2 Section Extraction Protocol implementation.
4 Stream database is implemented as a linked list of section streams,
5 where each stream contains a linked list of children, which may be leaves or
8 Children that are encapsulations generate new stream entries
9 when they are created. Streams can also be created by calls to
10 SEP->OpenSectionStream().
12 The database is only created far enough to return the requested data from
13 any given stream, or to determine that the requested data is not found.
15 If a GUIDed encapsulation is encountered, there are three possiblilites.
17 1) A support protocol is found, in which the stream is simply processed with
20 2) A support protocol is not found, but the data is available to be read
21 without processing. In this case, the database is built up through the
22 recursions to return the data, and a RPN event is set that will enable
23 the stream in question to be refreshed if and when the required section
24 extraction protocol is published.This insures the AuthenticationStatus
25 does not become stale in the cache.
27 3) A support protocol is not found, and the data is not available to be read
28 without it. This results in EFI_PROTOCOL_ERROR.
30 Copyright (c) 2006 - 2012, Intel Corporation. All rights reserved.<BR>
31 This program and the accompanying materials
32 are licensed and made available under the terms and conditions of the BSD License
33 which accompanies this distribution. The full text of the license may be found at
34 http://opensource.org/licenses/bsd-license.php
36 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
37 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
44 // Local defines and typedefs
46 #define CORE_SECTION_CHILD_SIGNATURE SIGNATURE_32('S','X','C','S')
47 #define CHILD_SECTION_NODE_FROM_LINK(Node) \
48 CR (Node, CORE_SECTION_CHILD_NODE, Link, CORE_SECTION_CHILD_SIGNATURE)
56 // StreamBase + OffsetInStream == pointer to section header in stream. The
57 // stream base is always known when walking the sections within.
59 UINT32 OffsetInStream
;
61 // Then EncapsulatedStreamHandle below is always 0 if the section is NOT an
62 // encapsulating section. Otherwise, it contains the stream handle
63 // of the encapsulated stream. This handle is ALWAYS produced any time an
64 // encapsulating child is encountered, irrespective of whether the
65 // encapsulated stream is processed further.
67 UINTN EncapsulatedStreamHandle
;
68 EFI_GUID
*EncapsulationGuid
;
70 // If the section REQUIRES an extraction protocol, register for RPN
71 // when the required GUIDed extraction protocol becomes available.
74 } CORE_SECTION_CHILD_NODE
;
76 #define CORE_SECTION_STREAM_SIGNATURE SIGNATURE_32('S','X','S','S')
77 #define STREAM_NODE_FROM_LINK(Node) \
78 CR (Node, CORE_SECTION_STREAM_NODE, Link, CORE_SECTION_STREAM_SIGNATURE)
88 // Authentication status is from GUIDed encapsulations.
90 UINT32 AuthenticationStatus
;
91 } CORE_SECTION_STREAM_NODE
;
93 #define NULL_STREAM_HANDLE 0
96 CORE_SECTION_CHILD_NODE
*ChildNode
;
97 CORE_SECTION_STREAM_NODE
*ParentStream
;
103 The ExtractSection() function processes the input section and
104 allocates a buffer from the pool in which it returns the section
105 contents. If the section being extracted contains
106 authentication information (the section's
107 GuidedSectionHeader.Attributes field has the
108 EFI_GUIDED_SECTION_AUTH_STATUS_VALID bit set), the values
109 returned in AuthenticationStatus must reflect the results of
110 the authentication operation. Depending on the algorithm and
111 size of the encapsulated data, the time that is required to do
112 a full authentication may be prohibitively long for some
113 classes of systems. To indicate this, use
114 EFI_SECURITY_POLICY_PROTOCOL_GUID, which may be published by
115 the security policy driver (see the Platform Initialization
116 Driver Execution Environment Core Interface Specification for
117 more details and the GUID definition). If the
118 EFI_SECURITY_POLICY_PROTOCOL_GUID exists in the handle
119 database, then, if possible, full authentication should be
120 skipped and the section contents simply returned in the
121 OutputBuffer. In this case, the
122 EFI_AUTH_STATUS_PLATFORM_OVERRIDE bit AuthenticationStatus
123 must be set on return. ExtractSection() is callable only from
124 TPL_NOTIFY and below. Behavior of ExtractSection() at any
125 EFI_TPL above TPL_NOTIFY is undefined. Type EFI_TPL is
126 defined in RaiseTPL() in the UEFI 2.0 specification.
129 @param This Indicates the
130 EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL instance.
131 @param InputSection Buffer containing the input GUIDed section
132 to be processed. OutputBuffer OutputBuffer
133 is allocated from boot services pool
134 memory and contains the new section
135 stream. The caller is responsible for
137 @param OutputBuffer *OutputBuffer is allocated from boot services
138 pool memory and contains the new section stream.
139 The caller is responsible for freeing this buffer.
140 @param OutputSize A pointer to a caller-allocated UINTN in
141 which the size of OutputBuffer allocation
142 is stored. If the function returns
143 anything other than EFI_SUCCESS, the value
144 of OutputSize is undefined.
146 @param AuthenticationStatus A pointer to a caller-allocated
147 UINT32 that indicates the
148 authentication status of the
149 output buffer. If the input
151 GuidedSectionHeader.Attributes
153 EFI_GUIDED_SECTION_AUTH_STATUS_VAL
154 bit as clear, AuthenticationStatus
155 must return zero. Both local bits
156 (19:16) and aggregate bits (3:0)
157 in AuthenticationStatus are
158 returned by ExtractSection().
159 These bits reflect the status of
160 the extraction operation. The bit
161 pattern in both regions must be
162 the same, as the local and
163 aggregate authentication statuses
164 have equivalent meaning at this
165 level. If the function returns
166 anything other than EFI_SUCCESS,
167 the value of AuthenticationStatus
171 @retval EFI_SUCCESS The InputSection was successfully
172 processed and the section contents were
175 @retval EFI_OUT_OF_RESOURCES The system has insufficient
176 resources to process the
179 @retval EFI_INVALID_PARAMETER The GUID in InputSection does
180 not match this instance of the
181 GUIDed Section Extraction
187 CustomGuidedSectionExtract (
188 IN CONST EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL
*This
,
189 IN CONST VOID
*InputSection
,
190 OUT VOID
**OutputBuffer
,
191 OUT UINTN
*OutputSize
,
192 OUT UINT32
*AuthenticationStatus
198 LIST_ENTRY mStreamRoot
= INITIALIZE_LIST_HEAD_VARIABLE (mStreamRoot
);
200 EFI_HANDLE mSectionExtractionHandle
= NULL
;
202 EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL mCustomGuidedSectionExtractionProtocol
= {
203 CustomGuidedSectionExtract
208 Entry point of the section extraction code. Initializes an instance of the
209 section extraction interface and installs it on a new handle.
