1. Fix a bug when verify the CertType GUID in authentication variable data payload.

[mirror_edk2.git] / SecurityPkg / VariableAuthenticated / RuntimeDxe / AuthService.c

diff --git a/SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c b/SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c
index ea5e973a31e2f8e1b82f32d47d77ac9dcf88a905..982c1a3a68f493915dd1b64c466ab2e95a22b550 100644 (file)
--- a/SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c
+++ b/SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c
@@ -416,7 +416,7 @@ AddPubKeyInStore (
 }\r
 \r
 /**\r
-  Verify data payload with AuthInfo in EFI_CERT_TYPE_RSA2048_SHA256 type.\r
+  Verify data payload with AuthInfo in EFI_CERT_TYPE_RSA2048_SHA256_GUID type.\r
   Follow the steps in UEFI2.2.\r
 \r
   @param[in]      Data                    Pointer to data with AuthInfo.\r
@@ -454,10 +454,10 @@ VerifyCounterBasedPayload (
 \r
   //\r
   // wCertificateType should be WIN_CERT_TYPE_EFI_GUID.\r
-  // Cert type should be EFI_CERT_TYPE_RSA2048_SHA256.\r
+  // Cert type should be EFI_CERT_TYPE_RSA2048_SHA256_GUID.\r
   //\r
   if ((CertData->AuthInfo.Hdr.wCertificateType != WIN_CERT_TYPE_EFI_GUID) ||\r
-      !CompareGuid (&CertData->AuthInfo.CertType, &gEfiCertRsa2048Sha256Guid)\r
+      !CompareGuid (&CertData->AuthInfo.CertType, &gEfiCertTypeRsa2048Sha256Guid)\r
         ) {\r
     //\r
     // Invalid AuthInfo type, return EFI_SECURITY_VIOLATION.\r