]> git.proxmox.com Git - mirror_edk2.git/blame - NetworkPkg/TlsAuthConfigDxe/TlsAuthConfigImpl.c
projects / mirror_edk2.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
NetworkPkg/Ip6Dxe: Validate source data record length
[mirror_edk2.git] / NetworkPkg / TlsAuthConfigDxe / TlsAuthConfigImpl.c
CommitLineData
7618784b
HW		 1/** @file\r
2 The Miscellaneous Routines for TlsAuthConfigDxe driver.\r
3\r
f75a7f56 4Copyright (c) 2016 - 2018, Intel Corporation. All rights reserved.<BR>\r
7618784b 5\r
ecf98fbc 6SPDX-License-Identifier: BSD-2-Clause-Patent\r
7618784b
HW		 7\r
8**/\r
9\r
10#include "TlsAuthConfigImpl.h"\r
11\r
12VOID *mStartOpCodeHandle = NULL;\r
13VOID *mEndOpCodeHandle = NULL;\r
14EFI_IFR_GUID_LABEL *mStartLabel = NULL;\r
15EFI_IFR_GUID_LABEL *mEndLabel = NULL;\r
16\r
17\r
18CHAR16 mTlsAuthConfigStorageName[] = L"TLS_AUTH_CONFIG_IFR_NVDATA";\r
19\r
20TLS_AUTH_CONFIG_PRIVATE_DATA *mTlsAuthPrivateData = NULL;\r
21\r
22HII_VENDOR_DEVICE_PATH mTlsAuthConfigHiiVendorDevicePath = {\r
23 {\r
24 {\r
25 HARDWARE_DEVICE_PATH,\r
26 HW_VENDOR_DP,\r
27 {\r
28 (UINT8) (sizeof (VENDOR_DEVICE_PATH)),\r
29 (UINT8) ((sizeof (VENDOR_DEVICE_PATH)) >> 8)\r
30 }\r
31 },\r
32 TLS_AUTH_CONFIG_GUID\r
33 },\r
34 {\r
35 END_DEVICE_PATH_TYPE,\r
36 END_ENTIRE_DEVICE_PATH_SUBTYPE,\r
37 {\r
38 (UINT8) (END_DEVICE_PATH_LENGTH),\r
39 (UINT8) ((END_DEVICE_PATH_LENGTH) >> 8)\r
40 }\r
41 }\r
42};\r
43\r
44//\r
45// Possible DER-encoded certificate file suffixes, end with NULL pointer.\r
46//\r
47CHAR16* mDerPemEncodedSuffix[] = {\r
48 L".cer",\r
49 L".der",\r
50 L".crt",\r
51 L".pem",\r
52 NULL\r
53};\r
54\r
55/**\r
56 This code checks if the FileSuffix is one of the possible DER/PEM-encoded certificate suffix.\r
57\r
58 @param[in] FileSuffix The suffix of the input certificate file\r
59\r
60 @retval TRUE It's a DER/PEM-encoded certificate.\r
61 @retval FALSE It's NOT a DER/PEM-encoded certificate.\r
62\r
63**/\r
64BOOLEAN\r
65IsDerPemEncodeCertificate (\r
66 IN CONST CHAR16 *FileSuffix\r
67)\r
68{\r
69 UINTN Index;\r
70 for (Index = 0; mDerPemEncodedSuffix[Index] != NULL; Index++) {\r
71 if (StrCmp (FileSuffix, mDerPemEncodedSuffix[Index]) == 0) {\r
72 return TRUE;\r
73 }\r
74 }\r
75 return FALSE;\r
76}\r
77\r
78/**\r
79 Worker function that prints an EFI_GUID into specified Buffer.\r
80\r
81 @param[in] Guid Pointer to GUID to print.\r
82 @param[in] Buffer Buffer to print Guid into.\r
83 @param[in] BufferSize Size of Buffer.\r
84\r
85 @retval Number of characters printed.\r
86\r
87**/\r
88UINTN\r
89GuidToString (\r
90 IN EFI_GUID *Guid,\r
91 IN CHAR16 *Buffer,\r
92 IN UINTN BufferSize\r
93 )\r
94{\r
95 return UnicodeSPrint (\r
96 Buffer,\r
97 BufferSize,\r
98 L"%g",\r
99 Guid\r
100 );\r
101}\r
102\r
103/**\r
104 List all cert in specified database by GUID in the page\r
105 for user to select and delete as needed.\r
106\r
107 @param[in] PrivateData Module's private data.\r
108 @param[in] VariableName The variable name of the vendor's signature database.\r
109 @param[in] VendorGuid A unique identifier for the vendor.\r
110 @param[in] LabelNumber Label number to insert opcodes.\r
111 @param[in] FormId Form ID of current page.\r
112 @param[in] QuestionIdBase Base question id of the signature list.\r
113\r
114 @retval EFI_SUCCESS Success to update the signature list page\r
115 @retval EFI_OUT_OF_RESOURCES Unable to allocate required resources.\r
116\r
117**/\r
118EFI_STATUS\r
119UpdateDeletePage (\r
120 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private,\r
121 IN CHAR16 *VariableName,\r
122 IN EFI_GUID *VendorGuid,\r
123 IN UINT16 LabelNumber,\r
124 IN EFI_FORM_ID FormId,\r
125 IN EFI_QUESTION_ID QuestionIdBase\r
126 )\r
127{\r
128 EFI_STATUS Status;\r
129 UINT32 Index;\r
130 UINTN CertCount;\r
131 UINTN GuidIndex;\r
132 VOID *StartOpCodeHandle;\r
133 VOID *EndOpCodeHandle;\r
134 EFI_IFR_GUID_LABEL *StartLabel;\r
135 EFI_IFR_GUID_LABEL *EndLabel;\r
136 UINTN DataSize;\r
137 UINT8 *Data;\r
138 EFI_SIGNATURE_LIST *CertList;\r
139 EFI_SIGNATURE_DATA *Cert;\r
140 UINT32 ItemDataSize;\r
141 CHAR16 *GuidStr;\r
142 EFI_STRING_ID GuidID;\r
143 EFI_STRING_ID Help;\r
144\r
145 Data = NULL;\r
146 CertList = NULL;\r
147 Cert = NULL;\r
148 GuidStr = NULL;\r
149 StartOpCodeHandle = NULL;\r
150 EndOpCodeHandle = NULL;\r
151\r
152 //\r
153 // Initialize the container for dynamic opcodes.\r
154 //\r
155 StartOpCodeHandle = HiiAllocateOpCodeHandle ();\r
156 if (StartOpCodeHandle == NULL) {\r
157 Status = EFI_OUT_OF_RESOURCES;\r
158 goto ON_EXIT;\r
159 }\r
160\r
161 EndOpCodeHandle = HiiAllocateOpCodeHandle ();\r
162 if (EndOpCodeHandle == NULL) {\r
163 Status = EFI_OUT_OF_RESOURCES;\r
164 goto ON_EXIT;\r
165 }\r
166\r
167 //\r
168 // Create Hii Extend Label OpCode.\r
169 //\r
170 StartLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
171 StartOpCodeHandle,\r
172 &gEfiIfrTianoGuid,\r
173 NULL,\r
174 sizeof (EFI_IFR_GUID_LABEL)\r
175 );\r
176 StartLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
177 StartLabel->Number = LabelNumber;\r
178\r
179 EndLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
180 EndOpCodeHandle,\r
181 &gEfiIfrTianoGuid,\r
182 NULL,\r
183 sizeof (EFI_IFR_GUID_LABEL)\r
184 );\r
185 EndLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
186 EndLabel->Number = LABEL_END;\r
187\r
188 //\r
189 // Read Variable.\r
190 //\r
191 DataSize = 0;\r
192 Status = gRT->GetVariable (VariableName, VendorGuid, NULL, &DataSize, Data);\r
193 if (EFI_ERROR (Status) && Status != EFI_BUFFER_TOO_SMALL) {\r
194 goto ON_EXIT;\r
195 }\r
196\r
197 Data = (UINT8 *) AllocateZeroPool (DataSize);\r
198 if (Data == NULL) {\r
199 Status = EFI_OUT_OF_RESOURCES;\r
200 goto ON_EXIT;\r
201 }\r
202\r
203 Status = gRT->GetVariable (VariableName, VendorGuid, NULL, &DataSize, Data);\r
204 if (EFI_ERROR (Status)) {\r