211 @param ImageHandle A handle for the image that is initializing this driver
212 @param SystemTable A pointer to the EFI system table
214 @retval EFI_SUCCESS Driver initialized successfully
215 @retval EFI_OUT_OF_RESOURCES Could not allocate needed resources
220 InitializeSectionExtraction (
221 IN EFI_HANDLE ImageHandle
,
222 IN EFI_SYSTEM_TABLE
*SystemTable
226 EFI_GUID
*ExtractHandlerGuidTable
;
227 UINTN ExtractHandlerNumber
;
230 // Get custom extract guided section method guid list
232 ExtractHandlerNumber
= ExtractGuidedSectionGetGuidList (&ExtractHandlerGuidTable
);
234 Status
= EFI_SUCCESS
;
236 // Install custom guided extraction protocol
238 while (ExtractHandlerNumber
-- > 0) {
239 Status
= CoreInstallProtocolInterface (
240 &mSectionExtractionHandle
,
241 &ExtractHandlerGuidTable
[ExtractHandlerNumber
],
242 EFI_NATIVE_INTERFACE
,
243 &mCustomGuidedSectionExtractionProtocol
245 ASSERT_EFI_ERROR (Status
);
253 Check if a stream is valid.
255 @param SectionStream The section stream to be checked
256 @param SectionStreamLength The length of section stream
258 @return A boolean value indicating the validness of the section stream.
262 IsValidSectionStream (
263 IN VOID
*SectionStream
,
264 IN UINTN SectionStreamLength
269 EFI_COMMON_SECTION_HEADER
*SectionHeader
;
270 EFI_COMMON_SECTION_HEADER
*NextSectionHeader
;
273 SectionHeader
= (EFI_COMMON_SECTION_HEADER
*)SectionStream
;
275 while (TotalLength
< SectionStreamLength
) {
276 if (IS_SECTION2 (SectionHeader
)) {
277 SectionLength
= SECTION2_SIZE (SectionHeader
);
279 SectionLength
= SECTION_SIZE (SectionHeader
);
281 TotalLength
+= SectionLength
;
283 if (TotalLength
== SectionStreamLength
) {
288 // Move to the next byte following the section...
290 SectionHeader
= (EFI_COMMON_SECTION_HEADER
*) ((UINT8
*) SectionHeader
+ SectionLength
);
293 // Figure out where the next section begins
295 NextSectionHeader
= ALIGN_POINTER(SectionHeader
, 4);
296 TotalLength
+= (UINTN
) NextSectionHeader
- (UINTN
) SectionHeader
;
297 SectionHeader
= NextSectionHeader
;
306 Worker function. Constructor for section streams.
308 @param SectionStreamLength Size in bytes of the section stream.
309 @param SectionStream Buffer containing the new section stream.
310 @param AllocateBuffer Indicates whether the stream buffer is to be
311 copied or the input buffer is to be used in
312 place. AuthenticationStatus- Indicates the
313 default authentication status for the new
315 @param AuthenticationStatus A pointer to a caller-allocated UINT32 that
316 indicates the authentication status of the
317 output buffer. If the input section's
318 GuidedSectionHeader.Attributes field
319 has the EFI_GUIDED_SECTION_AUTH_STATUS_VALID
320 bit as clear, AuthenticationStatus must return
321 zero. Both local bits (19:16) and aggregate
322 bits (3:0) in AuthenticationStatus are returned
323 by ExtractSection(). These bits reflect the
324 status of the extraction operation. The bit
325 pattern in both regions must be the same, as
326 the local and aggregate authentication statuses
327 have equivalent meaning at this level. If the
328 function returns anything other than
329 EFI_SUCCESS, the value of *AuthenticationStatus
331 @param SectionStreamHandle A pointer to a caller allocated section stream
334 @retval EFI_SUCCESS Stream was added to stream database.
335 @retval EFI_OUT_OF_RESOURCES memory allocation failed.
339 OpenSectionStreamEx (
340 IN UINTN SectionStreamLength
,
341 IN VOID
*SectionStream
,
342 IN BOOLEAN AllocateBuffer
,
343 IN UINT32 AuthenticationStatus
,
344 OUT UINTN
*SectionStreamHandle
347 CORE_SECTION_STREAM_NODE
*NewStream
;
351 // Allocate a new stream
353 NewStream
= AllocatePool (sizeof (CORE_SECTION_STREAM_NODE
));
354 if (NewStream
== NULL
) {
355 return EFI_OUT_OF_RESOURCES
;
358 if (AllocateBuffer
) {
360 // if we're here, we're double buffering, allocate the buffer and copy the
363 if (SectionStreamLength
> 0) {
364 NewStream
->StreamBuffer
= AllocatePool (SectionStreamLength
);
365 if (NewStream
->StreamBuffer
== NULL
) {
366 CoreFreePool (NewStream
);
367 return EFI_OUT_OF_RESOURCES
;
370 // Copy in stream data
372 CopyMem (NewStream
->StreamBuffer
, SectionStream
, SectionStreamLength
);
375 // It's possible to have a zero length section stream.
377 NewStream
->StreamBuffer
= NULL
;
381 // If were here, the caller has supplied the buffer (it's an internal call)
382 // so just assign the buffer. This happens when we open section streams
383 // as a result of expanding an encapsulating section.
385 NewStream
->StreamBuffer
= SectionStream
;
389 // Initialize the rest of the section stream
391 NewStream
->Signature
= CORE_SECTION_STREAM_SIGNATURE
;
392 NewStream
->StreamHandle
= (UINTN
) NewStream
;
393 NewStream
->StreamLength
= SectionStreamLength
;
394 InitializeListHead (&NewStream
->Children
);
395 NewStream
->AuthenticationStatus
= AuthenticationStatus
;
398 // Add new stream to stream list
400 OldTpl
= CoreRaiseTpl (TPL_NOTIFY
);
401 InsertTailList (&mStreamRoot
, &NewStream
->Link
);
402 CoreRestoreTpl (OldTpl
);
404 *SectionStreamHandle
= NewStream
->StreamHandle
;
411 SEP member function. This function creates and returns a new section stream
412 handle to represent the new section stream.
414 @param SectionStreamLength Size in bytes of the section stream.
415 @param SectionStream Buffer containing the new section stream.
