Changeset 58466 for trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library – Oracle VirtualBox

trunk/src/VBox/Devices/EFI/Firmware

Property svn:mergeinfo changed
/vendor/edk2/current merged: 103769-103776

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeDeferImageLoadLib/DxeDeferImageLoadLib.c

-              r58459
+              r58466
 Copyright (c) 2009 - 2014, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   @param[in]    File    This is a pointer to the device path of the file
                         that is being dispatched.
   @return       UINT32  Image Type
+                        that is being dispatched.
+  @return       UINT32  Image Type
 **/
 …
+{
   EFI_STATUS                        Status;
   EFI_HANDLE                        DeviceHandle;
+  EFI_HANDLE                        DeviceHandle;
   EFI_DEVICE_PATH_PROTOCOL          *TempDevicePath;
   EFI_BLOCK_IO_PROTOCOL             *BlockIo;
 …
   //
   // File is not in a Firmware Volume or on a Block I/O device, so check to see if
+  // File is not in a Firmware Volume or on a Block I/O device, so check to see if
   // the device path supports the Simple File System Protocol.
   //
 …
   //
   // File is not from an FV, Block I/O or Simple File System, so the only options
   // left are a PCI Option ROM and a Load File Protocol such as a PXE Boot from a NIC.
+  // left are a PCI Option ROM and a Load File Protocol such as a PXE Boot from a NIC.
   //
   TempDevicePath = (EFI_DEVICE_PATH_PROTOCOL *)File;
   while (!IsDevicePathEndType (TempDevicePath)) {
     switch (DevicePathType (TempDevicePath)) {
     case MEDIA_DEVICE_PATH:
       if (DevicePathSubType (TempDevicePath) == MEDIA_RELATIVE_OFFSET_RANGE_DP) {
 …
       if (DevicePathSubType(TempDevicePath) == MSG_MAC_ADDR_DP) {
         return IMAGE_FROM_REMOVABLE_MEDIA;
+      }
+      }
       break;
 …
     TempDevicePath = NextDevicePathNode (TempDevicePath);
+  }
   return IMAGE_UNKNOWN;
+  return IMAGE_UNKNOWN;
+}
 …
     return EFI_NOT_FOUND;
+  }
   //
   // Get current user access information.
 …
       break;
+    }
     ASSERT (Info != NULL);
     if (Info->InfoType != EFI_USER_INFO_ACCESS_POLICY_RECORD) {
       continue;
+    }
     //
     // Get specified access information.
 …
+    }
+  }
   if (Info != NULL) {
     FreePool (Info);
 …
   Get file name from device path.
   The file name may contain one or more device path node. Save the file name in a
   buffer if file name is found. The caller is responsible to free the buffer.
+  The file name may contain one or more device path node. Save the file name in a
+  buffer if file name is found. The caller is responsible to free the buffer.
   @param[in]  DevicePath     A pointer to a device path.
   @param[out] FileName       The callee allocated buffer to save the file name if file name is found.
   @param[out] FileNameOffset The offset of file name in device path if file name is found.
   @retval     UINTN          The file name length. 0 means file name is not found.
 **/
 UINTN
+UINTN
 GetFileName (
   IN  CONST EFI_DEVICE_PATH_PROTOCOL          *DevicePath,
 …
     NodeStr = (CHAR8 *)TmpDevicePath + sizeof (EFI_DEVICE_PATH_PROTOCOL);
     NodeStrLength = DevicePathNodeLength (TmpDevicePath) - sizeof (EFI_DEVICE_PATH_PROTOCOL) - sizeof(CHAR16);
     if ((FirstNodeChar == '\\') && (LastNodeChar == '\\')) {
       //
 …
       //
       NodeStr += sizeof (CHAR16);
       NodeStrLength -= sizeof (CHAR16);
+      NodeStrLength -= sizeof (CHAR16);
     } else if ((FirstNodeChar != '\\') && (LastNodeChar != '\\')) {
       //
 …
       WriteUnaligned16 ((UINT16 *)(*FileName + Length), '\\');
       Length += sizeof (CHAR16);
+    }
+    }
     CopyMem (*FileName + Length, NodeStr, NodeStrLength);
     Length += NodeStrLength;
     LastNodeChar  = (CHAR16) ReadUnaligned16 ((UINT16 *) (NodeStr + NodeStrLength - sizeof(CHAR16)));
     TmpDevicePath = NextDevicePathNode (TmpDevicePath);
+  }
+  }
   return Length;
 …
   If DevicePath2 is identical with DevicePath1, or with DevicePath1's child device
   path, then TRUE returned. Otherwise, FALSE is returned.
   If DevicePath1 is NULL, then ASSERT().
   If DevicePath2 is NULL, then ASSERT().
 …
   @param[in]  DevicePath2   A pointer to a device path.
   @retval     TRUE          Two device paths are identical , or DevicePath2 is
+  @retval     TRUE          Two device paths are identical , or DevicePath2 is
                             DevicePath1's child device path.
   @retval     FALSE         Two device paths are not identical, and DevicePath2
+  @retval     FALSE         Two device paths are not identical, and DevicePath2
                             is not DevicePath1's child device path.
 …
     return FALSE;
+  }
   //
   // The file name may contain one or more device path node.
+  //
+  // The file name may contain one or more device path node.
   // To compare the file name, copy file name to a buffer and compare the buffer.
   //
 …
       goto Done;
+    }
     if (CompareMem (DevicePath1, DevicePath2, FileNameOffset1) != 0) {
+    if (CompareMem (DevicePath1, DevicePath2, FileNameOffset1) != 0) {
       DevicePathEqual = FALSE;
       goto Done;
 …
       goto Done;
+    }
     if (CompareMem (FileName1, FileName2, FileNameSize1) != 0) {
+    if (CompareMem (FileName1, FileName2, FileNameSize1) != 0) {
       DevicePathEqual = FALSE;
       goto Done;
 …
   if (CompareMem (DevicePath1, DevicePath2, DevicePathSize) != 0) {
     DevicePathEqual = FALSE;
+  }
 Done:
+  }
+Done:
   if (FileName1 != NULL) {
     FreePool (FileName1);
 …
 /**
   Check whether the image pointed to by DevicePath is in the device path list
   specified by AccessType.
+  Check whether the image pointed to by DevicePath is in the device path list
+  specified by AccessType.
   @param[in] DevicePath  Points to device path.
   @param[in] AccessType  The type of user access control.
   @retval    TURE        The DevicePath is in the specified List.
   @retval    FALSE       The DevicePath is not in the specified List.
 …
   EFI_USER_INFO_ACCESS_CONTROL          *Access;
   EFI_DEVICE_PATH_PROTOCOL              *Path;
   UINTN                                 OffSet;
+  UINTN                                 OffSet;
   Status = GetAccessControl (&Access, AccessType);
   if (EFI_ERROR (Status)) {
     return FALSE;
+  }
+  }
   OffSet = 0;
   while (OffSet < Access->Size - sizeof (EFI_USER_INFO_ACCESS_CONTROL)) {
     Path = (EFI_DEVICE_PATH_PROTOCOL*)((UINT8*)(Access + 1) + OffSet);
+    Path = (EFI_DEVICE_PATH_PROTOCOL*)((UINT8*)(Access + 1) + OffSet);
     if (CheckDevicePath (Path, DevicePath)) {
       //
 …
       FreePool (Access);
       return TRUE;
+    }
+    }
     OffSet += GetDevicePathSize (Path);
+  }
   FreePool (Access);
   return FALSE;
+}
 /**
   Check whether the image pointed to by DevicePath is permitted to load.
+  return FALSE;
+}
+/**
+  Check whether the image pointed to by DevicePath is permitted to load.
   @param[in] DevicePath  Points to device path
   @retval    TURE        The image pointed by DevicePath is permitted to load.
   @retval    FALSE       The image pointed by DevicePath is forbidden to load.
 …
   if (IsDevicePathInList (DevicePath, EFI_USER_INFO_ACCESS_PERMIT_LOAD)) {
     //
     // This access control overrides any restrictions put in place by the
+    // This access control overrides any restrictions put in place by the
     // EFI_USER_INFO_ACCESS_FORBID_LOAD record.
     //
     return TRUE;
+  }
   if (IsDevicePathInList (DevicePath, EFI_USER_INFO_ACCESS_FORBID_LOAD)) {
     //
 …
     return FALSE;
+  }
   return TRUE;
+}
 /**
   Check the image pointed by DevicePath is a boot option or not.
+  return TRUE;
+}
+/**
+  Check the image pointed by DevicePath is a boot option or not.
   @param[in] DevicePath  Points to device path.
   @retval    TURE        The image pointed by DevicePath is a boot option.
   @retval    FALSE       The image pointed by DevicePath is not a boot option.
 …
   UINT8                             *OptionPtr;
   EFI_DEVICE_PATH_PROTOCOL          *OptionDevicePath;
   //
   // Get BootOrder
   //
   BootOrderListSize = 0;
   BootOrderList     = NULL;
+  BootOrderList     = NULL;
   Status = gRT->GetVariable (
                   L"BootOrder",
                   &gEfiGlobalVariableGuid,
                   NULL,
                   &BootOrderListSize,
+                  L"BootOrder",
+                  &gEfiGlobalVariableGuid,
+                  NULL,
+                  &BootOrderListSize,
                   NULL
                   );
 …
     ASSERT (BootOrderList != NULL);
     Status = gRT->GetVariable (
                     L"BootOrder",
                     &gEfiGlobalVariableGuid,
                     NULL,
                     &BootOrderListSize,
+                    L"BootOrder",
+                    &gEfiGlobalVariableGuid,
+                    NULL,
+                    &BootOrderListSize,
                     BootOrderList
                     );
+  }
   if (EFI_ERROR (Status)) {
     //
 …
     // Check whether the image is forbidden.
     //
     OptionPtr = OptionBuffer;
     //
 …
     //
     OptionPtr += StrSize ((UINT16 *) OptionPtr);
     //
     // Now OptionPtr points to Device Path.
 …
   Add the image info to a deferred image list.
   @param[in]  ImageDevicePath  A pointer to the device path of a image.
   @param[in]  Image            Points to the first byte of the image, or NULL if the
+  @param[in]  ImageDevicePath  A pointer to the device path of a image.
+  @param[in]  Image            Points to the first byte of the image, or NULL if the
                                image is not available.
   @param[in]  ImageSize        The size of the image, or 0 if the image is not available.
 **/
 VOID
 …
     CurImageInfo = AllocatePool ((mDeferredImage.Count + 1) * sizeof (DEFERRED_IMAGE_INFO));
     ASSERT (CurImageInfo != NULL);
     CopyMem (
       CurImageInfo,
+      CurImageInfo,
       mDeferredImage.ImageInfo,
       mDeferredImage.Count * sizeof (DEFERRED_IMAGE_INFO)
 …
+  }
   mDeferredImage.Count++;
   //
   // Save the deferred image information.
 …
   Returns information about a deferred image.
   This function returns information about a single deferred image. The deferred images are
   numbered consecutively, starting with 0.  If there is no image which corresponds to
   ImageIndex, then EFI_NOT_FOUND is returned. All deferred images may be returned by
+  This function returns information about a single deferred image. The deferred images are
+  numbered consecutively, starting with 0.  If there is no image which corresponds to
+  ImageIndex, then EFI_NOT_FOUND is returned. All deferred images may be returned by
   iteratively calling this function until EFI_NOT_FOUND is returned.
   Image may be NULL and ImageSize set to 0 if the decision to defer execution was made
   because of the location of the executable image, rather than its actual contents.
+  Image may be NULL and ImageSize set to 0 if the decision to defer execution was made
+  because of the location of the executable image, rather than its actual contents.
   @param[in]  This             Points to this instance of the EFI_DEFERRED_IMAGE_LOAD_PROTOCOL.
   @param[in]  ImageIndex       Zero-based index of the deferred index.
   @param[out] ImageDevicePath  On return, points to a pointer to the device path of the image.
                                The device path should not be freed by the caller.
   @param[out] Image            On return, points to the first byte of the image or NULL if the
+  @param[out] ImageDevicePath  On return, points to a pointer to the device path of the image.
+                               The device path should not be freed by the caller.
+  @param[out] Image            On return, points to the first byte of the image or NULL if the
                                image is not available. The image should not be freed by the caller
                                unless LoadImage() has been successfully called.
+                               unless LoadImage() has been successfully called.
   @param[out] ImageSize        On return, the size of the image, or 0 if the image is not available.
   @param[out] BootOption       On return, points to TRUE if the image was intended as a boot option
                                or FALSE if it was not intended as a boot option.
+  @param[out] BootOption       On return, points to TRUE if the image was intended as a boot option
+                               or FALSE if it was not intended as a boot option.
   @retval EFI_SUCCESS           Image information returned successfully.
   @retval EFI_NOT_FOUND         ImageIndex does not refer to a valid image.
   @retval EFI_INVALID_PARAMETER ImageDevicePath is NULL or Image is NULL or ImageSize is NULL or
+  @retval EFI_INVALID_PARAMETER ImageDevicePath is NULL or Image is NULL or ImageSize is NULL or
                                 BootOption is NULL.
 **/
 EFI_STATUS
 …
     return EFI_INVALID_PARAMETER;
+  }
   if ((ImageDevicePath == NULL) || (BootOption == NULL)) {
     return EFI_INVALID_PARAMETER;
 …
     return EFI_NOT_FOUND;
+  }
   //
   // Get the request deferred image.
   //
+  //
   ReqImageInfo = &mDeferredImage.ImageInfo[ImageIndex];
   *ImageDevicePath = ReqImageInfo->ImageDevicePath;
   *Image           = ReqImageInfo->Image;
   *ImageSize       = ReqImageInfo->ImageSize;
   *BootOption      = ReqImageInfo->BootOption;
   return EFI_SUCCESS;
+}
 …
   and installs Deferred Image Load Protocol.
   @param[in]  AuthenticationStatus  This is the authentication status returned from the
+  @param[in]  AuthenticationStatus  This is the authentication status returned from the
                                     security measurement services for the input file.
   @param[in]  File                  This is a pointer to the device path of the file that
 …
   //
   // Check whether user has a logon.
   //
+  //
   CurrentUser = NULL;
   if (mUserManager != NULL) {
 …
+    }
+  }
   //
   // Still no user logon.
 …
     return EFI_SUCCESS;
+  }
   DEBUG ((EFI_D_INFO, "[Security] No user identified, the image is deferred to load!\n"));
   PutDefferedImageInfo (File, FileBuffer, FileSize);
 …
 /**
   Locate user manager protocol when user manager is installed.
+  Locate user manager protocol when user manager is installed.
   @param[in] Event    The Event that is being processed, not used.
   @param[in] Context  Event Context, not used.
+  @param[in] Context  Event Context, not used.
 **/
 …
          (VOID **) &mUserManager
          );
+}
 …
+{
   VOID                 *Registration;
   //
   // Register user manager notification function.
   //
   EfiCreateProtocolNotifyEvent (
     &gEfiUserManagerProtocolGuid,
+    &gEfiUserManagerProtocolGuid,
     TPL_CALLBACK,
     FindUserManagerProtocol,
 …
     &Registration
     );
   return RegisterSecurity2Handler (
            DxeDeferImageLoadHandler,
            EFI_AUTH_OPERATION_DEFER_IMAGE_LOAD
            );
+}
+           EFI_AUTH_OPERATION_DEFER_IMAGE_LOAD
+           );
+}