205 goto ON_EXIT;\r
206 }\r
207\r
208 GuidStr = AllocateZeroPool (100);\r
209 if (GuidStr == NULL) {\r
210 Status = EFI_OUT_OF_RESOURCES;\r
211 goto ON_EXIT;\r
212 }\r
213\r
214 //\r
215 // Enumerate all data.\r
216 //\r
217 ItemDataSize = (UINT32) DataSize;\r
218 CertList = (EFI_SIGNATURE_LIST *) Data;\r
219 GuidIndex = 0;\r
220\r
221 while ((ItemDataSize > 0) && (ItemDataSize >= CertList->SignatureListSize)) {\r
222\r
223 if (CompareGuid (&CertList->SignatureType, &gEfiCertX509Guid)) {\r
224 Help = STRING_TOKEN (STR_CERT_TYPE_PCKS_GUID);\r
225 } else {\r
226 //\r
227 // The signature type is not supported in current implementation.\r
228 //\r
229 ItemDataSize -= CertList->SignatureListSize;\r
230 CertList = (EFI_SIGNATURE_LIST *) ((UINT8 *) CertList + CertList->SignatureListSize);\r
231 continue;\r
232 }\r
233\r
234 CertCount = (CertList->SignatureListSize - sizeof (EFI_SIGNATURE_LIST) - CertList->SignatureHeaderSize) / CertList->SignatureSize;\r
235 for (Index = 0; Index < CertCount; Index++) {\r
236 Cert = (EFI_SIGNATURE_DATA *) ((UINT8 *) CertList\r
237 + sizeof (EFI_SIGNATURE_LIST)\r
238 + CertList->SignatureHeaderSize\r
239 + Index * CertList->SignatureSize);\r
240 //\r
241 // Display GUID and help\r
242 //\r
243 GuidToString (&Cert->SignatureOwner, GuidStr, 100);\r
244 GuidID = HiiSetString (Private->RegisteredHandle, 0, GuidStr, NULL);\r
245 HiiCreateCheckBoxOpCode (\r
246 StartOpCodeHandle,\r
247 (EFI_QUESTION_ID) (QuestionIdBase + GuidIndex++),\r
248 0,\r
249 0,\r
250 GuidID,\r
251 Help,\r
252 EFI_IFR_FLAG_CALLBACK,\r
253 0,\r
254 NULL\r
255 );\r
256 }\r
257\r
258 ItemDataSize -= CertList->SignatureListSize;\r
259 CertList = (EFI_SIGNATURE_LIST *) ((UINT8 *) CertList + CertList->SignatureListSize);\r
260 }\r
261\r
262ON_EXIT:\r
263 HiiUpdateForm (\r
264 Private->RegisteredHandle,\r
265 &gTlsAuthConfigGuid,\r
266 FormId,\r
267 StartOpCodeHandle,\r
268 EndOpCodeHandle\r
269 );\r
270\r
271 if (StartOpCodeHandle != NULL) {\r
272 HiiFreeOpCodeHandle (StartOpCodeHandle);\r
273 }\r
274\r
275 if (EndOpCodeHandle != NULL) {\r
276 HiiFreeOpCodeHandle (EndOpCodeHandle);\r
277 }\r
278\r
279 if (Data != NULL) {\r
280 FreePool (Data);\r
281 }\r
282\r
283 if (GuidStr != NULL) {\r
284 FreePool (GuidStr);\r
285 }\r
286\r
287 return EFI_SUCCESS;\r
288}\r
289\r
290/**\r
291 Delete one entry from cert database.\r
292\r
8ca41768 293 @param[in] Private Module's private data.\r
7618784b
HW		 294 @param[in] VariableName The variable name of the database.\r
295 @param[in] VendorGuid A unique identifier for the vendor.\r
296 @param[in] LabelNumber Label number to insert opcodes.\r
297 @param[in] FormId Form ID of current page.\r
298 @param[in] QuestionIdBase Base question id of the cert list.\r
299 @param[in] DeleteIndex Cert index to delete.\r
300\r
dad13c80 301 @retval EFI_SUCCESS Delete signature successfully.\r
7618784b
HW		 302 @retval EFI_NOT_FOUND Can't find the signature item,\r
303 @retval EFI_OUT_OF_RESOURCES Could not allocate needed resources.\r
304**/\r
305EFI_STATUS\r
306DeleteCert (\r
307 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private,\r
308 IN CHAR16 *VariableName,\r
309 IN EFI_GUID *VendorGuid,\r
310 IN UINT16 LabelNumber,\r
311 IN EFI_FORM_ID FormId,\r
312 IN EFI_QUESTION_ID QuestionIdBase,\r
313 IN UINTN DeleteIndex\r
314 )\r
315{\r
316 EFI_STATUS Status;\r
317 UINTN DataSize;\r
318 UINT8 *Data;\r
319 UINT8 *OldData;\r
320 UINT32 Attr;\r
321 UINT32 Index;\r
322 EFI_SIGNATURE_LIST *CertList;\r
323 EFI_SIGNATURE_LIST *NewCertList;\r
324 EFI_SIGNATURE_DATA *Cert;\r
325 UINTN CertCount;\r
326 UINT32 Offset;\r
327 BOOLEAN IsItemFound;\r
328 UINT32 ItemDataSize;\r
329 UINTN GuidIndex;\r
330\r
331 Data = NULL;\r
332 OldData = NULL;\r
333 CertList = NULL;\r
334 Cert = NULL;\r
335 Attr = 0;\r
336\r
337 //\r
338 // Get original signature list data.\r
339 //\r
340 DataSize = 0;\r
341 Status = gRT->GetVariable (VariableName, VendorGuid, NULL, &DataSize, NULL);\r
342 if (EFI_ERROR (Status) && Status != EFI_BUFFER_TOO_SMALL) {\r
343 goto ON_EXIT;\r
344 }\r
345\r
346 OldData = (UINT8 *) AllocateZeroPool (DataSize);\r
347 if (OldData == NULL) {\r
348 Status = EFI_OUT_OF_RESOURCES;\r
349 goto ON_EXIT;\r
350 }\r
351\r
352 Status = gRT->GetVariable (VariableName, VendorGuid, &Attr, &DataSize, OldData);\r
353 if (EFI_ERROR(Status)) {\r
354 goto ON_EXIT;\r
355 }\r
356\r
357 //\r
358 // Allocate space for new variable.\r
359 //\r
360 Data = (UINT8*) AllocateZeroPool (DataSize);\r
361 if (Data == NULL) {\r
362 Status = EFI_OUT_OF_RESOURCES;\r
363 goto ON_EXIT;\r
364 }\r
365\r
366 //\r
367 // Enumerate all data and erasing the target item.\r
368 //\r
369 IsItemFound = FALSE;\r
370 ItemDataSize = (UINT32) DataSize;\r
371 CertList = (EFI_SIGNATURE_LIST *) OldData;\r
372 Offset = 0;\r
373 GuidIndex = 0;\r
374 while ((ItemDataSize > 0) && (ItemDataSize >= CertList->SignatureListSize)) {\r
375 if (CompareGuid (&CertList->SignatureType, &gEfiCertX509Guid)) {\r
376 //\r
377 // Copy EFI_SIGNATURE_LIST header then calculate the signature count in this list.\r
378 //\r
379 CopyMem (Data + Offset, CertList, (sizeof(EFI_SIGNATURE_LIST) + CertList->SignatureHeaderSize));\r
380 NewCertList = (EFI_SIGNATURE_LIST*) (Data + Offset);\r
381 Offset += (sizeof(EFI_SIGNATURE_LIST) + CertList->SignatureHeaderSize);\r
382 Cert = (EFI_SIGNATURE_DATA *) ((UINT8 *) CertList + sizeof (EFI_SIGNATURE_LIST) + CertList->SignatureHeaderSize);\r
383 CertCount = (CertList->SignatureListSize - sizeof (EFI_SIGNATURE_LIST) - CertList->SignatureHeaderSize) / CertList->SignatureSize;\r
384 for (Index = 0; Index < CertCount; Index++) {\r
385 if (GuidIndex == DeleteIndex) {\r
386 //\r
387 // Find it! Skip it!\r
388 //\r
389 NewCertList->SignatureListSize -= CertList->SignatureSize;\r
