]> git.proxmox.com Git - mirror_edk2.git/blame - NetworkPkg/TlsAuthConfigDxe/TlsAuthConfigImpl.c
projects / mirror_edk2.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
MdePkg: Replace BSD License with BSD+Patent License
[mirror_edk2.git] / NetworkPkg / TlsAuthConfigDxe / TlsAuthConfigImpl.c
CommitLineData
7618784b
HW		 1/** @file\r
2 The Miscellaneous Routines for TlsAuthConfigDxe driver.\r
3\r
f75a7f56 4Copyright (c) 2016 - 2018, Intel Corporation. All rights reserved.<BR>\r
7618784b
HW		 5\r
6This program and the accompanying materials\r
7are licensed and made available under the terms and conditions of the BSD License\r
8which accompanies this distribution. The full text of the license may be found at\r
9http://opensource.org/licenses/bsd-license.php\r
10\r
11THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,\r
12WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
13\r
14**/\r
15\r
16#include "TlsAuthConfigImpl.h"\r
17\r
18VOID *mStartOpCodeHandle = NULL;\r
19VOID *mEndOpCodeHandle = NULL;\r
20EFI_IFR_GUID_LABEL *mStartLabel = NULL;\r
21EFI_IFR_GUID_LABEL *mEndLabel = NULL;\r
22\r
23\r
24CHAR16 mTlsAuthConfigStorageName[] = L"TLS_AUTH_CONFIG_IFR_NVDATA";\r
25\r
26TLS_AUTH_CONFIG_PRIVATE_DATA *mTlsAuthPrivateData = NULL;\r
27\r
28HII_VENDOR_DEVICE_PATH mTlsAuthConfigHiiVendorDevicePath = {\r
29 {\r
30 {\r
31 HARDWARE_DEVICE_PATH,\r
32 HW_VENDOR_DP,\r
33 {\r
34 (UINT8) (sizeof (VENDOR_DEVICE_PATH)),\r
35 (UINT8) ((sizeof (VENDOR_DEVICE_PATH)) >> 8)\r
36 }\r
37 },\r
38 TLS_AUTH_CONFIG_GUID\r
39 },\r
40 {\r
41 END_DEVICE_PATH_TYPE,\r
42 END_ENTIRE_DEVICE_PATH_SUBTYPE,\r
43 {\r
44 (UINT8) (END_DEVICE_PATH_LENGTH),\r
45 (UINT8) ((END_DEVICE_PATH_LENGTH) >> 8)\r
46 }\r
47 }\r
48};\r
49\r
50//\r
51// Possible DER-encoded certificate file suffixes, end with NULL pointer.\r
52//\r
53CHAR16* mDerPemEncodedSuffix[] = {\r
54 L".cer",\r
55 L".der",\r
56 L".crt",\r
57 L".pem",\r
58 NULL\r
59};\r
60\r
61/**\r
62 This code checks if the FileSuffix is one of the possible DER/PEM-encoded certificate suffix.\r
63\r
64 @param[in] FileSuffix The suffix of the input certificate file\r
65\r
66 @retval TRUE It's a DER/PEM-encoded certificate.\r
67 @retval FALSE It's NOT a DER/PEM-encoded certificate.\r
68\r
69**/\r
70BOOLEAN\r
71IsDerPemEncodeCertificate (\r
72 IN CONST CHAR16 *FileSuffix\r
73)\r
74{\r
75 UINTN Index;\r
76 for (Index = 0; mDerPemEncodedSuffix[Index] != NULL; Index++) {\r
77 if (StrCmp (FileSuffix, mDerPemEncodedSuffix[Index]) == 0) {\r
78 return TRUE;\r
79 }\r
80 }\r
81 return FALSE;\r
82}\r
83\r
84/**\r
85 Worker function that prints an EFI_GUID into specified Buffer.\r
86\r
87 @param[in] Guid Pointer to GUID to print.\r
88 @param[in] Buffer Buffer to print Guid into.\r
89 @param[in] BufferSize Size of Buffer.\r
90\r
91 @retval Number of characters printed.\r
92\r
93**/\r
94UINTN\r
95GuidToString (\r
96 IN EFI_GUID *Guid,\r
97 IN CHAR16 *Buffer,\r
98 IN UINTN BufferSize\r
99 )\r
100{\r
101 return UnicodeSPrint (\r
102 Buffer,\r
103 BufferSize,\r
104 L"%g",\r
105 Guid\r
106 );\r
107}\r
108\r
109/**\r
110 List all cert in specified database by GUID in the page\r
111 for user to select and delete as needed.\r
112\r
113 @param[in] PrivateData Module's private data.\r
114 @param[in] VariableName The variable name of the vendor's signature database.\r
115 @param[in] VendorGuid A unique identifier for the vendor.\r
116 @param[in] LabelNumber Label number to insert opcodes.\r
117 @param[in] FormId Form ID of current page.\r
118 @param[in] QuestionIdBase Base question id of the signature list.\r
119\r
120 @retval EFI_SUCCESS Success to update the signature list page\r
121 @retval EFI_OUT_OF_RESOURCES Unable to allocate required resources.\r
122\r
123**/\r
124EFI_STATUS\r
125UpdateDeletePage (\r
126 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private,\r
127 IN CHAR16 *VariableName,\r
128 IN EFI_GUID *VendorGuid,\r
129 IN UINT16 LabelNumber,\r
130 IN EFI_FORM_ID FormId,\r
131 IN EFI_QUESTION_ID QuestionIdBase\r
132 )\r
133{\r
134 EFI_STATUS Status;\r
135 UINT32 Index;\r
136 UINTN CertCount;\r
137 UINTN GuidIndex;\r
138 VOID *StartOpCodeHandle;\r
139 VOID *EndOpCodeHandle;\r
140 EFI_IFR_GUID_LABEL *StartLabel;\r
141 EFI_IFR_GUID_LABEL *EndLabel;\r
142 UINTN DataSize;\r
143 UINT8 *Data;\r
144 EFI_SIGNATURE_LIST *CertList;\r
145 EFI_SIGNATURE_DATA *Cert;\r
146 UINT32 ItemDataSize;\r
147 CHAR16 *GuidStr;\r
148 EFI_STRING_ID GuidID;\r
149 EFI_STRING_ID Help;\r
150\r
151 Data = NULL;\r
152 CertList = NULL;\r
153 Cert = NULL;\r
154 GuidStr = NULL;\r
155 StartOpCodeHandle = NULL;\r
156 EndOpCodeHandle = NULL;\r
157\r
158 //\r
159 // Initialize the container for dynamic opcodes.\r
160 //\r
161 StartOpCodeHandle = HiiAllocateOpCodeHandle ();\r
162 if (StartOpCodeHandle == NULL) {\r
163 Status = EFI_OUT_OF_RESOURCES;\r
164 goto ON_EXIT;\r
165 }\r
166\r
167 EndOpCodeHandle = HiiAllocateOpCodeHandle ();\r
168 if (EndOpCodeHandle == NULL) {\r
169 Status = EFI_OUT_OF_RESOURCES;\r
170 goto ON_EXIT;\r
171 }\r
172\r
173 //\r
174 // Create Hii Extend Label OpCode.\r
175 //\r
176 StartLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
177 StartOpCodeHandle,\r
178 &gEfiIfrTianoGuid,\r
179 NULL,\r
180 sizeof (EFI_IFR_GUID_LABEL)\r
181 );\r
182 StartLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
183 StartLabel->Number = LabelNumber;\r
184\r
185 EndLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
186 EndOpCodeHandle,\r
187 &gEfiIfrTianoGuid,\r
188 NULL,\r
189 sizeof (EFI_IFR_GUID_LABEL)\r
190 );\r
191 EndLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
192 EndLabel->Number = LABEL_END;\r
193\r
194 //\r
195 // Read Variable.\r
196 //\r
197 DataSize = 0;\r
198 Status = gRT->GetVariable (VariableName, VendorGuid, NULL, &DataSize, Data);\r
199 if (EFI_ERROR (Status) && Status != EFI_BUFFER_TOO_SMALL) {\r
200 goto ON_EXIT;\r
201 }\r
202\r
203 Data = (UINT8 *) AllocateZeroPool (DataSize);\r
