer pointed by NewVariable. + @param[in] StoreIndex StoreIndex to NV variable storage from= where the new + variable and MetaDataHmacVar have been= written. + + @retval EFI_SUCCESS No problem in winding up the variable write = operation. + @retval Others Failed to updating state of old copy of upda= ted + variable, or failed to increase RPMC, etc. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteFinal ( + IN VARIABLE_HEADER *NewVariable, + IN UINTN VariableSize, + IN UINT64 StoreIndex + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_INFO VarInfo; + PROTECTED_VARIABLE_CONTEXT_IN *ContextIn; + PROTECTED_VARIABLE_GLOBAL *Global; + UNPROTECTED_VARIABLE_INDEX Index; + VARIABLE_DIGEST *VarDig; + VOID *Buffer; + UINTN VarSize; + UINTN NewVarSize; + + Status =3D GetProtectedVariableGlobal (&Global); + ASSERT_EFI_ERROR (Status); + ContextIn =3D GET_CNTX (Global); + + ZeroMem ((VOID *)&VarInfo, sizeof (VarInfo)); + VarInfo.Buffer =3D NewVariable; + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + VarInfo.Flags.Auth =3D Global->Flags.Auth; + + Status =3D ContextIn->GetVariableInfo (&VarInfo); + ASSERT_EFI_ERROR (Status); + + Index =3D CheckKnownUnprotectedVariable (Global, &VarInfo); + if (Index < UnprotectedVarIndexMax) { + VarDig =3D VAR_DIG_PTR (Global->Unprotected[Index]); + } else { + VarDig =3D FindVariableInternal (Global, &VarInfo, FALSE); + } + + if (Index =3D=3D IndexHmacAdded) { + // + // Advance the RPMC to let it match new MetaDataHmacVar. + // + Status =3D IncrementMonotonicCounter (RPMC_COUNTER_2); + ASSERT_EFI_ERROR (Status); + + if ((VarDig->StoreIndex !=3D VAR_INDEX_INVALID) && (VarDig->State !=3D= VAR_ADDED)) { + ZeroMem ((VOID *)&VarInfo, sizeof (VarInfo)); + VarInfo.StoreIndex =3D VarDig->StoreIndex; // Still point to old co= py + VarInfo.Flags.Auth =3D Global->Flags.Auth; + + // + // Delete variable completely. + // + Status =3D ContextIn->GetVariableInfo (&VarInfo); + ASSERT_EFI_ERROR (Status); + + if ( (VarInfo.Buffer->State =3D=3D VAR_ADDED) + || (VarInfo.Buffer->State =3D=3D (VAR_ADDED & VAR_IN_DELETED_TRAN= SITION))) + { + VarInfo.Buffer->State &=3D VAR_DELETED; + Status =3D ContextIn->UpdateVariableStore ( + &VarInfo, + OFFSET_OF (VARIABLE_HEADER, = State), + sizeof (VarInfo.Buffer->Stat= e), + &VarInfo.Buffer->State + ); + if (EFI_ERROR (Status)) { + ASSERT_EFI_ERROR (Status); + return Status; + } + } + } + } + + VarDig->StoreIndex =3D StoreIndex; + VarDig->State =3D VAR_ADDED; + + ZeroMem ((VOID *)&VarInfo, sizeof (VarInfo)); + VarInfo.Buffer =3D NULL; + VarInfo.StoreIndex =3D VarDig->StoreIndex; + VarInfo.Flags.Auth =3D Global->Flags.Auth; + Status =3D ContextIn->GetVariableInfo (&VarInfo); + + // + // Check if cache pool need re-allocation due to variable size increase + // + VarSize =3D VARIABLE_HEADER_SIZE (VarDig->Flags.Auth); + VarSize +=3D VarDig->NameSize + GET_PAD_SIZE (VarDig->NameSize); + VarSize +=3D VarDig->DataSize + GET_PAD_SIZE (VarDig->DataSize); + VarSize =3D HEADER_ALIGN (VarSize); + + NewVarSize =3D VARIABLE_HEADER_SIZE (VarInfo.Flags.Auth); + NewVarSize +=3D VarInfo.Header.NameSize + GET_PAD_SIZE (VarInfo.Header.N= ameSize); + NewVarSize +=3D VarInfo.Header.DataSize + GET_PAD_SIZE (VarInfo.Header.D= ataSize); + NewVarSize =3D HEADER_ALIGN (NewVarSize); + + if (VarSize < NewVarSize) { + if (VarDig->Flags.Freeable =3D=3D TRUE) { + FreePool (GET_BUFR (VarDig->CacheIndex)); + } + + Buffer =3D AllocatePool (NewVarSize); + if (Buffer !=3D NULL) { + VarDig->CacheIndex =3D (EFI_PHYSICAL_ADDRESS)(UINTN)Buffer; + } else { + ASSERT (FALSE); + return EFI_ABORTED; + } + } + + // + // Update cached copy. + // + CopyMem (GET_BUFR (VarDig->CacheIndex), NewVariable, NewVarSize); + + // + // Check if there is consecutive variable as part of the write or + // is it just the MetaDataHmacVar variable + // + if (NewVarSize < VariableSize) { + // + // Advance to consecutive Variable + // + NewVariable =3D GET_BUFR (GET_ADRS (NewVariable) + NewVarSize); + + // + // Update the StoreIndex of consecutive Variable + // + ZeroMem ((VOID *)&VarInfo, sizeof (VarInfo)); + VarInfo.Buffer =3D NULL; + VarInfo.StoreIndex =3D VarDig->StoreIndex; + VarInfo.Flags.Auth =3D Global->Flags.Auth; + Status =3D ContextIn->GetNextVariableInfo (&VarInfo); + StoreIndex =3D VarInfo.StoreIndex; + + // + // The new StoreIndex does not exist in the variable digest. + // It is yet to be updated. + // Therefore, find variable by Name & Guid instead. + // + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + VarDig =3D FindVariableInternal (Global, &VarInfo, FALSE); + + // + // Check if cache pool need re-allocation due to variable size increase + // + VarSize =3D VARIABLE_HEADER_SIZE (VarDig->Flags.Auth); + VarSize +=3D VarDig->NameSize + GET_PAD_SIZE (VarDig->NameSize); + VarSize +=3D VarDig->DataSize + GET_PAD_SIZE (VarDig->DataSize); + VarSize =3D HEADER_ALIGN (VarSize); + + NewVarSize =3D VARIABLE_HEADER_SIZE (VarInfo.Flags.Auth); + NewVarSize +=3D VarInfo.Header.NameSize + GET_PAD_SIZE (VarInfo.Header= .NameSize); + NewVarSize +=3D VarInfo.Header.DataSize + GET_PAD_SIZE (VarInfo.Header= .DataSize); + NewVarSize =3D HEADER_ALIGN (NewVarSize); + + if (VarSize < NewVarSize) { + if (VarDig->Flags.Freeable =3D=3D TRUE) { + FreePool (GET_BUFR (VarDig->CacheIndex)); + } + + Buffer =3D AllocatePool (NewVarSize); + if (Buffer !=3D NULL) { + VarDig->CacheIndex =3D (EFI_PHYSICAL_ADDRESS)(UINTN)Buffer; + } else { + ASSERT (FALSE); + return EFI_ABORTED; + } + } + + // + // Update cached copy. + // + CopyMem (GET_BUFR (VarDig->CacheIndex), NewVariable, NewVarSize); + VarDig->StoreIndex =3D StoreIndex; + } + + return Status; +} + +/** + Refresh variable information changed by variable service. + + @param[in] Variable Pointer to buffer of the updated variable. + @param[in] VariableSize Size of variable pointed by Variable. + @param[in] StoreIndex New index of the variable in store. + @param[in] RefreshData Flag to indicate if the variable has been u= pdated. + + @return EFI_SUCCESS No error occurred in updating. + @return EFI_NOT_FOUND The given variable was not found in + ProtectedVariableLib. +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibRefresh ( + IN VARIABLE_HEADER *Variable, + IN UINTN VariableSize, + IN UINT64 StoreIndex, + IN BOOLEAN RefreshData + ) +{ + EFI_STATUS Status; + PROTECTED_VARIABLE_INFO VarInfo; + PROTECTED_VARIABLE_GLOBAL *Global; + VARIABLE_DIGEST *VarDig; + + (VOID)GetProtectedVariableGlobal (&Global); + + ZeroMem ((VOID *)&VarInfo, sizeof (VarInfo)); + VarInfo.Buffer =3D Variable; + VarInfo.StoreIndex =3D VAR_INDEX_INVALID; + VarInfo.Flags.Auth =3D Global->Flags.Auth; + + Status =3D GET_CNTX (Global)->GetVariableInfo (&VarInfo); + ASSERT_EFI_ERROR (Status); + + VarDig =3D FindVariableInternal (Global, &VarInfo, FALSE); + if (VarDig =3D=3D NULL) { + ASSERT (VarDig !=3D NULL); + return EFI_NOT_FOUND; + } + + if (StoreIndex !=3D VAR_INDEX_INVALID) { + VarDig->StoreIndex =3D StoreIndex; + } + + if (RefreshData) { + if (VarDig->CacheIndex =3D=3D VAR_INDEX_INVALID) { + VarDig->CacheIndex =3D (EFI_PHYSICAL_ADDRESS)(UINTN) + AllocatePool (MAX_VARIABLE_SIZE); + } + + CopyMem (GET_BUFR (VarDig->CacheIndex), Variable, VariableSize); + } + + // + // Information should stay the same other than following ones. + // + VarDig->State =3D VarInfo.Header.State; + VarDig->DataSize =3D (UINT32)VarInfo.Header.DataSize; + + return EFI_SUCCESS; +} + +/** + + Determine if the variable is the HMAC variable + + @param VariableName Pointer to variable name. + + @return TRUE Variable is HMAC variable + @return FALSE Variable is not HMAC variable + +**/ +BOOLEAN +ProtectedVariableLibIsHmac ( + IN CHAR16 *VariableName + ) +{ + INTN Result; + + Result =3D StrnCmp ( + METADATA_HMAC_VARIABLE_NAME, + VariableName, + METADATA_HMAC_VARIABLE_NAME_SIZE + ); + + if (Result =3D=3D 0) { + return TRUE; + } + + return FALSE; +} diff --git a/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmmR= untime.c b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmmRun= time.c new file mode 100644 index 000000000000..4591d1cd59e5 --- /dev/null +++ b/SecurityPkg/Library/ProtectedVariableLib/ProtectedVariableSmmRuntime.c @@ -0,0 +1,233 @@ +/** @file + Implemention of ProtectedVariableLib for BootService/Runtime use cases. + +Copyright (c) 2022, Intel Corporation. All rights reserved.
