2 Implementation of the HII for the Opal UEFI Driver.
4 Copyright (c) 2016, Intel Corporation. All rights reserved.<BR>
5 This program and the accompanying materials
6 are licensed and made available under the terms and conditions of the BSD License
7 which accompanies this distribution. The full text of the license may be found at
8 http://opensource.org/licenses/bsd-license.php
10 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
11 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
16 #include "OpalDriver.h"
17 #include "OpalHiiPrivate.h"
20 // This is the generated IFR binary Data for each formset defined in VFR.
21 // This Data array is ready to be used as input of HiiAddPackages() to
22 // create a packagelist (which contains Form packages, String packages, etc).
24 extern UINT8 OpalPasswordFormBin
[];
27 // This is the generated String package Data for all .UNI files.
28 // This Data array is ready to be used as input of HiiAddPackages() to
29 // create a packagelist (which contains Form packages, String packages, etc).
31 extern UINT8 OpalPasswordDxeStrings
[];
33 CHAR16 OpalPasswordStorageName
[] = L
"OpalHiiConfig";
35 EFI_HII_CONFIG_ACCESS_PROTOCOL gHiiConfigAccessProtocol
;
38 // Handle to the list of HII packages (forms and strings) for this driver
40 EFI_HII_HANDLE gHiiPackageListHandle
= NULL
;
43 // Package List GUID containing all form and string packages
45 const EFI_GUID gHiiPackageListGuid
= PACKAGE_LIST_GUID
;
46 const EFI_GUID gHiiSetupVariableGuid
= SETUP_VARIABLE_GUID
;
49 // Structure that contains state of the HII
50 // This structure is updated by Hii.cpp and its contents
51 // is rendered in the HII.
53 OPAL_HII_CONFIGURATION gHiiConfiguration
;
55 CHAR8 gHiiOldPassword
[MAX_PASSWORD_CHARACTER_LENGTH
] = {0};
56 UINT32 gHiiOldPasswordLength
= 0;
59 // The device path containing the VENDOR_DEVICE_PATH and EFI_DEVICE_PATH_PROTOCOL
61 HII_VENDOR_DEVICE_PATH gHiiVendorDevicePath
= {
67 (UINT8
)(sizeof(VENDOR_DEVICE_PATH
)),
68 (UINT8
)((sizeof(VENDOR_DEVICE_PATH
)) >> 8)
71 OPAL_PASSWORD_CONFIG_GUID
75 END_ENTIRE_DEVICE_PATH_SUBTYPE
,
77 (UINT8
)(END_DEVICE_PATH_LENGTH
),
78 (UINT8
)((END_DEVICE_PATH_LENGTH
) >> 8)
85 Sets the current system state of global config variables.
89 HiiSetCurrentConfiguration(
96 gHiiConfiguration
.NumDisks
= GetDeviceCount();
99 // Update the BlockSID status string.
101 PpStorageFlag
= TcgPhysicalPresenceStorageLibReturnStorageFlags();
103 if ((PpStorageFlag
& TCG_BIOS_STORAGE_MANAGEMENT_FLAG_ENABLE_BLOCK_SID
) != 0) {
104 NewString
= HiiGetString (gHiiPackageListHandle
, STRING_TOKEN(STR_ENABLED
), NULL
);
105 if (NewString
== NULL
) {
106 DEBUG ((DEBUG_INFO
, "HiiSetCurrentConfiguration: HiiGetString( ) failed\n"));
110 NewString
= HiiGetString (gHiiPackageListHandle
, STRING_TOKEN(STR_DISABLED
), NULL
);
111 if (NewString
== NULL
) {
112 DEBUG ((DEBUG_INFO
, "HiiSetCurrentConfiguration: HiiGetString( ) failed\n"));
116 HiiSetString(gHiiPackageListHandle
, STRING_TOKEN(STR_BLOCKSID_STATUS1
), NewString
, NULL
);
117 FreePool (NewString
);
119 if ((PpStorageFlag
& TCG_BIOS_STORAGE_MANAGEMENT_FLAG_PP_REQUIRED_FOR_ENABLE_BLOCK_SID
) != 0) {
120 NewString
= HiiGetString (gHiiPackageListHandle
, STRING_TOKEN(STR_DISK_INFO_ENABLE_BLOCKSID_TRUE
), NULL
);
121 if (NewString
== NULL
) {
122 DEBUG ((DEBUG_INFO
, "HiiSetCurrentConfiguration: HiiGetString( ) failed\n"));
126 NewString
= HiiGetString (gHiiPackageListHandle
, STRING_TOKEN(STR_DISK_INFO_ENABLE_BLOCKSID_FALSE
), NULL
);
127 if (NewString
== NULL
) {
128 DEBUG ((DEBUG_INFO
, "HiiSetCurrentConfiguration: HiiGetString( ) failed\n"));
132 HiiSetString(gHiiPackageListHandle
, STRING_TOKEN(STR_BLOCKSID_STATUS2
), NewString
, NULL
);
133 FreePool (NewString
);
135 if ((PpStorageFlag
& TCG_BIOS_STORAGE_MANAGEMENT_FLAG_PP_REQUIRED_FOR_DISABLE_BLOCK_SID
) != 0) {
136 NewString
= HiiGetString (gHiiPackageListHandle
, STRING_TOKEN(STR_DISK_INFO_DISABLE_BLOCKSID_TRUE
), NULL
);
137 if (NewString
== NULL
) {
138 DEBUG ((DEBUG_INFO
, "HiiSetCurrentConfiguration: HiiGetString( ) failed\n"));
142 NewString
= HiiGetString (gHiiPackageListHandle
, STRING_TOKEN(STR_DISK_INFO_DISABLE_BLOCKSID_FALSE
), NULL
);
143 if (NewString
== NULL
) {
144 DEBUG ((DEBUG_INFO
, "HiiSetCurrentConfiguration: HiiGetString( ) failed\n"));
148 HiiSetString(gHiiPackageListHandle
, STRING_TOKEN(STR_BLOCKSID_STATUS3
), NewString
, NULL
);
149 FreePool (NewString
);
153 Install the HII related resources.
155 @retval EFI_SUCCESS Install all the resources success.