204 if (Data == NULL) {\r
205 Status = EFI_OUT_OF_RESOURCES;\r
206 goto ON_EXIT;\r
207 }\r
208\r
209 Status = gRT->GetVariable (VariableName, VendorGuid, NULL, &DataSize, Data);\r
210 if (EFI_ERROR (Status)) {\r
211 goto ON_EXIT;\r
212 }\r
213\r
214 GuidStr = AllocateZeroPool (100);\r
215 if (GuidStr == NULL) {\r
216 Status = EFI_OUT_OF_RESOURCES;\r
217 goto ON_EXIT;\r
218 }\r
219\r
220 //\r
221 // Enumerate all data.\r
222 //\r
223 ItemDataSize = (UINT32) DataSize;\r
224 CertList = (EFI_SIGNATURE_LIST *) Data;\r
225 GuidIndex = 0;\r
226\r
227 while ((ItemDataSize > 0) && (ItemDataSize >= CertList->SignatureListSize)) {\r
228\r
229 if (CompareGuid (&CertList->SignatureType, &gEfiCertX509Guid)) {\r
230 Help = STRING_TOKEN (STR_CERT_TYPE_PCKS_GUID);\r
231 } else {\r
232 //\r
233 // The signature type is not supported in current implementation.\r
234 //\r
235 ItemDataSize -= CertList->SignatureListSize;\r
236 CertList = (EFI_SIGNATURE_LIST *) ((UINT8 *) CertList + CertList->SignatureListSize);\r
237 continue;\r
238 }\r
239\r
240 CertCount = (CertList->SignatureListSize - sizeof (EFI_SIGNATURE_LIST) - CertList->SignatureHeaderSize) / CertList->SignatureSize;\r
241 for (Index = 0; Index < CertCount; Index++) {\r
242 Cert = (EFI_SIGNATURE_DATA *) ((UINT8 *) CertList\r
243 + sizeof (EFI_SIGNATURE_LIST)\r
244 + CertList->SignatureHeaderSize\r
245 + Index * CertList->SignatureSize);\r
246 //\r
247 // Display GUID and help\r
248 //\r
249 GuidToString (&Cert->SignatureOwner, GuidStr, 100);\r
250 GuidID = HiiSetString (Private->RegisteredHandle, 0, GuidStr, NULL);\r
251 HiiCreateCheckBoxOpCode (\r
252 StartOpCodeHandle,\r
253 (EFI_QUESTION_ID) (QuestionIdBase + GuidIndex++),\r
254 0,\r
255 0,\r
256 GuidID,\r
257 Help,\r
258 EFI_IFR_FLAG_CALLBACK,\r
259 0,\r
260 NULL\r
261 );\r
262 }\r
263\r
264 ItemDataSize -= CertList->SignatureListSize;\r
265 CertList = (EFI_SIGNATURE_LIST *) ((UINT8 *) CertList + CertList->SignatureListSize);\r
266 }\r
267\r
268ON_EXIT:\r
269 HiiUpdateForm (\r
270 Private->RegisteredHandle,\r
271 &gTlsAuthConfigGuid,\r
272 FormId,\r
273 StartOpCodeHandle,\r
274 EndOpCodeHandle\r
275 );\r
276\r
277 if (StartOpCodeHandle != NULL) {\r
278 HiiFreeOpCodeHandle (StartOpCodeHandle);\r
279 }\r
280\r
281 if (EndOpCodeHandle != NULL) {\r
282 HiiFreeOpCodeHandle (EndOpCodeHandle);\r
283 }\r
284\r
285 if (Data != NULL) {\r
286 FreePool (Data);\r
287 }\r
288\r
289 if (GuidStr != NULL) {\r
290 FreePool (GuidStr);\r
291 }\r
292\r
293 return EFI_SUCCESS;\r
294}\r
295\r
296/**\r
297 Delete one entry from cert database.\r
298\r
8ca41768 299 @param[in] Private Module's private data.\r
7618784b
HW		 300 @param[in] VariableName The variable name of the database.\r
301 @param[in] VendorGuid A unique identifier for the vendor.\r
302 @param[in] LabelNumber Label number to insert opcodes.\r
303 @param[in] FormId Form ID of current page.\r
304 @param[in] QuestionIdBase Base question id of the cert list.\r
305 @param[in] DeleteIndex Cert index to delete.\r
306\r
307 @retval EFI_SUCCESS Delete siganture successfully.\r
308 @retval EFI_NOT_FOUND Can't find the signature item,\r
309 @retval EFI_OUT_OF_RESOURCES Could not allocate needed resources.\r
310**/\r
311EFI_STATUS\r
312DeleteCert (\r
313 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private,\r
314 IN CHAR16 *VariableName,\r
315 IN EFI_GUID *VendorGuid,\r
316 IN UINT16 LabelNumber,\r
317 IN EFI_FORM_ID FormId,\r
318 IN EFI_QUESTION_ID QuestionIdBase,\r
319 IN UINTN DeleteIndex\r
320 )\r
321{\r
322 EFI_STATUS Status;\r
323 UINTN DataSize;\r
324 UINT8 *Data;\r
325 UINT8 *OldData;\r
326 UINT32 Attr;\r
327 UINT32 Index;\r
328 EFI_SIGNATURE_LIST *CertList;\r
329 EFI_SIGNATURE_LIST *NewCertList;\r
330 EFI_SIGNATURE_DATA *Cert;\r
331 UINTN CertCount;\r
332 UINT32 Offset;\r
333 BOOLEAN IsItemFound;\r
334 UINT32 ItemDataSize;\r
335 UINTN GuidIndex;\r
336\r
337 Data = NULL;\r
338 OldData = NULL;\r
339 CertList = NULL;\r
340 Cert = NULL;\r
341 Attr = 0;\r
342\r
343 //\r
344 // Get original signature list data.\r
345 //\r
346 DataSize = 0;\r
347 Status = gRT->GetVariable (VariableName, VendorGuid, NULL, &DataSize, NULL);\r
348 if (EFI_ERROR (Status) && Status != EFI_BUFFER_TOO_SMALL) {\r
349 goto ON_EXIT;\r
350 }\r
351\r
352 OldData = (UINT8 *) AllocateZeroPool (DataSize);\r
353 if (OldData == NULL) {\r
354 Status = EFI_OUT_OF_RESOURCES;\r
355 goto ON_EXIT;\r
356 }\r
357\r
358 Status = gRT->GetVariable (VariableName, VendorGuid, &Attr, &DataSize, OldData);\r
359 if (EFI_ERROR(Status)) {\r
360 goto ON_EXIT;\r
361 }\r
362\r
363 //\r
364 // Allocate space for new variable.\r
365 //\r
366 Data = (UINT8*) AllocateZeroPool (DataSize);\r
367 if (Data == NULL) {\r
368 Status = EFI_OUT_OF_RESOURCES;\r
369 goto ON_EXIT;\r
370 }\r
371\r
372 //\r
373 // Enumerate all data and erasing the target item.\r
374 //\r
375 IsItemFound = FALSE;\r
376 ItemDataSize = (UINT32) DataSize;\r
377 CertList = (EFI_SIGNATURE_LIST *) OldData;\r
378 Offset = 0;\r
379 GuidIndex = 0;\r
380 while ((ItemDataSize > 0) && (ItemDataSize >= CertList->SignatureListSize)) {\r
381 if (CompareGuid (&CertList->SignatureType, &gEfiCertX509Guid)) {\r
382 //\r
383 // Copy EFI_SIGNATURE_LIST header then calculate the signature count in this list.\r
384 //\r
385 CopyMem (Data + Offset, CertList, (sizeof(EFI_SIGNATURE_LIST) + CertList->SignatureHeaderSize));\r
386 NewCertList = (EFI_SIGNATURE_LIST*) (Data + Offset);\r
387 Offset += (sizeof(EFI_SIGNATURE_LIST) + CertList->SignatureHeaderSize);\r
388 Cert = (EFI_SIGNATURE_DATA *) ((UINT8 *) CertList + sizeof (EFI_SIGNATURE_LIST) + CertList->SignatureHeaderSize);\r
389 CertCount = (CertList->SignatureListSize - sizeof (EFI_SIGNATURE_LIST) - CertList->SignatureHeaderSize) / CertList->SignatureSize;\r
390 for (Index = 0; Index < CertCount; Index++) {\r
391 if (GuidIndex == DeleteIndex) {\r
392 //\r
393 // Find it! Skip it!\r
394 //\r
