2 HII Config Access protocol implementation of SecureBoot configuration module.
4 Copyright (c) 2011, Intel Corporation. All rights reserved.<BR>
5 This program and the accompanying materials
6 are licensed and made available under the terms and conditions of the BSD License
7 which accompanies this distribution. The full text of the license may be found at
8 http://opensource.org/licenses/bsd-license.php
10 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
11 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
15 #include "SecureBootConfigImpl.h"
17 CHAR16 mSecureBootStorageName
[] = L
"SECUREBOOT_CONFIGURATION";
19 SECUREBOOT_CONFIG_PRIVATE_DATA mSecureBootConfigPrivateDateTemplate
= {
20 SECUREBOOT_CONFIG_PRIVATE_DATA_SIGNATURE
,
22 SecureBootExtractConfig
,
23 SecureBootRouteConfig
,
28 HII_VENDOR_DEVICE_PATH mSecureBootHiiVendorDevicePath
= {
34 (UINT8
) (sizeof (VENDOR_DEVICE_PATH
)),
35 (UINT8
) ((sizeof (VENDOR_DEVICE_PATH
)) >> 8)
38 SECUREBOOT_CONFIG_FORM_SET_GUID
42 END_ENTIRE_DEVICE_PATH_SUBTYPE
,
44 (UINT8
) (END_DEVICE_PATH_LENGTH
),
45 (UINT8
) ((END_DEVICE_PATH_LENGTH
) >> 8)
51 Save Secure Boot option to variable space.
53 @param[in] VarValue The option of Secure Boot.
55 @retval EFI_SUCCESS The operation is finished successfully.
56 @retval Others Other errors as indicated.
60 SaveSecureBootVariable (
66 Status
= gRT
->SetVariable (
67 EFI_SECURE_BOOT_ENABLE_NAME
,
68 &gEfiSecureBootEnableDisableGuid
,
69 EFI_VARIABLE_NON_VOLATILE
| EFI_VARIABLE_BOOTSERVICE_ACCESS
,
73 if (EFI_ERROR (Status
)) {
76 gRT
->ResetSystem (EfiResetCold
, EFI_SUCCESS
, 0, NULL
);
81 This function allows a caller to extract the current configuration for one
82 or more named elements from the target driver.
84 @param[in] This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.
85 @param[in] Request A null-terminated Unicode string in
86 <ConfigRequest> format.
87 @param[out] Progress On return, points to a character in the Request
88 string. Points to the string's null terminator if
89 request was successful. Points to the most recent
90 '&' before the first failing name/value pair (or
91 the beginning of the string if the failure is in
92 the first name/value pair) if the request was not
94 @param[out] Results A null-terminated Unicode string in
95 <ConfigAltResp> format which has all values filled
96 in for the names in the Request string. String to
97 be allocated by the called function.
99 @retval EFI_SUCCESS The Results is filled with the requested values.
100 @retval EFI_OUT_OF_RESOURCES Not enough memory to store the results.
101 @retval EFI_INVALID_PARAMETER Request is illegal syntax, or unknown name.
102 @retval EFI_NOT_FOUND Routing data doesn't match any storage in this
108 SecureBootExtractConfig (
109 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL
*This
,
110 IN CONST EFI_STRING Request
,
111 OUT EFI_STRING
*Progress
,
112 OUT EFI_STRING
*Results
117 SECUREBOOT_CONFIGURATION Configuration
;
119 EFI_STRING ConfigRequest
;
120 UINT8
*SecureBootEnable
;
122 if (Progress
== NULL
|| Results
== NULL
) {
123 return EFI_INVALID_PARAMETER
;
127 if ((Request
!= NULL
) && !HiiIsConfigHdrMatch (Request
, &gSecureBootConfigFormSetGuid
, mSecureBootStorageName
)) {
128 return EFI_NOT_FOUND
;
132 // Get the SecureBoot Variable
134 SecureBootEnable
= GetVariable (EFI_SECURE_BOOT_ENABLE_NAME
, &gEfiSecureBootEnableDisableGuid
);
137 // If the SecureBoot Variable doesn't exist, hide the SecureBoot Enable/Disable
140 if (SecureBootEnable
== NULL
) {
141 Configuration
.HideSecureBoot
= TRUE
;
143 Configuration
.HideSecureBoot
= FALSE
;
144 Configuration
.SecureBootState
= *SecureBootEnable
;
147 BufferSize
= sizeof (Configuration
);
148 ConfigRequest
= Request
;
150 Status
= gHiiConfigRouting
->BlockToConfig (
153 (UINT8
*) &Configuration
,
160 // Set Progress string to the original request string.
162 if (Request
== NULL
) {
164 } else if (StrStr (Request
, L
"OFFSET") == NULL
) {
165 *Progress
= Request
+ StrLen (Request
);
172 This function processes the results of changes in configuration.
174 @param[in] This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.
175 @param[in] Configuration A null-terminated Unicode string in <ConfigResp>
177 @param[out] Progress A pointer to a string filled in with the offset of
178 the most recent '&' before the first failing
179 name/value pair (or the beginning of the string if
180 the failure is in the first name/value pair) or
181 the terminating NULL if all was successful.
183 @retval EFI_SUCCESS The Results is processed successfully.
184 @retval EFI_INVALID_PARAMETER Configuration is NULL.