416 @param SectionStreamHandle A pointer to a caller allocated UINTN that on
417 output contains the new section stream handle.
419 @retval EFI_SUCCESS The section stream is created successfully.
420 @retval EFI_OUT_OF_RESOURCES memory allocation failed.
421 @retval EFI_INVALID_PARAMETER Section stream does not end concident with end
428 IN UINTN SectionStreamLength
,
429 IN VOID
*SectionStream
,
430 OUT UINTN
*SectionStreamHandle
434 // Check to see section stream looks good...
436 if (!IsValidSectionStream (SectionStream
, SectionStreamLength
)) {
437 return EFI_INVALID_PARAMETER
;
440 return OpenSectionStreamEx (
452 Worker function. Determine if the input stream:child matches the input type.
454 @param Stream Indicates the section stream associated with the
456 @param Child Indicates the child to check
457 @param SearchType Indicates the type of section to check against
459 @param SectionDefinitionGuid Indicates the GUID to check against if the type
460 is EFI_SECTION_GUID_DEFINED
462 @retval TRUE The child matches
463 @retval FALSE The child doesn't match
468 IN CORE_SECTION_STREAM_NODE
*Stream
,
469 IN CORE_SECTION_CHILD_NODE
*Child
,
470 IN EFI_SECTION_TYPE SearchType
,
471 IN EFI_GUID
*SectionDefinitionGuid
474 EFI_GUID_DEFINED_SECTION
*GuidedSection
;
476 if (SearchType
== EFI_SECTION_ALL
) {
479 if (Child
->Type
!= SearchType
) {
482 if ((SearchType
!= EFI_SECTION_GUID_DEFINED
) || (SectionDefinitionGuid
== NULL
)) {
485 GuidedSection
= (EFI_GUID_DEFINED_SECTION
* )(Stream
->StreamBuffer
+ Child
->OffsetInStream
);
486 if (IS_SECTION2 (GuidedSection
)) {
487 return CompareGuid (&(((EFI_GUID_DEFINED_SECTION2
*) GuidedSection
)->SectionDefinitionGuid
), SectionDefinitionGuid
);
489 return CompareGuid (&GuidedSection
->SectionDefinitionGuid
, SectionDefinitionGuid
);
494 Verify the Guided Section GUID by checking if there is the Guided Section GUID configuration table recorded the GUID itself.
496 @param GuidedSectionGuid The Guided Section GUID.
497 @param GuidedSectionExtraction A pointer to the pointer to the supported Guided Section Extraction Protocol
498 for the Guided Section.
500 @return TRUE The GuidedSectionGuid could be identified, and the pointer to
501 the Guided Section Extraction Protocol will be returned to *GuidedSectionExtraction.
502 @return FALSE The GuidedSectionGuid could not be identified, or
503 the Guided Section Extraction Protocol has not been installed yet.
507 VerifyGuidedSectionGuid (
508 IN EFI_GUID
*GuidedSectionGuid
,
509 OUT EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL
**GuidedSectionExtraction
512 EFI_GUID
*GuidRecorded
;
517 // Check if there is the Guided Section GUID configuration table recorded the GUID itself.
519 Status
= EfiGetSystemConfigurationTable (GuidedSectionGuid
, (VOID
**) &GuidRecorded
);
520 if (Status
== EFI_SUCCESS
) {
521 if (CompareGuid (GuidRecorded
, GuidedSectionGuid
)) {
523 // Found the recorded GuidedSectionGuid.
525 Status
= CoreLocateProtocol (GuidedSectionGuid
, NULL
, (VOID
**) &Interface
);
526 if (!EFI_ERROR (Status
) && Interface
!= NULL
) {
528 // Found the supported Guided Section Extraction Porotocol for the Guided Section.
530 *GuidedSectionExtraction
= (EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL
*) Interface
;
541 RPN callback function. Initializes the section stream
542 when GUIDED_SECTION_EXTRACTION_PROTOCOL is installed.
544 @param Event The event that fired
545 @param RpnContext A pointer to the context that allows us to identify
546 the relevent encapsulation.
550 NotifyGuidedExtraction (
556 EFI_GUID_DEFINED_SECTION
*GuidedHeader
;
557 EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL
*GuidedExtraction
;
558 VOID
*NewStreamBuffer
;
559 UINTN NewStreamBufferSize
;
560 UINT32 AuthenticationStatus
;
561 RPN_EVENT_CONTEXT
*Context
;
563 Context
= RpnContext
;
565 GuidedHeader
= (EFI_GUID_DEFINED_SECTION
*) (Context
->ParentStream
->StreamBuffer
+ Context
->ChildNode
->OffsetInStream
);
566 ASSERT (GuidedHeader
->CommonHeader
.Type
== EFI_SECTION_GUID_DEFINED
);
568 if (!VerifyGuidedSectionGuid (Context
->ChildNode
->EncapsulationGuid
, &GuidedExtraction
)) {
572 Status
= GuidedExtraction
->ExtractSection (
576 &NewStreamBufferSize
,
577 &AuthenticationStatus
579 ASSERT_EFI_ERROR (Status
);
582 // Make sure we initialize the new stream with the correct
583 // authentication status for both aggregate and local status fields.
585 if ((GuidedHeader
->Attributes
& EFI_GUIDED_SECTION_AUTH_STATUS_VALID
) != 0) {
587 // OR in the parent stream's aggregate status.
589 AuthenticationStatus
|= Context
->ParentStream
->AuthenticationStatus
& EFI_AUTH_STATUS_ALL
;
592 // since there's no authentication data contributed by the section,
593 // just inherit the full value from our immediate parent.
595 AuthenticationStatus
= Context
->ParentStream
->AuthenticationStatus
;
598 Status
= OpenSectionStreamEx (
602 AuthenticationStatus
,
603 &Context
->ChildNode
->EncapsulatedStreamHandle
605 ASSERT_EFI_ERROR (Status
);
608 // Close the event when done.
610 gBS
->CloseEvent (Event
);
611 Context
->ChildNode
->Event
= NULL
;
616 Constructor for RPN event when a missing GUIDED_SECTION_EXTRACTION_PROTOCOL appears...
618 @param ParentStream Indicates the parent of the ecnapsulation section (child)
619 @param ChildNode Indicates the child node that is the encapsulation section.