156 @retval other Error occur when install the resources.
164 EFI_HANDLE DriverHandle
;
167 // Clear the global configuration.
169 ZeroMem(&gHiiConfiguration
, sizeof(gHiiConfiguration
));
172 // Obtain the driver handle that the BIOS assigned us
174 DriverHandle
= HiiGetDriverImageHandleCB();
177 // Populate the config access protocol with the three functions we are publishing
179 gHiiConfigAccessProtocol
.ExtractConfig
= ExtractConfig
;
180 gHiiConfigAccessProtocol
.RouteConfig
= RouteConfig
;
181 gHiiConfigAccessProtocol
.Callback
= DriverCallback
;
184 // Associate the required protocols with our driver handle
186 Status
= gBS
->InstallMultipleProtocolInterfaces(
188 &gEfiHiiConfigAccessProtocolGuid
,
189 &gHiiConfigAccessProtocol
, // HII callback
190 &gEfiDevicePathProtocolGuid
,
191 &gHiiVendorDevicePath
, // required for HII callback allow all disks to be shown in same hii
195 if (EFI_ERROR(Status
)) {
199 return OpalHiiAddPackages();
203 Install the HII form and string packages.
205 @retval EFI_SUCCESS Install all the resources success.
206 @retval EFI_OUT_OF_RESOURCES Out of resource error.
213 EFI_HANDLE DriverHandle
;
216 DriverHandle
= HiiGetDriverImageHandleCB();
219 // Publish the HII form and HII string packages
221 gHiiPackageListHandle
= HiiAddPackages(
222 &gHiiPackageListGuid
,
224 OpalPasswordDxeStrings
,
230 // Make sure the packages installed successfully
232 if (gHiiPackageListHandle
== NULL
) {
233 DEBUG ((DEBUG_INFO
, "OpalHiiAddPackages failed\n"));
234 return EFI_OUT_OF_RESOURCES
;
238 // Update Version String in main window
240 NewString
= HiiGetDriverNameCB ();
241 if (HiiSetString(gHiiPackageListHandle
, STRING_TOKEN(STR_MAIN_OPAL_VERSION
), NewString
, NULL
) == 0) {
242 DEBUG ((DEBUG_INFO
, "OpalHiiAddPackages: HiiSetString( ) failed\n"));
243 return EFI_OUT_OF_RESOURCES
;
250 Uninstall the HII capability.
252 @retval EFI_SUCCESS Uninstall all the resources success.
253 @retval others Other errors occur when unistall the hii resource.
263 // Remove the packages we've provided to the BIOS
265 HiiRemovePackages(gHiiPackageListHandle
);
268 // Remove the protocols from our driver handle
270 Status
= gBS
->UninstallMultipleProtocolInterfaces(
271 HiiGetDriverImageHandleCB(),
272 &gEfiHiiConfigAccessProtocolGuid
,
273 &gHiiConfigAccessProtocol
, // HII callback
274 &gEfiDevicePathProtocolGuid
,
275 &gHiiVendorDevicePath
, // required for HII callback
278 if (EFI_ERROR(Status
)) {
279 DEBUG ((DEBUG_INFO
, "Cannot uninstall Hii Protocols: %r\n", Status
));
286 Updates the main menu form.
288 @retval EFI_SUCCESS update the main form success.
291 HiiPopulateMainMenuForm (
297 EFI_STRING_ID DiskNameId
;
300 HiiSetCurrentConfiguration();
302 gHiiConfiguration
.SupportedDisks
= 0;
304 for (Index
= 0; Index
< gHiiConfiguration
.NumDisks
; Index
++) {
305 OpalDisk
= HiiGetOpalDiskCB (Index
);
306 if ((OpalDisk
!= NULL
) && OpalFeatureSupported (&OpalDisk
->SupportedAttributes
)) {
307 gHiiConfiguration
.SupportedDisks
|= (1 << Index
);
308 DiskNameId
= GetDiskNameStringId (Index
);
309 DiskName
= HiiDiskGetNameCB (Index
);
310 if ((DiskName
== NULL
) || (DiskNameId
== 0)) {
311 return EFI_UNSUPPORTED
;
313 HiiSetFormString(DiskNameId
, DiskName
);
317 OpalHiiSetBrowserData ();
322 Update the disk action info.
325 @param SelectedAction
327 @retval EFI_SUCCESS Uninstall all the resources success.
330 HiiSelectDiskAction (
336 OPAL_DISK_ACTIONS AvailActions
;
338 OpalHiiGetBrowserData ();
340 HiiSetFormString(STRING_TOKEN(STR_DISK_ACTION_LBL
), ActionString
);
341 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), " ");
343 gHiiConfiguration
.SelectedAction
= SelectedAction
;
344 gHiiConfiguration
.AvailableFields
= 0;
346 OpalDisk
= HiiGetOpalDiskCB(gHiiConfiguration
.SelectedDiskIndex
);
347 if (OpalDisk
== NULL
) {
348 return EFI_INVALID_PARAMETER
;
351 if (OpalSupportGetAvailableActions (&OpalDisk
->SupportedAttributes
, &OpalDisk
->LockingFeature
, OpalDisk
->Owner
, &AvailActions
) != TcgResultSuccess
) {
352 return EFI_DEVICE_ERROR
;
355 switch (SelectedAction
) {
356 case HII_KEY_ID_GOTO_LOCK
:
357 case HII_KEY_ID_GOTO_UNLOCK
:
358 case HII_KEY_ID_GOTO_SET_ADMIN_PWD
:
359 case HII_KEY_ID_GOTO_SET_USER_PWD
:
360 case HII_KEY_ID_GOTO_SECURE_ERASE
:
361 case HII_KEY_ID_GOTO_DISABLE_USER
:
362 case HII_KEY_ID_GOTO_ENABLE_FEATURE
: // User is required to enter Password to enable Feature
363 gHiiConfiguration
.AvailableFields
|= HII_FIELD_PASSWORD
;
366 case HII_KEY_ID_GOTO_PSID_REVERT
:
367 gHiiConfiguration
.AvailableFields
|= HII_FIELD_PSID
;
370 case HII_KEY_ID_GOTO_REVERT
:
371 gHiiConfiguration
.AvailableFields
|= HII_FIELD_PASSWORD
;
372 gHiiConfiguration
.AvailableFields
|= HII_FIELD_KEEP_USER_DATA
;
373 if (AvailActions
.RevertKeepDataForced
) {
374 gHiiConfiguration
.AvailableFields
|= HII_FIELD_KEEP_USER_DATA_FORCED
;
379 OpalHiiSetBrowserData ();
385 Get disk name string id.
387 @param DiskIndex The input disk index info.
