From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mga04.intel.com (mga04.intel.com [192.55.52.120]) by mx.groups.io with SMTP id smtpd.web10.2501.1636098932243909188 for ; Fri, 05 Nov 2021 00:55:32 -0700 Authentication-Results: mx.groups.io; dkim=missing; spf=pass (domain: intel.com, ip: 192.55.52.120, mailfrom: jie.yang@intel.com) X-IronPort-AV: E=McAfee;i="6200,9189,10158"; a="230584099" X-IronPort-AV: E=Sophos;i="5.87,210,1631602800"; d="scan'208";a="230584099" Received: from orsmga007.jf.intel.com ([10.7.209.58]) by fmsmga104.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 05 Nov 2021 00:55:30 -0700 X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.87,210,1631602800"; d="scan'208";a="490251175" Received: from desktop-yang.ccr.corp.intel.com ([10.239.158.131]) by orsmga007.jf.intel.com with ESMTP; 05 Nov 2021 00:55:27 -0700 From: "Yang Jie" To: devel@edk2.groups.io Cc: jian.j.wang@intel.com, guomin.jiang@intel.com, gaoliming@byosoft.com.cn, Yang Jie Subject: [edk2-devel][PATCH v5] MdeModulePkg/DxeCapsuleLibFmp: Use new Variable Lock interface Date: Fri, 5 Nov 2021 15:55:23 +0800 Message-Id: <20211105075523.1486-1-jie.yang@intel.com> X-Mailer: git-send-email 2.26.2.windows.1 MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D3699 The code in MdeModulePkg\Library\DxeCapsuleLibFmp call the deprecated=20 interface VariableLockRequestToLock.c. So I changed the code in FmpDevicePkg using RegisterBasicVariablePolicy, instead of the=20 deprecated interface. Signed-off-by: Yang Jie Cc: Guomin Jiang Cc: Liming Gao Cc: Jian J Wang Reviewed-by: Liming Gao Reviewed-by: Jian J Wang --- .../DxeCapsuleLibFmp/DxeCapsuleLib.inf | 5 +- .../DxeCapsuleLibFmp/DxeCapsuleReportLib.c | 87 +++++++++++++------ 2 files changed, 62 insertions(+), 30 deletions(-) diff --git a/MdeModulePkg/Library/DxeCapsuleLibFmp/DxeCapsuleLib.inf b/MdeM= odulePkg/Library/DxeCapsuleLibFmp/DxeCapsuleLib.inf index 05de4299fb..9212c81d68 100644 --- a/MdeModulePkg/Library/DxeCapsuleLibFmp/DxeCapsuleLib.inf +++ b/MdeModulePkg/Library/DxeCapsuleLibFmp/DxeCapsuleLib.inf @@ -3,7 +3,7 @@ #=0D # Capsule library instance for DXE_DRIVER module types.=0D #=0D -# Copyright (c) 2016 - 2019, Intel Corporation. All rights reserved.
= =0D +# Copyright (c) 2016 - 2021, Intel Corporation. All rights reserved.
= =0D # SPDX-License-Identifier: BSD-2-Clause-Patent=0D #=0D ##=0D @@ -51,6 +51,7 @@ DisplayUpdateProgressLib=0D FileHandleLib=0D UefiBootManagerLib=0D + VariablePolicyHelperLib=0D =0D [Pcd]=0D gEfiMdeModulePkgTokenSpaceGuid.PcdCapsuleMax = ## CONSUMES=0D @@ -71,11 +72,11 @@ [Protocols]=0D gEsrtManagementProtocolGuid ## CONSUMES=0D gEfiFirmwareManagementProtocolGuid ## CONSUMES=0D - gEdkiiVariableLockProtocolGuid ## SOMETIMES_CONSUMES=0D gEdkiiFirmwareManagementProgressProtocolGuid ## SOMETIMES_CONSUMES=0D gEfiSimpleFileSystemProtocolGuid ## SOMETIMES_CONSUMES=0D gEfiBlockIoProtocolGuid ## CONSUMES=0D gEfiDiskIoProtocolGuid ## CONSUMES=0D + gEdkiiVariablePolicyProtocolGuid ## CONSUMES=0D =0D [Guids]=0D gEfiFmpCapsuleGuid ## SOMETIMES_CONSUMES ## GUID=0D diff --git a/MdeModulePkg/Library/DxeCapsuleLibFmp/DxeCapsuleReportLib.c b/= MdeModulePkg/Library/DxeCapsuleLibFmp/DxeCapsuleReportLib.c index 0ec5f20676..3b48f81538 100644 --- a/MdeModulePkg/Library/DxeCapsuleLibFmp/DxeCapsuleReportLib.c +++ b/MdeModulePkg/Library/DxeCapsuleLibFmp/DxeCapsuleReportLib.c @@ -1,14 +1,13 @@ /** @file=0D DXE capsule report related function.=0D =0D - Copyright (c) 2016 - 2019, Intel Corporation. All rights reserved.