623 CreateGuidedExtractionRpnEvent (
624 IN CORE_SECTION_STREAM_NODE
*ParentStream
,
625 IN CORE_SECTION_CHILD_NODE
*ChildNode
628 RPN_EVENT_CONTEXT
*Context
;
631 // Allocate new event structure and context
633 Context
= AllocatePool (sizeof (RPN_EVENT_CONTEXT
));
634 ASSERT (Context
!= NULL
);
636 Context
->ChildNode
= ChildNode
;
637 Context
->ParentStream
= ParentStream
;
639 Context
->ChildNode
->Event
= EfiCreateProtocolNotifyEvent (
640 Context
->ChildNode
->EncapsulationGuid
,
642 NotifyGuidedExtraction
,
644 &Context
->Registration
649 Worker function. Constructor for new child nodes.
651 @param Stream Indicates the section stream in which to add the
653 @param ChildOffset Indicates the offset in Stream that is the
654 beginning of the child section.
655 @param ChildNode Indicates the Callee allocated and initialized
658 @retval EFI_SUCCESS Child node was found and returned.
659 EFI_OUT_OF_RESOURCES- Memory allocation failed.
660 @retval EFI_PROTOCOL_ERROR Encapsulation sections produce new stream
661 handles when the child node is created. If the
662 section type is GUID defined, and the extraction
663 GUID does not exist, and producing the stream
664 requires the GUID, then a protocol error is
665 generated and no child is produced. Values
666 returned by OpenSectionStreamEx.
671 IN CORE_SECTION_STREAM_NODE
*Stream
,
672 IN UINT32 ChildOffset
,
673 OUT CORE_SECTION_CHILD_NODE
**ChildNode
677 EFI_COMMON_SECTION_HEADER
*SectionHeader
;
678 EFI_COMPRESSION_SECTION
*CompressionHeader
;
679 EFI_GUID_DEFINED_SECTION
*GuidedHeader
;
680 EFI_DECOMPRESS_PROTOCOL
*Decompress
;
681 EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL
*GuidedExtraction
;
682 VOID
*NewStreamBuffer
;
685 UINTN NewStreamBufferSize
;
686 UINT32 AuthenticationStatus
;
687 VOID
*CompressionSource
;
688 UINT32 CompressionSourceSize
;
689 UINT32 UncompressedLength
;
690 UINT8 CompressionType
;
691 UINT16 GuidedSectionAttributes
;
693 CORE_SECTION_CHILD_NODE
*Node
;
695 SectionHeader
= (EFI_COMMON_SECTION_HEADER
*) (Stream
->StreamBuffer
+ ChildOffset
);
698 // Allocate a new node
700 *ChildNode
= AllocateZeroPool (sizeof (CORE_SECTION_CHILD_NODE
));
703 return EFI_OUT_OF_RESOURCES
;
709 Node
->Signature
= CORE_SECTION_CHILD_SIGNATURE
;
710 Node
->Type
= SectionHeader
->Type
;
711 if (IS_SECTION2 (SectionHeader
)) {
712 Node
->Size
= SECTION2_SIZE (SectionHeader
);
714 Node
->Size
= SECTION_SIZE (SectionHeader
);
716 Node
->OffsetInStream
= ChildOffset
;
717 Node
->EncapsulatedStreamHandle
= NULL_STREAM_HANDLE
;
718 Node
->EncapsulationGuid
= NULL
;
721 // If it's an encapsulating section, then create the new section stream also
723 switch (Node
->Type
) {
724 case EFI_SECTION_COMPRESSION
:
726 // Get the CompressionSectionHeader
728 if (Node
->Size
< sizeof (EFI_COMPRESSION_SECTION
)) {
730 return EFI_NOT_FOUND
;
733 CompressionHeader
= (EFI_COMPRESSION_SECTION
*) SectionHeader
;
735 if (IS_SECTION2 (CompressionHeader
)) {
736 CompressionSource
= (VOID
*) ((UINT8
*) CompressionHeader
+ sizeof (EFI_COMPRESSION_SECTION2
));
737 CompressionSourceSize
= (UINT32
) (SECTION2_SIZE (CompressionHeader
) - sizeof (EFI_COMPRESSION_SECTION2
));
738 UncompressedLength
= ((EFI_COMPRESSION_SECTION2
*) CompressionHeader
)->UncompressedLength
;
739 CompressionType
= ((EFI_COMPRESSION_SECTION2
*) CompressionHeader
)->CompressionType
;
741 CompressionSource
= (VOID
*) ((UINT8
*) CompressionHeader
+ sizeof (EFI_COMPRESSION_SECTION
));
742 CompressionSourceSize
= (UINT32
) (SECTION_SIZE (CompressionHeader
) - sizeof (EFI_COMPRESSION_SECTION
));
743 UncompressedLength
= CompressionHeader
->UncompressedLength
;
744 CompressionType
= CompressionHeader
->CompressionType
;
748 // Allocate space for the new stream
750 if (UncompressedLength
> 0) {
751 NewStreamBufferSize
= UncompressedLength
;
752 NewStreamBuffer
= AllocatePool (NewStreamBufferSize
);
753 if (NewStreamBuffer
== NULL
) {
755 return EFI_OUT_OF_RESOURCES
;
758 if (CompressionType
== EFI_NOT_COMPRESSED
) {
760 // stream is not actually compressed, just encapsulated. So just copy it.
762 CopyMem (NewStreamBuffer
, CompressionSource
, NewStreamBufferSize
);
763 } else if (CompressionType
== EFI_STANDARD_COMPRESSION
) {
765 // Only support the EFI_SATNDARD_COMPRESSION algorithm.