395 NewCertList->SignatureListSize -= CertList->SignatureSize;\r
396 IsItemFound = TRUE;\r
397 } else {\r
398 //\r
399 // This item doesn't match. Copy it to the Data buffer.\r
400 //\r
401 CopyMem (Data + Offset, (UINT8*)(Cert), CertList->SignatureSize);\r
402 Offset += CertList->SignatureSize;\r
403 }\r
404 GuidIndex++;\r
405 Cert = (EFI_SIGNATURE_DATA *) ((UINT8 *) Cert + CertList->SignatureSize);\r
406 }\r
407 } else {\r
408 //\r
409 // This List doesn't match. Just copy it to the Data buffer.\r
410 //\r
411 CopyMem (Data + Offset, (UINT8*)(CertList), CertList->SignatureListSize);\r
412 Offset += CertList->SignatureListSize;\r
413 }\r
414\r
415 ItemDataSize -= CertList->SignatureListSize;\r
416 CertList = (EFI_SIGNATURE_LIST *) ((UINT8 *) CertList + CertList->SignatureListSize);\r
417 }\r
418\r
419 if (!IsItemFound) {\r
420 //\r
421 // Doesn't find the signature Item!\r
422 //\r
423 Status = EFI_NOT_FOUND;\r
424 goto ON_EXIT;\r
425 }\r
426\r
427 //\r
428 // Delete the EFI_SIGNATURE_LIST header if there is no signature in the list.\r
429 //\r
430 ItemDataSize = Offset;\r
431 CertList = (EFI_SIGNATURE_LIST *) Data;\r
432 Offset = 0;\r
433 ZeroMem (OldData, ItemDataSize);\r
434 while ((ItemDataSize > 0) && (ItemDataSize >= CertList->SignatureListSize)) {\r
435 CertCount = (CertList->SignatureListSize - sizeof (EFI_SIGNATURE_LIST) - CertList->SignatureHeaderSize) / CertList->SignatureSize;\r
436 DEBUG ((DEBUG_INFO, " CertCount = %x\n", CertCount));\r
437 if (CertCount != 0) {\r
438 CopyMem (OldData + Offset, (UINT8*)(CertList), CertList->SignatureListSize);\r
439 Offset += CertList->SignatureListSize;\r
440 }\r
441 ItemDataSize -= CertList->SignatureListSize;\r
442 CertList = (EFI_SIGNATURE_LIST *) ((UINT8 *) CertList + CertList->SignatureListSize);\r
443 }\r
444\r
445 DataSize = Offset;\r
446\r
447 Status = gRT->SetVariable(\r
448 VariableName,\r
449 VendorGuid,\r
450 Attr,\r
451 DataSize,\r
452 OldData\r
453 );\r
454 if (EFI_ERROR (Status)) {\r
455 DEBUG ((DEBUG_ERROR, "Failed to set variable, Status = %r\n", Status));\r
456 goto ON_EXIT;\r
457 }\r
458\r
459ON_EXIT:\r
460 if (Data != NULL) {\r
461 FreePool(Data);\r
462 }\r
463\r
464 if (OldData != NULL) {\r
465 FreePool(OldData);\r
466 }\r
467\r
468 return UpdateDeletePage (\r
469 Private,\r
470 VariableName,\r
471 VendorGuid,\r
472 LabelNumber,\r
473 FormId,\r
474 QuestionIdBase\r
475 );\r
476}\r
477\r
478\r
479/**\r
8ca41768 480 Clean the file related resource.\r
7618784b 481\r
8ca41768 482 @param[in] Private Module's private data.\r
7618784b
HW		 483\r
484**/\r
485VOID\r
8ca41768
JW		 486CleanFileContext (\r
487 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private\r
7618784b
HW		 488 )\r
489{\r
8ca41768
JW		 490 if (Private->FileContext->FHandle != NULL) {\r
491 Private->FileContext->FHandle->Close (Private->FileContext->FHandle);\r
492 Private->FileContext->FHandle = NULL;\r
493 if (Private->FileContext->FileName!= NULL){\r
494 FreePool(Private->FileContext->FileName);\r
495 Private->FileContext->FileName = NULL;\r
496 }\r
7618784b
HW		 497 }\r
498}\r
499\r
500/**\r
501 Read file content into BufferPtr, the size of the allocate buffer\r
502 is *FileSize plus AddtionAllocateSize.\r
503\r
504 @param[in] FileHandle The file to be read.\r
505 @param[in, out] BufferPtr Pointers to the pointer of allocated buffer.\r
506 @param[out] FileSize Size of input file\r
507 @param[in] AddtionAllocateSize Addtion size the buffer need to be allocated.\r
508 In case the buffer need to contain others besides the file content.\r
509\r
510 @retval EFI_SUCCESS The file was read into the buffer.\r
511 @retval EFI_INVALID_PARAMETER A parameter was invalid.\r
512 @retval EFI_OUT_OF_RESOURCES A memory allocation failed.\r
513 @retval others Unexpected error.\r
514\r
515**/\r
516EFI_STATUS\r
517ReadFileContent (\r
518 IN EFI_FILE_HANDLE FileHandle,\r
519 IN OUT VOID **BufferPtr,\r
520 OUT UINTN *FileSize,\r
521 IN UINTN AddtionAllocateSize\r
522 )\r
523\r
524{\r
525 UINTN BufferSize;\r
526 UINT64 SourceFileSize;\r
527 VOID *Buffer;\r
528 EFI_STATUS Status;\r
529\r
530 if ((FileHandle == NULL) || (FileSize == NULL)) {\r
531 return EFI_INVALID_PARAMETER;\r
532 }\r
533\r
534 Buffer = NULL;\r
535\r
536 //\r
537 // Get the file size\r
538 //\r
539 Status = FileHandle->SetPosition (FileHandle, (UINT64) -1);\r
540 if (EFI_ERROR (Status)) {\r
541 goto ON_EXIT;\r
542 }\r
543\r
544 Status = FileHandle->GetPosition (FileHandle, &SourceFileSize);\r
545 if (EFI_ERROR (Status)) {\r
546 goto ON_EXIT;\r
547 }\r
548\r
549 Status = FileHandle->SetPosition (FileHandle, 0);\r
550 if (EFI_ERROR (Status)) {\r
551 goto ON_EXIT;\r
552 }\r
553\r
554 BufferSize = (UINTN) SourceFileSize + AddtionAllocateSize;\r
555 Buffer = AllocateZeroPool(BufferSize);\r
556 if (Buffer == NULL) {\r
557 return EFI_OUT_OF_RESOURCES;\r
558 }\r
559\r
560 BufferSize = (UINTN) SourceFileSize;\r
561 *FileSize = BufferSize;\r
562\r
563 Status = FileHandle->Read (FileHandle, &BufferSize, Buffer);\r
564 if (EFI_ERROR (Status) || BufferSize != *FileSize) {\r
565 FreePool (Buffer);\r
566 Buffer = NULL;\r
567 Status = EFI_BAD_BUFFER_SIZE;\r
568 goto ON_EXIT;\r
569 }\r
570\r
571ON_EXIT:\r
572\r
573 *BufferPtr = Buffer;\r
574 return Status;\r
575}\r
576\r
7618784b
HW		 577/**\r
578 This function converts an input device structure to a Unicode string.\r
579\r
580 @param[in] DevPath A pointer to the device path structure.\r
581\r
582 @return A new allocated Unicode string that represents the device path.\r
583\r
584**/\r
585CHAR16 *\r
586EFIAPI\r
587DevicePathToStr (\r
588 IN EFI_DEVICE_PATH_PROTOCOL *DevPath\r
589 )\r
590{\r
591 return ConvertDevicePathToText (\r
592 DevPath,\r
593 FALSE,\r
594 TRUE\r
595 );\r
596}\r
597\r
598\r
599/**\r
600 Extract filename from device path. The returned buffer is allocated using AllocateCopyPool.\r
601 The caller is responsible for freeing the allocated buffer using FreePool(). If return NULL\r