390 IsItemFound = TRUE;\r
391 } else {\r
392 //\r
393 // This item doesn't match. Copy it to the Data buffer.\r
394 //\r
395 CopyMem (Data + Offset, (UINT8*)(Cert), CertList->SignatureSize);\r
396 Offset += CertList->SignatureSize;\r
397 }\r
398 GuidIndex++;\r
399 Cert = (EFI_SIGNATURE_DATA *) ((UINT8 *) Cert + CertList->SignatureSize);\r
400 }\r
401 } else {\r
402 //\r
403 // This List doesn't match. Just copy it to the Data buffer.\r
404 //\r
405 CopyMem (Data + Offset, (UINT8*)(CertList), CertList->SignatureListSize);\r
406 Offset += CertList->SignatureListSize;\r
407 }\r
408\r
409 ItemDataSize -= CertList->SignatureListSize;\r
410 CertList = (EFI_SIGNATURE_LIST *) ((UINT8 *) CertList + CertList->SignatureListSize);\r
411 }\r
412\r
413 if (!IsItemFound) {\r
414 //\r
415 // Doesn't find the signature Item!\r
416 //\r
417 Status = EFI_NOT_FOUND;\r
418 goto ON_EXIT;\r
419 }\r
420\r
421 //\r
422 // Delete the EFI_SIGNATURE_LIST header if there is no signature in the list.\r
423 //\r
424 ItemDataSize = Offset;\r
425 CertList = (EFI_SIGNATURE_LIST *) Data;\r
426 Offset = 0;\r
427 ZeroMem (OldData, ItemDataSize);\r
428 while ((ItemDataSize > 0) && (ItemDataSize >= CertList->SignatureListSize)) {\r
429 CertCount = (CertList->SignatureListSize - sizeof (EFI_SIGNATURE_LIST) - CertList->SignatureHeaderSize) / CertList->SignatureSize;\r
430 DEBUG ((DEBUG_INFO, " CertCount = %x\n", CertCount));\r
431 if (CertCount != 0) {\r
432 CopyMem (OldData + Offset, (UINT8*)(CertList), CertList->SignatureListSize);\r
433 Offset += CertList->SignatureListSize;\r
434 }\r
435 ItemDataSize -= CertList->SignatureListSize;\r
436 CertList = (EFI_SIGNATURE_LIST *) ((UINT8 *) CertList + CertList->SignatureListSize);\r
437 }\r
438\r
439 DataSize = Offset;\r
440\r
441 Status = gRT->SetVariable(\r
442 VariableName,\r
443 VendorGuid,\r
444 Attr,\r
445 DataSize,\r
446 OldData\r
447 );\r
448 if (EFI_ERROR (Status)) {\r
449 DEBUG ((DEBUG_ERROR, "Failed to set variable, Status = %r\n", Status));\r
450 goto ON_EXIT;\r
451 }\r
452\r
453ON_EXIT:\r
454 if (Data != NULL) {\r
455 FreePool(Data);\r
456 }\r
457\r
458 if (OldData != NULL) {\r
459 FreePool(OldData);\r
460 }\r
461\r
462 return UpdateDeletePage (\r
463 Private,\r
464 VariableName,\r
465 VendorGuid,\r
466 LabelNumber,\r
467 FormId,\r
468 QuestionIdBase\r
469 );\r
470}\r
471\r
472\r
473/**\r
8ca41768 474 Clean the file related resource.\r
7618784b 475\r
8ca41768 476 @param[in] Private Module's private data.\r
7618784b
HW		 477\r
478**/\r
479VOID\r
8ca41768
JW		 480CleanFileContext (\r
481 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private\r
7618784b
HW		 482 )\r
483{\r
8ca41768
JW		 484 if (Private->FileContext->FHandle != NULL) {\r
485 Private->FileContext->FHandle->Close (Private->FileContext->FHandle);\r
486 Private->FileContext->FHandle = NULL;\r
487 if (Private->FileContext->FileName!= NULL){\r
488 FreePool(Private->FileContext->FileName);\r
489 Private->FileContext->FileName = NULL;\r
490 }\r
7618784b
HW		 491 }\r
492}\r
493\r
494/**\r
495 Read file content into BufferPtr, the size of the allocate buffer\r
496 is *FileSize plus AddtionAllocateSize.\r
497\r
498 @param[in] FileHandle The file to be read.\r
499 @param[in, out] BufferPtr Pointers to the pointer of allocated buffer.\r
500 @param[out] FileSize Size of input file\r
501 @param[in] AddtionAllocateSize Addtion size the buffer need to be allocated.\r
502 In case the buffer need to contain others besides the file content.\r
503\r
504 @retval EFI_SUCCESS The file was read into the buffer.\r
505 @retval EFI_INVALID_PARAMETER A parameter was invalid.\r
506 @retval EFI_OUT_OF_RESOURCES A memory allocation failed.\r
507 @retval others Unexpected error.\r
508\r
509**/\r
510EFI_STATUS\r
511ReadFileContent (\r
512 IN EFI_FILE_HANDLE FileHandle,\r
513 IN OUT VOID **BufferPtr,\r
514 OUT UINTN *FileSize,\r
515 IN UINTN AddtionAllocateSize\r
516 )\r
517\r
518{\r
519 UINTN BufferSize;\r
520 UINT64 SourceFileSize;\r
521 VOID *Buffer;\r
522 EFI_STATUS Status;\r
523\r
524 if ((FileHandle == NULL) || (FileSize == NULL)) {\r
525 return EFI_INVALID_PARAMETER;\r
526 }\r
527\r
528 Buffer = NULL;\r
529\r
530 //\r
531 // Get the file size\r
532 //\r
533 Status = FileHandle->SetPosition (FileHandle, (UINT64) -1);\r
534 if (EFI_ERROR (Status)) {\r
535 goto ON_EXIT;\r
536 }\r
537\r
538 Status = FileHandle->GetPosition (FileHandle, &SourceFileSize);\r
539 if (EFI_ERROR (Status)) {\r
540 goto ON_EXIT;\r
541 }\r
542\r
543 Status = FileHandle->SetPosition (FileHandle, 0);\r
544 if (EFI_ERROR (Status)) {\r
545 goto ON_EXIT;\r
546 }\r
547\r
548 BufferSize = (UINTN) SourceFileSize + AddtionAllocateSize;\r
549 Buffer = AllocateZeroPool(BufferSize);\r
550 if (Buffer == NULL) {\r
551 return EFI_OUT_OF_RESOURCES;\r
552 }\r
553\r
554 BufferSize = (UINTN) SourceFileSize;\r
555 *FileSize = BufferSize;\r
556\r
557 Status = FileHandle->Read (FileHandle, &BufferSize, Buffer);\r
558 if (EFI_ERROR (Status) || BufferSize != *FileSize) {\r
559 FreePool (Buffer);\r
560 Buffer = NULL;\r
561 Status = EFI_BAD_BUFFER_SIZE;\r
562 goto ON_EXIT;\r
563 }\r
564\r
565ON_EXIT:\r
566\r
567 *BufferPtr = Buffer;\r
568 return Status;\r
569}\r
570\r
7618784b
HW		 571/**\r
572 This function converts an input device structure to a Unicode string.\r
573\r
574 @param[in] DevPath A pointer to the device path structure.\r
575\r
576 @return A new allocated Unicode string that represents the device path.\r
577\r
578**/\r
579CHAR16 *\r
580EFIAPI\r
581DevicePathToStr (\r
582 IN EFI_DEVICE_PATH_PROTOCOL *DevPath\r
583 )\r
584{\r
585 return ConvertDevicePathToText (\r
586 DevPath,\r
587 FALSE,\r
588 TRUE\r
589 );\r
590}\r
591\r
592\r
593/**\r
594 Extract filename from device path. The returned buffer is allocated using AllocateCopyPool.\r