+SPDX-License-Identifier: BSD-2-Clause-Patent + +**/ + +#include +#include + +#include "Library/MemoryAllocationLib.h" +#include "Library/UefiBootServicesTableLib.h" +#include "Library/UefiRuntimeLib.h" +#include "ProtectedVariableInternal.h" + +EFI_EVENT mVaChangeEvent =3D NULL; + +PROTECTED_VARIABLE_CONTEXT_IN mRtVariableContextIn =3D { + PROTECTED_VARIABLE_CONTEXT_IN_STRUCT_VERSION, + sizeof (PROTECTED_VARIABLE_CONTEXT_IN), + 0, + FromRuntimeModule, + NULL, + NULL, + NULL, + NULL, + NULL +}; + +PROTECTED_VARIABLE_GLOBAL mRtProtectedVariableGlobal =3D { + PROTECTED_VARIABLE_CONTEXT_OUT_STRUCT_VERSION, + sizeof (PROTECTED_VARIABLE_GLOBAL), + { 0 }, + { 0 }, + 0, + 0, + 0, + 0, + 0, + 0, + { 0, 0, 0 }, + 0, + 0, + { 0, 0, 0, 0, 0, 0} +}; + +/** + + Get global data structure used to process protected variable. + + @param[out] Global Pointer to global configuration data. + + @retval EFI_SUCCESS Get requested structure successfully. + +**/ +EFI_STATUS +EFIAPI +GetProtectedVariableGlobal ( + OUT PROTECTED_VARIABLE_GLOBAL **Global OPTIONAL + ) +{ + if (Global !=3D NULL) { + mRtProtectedVariableGlobal.ContextIn =3D GET_ADRS (&mRtVariableContext= In); + *Global =3D &mRtProtectedVariableGlobal; + } + + return EFI_SUCCESS; +} + +/** + Notification function of EVT_SIGNAL_VIRTUAL_ADDRESS_CHANGE. + + This is a notification function registered on EVT_SIGNAL_VIRTUAL_ADDRESS= _CHANGE event. + It convers pointer to new virtual address. + + @param[in] Event Event whose notification function is being invo= ked. + @param[in] Context Pointer to the notification function's context. + +**/ +VOID +EFIAPI +VirtualAddressChangeEvent ( + IN EFI_EVENT Event, + IN VOID *Context + ) +{ + if (mRtVariableContextIn.FindVariableSmm !=3D NULL) { + EfiConvertPointer (0x0, (VOID **)&mRtVariableContextIn.FindVariableSmm= ); + } + + if (mRtVariableContextIn.GetVariableInfo !=3D NULL) { + EfiConvertPointer (0x0, (VOID **)&mRtVariableContextIn.GetVariableInfo= ); + } + + if (mRtVariableContextIn.GetNextVariableInfo !=3D NULL) { + EfiConvertPointer (0x0, (VOID **)&mRtVariableContextIn.GetNextVariable= Info); + } + + if (mRtVariableContextIn.UpdateVariableStore !=3D NULL) { + EfiConvertPointer (0x0, (VOID **)&mRtVariableContextIn.UpdateVariableS= tore); + } + + EfiConvertPointer (0x0, (VOID **)&mRtVariableContextIn); + if (mRtProtectedVariableGlobal.VariableCache !=3D 0) { + EfiConvertPointer (0x0, (VOID **)&mRtProtectedVariableGlobal.VariableC= ache); + } + + EfiConvertPointer (0x0, (VOID **)&mRtProtectedVariableGlobal); +} + +/** + + Initialization for protected variable services. + + If this initialization failed upon any error, the whole variable services + should not be used. A system reset might be needed to re-construct NV + variable storage to be the default state. + + @param[in] ContextIn Pointer to variable service context needed by + protected variable. + + @retval EFI_SUCCESS Protected variable services are ready. + @retval EFI_INVALID_PARAMETER If ContextIn =3D=3D NULL or something = missing or + mismatching in the content in ContextI= n. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibInitialize ( + IN PROTECTED_VARIABLE_CONTEXT_IN *ContextIn + ) +{ + if ( (ContextIn =3D=3D NULL) + || (ContextIn->StructVersion !=3D PROTECTED_VARIABLE_CONTEXT_IN_STRUC= T_VERSION) + || (ContextIn->FindVariableSmm =3D=3D NULL) + || (ContextIn->GetVariableInfo =3D=3D NULL)) + { + return EFI_INVALID_PARAMETER; + } + + CopyMem (&mRtVariableContextIn, ContextIn, sizeof (mRtVariableContextIn)= ); + + // + // Register the event to convert the pointer for runtime. + // + gBS->CreateEventEx ( + EVT_NOTIFY_SIGNAL, + TPL_NOTIFY, + VirtualAddressChangeEvent, + NULL, + &gEfiEventVirtualAddressChangeGuid, + &mVaChangeEvent + ); + + return EFI_SUCCESS; +} + +/** + + Prepare for variable update. + + Not supported in DXE phase. + + @retval EFI_UNSUPPORTED Updating variable is not supported. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteInit ( + VOID + ) +{ + ASSERT (FALSE); + return EFI_UNSUPPORTED; +} + +/** + + Update a variable with protection provided by this library. + + Not supported in DXE phase. + + @param[in,out] CurrVariable Variable to be updated. It's NULL if + adding a new variable. + @param[in] CurrVariableInDel In-delete-transition copy of updatin= g variable. + @param[in,out] NewVariable Buffer of new variable data or + Buffer of "MetaDataHmacVar" and new = variable (encrypted). + @param[in,out] NewVariableSize Size of NewVariable or + Size of (encrypted) NewVariable and = "MetaDataHmacVar". + + @retval EFI_UNSUPPORTED Not support updating variable. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibUpdate ( + IN OUT VARIABLE_HEADER *CurrVariable, + IN VARIABLE_HEADER *CurrVariableInDel, + IN OUT VARIABLE_HEADER *NewVariable, + IN OUT UINTN *NewVariableSize + ) +{ + ASSERT (FALSE); + return EFI_UNSUPPORTED; +} + +/** + + Finalize a variable updating after it's written to NV variable storage + successfully. + + (Not supported for BootService/Runtime use cases.) + + @param[in] NewVariable Buffer of new variables and MetaDataHm= acVar. + @param[in] VariableSize Size of buffer pointed by NewVariable. + @param[in] StoreIndex StoreIndex to NV variable storage from= where the new + variable and MetaDataHmacVar have been= written. + + @retval EFI_UNSUPPORTED Not supported for BootService/Runtime = use cases. + +**/ +EFI_STATUS +EFIAPI +ProtectedVariableLibWriteFinal ( + IN VARIABLE_HEADER *NewVariable, + IN UINTN VariableSize, + IN UINT64 StoreIndex + ) +{ + ASSERT (FALSE); + return EFI_UNSUPPORTED; +} --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89438): https://edk2.groups.io/g/devel/message/89438 Mute This Topic: https://groups.io/mt/90781908/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89435+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89435+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255525; cv=none; d=zohomail.com; s=zohoarc; b=G155OhfBGBAyBSi5+eDx5mnzexKwaE53iZhTHBKBsd+2hcNMuQOZ/45SNRAGivNC3lEj3qWnj+Ce5oc+phvwUgu8YBcSsL0I8/RlDleoq8Uz6AiP5+u0MfwYqizElrXAhUgtOViWE7awZFHkfyyDl1KTy7o4B/gu71UEYx73b1Y= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255525; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=rbYGQUJ/ClU4LamRC0eZOLHOk7ckqhl4Xvcpg5tG4y8=; b=Vx9Ibx7frOEJUT6fd8rTTATG77Zza3sw1UE820Hv+OhGfkTpxTV+XsH9ZkDjiDFiGw5KGlcLlfda3iCctn+leeIXAWk7yOt8VNmI3wUprHqG1VCXDo4cfa8OI/UtczxKHPE/jX8E8NkQOnC/las8Fz363pNnj/3i2yyoUBstY5Q= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89435+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255525193616.9160658065468; Fri, 