602 means not enough memory resource.\r
603\r
604 @param DevicePath Device path.\r
605\r
606 @retval NULL Not enough memory resourece for AllocateCopyPool.\r
607 @retval Other A new allocated string that represents the file name.\r
608\r
609**/\r
610CHAR16 *\r
611ExtractFileNameFromDevicePath (\r
612 IN EFI_DEVICE_PATH_PROTOCOL *DevicePath\r
613 )\r
614{\r
615 CHAR16 *String;\r
616 CHAR16 *MatchString;\r
617 CHAR16 *LastMatch;\r
618 CHAR16 *FileName;\r
619 UINTN Length;\r
620\r
621 ASSERT(DevicePath != NULL);\r
622\r
623 String = DevicePathToStr(DevicePath);\r
624 MatchString = String;\r
625 LastMatch = String;\r
626 FileName = NULL;\r
627\r
628 while(MatchString != NULL){\r
629 LastMatch = MatchString + 1;\r
630 MatchString = StrStr(LastMatch,L"\\");\r
631 }\r
632\r
633 Length = StrLen(LastMatch);\r
634 FileName = AllocateCopyPool ((Length + 1) * sizeof(CHAR16), LastMatch);\r
635 if (FileName != NULL) {\r
636 *(FileName + Length) = 0;\r
637 }\r
638\r
639 FreePool(String);\r
640\r
641 return FileName;\r
642}\r
643\r
644/**\r
645 Enroll a new X509 certificate into Variable.\r
646\r
647 @param[in] PrivateData The module's private data.\r
648 @param[in] VariableName Variable name of CA database.\r
649\r
650 @retval EFI_SUCCESS New X509 is enrolled successfully.\r
651 @retval EFI_OUT_OF_RESOURCES Could not allocate needed resources.\r
652\r
653**/\r
654EFI_STATUS\r
655EnrollX509toVariable (\r
656 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private,\r
657 IN CHAR16 *VariableName\r
658 )\r
659{\r
660 EFI_STATUS Status;\r
661 UINTN X509DataSize;\r
662 VOID *X509Data;\r
663 EFI_SIGNATURE_LIST *CACert;\r
664 EFI_SIGNATURE_DATA *CACertData;\r
665 VOID *Data;\r
6896efde 666 VOID *CurrentData;\r
7618784b
HW		 667 UINTN DataSize;\r
668 UINTN SigDataSize;\r
669 UINT32 Attr;\r
670\r
671 X509DataSize = 0;\r
672 SigDataSize = 0;\r
673 DataSize = 0;\r
674 X509Data = NULL;\r
675 CACert = NULL;\r
676 CACertData = NULL;\r
677 Data = NULL;\r
6896efde 678 CurrentData = NULL;\r
b90c335f 679 Attr = 0;\r
7618784b
HW		 680\r
681 Status = ReadFileContent (\r
682 Private->FileContext->FHandle,\r
683 &X509Data,\r
684 &X509DataSize,\r
685 0\r
686 );\r
687 if (EFI_ERROR (Status)) {\r
688 goto ON_EXIT;\r
689 }\r
690 ASSERT (X509Data != NULL);\r
691\r
692 SigDataSize = sizeof(EFI_SIGNATURE_LIST) + sizeof(EFI_SIGNATURE_DATA) - 1 + X509DataSize;\r
693\r
694 Data = AllocateZeroPool (SigDataSize);\r
695 if (Data == NULL) {\r
696 Status = EFI_OUT_OF_RESOURCES;\r
697 goto ON_EXIT;\r
698 }\r
699\r
700 //\r
701 // Fill Certificate Database parameters.\r
702 //\r
703 CACert = (EFI_SIGNATURE_LIST*) Data;\r
704 CACert->SignatureListSize = (UINT32) SigDataSize;\r
705 CACert->SignatureHeaderSize = 0;\r
706 CACert->SignatureSize = (UINT32) (sizeof(EFI_SIGNATURE_DATA) - 1 + X509DataSize);\r
707 CopyGuid (&CACert->SignatureType, &gEfiCertX509Guid);\r
708\r
709 CACertData = (EFI_SIGNATURE_DATA*) ((UINT8* ) CACert + sizeof (EFI_SIGNATURE_LIST));\r
710 CopyGuid (&CACertData->SignatureOwner, Private->CertGuid);\r
711 CopyMem ((UINT8* ) (CACertData->SignatureData), X509Data, X509DataSize);\r
712\r
713 //\r
b90c335f
LE		 714 // Check if the signature database entry already exists. If it does, use the\r
715 // EFI_VARIABLE_APPEND_WRITE attribute to append the new signature data to\r
716 // the original variable, plus preserve the original variable attributes.\r
7618784b 717 //\r
7618784b
HW		 718 Status = gRT->GetVariable(\r
719 VariableName,\r
720 &gEfiTlsCaCertificateGuid,\r
6896efde 721 NULL,\r
7618784b
HW		 722 &DataSize,\r
723 NULL\r
724 );\r
725 if (Status == EFI_BUFFER_TOO_SMALL) {\r
6896efde
LE		 726 //\r
727 // Per spec, we have to fetch the variable's contents, even though we're\r
728 // only interested in the variable's attributes.\r
729 //\r
730 CurrentData = AllocatePool (DataSize);\r
731 if (CurrentData == NULL) {\r
732 Status = EFI_OUT_OF_RESOURCES;\r
733 goto ON_EXIT;\r
734 }\r
735 Status = gRT->GetVariable(\r
736 VariableName,\r
737 &gEfiTlsCaCertificateGuid,\r
738 &Attr,\r
739 &DataSize,\r
740 CurrentData\r
741 );\r
742 if (EFI_ERROR (Status)) {\r
743 goto ON_EXIT;\r
744 }\r
7618784b 745 Attr |= EFI_VARIABLE_APPEND_WRITE;\r
b90c335f
LE		 746 } else if (Status == EFI_NOT_FOUND) {\r
747 Attr = TLS_AUTH_CONFIG_VAR_BASE_ATTR;\r
748 } else {\r
7618784b
HW		 749 goto ON_EXIT;\r
750 }\r
751\r
752 Status = gRT->SetVariable(\r
753 VariableName,\r
754 &gEfiTlsCaCertificateGuid,\r
755 Attr,\r
756 SigDataSize,\r
757 Data\r
758 );\r
759 if (EFI_ERROR (Status)) {\r
760 goto ON_EXIT;\r
761 }\r
762\r
763ON_EXIT:\r
8ca41768 764 CleanFileContext (Private);\r
7618784b
HW		 765\r
766 if (Private->CertGuid != NULL) {\r
767 FreePool (Private->CertGuid);\r
768 Private->CertGuid = NULL;\r
769 }\r
770\r
771 if (Data != NULL) {\r
772 FreePool (Data);\r
773 }\r
774\r
6896efde
LE		 775 if (CurrentData != NULL) {\r
776 FreePool (CurrentData);\r
777 }\r
778\r
7618784b
HW		 779 if (X509Data != NULL) {\r
780 FreePool (X509Data);\r
781 }\r
782\r
783 return Status;\r
784}\r
785\r
786/**\r
787 Enroll Cert into TlsCaCertificate. The GUID will be Private->CertGuid.\r
788\r
789 @param[in] PrivateData The module's private data.\r
790 @param[in] VariableName Variable name of signature database.\r
791\r
792 @retval EFI_SUCCESS New Cert enrolled successfully.\r
793 @retval EFI_INVALID_PARAMETER The parameter is invalid.\r
794 @retval EFI_UNSUPPORTED The Cert file is unsupported type.\r
795 @retval others Fail to enroll Cert data.\r
796\r
797**/\r
798EFI_STATUS\r
799EnrollCertDatabase (\r
800 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private,\r
801 IN CHAR16 *VariableName\r
802 )\r
803{\r
804 UINT16* FilePostFix;\r
805 UINTN NameLength;\r
806\r
807 if ((Private->FileContext->FileName == NULL) || (Private->FileContext->FHandle == NULL) || (Private->CertGuid == NULL)) {\r
808 return EFI_INVALID_PARAMETER;\r
809 }\r
810\r
811 //\r