595 The caller is responsible for freeing the allocated buffer using FreePool(). If return NULL\r
596 means not enough memory resource.\r
597\r
598 @param DevicePath Device path.\r
599\r
dad13c80 600 @retval NULL Not enough memory resource for AllocateCopyPool.\r
7618784b
HW		 601 @retval Other A new allocated string that represents the file name.\r
602\r
603**/\r
604CHAR16 *\r
605ExtractFileNameFromDevicePath (\r
606 IN EFI_DEVICE_PATH_PROTOCOL *DevicePath\r
607 )\r
608{\r
609 CHAR16 *String;\r
610 CHAR16 *MatchString;\r
611 CHAR16 *LastMatch;\r
612 CHAR16 *FileName;\r
613 UINTN Length;\r
614\r
615 ASSERT(DevicePath != NULL);\r
616\r
617 String = DevicePathToStr(DevicePath);\r
618 MatchString = String;\r
619 LastMatch = String;\r
620 FileName = NULL;\r
621\r
622 while(MatchString != NULL){\r
623 LastMatch = MatchString + 1;\r
624 MatchString = StrStr(LastMatch,L"\\");\r
625 }\r
626\r
627 Length = StrLen(LastMatch);\r
628 FileName = AllocateCopyPool ((Length + 1) * sizeof(CHAR16), LastMatch);\r
629 if (FileName != NULL) {\r
630 *(FileName + Length) = 0;\r
631 }\r
632\r
633 FreePool(String);\r
634\r
635 return FileName;\r
636}\r
637\r
638/**\r
639 Enroll a new X509 certificate into Variable.\r
640\r
641 @param[in] PrivateData The module's private data.\r
642 @param[in] VariableName Variable name of CA database.\r
643\r
644 @retval EFI_SUCCESS New X509 is enrolled successfully.\r
645 @retval EFI_OUT_OF_RESOURCES Could not allocate needed resources.\r
646\r
647**/\r
648EFI_STATUS\r
649EnrollX509toVariable (\r
650 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private,\r
651 IN CHAR16 *VariableName\r
652 )\r
653{\r
654 EFI_STATUS Status;\r
655 UINTN X509DataSize;\r
656 VOID *X509Data;\r
657 EFI_SIGNATURE_LIST *CACert;\r
658 EFI_SIGNATURE_DATA *CACertData;\r
659 VOID *Data;\r
660 UINTN DataSize;\r
661 UINTN SigDataSize;\r
662 UINT32 Attr;\r
663\r
664 X509DataSize = 0;\r
665 SigDataSize = 0;\r
666 DataSize = 0;\r
667 X509Data = NULL;\r
668 CACert = NULL;\r
669 CACertData = NULL;\r
670 Data = NULL;\r
b90c335f 671 Attr = 0;\r
7618784b
HW		 672\r
673 Status = ReadFileContent (\r
674 Private->FileContext->FHandle,\r
675 &X509Data,\r
676 &X509DataSize,\r
677 0\r
678 );\r
679 if (EFI_ERROR (Status)) {\r
680 goto ON_EXIT;\r
681 }\r
682 ASSERT (X509Data != NULL);\r
683\r
684 SigDataSize = sizeof(EFI_SIGNATURE_LIST) + sizeof(EFI_SIGNATURE_DATA) - 1 + X509DataSize;\r
685\r
686 Data = AllocateZeroPool (SigDataSize);\r
687 if (Data == NULL) {\r
688 Status = EFI_OUT_OF_RESOURCES;\r
689 goto ON_EXIT;\r
690 }\r
691\r
692 //\r
693 // Fill Certificate Database parameters.\r
694 //\r
695 CACert = (EFI_SIGNATURE_LIST*) Data;\r
696 CACert->SignatureListSize = (UINT32) SigDataSize;\r
697 CACert->SignatureHeaderSize = 0;\r
698 CACert->SignatureSize = (UINT32) (sizeof(EFI_SIGNATURE_DATA) - 1 + X509DataSize);\r
699 CopyGuid (&CACert->SignatureType, &gEfiCertX509Guid);\r
700\r
701 CACertData = (EFI_SIGNATURE_DATA*) ((UINT8* ) CACert + sizeof (EFI_SIGNATURE_LIST));\r
702 CopyGuid (&CACertData->SignatureOwner, Private->CertGuid);\r
703 CopyMem ((UINT8* ) (CACertData->SignatureData), X509Data, X509DataSize);\r
704\r
705 //\r
b90c335f
LE		 706 // Check if the signature database entry already exists. If it does, use the\r
707 // EFI_VARIABLE_APPEND_WRITE attribute to append the new signature data to\r
708 // the original variable, plus preserve the original variable attributes.\r
7618784b 709 //\r
7618784b
HW		 710 Status = gRT->GetVariable(\r
711 VariableName,\r
712 &gEfiTlsCaCertificateGuid,\r
9bb1f080 713 &Attr,\r
7618784b
HW		 714 &DataSize,\r
715 NULL\r
716 );\r
717 if (Status == EFI_BUFFER_TOO_SMALL) {\r
718 Attr |= EFI_VARIABLE_APPEND_WRITE;\r
b90c335f
LE		 719 } else if (Status == EFI_NOT_FOUND) {\r
720 Attr = TLS_AUTH_CONFIG_VAR_BASE_ATTR;\r
721 } else {\r
7618784b
HW		 722 goto ON_EXIT;\r
723 }\r
724\r
725 Status = gRT->SetVariable(\r
726 VariableName,\r
727 &gEfiTlsCaCertificateGuid,\r
728 Attr,\r
729 SigDataSize,\r
730 Data\r
731 );\r
732 if (EFI_ERROR (Status)) {\r
733 goto ON_EXIT;\r
734 }\r
735\r
736ON_EXIT:\r
8ca41768 737 CleanFileContext (Private);\r
7618784b
HW		 738\r
739 if (Private->CertGuid != NULL) {\r
740 FreePool (Private->CertGuid);\r
741 Private->CertGuid = NULL;\r
742 }\r
743\r
744 if (Data != NULL) {\r
745 FreePool (Data);\r
746 }\r
747\r
748 if (X509Data != NULL) {\r
749 FreePool (X509Data);\r
750 }\r
751\r
752 return Status;\r
753}\r
754\r
755/**\r
756 Enroll Cert into TlsCaCertificate. The GUID will be Private->CertGuid.\r
757\r
758 @param[in] PrivateData The module's private data.\r
759 @param[in] VariableName Variable name of signature database.\r
760\r
761 @retval EFI_SUCCESS New Cert enrolled successfully.\r
762 @retval EFI_INVALID_PARAMETER The parameter is invalid.\r
763 @retval EFI_UNSUPPORTED The Cert file is unsupported type.\r
764 @retval others Fail to enroll Cert data.\r
765\r
766**/\r
767EFI_STATUS\r
768EnrollCertDatabase (\r
769 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private,\r
770 IN CHAR16 *VariableName\r
771 )\r
772{\r
773 UINT16* FilePostFix;\r
774 UINTN NameLength;\r
775\r
776 if ((Private->FileContext->FileName == NULL) || (Private->FileContext->FHandle == NULL) || (Private->CertGuid == NULL)) {\r
777 return EFI_INVALID_PARAMETER;\r
778 }\r
779\r
780 //\r
781 // Parse the file's postfix.\r
782 //\r
783 NameLength = StrLen (Private->FileContext->FileName);\r
784 if (NameLength <= 4) {\r
785 return EFI_INVALID_PARAMETER;\r
786 }\r
787 FilePostFix = Private->FileContext->FileName + NameLength - 4;\r
788\r
789 if (IsDerPemEncodeCertificate (FilePostFix)) {\r
790 //\r
791 // Supports DER-encoded X509 certificate.\r
792 //\r
793 return EnrollX509toVariable (Private, VariableName);\r
794 }\r
795\r
796 return EFI_UNSUPPORTED;\r
797}\r
798\r
799/**\r
