|
 |
6009e6 |
From 7f364d9a95905efee0a8b46e4108042aaebe7849 Mon Sep 17 00:00:00 2001
|
|
|
6009e6 |
From: Laszlo Ersek <lersek@redhat.com>
|
|
|
6009e6 |
Date: Fri, 31 Jan 2020 12:42:37 +0100
|
|
|
6009e6 |
Subject: [PATCH 01/12] SecurityPkg: Fix spelling errors [PARTIAL PICK]
|
|
|
6009e6 |
MIME-Version: 1.0
|
|
|
6009e6 |
Content-Type: text/plain; charset=UTF-8
|
|
|
6009e6 |
Content-Transfer-Encoding: 8bit
|
|
|
6009e6 |
|
|
|
6009e6 |
RH-Author: Laszlo Ersek <lersek@redhat.com>
|
|
|
6009e6 |
Message-id: <20200131124248.22369-2-lersek@redhat.com>
|
|
|
6009e6 |
Patchwork-id: 93612
|
|
|
6009e6 |
O-Subject: [RHEL-8.2.0 edk2 PATCH 01/12] SecurityPkg: Fix spelling errors [PARTIAL PICK]
|
|
|
6009e6 |
Bugzilla: 1751993
|
|
|
6009e6 |
RH-Acked-by: Philippe Mathieu-Daudé <philmd@redhat.com>
|
|
|
6009e6 |
RH-Acked-by: Vitaly Kuznetsov <vkuznets@redhat.com>
|
|
|
6009e6 |
|
|
|
6009e6 |
From: Sean Brogan <sean.brogan@microsoft.com>
|
|
|
6009e6 |
|
|
|
6009e6 |
--v-- RHEL-8 note start --v--
|
|
|
6009e6 |
|
|
|
6009e6 |
This is a partial cherry-pick, restricted to
|
|
|
6009e6 |
"SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c".
|
|
|
6009e6 |
|
|
|
6009e6 |
The upstream patch has a super-ugly diffstat (81 files changed, 205
|
|
|
6009e6 |
insertions(+), 205 deletions(-)), fixing spelling errors all over
|
|
|
6009e6 |
SecurityPkg in one go. It doesn't apply cleanly down-stream, and I don't
|
|
|
6009e6 |
want to pick more (unrelated) SecurityPkg dependencies for this backport
|
|
|
6009e6 |
series.
|
|
|
6009e6 |
|
|
|
6009e6 |
Thus, the only alternative to this partial cherry-pick would be resolving
|
|
|
6009e6 |
conflicts over the rest of this series. That's obviously worse than a
|
|
|
6009e6 |
partial typo fix backport. At the next rebase, we're going to drop this
|
|
|
6009e6 |
patch and the rest of the backport series alike, anyway.
|
|
|
6009e6 |
|
|
|
6009e6 |
--^-- RHEL-8 note end --^--
|
|
|
6009e6 |
|
|
|
6009e6 |
https://bugzilla.tianocore.org/show_bug.cgi?id=2265
|
|
|
6009e6 |
|
|
|
6009e6 |
Cc: Jiewen Yao <jiewen.yao@intel.com>
|
|
|
6009e6 |
Cc: Jian J Wang <jian.j.wang@intel.com>
|
|
|
6009e6 |
Cc: Chao Zhang <chao.b.zhang@intel.com>
|
|
|
6009e6 |
Signed-off-by: Michael D Kinney <michael.d.kinney@intel.com>
|
|
|
6009e6 |
Reviewed-by: Jiewen Yao <Jiewen.yao@intel.com>
|
|
|
6009e6 |
Reviewed-by: Jian J Wang <jian.j.wang@intel.com>
|
|
|
6009e6 |
(cherry picked from commit d6b926e76e3d639ac37610e97d33ff9e3a6281eb)
|
|
|
6009e6 |
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
|
|
|
6009e6 |
Signed-off-by: Miroslav Rezanina <mrezanin@redhat.com>
|
|
|
6009e6 |
---
|
|
|
6009e6 |
.../Library/DxeImageVerificationLib/DxeImageVerificationLib.c | 10 +++++-----
|
|
|
6009e6 |
1 file changed, 5 insertions(+), 5 deletions(-)
|
|
|
6009e6 |
|
|
|
6009e6 |
diff --git a/SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c b/SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c
|
|
|
6009e6 |
index fe4cdcc..a0a12b5 100644
|
|
|
6009e6 |
--- a/SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c
|
|
|
6009e6 |
+++ b/SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c
|
|
|
6009e6 |
@@ -745,7 +745,7 @@ AddImageExeInfo (
|
|
|
6009e6 |
if (ImageExeInfoTable != NULL) {
|
|
|
6009e6 |
//
|
|
|
6009e6 |
// The table has been found!