812 // Parse the file's postfix.\r
813 //\r
814 NameLength = StrLen (Private->FileContext->FileName);\r
815 if (NameLength <= 4) {\r
816 return EFI_INVALID_PARAMETER;\r
817 }\r
818 FilePostFix = Private->FileContext->FileName + NameLength - 4;\r
819\r
820 if (IsDerPemEncodeCertificate (FilePostFix)) {\r
821 //\r
822 // Supports DER-encoded X509 certificate.\r
823 //\r
824 return EnrollX509toVariable (Private, VariableName);\r
825 }\r
826\r
827 return EFI_UNSUPPORTED;\r
828}\r
829\r
830/**\r
831 Refresh the global UpdateData structure.\r
832\r
833**/\r
834VOID\r
835RefreshUpdateData (\r
836 VOID\r
837 )\r
838{\r
839 //\r
840 // Free current updated date\r
841 //\r
842 if (mStartOpCodeHandle != NULL) {\r
843 HiiFreeOpCodeHandle (mStartOpCodeHandle);\r
844 }\r
845\r
846 //\r
847 // Create new OpCode Handle\r
848 //\r
849 mStartOpCodeHandle = HiiAllocateOpCodeHandle ();\r
850\r
851 //\r
852 // Create Hii Extend Label OpCode as the start opcode\r
853 //\r
854 mStartLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
855 mStartOpCodeHandle,\r
856 &gEfiIfrTianoGuid,\r
857 NULL,\r
858 sizeof (EFI_IFR_GUID_LABEL)\r
859 );\r
860 mStartLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
861}\r
862\r
863/**\r
864 Clean up the dynamic opcode at label and form specified by both LabelId.\r
865\r
866 @param[in] LabelId It is both the Form ID and Label ID for opcode deletion.\r
867 @param[in] PrivateData Module private data.\r
868\r
869**/\r
870VOID\r
871CleanUpPage (\r
872 IN UINT16 LabelId,\r
873 IN TLS_AUTH_CONFIG_PRIVATE_DATA *PrivateData\r
874 )\r
875{\r
876 RefreshUpdateData ();\r
877\r
878 //\r
879 // Remove all op-codes from dynamic page\r
880 //\r
881 mStartLabel->Number = LabelId;\r
882 HiiUpdateForm (\r
883 PrivateData->RegisteredHandle,\r
884 &gTlsAuthConfigGuid,\r
885 LabelId,\r
886 mStartOpCodeHandle, // Label LabelId\r
887 mEndOpCodeHandle // LABEL_END\r
888 );\r
889}\r
890\r
891/**\r
892 Update the form base on the selected file.\r
893\r
894 @param FilePath Point to the file path.\r
895 @param FormId The form need to display.\r
896\r
897 @retval TRUE Exit caller function.\r
898 @retval FALSE Not exit caller function.\r
899\r
900**/\r
901BOOLEAN\r
902UpdatePage(\r
903 IN EFI_DEVICE_PATH_PROTOCOL *FilePath,\r
904 IN EFI_FORM_ID FormId\r
905 )\r
906{\r
907 CHAR16 *FileName;\r
908 EFI_STRING_ID StringToken;\r
909\r
910 FileName = NULL;\r
911\r
912 if (FilePath != NULL) {\r
913 FileName = ExtractFileNameFromDevicePath(FilePath);\r
914 }\r
915 if (FileName == NULL) {\r
916 //\r
917 // FileName = NULL has two case:\r
918 // 1. FilePath == NULL, not select file.\r
919 // 2. FilePath != NULL, but ExtractFileNameFromDevicePath return NULL not enough memory resource.\r
920 // In these two case, no need to update the form, and exit the caller function.\r
921 //\r
922 return TRUE;\r
923 }\r
924 StringToken = HiiSetString (mTlsAuthPrivateData->RegisteredHandle, 0, FileName, NULL);\r
925\r
926 mTlsAuthPrivateData->FileContext->FileName = FileName;\r
927\r
9f5d1f7c 928 EfiOpenFileByDevicePath (\r
7618784b
HW		 929 &FilePath,\r
930 &mTlsAuthPrivateData->FileContext->FHandle,\r
931 EFI_FILE_MODE_READ,\r
932 0\r
933 );\r
934 //\r
935 // Create Subtitle op-code for the display string of the option.\r
936 //\r
937 RefreshUpdateData ();\r
938 mStartLabel->Number = FormId;\r
939\r
940 HiiCreateSubTitleOpCode (\r
941 mStartOpCodeHandle,\r
942 StringToken,\r
943 0,\r
944 0,\r
945 0\r
946 );\r
947\r
948 HiiUpdateForm (\r
949 mTlsAuthPrivateData->RegisteredHandle,\r
950 &gTlsAuthConfigGuid,\r
951 FormId,\r
952 mStartOpCodeHandle, /// Label FormId\r
953 mEndOpCodeHandle /// LABEL_END\r
954 );\r
955\r
956 return TRUE;\r
957}\r
958\r
959/**\r
960 Update the form base on the input file path info.\r
961\r
962 @param FilePath Point to the file path.\r
963\r
964 @retval TRUE Exit caller function.\r
965 @retval FALSE Not exit caller function.\r
966**/\r
967BOOLEAN\r
968EFIAPI\r
969UpdateCAFromFile (\r
970 IN EFI_DEVICE_PATH_PROTOCOL *FilePath\r
971 )\r
972{\r
973 return UpdatePage(FilePath, TLS_AUTH_CONFIG_FORMID4_FORM);\r
974}\r
975\r
976/**\r
977 Unload the configuration form, this includes: delete all the configuration\r
978 entries, uninstall the form callback protocol, and free the resources used.\r
979\r
980 @param[in] Private Pointer to the driver private data.\r
981\r
982 @retval EFI_SUCCESS The configuration form is unloaded.\r
983 @retval Others Failed to unload the form.\r
984\r
985**/\r
986EFI_STATUS\r
987TlsAuthConfigFormUnload (\r
988 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private\r
989 )\r
990{\r
991 if (Private->DriverHandle != NULL) {\r
992 //\r
993 // Uninstall EFI_HII_CONFIG_ACCESS_PROTOCOL\r
994 //\r
995 gBS->UninstallMultipleProtocolInterfaces (\r
996 Private->DriverHandle,\r
997 &gEfiDevicePathProtocolGuid,\r
998 &mTlsAuthConfigHiiVendorDevicePath,\r
999 &gEfiHiiConfigAccessProtocolGuid,\r
1000 &Private->ConfigAccess,\r
1001 NULL\r
1002 );\r
1003 Private->DriverHandle = NULL;\r
1004 }\r
1005\r
1006 if (Private->RegisteredHandle != NULL) {\r
1007 //\r
1008 // Remove HII package list\r
1009 //\r
1010 HiiRemovePackages (Private->RegisteredHandle);\r
1011 Private->RegisteredHandle = NULL;\r
1012 }\r
1013\r
1014 if (Private->CertGuid != NULL) {\r
1015 FreePool (Private->CertGuid);\r
1016 }\r
1017\r
1018 if (Private->FileContext != NULL) {\r
1019 FreePool (Private->FileContext);\r
1020 }\r
1021\r
1022 FreePool (Private);\r
1023\r
1024 if (mStartOpCodeHandle != NULL) {\r
1025 HiiFreeOpCodeHandle (mStartOpCodeHandle);\r
1026 }\r
1027\r
1028 if (mEndOpCodeHandle != NULL) {\r
1029 HiiFreeOpCodeHandle (mEndOpCodeHandle);\r
1030 }\r
1031\r
1032 return EFI_SUCCESS;\r
1033}\r
1034\r
1035\r
1036/**\r
1037 Initialize the configuration form.\r
1038\r
1039 @param[in] Private Pointer to the driver private data.\r
1040\r
1041 @retval EFI_SUCCESS The configuration form is initialized.\r