769 // Decompress the stream
771 Status
= CoreLocateProtocol (&gEfiDecompressProtocolGuid
, NULL
, (VOID
**)&Decompress
);
772 ASSERT_EFI_ERROR (Status
);
773 ASSERT (Decompress
!= NULL
);
775 Status
= Decompress
->GetInfo (
778 CompressionSourceSize
,
779 (UINT32
*)&NewStreamBufferSize
,
782 if (EFI_ERROR (Status
) || (NewStreamBufferSize
!= UncompressedLength
)) {
784 CoreFreePool (NewStreamBuffer
);
785 if (!EFI_ERROR (Status
)) {
786 Status
= EFI_BAD_BUFFER_SIZE
;
791 ScratchBuffer
= AllocatePool (ScratchSize
);
792 if (ScratchBuffer
== NULL
) {
794 CoreFreePool (NewStreamBuffer
);
795 return EFI_OUT_OF_RESOURCES
;
798 Status
= Decompress
->Decompress (
801 CompressionSourceSize
,
803 (UINT32
)NewStreamBufferSize
,
807 CoreFreePool (ScratchBuffer
);
808 if (EFI_ERROR (Status
)) {
810 CoreFreePool (NewStreamBuffer
);
815 NewStreamBuffer
= NULL
;
816 NewStreamBufferSize
= 0;
819 Status
= OpenSectionStreamEx (
823 Stream
->AuthenticationStatus
,
824 &Node
->EncapsulatedStreamHandle
826 if (EFI_ERROR (Status
)) {
828 CoreFreePool (NewStreamBuffer
);
833 case EFI_SECTION_GUID_DEFINED
:
834 GuidedHeader
= (EFI_GUID_DEFINED_SECTION
*) SectionHeader
;
835 if (IS_SECTION2 (GuidedHeader
)) {
836 Node
->EncapsulationGuid
= &(((EFI_GUID_DEFINED_SECTION2
*) GuidedHeader
)->SectionDefinitionGuid
);
837 GuidedSectionAttributes
= ((EFI_GUID_DEFINED_SECTION2
*) GuidedHeader
)->Attributes
;
839 Node
->EncapsulationGuid
= &GuidedHeader
->SectionDefinitionGuid
;
840 GuidedSectionAttributes
= GuidedHeader
->Attributes
;
842 if (VerifyGuidedSectionGuid (Node
->EncapsulationGuid
, &GuidedExtraction
)) {
844 // NewStreamBuffer is always allocated by ExtractSection... No caller
847 Status
= GuidedExtraction
->ExtractSection (
851 &NewStreamBufferSize
,
852 &AuthenticationStatus
854 if (EFI_ERROR (Status
)) {
855 CoreFreePool (*ChildNode
);
856 return EFI_PROTOCOL_ERROR
;
860 // Make sure we initialize the new stream with the correct
861 // authentication status for both aggregate and local status fields.
863 if ((GuidedSectionAttributes
& EFI_GUIDED_SECTION_AUTH_STATUS_VALID
) != 0) {
865 // OR in the parent stream's aggregate status.
867 AuthenticationStatus
|= Stream
->AuthenticationStatus
& EFI_AUTH_STATUS_ALL
;
870 // since there's no authentication data contributed by the section,
871 // just inherit the full value from our immediate parent.
873 AuthenticationStatus
= Stream
->AuthenticationStatus
;
876 Status
= OpenSectionStreamEx (
880 AuthenticationStatus
,
881 &Node
->EncapsulatedStreamHandle
883 if (EFI_ERROR (Status
)) {
884 CoreFreePool (*ChildNode
);
885 CoreFreePool (NewStreamBuffer
);
890 // There's no GUIDed section extraction protocol available.
892 if ((GuidedSectionAttributes
& EFI_GUIDED_SECTION_PROCESSING_REQUIRED
) != 0) {
894 // If the section REQUIRES an extraction protocol, register for RPN
895 // when the required GUIDed extraction protocol becomes available.
897 CreateGuidedExtractionRpnEvent (Stream
, Node
);
900 // Figure out the proper authentication status
902 AuthenticationStatus
= Stream
->AuthenticationStatus
;
904 if (IS_SECTION2 (GuidedHeader
)) {
905 Status
= OpenSectionStreamEx (
906 SECTION2_SIZE (GuidedHeader
) - ((EFI_GUID_DEFINED_SECTION2
*) GuidedHeader
)->DataOffset
,
907 (UINT8
*) GuidedHeader
+ ((EFI_GUID_DEFINED_SECTION2
*) GuidedHeader
)->DataOffset
,
909 AuthenticationStatus
,
910 &Node
->EncapsulatedStreamHandle
913 Status
= OpenSectionStreamEx (
914 SECTION_SIZE (GuidedHeader
) - ((EFI_GUID_DEFINED_SECTION
*) GuidedHeader
)->DataOffset
,
915 (UINT8
*) GuidedHeader
+ ((EFI_GUID_DEFINED_SECTION
*) GuidedHeader
)->DataOffset
,
917 AuthenticationStatus
,
918 &Node
->EncapsulatedStreamHandle
921 if (EFI_ERROR (Status
)) {
933 // Nothing to do if it's a leaf
939 // Last, add the new child node to the stream
941 InsertTailList (&Stream
->Children
, &Node
->Link
);
948 Worker function Recursively searches / builds section stream database
949 looking for requested section.
951 @param SourceStream Indicates the section stream in which to do the
953 @param SearchType Indicates the type of section to search for.
954 @param SectionInstance Indicates which instance of section to find.
955 This is an in/out parameter to deal with
957 @param SectionDefinitionGuid Guid of section definition
958 @param FoundChild Output indicating the child node that is found.
959 @param FoundStream Output indicating which section stream the child
960 was found in. If this stream was generated as a
961 result of an encapsulation section, the
962 streamhandle is visible within the SEP driver
964 @param AuthenticationStatus Indicates the authentication status of the found section.
966 @retval EFI_SUCCESS Child node was found and returned.
967 EFI_OUT_OF_RESOURCES- Memory allocation failed.
968 @retval EFI_NOT_FOUND Requested child node does not exist.
969 @retval EFI_PROTOCOL_ERROR a required GUIDED section extraction protocol
975 IN CORE_SECTION_STREAM_NODE
*SourceStream
,
976 IN EFI_SECTION_TYPE SearchType
,
977 IN OUT UINTN
*SectionInstance
,
978 IN EFI_GUID
*SectionDefinitionGuid
,
979 OUT CORE_SECTION_CHILD_NODE
**FoundChild
,
980 OUT CORE_SECTION_STREAM_NODE
**FoundStream
,
981 OUT UINT32
*AuthenticationStatus
984 CORE_SECTION_CHILD_NODE
*CurrentChildNode
;
985 CORE_SECTION_CHILD_NODE
*RecursedChildNode
;
986 CORE_SECTION_STREAM_NODE
*RecursedFoundStream
;
987 UINT32 NextChildOffset
;
988 EFI_STATUS ErrorStatus
;
991 CurrentChildNode
= NULL
;
992 ErrorStatus
= EFI_NOT_FOUND
;
994 if (SourceStream
->StreamLength
== 0) {
995 return EFI_NOT_FOUND
;
998 if (IsListEmpty (&SourceStream
->Children
) &&
999 SourceStream
->StreamLength
>= sizeof (EFI_COMMON_SECTION_HEADER
)) {
1001 // This occurs when a section stream exists, but no child sections
1002 // have been parsed out yet. Therefore, extract the first child and add it
1003 // to the list of children so we can get started.
1004 // Section stream may contain an array of zero or more bytes.
1005 // So, its size should be >= the size of commen section header.