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeDeferImageLoadLib/DxeDeferImageLoadLib.h

-              r58459
+              r58466
 Copyright (c) 2009 - 2013, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   Returns information about a deferred image.
   This function returns information about a single deferred image. The deferred images are
   numbered consecutively, starting with 0.  If there is no image which corresponds to
   ImageIndex, then EFI_NOT_FOUND is returned. All deferred images may be returned by
+  This function returns information about a single deferred image. The deferred images are
+  numbered consecutively, starting with 0.  If there is no image which corresponds to
+  ImageIndex, then EFI_NOT_FOUND is returned. All deferred images may be returned by
   iteratively calling this function until EFI_NOT_FOUND is returned.
   Image may be NULL and ImageSize set to 0 if the decision to defer execution was made
   because of the location of the executable image, rather than its actual contents.
+  Image may be NULL and ImageSize set to 0 if the decision to defer execution was made
+  because of the location of the executable image, rather than its actual contents.
   @param[in]  This              Points to this instance of the EFI_DEFERRED_IMAGE_LOAD_PROTOCOL.
   @param[in]  ImageIndex        Zero-based index of the deferred index.
   @param[out] ImageDevicePath   On return, points to a pointer to the device path of the image.
                                 The device path should not be freed by the caller.
   @param[out] Image             On return, points to the first byte of the image or NULL if the
+  @param[out] ImageDevicePath   On return, points to a pointer to the device path of the image.
+                                The device path should not be freed by the caller.
+  @param[out] Image             On return, points to the first byte of the image or NULL if the
                                 image is not available. The image should not be freed by the caller
                                 unless LoadImage() has been called successfully.
+                                unless LoadImage() has been called successfully.
   @param[out] ImageSize         On return, the size of the image, or 0 if the image is not available.
   @param[out] BootOption        On return, points to TRUE if the image was intended as a boot option
                                 or FALSE if it was not intended as a boot option.
+  @param[out] BootOption        On return, points to TRUE if the image was intended as a boot option
+                                or FALSE if it was not intended as a boot option.
   @retval EFI_SUCCESS           Image information returned successfully.
   @retval EFI_NOT_FOUND         ImageIndex does not refer to a valid image.
   @retval EFI_INVALID_PARAMETER ImageDevicePath is NULL or Image is NULL or ImageSize is NULL or
+  @retval EFI_INVALID_PARAMETER ImageDevicePath is NULL or Image is NULL or ImageSize is NULL or
                                 BootOption is NULL.
 **/
 EFI_STATUS
 …
      OUT BOOLEAN                           *BootOption
   );
 #endif

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeDeferImageLoadLib/DxeDeferImageLoadLib.inf

-              r58459
+              r58466
 #  Provides security service of deferred image load
+#
 #  The platform may need to defer the execution of an image because of security
 #  considerations. These deferred images will be recorded and then reported by
+#  The platform may need to defer the execution of an image because of security
+#  considerations. These deferred images will be recorded and then reported by
 #  installing an instance of the EFI_DEFERRED_IMAGE_LOAD_PROTOCOL.
+#
 …
   BaseMemoryLib
   PrintLib
   DebugLib
+  DebugLib
   UefiLib
   PcdLib
+  PcdLib
 [Protocols]
 …
   ## NOTIFY
   gEfiUserManagerProtocolGuid
 [Guids]
   gEfiGlobalVariableGuid                                  ## SOMETIMES_CONSUMES  ## Variable:L"BootOrder"
 [Pcd]
   gEfiSecurityPkgTokenSpaceGuid.PcdDeferImageLoadPolicy   ## SOMETIMES_CONSUMES

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeImageAuthenticationStatusLib/DxeImageAuthenticationStatusLib.c

-              r58464
+              r58466
 /**
   Check image authentication status returned from Section Extraction Protocol
   @param[in]    AuthenticationStatus  This is the authentication status returned from
+  @param[in]    AuthenticationStatus  This is the authentication status returned from
                              the Section Extraction Protocol when reading the input file.
   @param[in]    File       This is a pointer to the device path of the file that is

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeImageAuthenticationStatusLib/DxeImageAuthenticationStatusLib.inf

r58464	r58466
21	21	MODULE_TYPE = DXE_DRIVER
22	22	VERSION_STRING = 1.0
23		LIBRARY_CLASS = NULL\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
	23	LIBRARY_CLASS = NULL\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
24	24	CONSTRUCTOR = DxeImageAuthenticationStatusLibConstructor
25	25