1042 @retval EFI_OUT_OF_RESOURCES Failed to allocate memory.\r
1043\r
1044**/\r
1045EFI_STATUS\r
1046TlsAuthConfigFormInit (\r
1047 IN TLS_AUTH_CONFIG_PRIVATE_DATA *Private\r
1048 )\r
1049{\r
1050 EFI_STATUS Status;\r
1051\r
1052 Private->Signature = TLS_AUTH_CONFIG_PRIVATE_DATA_SIGNATURE;\r
1053\r
1054 Private->ConfigAccess.ExtractConfig = TlsAuthConfigAccessExtractConfig;\r
1055 Private->ConfigAccess.RouteConfig = TlsAuthConfigAccessRouteConfig;\r
1056 Private->ConfigAccess.Callback = TlsAuthConfigAccessCallback;\r
1057\r
1058 //\r
1059 // Install Device Path Protocol and Config Access protocol to driver handle.\r
1060 //\r
1061 Status = gBS->InstallMultipleProtocolInterfaces (\r
1062 &Private->DriverHandle,\r
1063 &gEfiDevicePathProtocolGuid,\r
1064 &mTlsAuthConfigHiiVendorDevicePath,\r
1065 &gEfiHiiConfigAccessProtocolGuid,\r
1066 &Private->ConfigAccess,\r
1067 NULL\r
1068 );\r
1069 if (EFI_ERROR (Status)) {\r
1070 return Status;\r
1071 }\r
1072\r
1073 //\r
1074 // Publish our HII data.\r
1075 //\r
1076 Private->RegisteredHandle = HiiAddPackages (\r
1077 &gTlsAuthConfigGuid,\r
1078 Private->DriverHandle,\r
1079 TlsAuthConfigDxeStrings,\r
1080 TlsAuthConfigVfrBin,\r
1081 NULL\r
1082 );\r
1083 if (Private->RegisteredHandle == NULL) {\r
1084 Status = EFI_OUT_OF_RESOURCES;\r
1085 goto Error;\r
1086 }\r
1087\r
1088 Private->FileContext = AllocateZeroPool (sizeof (TLS_AUTH_CONFIG_FILE_CONTEXT));\r
1089 if (Private->FileContext == NULL) {\r
1090 Status = EFI_OUT_OF_RESOURCES;\r
1091 goto Error;\r
1092 }\r
1093\r
1094 //\r
1095 // Init OpCode Handle and Allocate space for creation of Buffer\r
1096 //\r
1097 mStartOpCodeHandle = HiiAllocateOpCodeHandle ();\r
1098 if (mStartOpCodeHandle == NULL) {\r
1099 Status = EFI_OUT_OF_RESOURCES;\r
1100 goto Error;\r
1101 }\r
1102\r
1103 mEndOpCodeHandle = HiiAllocateOpCodeHandle ();\r
1104 if (mEndOpCodeHandle == NULL) {\r
1105 Status = EFI_OUT_OF_RESOURCES;\r
1106 goto Error;\r
1107 }\r
1108\r
1109 //\r
1110 // Create Hii Extend Label OpCode as the start opcode\r
1111 //\r
1112 mStartLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
1113 mStartOpCodeHandle,\r
1114 &gEfiIfrTianoGuid,\r
1115 NULL,\r
1116 sizeof (EFI_IFR_GUID_LABEL)\r
1117 );\r
1118 mStartLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
1119\r
1120 //\r
1121 // Create Hii Extend Label OpCode as the end opcode\r
1122 //\r
1123 mEndLabel = (EFI_IFR_GUID_LABEL *) HiiCreateGuidOpCode (\r
1124 mEndOpCodeHandle,\r
1125 &gEfiIfrTianoGuid,\r
1126 NULL,\r
1127 sizeof (EFI_IFR_GUID_LABEL)\r
1128 );\r
1129 mEndLabel->ExtendOpCode = EFI_IFR_EXTEND_OP_LABEL;\r
1130 mEndLabel->Number = LABEL_END;\r
1131\r
1132 return EFI_SUCCESS;\r
1133\r
1134Error:\r
1135 TlsAuthConfigFormUnload (Private);\r
1136 return Status;\r
1137}\r
1138\r
1139/**\r
1140\r
1141 This function allows the caller to request the current\r
1142 configuration for one or more named elements. The resulting\r
1143 string is in <ConfigAltResp> format. Any and all alternative\r
1144 configuration strings shall also be appended to the end of the\r
1145 current configuration string. If they are, they must appear\r
1146 after the current configuration. They must contain the same\r
1147 routing (GUID, NAME, PATH) as the current configuration string.\r
1148 They must have an additional description indicating the type of\r
1149 alternative configuration the string represents,\r
1150 "ALTCFG=<StringToken>". That <StringToken> (when\r
1151 converted from Hex UNICODE to binary) is a reference to a\r
1152 string in the associated string pack.\r
1153\r
1154 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.\r
1155\r
1156 @param Request A null-terminated Unicode string in\r
1157 <ConfigRequest> format. Note that this\r
1158 includes the routing information as well as\r
1159 the configurable name / value pairs. It is\r
1160 invalid for this string to be in\r
1161 <MultiConfigRequest> format.\r
1162 If a NULL is passed in for the Request field,\r
1163 all of the settings being abstracted by this function\r
1164 will be returned in the Results field. In addition,\r
1165 if a ConfigHdr is passed in with no request elements,\r
1166 all of the settings being abstracted for that particular\r
1167 ConfigHdr reference will be returned in the Results Field.\r
1168\r
1169 @param Progress On return, points to a character in the\r
1170 Request string. Points to the string's null\r
1171 terminator if request was successful. Points\r
1172 to the most recent "&" before the first\r
1173 failing name / value pair (or the beginning\r
1174 of the string if the failure is in the first\r
1175 name / value pair) if the request was not\r
1176 successful.\r
1177\r
1178 @param Results A null-terminated Unicode string in\r
1179 <MultiConfigAltResp> format which has all values\r
1180 filled in for the names in the Request string.\r
1181 String to be allocated by the called function.\r
1182\r
1183 @retval EFI_SUCCESS The Results string is filled with the\r
1184 values corresponding to all requested\r
1185 names.\r
1186\r
1187 @retval EFI_OUT_OF_RESOURCES Not enough memory to store the\r
1188 parts of the results that must be\r
1189 stored awaiting possible future\r
1190 protocols.\r
1191\r
1192 @retval EFI_NOT_FOUND Routing data doesn't match any\r
1193 known driver. Progress set to the\r
1194 first character in the routing header.\r
1195 Note: There is no requirement that the\r
1196 driver validate the routing data. It\r
1197 must skip the <ConfigHdr> in order to\r
1198 process the names.\r
1199\r
1200 @retval EFI_INVALID_PARAMETER Illegal syntax. Progress set\r
1201 to most recent "&" before the\r
1202 error or the beginning of the\r
1203 string.\r
1204\r
1205 @retval EFI_INVALID_PARAMETER Unknown name. Progress points\r
1206 to the & before the name in\r
1207 question.\r
1208\r
1209**/\r
1210EFI_STATUS\r
1211EFIAPI\r
1212TlsAuthConfigAccessExtractConfig (\r