1007 Status
= CreateChildNode (SourceStream
, 0, &CurrentChildNode
);
1008 if (EFI_ERROR (Status
)) {
1014 // At least one child has been parsed out of the section stream. So, walk
1015 // through the sections that have already been parsed out looking for the
1016 // requested section, if necessary, continue parsing section stream and
1017 // adding children until either the requested section is found, or we run
1020 CurrentChildNode
= CHILD_SECTION_NODE_FROM_LINK (GetFirstNode(&SourceStream
->Children
));
1023 ASSERT (CurrentChildNode
!= NULL
);
1024 if (ChildIsType (SourceStream
, CurrentChildNode
, SearchType
, SectionDefinitionGuid
)) {
1026 // The type matches, so check the instance count to see if it's the one we want
1028 (*SectionInstance
)--;
1029 if (*SectionInstance
== 0) {
1033 *FoundChild
= CurrentChildNode
;
1034 *FoundStream
= SourceStream
;
1035 *AuthenticationStatus
= SourceStream
->AuthenticationStatus
;
1040 if (CurrentChildNode
->EncapsulatedStreamHandle
!= NULL_STREAM_HANDLE
) {
1042 // If the current node is an encapsulating node, recurse into it...
1044 Status
= FindChildNode (
1045 (CORE_SECTION_STREAM_NODE
*)CurrentChildNode
->EncapsulatedStreamHandle
,
1048 SectionDefinitionGuid
,
1050 &RecursedFoundStream
,
1051 AuthenticationStatus
1054 // If the status is not EFI_SUCCESS, just save the error code and continue
1055 // to find the request child node in the rest stream.
1057 if (*SectionInstance
== 0) {
1058 ASSERT_EFI_ERROR (Status
);
1059 *FoundChild
= RecursedChildNode
;
1060 *FoundStream
= RecursedFoundStream
;
1063 ErrorStatus
= Status
;
1065 } else if ((CurrentChildNode
->Type
== EFI_SECTION_GUID_DEFINED
) && (SearchType
!= EFI_SECTION_GUID_DEFINED
)) {
1067 // When Node Type is GUIDED section, but Node has no encapsulated data, Node data should not be parsed
1068 // because a required GUIDED section extraction protocol does not exist.
1069 // If SearchType is not GUIDED section, EFI_PROTOCOL_ERROR should return.
1071 ErrorStatus
= EFI_PROTOCOL_ERROR
;
1074 if (!IsNodeAtEnd (&SourceStream
->Children
, &CurrentChildNode
->Link
)) {
1076 // We haven't found the child node we're interested in yet, but there's
1077 // still more nodes that have already been parsed so get the next one
1078 // and continue searching..
1080 CurrentChildNode
= CHILD_SECTION_NODE_FROM_LINK (GetNextNode (&SourceStream
->Children
, &CurrentChildNode
->Link
));
1083 // We've exhausted children that have already been parsed, so see if
1084 // there's any more data and continue parsing out more children if there
1087 NextChildOffset
= CurrentChildNode
->OffsetInStream
+ CurrentChildNode
->Size
;
1089 // Round up to 4 byte boundary
1091 NextChildOffset
+= 3;
1092 NextChildOffset
&= ~(UINTN
) 3;
1093 if (NextChildOffset
<= SourceStream
->StreamLength
- sizeof (EFI_COMMON_SECTION_HEADER
)) {
1095 // There's an unparsed child remaining in the stream, so create a new child node
1097 Status
= CreateChildNode (SourceStream
, NextChildOffset
, &CurrentChildNode
);
1098 if (EFI_ERROR (Status
)) {
1102 ASSERT (EFI_ERROR (ErrorStatus
));
1111 Worker function. Search stream database for requested stream handle.
1113 @param SearchHandle Indicates which stream to look for.
1114 @param FoundStream Output pointer to the found stream.
1116 @retval EFI_SUCCESS StreamHandle was found and *FoundStream contains
1118 @retval EFI_NOT_FOUND SearchHandle was not found in the stream
1124 IN UINTN SearchHandle
,
1125 OUT CORE_SECTION_STREAM_NODE
**FoundStream
1128 CORE_SECTION_STREAM_NODE
*StreamNode
;
1130 if (!IsListEmpty (&mStreamRoot
)) {
1131 StreamNode
= STREAM_NODE_FROM_LINK (GetFirstNode (&mStreamRoot
));
1133 if (StreamNode
->StreamHandle
== SearchHandle
) {
1134 *FoundStream
= StreamNode
;
1136 } else if (IsNodeAtEnd (&mStreamRoot
, &StreamNode
->Link
)) {
1139 StreamNode
= STREAM_NODE_FROM_LINK (GetNextNode (&mStreamRoot
, &StreamNode
->Link
));
1144 return EFI_NOT_FOUND
;
1149 SEP member function. Retrieves requested section from section stream.
1151 @param SectionStreamHandle The section stream from which to extract the
1153 @param SectionType A pointer to the type of section to search for.
1154 @param SectionDefinitionGuid If the section type is EFI_SECTION_GUID_DEFINED,
1155 then SectionDefinitionGuid indicates which of
1156 these types of sections to search for.
1157 @param SectionInstance Indicates which instance of the requested
1159 @param Buffer Double indirection to buffer. If *Buffer is
1160 non-null on input, then the buffer is caller
1161 allocated. If Buffer is NULL, then the buffer
1162 is callee allocated. In either case, the
1163 requried buffer size is returned in *BufferSize.
1164 @param BufferSize On input, indicates the size of *Buffer if
1165 *Buffer is non-null on input. On output,
1166 indicates the required size (allocated size if
1167 callee allocated) of *Buffer.
1168 @param AuthenticationStatus A pointer to a caller-allocated UINT32 that
1169 indicates the authentication status of the
1170 output buffer. If the input section's
1171 GuidedSectionHeader.Attributes field
1172 has the EFI_GUIDED_SECTION_AUTH_STATUS_VALID
1173 bit as clear, AuthenticationStatus must return
1174 zero. Both local bits (19:16) and aggregate
1175 bits (3:0) in AuthenticationStatus are returned
1176 by ExtractSection(). These bits reflect the
1177 status of the extraction operation. The bit
1178 pattern in both regions must be the same, as
1179 the local and aggregate authentication statuses
1180 have equivalent meaning at this level. If the
1181 function returns anything other than
1182 EFI_SUCCESS, the value of *AuthenticationStatus
1184 @param IsFfs3Fv Indicates the FV format.