29 Apr 2022 11:05:25 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id DkNtYY1788612xnIoQEIQG8s; Fri, 29 Apr 2022 11:05:24 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web08.13430.1651255518273693340 for ; Fri, 29 Apr 2022 11:05:23 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659248" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659248" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:21 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955760" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:21 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Liming Gao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 18/28] MdeModulePkg: Reference Null ProtectedVariableLib Date: Fri, 29 Apr 2022 11:04:20 -0700 Message-Id: <20220429180430.3292-19-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: qnnEjIzUqEfOkdCBvtEoJtplx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255524; bh=VVVj9dTcgwJQoxNMRKm1imekPuiMZFo5jaVRP7j7UOE=; h=Cc:Date:From:Reply-To:Subject:To; b=rIq3MGApyjTOsG4UCSoRXxghgkNO7+6Tm7o6OaNtevotW9v0E4Im3M4XkMHHLUdSqjQ raVN9ZkqgCBrqqzBXgP+0JEDUxHyNZ1l2XeO+2qF37bF+MYSsYmQlMoRhD7I59fskors9 0j5/QSyfEIie82/17HyKHsd3aphyvm39ycs= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255528267100056 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Make reference to new Null ProtectVariableLib. The null ProtectedVariableLib is used by default. Cc: Jian J Wang Cc: Liming Gao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- MdeModulePkg/MdeModulePkg.dsc | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/MdeModulePkg/MdeModulePkg.dsc b/MdeModulePkg/MdeModulePkg.dsc index b1d83461865e..6d9847c0cd34 100644 --- a/MdeModulePkg/MdeModulePkg.dsc +++ b/MdeModulePkg/MdeModulePkg.dsc @@ -2,7 +2,7 @@ # EFI/PI Reference Module Package for All Architectures # # (C) Copyright 2014 Hewlett-Packard Development Company, L.P.
-# Copyright (c) 2007 - 2021, Intel Corporation. All rights reserved.
+# Copyright (c) 2007 - 2022, Intel Corporation. All rights reserved.
# Copyright (c) Microsoft Corporation. # # SPDX-License-Identifier: BSD-2-Clause-Patent @@ -103,6 +103,7 @@ [LibraryClasses] DisplayUpdateProgressLib|MdeModulePkg/Library/DisplayUpdateProgressLibGr= aphics/DisplayUpdateProgressLibGraphics.inf VariablePolicyHelperLib|MdeModulePkg/Library/VariablePolicyHelperLib/Var= iablePolicyHelperLib.inf MmUnblockMemoryLib|MdePkg/Library/MmUnblockMemoryLib/MmUnblockMemoryLibN= ull.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf =20 [LibraryClasses.EBC.PEIM] IoLib|MdePkg/Library/PeiIoLibCpuIo/PeiIoLibCpuIo.inf @@ -316,6 +317,7 @@ [Components] MdeModulePkg/Library/PlatformBootManagerLibNull/PlatformBootManagerLibNu= ll.inf MdeModulePkg/Library/BootLogoLib/BootLogoLib.inf MdeModulePkg/Library/TpmMeasurementLibNull/TpmMeasurementLibNull.inf + MdeModulePkg/Library/ProtectedVariableLibNull/ProtectedVariableLibNull.i= nf MdeModulePkg/Library/AuthVariableLibNull/AuthVariableLibNull.inf MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLib.inf MdeModulePkg/Library/VariablePolicyLib/VariablePolicyLibRuntimeDxe.inf --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89435): https://edk2.groups.io/g/devel/message/89435 Mute This Topic: https://groups.io/mt/90781905/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89436+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89436+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255525; cv=none; d=zohomail.com; s=zohoarc; b=lFFuZBMD/Hxc7QLYh5kndLqXG7xUoUSsb2HHdjCaGNgqYMadRNcxRYe1XHBq4eNFAMfuke1nWz9z2WbRCqjQdc4ycB2htJt6WfPboz2GPA3NCVjAv1zQaNK7zOYy54viRx13rUfxsiFAFjbitHDsjZw+TUBraPl6Sad95wnaWXs= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255525; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=LbwHYZFGVEsRcUfHZptMHYYNA4thzS5z9YsHmGBNjkA=; b=HrnahIrC5qVqhdGhywqD1XfqZIBiyVo3lNG0VB+SQ19BVW6y/gj/PFsJo7lgpNm/9MEPRVBk+M5AX4MYi1PacaI0lhjHbaFHoj5oq7gGZ2CMTRG2XAU8npGcCL34F/BNo9Nn3cFH8OFijDgtd+65fICF2qmBn3SoWG8EPuZbq1c= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89436+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255525894909.3674476633176; Fri, 29 Apr 2022 11:05:25 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id 0IhRYY1788612xs4IKuD6oQm; Fri, 29 Apr 2022 11:05:25 -0700 X-Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by mx.groups.io with SMTP id smtpd.web10.13697.1651255523582016517 for ; Fri, 29 Apr 2022 11:05:23 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="248659250" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="248659250" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:22 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955766" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:21 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Nishant C Mistry Subject: [edk2-devel] [Patch v2 19/28] SecurityPkg: Add references to new *.inf files Date: Fri, 29 Apr 2022 11:04:21 -0700 Message-Id: <20220429180430.3292-20-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: J0QPnriPPEAKA9mykOtaOIiMx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255525; bh=8/32rIFs2LmlbltRj6YnoC5tIDwIcyjrgi3XUO5T+84=; h=Cc:Date:From:Reply-To:Subject:To; b=a3pIz53Qi2Fqtc60uOGtYTaQXR91dpH6lva63WkwBQbXWNlctVI/fNvcVdSU+tgBZ3d otl7juTfEmHgQk6P2n1poVvLH9izS68JNf7xXAvPocVNPlcGxXUk98CNP7jw8lcvI3A7z 9xxr8C1JCucYPLcbrt2HCCq63KgPfwKohMM= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255528301100060 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add references to the different *ProtectedVariableLib.inf. Also add references to VariableKeyLibNull.inf, EncryptionVariableLibNull.inf, ProtectedVariableNull.inf. Cc: Jian J Wang Cc: Jiewen Yao Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- SecurityPkg/SecurityPkg.dsc | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/SecurityPkg/SecurityPkg.dsc b/SecurityPkg/SecurityPkg.dsc index 73a93c2285b1..6d8318c6e4bf 100644 --- a/SecurityPkg/SecurityPkg.dsc +++ b/SecurityPkg/SecurityPkg.dsc @@ -1,7 +1,7 @@ ## @file # Security Module Package for All Architectures. # -# Copyright (c) 2009 - 2021, Intel Corporation. All rights reserved.
+# Copyright (c) 2009 - 2022, Intel Corporation. All rights reserved.