=0D + Copyright (c) 2016 - 2021, Intel Corporation. All rights reserved.
=0D SPDX-License-Identifier: BSD-2-Clause-Patent=0D =0D **/=0D =0D #include =0D #include =0D -#include =0D #include =0D #include =0D #include =0D @@ -26,6 +25,7 @@ #include =0D #include =0D #include =0D +#include =0D =0D #include =0D =0D @@ -94,6 +94,39 @@ GetNewCapsuleResultIndex ( return CurrentIndex + 1;=0D }=0D =0D +/**=0D + Lock Variable by variable policy=0D +=0D + @param[in] VariableGuid The Guid of the variable to be locked=0D + @param[in] VariableName The name of the variable to be locked=0D + @param[in] VariablePolicy The pointer of variable lock policy=0D +**/=0D +VOID LockVariable (=0D + IN CONST EFI_GUID VariableGuid,=0D + IN CHAR16 *VariableName,=0D + IN EDKII_VARIABLE_POLICY_PROTOCOL *VariablePolicy=0D + )=0D +{=0D + EFI_STATUS Status;=0D +=0D + // Set the policies to protect the target variables=0D + Status =3D RegisterBasicVariablePolicy (VariablePolicy,=0D + &VariableGuid,=0D + VariableName,=0D + VARIABLE_POLICY_NO_MIN_SIZE,=0D + VARIABLE_POLICY_NO_MAX_SIZE,=0D + VARIABLE_POLICY_NO_MUST_ATTR,=0D + VARIABLE_POLICY_NO_CANT_ATTR,=0D + VARIABLE_POLICY_TYPE_LOCK_NOW);=0D + if (EFI_ERROR (Status)) {=0D + DEBUG ((DEBUG_ERROR, "DxeCapsuleLibFmp: Failed to lock variable %g %s.= Status =3D %r\n",=0D + &VariableGuid,=0D + VariableName,=0D + Status));=0D + ASSERT_EFI_ERROR (Status);=0D + }=0D +}=0D +=0D /**=0D Write a new capsule status variable.=0D =0D @@ -269,16 +302,17 @@ RecordFmpCapsuleStatusVariable ( =0D /**=0D Initialize CapsuleMax variables.=0D +=0D + @param[in] VariablePolicy The pointer of variable lock policy=0D **/=0D VOID=0D InitCapsuleMaxVariable (=0D - VOID=0D + EDKII_VARIABLE_POLICY_PROTOCOL *VariablePolicy=0D )=0D {=0D EFI_STATUS Status;=0D UINTN Size;=0D CHAR16 CapsuleMaxStr[sizeof("Capsule####")];=0D - EDKII_VARIABLE_LOCK_PROTOCOL *VariableLock;=0D =0D UnicodeSPrint(=0D CapsuleMaxStr,=0D @@ -297,25 +331,22 @@ InitCapsuleMaxVariable ( );=0D if (!EFI_ERROR(Status)) {=0D // Lock it per UEFI spec.=0D - Status =3D gBS->LocateProtocol(&gEdkiiVariableLockProtocolGuid, NULL, = (VOID **)&VariableLock);=0D - if (!EFI_ERROR(Status)) {=0D - Status =3D VariableLock->RequestToLock(VariableLock, L"CapsuleMax", = &gEfiCapsuleReportGuid);=0D - ASSERT_EFI_ERROR(Status);=0D - }=0D + LockVariable (gEfiCapsuleReportGuid, L"CapsuleMax", VariablePolicy);=0D }=0D }=0D =0D /**=0D Initialize CapsuleLast variables.