1213 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL *This,\r
1214 IN CONST EFI_STRING Request,\r
1215 OUT EFI_STRING *Progress,\r
1216 OUT EFI_STRING *Results\r
1217 )\r
1218{\r
1219 EFI_STATUS Status;\r
1220 UINTN BufferSize;\r
1221 UINTN Size;\r
1222 EFI_STRING ConfigRequest;\r
1223 EFI_STRING ConfigRequestHdr;\r
1224 TLS_AUTH_CONFIG_PRIVATE_DATA *Private;\r
1225 BOOLEAN AllocatedRequest;\r
1226\r
1227 if (Progress == NULL || Results == NULL) {\r
1228 return EFI_INVALID_PARAMETER;\r
1229 }\r
1230\r
1231 AllocatedRequest = FALSE;\r
1232 ConfigRequestHdr = NULL;\r
1233 ConfigRequest = NULL;\r
1234 Size = 0;\r
1235\r
1236 Private = TLS_AUTH_CONFIG_PRIVATE_FROM_THIS (This);\r
1237\r
1238 BufferSize = sizeof (TLS_AUTH_CONFIG_IFR_NVDATA);\r
1239 ZeroMem (&Private->TlsAuthConfigNvData, BufferSize);\r
1240\r
1241 *Progress = Request;\r
1242\r
1243 if ((Request != NULL) && !HiiIsConfigHdrMatch (Request, &gTlsAuthConfigGuid, mTlsAuthConfigStorageName)) {\r
1244 return EFI_NOT_FOUND;\r
1245 }\r
1246\r
1247 ConfigRequest = Request;\r
1248 if ((Request == NULL) || (StrStr (Request, L"OFFSET") == NULL)) {\r
1249 //\r
1250 // Request is set to NULL or OFFSET is NULL, construct full request string.\r
1251 //\r
1252 // Allocate and fill a buffer large enough to hold the <ConfigHdr> template\r
1253 // followed by "&OFFSET=0&WIDTH=WWWWWWWWWWWWWWWW" followed by a Null-terminator\r
1254 //\r
1255 ConfigRequestHdr = HiiConstructConfigHdr (&gTlsAuthConfigGuid, mTlsAuthConfigStorageName, Private->DriverHandle);\r
1256 Size = (StrLen (ConfigRequestHdr) + 32 + 1) * sizeof (CHAR16);\r
1257 ConfigRequest = AllocateZeroPool (Size);\r
1258 ASSERT (ConfigRequest != NULL);\r
1259 AllocatedRequest = TRUE;\r
1260 UnicodeSPrint (ConfigRequest, Size, L"%s&OFFSET=0&WIDTH=%016LX", ConfigRequestHdr, (UINT64)BufferSize);\r
1261 FreePool (ConfigRequestHdr);\r
1262 ConfigRequestHdr = NULL;\r
1263 }\r
1264\r
1265 Status = gHiiConfigRouting->BlockToConfig (\r
1266 gHiiConfigRouting,\r
1267 ConfigRequest,\r
1268 (UINT8 *) &Private->TlsAuthConfigNvData,\r
1269 BufferSize,\r
1270 Results,\r
1271 Progress\r
1272 );\r
1273\r
1274 //\r
1275 // Free the allocated config request string.\r
1276 //\r
1277 if (AllocatedRequest) {\r
1278 FreePool (ConfigRequest);\r
1279 }\r
1280\r
1281 //\r
1282 // Set Progress string to the original request string.\r
1283 //\r
1284 if (Request == NULL) {\r
1285 *Progress = NULL;\r
1286 } else if (StrStr (Request, L"OFFSET") == NULL) {\r
1287 *Progress = Request + StrLen (Request);\r
1288 }\r
1289\r
1290 return Status;\r
1291}\r
1292\r
1293/**\r
1294\r
1295 This function applies changes in a driver's configuration.\r
1296 Input is a Configuration, which has the routing data for this\r
1297 driver followed by name / value configuration pairs. The driver\r
1298 must apply those pairs to its configurable storage. If the\r
1299 driver's configuration is stored in a linear block of data\r
1300 and the driver's name / value pairs are in <BlockConfig>\r
1301 format, it may use the ConfigToBlock helper function (above) to\r
1302 simplify the job.\r
1303\r
1304 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.\r
1305\r
1306 @param Configuration A null-terminated Unicode string in\r
1307 <ConfigString> format.\r
1308\r
1309 @param Progress A pointer to a string filled in with the\r
1310 offset of the most recent '&' before the\r
1311 first failing name / value pair (or the\r
1312 beginn ing of the string if the failure\r
1313 is in the first name / value pair) or\r
1314 the terminating NULL if all was\r
1315 successful.\r
1316\r
1317 @retval EFI_SUCCESS The results have been distributed or are\r
1318 awaiting distribution.\r
1319\r
1320 @retval EFI_OUT_OF_RESOURCES Not enough memory to store the\r
1321 parts of the results that must be\r
1322 stored awaiting possible future\r
1323 protocols.\r
1324\r
1325 @retval EFI_INVALID_PARAMETERS Passing in a NULL for the\r
1326 Results parameter would result\r
1327 in this type of error.\r
1328\r
1329 @retval EFI_NOT_FOUND Target for the specified routing data\r
1330 was not found\r
1331\r
1332**/\r
1333EFI_STATUS\r
1334EFIAPI\r
1335TlsAuthConfigAccessRouteConfig (\r
1336 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL *This,\r
1337 IN CONST EFI_STRING Configuration,\r
1338 OUT EFI_STRING *Progress\r
1339 )\r
1340{\r
1341 EFI_STATUS Status;\r
1342 UINTN BufferSize;\r
1343 TLS_AUTH_CONFIG_PRIVATE_DATA *Private;\r
1344\r
1345 if (Progress == NULL) {\r
1346 return EFI_INVALID_PARAMETER;\r
1347 }\r
1348 *Progress = Configuration;\r
1349\r
1350 if (Configuration == NULL) {\r
1351 return EFI_INVALID_PARAMETER;\r
1352 }\r
1353\r
1354 //\r
1355 // Check routing data in <ConfigHdr>.\r
1356 // Note: there is no name for Name/Value storage, only GUID will be checked\r
1357 //\r
1358 if (!HiiIsConfigHdrMatch (Configuration, &gTlsAuthConfigGuid, mTlsAuthConfigStorageName)) {\r
1359 return EFI_NOT_FOUND;\r
1360 }\r
1361\r
1362 Private = TLS_AUTH_CONFIG_PRIVATE_FROM_THIS (This);\r
1363\r
1364 BufferSize = sizeof (TLS_AUTH_CONFIG_IFR_NVDATA);\r
1365 ZeroMem (&Private->TlsAuthConfigNvData, BufferSize);\r
1366\r
1367 Status = gHiiConfigRouting->ConfigToBlock (\r
1368 gHiiConfigRouting,\r
1369 Configuration,\r
1370 (UINT8 *) &Private->TlsAuthConfigNvData,\r
1371 &BufferSize,\r
1372 Progress\r
1373 );\r
1374 if (EFI_ERROR (Status)) {\r
1375 return Status;\r
1376 }\r
1377\r
1378 return Status;\r
1379}\r
1380\r
1381/**\r
1382\r
1383 This function is called to provide results data to the driver.\r
1384 This data consists of a unique key that is used to identify\r
1385 which data is either being passed back or being asked for.\r
1386\r
1387 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.\r
1388 @param Action Specifies the type of action taken by the browser.\r
1389 @param QuestionId A unique value which is sent to the original\r
1390 exporting driver so that it can identify the type\r