# (C) Copyright 2015-2020 Hewlett Packard Enterprise Development LP
# SPDX-License-Identifier: BSD-2-Clause-Patent # @@ -66,8 +66,11 @@ [LibraryClasses] TcgStorageCoreLib|SecurityPkg/Library/TcgStorageCoreLib/TcgStorageCoreLi= b.inf TcgStorageOpalLib|SecurityPkg/Library/TcgStorageOpalLib/TcgStorageOpalLi= b.inf ResetSystemLib|MdeModulePkg/Library/BaseResetSystemLibNull/BaseResetSyst= emLibNull.inf + + # These should be Null by default VariableKeyLib|SecurityPkg/Library/VariableKeyLibNull/VariableKeyLibNull= .inf RpmcLib|SecurityPkg/Library/RpmcLibNull/RpmcLibNull.inf + EncryptionVariableLib|SecurityPkg/Library/EncryptionVariableLibNull/Encr= yptionVariableLibNull.inf TcgEventLogRecordLib|SecurityPkg/Library/TcgEventLogRecordLib/TcgEventLo= gRecordLib.inf MmUnblockMemoryLib|MdePkg/Library/MmUnblockMemoryLib/MmUnblockMemoryLibN= ull.inf SecureBootVariableLib|SecurityPkg/Library/SecureBootVariableLib/SecureBo= otVariableLib.inf @@ -251,8 +254,16 @@ [Components] # # Variable Confidentiality & Integrity # + SecurityPkg/Library/ProtectedVariableLib/PeiProtectedVariableLib.inf + SecurityPkg/Library/ProtectedVariableLib/DxeProtectedVariableLib.inf + SecurityPkg/Library/ProtectedVariableLib/SmmProtectedVariableLib.inf + SecurityPkg/Library/ProtectedVariableLib/SmmRuntimeProtectedVariableLib.= inf + SecurityPkg/Library/EncryptionVariableLib/EncryptionVariableLib.inf + SecurityPkg/Library/VariableKeyLib/VariableKeyLib.inf + SecurityPkg/Library/VariableKeyLibNull/VariableKeyLibNull.inf SecurityPkg/Library/RpmcLibNull/RpmcLibNull.inf + SecurityPkg/Library/EncryptionVariableLibNull/EncryptionVariableLibNull.= inf =20 # # Other --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89436): https://edk2.groups.io/g/devel/message/89436 Mute This Topic: https://groups.io/mt/90781906/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89437+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89437+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255526; cv=none; d=zohomail.com; s=zohoarc; b=fH47LMlU6xVe7SHuKyTZOpzm3tJfhPHNBIvpW3tJ22J/HQDZdiMVb/cQzfunm6cU58k1v4OBwyuTEF/516APLswXObYo2CVwAgFaalXg4mRE3YTV50RMkQWgaBx03sT4Oo4n2v9Dq6K1bz4uL0j0eTeMUqSRN91lROw22pJOgtA= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255526; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=Hp3nnH4D0S5d1HhI1V1+ek3G/x8H5yzeVEeSbQR/8g4=; b=ibzrWyGSreUR4NwaCa1rjlg5WInMvWzFANd7Hp8Ug1pWtXQMzmVMl1LIZYaTaHb4slp0y3djzFS+E0vjF4ExTLGP7qQvyWV7StmDuJS4xFDtHyAxm+GE+Q5bFQkrtcFPZ56EDVbTPAqkC5s+f9G8ajb39cpDITzmgugc0hB8j+w= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89437+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255526264857.8033104546413; Fri, 29 Apr 2022 11:05:26 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id cMHRYY1788612xrqeVmYuAso; Fri, 29 Apr 2022 11:05:25 -0700 X-Received: from mga12.intel.com (mga12.intel.com [192.55.52.136]) by mx.groups.io with SMTP id smtpd.web12.13563.1651255524511770306 for ; Fri, 29 Apr 2022 11:05:24 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="246648117" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="246648117" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:22 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955776" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:22 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Ard Biesheuvel , Leif Lindholm , Nishant C Mistry Subject: [edk2-devel] [Patch v2 20/28] ArmVirtPkg: Add reference to ProtectedVariableNull Date: Fri, 29 Apr 2022 11:04:22 -0700 Message-Id: <20220429180430.3292-21-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: 74zBVwP2NGaqrJkp8XAjlGhyx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255525; bh=2IFbBFbqqG3jEhDfK2b/tIW0EStjuGtPNIFyEhPg7hs=; h=Cc:Date:From:Reply-To:Subject:To; b=WhBvr+3uND/dH5mvDjWqCqHO5uqYy26feMbT1+MWlX7BaETjrdNDYXwdqMutZk/GZv1 ZfYxeNi5v7ok5yWfGVH3Wj9B+TdYq4sARGjfe+i0i1KJa7QaDtyLe0qbVZftb65K+r5o+ IDhNWaTjbNFaE36Mit5yN429DBkckby6SDQ= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255528287100058 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Need reference to ProtectVariableNullLib otherwise build fails. Cc: Jian J Wang Cc: Ard Biesheuvel Cc: Leif Lindholm Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Acked-by: Ard Biesheuvel --- ArmVirtPkg/ArmVirtQemu.dsc | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/ArmVirtPkg/ArmVirtQemu.dsc b/ArmVirtPkg/ArmVirtQemu.dsc index aa0ce61630f7..cdebd94a9fce 100644 --- a/ArmVirtPkg/ArmVirtQemu.dsc +++ b/ArmVirtPkg/ArmVirtQemu.dsc @@ -1,7 +1,7 @@ # # Copyright (c) 2011-2015, ARM Limited. All rights reserved. # Copyright (c) 2014, Linaro Limited. All rights reserved. -# Copyright (c) 2015 - 2020, Intel Corporation. All rights reserved. +# Copyright (c) 2015 - 2022, Intel Corporation. All rights reserved. # # SPDX-License-Identifier: BSD-2-Clause-Patent # @@ -81,6 +81,7 @@ [LibraryClasses.common] PciSegmentLib|MdePkg/Library/BasePciSegmentLibPci/BasePciSegmentLibPci.i= nf PciHostBridgeLib|OvmfPkg/Fdt/FdtPciHostBridgeLib/FdtPciHostBridgeLib.inf PciHostBridgeUtilityLib|OvmfPkg/Library/PciHostBridgeUtilityLib/PciHostB= ridgeUtilityLib.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf =20 !if $(TPM2_ENABLE) =3D=3D TRUE Tpm2CommandLib|SecurityPkg/Library/Tpm2CommandLib/Tpm2CommandLib.inf --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89437): https://edk2.groups.io/g/devel/message/89437 Mute This Topic: https://groups.io/mt/90781907/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89439+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89439+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255526; cv=none; d=zohomail.com; s=zohoarc; b=nzVTW5tfuHeqtxoYvdeCzD0UBzywGweMzx0dVgUK3dr7WRLGv19JRe5jtbNRkTbouBgQIJPW+DGKOiJ12pPIVjbArlLHe7TAOk6BURT4g2wgsFrYGFFEf0JeqkOBQ3OewlN6JpDrZk7ANOlLh8l/j7nl0iwLzSKoWYh+CR/r3yA= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255526; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=1eJB7L9j+yNsxKjIkLNKv4869hixjPM7HnvbItadzGA=; b=KEPkDDKtgEyiYdVFIDXJszjrXtFGMFwA9kx2im1wM4ktJkqf0g43awhpOhj1RHK9FopKX4whSDBEKpWuLiMa4VBD5ZvNflqCsWH3QxTRvIfcyCXxqphLJE+350pGqq941e+jMl22l6/hgyLZdPy7gqc/jHHXJJ5jYq3lZjqJHFA= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89439+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255526317975.5546568493921; Fri, 29 Apr 2022 11:05:26 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id 5iLfYY1788612xX4Z1J73X0D; Fri, 29 Apr 2022 11:05:26 -0700 X-Received: from mga12.intel.com (mga12.intel.com [192.55.52.136]) by mx.groups.io with SMTP id smtpd.web12.13563.1651255524511770306 for ; Fri, 29 Apr 2022 11:05:24 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="246648120" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="246648120" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:23 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955794" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:22 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Guo Dong , Ray Ni , Maurice Ma , Benjamin You , Sean Rhodes , Nishant C Mistry Subject: [edk2-devel] [Patch v2 21/28] UefiPayloadPkg: Add ProtectedVariable reference Date: Fri, 29 Apr 