=0D +=0D + @param[in] VariablePolicy The pointer of variable lock policy=0D **/=0D VOID=0D InitCapsuleLastVariable (=0D - VOID=0D + EDKII_VARIABLE_POLICY_PROTOCOL *VariablePolicy=0D )=0D {=0D EFI_STATUS Status;=0D EFI_BOOT_MODE BootMode;=0D - EDKII_VARIABLE_LOCK_PROTOCOL *VariableLock;=0D VOID *CapsuleResult;=0D UINTN Size;=0D CHAR16 CapsuleLastStr[sizeof("Capsule####")];= =0D @@ -372,11 +403,7 @@ InitCapsuleLastVariable ( }=0D =0D // Lock it in normal boot path per UEFI spec.=0D - Status =3D gBS->LocateProtocol(&gEdkiiVariableLockProtocolGuid, NULL, = (VOID **)&VariableLock);=0D - if (!EFI_ERROR(Status)) {=0D - Status =3D VariableLock->RequestToLock(VariableLock, L"CapsuleLast",= &gEfiCapsuleReportGuid);=0D - ASSERT_EFI_ERROR(Status);=0D - }=0D + LockVariable (gEfiCapsuleReportGuid, L"CapsuleLast", VariablePolicy);= =0D }=0D }=0D =0D @@ -430,26 +457,21 @@ InitCapsuleUpdateVariable ( =0D /**=0D Initialize capsule relocation info variable.=0D +=0D + @param[in] VariablePolicy The pointer of variable lock policy=0D **/=0D VOID=0D InitCapsuleRelocationInfo (=0D - VOID=0D + EDKII_VARIABLE_POLICY_PROTOCOL *VariablePolicy=0D )=0D {=0D - EFI_STATUS Status;=0D - EDKII_VARIABLE_LOCK_PROTOCOL *VariableLock;=0D -=0D CoDClearCapsuleRelocationInfo();=0D =0D //=0D // Unlock Capsule On Disk relocation Info variable only when Capsule On = Disk flag is enabled=0D //=0D if (!CoDCheckCapsuleOnDiskFlag()) {=0D - Status =3D gBS->LocateProtocol (&gEdkiiVariableLockProtocolGuid, NULL,= (VOID **) &VariableLock);=0D - if (!EFI_ERROR (Status)) {=0D - Status =3D VariableLock->RequestToLock (VariableLock, COD_RELOCATION= _INFO_VAR_NAME, &gEfiCapsuleVendorGuid);=0D - ASSERT_EFI_ERROR (Status);=0D - }=0D + LockVariable (gEfiCapsuleVendorGuid, COD_RELOCATION_INFO_VAR_NAME, Var= iablePolicy);=0D }=0D }=0D =0D @@ -461,10 +483,19 @@ InitCapsuleVariable ( VOID=0D )=0D {=0D + EFI_STATUS Status;=0D + EDKII_VARIABLE_POLICY_PROTOCOL *VariablePolicy;=0D +=0D + // Locate the VariablePolicy protocol=0D + Status =3D gBS->LocateProtocol (&gEdkiiVariablePolicyProtocolGuid, NULL,= (VOID**)&VariablePolicy);=0D + if (EFI_ERROR (Status)) {=0D + DEBUG ((DEBUG_ERROR, "DxeCapsuleReportLib %a - Could not locate Variab= lePolicy protocol! %r\n", __FUNCTION__, Status));=0D + ASSERT_EFI_ERROR (Status);=0D + }=0D InitCapsuleUpdateVariable();=0D - InitCapsuleMaxVariable();=0D - InitCapsuleLastVariable();=0D - InitCapsuleRelocationInfo();=0D + InitCapsuleMaxVariable (VariablePolicy);=0D + InitCapsuleLastVariable (VariablePolicy);=0D + InitCapsuleRelocationInfo (VariablePolicy);=0D =0D //=0D // No need to clear L"Capsule####", because OS/APP should refer L"Capsul= eLast"=0D --=20 2.26.2.windows.1