1186 @retval EFI_SUCCESS Section was retrieved successfully
1187 @retval EFI_PROTOCOL_ERROR A GUID defined section was encountered in the
1188 section stream with its
1189 EFI_GUIDED_SECTION_PROCESSING_REQUIRED bit set,
1190 but there was no corresponding GUIDed Section
1191 Extraction Protocol in the handle database.
1192 *Buffer is unmodified.
1193 @retval EFI_NOT_FOUND An error was encountered when parsing the
1194 SectionStream. This indicates the SectionStream
1195 is not correctly formatted.
1196 @retval EFI_NOT_FOUND The requested section does not exist.
1197 @retval EFI_OUT_OF_RESOURCES The system has insufficient resources to process
1199 @retval EFI_INVALID_PARAMETER The SectionStreamHandle does not exist.
1200 @retval EFI_WARN_TOO_SMALL The size of the caller allocated input buffer is
1201 insufficient to contain the requested section.
1202 The input buffer is filled and section contents
1209 IN UINTN SectionStreamHandle
,
1210 IN EFI_SECTION_TYPE
*SectionType
,
1211 IN EFI_GUID
*SectionDefinitionGuid
,
1212 IN UINTN SectionInstance
,
1214 IN OUT UINTN
*BufferSize
,
1215 OUT UINT32
*AuthenticationStatus
,
1219 CORE_SECTION_STREAM_NODE
*StreamNode
;
1222 CORE_SECTION_CHILD_NODE
*ChildNode
;
1223 CORE_SECTION_STREAM_NODE
*ChildStreamNode
;
1225 UINT32 ExtractedAuthenticationStatus
;
1229 EFI_COMMON_SECTION_HEADER
*Section
;
1232 OldTpl
= CoreRaiseTpl (TPL_NOTIFY
);
1233 Instance
= SectionInstance
+ 1;
1236 // Locate target stream
1238 Status
= FindStreamNode (SectionStreamHandle
, &StreamNode
);
1239 if (EFI_ERROR (Status
)) {
1240 Status
= EFI_INVALID_PARAMETER
;
1241 goto GetSection_Done
;
1245 // Found the stream, now locate and return the appropriate section
1247 if (SectionType
== NULL
) {
1249 // SectionType == NULL means return the WHOLE section stream...
1251 CopySize
= StreamNode
->StreamLength
;
1252 CopyBuffer
= StreamNode
->StreamBuffer
;
1253 *AuthenticationStatus
= StreamNode
->AuthenticationStatus
;
1256 // There's a requested section type, so go find it and return it...
1258 Status
= FindChildNode (
1262 SectionDefinitionGuid
,
1265 &ExtractedAuthenticationStatus
1267 if (EFI_ERROR (Status
)) {
1268 goto GetSection_Done
;
1271 Section
= (EFI_COMMON_SECTION_HEADER
*) (ChildStreamNode
->StreamBuffer
+ ChildNode
->OffsetInStream
);
1273 if (IS_SECTION2 (Section
)) {
1274 ASSERT (SECTION2_SIZE (Section
) > 0x00FFFFFF);
1276 DEBUG ((DEBUG_ERROR
, "It is a FFS3 formatted section in a non-FFS3 formatted FV.\n"));
1277 Status
= EFI_NOT_FOUND
;
1278 goto GetSection_Done
;
1280 CopySize
= SECTION2_SIZE (Section
) - sizeof (EFI_COMMON_SECTION_HEADER2
);
1281 CopyBuffer
= (UINT8
*) Section
+ sizeof (EFI_COMMON_SECTION_HEADER2
);
1283 CopySize
= SECTION_SIZE (Section
) - sizeof (EFI_COMMON_SECTION_HEADER
);
1284 CopyBuffer
= (UINT8
*) Section
+ sizeof (EFI_COMMON_SECTION_HEADER
);
1286 *AuthenticationStatus
= ExtractedAuthenticationStatus
;
1289 SectionSize
= CopySize
;
1290 if (*Buffer
!= NULL
) {
1292 // Caller allocated buffer. Fill to size and return required size...
1294 if (*BufferSize
< CopySize
) {
1295 Status
= EFI_WARN_BUFFER_TOO_SMALL
;
1296 CopySize
= *BufferSize
;
1300 // Callee allocated buffer. Allocate buffer and return size.
1302 *Buffer
= AllocatePool (CopySize
);
1303 if (*Buffer
== NULL
) {
1304 Status
= EFI_OUT_OF_RESOURCES
;
1305 goto GetSection_Done
;
1308 CopyMem (*Buffer
, CopyBuffer
, CopySize
);
1309 *BufferSize
= SectionSize
;
1312 CoreRestoreTpl (OldTpl
);
1319 Worker function. Destructor for child nodes.
1321 @param ChildNode Indicates the node to destroy
1326 IN CORE_SECTION_CHILD_NODE
*ChildNode
1329 ASSERT (ChildNode
->Signature
== CORE_SECTION_CHILD_SIGNATURE
);
1331 // Remove the child from it's list
1333 RemoveEntryList (&ChildNode
->Link
);
1335 if (ChildNode
->EncapsulatedStreamHandle
!= NULL_STREAM_HANDLE
) {
1337 // If it's an encapsulating section, we close the resulting section stream.
1338 // CloseSectionStream will free all memory associated with the stream.
1340 CloseSectionStream (ChildNode
->EncapsulatedStreamHandle
);
1343 if (ChildNode
->Event
!= NULL
) {
1344 gBS
->CloseEvent (ChildNode
->Event
);
1348 // Last, free the child node itself
1350 CoreFreePool (ChildNode
);
1355 SEP member function. Deletes an existing section stream
1357 @param StreamHandleToClose Indicates the stream to close
1359 @retval EFI_SUCCESS The section stream is closed sucessfully.
1360 @retval EFI_OUT_OF_RESOURCES Memory allocation failed.