2022 11:04:23 -0700 Message-Id: <20220429180430.3292-22-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: zMJi9JiFRGd5DTpRPrWxM5wvx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255526; bh=bQjqqWRZUdugihcE+oP6LbnInn0BsbUvDF04KD/hI6U=; h=Cc:Date:From:Reply-To:Subject:To; b=VdxV8eNm+zWkL2Oz7NcsMhmvUzIhJCfDgiCkHNNBB48+Zu8h4lLjtb8TV+hc50Fw+lx cJOrnaEVZMeaR080p6smpxobH5J++xYgP+V520ijcjuc0XoKaX2TneR7mFEDfgzKffpIJ Im7EMmCpt2vEVnp9IVKU5ulLPQgArmrbLfE= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255528265100055 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add reference for ProtectedVariableLib so build is successful. Cc: Jian J Wang Cc: Guo Dong Cc: Ray Ni Cc: Maurice Ma Cc: Benjamin You Cc: Sean Rhodes Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Reviewed-by: Guo Dong --- UefiPayloadPkg/UefiPayloadPkg.dsc | 2 ++ 1 file changed, 2 insertions(+) diff --git a/UefiPayloadPkg/UefiPayloadPkg.dsc b/UefiPayloadPkg/UefiPayload= Pkg.dsc index 17b30589e77c..fe835eed1bc7 100644 --- a/UefiPayloadPkg/UefiPayloadPkg.dsc +++ b/UefiPayloadPkg/UefiPayloadPkg.dsc @@ -263,9 +263,11 @@ [LibraryClasses] AuthVariableLib|MdeModulePkg/Library/AuthVariableLibNull/AuthVariableLib= Null.inf !if $(VARIABLE_SUPPORT) =3D=3D "EMU" TpmMeasurementLib|MdeModulePkg/Library/TpmMeasurementLibNull/TpmMeasurem= entLibNull.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf !elseif $(VARIABLE_SUPPORT) =3D=3D "SPI" PlatformSecureLib|SecurityPkg/Library/PlatformSecureLibNull/PlatformSecu= reLibNull.inf TpmMeasurementLib|SecurityPkg/Library/DxeTpmMeasurementLib/DxeTpmMeasure= mentLib.inf + ProtectedVariableLib|SecurityPkg/Library/ProtectedVariableLib/DxeProtect= edVariableLib.inf S3BootScriptLib|MdePkg/Library/BaseS3BootScriptLibNull/BaseS3BootScriptL= ibNull.inf MmUnblockMemoryLib|MdePkg/Library/MmUnblockMemoryLib/MmUnblockMemoryLibN= ull.inf !endif --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89439): https://edk2.groups.io/g/devel/message/89439 Mute This Topic: https://groups.io/mt/90781909/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89440+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89440+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255527; cv=none; d=zohomail.com; s=zohoarc; b=azfvA3HKPvfbchyOG+Wkk5dnMdCmbH7/HRzYL4GsMFuelpTMMbEpmF4LwHGX2R78DCDCtSJhisWFW4RL4gvde0Y2C9CVsBGO3VWztx0TK8qx9iV/aglh6AX6sWZ2lD+GSm5Kt7ZNUqZdlTnMXdCWqsYZ8TXtfeXTSyiMglhgRYo= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255527; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=QZ0PgyCyQHl2+ECIVplObip7U5ImgkM1QQHJx7MN2b4=; b=mPtqe104XPAb75f/5ukE5WpXBYexwGnUEckIMN64OsfWHxmol6d+sJ9xkcHxW8n7HSAyJkEN7wGSgCZXRs4bX5HYsnXSF+0La2zaSLXQeAJHjHPfZ9dfPEz80opQ3yjfhoEJaec5x9PE/yz9S8Uoj9NqN1bHgJ+IqW6oo8aVBYg= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89440+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255527172754.4031953966593; Fri, 29 Apr 2022 11:05:27 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id E1V8YY1788612xQubzQt0a3X; Fri, 29 Apr 2022 11:05:26 -0700 X-Received: from mga12.intel.com (mga12.intel.com [192.55.52.136]) by mx.groups.io with SMTP id smtpd.web12.13563.1651255524511770306 for ; Fri, 29 Apr 2022 11:05:25 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="246648125" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="246648125" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:23 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955804" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:23 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Andrew Fish , Ray Ni , Nishant C Mistry Subject: [edk2-devel] [Patch v2 22/28] EmulatorPkg: Add ProtectedVariable reference Date: Fri, 29 Apr 2022 11:04:24 -0700 Message-Id: <20220429180430.3292-23-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: YMVcrkFyisWiNcqxyhLsZ2Yhx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255526; bh=HQRR94eDA3OSAVHCeVyfNkkNqUo/iHaUrS59tqCTNNc=; h=Cc:Date:From:Reply-To:Subject:To; b=kqcGLmDEosdUWV/ZrVT35sHEIo3IagPdJoxdH1FsSvWFuBpe8FfEfQ6cDmmSpEIUnzu xjQxCEg6REfx+ZAZMVHmwgzM9+BMcJJH4N08fm4RXTvEucKdGjK9Rlyh1dJU6nnLnsOCz HK+YvVbepfKBKI/S4zmNSgdUO0xkJbsK6Vs= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255528271100057 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add reference to null ProtectedVariableLib. Cc: Jian J Wang Cc: Andrew Fish Cc: Ray Ni Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- EmulatorPkg/EmulatorPkg.dsc | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/EmulatorPkg/EmulatorPkg.dsc b/EmulatorPkg/EmulatorPkg.dsc index 554c13ddb500..4a6d50390db7 100644 --- a/EmulatorPkg/EmulatorPkg.dsc +++ b/EmulatorPkg/EmulatorPkg.dsc @@ -4,7 +4,7 @@ # The Emulation Platform can be used to debug individual modules, prior to= creating # a real platform. This also provides an example for how an DSC is created. # -# Copyright (c) 2006 - 2021, Intel Corporation. All rights reserved.
+# Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
# Portions copyright (c) 2010 - 2011, Apple Inc. All rights reserved.
# Copyright (c) Microsoft Corporation. # @@ -119,6 +119,7 @@ [LibraryClasses] LockBoxLib|MdeModulePkg/Library/LockBoxNullLib/LockBoxNullLib.inf CpuExceptionHandlerLib|MdeModulePkg/Library/CpuExceptionHandlerLibNull/C= puExceptionHandlerLibNull.inf TpmMeasurementLib|MdeModulePkg/Library/TpmMeasurementLibNull/TpmMeasurem= entLibNull.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf VarCheckLib|MdeModulePkg/Library/VarCheckLib/VarCheckLib.inf VariablePolicyLib|MdeModulePkg/Library/VariablePolicyLib/VariablePolicyL= ibRuntimeDxe.inf VariablePolicyHelperLib|MdeModulePkg/Library/VariablePolicyHelperLib/Var= iablePolicyHelperLib.inf --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89440): https://edk2.groups.io/g/devel/message/89440 Mute This Topic: https://groups.io/mt/90781910/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89441+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89441+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255527; cv=none; d=zohomail.com; s=zohoarc; b=h4eD0gLgw9WJwWSMBNJm4JM4/b0U/ppBpcQcDDVwLsjFzgtHWQDhLD1RdmSiIvo82P9UJUzUhe0jtnj3oaZZwg7Eh3h7QUNHtqyCsfCgny05aTPtkAncRO/XzSE7SC9q9h8ht8r3U9AsSoxiSUuzVSyRXXAt1MHl2Tnk3R2uAig= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255527; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=3DRw7az/oAyXmuZFqprt6P8dtxh0MaAT7RBvyS7bt20=; b=NCwLkxmloKNx7j8hMq/fnqTDQEe80TjSQPkJa/DwgH4crNBWcvCWjO64j0XAh3XlTA+/e12pWzryANaeAyDZNtyy1m/nFEWX46tn41gyzeZDx0BkmgKMzD+Lvfe1GT9mZLsgAMoZUNAUv7tjBniGPxnyaqA0DS+3d/l93uph3g8= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89441+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255527573757.0868537553954; Fri, 29 Apr 2022 11:05:27 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id fFgcYY1788612xAnu8Q55FZM; Fri, 29 Apr 2022 11:05:27 -0700 X-Received: from mga12.intel.com (mga12.intel.com [192.55.52.136]) by mx.groups.io with SMTP id smtpd.web12.13563.1651255524511770306 for ; Fri, 29 Apr 2022 11:05:25 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="246648129" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="246648129" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:24 