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.c

-              r58459
+              r58466
   @param  FileHandle      Pointer to the file handle to read the PE/COFF image.
   @param  FileOffset      Offset into the PE/COFF image to begin the read operation.
   @param  ReadSize        On input, the size in bytes of the requested read operation.
+  @param  ReadSize        On input, the size in bytes of the requested read operation.
                           On output, the number of bytes actually read.
   @param  Buffer          Output buffer that contains the data read from the PE/COFF image.
   @retval EFI_SUCCESS     The specified portion of the PE/COFF image was read and the size
+  @retval EFI_SUCCESS     The specified portion of the PE/COFF image was read and the size
 **/
 EFI_STATUS
 …
   if (FileHandle == NULL || ReadSize == NULL || Buffer == NULL) {
     return EFI_INVALID_PARAMETER;
+    return EFI_INVALID_PARAMETER;
+  }
 …
   if (mNtHeader.Pe32->FileHeader.Machine == IMAGE_FILE_MACHINE_IA64 && mNtHeader.Pe32->OptionalHeader.Magic == EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC) {
     //
     // NOTE: Some versions of Linux ELILO for Itanium have an incorrect magic value
     //       in the PE/COFF Header. If the MachineType is Itanium(IA64) and the
+    // NOTE: Some versions of Linux ELILO for Itanium have an incorrect magic value
+    //       in the PE/COFF Header. If the MachineType is Itanium(IA64) and the
     //       Magic value in the OptionalHeader is EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC
     //       then override the magic value to EFI_IMAGE_NT_OPTIONAL_HDR64_MAGIC
 …
     Magic =  mNtHeader.Pe32->OptionalHeader.Magic;
+  }
   //
   // 3.  Calculate the distance from the base of the image header to the image checksum address.
 …
         goto Done;
+      }
+    }
+    }
+  }
 …
   @param[in]  AuthData            Pointer to the Authenticode Signature retrieved from signed image.
   @param[in]  AuthDataSize        Size of the Authenticode Signature in bytes.
   @retval EFI_UNSUPPORTED             Hash algorithm is not supported.
   @retval EFI_SUCCESS                 Hash successfully.
 …
   //
   // The policy QUERY_USER_ON_SECURITY_VIOLATION and ALLOW_EXECUTE_ON_SECURITY_VIOLATION
+  // The policy QUERY_USER_ON_SECURITY_VIOLATION and ALLOW_EXECUTE_ON_SECURITY_VIOLATION
   // violates the UEFI spec and has been removed.
   //
 …
   if (mNtHeader.Pe32->FileHeader.Machine == IMAGE_FILE_MACHINE_IA64 && mNtHeader.Pe32->OptionalHeader.Magic == EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC) {
     //
     // NOTE: Some versions of Linux ELILO for Itanium have an incorrect magic value
     //       in the PE/COFF Header. If the MachineType is Itanium(IA64) and the
+    // NOTE: Some versions of Linux ELILO for Itanium have an incorrect magic value
+    //       in the PE/COFF Header. If the MachineType is Itanium(IA64) and the
     //       Magic value in the OptionalHeader is EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC
     //       then override the magic value to EFI_IMAGE_NT_OPTIONAL_HDR64_MAGIC
 …
     Magic = mNtHeader.Pe32->OptionalHeader.Magic;
+  }
   if (Magic == EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC) {
     //
 …
     if (NumberOfRvaAndSizes > EFI_IMAGE_DIRECTORY_ENTRY_SECURITY) {
       SecDataDir = (EFI_IMAGE_DATA_DIRECTORY *) &mNtHeader.Pe32->OptionalHeader.DataDirectory[EFI_IMAGE_DIRECTORY_ENTRY_SECURITY];
+    }
+    }
   } else {
     //
 …
   if (SecDataDir == NULL || SecDataDir->Size == 0) {
     //
     // This image is not signed. The SHA256 hash value of the image must match a record in the security database "db",
+    // This image is not signed. The SHA256 hash value of the image must match a record in the security database "db",
     // and not be reflected in the security data base "dbx".
     //
 …
   //
   // Verify the signature of the image, multiple signatures are allowed as per PE/COFF Section 4.7
+  // Verify the signature of the image, multiple signatures are allowed as per PE/COFF Section 4.7
   // "Attribute Certificate Table".
   // The first certificate starts at offset (SecDataDir->VirtualAddress) from the start of the file.
 …
       break;
+    }
     //
     // Verify the image's Authenticode signature, only DER-encoded PKCS#7 signed data is supported.
 …
     if (WinCertificate->wCertificateType == WIN_CERT_TYPE_PKCS_SIGNED_DATA) {
       //
       // The certificate is formatted as WIN_CERTIFICATE_EFI_PKCS which is described in the
+      // The certificate is formatted as WIN_CERTIFICATE_EFI_PKCS which is described in the
       // Authenticode specification.
       //
 …
       continue;
+    }
     //
     // Check the digital signature against the revoked certificate in forbidden database (dbx).
 …
     VerifyStatus = EFI_ACCESS_DENIED;
+  }
   if (!EFI_ERROR (VerifyStatus)) {
     return EFI_SUCCESS;
 …
+  }
   ImageExeInfoTable->NumberOfImages = 0;
+  ImageExeInfoTable->NumberOfImages = 0;
   gBS->InstallConfigurationTable (&gEfiImageSecurityDatabaseGuid, (VOID *) ImageExeInfoTable);
 …
   EfiCreateEventReadyToBootEx (
     TPL_CALLBACK,
     OnReadyToBoot,
     NULL,
+    OnReadyToBoot,
+    NULL,
     &Event
     );
+    );
   return RegisterSecurity2Handler (

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.h

-              r58459
+              r58466
 Copyright (c) 2009 - 2013, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
 // Set max digest size as SHA256 Output (32 bytes) by far
 //
 #define MAX_DIGEST_SIZE    SHA256_DIGEST_SIZE
+#define MAX_DIGEST_SIZE    SHA256_DIGEST_SIZE
 //
 //

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeImageVerificationLib/DxeImageVerificationLib.inf

-              r58459
+              r58466
   MODULE_TYPE                    = DXE_DRIVER
   VERSION_STRING                 = 1.0
   LIBRARY_CLASS                  = NULL|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
+  LIBRARY_CLASS                  = NULL|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
   CONSTRUCTOR                    = DxeImageVerificationLibConstructor
 …
   ## SOMETIMES_PRODUCES   ## GUID       # Unique ID for the type of the signature.
   gEfiCertSha1Guid
   ## SOMETIMES_CONSUMES   ## GUID       # Unique ID for the type of the signature.
   ## SOMETIMES_PRODUCES   ## GUID       # Unique ID for the type of the signature.
 …
   gEfiCertX509Guid                      ## SOMETIMES_CONSUMES    ## GUID     # Unique ID for the type of the signature.
   gEfiCertPkcs7Guid                     ## SOMETIMES_CONSUMES    ## GUID     # Unique ID for the type of the certificate.
 [Pcd]
   gEfiSecurityPkgTokenSpaceGuid.PcdOptionRomImageVerificationPolicy          ## SOMETIMES_CONSUMES

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeImageVerificationLib/Measurement.c

-              r58464
+              r58466
   @param[in]  VarName           A Null-terminated string that is the name of the vendor's variable.
   @param[in]  VendorGuid        A unique identifier for the vendor.
   @param[in]  VarData           The content of the variable data.
   @param[in]  VarSize           The size of the variable data.
+  @param[in]  VarData           The content of the variable data.
+  @param[in]  VarSize           The size of the variable data.
   @retval EFI_SUCCESS           Operation completed successfully.
   @retval EFI_OUT_OF_RESOURCES  Out of memory.
 …
   @param[in]  VarName           A Null-terminated string that is the name of the vendor's variable.
   @param[in]  VendorGuid        A unique identifier for the vendor.
   @param[in]  VarData           The content of the variable data.
   @param[in]  VarSize           The size of the variable data.
+  @param[in]  VarData           The content of the variable data.
+  @param[in]  VarSize           The size of the variable data.
   @retval TRUE  The data is already measured.
 …
   for (Index = 0; Index < sizeof(mVariableType)/sizeof(mVariableType[0]); Index++) {
     if ((StrCmp (VariableName, mVariableType[Index].VariableName) == 0) &&
+    if ((StrCmp (VariableName, mVariableType[Index].VariableName) == 0) &&
         (CompareGuid (VendorGuid, mVariableType[Index].VendorGuid))) {
       return TRUE;
 …
   @param[in]  VarName           A Null-terminated string that is the name of the vendor's variable.
   @param[in]  VendorGuid        A unique identifier for the vendor.
   @param[in]  VarData           The content of the variable data.
   @param[in]  VarSize           The size of the variable data.
+  @param[in]  VarData           The content of the variable data.
+  @param[in]  VarSize           The size of the variable data.
   @retval EFI_SUCCESS           Operation completed successfully.
   @retval EFI_OUT_OF_RESOURCES  Out of memory.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeRsa2048Sha256GuidedSectionExtractLib/DxeRsa2048Sha256GuidedSectionExtractLib.c