389 @retval The disk name string id.
398 case 0: return STRING_TOKEN(STR_MAIN_GOTO_DISK_INFO_0
);
399 case 1: return STRING_TOKEN(STR_MAIN_GOTO_DISK_INFO_1
);
400 case 2: return STRING_TOKEN(STR_MAIN_GOTO_DISK_INFO_2
);
401 case 3: return STRING_TOKEN(STR_MAIN_GOTO_DISK_INFO_3
);
402 case 4: return STRING_TOKEN(STR_MAIN_GOTO_DISK_INFO_4
);
403 case 5: return STRING_TOKEN(STR_MAIN_GOTO_DISK_INFO_5
);
409 This function processes the results of changes in configuration.
411 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.
412 @param Action Specifies the type of action taken by the browser.
413 @param QuestionId A unique value which is sent to the original
414 exporting driver so that it can identify the type
416 @param Type The type of value for the question.
417 @param Value A pointer to the data being sent to the original
419 @param ActionRequest On return, points to the action requested by the
422 @retval EFI_SUCCESS The callback successfully handled the action.
423 @retval EFI_OUT_OF_RESOURCES Not enough storage is available to hold the
424 variable and its data.
425 @retval EFI_DEVICE_ERROR The variable could not be saved.
426 @retval EFI_UNSUPPORTED The specified Action is not supported by the
433 CONST EFI_HII_CONFIG_ACCESS_PROTOCOL
*This
,
434 EFI_BROWSER_ACTION Action
,
435 EFI_QUESTION_ID QuestionId
,
437 EFI_IFR_TYPE_VALUE
*Value
,
438 EFI_BROWSER_ACTION_REQUEST
*ActionRequest
445 if (ActionRequest
!= NULL
) {
446 *ActionRequest
= EFI_BROWSER_ACTION_REQUEST_NONE
;
448 return EFI_INVALID_PARAMETER
;
452 // If QuestionId is an auto-generated key (label, empty line, etc.), ignore it.
454 if ((QuestionId
& HII_KEY_FLAG
) == 0) {
458 HiiKey
.Raw
= QuestionId
;
459 HiiKeyId
= (UINT8
) HiiKey
.KeyBits
.Id
;
461 if (Action
== EFI_BROWSER_ACTION_FORM_OPEN
) {
463 case HII_KEY_ID_VAR_SUPPORTED_DISKS
:
464 DEBUG ((DEBUG_INFO
, "HII_KEY_ID_VAR_SUPPORTED_DISKS\n"));
465 return HiiPopulateMainMenuForm ();
467 case HII_KEY_ID_VAR_SELECTED_DISK_AVAILABLE_ACTIONS
:
468 return HiiPopulateDiskInfoForm();
470 } else if (Action
== EFI_BROWSER_ACTION_CHANGING
) {
472 case HII_KEY_ID_GOTO_DISK_INFO
:
473 return HiiSelectDisk((UINT8
)HiiKey
.KeyBits
.Index
);
475 case HII_KEY_ID_GOTO_LOCK
:
476 return HiiSelectDiskAction("Action: Lock", HiiKeyId
);
478 case HII_KEY_ID_GOTO_UNLOCK
:
479 return HiiSelectDiskAction("Action: Unlock", HiiKeyId
);
481 case HII_KEY_ID_GOTO_SET_ADMIN_PWD
:
482 return HiiSelectDiskAction("Action: Set Administrator Password", HiiKeyId
);
484 case HII_KEY_ID_GOTO_SET_USER_PWD
:
485 return HiiSelectDiskAction("Action: Set User Password", HiiKeyId
);
487 case HII_KEY_ID_GOTO_SECURE_ERASE
:
488 return HiiSelectDiskAction("Action: Secure Erase", HiiKeyId
);
490 case HII_KEY_ID_GOTO_PSID_REVERT
:
491 return HiiSelectDiskAction("Action: Revert to Factory Defaults with PSID", HiiKeyId
);
493 case HII_KEY_ID_GOTO_REVERT
:
494 return HiiSelectDiskAction("Action: Revert to Factory Defaults", HiiKeyId
);
496 case HII_KEY_ID_GOTO_DISABLE_USER
:
497 return HiiSelectDiskAction("Action: Disable User", HiiKeyId
);
499 case HII_KEY_ID_GOTO_ENABLE_FEATURE
:
500 return HiiSelectDiskAction("Action: Enable Feature", HiiKeyId
);
502 case HII_KEY_ID_ENTER_PASSWORD
:
503 return HiiPasswordEntered(Value
->string
);
505 } else if (Action
== EFI_BROWSER_ACTION_CHANGED
) {
507 case HII_KEY_ID_ENTER_PSID
:
509 *ActionRequest
= EFI_BROWSER_ACTION_REQUEST_FORM_APPLY
;
512 case HII_KEY_ID_BLOCKSID
:
515 PpRequest
= TCG2_PHYSICAL_PRESENCE_NO_ACTION
;
519 PpRequest
= TCG2_PHYSICAL_PRESENCE_ENABLE_BLOCK_SID
;
523 PpRequest
= TCG2_PHYSICAL_PRESENCE_DISABLE_BLOCK_SID
;
527 PpRequest
= TCG2_PHYSICAL_PRESENCE_SET_PP_REQUIRED_FOR_ENABLE_BLOCK_SID_FUNC_TRUE
;
531 PpRequest
= TCG2_PHYSICAL_PRESENCE_SET_PP_REQUIRED_FOR_ENABLE_BLOCK_SID_FUNC_FALSE
;
535 PpRequest
= TCG2_PHYSICAL_PRESENCE_SET_PP_REQUIRED_FOR_DISABLE_BLOCK_SID_FUNC_TRUE
;
539 PpRequest
= TCG2_PHYSICAL_PRESENCE_SET_PP_REQUIRED_FOR_DISABLE_BLOCK_SID_FUNC_FALSE
;
543 PpRequest
= TCG2_PHYSICAL_PRESENCE_NO_ACTION
;
544 DEBUG ((DEBUG_ERROR
, "Invalid value input!\n"));
547 HiiSetBlockSidAction(PpRequest
);
549 *ActionRequest
= EFI_BROWSER_ACTION_REQUEST_FORM_APPLY
;
557 return EFI_UNSUPPORTED
;