185 @retval EFI_NOT_FOUND Routing data doesn't match any storage in this
191 SecureBootRouteConfig (
192 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL
*This
,
193 IN CONST EFI_STRING Configuration
,
194 OUT EFI_STRING
*Progress
199 SECUREBOOT_CONFIGURATION SecureBootConfiguration
;
200 UINT8
*SecureBootEnable
;
203 if (Configuration
== NULL
|| Progress
== NULL
) {
204 return EFI_INVALID_PARAMETER
;
207 *Progress
= Configuration
;
208 if (!HiiIsConfigHdrMatch (Configuration
, &gSecureBootConfigFormSetGuid
, mSecureBootStorageName
)) {
209 return EFI_NOT_FOUND
;
213 // Convert <ConfigResp> to buffer data by helper function ConfigToBlock()
215 BufferSize
= sizeof (SECUREBOOT_CONFIGURATION
);
216 Status
= gHiiConfigRouting
->ConfigToBlock (
219 (UINT8
*) &SecureBootConfiguration
,
223 if (EFI_ERROR (Status
)) {
227 SecureBootEnable
= GetVariable (EFI_SECURE_BOOT_ENABLE_NAME
, &gEfiSecureBootEnableDisableGuid
);
228 if (SecureBootEnable
== NULL
) {
232 if ((*SecureBootEnable
) != SecureBootConfiguration
.SecureBootState
) {
234 // If the configure is changed, update the SecureBoot Variable.
236 SaveSecureBootVariable (SecureBootConfiguration
.SecureBootState
);
242 This function processes the results of changes in configuration.
244 @param[in] This Points to the EFI_HII_CONFIG_ACCESS_PROTOCOL.
245 @param[in] Action Specifies the type of action taken by the browser.
246 @param[in] QuestionId A unique value which is sent to the original
247 exporting driver so that it can identify the type
249 @param[in] Type The type of value for the question.
250 @param[in] Value A pointer to the data being sent to the original
252 @param[out] ActionRequest On return, points to the action requested by the
255 @retval EFI_SUCCESS The callback successfully handled the action.
256 @retval EFI_OUT_OF_RESOURCES Not enough storage is available to hold the
257 variable and its data.
258 @retval EFI_DEVICE_ERROR The variable could not be saved.
259 @retval EFI_UNSUPPORTED The specified Action is not supported by the
266 IN CONST EFI_HII_CONFIG_ACCESS_PROTOCOL
*This
,
267 IN EFI_BROWSER_ACTION Action
,
268 IN EFI_QUESTION_ID QuestionId
,
270 IN EFI_IFR_TYPE_VALUE
*Value
,
271 OUT EFI_BROWSER_ACTION_REQUEST
*ActionRequest
274 BOOLEAN SecureBootEnable
;
276 if ((This
== NULL
) || (Value
== NULL
) || (ActionRequest
== NULL
)) {
277 return EFI_INVALID_PARAMETER
;
280 if ((Action
!= EFI_BROWSER_ACTION_CHANGING
) || (QuestionId
!= KEY_SECURE_BOOT_ENABLE
)) {
281 return EFI_UNSUPPORTED
;
284 if (NULL
== GetVariable (EFI_SECURE_BOOT_ENABLE_NAME
, &gEfiSecureBootEnableDisableGuid
)) {
288 SecureBootEnable
= Value
->u8
;
289 SaveSecureBootVariable (Value
->u8
);
295 This function publish the SecureBoot configuration Form.
297 @param[in, out] PrivateData Points to SecureBoot configuration private data.
299 @retval EFI_SUCCESS HII Form is installed for this network device.
300 @retval EFI_OUT_OF_RESOURCES Not enough resource for HII Form installation.
301 @retval Others Other errors as indicated.
305 InstallSecureBootConfigForm (
306 IN OUT SECUREBOOT_CONFIG_PRIVATE_DATA
*PrivateData
310 EFI_HII_HANDLE HiiHandle
;
311 EFI_HANDLE DriverHandle
;
313 EFI_HII_CONFIG_ACCESS_PROTOCOL
*ConfigAccess
;
316 ConfigAccess
= &PrivateData
->ConfigAccess
;
317 Status
= gBS
->InstallMultipleProtocolInterfaces (
319 &gEfiDevicePathProtocolGuid
,
320 &mSecureBootHiiVendorDevicePath
,
321 &gEfiHiiConfigAccessProtocolGuid
,
325 if (EFI_ERROR (Status
)) {
329 PrivateData
->DriverHandle
= DriverHandle
;
332 // Publish the HII package list
334 HiiHandle
= HiiAddPackages (
335 &gSecureBootConfigFormSetGuid
,
337 SecureBootConfigDxeStrings
,
341 if (HiiHandle
== NULL
) {
342 gBS
->UninstallMultipleProtocolInterfaces (
344 &gEfiDevicePathProtocolGuid
,
345 &mSecureBootHiiVendorDevicePath
,
346 &gEfiHiiConfigAccessProtocolGuid
,
351 return EFI_OUT_OF_RESOURCES
;
354 PrivateData
->HiiHandle
= HiiHandle
;
359 This function removes SecureBoot configuration Form.
361 @param[in, out] PrivateData Points to SecureBoot configuration private data.
365 UninstallSecureBootConfigForm (
366 IN OUT SECUREBOOT_CONFIG_PRIVATE_DATA
*PrivateData
370 // Uninstall HII package list
372 if (PrivateData
->HiiHandle
!= NULL
) {
373 HiiRemovePackages (PrivateData
->HiiHandle
);
374 PrivateData
->HiiHandle
= NULL
;
378 // Uninstall HII Config Access Protocol
380 if (PrivateData
->DriverHandle
!= NULL
) {
381 gBS
->UninstallMultipleProtocolInterfaces (
382 PrivateData
->DriverHandle
,
383 &gEfiDevicePathProtocolGuid
,
384 &mSecureBootHiiVendorDevicePath
,
385 &gEfiHiiConfigAccessProtocolGuid
,
386 &PrivateData
->ConfigAccess
,
389 PrivateData
->DriverHandle
= NULL
;
392 FreePool (PrivateData
);