-              r58464
+              r58466
 /** @file
   This library registers RSA 2048 SHA 256 guided section handler
+  This library registers RSA 2048 SHA 256 guided section handler
   to parse RSA 2048 SHA 256 encapsulation section and extract raw data.
   It uses the BaseCrypyLib based on OpenSSL to authenticate the signature.
 Copyright (c) 2013 - 2014, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
+http://opensource.org/licenses/bsd-license.php
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 **/
 …
   GetInfo gets raw data size and attribute of the input guided section.
   It first checks whether the input guid section is supported.
+  It first checks whether the input guid section is supported.
   If not, EFI_INVALID_PARAMETER will return.
 …
   @param SectionAttribute   The attribute of the input guided section.
   @retval EFI_SUCCESS            The size of destination buffer, the size of scratch buffer and
+  @retval EFI_SUCCESS            The size of destination buffer, the size of scratch buffer and
                                  the attribute of the input section are successull retrieved.
   @retval EFI_INVALID_PARAMETER  The GUID in InputSection does not match this instance guid.
 …
   Extraction handler tries to extract raw data from the input guided section.
   It also does authentication check for RSA 2048 SHA 256 signature in the input guided section.
   It first checks whether the input guid section is supported.
+  It first checks whether the input guid section is supported.
   If not, EFI_INVALID_PARAMETER will return.
 …
   VOID                            *HashContext;
   VOID                            *Rsa;
   HashContext = NULL;
   Rsa         = NULL;
   if (IS_SECTION2 (InputSection)) {
     //
 …
       return EFI_INVALID_PARAMETER;
+    }
     //
     // Get the RSA 2048 SHA 256 information.
 …
       return EFI_INVALID_PARAMETER;
+    }
     //
     // Get the RSA 2048 SHA 256 information.
 …
     //
     *AuthenticationStatus |= EFI_AUTH_STATUS_PLATFORM_OVERRIDE;
     return EFI_SUCCESS;
+  }
 …
   //
   Status = EFI_SUCCESS;
   //
   // Fail if the HashType is not SHA 256
 …
     goto Done;
+  }
   //
   // Fail if the PublicKey is not one of the public keys in PcdRsa2048Sha256PublicKeyBuffer
 …
     goto Done;
+  }
   //
+  //
   // Set RSA Key Components.
   // NOTE: Only N and E are needed to be set as RSA public key for signature verification.
 …
   PERF_START (NULL, "RsaVerify", "DXE", 0);
   CryptoStatus = RsaPkcs1Verify (
                    Rsa,
                    Digest,
                    SHA256_DIGEST_SIZE,
                    CertBlockRsa2048Sha256->Signature,
+                   Rsa,
+                   Digest,
+                   SHA256_DIGEST_SIZE,
+                   CertBlockRsa2048Sha256->Signature,
                    sizeof (CertBlockRsa2048Sha256->Signature)
                    );

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeRsa2048Sha256GuidedSectionExtractLib/DxeRsa2048Sha256GuidedSectionExtractLib.inf

-              r58464
+              r58466
 ## @file
 #  This library doesn't produce any library class. The constructor function uses
+#  This library doesn't produce any library class. The constructor function uses
 #  ExtractGuidedSectionLib service to register an RSA 2048 SHA 256 guided section handler
 #  that parses RSA 2048 SHA 256 encapsulation section and extracts raw data.
 …
   CryptoPkg/CryptoPkg.dec
   SecurityPkg/SecurityPkg.dec
 [LibraryClasses]
   ExtractGuidedSectionLib
 …
   PerformanceLib
 [PcdEx]
+[PcdEx]
   gEfiSecurityPkgTokenSpaceGuid.PcdRsa2048Sha256PublicKeyBuffer    ## SOMETIMES_CONSUMES
 [Protocols]
   gEfiSecurityPolicyProtocolGuid                   ## SOMETIMES_CONSUMES (Set platform override AUTH status if exist)
 [Guids]
   gEfiCertTypeRsa2048Sha256Guid  ## PRODUCES       ## UNDEFINED  # Specifies RSA 2048 SHA 256 authentication algorithm.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTcgPhysicalPresenceLib/DxeTcgPhysicalPresenceLib.c