561 Update the global Disk index info.
563 @param Index The input disk index info.
565 @retval EFI_SUCCESS Update the disk index info success.
573 OpalHiiGetBrowserData();
574 gHiiConfiguration
.SelectedDiskIndex
= Index
;
575 OpalHiiSetBrowserData ();
581 Draws the disk info form.
583 @retval EFI_SUCCESS Draw the disk info success.
587 HiiPopulateDiskInfoForm(
592 OPAL_DISK_ACTIONS AvailActions
;
596 OpalHiiGetBrowserData();
598 DiskName
= HiiDiskGetNameCB (gHiiConfiguration
.SelectedDiskIndex
);
599 if (DiskName
== NULL
) {
600 return EFI_UNSUPPORTED
;
602 HiiSetFormString(STRING_TOKEN(STR_DISK_INFO_SELECTED_DISK_NAME
), DiskName
);
604 ZeroMem(gHiiConfiguration
.Psid
, sizeof(gHiiConfiguration
.Psid
));
606 gHiiConfiguration
.SelectedDiskAvailableActions
= HII_ACTION_NONE
;
608 OpalDisk
= HiiGetOpalDiskCB(gHiiConfiguration
.SelectedDiskIndex
);
610 if (OpalDisk
!= NULL
) {
611 OpalDiskUpdateStatus (OpalDisk
);
612 Ret
= OpalSupportGetAvailableActions(&OpalDisk
->SupportedAttributes
, &OpalDisk
->LockingFeature
, OpalDisk
->Owner
, &AvailActions
);
613 if (Ret
== TcgResultSuccess
) {
615 // Update actions, always allow PSID Revert
617 gHiiConfiguration
.SelectedDiskAvailableActions
|= (AvailActions
.PsidRevert
== 1) ? HII_ACTION_PSID_REVERT
: HII_ACTION_NONE
;
620 // Always allow unlock to handle device migration
622 gHiiConfiguration
.SelectedDiskAvailableActions
|= (AvailActions
.Unlock
== 1) ? HII_ACTION_UNLOCK
: HII_ACTION_NONE
;
624 if (!OpalFeatureEnabled (&OpalDisk
->SupportedAttributes
, &OpalDisk
->LockingFeature
)) {
625 if (OpalDisk
->Owner
== OpalOwnershipNobody
) {
626 gHiiConfiguration
.SelectedDiskAvailableActions
|= HII_ACTION_ENABLE_FEATURE
;
631 HiiSetFormString( STRING_TOKEN(STR_DISK_INFO_PSID_REVERT
), "PSID Revert to factory default");
633 DEBUG ((DEBUG_INFO
, "Feature disabled but ownership != nobody\n"));
636 gHiiConfiguration
.SelectedDiskAvailableActions
|= (AvailActions
.Revert
== 1) ? HII_ACTION_REVERT
: HII_ACTION_NONE
;
637 gHiiConfiguration
.SelectedDiskAvailableActions
|= (AvailActions
.AdminPass
== 1) ? HII_ACTION_SET_ADMIN_PWD
: HII_ACTION_NONE
;
638 gHiiConfiguration
.SelectedDiskAvailableActions
|= (AvailActions
.UserPass
== 1) ? HII_ACTION_SET_USER_PWD
: HII_ACTION_NONE
;
639 gHiiConfiguration
.SelectedDiskAvailableActions
|= (AvailActions
.SecureErase
== 1) ? HII_ACTION_SECURE_ERASE
: HII_ACTION_NONE
;
640 gHiiConfiguration
.SelectedDiskAvailableActions
|= (AvailActions
.DisableUser
== 1) ? HII_ACTION_DISABLE_USER
: HII_ACTION_NONE
;
642 HiiSetFormString (STRING_TOKEN(STR_DISK_INFO_PSID_REVERT
), "PSID Revert to factory default and Disable");
645 // Determine revert options for disk
646 // Default initialize keep user Data to be true
648 gHiiConfiguration
.KeepUserData
= 1;
654 // Pass the current configuration to the BIOS
656 OpalHiiSetBrowserData ();
662 Reverts the Opal disk to factory default.
664 @retval EFI_SUCCESS Do the required action success.