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955814" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:23 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Ard Biesheuvel , Jiewen Yao , Jordan Justen , Gerd Hoffmann , Nishant C Mistry Subject: [edk2-devel] [Patch v2 23/28] OvmfPkg: Add ProtectedVariable reference Date: Fri, 29 Apr 2022 11:04:25 -0700 Message-Id: <20220429180430.3292-24-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: WRSvMjtvMO2cOuNAofffB1Bcx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255527; bh=mWcgmYGfarU/PlM9oRqnXaTcWTHPVd5qThqNzgklnUw=; h=Cc:Date:From:Reply-To:Subject:To; b=AJVmXWsFYE3iMP8Lu0NDMNVvjuww8QQLOdrSerzZFrVNcq0OiEMm5EaK3XUdIs8IJoO L9L0UalCk500zSGkkXafA0QAGOs1xePq9UAi/g1RHZuVAHfR0aqowe0uRoMCtBiQTDl71 NEqzuMnzmjG1FvFn2OY0LDdOhDZec2w98WQ= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255528289100059 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add reference to null ProtectedVariableLib. Cc: Jian J Wang Cc: Ard Biesheuvel Cc: Jiewen Yao Cc: Jordan Justen Cc: Gerd Hoffmann Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- OvmfPkg/OvmfPkgIa32.dsc | 1 + OvmfPkg/OvmfPkgIa32X64.dsc | 1 + OvmfPkg/OvmfPkgX64.dsc | 1 + OvmfPkg/OvmfXen.dsc | 3 ++- 4 files changed, 5 insertions(+), 1 deletion(-) diff --git a/OvmfPkg/OvmfPkgIa32.dsc b/OvmfPkg/OvmfPkgIa32.dsc index f02b371f7427..358ad991a2dc 100644 --- a/OvmfPkg/OvmfPkgIa32.dsc +++ b/OvmfPkg/OvmfPkgIa32.dsc @@ -178,6 +178,7 @@ [LibraryClasses] LoadLinuxLib|OvmfPkg/Library/LoadLinuxLib/LoadLinuxLib.inf MemEncryptSevLib|OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLi= b.inf MemEncryptTdxLib|OvmfPkg/Library/BaseMemEncryptTdxLib/BaseMemEncryptTdxL= ibNull.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf !if $(SMM_REQUIRE) =3D=3D FALSE LockBoxLib|OvmfPkg/Library/LockBoxLib/LockBoxBaseLib.inf !endif diff --git a/OvmfPkg/OvmfPkgIa32X64.dsc b/OvmfPkg/OvmfPkgIa32X64.dsc index cb68e612bd35..7e46d53061b1 100644 --- a/OvmfPkg/OvmfPkgIa32X64.dsc +++ b/OvmfPkg/OvmfPkgIa32X64.dsc @@ -182,6 +182,7 @@ [LibraryClasses] LoadLinuxLib|OvmfPkg/Library/LoadLinuxLib/LoadLinuxLib.inf MemEncryptSevLib|OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLi= b.inf MemEncryptTdxLib|OvmfPkg/Library/BaseMemEncryptTdxLib/BaseMemEncryptTdxL= ibNull.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf !if $(SMM_REQUIRE) =3D=3D FALSE LockBoxLib|OvmfPkg/Library/LockBoxLib/LockBoxBaseLib.inf !endif diff --git a/OvmfPkg/OvmfPkgX64.dsc b/OvmfPkg/OvmfPkgX64.dsc index 45ffa2dbe35f..32ebe045c03d 100644 --- a/OvmfPkg/OvmfPkgX64.dsc +++ b/OvmfPkg/OvmfPkgX64.dsc @@ -189,6 +189,7 @@ [LibraryClasses] LoadLinuxLib|OvmfPkg/Library/LoadLinuxLib/LoadLinuxLib.inf MemEncryptSevLib|OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLi= b.inf MemEncryptTdxLib|OvmfPkg/Library/BaseMemEncryptTdxLib/BaseMemEncryptTdxL= ib.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf =20 !if $(SMM_REQUIRE) =3D=3D FALSE LockBoxLib|OvmfPkg/Library/LockBoxLib/LockBoxBaseLib.inf diff --git a/OvmfPkg/OvmfXen.dsc b/OvmfPkg/OvmfXen.dsc index a1626d06dfc3..532a3e1b2027 100644 --- a/OvmfPkg/OvmfXen.dsc +++ b/OvmfPkg/OvmfXen.dsc @@ -1,7 +1,7 @@ ## @file # EFI/Framework Open Virtual Machine Firmware (OVMF) platform # -# Copyright (c) 2006 - 2021, Intel Corporation. All rights reserved.
+# Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
# (C) Copyright 2016 Hewlett Packard Enterprise Development LP
# Copyright (c) 2019, Citrix Systems, Inc. # Copyright (c) Microsoft Corporation. @@ -218,6 +218,7 @@ [LibraryClasses] =20 Tcg2PhysicalPresenceLib|OvmfPkg/Library/Tcg2PhysicalPresenceLibNull/DxeT= cg2PhysicalPresenceLib.inf TpmMeasurementLib|MdeModulePkg/Library/TpmMeasurementLibNull/TpmMeasurem= entLibNull.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf RealTimeClockLib|OvmfPkg/Library/XenRealTimeClockLib/XenRealTimeClockLib= .inf TimeBaseLib|EmbeddedPkg/Library/TimeBaseLib/TimeBaseLib.inf !ifdef $(DEBUG_ON_HYPERVISOR_CONSOLE) --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89441): https://edk2.groups.io/g/devel/message/89441 Mute This Topic: https://groups.io/mt/90781912/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89442+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89442+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255528; cv=none; d=zohomail.com; s=zohoarc; b=UClduxCbXsrKYU+mAm0YQoLrAReO3ABSJ/R32vzvToqdMgXf3++kOWFHmeoALQ25LQ9h3JOSXhbQOWcHggVOwl7t13sTSkEoo3/eOZKR6DhykG++zqG/O/hjZr4wJNrkRN8UdLi0eTCvm3yXs+I13zAq4biDx7ESeE6Tg6u9uVM= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255528; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=X6mfLt0H8GuDVKJZMRo1YD9ReClQsgVY37k1841wJwM=; b=SQSlbn2bCJpye3kuEmANupZ0XshEOmBxta04Q0vqngJvGa2KnHm8aFwqXFAuccxldp2m+lPL0eHZh21vdKMJ0dVcZE/YIyxiedksgS4hVNvhMjIBo1IXo54WwX6tdfJUD+RN3qQSeyaMN2SvGWOkSBDhxAeRB2okDMGZpcQGTZM= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89442+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255528921740.4395532351566; Fri, 29 Apr 2022 11:05:28 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id BMoQYY1788612x0AqIAd3OgU; Fri, 29 Apr 2022 11:05:28 -0700 X-Received: from mga12.intel.com (mga12.intel.com [192.55.52.136]) by mx.groups.io with SMTP id smtpd.web12.13563.1651255524511770306 for ; Fri, 29 Apr 2022 11:05:26 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="246648137" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="246648137" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:25 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955829" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:24 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Jiewen Yao , Min Xu , Brijesh Singh , Erdem Aktas , James Bottomley , Tom Lendacky , Nishant C Mistry Subject: [edk2-devel] [Patch v2 24/28] OvmfPkg: Add ProtectedVariableLib reference Date: Fri, 29 Apr 2022 11:04:26 -0700 Message-Id: <20220429180430.3292-25-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: mVA9zTEOcrUAHgYLE4jMV8O7x1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255528; bh=E+hORvflTmcSVIwkDhf4Bat5Mc0STEf/tpJwzHnTA4o=; h=Cc:Date:From:Reply-To:Subject:To; b=thx5P/wlRuisP60W+JJBtoHDk8bG8aWaIY5BWyp/0F5YmapffTbNQ2raWtwsGycFrWU 8Jzp497IGLJgArTE1CzGZ/4UHDFxPpz+MxHXmnrz8k014AQkF4zkRHTtHAKwEpx8MOv/H 0FzfDl1fuY0vSmI7WApO+CymQtDohDo4NMM= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255530265100077 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add reference to null ProtectedVariableLib. Cc: Jian J Wang Cc: Jiewen Yao Cc: Min Xu Cc: Brijesh Singh Cc: Erdem Aktas Cc: James Bottomley Cc: Tom Lendacky Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- OvmfPkg/AmdSev/AmdSevX64.dsc | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/OvmfPkg/AmdSev/AmdSevX64.dsc b/OvmfPkg/AmdSev/AmdSevX64.dsc index f0700035c116..b0072f5fb0d3 100644 --- a/OvmfPkg/AmdSev/AmdSevX64.dsc +++ b/OvmfPkg/AmdSev/AmdSevX64.dsc @@ -3,7 +3,7 @@ # virtual machine remote attestation and secret injection # # Copyright (c) 2020 James Bottomley, IBM Corporation. -# Copyright (c) 2006 - 2021, Intel Corporation. All rights reserved.
+# Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
# (C) Copyright 2016 Hewlett Packard Enterprise Development LP
# # SPDX-License-Identifier: BSD-2-Clause-Patent @@ -176,6 +176,7 @@ [LibraryClasses] FrameBufferBltLib|MdeModulePkg/Library/FrameBufferBltLib/FrameBufferBltL= ib.inf BlobVerifierLib|OvmfPkg/AmdSev/BlobVerifierLibSevHashes/BlobVerifierLibS= evHashes.inf MemEncryptTdxLib|OvmfPkg/Library/BaseMemEncryptTdxLib/BaseMemEncryptTdxL= ib.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf =20 !if $(SOURCE_DEBUG_ENABLE) =3D=3D TRUE PeCoffExtraActionLib|SourceLevelDebugPkg/Library/PeCoffExtraActionLibDeb= ug/PeCoffExtraActionLibDebug.inf --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89442): https://edk2.groups.io/g/devel/message/89442 Mute This Topic: https://groups.io/mt/90781914/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89444+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89444+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255530; cv=none; d=zohomail.com; s=zohoarc; b=ZX+6fyToZOCZI6CwtjgGmcrBEebFQcSIEVJj6f32Rkvrsv41DP5xBg95SxyAeVU+P5FoeOP+WFRoUrzKooDUvFPAm+uAbS/Fe+2lJGsp8BAOVcEgmBiyMPIqP2Oce2/y64y08gA4JRV4KOrYtN1QT8a2UXQHMGZTv0W+MahFKi4= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255530; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=DlrPd6fzBJl6jCG30R4FeagKe/kP9KLg7g/3gw0EgAM=; b=UBIFdCUtwGQPl6+6ealilg6PTFfFRBOr9G/fAolR5/Juy0+XpPbYxHTfIp4cpKkAa9JOOjAddiwUHBYPFDo7GEz0s/Vdj+pLTDBAbjfuPbnmfhVLNglkx+lf9TdD/SFAQFqBsgRDv6DKjTfzQf0mojJsD/W/g4Jiy2ZOcrmC41g= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89444+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255530100907.1455251813804; Fri, 29 Apr 2022 11:05:30 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id t2aFYY1788612xKbAOYOpkLD; Fri, 29 Apr 2022 11:05:29 -0700 X-Received: from mga12.intel.com (mga12.intel.com [192.55.52.136]) by mx.groups.io with SMTP id smtpd.web12.13563.1651255524511770306 for ; Fri, 29 Apr 2022 11:05:27 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="246648140" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="246648140" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:25 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955836" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:25 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Rebecca Cran , Peter Grehan , Nishant C Mistry Subject: [edk2-devel] [Patch v2 25/28] OvmfPkg: Add ProtectedVariableLib reference Date: Fri, 29 Apr 2022 11:04:27 -0700 Message-Id: <20220429180430.3292-26-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: mJ7HsqsCT5FLRK6PCPjJEYVAx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255529; bh=3K3PS1JBxIfvq1y1icxOgYKLsBxiBPdBXGPHi1Mf36E=; h=Cc:Date:From:Reply-To:Subject:To; b=l30ZnsOKzouBodX/BR4+ui5eylfoSMEk9+rR/XOkv5apFxSX0saHIRqKmX/5L5H6l3+ GtI/OQHbhgpsfcagfIndwKWOuy5XAvpZHCg2jKt8pTfucOGXDnxqWQe0qgEfrTRXgcKVV gKsX4WeWzbyXVojQi7w9wH1IJIL/ODCI4/c= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255532311100093 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add reference to null ProtectedVariableLib. Cc: Jian J Wang Cc: Rebecca Cran Cc: Peter Grehan Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- OvmfPkg/Bhyve/BhyveX64.dsc | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/OvmfPkg/Bhyve/BhyveX64.dsc b/OvmfPkg/Bhyve/BhyveX64.dsc index a8fa4d38ab60..5b36dc2358bb 100644 --- a/OvmfPkg/Bhyve/BhyveX64.dsc +++ b/OvmfPkg/Bhyve/BhyveX64.dsc @@ -1,6 +1,6 @@ # # Copyright (c) 2020, Rebecca Cran -# Copyright (c) 2006 - 2021, Intel Corporation. All rights reserved.
+# Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
# (C) Copyright 2016 Hewlett Packard Enterprise Development LP
# Copyright (c) 2014, Pluribus Networks, Inc. # @@ -171,6 +171,7 @@ [LibraryClasses] MemEncryptSevLib|OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLi= b.inf LockBoxLib|OvmfPkg/Library/LockBoxLib/LockBoxBaseLib.inf MemEncryptTdxLib|OvmfPkg/Library/BaseMemEncryptTdxLib/BaseMemEncryptTdxL= ib.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf =20 CustomizedDisplayLib|MdeModulePkg/Library/CustomizedDisplayLib/Customize= dDisplayLib.inf FrameBufferBltLib|MdeModulePkg/Library/FrameBufferBltLib/FrameBufferBltL= ib.inf --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89444): https://edk2.groups.io/g/devel/message/89444 Mute This Topic: https://groups.io/mt/90781916/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89445+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89445+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255529; cv=none; d=zohomail.com; s=zohoarc; b=fq8hGdEWfCfkYm0w+iooFb4EvXk6R+sLsYZat2k1DMOU7jiwGbHNB+bVexnvdaDyQnRU96HU2nszIT+h/fxrHh5KK4DrzAsoUtnXzRR5KxtaWqyJj5+r2zXPglmMSoxr7yeyn+uWyZDBNUoOzgzzPfWF7Eu95bCoYEBeOc4WEQg= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255529; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=9jodqxAfc8dJSbtlOqItkE9OFjHFffwwLyh5GFB7Tcc=; b=FRq0M3C7bVLZiLSUgDSGLH7zXFPe7/QeJDuJvANLu5mTKrceIPbi+3SVUK5Kf0diK+2Jlav0hqTuqLhT71vEKzLf9eWV5hi5H+fjgfeRBHMLJQok3WBSaMj3GDnzkaI/Ayrw9hpHWpWmGb2WU00PDWjRfCAeFVtSGVopEW5Pk0g= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89445+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255529639399.44890773671614; Fri, 29 Apr 2022 11:05:29 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id 1miEYY1788612xK73mqrl608; Fri, 29 Apr 2022 11:05:29 -0700 X-Received: from mga12.intel.com (mga12.intel.com [192.55.52.136]) by mx.groups.io with SMTP id smtpd.web12.13564.1651255527247492024 for ; Fri, 29 Apr 2022 11:05:27 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="246648142" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="246648142" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:25 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955844" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:25 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Gerd Hoffmann , Nishant C Mistry Subject: [edk2-devel] [Patch v2 26/28] OvmfPkg: Add ProtectedVariableLib reference Date: Fri, 29 Apr 2022 11:04:28 -0700 Message-Id: <20220429180430.3292-27-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: pT8ORpLAnN4a18BNoPQnPDVpx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255529; bh=QwZ36Zipn228kOlR64dhQSPsJk2HJXIjkPZByXJ44eA=; h=Cc:Date:From:Reply-To:Subject:To; b=dWM4ZiDgahFfimvhlriLD2gMwc+tyn1bbumfuBA7UjLMxrHSZZelwuiB0/aarlaGbP2 mTEb0XXkB9nS9PoolKLf8vYgq/Kf8aCKo85ciQE8lQOmUod9pnZQ2HMBnXStCDNAY0hfV dIoG4vTksaOuo1aRNsS0R3HiGnaiWZuO/yg= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255530260100076 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add reference to null ProtectedVariableLib. Cc: Jian J Wang Cc: Gerd Hoffmann Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- OvmfPkg/Microvm/MicrovmX64.dsc | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/OvmfPkg/Microvm/MicrovmX64.dsc b/OvmfPkg/Microvm/MicrovmX64.dsc index 20c3c9c4d862..723be8ad345c 100644 --- a/OvmfPkg/Microvm/MicrovmX64.dsc +++ b/OvmfPkg/Microvm/MicrovmX64.dsc @@ -1,7 +1,7 @@ ## @file # EFI/Framework Open Virtual Machine Firmware (OVMF) platform # -# Copyright (c) 2006 - 2021, Intel Corporation. All rights reserved.
+# Copyright (c) 2006 - 2022, Intel Corporation. All rights reserved.