-              r58459
+              r58466
 Copyright (c) 2006 - 2015, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   Get TPM physical presence permanent flags.
   @param[in]  TcgProtocol   EFI TCG Protocol instance.
   @param[out] LifetimeLock  physicalPresenceLifetimeLock permanent flag.
+  @param[in]  TcgProtocol   EFI TCG Protocol instance.
+  @param[out] LifetimeLock  physicalPresenceLifetimeLock permanent flag.
   @param[out] CmdEnable     physicalPresenceCMDEnable permanent flag.
   @retval EFI_SUCCESS       Flags were returns successfully.
   @retval other             Failed to locate EFI TCG Protocol.
 …
   TPM_PERMANENT_FLAGS               *TpmPermanentFlags;
   UINT8                             RecvBuffer[40];
   //
   // Fill request header
 …
   TpmRsp = (TPM_RSP_COMMAND_HDR*)RecvBuffer;
   TpmRqu = (TPM_RQU_COMMAND_HDR*)SendBuffer;
   TpmRqu->tag       = SwapBytes16 (TPM_TAG_RQU_COMMAND);
   TpmRqu->paramSize = SwapBytes32 (sizeof (SendBuffer));
 …
   WriteUnaligned32 (SendBufPtr++, SwapBytes32 (TPM_CAP_FLAG));
   WriteUnaligned32 (SendBufPtr++, SwapBytes32 (sizeof (TPM_CAP_FLAG_PERMANENT)));
   WriteUnaligned32 (SendBufPtr, SwapBytes32 (TPM_CAP_FLAG_PERMANENT));
+  WriteUnaligned32 (SendBufPtr, SwapBytes32 (TPM_CAP_FLAG_PERMANENT));
   Status = TcgProtocol->PassThroughToTpm (
                           TcgProtocol,
 …
   ASSERT (TpmRsp->tag == SwapBytes16 (TPM_TAG_RSP_COMMAND));
   ASSERT (TpmRsp->returnCode == 0);
   TpmPermanentFlags = (TPM_PERMANENT_FLAGS *)&RecvBuffer[sizeof (TPM_RSP_COMMAND_HDR) + sizeof (UINT32)];
   if (LifetimeLock != NULL) {
     *LifetimeLock = TpmPermanentFlags->physicalPresenceLifetimeLock;
 …
   Issue TSC_PhysicalPresence command to TPM.
   @param[in] TcgProtocol          EFI TCG Protocol instance.
   @param[in] PhysicalPresence     The state to set the TPM's Physical Presence flags.
+  @param[in] TcgProtocol          EFI TCG Protocol instance.
+  @param[in] PhysicalPresence     The state to set the TPM's Physical Presence flags.
   @retval EFI_SUCCESS             TPM executed the command successfully.
   @retval EFI_SECURITY_VIOLATION  TPM returned error when executing the command.
 …
   TpmRqu->paramSize = SwapBytes32 (sizeof (Buffer));
   TpmRqu->ordinal   = SwapBytes32 (TSC_ORD_PhysicalPresence);
   WriteUnaligned16 (TpmPp, (TPM_PHYSICAL_PRESENCE) SwapBytes16 (PhysicalPresence));
+  WriteUnaligned16 (TpmPp, (TPM_PHYSICAL_PRESENCE) SwapBytes16 (PhysicalPresence));
   Status = TcgProtocol->PassThroughToTpm (
 …
     return EFI_SECURITY_VIOLATION;
+  }
   return Status;
+}
 …
   Issue a TPM command for which no additional output data will be returned.
   @param[in] TcgProtocol              EFI TCG Protocol instance.
   @param[in] Ordinal                  TPM command code.
   @param[in] AdditionalParameterSize  Additional parameter size.
   @param[in] AdditionalParameters     Pointer to the Additional paramaters.
   @retval TCG_PP_OPERATION_RESPONSE_BIOS_FAILURE  Error occurred during sending command to TPM or
+  @param[in] TcgProtocol              EFI TCG Protocol instance.
+  @param[in] Ordinal                  TPM command code.
+  @param[in] AdditionalParameterSize  Additional parameter size.
+  @param[in] AdditionalParameters     Pointer to the Additional paramaters.
+  @retval TCG_PP_OPERATION_RESPONSE_BIOS_FAILURE  Error occurred during sending command to TPM or
                                                   receiving response from TPM.
   @retval Others                                  Return code from the TPM device after command execution.
 …
   @param[in]      CommandCode         Physical presence operation value.
   @param[in, out] PpiFlags            The physical presence interface flags.
   @retval TCG_PP_OPERATION_RESPONSE_BIOS_FAILURE  Unknown physical presence operation.
   @retval TCG_PP_OPERATION_RESPONSE_BIOS_FAILURE  Error occurred during sending command to TPM or
+  @retval TCG_PP_OPERATION_RESPONSE_BIOS_FAILURE  Error occurred during sending command to TPM or
                                                   receiving response from TPM.
   @retval Others                                  Return code from the TPM device after command execution.
 …
       PpiFlags->PPFlags |= TCG_BIOS_TPM_MANAGEMENT_FLAG_NO_PPI_MAINTENANCE;
       return 0;
     case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_CLEAR:
       //
 …
         TpmResponse = ExecutePhysicalPresence (TcgProtocol, PHYSICAL_PRESENCE_CLEAR_ENABLE_ACTIVATE, PpiFlags);
         PpiFlags->PPFlags &= ~TCG_VENDOR_LIB_FLAG_RESET_TRACK;
+      }
+      }
       return TpmResponse;
 …
   UINTN                             Index;
   InputKey = 0;
+  InputKey = 0;
   do {
     Status = gST->ConIn->ReadKeyStroke (gST->ConIn, &Key);
 …
     return TRUE;
+  }
   return FALSE;
+}
 …
 /**
   The constructor function register UNI strings into imageHandle.
   It will ASSERT() if that operation fails and it will always return EFI_SUCCESS.
+  It will ASSERT() if that operation fails and it will always return EFI_SUCCESS.
   @param  ImageHandle   The firmware allocated handle for the EFI image.
   @param  SystemTable   A pointer to the EFI System Table.
   @retval EFI_SUCCESS   The constructor successfully added string package.
   @retval Other value   The constructor can't add string package.
 …
   CHAR16                            *ConfirmText;
   CHAR16                            *TmpStr1;
   CHAR16                            *TmpStr2;
+  CHAR16                            *TmpStr2;
   UINTN                             BufSize;
   BOOLEAN                           CautionKey;
   UINT16                            Index;
   CHAR16                            DstStr[81];
   TmpStr2     = NULL;
   CautionKey  = FALSE;
 …
     case PHYSICAL_PRESENCE_ENABLE:
       TmpStr2 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_ENABLE));
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
       UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
 …
     case PHYSICAL_PRESENCE_DISABLE:
       TmpStr2 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_DISABLE));
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
       UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
 …
       FreePool (TmpStr1);
       break;
     case PHYSICAL_PRESENCE_ACTIVATE:
       TmpStr2 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_ACTIVATE));
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
       UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
 …
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_ACCEPT_KEY));
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       FreePool (TmpStr1);
+      FreePool (TmpStr1);
       break;
 …
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       StrnCat (ConfirmText, L" \n\n", (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       FreePool (TmpStr1);
+      FreePool (TmpStr1);
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_CAUTION_KEY));
 …
     case PHYSICAL_PRESENCE_DEACTIVATE_DISABLE:
       TmpStr2 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_DEACTIVATE_DISABLE));
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
+      TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
       UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
       FreePool (TmpStr1);
 …
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       FreePool (TmpStr1);
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_WARNING));
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
 …
     case PHYSICAL_PRESENCE_SET_OWNER_INSTALL_TRUE:
       TmpStr2 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_ALLOW_TAKE_OWNERSHIP));
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
+      TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
       UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
       FreePool (TmpStr1);
 …
     case PHYSICAL_PRESENCE_SET_OWNER_INSTALL_FALSE:
       TmpStr2 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_DISALLOW_TAKE_OWNERSHIP));
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
+      TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
       UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
       FreePool (TmpStr1);
 …
     case PHYSICAL_PRESENCE_DEACTIVATE_DISABLE_OWNER_FALSE:
       TmpStr2 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_TURN_OFF));
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
+      TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_HEAD_STR));
       UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
       FreePool (TmpStr1);
 …
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       FreePool (TmpStr1);
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_WARNING));
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
 …
       CautionKey = TRUE;
       TmpStr2 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_UNOWNED_FIELD_UPGRADE));
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_UPGRADE_HEAD_STR));
       UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
       FreePool (TmpStr1);
+      TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_UPGRADE_HEAD_STR));
+      UnicodeSPrint (ConfirmText, BufSize, TmpStr1, TmpStr2);
+      FreePool (TmpStr1);
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_WARNING_MAINTAIN));
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
 …
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       StrnCat (ConfirmText, L" \n\n", (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       FreePool (TmpStr1);
+      FreePool (TmpStr1);
       TmpStr1 = PhysicalPresenceGetStringById (STRING_TOKEN (TPM_CAUTION_KEY));
 …
   DstStr[80] = L'\0';
   for (Index = 0; Index < StrLen (ConfirmText); Index += 80) {
     StrnCpy(DstStr, ConfirmText + Index, 80);
     Print (DstStr);
+  }
+    StrnCpy(DstStr, ConfirmText + Index, 80);
+    Print (DstStr);
+  }
   FreePool (TmpStr1);
   FreePool (TmpStr2);
 …
+  }
   return FALSE;
+  return FALSE;
+}
 /**
   Check if there is a valid physical presence command request. Also updates parameter value
+  Check if there is a valid physical presence command request. Also updates parameter value
   to whether the requested physical presence command already confirmed by user
    @param[in]  TcgPpData           EFI TCG Physical Presence request data.
    @param[in]  Flags               The physical presence interface flags.
+   @param[in]  Flags               The physical presence interface flags.
    @param[out] RequestConfirmed    If the physical presence operation command required user confirm from UI.
                                    True, it indicates the command doesn't require user confirm, or already confirmed
+                                   True, it indicates the command doesn't require user confirm, or already confirmed
                                    in last boot cycle by user.
                                    False, it indicates the command need user confirm from UI.
 …
   its data structure to be valid value.
   @param[in] TcgProtocol          EFI TCG Protocol instance.
+  @param[in] TcgProtocol          EFI TCG Protocol instance.
   @param[in] TcgPpData            Point to the physical presence NV variable.
   @param[in] Flags                The physical presence interface flags.
 …
     if (!RequestConfirmed) {
       //
       // Print confirm text and wait for approval.
+      // Print confirm text and wait for approval.
       //
       RequestConfirmed = UserConfirm (TcgPpData->PPRequest);
 …
                       sizeof (EFI_PHYSICAL_PRESENCE_FLAGS),
                       &NewFlags
                       );
+                      );
     if (EFI_ERROR (Status)) {
       return;
+    }
+  }
   //
   // Clear request
 …
   if ((NewFlags.PPFlags & TCG_VENDOR_LIB_FLAG_RESET_TRACK) == 0) {
     TcgPpData->LastPPRequest = TcgPpData->PPRequest;
     TcgPpData->PPRequest = PHYSICAL_PRESENCE_NO_ACTION;
+    TcgPpData->PPRequest = PHYSICAL_PRESENCE_NO_ACTION;
+  }
 …
     case PHYSICAL_PRESENCE_CLEAR_ENABLE_ACTIVATE:
     case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_CLEAR:
     case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_CLEAR_ENABLE_ACTIVATE:
+    case PHYSICAL_PRESENCE_ENABLE_ACTIVATE_CLEAR_ENABLE_ACTIVATE:
       break;
     default:
 …
   Print (L"Rebooting system to make TPM settings in effect\n");
   gRT->ResetSystem (EfiResetCold, EFI_SUCCESS, 0, NULL);
   ASSERT (FALSE);
+  ASSERT (FALSE);
+}
 …
   Check and execute the pending TPM request and Lock TPM.
   The TPM request may come from OS or BIOS. This API will display request information and wait
+  The TPM request may come from OS or BIOS. This API will display request information and wait
   for user confirmation if TPM request exists. The TPM request will be sent to TPM device after
   the TPM request is confirmed, and one or more reset may be required to make TPM request to
+  the TPM request is confirmed, and one or more reset may be required to make TPM request to
   take effect. At last, it will lock TPM to prevent TPM state change by malware.
   This API should be invoked after console in and console out are all ready as they are required
   to display request information and get user input to confirm the request. This API should also
+  to display request information and get user input to confirm the request. This API should also
   be invoked as early as possible as TPM is locked in this function.
 **/
 VOID
 …
   EDKII_VARIABLE_LOCK_PROTOCOL      *VariableLockProtocol;
   EFI_PHYSICAL_PRESENCE_FLAGS       PpiFlags;
   Status = gBS->LocateProtocol (&gEfiTcgProtocolGuid, NULL, (VOID **)&TcgProtocol);
   if (EFI_ERROR (Status)) {
 …
   //
   // This flags variable controls whether physical presence is required for TPM command.
+  // This flags variable controls whether physical presence is required for TPM command.
   // It should be protected from malicious software. We set it as read-only variable here.
   //
 …
+    }
+  }
   //
   // Initialize physical presence variable.
 …
     return ;
+  }
   if (!CmdEnable) {
     if (LifetimeLock) {
 …
+    }
+  }
   //
   // Set operator physical presence flags
 …
   //
   // Execute pending TPM request.
   //
+  //
   ExecutePendingTpmRequest (TcgProtocol, &TcgPpData, PpiFlags);
   DEBUG ((EFI_D_INFO, "[TPM] PPResponse = %x\n", TcgPpData.PPResponse));
 …
   The TPM request may come from OS. This API will check if TPM request exists and need user
   input to confirmation.
   @retval    TRUE        TPM needs input to confirm user physical presence.
   @retval    FALSE       TPM doesn't need input to confirm user physical presence.
 …
   EFI_TCG_PROTOCOL             *TcgProtocol;
   EFI_PHYSICAL_PRESENCE_FLAGS  PpiFlags;
   Status = gBS->LocateProtocol (&gEfiTcgProtocolGuid, NULL, (VOID **)&TcgProtocol);
   if (EFI_ERROR (Status)) {
 …
     return FALSE;
+  }
   if (TcgPpData.PPRequest == PHYSICAL_PRESENCE_NO_ACTION) {
     //

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTcgPhysicalPresenceLib/DxeTcgPhysicalPresenceLib.inf

-              r58459
+              r58466
+#
 #  This library will check and execute TPM 1.2 request from OS or BIOS. The request may
 #  ask for user confirmation before execution. This Library will also lock TPM physical
+#  ask for user confirmation before execution. This Library will also lock TPM physical
 #  presence at last.
+#
 …
   MODULE_TYPE                    = DXE_DRIVER
   VERSION_STRING                 = 1.0
   LIBRARY_CLASS                  = TcgPhysicalPresenceLib|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER UEFI_APPLICATION UEFI_DRIVER
+  LIBRARY_CLASS                  = TcgPhysicalPresenceLib|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER UEFI_APPLICATION UEFI_DRIVER
   CONSTRUCTOR                    = TcgPhysicalPresenceLibConstructor
+#
 # The following information is for reference only and not required by the build tools.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTcgPhysicalPresenceLib/PhysicalPresenceStrings.uni

Property svn:mime-type changed from application/octet-stream to text/plain;encoding=UTF-16LE

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTpm2MeasureBootLib/DxeTpm2MeasureBootLib.c