672 CHAR8 Response
[DEFAULT_RESPONSE_SIZE
];
676 OPAL_SESSION Session
;
677 UINT8 TmpBuf
[PSID_CHARACTER_STRING_END_LENGTH
];
679 Ret
= TcgResultFailure
;
681 OpalHiiGetBrowserData();
683 ZeroMem (TmpBuf
, sizeof (TmpBuf
));
684 UnicodeStrToAsciiStrS (gHiiConfiguration
.Psid
, (CHAR8
*)TmpBuf
, PSID_CHARACTER_STRING_END_LENGTH
);
685 CopyMem (Psid
.Psid
, TmpBuf
, PSID_CHARACTER_LENGTH
);
687 OpalDisk
= HiiGetOpalDiskCB (gHiiConfiguration
.SelectedDiskIndex
);
688 if (OpalDisk
!= NULL
) {
689 ZeroMem(&Session
, sizeof(Session
));
690 Session
.Sscp
= OpalDisk
->Sscp
;
691 Session
.MediaId
= OpalDisk
->MediaId
;
692 Session
.OpalBaseComId
= OpalDisk
->OpalBaseComId
;
694 Ret
= OpalSupportPsidRevert(&Session
, Psid
.Psid
, (UINT32
)sizeof(Psid
.Psid
), OpalDisk
->OpalDevicePath
);
697 ZeroMem (Psid
.Psid
, PSID_CHARACTER_LENGTH
);
699 if (Ret
== TcgResultSuccess
) {
700 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "PSID Revert: Success" );
702 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "PSID Revert: Failure" );
705 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), Response
);
711 Set password for the disk.
713 @param OpalDisk The disk need to set the password.
714 @param Password The input password.
715 @param PassLength The input password length.
717 @retval EFI_SUCCESS Do the required action success.
727 CHAR8 Response
[DEFAULT_RESPONSE_SIZE
];
729 BOOLEAN ExistingPassword
;
730 OPAL_SESSION Session
;
732 ExistingPassword
= FALSE
;
735 // PassLength = 0 means check whether exist old password.
737 if (PassLength
== 0) {
738 ZeroMem(gHiiOldPassword
, sizeof(gHiiOldPassword
));
739 gHiiOldPasswordLength
= 0;
741 if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_ENABLE_FEATURE
) {
742 ExistingPassword
= FALSE
;
743 } else if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_SET_ADMIN_PWD
) {
744 ExistingPassword
= OpalUtilAdminPasswordExists(OpalDisk
->Owner
, &OpalDisk
->LockingFeature
);
745 } else if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_SET_USER_PWD
) {
747 // Set user Password option shall only be shown if an Admin Password exists
748 // so a Password is always required (Admin or Existing User Password)
750 ExistingPassword
= TRUE
;
754 // Return error if there is a previous Password
755 // see UEFI 2.4 errata B, Figure 121. Password Flowchart
757 return ExistingPassword
? EFI_DEVICE_ERROR
: EFI_SUCCESS
;
760 ZeroMem(&Session
, sizeof(Session
));
761 Session
.Sscp
= OpalDisk
->Sscp
;
762 Session
.MediaId
= OpalDisk
->MediaId
;
763 Session
.OpalBaseComId
= OpalDisk
->OpalBaseComId
;
765 AsciiSPrint(Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Set Password: Failure");
768 // No current Owner, so set new Password, must be admin Password
770 if (OpalDisk
->Owner
== OpalOwnershipNobody
) {
771 Ret
= OpalSupportEnableOpalFeature (&Session
, OpalDisk
->Msid
, OpalDisk
->MsidLength
,Password
, PassLength
, OpalDisk
->OpalDevicePath
);
772 if (Ret
== TcgResultSuccess
) {
773 AsciiSPrint(Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Set Password: Success");
776 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), Response
);
781 // 1st Password entered
783 if (OpalDisk
->Owner
== OpalOwnershipUnknown
&& gHiiOldPasswordLength
== 0) {
786 // Unknown ownership - prompt for old Password, then new
787 // old Password is not set yet - first time through
788 // assume authority provided is admin1, overwritten if user1 authority works below
790 if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_SET_USER_PWD
) {
792 // First try to login as USER1 to Locking SP to see if we're simply updating its Password
794 Ret
= OpalUtilVerifyPassword (&Session
, Password
, PassLength
, OPAL_LOCKING_SP_USER1_AUTHORITY
);
795 if (Ret
== TcgResultSuccess
) {
797 // User1 worked so authority 1 means user 1
799 CopyMem(gHiiOldPassword
, Password
, PassLength
);
800 gHiiOldPasswordLength
= PassLength
;
807 // Else try admin1 below
809 Ret
= OpalUtilVerifyPassword (&Session
, Password
, PassLength
, OPAL_LOCKING_SP_ADMIN1_AUTHORITY
);
810 if (Ret
== TcgResultSuccess
) {
811 CopyMem(gHiiOldPassword
, Password
, PassLength
);
812 gHiiOldPasswordLength
= PassLength
;
816 DEBUG ((DEBUG_INFO
, "start session with old PW failed - return EFI_NOT_READY - mistyped old PW\n"));
817 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), "Authentication Failure");
819 ZeroMem(gHiiOldPassword
, sizeof(gHiiOldPassword
));
820 gHiiOldPasswordLength
= 0;
822 return EFI_NOT_READY
;
827 // New Password entered
829 if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_SET_USER_PWD
) {
830 Ret
= OpalSupportSetPassword(
833 gHiiOldPasswordLength
,
836 OpalDisk
->OpalDevicePath
,
840 Ret
= OpalSupportSetPassword(
843 gHiiOldPasswordLength
,
846 OpalDisk
->OpalDevicePath
,
851 if (Ret
== TcgResultSuccess
) {
852 AsciiSPrint(Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Set Password: Success");
856 // Reset old Password storage
858 ZeroMem(gHiiOldPassword
, sizeof(gHiiOldPassword
));
859 gHiiOldPasswordLength
= 0;
861 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), Response
);
862 return Ret
== TcgResultSuccess
? EFI_SUCCESS
: EFI_NOT_READY
;
866 Secure Erases Opal Disk.
868 @param OpalDisk The disk need to erase data.
869 @param Password The input password.
870 @param PassLength The input password length.
872 @retval EFI_SUCCESS Do the required action success.
