efi_loader: handle EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS
We don't yet support EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS for file based variables, but we should pass it to TEE based variable stores. Signed-off-by: Heinrich Schuchardt <heinrich.schuchardt@canonical.com> Reviewed-by: Ilias Apalodimas <ilias.apalodimas@linaro.org>
This commit is contained in:
parent
3b51c3a0b0
commit
e0fa2cf39c
|
@ -507,7 +507,8 @@ extern char _binary_u_boot_bin_start[], _binary_u_boot_bin_end[];
|
|||
EFI_VARIABLE_HARDWARE_ERROR_RECORD | \
|
||||
EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS | \
|
||||
EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS | \
|
||||
EFI_VARIABLE_APPEND_WRITE)
|
||||
EFI_VARIABLE_APPEND_WRITE | \
|
||||
EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS)
|
||||
|
||||
/**
|
||||
* efi_get_priv() - Get access to the EFI-private information
|
||||
|
|
|
@ -235,8 +235,12 @@ efi_status_t efi_set_variable_int(const u16 *variable_name,
|
|||
if (data_size && !data)
|
||||
return EFI_INVALID_PARAMETER;
|
||||
|
||||
/* EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS is deprecated */
|
||||
if (attributes & EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS)
|
||||
/*
|
||||
* EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS is deprecated.
|
||||
* We don't support EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS.
|
||||
*/
|
||||
if (attributes & (EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS | \
|
||||
EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS))
|
||||
return EFI_UNSUPPORTED;
|
||||
|
||||
/* Make sure if runtime bit is set, boot service bit is set also */
|
||||
|
|
Loading…
Reference in New Issue
Block a user