proxmox-mirrors/mirror_edk2
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_edk2 synced 2026-01-05 23:17:05 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
704b71d7e1
mirror_edk2/MdeModulePkg/Universal/Variable/RuntimeDxe
History
Laszlo Ersek 704b71d7e1 MdeModulePkg/Variable/RuntimeDxe: delete & lock MOR in the absence of SMM 
VariableRuntimeDxe deletes and locks the MorLock variable in
MorLockInit(), with the argument that any protection provided by MorLock
can be circumvented if MorLock can be overwritten by unprivileged code
(i.e., outside of SMM).

Extend the argument and the logic to the MOR variable, which is supposed
to be protected by MorLock. Pass Attributes=0 when deleting MorLock and
MOR both.

This change was suggested by Star; it is inspired by earlier VariableSmm
commit fda8f631ed ("MdeModulePkg/Variable/RuntimeDxe: delete and lock
OS-created MOR variable", 2017-10-03).

Cc: Eric Dong <eric.dong@intel.com>
Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Star Zeng <star.zeng@intel.com>
Suggested-by: Star Zeng <star.zeng@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Reviewed-by: Star Zeng <star.zeng@intel.com>
2017-10-25 14:06:15 +02:00
..
Measurement.c MdeModulePkg/Variable/RuntimeDxe: move SecureBootHook() decl to new header 2017-10-10 11:25:04 +02:00
PrivilegePolymorphic.h MdeModulePkg/Variable/RuntimeDxe: introduce MorLockInitAtEndOfDxe() hook 2017-10-10 11:25:21 +02:00
Reclaim.c MdeModulePkg Variable: Merge from Auth Variable driver in SecurityPkg 2015-07-01 03:08:29 +00:00
TcgMorLockDxe.c MdeModulePkg/Variable/RuntimeDxe: delete & lock MOR in the absence of SMM 2017-10-25 14:06:15 +02:00
TcgMorLockSmm.c MdeModulePkg/Variable/RuntimeDxe: delete and lock OS-created MOR variable 2017-10-10 11:25:28 +02:00
VarCheck.c MdeModulePkg Variable: Consume the separated VarCheckLib 2015-08-25 03:01:56 +00:00
Variable.c MdeModulePkg/Variable/RuntimeDxe: move MOR func. declarations to header 2017-10-10 11:25:19 +02:00
Variable.h MdeModulePkg/Variable/RuntimeDxe: move SecureBootHook() decl to new header 2017-10-10 11:25:04 +02:00
VariableDxe.c MdeModulePkg/Variable/RuntimeDxe: introduce MorLockInitAtEndOfDxe() hook 2017-10-10 11:25:21 +02:00
VariableExLib.c MdeModulePkg Variable: Read MonotonicCount by ReadUnaligned64() 2015-07-27 00:49:00 +00:00
VariableRuntimeDxe.inf MdeModulePkg/Variable/RuntimeDxe: move SecureBootHook() decl to new header 2017-10-10 11:25:04 +02:00
VariableRuntimeDxe.uni MdeModulePkg: Convert all .uni files to utf-8 2015-12-15 04:56:23 +00:00
VariableRuntimeDxeExtra.uni MdeModulePkg: Convert all .uni files to utf-8 2015-12-15 04:56:23 +00:00
VariableSmm.c MdeModulePkg/Variable/RuntimeDxe: introduce MorLockInitAtEndOfDxe() hook 2017-10-10 11:25:21 +02:00
VariableSmm.inf MdeModulePkg/Variable/RuntimeDxe: delete and lock OS-created MOR variable 2017-10-10 11:25:28 +02:00
VariableSmm.uni MdeModulePkg: Convert all .uni files to utf-8 2015-12-15 04:56:23 +00:00
VariableSmmExtra.uni MdeModulePkg: Convert all .uni files to utf-8 2015-12-15 04:56:23 +00:00
VariableSmmRuntimeDxe.c MdeModulePkg/Variable/RuntimeDxe: move SecureBootHook() decl to new header 2017-10-10 11:25:04 +02:00
VariableSmmRuntimeDxe.inf MdeModulePkg/Variable/RuntimeDxe: move SecureBootHook() decl to new header 2017-10-10 11:25:04 +02:00
VariableSmmRuntimeDxe.uni MdeModulePkg: Convert all .uni files to utf-8 2015-12-15 04:56:23 +00:00
VariableSmmRuntimeDxeExtra.uni MdeModulePkg: Convert all .uni files to utf-8 2015-12-15 04:56:23 +00:00