878 const VOID
*Password
,
882 CHAR8 Response
[DEFAULT_RESPONSE_SIZE
];
883 BOOLEAN PasswordFailed
;
885 OPAL_SESSION AdminSpSession
;
887 if (PassLength
== 0) {
888 return EFI_DEVICE_ERROR
; // return error to indicate there is an existing Password
891 ZeroMem(&AdminSpSession
, sizeof(AdminSpSession
));
892 AdminSpSession
.Sscp
= OpalDisk
->Sscp
;
893 AdminSpSession
.MediaId
= OpalDisk
->MediaId
;
894 AdminSpSession
.OpalBaseComId
= OpalDisk
->OpalBaseComId
;
896 Ret
= OpalUtilSecureErase(&AdminSpSession
, Password
, PassLength
, &PasswordFailed
);
897 if (Ret
== TcgResultSuccess
) {
898 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Secure Erase: Success" );
900 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Secure Erase: Failure" );
902 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), Response
);
905 // If Password failed, return invalid passowrd
907 if (PasswordFailed
) {
908 DEBUG ((DEBUG_INFO
, "returning EFI_NOT_READY to indicate Password was not correct\n"));
909 return EFI_NOT_READY
;
913 // Indicates Password was valid and is not changing to UEFI
914 // Response string will indicate action error
916 return EFI_DEVICE_ERROR
;
921 Disables User for Opal Disk.
923 @param OpalDisk The disk need to the action.
924 @param Password The input password.
925 @param PassLength The input password length.
927 @retval EFI_SUCCESS Do the required action success.
937 CHAR8 Response
[ DEFAULT_RESPONSE_SIZE
];
938 BOOLEAN PasswordFailed
;
940 OPAL_SESSION Session
;
942 if (PassLength
== 0) {
943 return EFI_DEVICE_ERROR
; // return error to indicate there is an existing Password
946 ZeroMem(&Session
, sizeof(Session
));
947 Session
.Sscp
= OpalDisk
->Sscp
;
948 Session
.MediaId
= OpalDisk
->MediaId
;
949 Session
.OpalBaseComId
= OpalDisk
->OpalBaseComId
;
951 Ret
= OpalSupportDisableUser(&Session
, Password
, PassLength
, &PasswordFailed
, OpalDisk
->OpalDevicePath
);
952 if (Ret
== TcgResultSuccess
) {
953 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Disable User: Success" );
955 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Disable User: Failure" );
957 HiiSetFormString (STRING_TOKEN(STR_ACTION_STATUS
), Response
);
960 // If Password failed, return invalid passowrd
962 if (PasswordFailed
) {
963 DEBUG ((DEBUG_INFO
, "returning EFI_NOT_READY to indicate Password was not correct\n"));
964 return EFI_NOT_READY
;
968 // Indicates Password was valid and is not changing to UEFI
969 // Response string will indicate action error
971 return EFI_DEVICE_ERROR
;
975 Revert Opal Disk as Admin1.
977 @param OpalDisk The disk need to the action.
978 @param Password The input password.
979 @param PassLength The input password length.
980 @param KeepUserData Whether need to keey user data.
982 @retval EFI_SUCCESS Do the required action success.
993 CHAR8 Response
[ DEFAULT_RESPONSE_SIZE
];
994 BOOLEAN PasswordFailed
;
996 OPAL_SESSION Session
;
998 if (PassLength
== 0) {
999 DEBUG ((DEBUG_INFO
, "Returning error to indicate there is an existing Password\n"));
1000 // return error to indicate there is an existing Password
1001 return EFI_DEVICE_ERROR
;
1004 ZeroMem(&Session
, sizeof(Session
));
1005 Session
.Sscp
= OpalDisk
->Sscp
;
1006 Session
.MediaId
= OpalDisk
->MediaId
;
1007 Session
.OpalBaseComId
= OpalDisk
->OpalBaseComId
;
1009 Ret
= OpalSupportRevert(
1015 OpalDisk
->MsidLength
,
1017 OpalDisk
->OpalDevicePath
1019 if (Ret
== TcgResultSuccess
) {
1020 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Revert: Success" );
1022 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Revert: Failure" );
1024 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), Response
);
1027 // If Password failed, return invalid passowrd
1029 if (PasswordFailed
) {
1030 DEBUG ((DEBUG_INFO
, "returning EFI_NOT_READY to indicate Password was not correct\n"));
1031 return EFI_NOT_READY
;
1035 // Indicates Password was valid and is not changing to UEFI
1036 // Response string will indicate action error
1038 return EFI_DEVICE_ERROR
;
1044 @param OpalDisk The disk need to the action.
1045 @param Password The input password.
1046 @param PassLength The input password length.
1048 @retval EFI_SUCCESS Do the required action success.
1053 OPAL_DISK
*OpalDisk
,
1058 CHAR8 Response
[DEFAULT_RESPONSE_SIZE
];
1060 OPAL_SESSION Session
;
1062 if (PassLength
== 0) {
1063 DEBUG ((DEBUG_INFO
, "Returning error to indicate there is an existing Password\n"));
1064 return EFI_DEVICE_ERROR
; // return error to indicate there is an existing Password
1067 ZeroMem(&Session
, sizeof(Session
));
1068 Session
.Sscp
= OpalDisk
->Sscp
;
1069 Session
.MediaId
= OpalDisk
->MediaId
;
1070 Session
.OpalBaseComId
= OpalDisk
->OpalBaseComId
;
1072 Ret
= OpalSupportUnlock(&Session
, Password
, PassLength
, OpalDisk
->OpalDevicePath
);
1073 if (Ret
== TcgResultSuccess
) {
1074 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Unlock: Success" );
1076 AsciiSPrint( Response
, DEFAULT_RESPONSE_SIZE
, "%a", "Unlock: Failure" );
1079 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), Response
);
1081 if (Ret
== TcgResultSuccess
) {
1082 DEBUG ((DEBUG_INFO
, "returning error to indicate Password was correct but is not changing\n"));
1083 return EFI_DEVICE_ERROR
;
1085 DEBUG ((DEBUG_INFO
, "returning EFI_NOT_READY to indicate Password was not correct\n"));
1086 return EFI_NOT_READY
;
1091 Use the input password to do the specified action.
1093 @param Str The input password saved in.
1095 @retval EFI_SUCCESS Do the required action success.
1096 @retval Others Other error occur.
