Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / android_bootable_bootloader_edk2 / c1cdcab9526506673b882017845a043cead8bc69 / SecurityPkg / VariableAuthenticated
  1. 201edad Update Module BaseName to avoid the same name. by Gao, Liming · 11 years ago
  2. c93bcb7 Return to BMM page if parse the file info failed. by Eric Dong · 11 years ago
  3. 0b716fd Rollback the patch 15054. by Eric Dong · 11 years ago
  4. eff0779 Not update the status until parse the file info success. by Eric Dong · 11 years ago
  5. 742d9b3 Refine the Secure Boot UI driver to input the GUID and varstroe name when using HiiSetBrowserData/HiiGetBrowserData. by Fu Siyuan · 11 years ago
  6. fddbbc6 SecurityPkg Variable: Remove mStorageData buffer allocation and use Scratch buffer instead to reduce SMRAM consumption. by Star Zeng · 11 years ago
  7. 128ef09 MdeModulePkg and SecurityPkg Variable: Optimize the code to reduce some SMRAM consumption during variable reclaiming. by Star Zeng · 11 years ago
  8. 7baf3c6 MdeModulePkg and SecurityPkg Variable: Enhance code to use the new variable data instead of old variable data when variable reclaim. by Star Zeng · 11 years ago
  9. 5ecc20b Fix coding style issue. by Fu Siyuan · 11 years ago
  10. 44446d1 Fix a bug about the “VendorKey” variable update logic. by Fu Siyuan · 11 years ago
  11. c1d9324 Add TPM2 implementation. by jyao1 · 11 years ago
  12. 3a186b0 Return EFI_WRITE_PROTECTED when setting KEKDefault, PKDefault, dbDefault, dbxDefault and dbtDefault variable. by Fu Siyuan · 11 years ago
  13. 74b5fd7 Update the chaining requirements with regards to the Platform Key. by Fu Siyuan · 11 years ago
  14. a555940 Add “VendorKeys” variable for indicating out of band key modification. by Fu Siyuan · 11 years ago
  15. a365eed Fix a bug in secure boot configuration driver: Enroll DB/KEK will disable Attempt Secure Boot option. by Fu Siyuan · 11 years ago
  16. 6675a21 MdePkg/MdeModulePkg/SecurityPkg Variable: Forbid creation of non-spec variables in EFI_GLOBAL_VARIABLE namespace. by Star Zeng · 11 years ago
  17. 6e67fec MdeModulePkg/SecurityPkg Variable: If a preexisting variable is rewritten with different attributes, SetVariable() shall not modify the variable and shall return EFI_INVALID_PARAMETER. by Star Zeng · 11 years ago
  18. fd64f84 Checks the length of the file name to avoid illegal access. by Gary Ching-Pang Lin · 11 years ago
  19. 863986b Update all the code to consume the ConvertDevicePathToText, ConvertDevicePathNodeToText, ConvertTextToDevicePath and ConvertTextToDeviceNode APIs in DevicePathLib. by Ruiyu Ni · 11 years ago
  20. 41982eb SecurityPkg Variable: Add the check for PcdFlashNvStorageVariableSize <= PcdFlashNvStorageFtwSpareSize. by Star Zeng · 11 years ago
  21. 039a40a SecurityPkg: Variable drivers robustly handle crashes during Reclaim(). by Star Zeng · 11 years ago
  22. 328e5d8 The list of locked variables is traversed at runtime, hence we must by Laszlo Ersek · 12 years ago
  23. e4b7e2c Revert the changes made in 14403 because it incorrectly changed the EOL. by Ruiyu Ni · 12 years ago
  24. 9199cb9 The list of locked variables is traversed at runtime, hence we must by Laszlo Ersek · 12 years ago
  25. 164a9b6 Fix the TOCTOU issue of CommBufferSize itself for SMM communicate handler input. by lzeng14 · 12 years ago
  26. 6ab9f44 Add the EDKII_VARIABLE_LOCK_PROTOCOL implementation in SecurityPkg variable drivers. by niruiyu · 12 years ago
  27. 0ba17ad Fix a bug that “SecureBoot” varaible will be updated to NV+AT attribute incorrectly. by sfu5 · 12 years ago
  28. ee79ac8 Pop up error message when user tries to enroll an invalid certificate file into KEK/DB/DBX. by sfu5 · 12 years ago
  29. 5e5bb2a 1. Fix TOCTOU issue in VariableSmm, FtwSmm, FpdtSmm, SmmCorePerformance SMM handler. For VariableSmm, pre-allocate a mVariableBufferPayload buffer with mVariableBufferPayloadSize(match with mVariableBufferPayloadSize in VariableSmmRuntimeDxe) to hold communicate buffer payload to avoid TOCTOU issue. by lzeng14 · 12 years ago
  30. 732d199 Fix memory overflow & VariableSize check issue for SetVariable append write. by czhang46 · 12 years ago
  31. 9d00d20 1. Use the check IsAddressValid() to prevent SMM communication buffer overflow in SmmVariable, FtwSmm, FpdtSmm, SmmCorePerformance and SmmBaseHelper, and add check to prevent InfoSize overflows in SmmVariableHandler. by lzeng14 · 12 years ago