|
|
|
6009e6 |
- // We must enlarge the table to accomodate the new exe info entry.
|
|
|
6009e6 |
+ // We must enlarge the table to accommodate the new exe info entry.
|
|
|
6009e6 |
//
|
|
|
6009e6 |
ImageExeInfoTableSize = GetImageExeInfoTableSize (ImageExeInfoTable);
|
|
|
6009e6 |
} else {
|
|
|
6009e6 |
@@ -947,7 +947,7 @@ Done:
|
|
|
6009e6 |
|
|
|
6009e6 |
@param[in] VariableName Name of database variable that is searched in.
|
|
|
6009e6 |
@param[in] Signature Pointer to signature that is searched for.
|
|
|
6009e6 |
- @param[in] CertType Pointer to hash algrithom.
|
|
|
6009e6 |
+ @param[in] CertType Pointer to hash algorithm.
|
|
|
6009e6 |
@param[in] SignatureSize Size of Signature.
|
|
|
6009e6 |
|
|
|
6009e6 |
@return TRUE Found the signature in the variable database.
|
|
|
6009e6 |
@@ -992,7 +992,7 @@ IsSignatureFoundInDatabase (
|
|
|
6009e6 |
goto Done;
|
|
|
6009e6 |
}
|
|
|
6009e6 |
//
|
|
|
6009e6 |
- // Enumerate all signature data in SigDB to check if executable's signature exists.
|
|
|
6009e6 |
+ // Enumerate all signature data in SigDB to check if signature exists for executable.
|
|
|
6009e6 |
//
|
|
|
6009e6 |
CertList = (EFI_SIGNATURE_LIST *) Data;
|
|
|
6009e6 |
while ((DataSize > 0) && (DataSize >= CertList->SignatureListSize)) {
|
|
|
6009e6 |
@@ -1844,7 +1844,7 @@ DxeImageVerificationHandler (
|
|
|
6009e6 |
|
|
|
6009e6 |
if (OffSet != (SecDataDir->VirtualAddress + SecDataDir->Size)) {
|
|
|
6009e6 |
//
|
|
|
6009e6 |
- // The Size in Certificate Table or the attribute certicate table is corrupted.
|
|
|
6009e6 |
+ // The Size in Certificate Table or the attribute certificate table is corrupted.
|
|
|
6009e6 |
//
|
|
|
6009e6 |
VerifyStatus = EFI_ACCESS_DENIED;
|
|
|
6009e6 |
}
|
|
|
6009e6 |
@@ -1855,7 +1855,7 @@ DxeImageVerificationHandler (
|
|
|
6009e6 |
Status = EFI_ACCESS_DENIED;
|
|
|
6009e6 |
if (Action == EFI_IMAGE_EXECUTION_AUTH_SIG_FAILED || Action == EFI_IMAGE_EXECUTION_AUTH_SIG_FOUND) {
|
|
|
6009e6 |
//
|
|
|
6009e6 |
- // Get image hash value as executable's signature.
|
|
|
6009e6 |
+ // Get image hash value as signature of executable.
|
|
|
6009e6 |
//
|
|
|
6009e6 |
SignatureListSize = sizeof (EFI_SIGNATURE_LIST) + sizeof (EFI_SIGNATURE_DATA) - 1 + mImageDigestSize;
|
|
|
6009e6 |
SignatureList = (EFI_SIGNATURE_LIST *) AllocateZeroPool (SignatureListSize);
|
|
|
6009e6 |
--
|
|
|
6009e6 |
1.8.3.1
|
|
|
6009e6 |
|