# (C) Copyright 2016 Hewlett Packard Enterprise Development LP
# Copyright (c) Microsoft Corporation. # @@ -183,6 +183,7 @@ [LibraryClasses] CustomizedDisplayLib|MdeModulePkg/Library/CustomizedDisplayLib/Customize= dDisplayLib.inf FrameBufferBltLib|MdeModulePkg/Library/FrameBufferBltLib/FrameBufferBltL= ib.inf MemEncryptTdxLib|OvmfPkg/Library/BaseMemEncryptTdxLib/BaseMemEncryptTdxL= ib.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf =20 !if $(SOURCE_DEBUG_ENABLE) =3D=3D TRUE PeCoffExtraActionLib|SourceLevelDebugPkg/Library/PeCoffExtraActionLibDeb= ug/PeCoffExtraActionLibDebug.inf --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89445): https://edk2.groups.io/g/devel/message/89445 Mute This Topic: https://groups.io/mt/90781917/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89443+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89443+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255528; cv=none; d=zohomail.com; s=zohoarc; b=fvXFlorgvanHfdfMRlERE7ceerVCyPAHrLThQQv+SXptQUW+S1x7NPETj9N9DW7Mdg/9e+jZlcmlCjwxw4og82HcMNa67VEXPrW0xgqZ43PsdtN7hy/vg5mazCTZmb+3ns+Vw2rpwficSwbhqdQqZQswlhZgICyaO8mwJVq34Wk= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255528; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=tFIzJPLjYfnXPNCDBouoSB/yR7VlqTy0TWcy6fpV9vQ=; b=VZS2dVKDo+TXXuPOHJDEvFljh32qC2p/kAn26sy9q3fNLJ8P2xIu9ijqtzvWOdFblTGNoKGMgvLMg25x/My4vX37mzKvY+iXKPs/IfevBd2q/oUCszO4fL5IUhxb2119pQIxBbNNOcF2Zb26WxwwU2eGsDOSwZZmoWJeWoBlrHM= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89443+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255528958276.592572656706; Fri, 29 Apr 2022 11:05:28 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id iASiYY1788612x73kleBITba; Fri, 29 Apr 2022 11:05:28 -0700 X-Received: from mga02.intel.com (mga02.intel.com [134.134.136.20]) by mx.groups.io with SMTP id smtpd.web11.13476.1651255526776632242 for ; Fri, 29 Apr 2022 11:05:27 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="254117535" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="254117535" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga101.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:26 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955851" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:25 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jian J Wang , Sebastien Boeuf , Nishant C Mistry Subject: [edk2-devel] [Patch v2 27/28] OvmfPkg: Add ProtectedVariable reference Date: Fri, 29 Apr 2022 11:04:29 -0700 Message-Id: <20220429180430.3292-28-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: TfNRfUQWnJ1kAvKgCAndVHQFx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255528; bh=UePyQ6x8GE/KNJ6rOjI0KsfxUJ4O8QFhpjmLTUwU6ks=; h=Cc:Date:From:Reply-To:Subject:To; b=nm+UvbyBTHGIHKzxjq09o65VglbCp4qpQYuQTuY/ZvJ98+4uzN7dHvG0MzkWyrBWcPh NUprdPx+CSWDQbsKBdPxpo/4G2EkE1PKhAUBXd9MiGF/5ICYl254oxaRIuHxiZOgBD4P0 Sae6Pz/VvC9TUZWCyS40xDITGBBmvmr497g= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255530250100075 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 Add reference to null ProtectedVariableLib. Cc: Jian J Wang Cc: Sebastien Boeuf Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang Acked-by: Ard Biesheuvel --- OvmfPkg/CloudHv/CloudHvX64.dsc | 1 + 1 file changed, 1 insertion(+) diff --git a/OvmfPkg/CloudHv/CloudHvX64.dsc b/OvmfPkg/CloudHv/CloudHvX64.dsc index d1c85f60c768..3ec7e860c613 100644 --- a/OvmfPkg/CloudHv/CloudHvX64.dsc +++ b/OvmfPkg/CloudHv/CloudHvX64.dsc @@ -180,6 +180,7 @@ [LibraryClasses] VirtioLib|OvmfPkg/Library/VirtioLib/VirtioLib.inf LoadLinuxLib|OvmfPkg/Library/LoadLinuxLib/LoadLinuxLib.inf MemEncryptSevLib|OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLi= b.inf + ProtectedVariableLib|MdeModulePkg/Library/ProtectedVariableLibNull/Prote= ctedVariableLibNull.inf !if $(SMM_REQUIRE) =3D=3D FALSE LockBoxLib|OvmfPkg/Library/LockBoxLib/LockBoxBaseLib.inf !endif --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89443): https://edk2.groups.io/g/devel/message/89443 Mute This Topic: https://groups.io/mt/90781915/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- From nobody Tue Apr 23 14:49:50 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) client-ip=66.175.222.108; envelope-from=bounce+27952+89446+1787277+3901457@groups.io; helo=mail02.groups.io; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89446+1787277+3901457@groups.io; dmarc=fail(p=none dis=none) header.from=intel.com ARC-Seal: i=1; a=rsa-sha256; t=1651255530; cv=none; d=zohomail.com; s=zohoarc; b=UL0dRQl+Lh4TXSHJkPKS7ddoc3V1w8XCP8CvN5rmcapvWWMJKrqg9difg92L4zqtTu0XIT4eQcfzIWUUxJ2Y7N8y4fCfiu5qQhOWiiiq6AZeBlY8Tt72Hb+bYONWJ03HGu2m70ERW7dzyvJrJvvjcLEBi/lqWahsAJrgyzrzto8= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1651255530; h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To; bh=9hFI87tYBQzTg+aQ2v68Kgm/o6CpVHSFTrp5oT8S5H8=; b=OPSX6tkbu7dOJs1qtFlDcXXGxhrumnHlvFZ5X5nr77uRP46gA3VUZmrWoDEWxD90ikGgZO0uwCnYSAw2hLePIjM5SBWQgNaLwB7xeQqSW0VWrAR7ZZGr92UrqH8Sa065WPL22+M3PR54cFj2niLVlLsmkdG/iOYemm/EbivDe5c= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce+27952+89446+1787277+3901457@groups.io; dmarc=fail header.from= (p=none dis=none) Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by mx.zohomail.com with SMTPS id 1651255530422129.17931289660078; Fri, 29 Apr 2022 11:05:30 -0700 (PDT) Return-Path: X-Received: by 127.0.0.2 with SMTP id qdF1YY1788612xbkGHLyxYhY; Fri, 29 Apr 2022 11:05:30 -0700 X-Received: from mga06.intel.com (mga06.intel.com [134.134.136.31]) by mx.groups.io with SMTP id smtpd.web09.13408.1651255528590765045 for ; Fri, 29 Apr 2022 11:05:28 -0700 X-IronPort-AV: E=McAfee;i="6400,9594,10332"; a="327227312" X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="327227312" X-Received: from orsmga003.jf.intel.com ([10.7.209.27]) by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:26 -0700 X-IronPort-AV: E=Sophos;i="5.91,186,1647327600"; d="scan'208";a="514955860" X-Received: from jvang-mobl.amr.corp.intel.com ([10.212.198.238]) by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Apr 2022 11:05:26 -0700 From: "Judah Vang" To: devel@edk2.groups.io Cc: Jiewen Yao , Jian J Wang , Xiaoyu Lu , Guomin Jiang , Nishant C Mistry Subject: [edk2-devel] [Patch v2 28/28] CryptoPkg: Enable cypto HMAC KDF library Date: Fri, 29 Apr 2022 11:04:30 -0700 Message-Id: <20220429180430.3292-29-judah.vang@intel.com> In-Reply-To: <20220429180430.3292-1-judah.vang@intel.com> References: <20220429180430.3292-1-judah.vang@intel.com> MIME-Version: 1.0 Precedence: Bulk List-Unsubscribe: List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,judah.vang@intel.com X-Gm-Message-State: YSH8OI1xyKeKdAdCxoUH9maMx1787277AA= Content-Transfer-Encoding: quoted-printable DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io; q=dns/txt; s=20140610; t=1651255530; bh=D4LCh787ZM6GIPr8fzbAaBlkR8Elr+XwXHEsbs2q6hc=; h=Cc:Date:From:Reply-To:Subject:To; b=gV9MCpPJbvrj5wcTvDePAHOjgNEY21yiphoznoENxUZSV8q4X61ri34J90//5jWk2xH iPMfDcP/+v0lECKYTBxGG6FfuJAoJpB3IBH0qjogv9OTCR24A7sOQRnRyeQ7Yka1C59jO SK4gtqA83APYsoeMitOiTdWp3vLgDny69aI= X-ZohoMail-DKIM: pass (identity @groups.io) X-ZM-MESSAGEID: 1651255532341100094 Content-Type: text/plain; charset="utf-8" REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2594 RPMC confidentiality feature requires HMAC-SHA256 support during SMM phase. This allows the protected variable's data to be encrypted in the SPI flash. Cc: Jiewen Yao Cc: Jian J Wang Cc: Xiaoyu Lu Cc: Guomin Jiang Cc: Nishant C Mistry Signed-off-by: Jian J Wang Signed-off-by: Nishant C Mistry Signed-off-by: Judah Vang --- CryptoPkg/Library/BaseCryptLib/SmmCryptLib.inf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CryptoPkg/Library/BaseCryptLib/SmmCryptLib.inf b/CryptoPkg/Lib= rary/BaseCryptLib/SmmCryptLib.inf index ae75bc87b5e5..28ad0bf0816d 100644 --- a/CryptoPkg/Library/BaseCryptLib/SmmCryptLib.inf +++ b/CryptoPkg/Library/BaseCryptLib/SmmCryptLib.inf @@ -43,7 +43,7 @@ [Sources] Hash/CryptCShake256.c Hash/CryptParallelHash.c Hmac/CryptHmacSha256.c - Kdf/CryptHkdfNull.c + Kdf/CryptHkdf.c Cipher/CryptAes.c Pk/CryptRsaBasic.c Pk/CryptRsaExtNull.c --=20 2.35.1.windows.2 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#89446): https://edk2.groups.io/g/devel/message/89446 Mute This Topic: https://groups.io/mt/90781918/1787277 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-