800 Refresh the global UpdateData structure.\r
801\r
802**/\r
803VOID\r
804RefreshUpdateData (\r
805 VOID\r
806 )\r
807{\r
808 //\r
809 // Free current updated date\r
810 //\r
811 if (mStartOpCodeHandle != NULL) {\r
812 HiiFreeOpCodeHandle (mStartOpCodeHandle);\r
813 }\r
814\r
815 //\r
816 // Create new OpCode Handle\r
817 //\r
818 mStartOpCodeHandle = HiiAllocateOpCodeHandle ();\r
819\r
820 //\r
821 // Create Hii Extend Label OpCode as the start opcode\r
822 //\r
823 mStartLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
824 mStartOpCodeHandle,\r
825 &gEfiIfrTianoGuid,\r
826 NULL,\r
827 sizeof (EFI_IFR_GUID_LABEL)\r
828 );\r
829 mStartLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
830}\r
831\r
832/**\r
833 Clean up the dynamic opcode at label and form specified by both LabelId.\r
834\r
835 @param[in] LabelId It is both the Form ID and Label ID for opcode deletion.\r
836 @param[in] PrivateData Module private data.\r
837\r
838**/\r
839VOID\r
840CleanUpPage (\r
841 IN UINT16 LabelId,\r
842 IN TLS_AUTH_CONFIG_PRIVATE_DATA *PrivateData\r
843 )\r
844{\r
845 RefreshUpdateData ();\r
846\r
847 //\r
848 // Remove all op-codes from dynamic page\r
849 //\r
850 mStartLabel->Number = LabelId;\r
851 HiiUpdateForm (\r
852 PrivateData->RegisteredHandle,\r
853 &gTlsAuthConfigGuid,\r
854 LabelId,\r
855 mStartOpCodeHandle, // Label LabelId\r
856 mEndOpCodeHandle // LABEL_END\r
857 );\r
858}\r
859\r
860/**\r
861 Update the form base on the selected file.\r
862\r
863 @param FilePath Point to the file path.\r
864 @param FormId The form need to display.\r
865\r
866 @retval TRUE Exit caller function.\r
867 @retval FALSE Not exit caller function.\r
868\r
869**/\r
870BOOLEAN\r
871UpdatePage(\r
872 IN EFI_DEVICE_PATH_PROTOCOL *FilePath,\r
873 IN EFI_FORM_ID FormId\r
874 )\r
875{\r
876 CHAR16 *FileName;\r
877 EFI_STRING_ID StringToken;\r
878\r
879 FileName = NULL;\r
880\r
881 if (FilePath != NULL) {\r
882 FileName = ExtractFileNameFromDevicePath(FilePath);\r
883 }\r
884 if (FileName == NULL) {\r
885 //\r
886 // FileName = NULL has two case:\r
887 // 1. FilePath == NULL, not select file.\r
888 // 2. FilePath != NULL, but ExtractFileNameFromDevicePath return NULL not enough memory resource.\r
889 // In these two case, no need to update the form, and exit the caller function.\r
890 //\r
891 return TRUE;\r
892 }\r
893 StringToken = HiiSetString (mTlsAuthPrivateData->RegisteredHandle, 0, FileName, NULL);\r
894\r
895 mTlsAuthPrivateData->FileContext->FileName = FileName;\r
896\r
9f5d1f7c 897 EfiOpenFileByDevicePath (\r
7618784b
HW		 898 &FilePath,\r
899 &mTlsAuthPrivateData->FileContext->FHandle,\r
900 EFI_FILE_MODE_READ,\r
901 0\r
902 );\r
903 //\r
904 // Create Subtitle op-code for the display string of the option.\r
905 //\r
906 RefreshUpdateData ();\r
907 mStartLabel->Number = FormId;\r
908\r
909 HiiCreateSubTitleOpCode (\r
910 mStartOpCodeHandle,\r
911 StringToken,\r
912 0,\r
913 0,\r
914 0\r
915 );\r
916\r
917 HiiUpdateForm (\r
918 mTlsAuthPrivateData->RegisteredHandle,\r
919 &gTlsAuthConfigGuid,\r
920 FormId,\r
921 mStartOpCodeHandle, /// Label FormId\r
922 mEndOpCodeHandle /// LABEL_END\r
923 );\r
924\r
925 return TRUE;\r
926}\r
927\r
928/**\r
929 Update the form base on the input file path info.\r
930\r
931 @param FilePath Point to the file path.\r
932\r
933 @retval TRUE Exit caller function.\r
934 @retval FALSE Not exit caller function.\r
935**/\r
936BOOLEAN\r
937EFIAPI\r
938UpdateCAFromFile (\r
939 IN EFI_DEVICE_PATH_PROTOCOL *FilePath\r
940 )\r
941{\r
942 return UpdatePage(FilePath, TLS_AUTH_CONFIG_FORMID4_FORM);\r
943}\r
944\r
945/**\r
946 Unload the configuration form, this includes: delete all the configuration\r
947 entries, uninstall the form callback protocol, and free the resources used.\r
948\r
949 @param[in] Private Pointer to the driver private data.\r
950\r
951 @retval EFI_SUCCESS The configuration form is unloaded.\r
952 @retval Others Failed to unload the form.\r
953\r
954**/\r
955EFI_STATUS\r
956TlsAuthConfigFormUnload (\r
957 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private\r
958 )\r
959{\r
960 if (Private->DriverHandle != NULL) {\r
961 //\r
962 // Uninstall EFI_HII_CONFIG_ACCESS_PROTOCOL\r
963 //\r
964 gBS->UninstallMultipleProtocolInterfaces (\r
965 Private->DriverHandle,\r
966 &gEfiDevicePathProtocolGuid,\r
967 &mTlsAuthConfigHiiVendorDevicePath,\r
968 &gEfiHiiConfigAccessProtocolGuid,\r
969 &Private->ConfigAccess,\r
970 NULL\r
971 );\r
972 Private->DriverHandle = NULL;\r
973 }\r
974\r
975 if (Private->RegisteredHandle != NULL) {\r
976 //\r
977 // Remove HII package list\r
978 //\r
979 HiiRemovePackages (Private->RegisteredHandle);\r
980 Private->RegisteredHandle = NULL;\r
981 }\r
982\r
983 if (Private->CertGuid != NULL) {\r
984 FreePool (Private->CertGuid);\r
985 }\r
986\r
987 if (Private->FileContext != NULL) {\r
988 FreePool (Private->FileContext);\r
989 }\r
990\r
991 FreePool (Private);\r
992\r
993 if (mStartOpCodeHandle != NULL) {\r
994 HiiFreeOpCodeHandle (mStartOpCodeHandle);\r
995 }\r
996\r
997 if (mEndOpCodeHandle != NULL) {\r
998 HiiFreeOpCodeHandle (mEndOpCodeHandle);\r
999 }\r
1000\r
1001 return EFI_SUCCESS;\r
1002}\r
1003\r
1004\r
1005/**\r
1006 Initialize the configuration form.\r
1007\r
1008 @param[in] Private Pointer to the driver private data.\r
1009\r
1010 @retval EFI_SUCCESS The configuration form is initialized.\r
1011 @retval EFI_OUT_OF_RESOURCES Failed to allocate memory.\r
1012\r
1013**/\r
1014EFI_STATUS\r
1015TlsAuthConfigFormInit (\r
1016 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private\r
1017 )\r
1018{\r
1019 EFI_STATUS Status;\r
1020\r
1021 Private->Signature = TLS_AUTH_CONFIG_PRIVATE_DATA_SIGNATURE;\r
1022\r
1023 Private->ConfigAccess.ExtractConfig = TlsAuthConfigAccessExtractConfig;\r