1104 OPAL_DISK
* OpalDisk
;
1105 CHAR8 Password
[MAX_PASSWORD_CHARACTER_LENGTH
+ 1];
1110 OpalHiiGetBrowserData();
1112 OpalDisk
= HiiGetOpalDiskCB(gHiiConfiguration
.SelectedDiskIndex
);
1113 if (OpalDisk
== NULL
) {
1114 DEBUG ((DEBUG_INFO
, "ERROR: disk %u not found\n", gHiiConfiguration
.SelectedDiskIndex
));
1115 return EFI_NOT_FOUND
;
1119 DEBUG ((DEBUG_INFO
, "ERROR: str=NULL\n"));
1120 return EFI_INVALID_PARAMETER
;
1123 ZeroMem(Password
, sizeof(Password
));
1125 UniStr
= HiiGetString(gHiiPackageListHandle
, Str
, NULL
);
1126 if (UniStr
== NULL
) {
1127 return EFI_NOT_FOUND
;
1130 HiiSetString(gHiiPackageListHandle
, Str
, L
"", NULL
);
1132 PassLength
= (UINT32
) StrLen (UniStr
);
1133 if (PassLength
>= sizeof(Password
)) {
1134 HiiSetFormString(STRING_TOKEN(STR_ACTION_STATUS
), "Password too long");
1135 ZeroMem (UniStr
, StrSize (UniStr
));
1137 return EFI_BUFFER_TOO_SMALL
;
1140 UnicodeStrToAsciiStrS (UniStr
, Password
, sizeof (Password
));
1141 ZeroMem (UniStr
, StrSize (UniStr
));
1144 if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_UNLOCK
) {
1145 Status
= HiiUnlock (OpalDisk
, Password
, PassLength
);
1146 } else if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_SECURE_ERASE
) {
1147 Status
= HiiSecureErase (OpalDisk
, Password
, PassLength
);
1148 } else if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_DISABLE_USER
) {
1149 Status
= HiiDisableUser (OpalDisk
, Password
, PassLength
);
1150 } else if (gHiiConfiguration
.SelectedAction
== HII_KEY_ID_GOTO_REVERT
) {
1151 if (OpalDisk
->SupportedAttributes
.PyriteSsc
== 1 && OpalDisk
->LockingFeature
.MediaEncryption
== 0) {
1153 // For pyrite type device which also not supports media encryption, it not accept "Keep User Data" parameter.
1154 // So here hardcode a FALSE for this case.
1156 Status
= HiiRevert(OpalDisk
, Password
, PassLength
, FALSE
);
1158 Status
= HiiRevert(OpalDisk
, Password
, PassLength
, gHiiConfiguration
.KeepUserData
);
1161 Status
= HiiSetPassword(OpalDisk
, Password
, PassLength
);
1164 ZeroMem (Password
, sizeof (Password
));
1166 OpalHiiSetBrowserData ();
1172 Update block sid info.
1174 @param Enable Enable/disable BlockSid.
1176 @retval EFI_SUCCESS Do the required action success.
1177 @retval Others Other error occur.
1181 HiiSetBlockSidAction (
1189 // Process TCG Physical Presence request just after trusted console is ready
1190 // Platform can connect trusted consoles and then call the below function.
1192 ReturnCode
= TcgPhysicalPresenceStorageLibSubmitRequestToPreOSFunction (PpRequest
, 0);
1193 if (ReturnCode
== TCG_PP_SUBMIT_REQUEST_TO_PREOS_SUCCESS
) {
1194 Status
= EFI_SUCCESS
;
1195 } else if (ReturnCode
== TCG_PP_SUBMIT_REQUEST_TO_PREOS_GENERAL_FAILURE
) {
1196 Status
= EFI_OUT_OF_RESOURCES
;
1197 } else if (ReturnCode
== TCG_PP_SUBMIT_REQUEST_TO_PREOS_NOT_IMPLEMENTED
) {
1198 Status
= EFI_UNSUPPORTED
;
1200 Status
= EFI_DEVICE_ERROR
;
1207 This function processes the results of changes in configuration.
1209 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.
1210 @param Configuration A null-terminated Unicode string in <ConfigResp>
1212 @param Progress A pointer to a string filled in with the offset of
1213 the most recent '&' before the first failing
1214 name/value pair (or the beginning of the string if
1215 the failure is in the first name/value pair) or
1216 the terminating NULL if all was successful.
1218 @retval EFI_SUCCESS The Results is processed successfully.
1219 @retval EFI_INVALID_PARAMETER Configuration is NULL.
1220 @retval EFI_NOT_FOUND Routing data doesn't match any storage in this
1227 CONST EFI_HII_CONFIG_ACCESS_PROTOCOL
*This
,
1228 CONST EFI_STRING Configuration
,
1229 EFI_STRING
*Progress
1232 if (Configuration
== NULL
|| Progress
== NULL
) {
1233 return (EFI_INVALID_PARAMETER
);
1236 *Progress
= Configuration
;
1237 if (!HiiIsConfigHdrMatch (Configuration
, &gHiiSetupVariableGuid
, OpalPasswordStorageName
)) {
1238 return EFI_NOT_FOUND
;
1241 *Progress
= Configuration
+ StrLen (Configuration
);
1247 This function allows a caller to extract the current configuration for one
1248 or more named elements from the target driver.
1250 @param This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.
1251 @param Request A null-terminated Unicode string in
1252 <ConfigRequest> format.
1253 @param Progress On return, points to a character in the Request
1254 string. Points to the string's null terminator if
1255 request was successful. Points to the most recent
1256 '&' before the first failing name/value pair (or
1257 the beginning of the string if the failure is in
1258 the first name/value pair) if the request was not
1260 @param Results A null-terminated Unicode string in
1261 <ConfigAltResp> format which has all values filled
1262 in for the names in the Request string. String to
1263 be allocated by the called function.
1265 @retval EFI_SUCCESS The Results is filled with the requested values.
1266 @retval EFI_OUT_OF_RESOURCES Not enough memory to store the results.
