Add PublicKeyDataLength check to be multiple SHA256_DIGEST_SIZE
to avoid caller make mistake, or platform mis-configuration.
Cc: Chao Zhang <chao.b.zhang@intel.com>
Cc: Qin Long <qin.long@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Jiewen Yao <jiewen.yao@intel.com>
Reviewed-by: Qin Long <qin.long@intel.com>
return RETURN_UNSUPPORTED;\r
}\r
\r
+ if ((PublicKeyDataLength % SHA256_DIGEST_SIZE) != 0) {\r
+ DEBUG ((DEBUG_ERROR, "PublicKeyDataLength is not multiple SHA256 size\n"));\r
+ return RETURN_UNSUPPORTED;\r
+ }\r
+\r
if (ImageSize < sizeof(EFI_FIRMWARE_IMAGE_AUTHENTICATION)) {\r
DEBUG((DEBUG_ERROR, "AuthenticateFmpImage - ImageSize too small\n"));\r
return RETURN_INVALID_PARAMETER;\r