1024 Private->ConfigAccess.RouteConfig = TlsAuthConfigAccessRouteConfig;\r
1025 Private->ConfigAccess.Callback = TlsAuthConfigAccessCallback;\r
1026\r
1027 //\r
1028 // Install Device Path Protocol and Config Access protocol to driver handle.\r
1029 //\r
1030 Status = gBS->InstallMultipleProtocolInterfaces (\r
1031 &Private->DriverHandle,\r
1032 &gEfiDevicePathProtocolGuid,\r
1033 &mTlsAuthConfigHiiVendorDevicePath,\r
1034 &gEfiHiiConfigAccessProtocolGuid,\r
1035 &Private->ConfigAccess,\r
1036 NULL\r
1037 );\r
1038 if (EFI_ERROR (Status)) {\r
1039 return Status;\r
1040 }\r
1041\r
1042 //\r
1043 // Publish our HII data.\r
1044 //\r
1045 Private->RegisteredHandle = HiiAddPackages (\r
1046 &gTlsAuthConfigGuid,\r
1047 Private->DriverHandle,\r
1048 TlsAuthConfigDxeStrings,\r
1049 TlsAuthConfigVfrBin,\r
1050 NULL\r
1051 );\r
1052 if (Private->RegisteredHandle == NULL) {\r
1053 Status = EFI_OUT_OF_RESOURCES;\r
1054 goto Error;\r
1055 }\r
1056\r
1057 Private->FileContext = AllocateZeroPool (sizeof (TLS_AUTH_CONFIG_FILE_CONTEXT));\r
1058 if (Private->FileContext == NULL) {\r
1059 Status = EFI_OUT_OF_RESOURCES;\r
1060 goto Error;\r
1061 }\r
1062\r
1063 //\r
1064 // Init OpCode Handle and Allocate space for creation of Buffer\r
1065 //\r
1066 mStartOpCodeHandle = HiiAllocateOpCodeHandle ();\r
1067 if (mStartOpCodeHandle == NULL) {\r
1068 Status = EFI_OUT_OF_RESOURCES;\r
1069 goto Error;\r
1070 }\r
1071\r
1072 mEndOpCodeHandle = HiiAllocateOpCodeHandle ();\r
1073 if (mEndOpCodeHandle == NULL) {\r
1074 Status = EFI_OUT_OF_RESOURCES;\r
1075 goto Error;\r
1076 }\r
1077\r
1078 //\r
1079 // Create Hii Extend Label OpCode as the start opcode\r
1080 //\r
1081 mStartLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
1082 mStartOpCodeHandle,\r
1083 &gEfiIfrTianoGuid,\r
1084 NULL,\r
1085 sizeof (EFI_IFR_GUID_LABEL)\r
1086 );\r
1087 mStartLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
1088\r
1089 //\r
1090 // Create Hii Extend Label OpCode as the end opcode\r
1091 //\r
1092 mEndLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
1093 mEndOpCodeHandle,\r
1094 &gEfiIfrTianoGuid,\r
1095 NULL,\r
1096 sizeof (EFI_IFR_GUID_LABEL)\r
1097 );\r
1098 mEndLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
1099 mEndLabel->Number = LABEL_END;\r
1100\r
1101 return EFI_SUCCESS;\r
1102\r
1103Error:\r
1104 TlsAuthConfigFormUnload (Private);\r
1105 return Status;\r
1106}\r
1107\r
1108/**\r
1109\r
1110 This function allows the caller to request the current\r
1111 configuration for one or more named elements. The resulting\r
1112 string is in <ConfigAltResp> format. Any and all alternative\r
1113 configuration strings shall also be appended to the end of the\r
1114 current configuration string. If they are, they must appear\r
1115 after the current configuration. They must contain the same\r
1116 routing (GUID, NAME, PATH) as the current configuration string.\r
1117 They must have an additional description indicating the type of\r
1118 alternative configuration the string represents,\r
1119 "ALTCFG=<StringToken>". That <StringToken> (when\r
1120 converted from Hex UNICODE to binary) is a reference to a\r
1121 string in the associated string pack.\r
1122\r
1123 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.\r
1124\r
1125 @param Request A null-terminated Unicode string in\r
1126 <ConfigRequest> format. Note that this\r
1127 includes the routing information as well as\r
1128 the configurable name / value pairs. It is\r
1129 invalid for this string to be in\r
1130 <MultiConfigRequest> format.\r
1131 If a NULL is passed in for the Request field,\r
1132 all of the settings being abstracted by this function\r
1133 will be returned in the Results field. In addition,\r
1134 if a ConfigHdr is passed in with no request elements,\r
1135 all of the settings being abstracted for that particular\r
1136 ConfigHdr reference will be returned in the Results Field.\r
1137\r
1138 @param Progress On return, points to a character in the\r
1139 Request string. Points to the string's null\r
1140 terminator if request was successful. Points\r
1141 to the most recent "&" before the first\r
1142 failing name / value pair (or the beginning\r
1143 of the string if the failure is in the first\r
1144 name / value pair) if the request was not\r
1145 successful.\r
1146\r
1147 @param Results A null-terminated Unicode string in\r
1148 <MultiConfigAltResp> format which has all values\r
1149 filled in for the names in the Request string.\r
1150 String to be allocated by the called function.\r
1151\r
1152 @retval EFI_SUCCESS The Results string is filled with the\r
1153 values corresponding to all requested\r
1154 names.\r
1155\r
1156 @retval EFI_OUT_OF_RESOURCES Not enough memory to store the\r
1157 parts of the results that must be\r
1158 stored awaiting possible future\r
1159 protocols.\r
1160\r
1161 @retval EFI_NOT_FOUND Routing data doesn't match any\r
1162 known driver. Progress set to the\r
1163 first character in the routing header.\r
1164 Note: There is no requirement that the\r
1165 driver validate the routing data. It\r
1166 must skip the <ConfigHdr> in order to\r
1167 process the names.\r
1168\r
1169 @retval EFI_INVALID_PARAMETER Illegal syntax. Progress set\r
1170 to most recent "&" before the\r
1171 error or the beginning of the\r
1172 string.\r
1173\r
1174 @retval EFI_INVALID_PARAMETER Unknown name. Progress points\r
1175 to the & before the name in\r
1176 question.\r
1177\r
1178**/\r
1179EFI_STATUS\r
1180EFIAPI\r
1181TlsAuthConfigAccessExtractConfig (\r
1182 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL *This,\r
1183 IN CONST EFI_STRING Request,\r
1184 OUT EFI_STRING *Progress,\r
1185 OUT EFI_STRING *Results\r
1186 )\r
1187{\r
1188 EFI_STATUS Status;\r
1189 UINTN BufferSize;\r
1190 UINTN Size;\r
1191 EFI_STRING ConfigRequest;\r