  32. 968e143 Check for NULL pointer before free it. by sfu5 · 12 years ago
  33. 56251c6 Fix potential overflow for SetVariable interface by czhang46 · 12 years ago
  34. d17c4ea Fix a potential SMM memory dump issue. If pass communication buffer with DataBuffer to SMM SetVariable which is big enough to cover SMM range. Then GetVariable can dump SMM memory contents. Add more range check for SetVariable by czhang46 · 12 years ago
  35. 3a146f2 Fix SMM Variable driver stack GetVariable return INVALID_PARAMETER when DataSize is bigger than SMM communication buffer. by czhang46 · 12 years ago
  36. 0c55190 Update SMM variable DXE driver GetNextVariable interface to comply with UEFI spec by czhang46 · 12 years ago
  37. a2f2c25 Update secure boot UI driver to handle “reset to default” hot key. by sfu5 · 12 years ago
  38. 3588bb3 If DataSize or VariableNameSize is near MAX_ADDRESS, this can cause the computed PayLoadSize to overflow to a small value and pass the check in InitCommunicateBuffer(). To protect against this vulnerability, check DataSize and VariableNameSize to make sure PayloadSize doesn't overflow. by lzeng14 · 12 years ago
  39. ca5a7d8 Add error handling code to prevent variable store corruption in release build. by sfu5 · 12 years ago
  40. 5767f22 Check the input VaraibleName for db/dbx when appending variables with formatted as EFI_SIGNATURE_LIST. by sfu5 · 12 years ago
  41. 12cbe23 Check for NULL pointer before dereference it. by sfu5 · 12 years ago
  42. 932e0f6 Variables with state VAR_ADDED&VAR_IN_DELETED_TRANSITION should be considered as valid variables if there is no duplicated ones with VAR_ADDED state. by lzeng14 · 12 years ago
  43. 0cc565d Add NULL pointer check. by lzeng14 · 12 years ago
  44. b7d269e Fix infinite loop bug in secure boot UI driver. by sfu5 · 12 years ago
  45. 23b0693 1. Update the logic of UpdateVariable() for updating variable from: by lzeng14 · 12 years ago
  46. aab9212 Fix the issue that RuntimeServiceQueryVariableInfo() in VariableSmmRuntimeDxe always return EFI_SUCCESS. by lzeng14 · 12 years ago
  47. f71ed83 1. Set the secure boot state to Standard Mode when user leaving secure boot setup page. by sfu5 · 12 years ago
  48. 83758cd Fix a bug that the invalid public key will never be removed from public key database. by sfu5 · 12 years ago
  49. 6ed1ec5 Add the TPL raise/restore code for VariableSmmRuntimeDxe to avoid variable services reentry. by lzeng14 · 12 years ago
  50. 335e268 1. Don't assume that flush the HOB variable to flash must be successful. by lzeng14 · 12 years ago
  51. 3f5c168 Use SMM_VARIABLE_COMMUNICATE_HEADER_SIZE instead of OFFSET_OF (SMM_VARIABLE_COMMUNICATE_HEADER, Data). by lzeng14 · 12 years ago
  52. c11d47b Move the declaration of gEfiCertDbGuid to the package's Include folder. by sfu5 · 12 years ago
  53. 275beb2 1. Correct the counter-based hash algorithm according to UEFI spec. by sfu5 · 12 years ago
  54. 89be2b0 Fix time-based and count-based authenticated variable can be updated by each other without verification. by gdong1 · 12 years ago
  55. 0357efe Add a dialog box with help message when user changes the state of "Attempt Secure Boot" check box. by sfu5 · 12 years ago
  56. 42ed760 1. Fix a bug when comparing two timestamp in auth-variable driver. by sfu5 · 12 years ago
  57. ad84df7 SecurityPkg/VariableSmm: Fix a VariableSmm bug when reading variable with size 0. by erictian · 12 years ago
  58. f6e2335 1. Initialize certdb variable with correct value of list size. by sfu5 · 12 years ago
  59. 8f3a9e5 LastVariableOffset is wrongly set to 0 when FtwVariableSpace() fails. Recalculate the HwErrVariableTotalSize, HwErrVariableTotalSize and LastVariableOffset when FtwVariableSpace() fails. by lzeng14 · 12 years ago
  60. e77f9ef Use RsaGetPublicKeyFromX509() to validate the given X.509 certificate for PK/KEK/db/dbx database. by sfu5 · 12 years ago
  61. e4d7370 Update the secure boot configuration UI to accept *.crt certificate file. by sfu5 · 12 years ago
  62. 05a643f 1. Remove extra attribute for SetupMode, SignatureSupport and SecureBoot variable. by sfu5 · 12 years ago
  63. 876ac39 Return EFI_UNSUPPORTED if READY_TO_BOOT function is invoked at SMM runtime. by sfu5 · 12 years ago