1267 @retval EFI_INVALID_PARAMETER Request is illegal syntax, or unknown name.
1268 @retval EFI_NOT_FOUND Routing data doesn't match any storage in this
1275 CONST EFI_HII_CONFIG_ACCESS_PROTOCOL
*This
,
1276 CONST EFI_STRING Request
,
1277 EFI_STRING
*Progress
,
1284 // Check for valid parameters
1286 if (Progress
== NULL
|| Results
== NULL
) {
1287 return (EFI_INVALID_PARAMETER
);
1290 *Progress
= Request
;
1291 if ((Request
!= NULL
) &&
1292 !HiiIsConfigHdrMatch (Request
, &gHiiSetupVariableGuid
, OpalPasswordStorageName
)) {
1293 return EFI_NOT_FOUND
;
1297 // Convert Buffer Data to <ConfigResp> by helper function BlockToConfig( )
1299 Status
= gHiiConfigRouting
->BlockToConfig(
1302 (UINT8
*)&gHiiConfiguration
,
1303 sizeof(OPAL_HII_CONFIGURATION
),
1314 Pass the current system state to the bios via the hii_G_Configuration.
1318 OpalHiiSetBrowserData (
1323 &gHiiSetupVariableGuid
,
1324 (CHAR16
*)L
"OpalHiiConfig",
1325 sizeof(gHiiConfiguration
),
1326 (UINT8
*)&gHiiConfiguration
,
1334 Populate the hii_g_Configuraton with the browser Data.
1338 OpalHiiGetBrowserData (
1343 &gHiiSetupVariableGuid
,
1344 (CHAR16
*)L
"OpalHiiConfig",
1345 sizeof(gHiiConfiguration
),
1346 (UINT8
*)&gHiiConfiguration
1351 Set a string Value in a form.
1353 @param DestStringId The stringid which need to update.
1354 @param SrcAsciiStr The string nned to update.
1356 @retval EFI_SUCCESS Do the required action success.
1357 @retval Others Other error occur.
1362 EFI_STRING_ID DestStringId
,
1371 // Determine the Length of the sting
1373 Len
= ( UINT32
)AsciiStrLen( SrcAsciiStr
);
1376 // Allocate space for the unicode string, including terminator
1378 UniSize
= (Len
+ 1) * sizeof(CHAR16
);
1379 UniStr
= (CHAR16
*)AllocateZeroPool(UniSize
);
1382 // Copy into unicode string, then copy into string id
1384 AsciiStrToUnicodeStrS ( SrcAsciiStr
, UniStr
, Len
+ 1);
1387 // Update the string in the form
1389 if (HiiSetString(gHiiPackageListHandle
, DestStringId
, UniStr
, NULL
) == 0) {
1390 DEBUG ((DEBUG_INFO
, "HiiSetFormString( ) failed\n"));
1392 return (EFI_OUT_OF_RESOURCES
);
1400 return (EFI_SUCCESS
);
1404 Initialize the Opal disk base on the hardware info get from device.
1406 @param Dev The Opal device.
1408 @retval EFI_SUCESS Initialize the device success.
1409 @retval EFI_DEVICE_ERROR Get info from device failed.
1413 OpalDiskInitialize (
1414 IN OPAL_DRIVER_DEVICE
*Dev
1417 TCG_RESULT TcgResult
;
1418 OPAL_SESSION Session
;
1420 ZeroMem(&Dev
->OpalDisk
, sizeof(OPAL_DISK
));
1421 Dev
->OpalDisk
.Sscp
= Dev
->Sscp
;
1422 Dev
->OpalDisk
.MediaId
= Dev
->MediaId
;
1423 Dev
->OpalDisk
.OpalDevicePath
= Dev
->OpalDevicePath
;
1425 ZeroMem(&Session
, sizeof(Session
));
1426 Session
.Sscp
= Dev
->Sscp
;
1427 Session
.MediaId
= Dev
->MediaId
;
1429 TcgResult
= OpalGetSupportedAttributesInfo (&Session
, &Dev
->OpalDisk
.SupportedAttributes
, &Dev
->OpalDisk
.OpalBaseComId
);
1430 if (TcgResult
!= TcgResultSuccess
) {
1431 return EFI_DEVICE_ERROR
;
1433 Session
.OpalBaseComId
= Dev
->OpalDisk
.OpalBaseComId
;
1435 TcgResult
= OpalUtilGetMsid (&Session
, Dev
->OpalDisk
.Msid
, OPAL_MSID_LENGHT
, &Dev
->OpalDisk
.MsidLength
);
1436 if (TcgResult
!= TcgResultSuccess
) {
1437 return EFI_DEVICE_ERROR
;
1440 return OpalDiskUpdateStatus (&Dev
->OpalDisk
);
1444 Update the device info.
1446 @param OpalDisk The Opal device.
1448 @retval EFI_SUCESS Initialize the device success.
1449 @retval EFI_DEVICE_ERROR Get info from device failed.
1450 @retval EFI_INVALID_PARAMETER Not get Msid info before get ownership info.
1454 OpalDiskUpdateStatus (
1458 TCG_RESULT TcgResult
;
1459 OPAL_SESSION Session
;
1461 ZeroMem(&Session
, sizeof(Session
));
1462 Session
.Sscp
= OpalDisk
->Sscp
;
1463 Session
.MediaId
= OpalDisk
->MediaId
;
1464 Session
.OpalBaseComId
= OpalDisk
->OpalBaseComId
;
1466 TcgResult
= OpalGetLockingInfo(&Session
, &OpalDisk
->LockingFeature
);
1467 if (TcgResult
!= TcgResultSuccess
) {
1468 return EFI_DEVICE_ERROR
;
1471 if (OpalDisk
->MsidLength
== 0) {
1472 return EFI_INVALID_PARAMETER
;
1475 // Base on the Msid info to get the ownership, so Msid info must get first.
1477 OpalDisk
->Owner
= OpalUtilDetermineOwnership(&Session
, OpalDisk
->Msid
, OpalDisk
->MsidLength
);