1192 EFI_STRING ConfigRequestHdr;\r
1193 TLS_AUTH_CONFIG_PRIVATE_DATA *Private;\r
1194 BOOLEAN AllocatedRequest;\r
1195\r
1196 if (Progress == NULL || Results == NULL) {\r
1197 return EFI_INVALID_PARAMETER;\r
1198 }\r
1199\r
1200 AllocatedRequest = FALSE;\r
1201 ConfigRequestHdr = NULL;\r
1202 ConfigRequest = NULL;\r
1203 Size = 0;\r
1204\r
1205 Private = TLS_AUTH_CONFIG_PRIVATE_FROM_THIS (This);\r
1206\r
1207 BufferSize = sizeof (TLS_AUTH_CONFIG_IFR_NVDATA);\r
1208 ZeroMem (&Private->TlsAuthConfigNvData, BufferSize);\r
1209\r
1210 *Progress = Request;\r
1211\r
1212 if ((Request != NULL) && !HiiIsConfigHdrMatch (Request, &gTlsAuthConfigGuid, mTlsAuthConfigStorageName)) {\r
1213 return EFI_NOT_FOUND;\r
1214 }\r
1215\r
1216 ConfigRequest = Request;\r
1217 if ((Request == NULL) || (StrStr (Request, L"OFFSET") == NULL)) {\r
1218 //\r
1219 // Request is set to NULL or OFFSET is NULL, construct full request string.\r
1220 //\r
1221 // Allocate and fill a buffer large enough to hold the <ConfigHdr> template\r
1222 // followed by "&OFFSET=0&WIDTH=WWWWWWWWWWWWWWWW" followed by a Null-terminator\r
1223 //\r
1224 ConfigRequestHdr = HiiConstructConfigHdr (&gTlsAuthConfigGuid, mTlsAuthConfigStorageName, Private->DriverHandle);\r
1225 Size = (StrLen (ConfigRequestHdr) + 32 + 1) * sizeof (CHAR16);\r
1226 ConfigRequest = AllocateZeroPool (Size);\r
1227 ASSERT (ConfigRequest != NULL);\r
1228 AllocatedRequest = TRUE;\r
1229 UnicodeSPrint (ConfigRequest, Size, L"%s&OFFSET=0&WIDTH=%016LX", ConfigRequestHdr, (UINT64)BufferSize);\r
1230 FreePool (ConfigRequestHdr);\r
1231 ConfigRequestHdr = NULL;\r
1232 }\r
1233\r
1234 Status = gHiiConfigRouting->BlockToConfig (\r
1235 gHiiConfigRouting,\r
1236 ConfigRequest,\r
1237 (UINT8 *) &Private->TlsAuthConfigNvData,\r
1238 BufferSize,\r
1239 Results,\r
1240 Progress\r
1241 );\r
1242\r
1243 //\r
1244 // Free the allocated config request string.\r
1245 //\r
1246 if (AllocatedRequest) {\r
1247 FreePool (ConfigRequest);\r
1248 }\r
1249\r
1250 //\r
1251 // Set Progress string to the original request string.\r
1252 //\r
1253 if (Request == NULL) {\r
1254 *Progress = NULL;\r
1255 } else if (StrStr (Request, L"OFFSET") == NULL) {\r
1256 *Progress = Request + StrLen (Request);\r
1257 }\r
1258\r
1259 return Status;\r
1260}\r
1261\r
1262/**\r
1263\r
1264 This function applies changes in a driver's configuration.\r
1265 Input is a Configuration, which has the routing data for this\r
1266 driver followed by name / value configuration pairs. The driver\r
1267 must apply those pairs to its configurable storage. If the\r
1268 driver's configuration is stored in a linear block of data\r
1269 and the driver's name / value pairs are in <BlockConfig>\r
1270 format, it may use the ConfigToBlock helper function (above) to\r
1271 simplify the job.\r
1272\r
1273 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.\r
1274\r
1275 @param Configuration A null-terminated Unicode string in\r
1276 <ConfigString> format.\r
1277\r
1278 @param Progress A pointer to a string filled in with the\r
1279 offset of the most recent '&' before the\r
1280 first failing name / value pair (or the\r
dad13c80 1281 beginning of the string if the failure\r
7618784b
HW		 1282 is in the first name / value pair) or\r
1283 the terminating NULL if all was\r
1284 successful.\r
1285\r
1286 @retval EFI_SUCCESS The results have been distributed or are\r
1287 awaiting distribution.\r
1288\r
1289 @retval EFI_OUT_OF_RESOURCES Not enough memory to store the\r
1290 parts of the results that must be\r
1291 stored awaiting possible future\r
1292 protocols.\r
1293\r
1294 @retval EFI_INVALID_PARAMETERS Passing in a NULL for the\r
1295 Results parameter would result\r
1296 in this type of error.\r
1297\r
1298 @retval EFI_NOT_FOUND Target for the specified routing data\r
1299 was not found\r
1300\r
1301**/\r
1302EFI_STATUS\r
1303EFIAPI\r
1304TlsAuthConfigAccessRouteConfig (\r
1305 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL *This,\r
1306 IN CONST EFI_STRING Configuration,\r
1307 OUT EFI_STRING *Progress\r
1308 )\r
1309{\r
1310 EFI_STATUS Status;\r
1311 UINTN BufferSize;\r
1312 TLS_AUTH_CONFIG_PRIVATE_DATA *Private;\r
1313\r
1314 if (Progress == NULL) {\r
1315 return EFI_INVALID_PARAMETER;\r
1316 }\r
1317 *Progress = Configuration;\r
1318\r
1319 if (Configuration == NULL) {\r
1320 return EFI_INVALID_PARAMETER;\r
1321 }\r
1322\r
1323 //\r
1324 // Check routing data in <ConfigHdr>.\r
1325 // Note: there is no name for Name/Value storage, only GUID will be checked\r
1326 //\r
1327 if (!HiiIsConfigHdrMatch (Configuration, &gTlsAuthConfigGuid, mTlsAuthConfigStorageName)) {\r
1328 return EFI_NOT_FOUND;\r
1329 }\r
1330\r
1331 Private = TLS_AUTH_CONFIG_PRIVATE_FROM_THIS (This);\r
1332\r
1333 BufferSize = sizeof (TLS_AUTH_CONFIG_IFR_NVDATA);\r
1334 ZeroMem (&Private->TlsAuthConfigNvData, BufferSize);\r
1335\r
1336 Status = gHiiConfigRouting->ConfigToBlock (\r
1337 gHiiConfigRouting,\r
1338 Configuration,\r
1339 (UINT8 *) &Private->TlsAuthConfigNvData,\r
1340 &BufferSize,\r
1341 Progress\r
1342 );\r
1343 if (EFI_ERROR (Status)) {\r
1344 return Status;\r
1345 }\r
1346\r
1347 return Status;\r
1348}\r
1349\r
1350/**\r
1351\r
1352 This function is called to provide results data to the driver.\r
1353 This data consists of a unique key that is used to identify\r
1354 which data is either being passed back or being asked for.\r
1355\r
1356 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.\r
1357 @param Action Specifies the type of action taken by the browser.\r
1358 @param QuestionId A unique value which is sent to the original\r
1359 exporting driver so that it can identify the type\r
1360 of data to expect. The format of the data tends to\r
1361 vary based on the opcode that generated the callback.\r
