efi_loader: handle EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS
We don't yet support EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS for file based variables, but we should pass it to TEE based variable stores. Signed-off-by: Heinrich Schuchardt <heinrich.schuchardt@canonical.com> Reviewed-by: Ilias Apalodimas <ilias.apalodimas@linaro.org>
This commit is contained in:
Heinrich Schuchardt
@@ -507,7 +507,8 @@ extern char _binary_u_boot_bin_start[], _binary_u_boot_bin_end[];
|
|||||||
EFI_VARIABLE_HARDWARE_ERROR_RECORD | \
|
EFI_VARIABLE_HARDWARE_ERROR_RECORD | \
|
||||||
EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS | \
|
EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS | \
|
||||||
EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS | \
|
EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS | \
|
||||||
EFI_VARIABLE_APPEND_WRITE)
|
EFI_VARIABLE_APPEND_WRITE | \
|
||||||
|
EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS)
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* efi_get_priv() - Get access to the EFI-private information
|
* efi_get_priv() - Get access to the EFI-private information
|
||||||
|
|||||||
@@ -235,8 +235,12 @@ efi_status_t efi_set_variable_int(const u16 *variable_name,
|
|||||||
if (data_size && !data)
|
if (data_size && !data)
|
||||||
return EFI_INVALID_PARAMETER;
|
return EFI_INVALID_PARAMETER;
|
||||||
|
|
||||||
/* EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS is deprecated */
|
/*
|
||||||
if (attributes & EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS)
|
* EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS is deprecated.
|
||||||
|
* We don't support EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS.
|
||||||
|
*/
|
||||||
|
if (attributes & (EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS | \
|
||||||
|
EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS))
|
||||||
return EFI_UNSUPPORTED;
|
return EFI_UNSUPPORTED;
|
||||||
|
|
||||||
/* Make sure if runtime bit is set, boot service bit is set also */
|
/* Make sure if runtime bit is set, boot service bit is set also */
|
||||||
|
|||||||
Reference in New Issue
Block a user