  64. 785d84e Verify the provided PKpub is signed with its private key when enrolling a new PK variable in setup mode. by sfu5 · 12 years ago
  65. cf7409f Update the secure boot configuration UI to accept *.der certificate file as the Platform Key. by sfu5 · 12 years ago
  66. 0fb450f Reset the platform when user choose to enroll/delete the PK variable. by sfu5 · 12 years ago
  67. 25a4e71 Add SMRAM range check to variable SMM SMI handler. by czhang46 · 12 years ago
  68. 96277f7 Include read data buffer in CommBufferSize when calculate the buffer size. by ydong10 · 12 years ago
  69. 8f8ca22 1. Reset system when user changes secure boot state in secure boot configuration form. by sfu5 · 12 years ago
  70. 12373f2 Fix a buffer overflow bug in VariableSmm driver. by sfu5 · 12 years ago
  71. dc204d5 Add comment for modules which have external input. by jyao1 · 13 years ago
  72. de2447d Fix compatibility issue when using IPF image with PE32 magic value in the OptionalHeader. by sfu5 · 13 years ago
  73. f01b91a Fixed build failed. by ydong10 · 13 years ago
  74. bf4a3db Add new interface GetVariable2 and GetEfiGlobalVariable2 to return more info. Also replace old interface with new one. by ydong10 · 13 years ago
  75. a5f15e3 According to UEFI spec 2.3.1a. hardware error record variable should use the EFI_HARDWARE_ERROR_VARIABLE VendorGuid and have the L"HwErrRec####" name convention, #### is a printed hex value and no 0x or h is included in the hex value. by lzeng14 · 13 years ago
  76. 021a1af Return EFI_WRITE_PROTECTED when setting HwErrRecSupport Global Variable at runtime. by lzeng14 · 13 years ago
  77. 8c1babf Update auth-variable and secure boot UI driver to support only time-based PK, KEK and Signature Database variable variable according to UEFI Spec requirement. by sfu5 · 13 years ago
  78. 4e33001 Fixes buffer read overflow bugs in authenticated variable driver. by sfu5 · 13 years ago
  79. 389c877 Fix common AuthVariable protection issue. by tye1 · 13 years ago
  80. ba57d4f Add pointer check for NULL before dereference it. by sfu5 · 13 years ago
  81. ed47ae0 Update common authenticated variable (non PK/KEK/DB/DBX) support to comply with latest UEFI spec. by tye1 · 13 years ago
  82. 9622df6 If setting variable in Runtime and there has been a same GUID and name variable existed in system without RT attribute, return EFI_WRITE_PROTECTED. by lzeng14 · 13 years ago
  83. 1413b8e 1. Fix UNIXGCC IPF build failure in SecurityPkg. by sfu5 · 13 years ago
  84. 4adc12b 1. Fix GCC build failure in SecurityPkg. by sfu5 · 13 years ago
  85. ecc722a 1. Remove “Force clear PK” feature in AuthVarialbe driver. by sfu5 · 13 years ago
  86. 6bc4e19 1. Update AuthVarialbe driver to avoid integer overflow when using EFI_VARIABLE_AUTHENTICATION_2 descriptor. by sfu5 · 13 years ago
  87. fab1046 Update for SecurityPkg. by ydong10 · 13 years ago
  88. 4d832aa SecurityPkg/VariableAuthenticated: Check if there is a NV Variable Storage header prior to use its attributes by oliviermartin · 13 years ago
  89. ae09f97 Update SignatureSupport variable to reflect firmware capability. by gdong1 · 13 years ago
  90. 8556091 1. Fix a bug when verify the CertType GUID in authentication variable data payload. by sfu5 · 13 years ago
  91. 2e24814 Update a return status for UEFI spec compliance. by gdong1 · 13 years ago
  92. d912bad 1. Check input PK/KEK variable data to make sure it is a valid EFI_SIGNATURE_LIST. by sfu5 · 13 years ago
  93. ea71453 Initialize the variable before use it to avoid SCT test failed. by ydong10 · 13 years ago
  94. 4f8ef5c Change IPF version AuthVariable driver to support multiple-platform feature. by niruiyu · 13 years ago
  95. bc0c99b Update ConfigAcess Protocol which is produced by SecureBootConfigDxe to follow the UEFI SPEC (Handle the Request parameter is NULL in ExtractConfig interface). by qianouyang · 13 years ago
  96. 7aaf2fd Add debug information for secure boot test convenient. by gdong1 · 13 years ago
  97. 44a957c Enhance drivers for sanity check and coding style alignment. by gdong1 · 13 years ago
  98. 2d3fb91 SecurityPkg: Update VariableAuthenticated driver with following changes: by xdu2 · 13 years ago
  99. 4bf8ffc Remove a unnecessary Macro in SecureBootConfigImpl.h. by qianouyang · 13 years ago
  100. beda235 Enable/Disable Secured Boot by 'Secure Boot Configuration' Page which is under Setup browser. by qianouyang · 13 years ago