]> git.proxmox.com Git - mirror_edk2.git/commit
projects / mirror_edk2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b649042) | patch
MdeModulePkg: Allow VariablePolicy state to delete protected variables
authorBret Barkelew <brbarkel@microsoft.com>
Mon, 9 Nov 2020 06:45:19 +0000 (14:45 +0800)
committermergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Tue, 17 Nov 2020 01:03:43 +0000 (01:03 +0000)
commite176bafc9d80c17c5480e3d749a6ff1fdb7e7fab
tree9b524131ca8a03393187b7c72250706c8db7ee28tree
parentb6490426e3208de7d6cbd756276a02e4329cd85acommit | diff
MdeModulePkg: Allow VariablePolicy state to delete protected variables

https://bugzilla.tianocore.org/show_bug.cgi?id=2522

TcgMorLockSmm provides special protections for
the TCG MOR variables. This will check
IsVariablePolicyEnabled() before enforcing
them to allow variable deletion when policy
engine is disabled.

Only allows deletion, not modification.

Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Hao A Wu <hao.a.wu@intel.com>
Cc: Liming Gao <liming.gao@intel.com>
Cc: Bret Barkelew <brbarkel@microsoft.com>
Signed-off-by: Bret Barkelew <brbarkel@microsoft.com>
Reviewed-by: Dandan Bi <dandan.bi@intel.com>
Acked-by: Jian J Wang <jian.j.wang@intel.com>
MdeModulePkg/Universal/Variable/RuntimeDxe/TcgMorLockSmm.c diff | blob | blame | history
MdeModulePkg/Universal/Variable/RuntimeDxe/VariableStandaloneMm.inf diff | blob | blame | history
EFI Development Kit II mirror for PVE