1391 of data to expect. The format of the data tends to\r
1392 vary based on the opcode that generated the callback.\r
1393 @param Type The type of value for the question.\r
1394 @param Value A pointer to the data being sent to the original\r
1395 exporting driver.\r
1396 @param ActionRequest On return, points to the action requested by the\r
1397 callback function.\r
1398\r
1399 @retval EFI_SUCCESS The callback successfully handled the action.\r
1400 @retval EFI_OUT_OF_RESOURCES Not enough storage is available to hold the\r
1401 variable and its data.\r
1402 @retval EFI_DEVICE_ERROR The variable could not be saved.\r
1403 @retval EFI_UNSUPPORTED The specified Action is not supported by the\r
1404 callback.\r
1405**/\r
1406EFI_STATUS\r
1407EFIAPI\r
1408TlsAuthConfigAccessCallback (\r
1409 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL *This,\r
1410 IN EFI_BROWSER_ACTION Action,\r
1411 IN EFI_QUESTION_ID QuestionId,\r
1412 IN UINT8 Type,\r
1413 IN OUT EFI_IFR_TYPE_VALUE *Value,\r
1414 OUT EFI_BROWSER_ACTION_REQUEST *ActionRequest\r
1415 )\r
1416{\r
1417 EFI_INPUT_KEY Key;\r
1418 EFI_STATUS Status;\r
1419 RETURN_STATUS RStatus;\r
1420 TLS_AUTH_CONFIG_PRIVATE_DATA *Private;\r
1421 UINTN BufferSize;\r
1422 TLS_AUTH_CONFIG_IFR_NVDATA *IfrNvData;\r
1423 UINT16 LabelId;\r
1424 EFI_DEVICE_PATH_PROTOCOL *File;\r
1425\r
1426 Status = EFI_SUCCESS;\r
1427 File = NULL;\r
1428\r
1429 if ((This == NULL) || (Value == NULL) || (ActionRequest == NULL)) {\r
1430 return EFI_INVALID_PARAMETER;\r
1431 }\r
1432\r
1433 Private = TLS_AUTH_CONFIG_PRIVATE_FROM_THIS (This);\r
1434\r
1435 mTlsAuthPrivateData = Private;\r
1436\r
1437 //\r
1438 // Retrieve uncommitted data from Browser\r
1439 //\r
1440 BufferSize = sizeof (TLS_AUTH_CONFIG_IFR_NVDATA);\r
1441 IfrNvData = AllocateZeroPool (BufferSize);\r
1442 if (IfrNvData == NULL) {\r
1443 return EFI_OUT_OF_RESOURCES;\r
1444 }\r
1445\r
1446 HiiGetBrowserData (&gTlsAuthConfigGuid, mTlsAuthConfigStorageName, BufferSize, (UINT8 *) IfrNvData);\r
1447\r
1448 if ((Action != EFI_BROWSER_ACTION_CHANGED) &&\r
f75a7f56 1449 (Action != EFI_BROWSER_ACTION_CHANGING) &&\r
8ca41768 1450 (Action != EFI_BROWSER_ACTION_FORM_CLOSE)) {\r
7618784b
HW		 1451 Status = EFI_UNSUPPORTED;\r
1452 goto EXIT;\r
1453 }\r
1454\r
1455 if (Action == EFI_BROWSER_ACTION_CHANGING) {\r
1456 switch (QuestionId) {\r
1457 case KEY_TLS_AUTH_CONFIG_CLIENT_CERT:\r
1458 case KEY_TLS_AUTH_CONFIG_SERVER_CA:\r
1459 //\r
1460 // Clear Cert GUID.\r
1461 //\r
1462 ZeroMem (IfrNvData->CertGuid, sizeof (IfrNvData->CertGuid));\r
1463 if (Private->CertGuid == NULL) {\r
1464 Private->CertGuid = (EFI_GUID *) AllocateZeroPool (sizeof (EFI_GUID));\r
1465 if (Private->CertGuid == NULL) {\r
1466 return EFI_OUT_OF_RESOURCES;\r
1467 }\r
1468 }\r
1469 if (QuestionId == KEY_TLS_AUTH_CONFIG_CLIENT_CERT) {\r
1470 LabelId = TLS_AUTH_CONFIG_FORMID3_FORM;\r
1471 } else {\r
1472 LabelId = TLS_AUTH_CONFIG_FORMID4_FORM;\r
1473 }\r
1474\r
1475 //\r
1476 // Refresh selected file.\r
1477 //\r
1478 CleanUpPage (LabelId, Private);\r
1479 break;\r
1480 case KEY_TLS_AUTH_CONFIG_ENROLL_CERT_FROM_FILE:\r
8ca41768 1481 //\r
f75a7f56 1482 // If the file is already opened, clean the file related resource first.\r
8ca41768
JW		 1483 //\r
1484 CleanFileContext (Private);\r
f75a7f56 1485\r
7618784b
HW		 1486 ChooseFile( NULL, NULL, UpdateCAFromFile, &File);\r
1487 break;\r
1488\r
1489 case KEY_TLS_AUTH_CONFIG_VALUE_SAVE_AND_EXIT:\r
1490 Status = EnrollCertDatabase (Private, EFI_TLS_CA_CERTIFICATE_VARIABLE);\r
1491 if (EFI_ERROR (Status)) {\r
8ca41768
JW		 1492 CleanFileContext (Private);\r
1493\r
7618784b
HW		 1494 CreatePopUp (\r
1495 EFI_LIGHTGRAY | EFI_BACKGROUND_BLUE,\r
1496 &Key,\r
1497 L"ERROR: Enroll Cert Failure!",\r
1498 NULL\r
1499 );\r
1500 }\r
1501 break;\r
1502\r
1503 case KEY_TLS_AUTH_CONFIG_VALUE_NO_SAVE_AND_EXIT:\r
8ca41768 1504 CleanFileContext (Private);\r
7618784b
HW		 1505\r
1506 if (Private->CertGuid!= NULL) {\r
1507 FreePool (Private->CertGuid);\r
1508 Private->CertGuid = NULL;\r
1509 }\r
1510 break;\r
1511\r
1512 case KEY_TLS_AUTH_CONFIG_DELETE_CERT:\r
1513 UpdateDeletePage (\r
1514 Private,\r
1515 EFI_TLS_CA_CERTIFICATE_VARIABLE,\r
1516 &gEfiTlsCaCertificateGuid,\r
1517 LABEL_CA_DELETE,\r
1518 TLS_AUTH_CONFIG_FORMID5_FORM,\r
1519 OPTION_DEL_CA_ESTION_ID\r
1520 );\r
1521 break;\r
1522\r
1523 default:\r
1524 if ((QuestionId >= OPTION_DEL_CA_ESTION_ID) &&\r
1525 (QuestionId < (OPTION_DEL_CA_ESTION_ID + OPTION_CONFIG_RANGE))) {\r
1526 DeleteCert (\r
1527 Private,\r
1528 EFI_TLS_CA_CERTIFICATE_VARIABLE,\r
1529 &gEfiTlsCaCertificateGuid,\r
1530 LABEL_CA_DELETE,\r
1531 TLS_AUTH_CONFIG_FORMID5_FORM,\r
1532 OPTION_DEL_CA_ESTION_ID,\r
1533 QuestionId - OPTION_DEL_CA_ESTION_ID\r
1534 );\r
1535 }\r
1536 break;\r
1537 }\r
1538 } else if (Action == EFI_BROWSER_ACTION_CHANGED) {\r
1539 switch (QuestionId) {\r
1540 case KEY_TLS_AUTH_CONFIG_CERT_GUID:\r
1541 ASSERT (Private->CertGuid != NULL);\r
1542 RStatus = StrToGuid (\r
1543 IfrNvData->CertGuid,\r
1544 Private->CertGuid\r
1545 );\r
1546 if (RETURN_ERROR (RStatus) || (IfrNvData->CertGuid[GUID_STRING_LENGTH] != L'\0')) {\r
1547 Status = EFI_INVALID_PARAMETER;\r
1548 break;\r
1549 }\r
1550\r
1551 *ActionRequest = EFI_BROWSER_ACTION_REQUEST_FORM_APPLY;\r
1552 break;\r
1553 default:\r
1554 break;\r
1555 }\r
8ca41768
JW		 1556 } else if (Action == EFI_BROWSER_ACTION_FORM_CLOSE) {\r
1557 CleanFileContext (Private);\r
7618784b
HW		 1558 }\r
1559\r
1560EXIT:\r
1561\r
1562 if (!EFI_ERROR (Status)) {\r
1563 BufferSize = sizeof (TLS_AUTH_CONFIG_IFR_NVDATA);\r
1564 HiiSetBrowserData (&gTlsAuthConfigGuid, mTlsAuthConfigStorageName, BufferSize, (UINT8*) IfrNvData, NULL);\r
1565 }\r
1566\r
1567 FreePool (IfrNvData);\r
1568\r
1569 if (File != NULL){\r
1570 FreePool(File);\r
1571 File = NULL;\r
1572 }\r
1573\r
1574 return EFI_SUCCESS;\r
1575\r
1576}\r
1577\r
EFI Development Kit II mirror for PVE