-              r58464
+              r58466
 Copyright (c) 2013 - 2015, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   @param  FileHandle      Pointer to the file handle to read the PE/COFF image.
   @param  FileOffset      Offset into the PE/COFF image to begin the read operation.
   @param  ReadSize        On input, the size in bytes of the requested read operation.
+  @param  ReadSize        On input, the size in bytes of the requested read operation.
                           On output, the number of bytes actually read.
   @param  Buffer          Output buffer that contains the data read from the PE/COFF image.
   @retval EFI_SUCCESS     The specified portion of the PE/COFF image was read and the size
+  @retval EFI_SUCCESS     The specified portion of the PE/COFF image was read and the size
 **/
 EFI_STATUS
 …
   //
   // Read the EFI Partition Table Header
   //
+  //
   PrimaryHeader = (EFI_PARTITION_TABLE_HEADER *) AllocatePool (BlockIo->Media->BlockSize);
   if (PrimaryHeader == NULL) {
     return EFI_OUT_OF_RESOURCES;
+  }
+  }
   Status = DiskIo->ReadDisk (
                      DiskIo,
 …
     FreePool (PrimaryHeader);
     return EFI_DEVICE_ERROR;
+  }
+  }
   //
   // Read the partition entry.
 …
     return EFI_DEVICE_ERROR;
+  }
   //
   // Count the valid partition
 …
   for (Index = 0; Index < PrimaryHeader->NumberOfPartitionEntries; Index++) {
     if (!CompareGuid (&PartitionEntry->PartitionTypeGUID, &mTrEEZeroGuid)) {
       NumberOfPartition++;
+      NumberOfPartition++;
+    }
     PartitionEntry = (EFI_PARTITION_ENTRY *)((UINT8 *)PartitionEntry + PrimaryHeader->SizeOfPartitionEntry);
 …
   //
   // Prepare Data for Measurement
   //
   EventSize = (UINT32)(sizeof (EFI_GPT_DATA) - sizeof (GptData->Partitions)
+  //
+  EventSize = (UINT32)(sizeof (EFI_GPT_DATA) - sizeof (GptData->Partitions)
                         + NumberOfPartition * PrimaryHeader->SizeOfPartitionEntry);
   TreeEvent = (TrEE_EVENT *) AllocateZeroPool (EventSize + sizeof (TrEE_EVENT) - sizeof(TreeEvent->Event));
 …
   TreeEvent->Header.PCRIndex      = 5;
   TreeEvent->Header.EventType     = EV_EFI_GPT_EVENT;
   GptData = (EFI_GPT_DATA *) TreeEvent->Event;
+  GptData = (EFI_GPT_DATA *) TreeEvent->Event;
   //
   // Copy the EFI_PARTITION_TABLE_HEADER and NumberOfPartition
   //
+  //
   CopyMem ((UINT8 *)GptData, (UINT8*)PrimaryHeader, sizeof (EFI_PARTITION_TABLE_HEADER));
   GptData->NumberOfPartitions = NumberOfPartition;
 …
   @retval EFI_SUCCESS            Successfully measure image.
   @retval EFI_OUT_OF_RESOURCES   No enough resource to measure image.
   @retval EFI_UNSUPPORTED        ImageType is unsupported or PE image is mal-format.
+  @retval EFI_UNSUPPORTED        ImageType is unsupported or PE image is mal-format.
   @retval other error value
 …
 /**
   The security handler is used to abstract platform-specific policy
   from the DXE core response to an attempt to use a file that returns a
   given status for the authentication check from the section extraction protocol.
   The possible responses in a given SAP implementation may include locking
   flash upon failure to authenticate, attestation logging for all signed drivers,
   and other exception operations.  The File parameter allows for possible logging
+  The security handler is used to abstract platform-specific policy
+  from the DXE core response to an attempt to use a file that returns a
+  given status for the authentication check from the section extraction protocol.
+  The possible responses in a given SAP implementation may include locking
+  flash upon failure to authenticate, attestation logging for all signed drivers,
+  and other exception operations.  The File parameter allows for possible logging
   within the SAP of the driver.
   If File is NULL, then EFI_INVALID_PARAMETER is returned.
   If the file specified by File with an authentication status specified by
+  If the file specified by File with an authentication status specified by
   AuthenticationStatus is safe for the DXE Core to use, then EFI_SUCCESS is returned.
   If the file specified by File with an authentication status specified by
   AuthenticationStatus is not safe for the DXE Core to use under any circumstances,
+  If the file specified by File with an authentication status specified by
+  AuthenticationStatus is not safe for the DXE Core to use under any circumstances,
   then EFI_ACCESS_DENIED is returned.
   If the file specified by File with an authentication status specified by
   AuthenticationStatus is not safe for the DXE Core to use right now, but it
   might be possible to use it at a future time, then EFI_SECURITY_VIOLATION is
+  If the file specified by File with an authentication status specified by
+  AuthenticationStatus is not safe for the DXE Core to use right now, but it
+  might be possible to use it at a future time, then EFI_SECURITY_VIOLATION is
   returned.
 …
   ProtocolCapability.Size = (UINT8) sizeof (ProtocolCapability);
   Status = TreeProtocol->GetCapability (
                            TreeProtocol,
+                           TreeProtocol,
                            &ProtocolCapability
                            );
 …
   //
   OrigDevicePathNode = DuplicateDevicePath (File);
   //
   // 1. Check whether this device path support BlockIo protocol.
 …
         //
         // Check whether it is a gpt partition or not
         //
         if (((HARDDRIVE_DEVICE_PATH *) DevicePathNode)->MBRType == MBR_TYPE_EFI_PARTITION_TABLE_HEADER &&
+        //
+        if (((HARDDRIVE_DEVICE_PATH *) DevicePathNode)->MBRType == MBR_TYPE_EFI_PARTITION_TABLE_HEADER &&
             ((HARDDRIVE_DEVICE_PATH *) DevicePathNode)->SignatureType == SIGNATURE_TYPE_GUID) {
 …
+    }
+  }
   //
   // 2. Measure PE image.
 …
       do {
         Status = gBS->HandleProtocol(
                         TempHandle,
+                        TempHandle,
                         &gEfiFirmwareVolumeBlockProtocolGuid,
                         (VOID**)&FvbProtocol
 …
     goto Finish;
+  }
   //
   // Measure only application if Application flag is set
   // Measure drivers and applications if Application flag is not set
   //
   if ((!ApplicationRequired) ||
         (ApplicationRequired && ImageContext.ImageType == EFI_IMAGE_SUBSYSTEM_EFI_APPLICATION)) {
+  if ((!ApplicationRequired) ||
+        (ApplicationRequired && ImageContext.ImageType == EFI_IMAGE_SUBSYSTEM_EFI_APPLICATION)) {
     //
     // Print the image path to be measured.
     //
+    //
     DEBUG_CODE_BEGIN ();
       CHAR16                            *ToText;
 …
     Status = TrEEMeasurePeImage (
                TreeProtocol,
                (EFI_PHYSICAL_ADDRESS) (UINTN) FileBuffer,
                FileSize,
                (UINTN) ImageContext.ImageAddress,
                ImageContext.ImageType,
+               (EFI_PHYSICAL_ADDRESS) (UINTN) FileBuffer,
+               FileSize,
+               (UINTN) ImageContext.ImageAddress,
+               ImageContext.ImageType,
                DevicePathNode
                );

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTpm2MeasureBootLib/DxeTpm2MeasureBootLib.inf

-              r58464
+              r58466
 #  Provides security service for TPM 2.0 measured boot
+#
 #  This library instance hooks LoadImage() API to measure every image that
+#  This library instance hooks LoadImage() API to measure every image that
 #  is not measured in PEI phase. And, it will also measure GPT partition.
+#
 #  Caution: This module requires additional review when modified.
 #  This library will have external input - PE/COFF image and GPT partition.
 #  This external input must be validated carefully to avoid security issues such
+#  This external input must be validated carefully to avoid security issues such
 #  as buffer overflow or integer overflow.
+#
 …
   MODULE_TYPE                    = DXE_DRIVER
   VERSION_STRING                 = 1.0
   LIBRARY_CLASS                  = NULL|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
+  LIBRARY_CLASS                  = NULL|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
   CONSTRUCTOR                    = DxeTpm2MeasureBootLibConstructor

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTpmMeasureBootLib/DxeTpmMeasureBootLib.c

