From 054dc6d29e2bfdb54830c70c5ca20c1344cbde83 Mon Sep 17 00:00:00 2001
From: Gary Ching-Pang Lin <glin@suse.com>
Date: Tue, 30 Oct 2012 10:32:35 +0800
Subject: [PATCH] Check the vendor blacklist correctly

---
 shim.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/shim.c b/shim.c
index 0cd89b4..81e4231 100644
--- a/shim.c
+++ b/shim.c
@@ -341,14 +341,14 @@ static EFI_STATUS check_blacklist (WIN_CERTIFICATE_EFI_PKCS *cert,
 
 	if (check_db_hash_in_ram(vendor_dbx, vendor_dbx_size, sha256hash,
 				 SHA256_DIGEST_SIZE, EfiHashSha256Guid) ==
-				DATA_NOT_FOUND)
+				DATA_FOUND)
 		return EFI_ACCESS_DENIED;
 	if (check_db_hash_in_ram(vendor_dbx, vendor_dbx_size, sha1hash,
 				 SHA1_DIGEST_SIZE, EfiHashSha1Guid) ==
-				DATA_NOT_FOUND)
+				DATA_FOUND)
 		return EFI_ACCESS_DENIED;
 	if (check_db_cert_in_ram(vendor_dbx, vendor_dbx_size, cert,
-				 sha256hash) == DATA_NOT_FOUND)
+				 sha256hash) == DATA_FOUND)
 		return EFI_ACCESS_DENIED;
 
 	if (check_db_hash(L"dbx", secure_var, sha256hash, SHA256_DIGEST_SIZE,