1362 @param Type The type of value for the question.\r
1363 @param Value A pointer to the data being sent to the original\r
1364 exporting driver.\r
1365 @param ActionRequest On return, points to the action requested by the\r
1366 callback function.\r
1367\r
1368 @retval EFI_SUCCESS The callback successfully handled the action.\r
1369 @retval EFI_OUT_OF_RESOURCES Not enough storage is available to hold the\r
1370 variable and its data.\r
1371 @retval EFI_DEVICE_ERROR The variable could not be saved.\r
1372 @retval EFI_UNSUPPORTED The specified Action is not supported by the\r
1373 callback.\r
1374**/\r
1375EFI_STATUS\r
1376EFIAPI\r
1377TlsAuthConfigAccessCallback (\r
1378 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL *This,\r
1379 IN EFI_BROWSER_ACTION Action,\r
1380 IN EFI_QUESTION_ID QuestionId,\r
1381 IN UINT8 Type,\r
1382 IN OUT EFI_IFR_TYPE_VALUE *Value,\r
1383 OUT EFI_BROWSER_ACTION_REQUEST *ActionRequest\r
1384 )\r
1385{\r
1386 EFI_INPUT_KEY Key;\r
1387 EFI_STATUS Status;\r
1388 RETURN_STATUS RStatus;\r
1389 TLS_AUTH_CONFIG_PRIVATE_DATA *Private;\r
1390 UINTN BufferSize;\r
1391 TLS_AUTH_CONFIG_IFR_NVDATA *IfrNvData;\r
1392 UINT16 LabelId;\r
1393 EFI_DEVICE_PATH_PROTOCOL *File;\r
1394\r
1395 Status = EFI_SUCCESS;\r
1396 File = NULL;\r
1397\r
1398 if ((This == NULL) || (Value == NULL) || (ActionRequest == NULL)) {\r
1399 return EFI_INVALID_PARAMETER;\r
1400 }\r
1401\r
1402 Private = TLS_AUTH_CONFIG_PRIVATE_FROM_THIS (This);\r
1403\r
1404 mTlsAuthPrivateData = Private;\r
1405\r
1406 //\r
1407 // Retrieve uncommitted data from Browser\r
1408 //\r
1409 BufferSize = sizeof (TLS_AUTH_CONFIG_IFR_NVDATA);\r
1410 IfrNvData = AllocateZeroPool (BufferSize);\r
1411 if (IfrNvData == NULL) {\r
1412 return EFI_OUT_OF_RESOURCES;\r
1413 }\r
1414\r
1415 HiiGetBrowserData (&gTlsAuthConfigGuid, mTlsAuthConfigStorageName, BufferSize, (UINT8 *) IfrNvData);\r
1416\r
1417 if ((Action != EFI_BROWSER_ACTION_CHANGED) &&\r
f75a7f56 1418 (Action != EFI_BROWSER_ACTION_CHANGING) &&\r
8ca41768 1419 (Action != EFI_BROWSER_ACTION_FORM_CLOSE)) {\r
7618784b
HW		 1420 Status = EFI_UNSUPPORTED;\r
1421 goto EXIT;\r
1422 }\r
1423\r
1424 if (Action == EFI_BROWSER_ACTION_CHANGING) {\r
1425 switch (QuestionId) {\r
1426 case KEY_TLS_AUTH_CONFIG_CLIENT_CERT:\r
1427 case KEY_TLS_AUTH_CONFIG_SERVER_CA:\r
1428 //\r
1429 // Clear Cert GUID.\r
1430 //\r
1431 ZeroMem (IfrNvData->CertGuid, sizeof (IfrNvData->CertGuid));\r
1432 if (Private->CertGuid == NULL) {\r
1433 Private->CertGuid = (EFI_GUID *) AllocateZeroPool (sizeof (EFI_GUID));\r
1434 if (Private->CertGuid == NULL) {\r
1435 return EFI_OUT_OF_RESOURCES;\r
1436 }\r
1437 }\r
1438 if (QuestionId == KEY_TLS_AUTH_CONFIG_CLIENT_CERT) {\r
1439 LabelId = TLS_AUTH_CONFIG_FORMID3_FORM;\r
1440 } else {\r
1441 LabelId = TLS_AUTH_CONFIG_FORMID4_FORM;\r
1442 }\r
1443\r
1444 //\r
1445 // Refresh selected file.\r
1446 //\r
1447 CleanUpPage (LabelId, Private);\r
1448 break;\r
1449 case KEY_TLS_AUTH_CONFIG_ENROLL_CERT_FROM_FILE:\r
8ca41768 1450 //\r
f75a7f56 1451 // If the file is already opened, clean the file related resource first.\r
8ca41768
JW		 1452 //\r
1453 CleanFileContext (Private);\r
f75a7f56 1454\r
7618784b
HW		 1455 ChooseFile( NULL, NULL, UpdateCAFromFile, &File);\r
1456 break;\r
1457\r
1458 case KEY_TLS_AUTH_CONFIG_VALUE_SAVE_AND_EXIT:\r
1459 Status = EnrollCertDatabase (Private, EFI_TLS_CA_CERTIFICATE_VARIABLE);\r
1460 if (EFI_ERROR (Status)) {\r
8ca41768
JW		 1461 CleanFileContext (Private);\r
1462\r
7618784b
HW		 1463 CreatePopUp (\r
1464 EFI_LIGHTGRAY | EFI_BACKGROUND_BLUE,\r
1465 &Key,\r
1466 L"ERROR: Enroll Cert Failure!",\r
1467 NULL\r
1468 );\r
1469 }\r
1470 break;\r
1471\r
1472 case KEY_TLS_AUTH_CONFIG_VALUE_NO_SAVE_AND_EXIT:\r
8ca41768 1473 CleanFileContext (Private);\r
7618784b
HW		 1474\r
1475 if (Private->CertGuid!= NULL) {\r
1476 FreePool (Private->CertGuid);\r
1477 Private->CertGuid = NULL;\r
1478 }\r
1479 break;\r
1480\r
1481 case KEY_TLS_AUTH_CONFIG_DELETE_CERT:\r
1482 UpdateDeletePage (\r
1483 Private,\r
1484 EFI_TLS_CA_CERTIFICATE_VARIABLE,\r
1485 &gEfiTlsCaCertificateGuid,\r
1486 LABEL_CA_DELETE,\r
1487 TLS_AUTH_CONFIG_FORMID5_FORM,\r
1488 OPTION_DEL_CA_ESTION_ID\r
1489 );\r
1490 break;\r
1491\r
1492 default:\r
1493 if ((QuestionId >= OPTION_DEL_CA_ESTION_ID) &&\r
1494 (QuestionId < (OPTION_DEL_CA_ESTION_ID + OPTION_CONFIG_RANGE))) {\r
1495 DeleteCert (\r
1496 Private,\r
1497 EFI_TLS_CA_CERTIFICATE_VARIABLE,\r
1498 &gEfiTlsCaCertificateGuid,\r
1499 LABEL_CA_DELETE,\r
1500 TLS_AUTH_CONFIG_FORMID5_FORM,\r
1501 OPTION_DEL_CA_ESTION_ID,\r
1502 QuestionId - OPTION_DEL_CA_ESTION_ID\r
1503 );\r
1504 }\r
1505 break;\r
1506 }\r
1507 } else if (Action == EFI_BROWSER_ACTION_CHANGED) {\r
1508 switch (QuestionId) {\r
1509 case KEY_TLS_AUTH_CONFIG_CERT_GUID:\r
1510 ASSERT (Private->CertGuid != NULL);\r
1511 RStatus = StrToGuid (\r
1512 IfrNvData->CertGuid,\r
1513 Private->CertGuid\r
1514 );\r
1515 if (RETURN_ERROR (RStatus) || (IfrNvData->CertGuid[GUID_STRING_LENGTH] != L'\0')) {\r
1516 Status = EFI_INVALID_PARAMETER;\r
1517 break;\r
1518 }\r
1519\r
1520 *ActionRequest = EFI_BROWSER_ACTION_REQUEST_FORM_APPLY;\r
1521 break;\r
1522 default:\r
1523 break;\r
1524 }\r
8ca41768
JW		 1525 } else if (Action == EFI_BROWSER_ACTION_FORM_CLOSE) {\r
1526 CleanFileContext (Private);\r
7618784b
HW		 1527 }\r
1528\r
1529EXIT:\r
1530\r
1531 if (!EFI_ERROR (Status)) {\r
1532 BufferSize = sizeof (TLS_AUTH_CONFIG_IFR_NVDATA);\r
1533 HiiSetBrowserData (&gTlsAuthConfigGuid, mTlsAuthConfigStorageName, BufferSize, (UINT8*) IfrNvData, NULL);\r
1534 }\r
1535\r
1536 FreePool (IfrNvData);\r
1537\r
1538 if (File != NULL){\r
1539 FreePool(File);\r
1540 File = NULL;\r
1541 }\r
1542\r
1543 return EFI_SUCCESS;\r
1544\r
1545}\r
1546\r
EFI Development Kit II mirror for PVE