1361 @retval EFI_INVALID_PARAMETER Section stream does not end concident with end
1367 CloseSectionStream (
1368 IN UINTN StreamHandleToClose
1371 CORE_SECTION_STREAM_NODE
*StreamNode
;
1375 CORE_SECTION_CHILD_NODE
*ChildNode
;
1377 OldTpl
= CoreRaiseTpl (TPL_NOTIFY
);
1380 // Locate target stream
1382 Status
= FindStreamNode (StreamHandleToClose
, &StreamNode
);
1383 if (!EFI_ERROR (Status
)) {
1385 // Found the stream, so close it
1387 RemoveEntryList (&StreamNode
->Link
);
1388 while (!IsListEmpty (&StreamNode
->Children
)) {
1389 Link
= GetFirstNode (&StreamNode
->Children
);
1390 ChildNode
= CHILD_SECTION_NODE_FROM_LINK (Link
);
1391 FreeChildNode (ChildNode
);
1393 CoreFreePool (StreamNode
->StreamBuffer
);
1394 CoreFreePool (StreamNode
);
1395 Status
= EFI_SUCCESS
;
1397 Status
= EFI_INVALID_PARAMETER
;
1400 CoreRestoreTpl (OldTpl
);
1406 The ExtractSection() function processes the input section and
1407 allocates a buffer from the pool in which it returns the section
1408 contents. If the section being extracted contains
1409 authentication information (the section's
1410 GuidedSectionHeader.Attributes field has the
1411 EFI_GUIDED_SECTION_AUTH_STATUS_VALID bit set), the values
1412 returned in AuthenticationStatus must reflect the results of
1413 the authentication operation. Depending on the algorithm and
1414 size of the encapsulated data, the time that is required to do
1415 a full authentication may be prohibitively long for some
1416 classes of systems. To indicate this, use
1417 EFI_SECURITY_POLICY_PROTOCOL_GUID, which may be published by
1418 the security policy driver (see the Platform Initialization
1419 Driver Execution Environment Core Interface Specification for
1420 more details and the GUID definition). If the
1421 EFI_SECURITY_POLICY_PROTOCOL_GUID exists in the handle
1422 database, then, if possible, full authentication should be
1423 skipped and the section contents simply returned in the
1424 OutputBuffer. In this case, the
1425 EFI_AUTH_STATUS_PLATFORM_OVERRIDE bit AuthenticationStatus
1426 must be set on return. ExtractSection() is callable only from
1427 TPL_NOTIFY and below. Behavior of ExtractSection() at any
1428 EFI_TPL above TPL_NOTIFY is undefined. Type EFI_TPL is
1429 defined in RaiseTPL() in the UEFI 2.0 specification.
1432 @param This Indicates the
1433 EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL instance.
1434 @param InputSection Buffer containing the input GUIDed section
1435 to be processed. OutputBuffer OutputBuffer
1436 is allocated from boot services pool
1437 memory and contains the new section
1438 stream. The caller is responsible for
1439 freeing this buffer.
1440 @param OutputBuffer *OutputBuffer is allocated from boot services
1441 pool memory and contains the new section stream.
1442 The caller is responsible for freeing this buffer.
1443 @param OutputSize A pointer to a caller-allocated UINTN in
1444 which the size of OutputBuffer allocation
1445 is stored. If the function returns
1446 anything other than EFI_SUCCESS, the value
1447 of OutputSize is undefined.
1449 @param AuthenticationStatus A pointer to a caller-allocated
1450 UINT32 that indicates the
1451 authentication status of the
1452 output buffer. If the input
1454 GuidedSectionHeader.Attributes
1456 EFI_GUIDED_SECTION_AUTH_STATUS_VAL
1457 bit as clear, AuthenticationStatus
1458 must return zero. Both local bits
1459 (19:16) and aggregate bits (3:0)
1460 in AuthenticationStatus are
1461 returned by ExtractSection().
1462 These bits reflect the status of
1463 the extraction operation. The bit
1464 pattern in both regions must be
1465 the same, as the local and
1466 aggregate authentication statuses
1467 have equivalent meaning at this
1468 level. If the function returns
1469 anything other than EFI_SUCCESS,
1470 the value of AuthenticationStatus
1474 @retval EFI_SUCCESS The InputSection was successfully
1475 processed and the section contents were
1478 @retval EFI_OUT_OF_RESOURCES The system has insufficient
1479 resources to process the
1482 @retval EFI_INVALID_PARAMETER The GUID in InputSection does
1483 not match this instance of the
1484 GUIDed Section Extraction
1490 CustomGuidedSectionExtract (
1491 IN CONST EFI_GUIDED_SECTION_EXTRACTION_PROTOCOL
*This
,
1492 IN CONST VOID
*InputSection
,
1493 OUT VOID
**OutputBuffer
,
1494 OUT UINTN
*OutputSize
,
1495 OUT UINT32
*AuthenticationStatus
1499 VOID
*ScratchBuffer
;
1500 VOID
*AllocatedOutputBuffer
;
1501 UINT32 OutputBufferSize
;
1502 UINT32 ScratchBufferSize
;
1503 UINT16 SectionAttribute
;
1506 // Init local variable
1508 ScratchBuffer
= NULL
;
1509 AllocatedOutputBuffer
= NULL
;
1512 // Call GetInfo to get the size and attribute of input guided section data.
1514 Status
= ExtractGuidedSectionGetInfo (
1521 if (EFI_ERROR (Status
)) {
1522 DEBUG ((DEBUG_ERROR
, "GetInfo from guided section Failed - %r\n", Status
));
1526 if (ScratchBufferSize
> 0) {
1528 // Allocate scratch buffer
1530 ScratchBuffer
= AllocatePool (ScratchBufferSize
);
1531 if (ScratchBuffer
== NULL
) {
1532 return EFI_OUT_OF_RESOURCES
;
1536 if (OutputBufferSize
> 0) {
1538 // Allocate output buffer
1540 AllocatedOutputBuffer
= AllocatePool (OutputBufferSize
);
1541 if (AllocatedOutputBuffer
== NULL
) {
1542 FreePool (ScratchBuffer
);
1543 return EFI_OUT_OF_RESOURCES
;
1545 *OutputBuffer
= AllocatedOutputBuffer
;
1549 // Call decode function to extract raw data from the guided section.
1551 Status
= ExtractGuidedSectionDecode (
1555 AuthenticationStatus
1557 if (EFI_ERROR (Status
)) {
1561 if (AllocatedOutputBuffer
!= NULL
) {
1562 CoreFreePool (AllocatedOutputBuffer
);
1564 if (ScratchBuffer
!= NULL
) {
1565 CoreFreePool (ScratchBuffer
);
1567 DEBUG ((DEBUG_ERROR
, "Extract guided section Failed - %r\n", Status
));
1571 if (*OutputBuffer
!= AllocatedOutputBuffer
) {
1573 // OutputBuffer was returned as a different value,
1574 // so copy section contents to the allocated memory buffer.
1576 CopyMem (AllocatedOutputBuffer
, *OutputBuffer
, OutputBufferSize
);
1577 *OutputBuffer
= AllocatedOutputBuffer
;
1581 // Set real size of output buffer.
1583 *OutputSize
= (UINTN
) OutputBufferSize
;
1586 // Free unused scratch buffer.
1588 if (ScratchBuffer
!= NULL
) {
1589 CoreFreePool (ScratchBuffer
);