-              r58459
+              r58466
 /** @file
   The library instance provides security service of TPM measure boot.
+  The library instance provides security service of TPM measure boot.
   Caution: This file requires additional review when modified.
 …
 Copyright (c) 2009 - 2015, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   @param  FileHandle      Pointer to the file handle to read the PE/COFF image.
   @param  FileOffset      Offset into the PE/COFF image to begin the read operation.
   @param  ReadSize        On input, the size in bytes of the requested read operation.
+  @param  ReadSize        On input, the size in bytes of the requested read operation.
                           On output, the number of bytes actually read.
   @param  Buffer          Output buffer that contains the data read from the PE/COFF image.
   @retval EFI_SUCCESS     The specified portion of the PE/COFF image was read and the size
+  @retval EFI_SUCCESS     The specified portion of the PE/COFF image was read and the size
 **/
 EFI_STATUS
 …
   //
   // Read the EFI Partition Table Header
   //
+  //
   PrimaryHeader = (EFI_PARTITION_TABLE_HEADER *) AllocatePool (BlockIo->Media->BlockSize);
   if (PrimaryHeader == NULL) {
     return EFI_OUT_OF_RESOURCES;
+  }
+  }
   Status = DiskIo->ReadDisk (
                      DiskIo,
 …
     FreePool (PrimaryHeader);
     return EFI_DEVICE_ERROR;
+  }
+  }
   //
   // Read the partition entry.
 …
     return EFI_DEVICE_ERROR;
+  }
   //
   // Count the valid partition
 …
   for (Index = 0; Index < PrimaryHeader->NumberOfPartitionEntries; Index++) {
     if (!CompareGuid (&PartitionEntry->PartitionTypeGUID, &mZeroGuid)) {
       NumberOfPartition++;
+      NumberOfPartition++;
+    }
     PartitionEntry = (EFI_PARTITION_ENTRY *)((UINT8 *)PartitionEntry + PrimaryHeader->SizeOfPartitionEntry);
 …
   //
   // Prepare Data for Measurement
   //
   EventSize = (UINT32)(sizeof (EFI_GPT_DATA) - sizeof (GptData->Partitions)
+  //
+  EventSize = (UINT32)(sizeof (EFI_GPT_DATA) - sizeof (GptData->Partitions)
                         + NumberOfPartition * PrimaryHeader->SizeOfPartitionEntry);
   TcgEvent = (TCG_PCR_EVENT *) AllocateZeroPool (EventSize + sizeof (TCG_PCR_EVENT_HDR));
 …
   TcgEvent->EventType  = EV_EFI_GPT_EVENT;
   TcgEvent->EventSize  = EventSize;
   GptData = (EFI_GPT_DATA *) TcgEvent->Event;
+  GptData = (EFI_GPT_DATA *) TcgEvent->Event;
   //
   // Copy the EFI_PARTITION_TABLE_HEADER and NumberOfPartition
   //
+  //
   CopyMem ((UINT8 *)GptData, (UINT8*)PrimaryHeader, sizeof (EFI_PARTITION_TABLE_HEADER));
   GptData->NumberOfPartitions = NumberOfPartition;
 …
   @retval EFI_SUCCESS            Successfully measure image.
   @retval EFI_OUT_OF_RESOURCES   No enough resource to measure image.
   @retval EFI_UNSUPPORTED        ImageType is unsupported or PE image is mal-format.
+  @retval EFI_UNSUPPORTED        ImageType is unsupported or PE image is mal-format.
   @retval other error value
 …
   if (Hdr.Pe32->FileHeader.Machine == IMAGE_FILE_MACHINE_IA64 && Hdr.Pe32->OptionalHeader.Magic == EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC) {
     //
     // NOTE: Some versions of Linux ELILO for Itanium have an incorrect magic value
     //       in the PE/COFF Header. If the MachineType is Itanium(IA64) and the
+    // NOTE: Some versions of Linux ELILO for Itanium have an incorrect magic value
+    //       in the PE/COFF Header. If the MachineType is Itanium(IA64) and the
     //       Magic value in the OptionalHeader is EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC
     //       then override the magic value to EFI_IMAGE_NT_OPTIONAL_HDR64_MAGIC
 …
     Magic = Hdr.Pe32->OptionalHeader.Magic;
+  }
   //
   // 3.  Calculate the distance from the base of the image header to the image checksum address.
 …
   if (!HashStatus) {
     goto Finish;
+  }
+  }
   //
 …
         goto Finish;
+      }
+    }
+    }
   } else {
     //
 …
       //
       // Use PE32+ offset
       //
+      //
       HashBase = (UINT8 *) &Hdr.Pe32Plus->OptionalHeader.CheckSum + sizeof (UINT32);
       HashSize = (UINTN) ((UINT8 *)(&Hdr.Pe32Plus->OptionalHeader.DataDirectory[EFI_IMAGE_DIRECTORY_ENTRY_SECURITY]) - HashBase);
 …
       HashSize = Hdr.Pe32Plus->OptionalHeader.SizeOfHeaders - (UINTN) (HashBase - ImageAddress);
+    }
     if (HashSize != 0) {
       HashStatus  = Sha1Update (Sha1Ctx, HashBase, HashSize);
 …
 /**
   The security handler is used to abstract platform-specific policy
   from the DXE core response to an attempt to use a file that returns a
   given status for the authentication check from the section extraction protocol.
   The possible responses in a given SAP implementation may include locking
   flash upon failure to authenticate, attestation logging for all signed drivers,
   and other exception operations.  The File parameter allows for possible logging
+  The security handler is used to abstract platform-specific policy
+  from the DXE core response to an attempt to use a file that returns a
+  given status for the authentication check from the section extraction protocol.
+  The possible responses in a given SAP implementation may include locking
+  flash upon failure to authenticate, attestation logging for all signed drivers,
+  and other exception operations.  The File parameter allows for possible logging
   within the SAP of the driver.
   If File is NULL, then EFI_INVALID_PARAMETER is returned.
   If the file specified by File with an authentication status specified by
+  If the file specified by File with an authentication status specified by
   AuthenticationStatus is safe for the DXE Core to use, then EFI_SUCCESS is returned.
   If the file specified by File with an authentication status specified by
   AuthenticationStatus is not safe for the DXE Core to use under any circumstances,
+  If the file specified by File with an authentication status specified by
+  AuthenticationStatus is not safe for the DXE Core to use under any circumstances,
   then EFI_ACCESS_DENIED is returned.
   If the file specified by File with an authentication status specified by
   AuthenticationStatus is not safe for the DXE Core to use right now, but it
   might be possible to use it at a future time, then EFI_SECURITY_VIOLATION is
+  If the file specified by File with an authentication status specified by
+  AuthenticationStatus is not safe for the DXE Core to use right now, but it
+  might be possible to use it at a future time, then EFI_SECURITY_VIOLATION is
   returned.
 …
   ProtocolCapability.Size = (UINT8) sizeof (ProtocolCapability);
   Status = TcgProtocol->StatusCheck (
              TcgProtocol,
+             TcgProtocol,
              &ProtocolCapability,
              &TCGFeatureFlags,
 …
   //
   OrigDevicePathNode = DuplicateDevicePath (File);
   //
   // 1. Check whether this device path support BlockIo protocol.
 …
         //
         // Check whether it is a gpt partition or not
         //
         if (((HARDDRIVE_DEVICE_PATH *) DevicePathNode)->MBRType == MBR_TYPE_EFI_PARTITION_TABLE_HEADER &&
+        //
+        if (((HARDDRIVE_DEVICE_PATH *) DevicePathNode)->MBRType == MBR_TYPE_EFI_PARTITION_TABLE_HEADER &&
             ((HARDDRIVE_DEVICE_PATH *) DevicePathNode)->SignatureType == SIGNATURE_TYPE_GUID) {
 …
+    }
+  }
   //
   // 2. Measure PE image.
 …
       do {
         Status = gBS->HandleProtocol(
                         TempHandle,
+                        TempHandle,
                         &gEfiFirmwareVolumeBlockProtocolGuid,
                         (VOID**)&FvbProtocol
 …
     goto Finish;
+  }
   //
   // Measure only application if Application flag is set
   // Measure drivers and applications if Application flag is not set
   //
   if ((!ApplicationRequired) ||
         (ApplicationRequired && ImageContext.ImageType == EFI_IMAGE_SUBSYSTEM_EFI_APPLICATION)) {
+  if ((!ApplicationRequired) ||
+        (ApplicationRequired && ImageContext.ImageType == EFI_IMAGE_SUBSYSTEM_EFI_APPLICATION)) {
     //
     // Print the image path to be measured.
     //
+    //
     DEBUG_CODE_BEGIN ();
       CHAR16                            *ToText;
 …
     Status = TcgMeasurePeImage (
                TcgProtocol,
                (EFI_PHYSICAL_ADDRESS) (UINTN) FileBuffer,
                FileSize,
                (UINTN) ImageContext.ImageAddress,
                ImageContext.ImageType,
+               (EFI_PHYSICAL_ADDRESS) (UINTN) FileBuffer,
+               FileSize,
+               (UINTN) ImageContext.ImageAddress,
+               ImageContext.ImageType,
                DevicePathNode
                );

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTpmMeasureBootLib/DxeTpmMeasureBootLib.inf

-              r58459
+              r58466
 #  Provides security service for TPM 1.2 measured boot
+#
 #  This library instance hooks LoadImage() API to measure every image that
+#  This library instance hooks LoadImage() API to measure every image that
 #  is not measured in PEI phase. And, it will also measure GPT partition.
+#
 #  Caution: This module requires additional review when modified.
 #  This library will have external input - PE/COFF image and GPT partition.
 #  This external input must be validated carefully to avoid security issues such
+#  This external input must be validated carefully to avoid security issues such
 #  as buffer overflow or integer overflow.
+#
 …
   MODULE_TYPE                    = DXE_DRIVER
   VERSION_STRING                 = 1.0
   LIBRARY_CLASS                  = NULL|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
+  LIBRARY_CLASS                  = NULL|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
   CONSTRUCTOR                    = DxeTpmMeasureBootLibConstructor

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTpmMeasurementLib/DxeTpmMeasurementLib.c

r58464	r58466
172	172	**/
173	173	EFI_STATUS
174		EFIAPI
	174	EFIAPI
175	175	TpmMeasureAndLogData (
176	176	IN UINT32 PcrIndex,

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTpmMeasurementLib/DxeTpmMeasurementLib.inf

-              r58464
+              r58466
 ## @file
 #  Provides TPM measurement functions for TPM1.2 and TPM 2.0
+#
 #  This library provides TpmMeasureAndLogData() to to measure and log data, and
+#
+#  This library provides TpmMeasureAndLogData() to to measure and log data, and
 #  extend the measurement result into a specific PCR.
+#
 …
   MODULE_TYPE                    = UEFI_DRIVER
   VERSION_STRING                 = 1.0
   LIBRARY_CLASS                  = TpmMeasurementLib|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
+  LIBRARY_CLASS                  = TpmMeasurementLib|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
   MODULE_UNI_FILE                = DxeTpmMeasurementLib.uni

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTrEEPhysicalPresenceLib/DxeTrEEPhysicalPresenceLib.c

-              r58464
+              r58466
 Copyright (c) 2013 - 2015, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   @param[in]      CommandCode         Physical presence operation value.
   @param[in, out] PpiFlags            The physical presence interface flags.
   @retval TREE_PP_OPERATION_RESPONSE_BIOS_FAILURE  Unknown physical presence operation.
   @retval TREE_PP_OPERATION_RESPONSE_BIOS_FAILURE  Error occurred during sending command to TPM or
+  @retval TREE_PP_OPERATION_RESPONSE_BIOS_FAILURE  Error occurred during sending command to TPM or
                                                    receiving response from TPM.
   @retval Others                                   Return code from the TPM device after command execution.
 …
   EFI_INPUT_KEY                     Key;
   UINT16                            InputKey;
   InputKey = 0;
+  InputKey = 0;
   do {
     Status = gBS->CheckEvent (gST->ConIn->WaitForKey);
 …
         InputKey = Key.ScanCode;
+      }
+    }
+    }
   } while (InputKey == 0);
 …
     return TRUE;
+  }
   return FALSE;
+}
 …
 /**
   The constructor function register UNI strings into imageHandle.
   It will ASSERT() if that operation fails and it will always return EFI_SUCCESS.
+  It will ASSERT() if that operation fails and it will always return EFI_SUCCESS.
   @param  ImageHandle   The firmware allocated handle for the EFI image.
   @param  SystemTable   A pointer to the EFI System Table.
   @retval EFI_SUCCESS   The constructor successfully added string package.
   @retval Other value   The constructor can't add string package.
 …
   CHAR16                            *ConfirmText;
   CHAR16                            *TmpStr1;
   CHAR16                            *TmpStr2;
+  CHAR16                            *TmpStr2;
   UINTN                             BufSize;
   BOOLEAN                           CautionKey;
   UINT16                            Index;
   CHAR16                            DstStr[81];
   TmpStr2     = NULL;
   CautionKey  = FALSE;
 …
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       StrnCat (ConfirmText, L" \n\n", (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       FreePool (TmpStr1);
+      FreePool (TmpStr1);
       TmpStr1 = TrEEPhysicalPresenceGetStringById (STRING_TOKEN (TPM_CAUTION_KEY));
 …
       StrnCat (ConfirmText, TmpStr1, (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       StrnCat (ConfirmText, L" \n\n", (BufSize / sizeof (CHAR16)) - StrLen (ConfirmText) - 1);
       FreePool (TmpStr1);
+      FreePool (TmpStr1);
       TmpStr1 = TrEEPhysicalPresenceGetStringById (STRING_TOKEN (TPM_CAUTION_KEY));
 …
   DstStr[80] = L'\0';
   for (Index = 0; Index < StrLen (ConfirmText); Index += 80) {
     StrnCpy(DstStr, ConfirmText + Index, 80);
     Print (DstStr);
+  }
+    StrnCpy(DstStr, ConfirmText + Index, 80);
+    Print (DstStr);
+  }
   FreePool (TmpStr1);
   FreePool (TmpStr2);
 …
+  }
   return FALSE;
+}
 /**
   Check if there is a valid physical presence command request. Also updates parameter value
+  return FALSE;
+}
+/**
+  Check if there is a valid physical presence command request. Also updates parameter value
   to whether the requested physical presence command already confirmed by user
    @param[in]  TcgPpData                 EFI TrEE Physical Presence request data.
+   @param[in]  TcgPpData                 EFI TrEE Physical Presence request data.
    @param[in]  Flags                     The physical presence interface flags.
    @param[out] RequestConfirmed            If the physical presence operation command required user confirm from UI.
                                              True, it indicates the command doesn't require user confirm, or already confirmed
+                                             True, it indicates the command doesn't require user confirm, or already confirmed
                                                    in last boot cycle by user.
                                              False, it indicates the command need user confirm from UI.
 …
     if (!RequestConfirmed) {
       //
       // Print confirm text and wait for approval.
+      // Print confirm text and wait for approval.
       //
       RequestConfirmed = TrEEUserConfirm (TcgPpData->PPRequest
 …
     NewFlags = Flags;
     if (RequestConfirmed) {
       TcgPpData->PPResponse = TrEEExecutePhysicalPresence (PlatformAuth, TcgPpData->PPRequest,
+      TcgPpData->PPResponse = TrEEExecutePhysicalPresence (PlatformAuth, TcgPpData->PPRequest,
                                                            &NewFlags);
+    }
 …
                       sizeof (EFI_TREE_PHYSICAL_PRESENCE_FLAGS),
                       &NewFlags
                       );
+                      );
+  }
 …
   if ((NewFlags.PPFlags & TREE_VENDOR_LIB_FLAG_RESET_TRACK) == 0) {
     TcgPpData->LastPPRequest = TcgPpData->PPRequest;
     TcgPpData->PPRequest = TREE_PHYSICAL_PRESENCE_NO_ACTION;
+    TcgPpData->PPRequest = TREE_PHYSICAL_PRESENCE_NO_ACTION;
+  }
 …
   Print (L"Rebooting system to make TPM2 settings in effect\n");
   gRT->ResetSystem (EfiResetCold, EFI_SUCCESS, 0, NULL);
   ASSERT (FALSE);
+  ASSERT (FALSE);
+}
 …
   Check and execute the pending TPM request.
   The TPM request may come from OS or BIOS. This API will display request information and wait
+  The TPM request may come from OS or BIOS. This API will display request information and wait
   for user confirmation if TPM request exists. The TPM request will be sent to TPM device after
   the TPM request is confirmed, and one or more reset may be required to make TPM request to
+  the TPM request is confirmed, and one or more reset may be required to make TPM request to
   take effect.
   This API should be invoked after console in and console out are all ready as they are required
   to display request information and get user input to confirm the request.
+  to display request information and get user input to confirm the request.
   @param[in]  PlatformAuth                   platform auth value. NULL means no platform auth change.
 …
   //
   // This flags variable controls whether physical presence is required for TPM command.
+  // This flags variable controls whether physical presence is required for TPM command.
   // It should be protected from malicious software. We set it as read-only variable here.
   //
 …
+    }
+  }
   //
   // Initialize physical presence variable.
 …
   //
   // Execute pending TPM request.
   //
+  //
   TrEEExecutePendingTpmRequest (PlatformAuth, &TcgPpData, PpiFlags);
   DEBUG ((EFI_D_INFO, "[TPM2] PPResponse = %x (LastPPRequest=%x, Flags=%x)\n", TcgPpData.PPResponse, TcgPpData.LastPPRequest, PpiFlags.PPFlags));
 …
   The TPM request may come from OS. This API will check if TPM request exists and need user
   input to confirmation.
   @retval    TRUE        TPM needs input to confirm user physical presence.
   @retval    FALSE       TPM doesn't need input to confirm user physical presence.
 …
     return FALSE;
+  }
   if (TcgPpData.PPRequest == TREE_PHYSICAL_PRESENCE_NO_ACTION) {
     //

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/DxeTrEEPhysicalPresenceLib/DxeTrEEPhysicalPresenceLib.inf

-              r58464
+              r58466
   MODULE_TYPE                    = DXE_DRIVER
   VERSION_STRING                 = 1.0
   LIBRARY_CLASS                  = TrEEPhysicalPresenceLib|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER UEFI_APPLICATION UEFI_DRIVER
+  LIBRARY_CLASS                  = TrEEPhysicalPresenceLib|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER UEFI_APPLICATION UEFI_DRIVER
   CONSTRUCTOR                    = TrEEPhysicalPresenceLibConstructor
+#
 # The following information is for reference only and not required by the build tools.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/HashInstanceLibSha1/HashInstanceLibSha1.c

-              r58464
+              r58466
   FreePool (Sha1Ctx);
   Tpm2SetSha1ToDigestList (DigestList, Digest);
 …
 /**
   The function register SHA1 instance.
   @retval EFI_SUCCESS   SHA1 instance is registered, or system dose not surpport registr SHA1 instance
 **/

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/HashInstanceLibSha256/HashInstanceLibSha256.c

-              r58464
+              r58466
   FreePool (Sha256Ctx);
   Tpm2SetSha256ToDigestList (DigestList, Digest);
 …
 /**
   The function register SHA256 instance.
   @retval EFI_SUCCESS   SHA256 instance is registered, or system dose not surpport registr SHA256 instance
 **/

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/HashLibBaseCryptoRouter/HashLibBaseCryptoRouterDxe.c

r58464	r58466
217	217	CopyMem (&mHashInterface[mHashInterfaceCount], HashInterface, sizeof(*HashInterface));
218	218	mHashInterfaceCount ++;
219
	219
220	220	return EFI_SUCCESS;
221	221	}

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/HashLibBaseCryptoRouter/HashLibBaseCryptoRouterDxe.inf

r58464	r58466
3	3	#
4	4	# Ihis library is BaseCrypto router. It will redirect hash request to each individual
5		# hash handler registered, such as SHA1, SHA256. Platform can use PcdTpm2HashMask to
	5	# hash handler registered, such as SHA1, SHA256. Platform can use PcdTpm2HashMask to
6	6	# mask some hash engines.
7	7	#
…	…
23	23	MODULE_TYPE = DXE_DRIVER
24	24	VERSION_STRING = 1.0
25		LIBRARY_CLASS = HashLib\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
	25	LIBRARY_CLASS = HashLib\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
26	26
27	27	#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/HashLibBaseCryptoRouter/HashLibBaseCryptoRouterPei.c

r58464	r58466
284	284	CopyMem (&HashInterfaceHob->HashInterface[HashInterfaceHob->HashInterfaceCount], HashInterface, sizeof(*HashInterface));
285	285	HashInterfaceHob->HashInterfaceCount ++;
286
	286
287	287	return EFI_SUCCESS;
288	288	}

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/HashLibBaseCryptoRouter/HashLibBaseCryptoRouterPei.inf

r58464	r58466
3	3	#
4	4	# Ihis library is BaseCrypto router. It will redirect hash request to each individual
5		# hash handler registered, such as SHA1, SHA256. Platform can use PcdTpm2HashMask to
	5	# hash handler registered, such as SHA1, SHA256. Platform can use PcdTpm2HashMask to
6	6	# mask some hash engines.
7	7	#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/HashLibTpm2/HashLibTpm2.inf

r58464	r58466
2	2	# Provides hash service using TPM2 device
3	3	#
4		# This library uses TPM2 device to calculate hash. Platform can use PcdTpm2HashMask to
	4	# This library uses TPM2 device to calculate hash. Platform can use PcdTpm2HashMask to
5	5	# mask some hash calculation.
6	6	#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/PeiRsa2048Sha256GuidedSectionExtractLib/PeiRsa2048Sha256GuidedSectionExtractLib.c

-              r58464
+              r58466
 /** @file
   This library registers RSA 2048 SHA 256 guided section handler
+  This library registers RSA 2048 SHA 256 guided section handler
   to parse RSA 2048 SHA 256 encapsulation section and extract raw data.
   It uses the BaseCrypyLib based on OpenSSL to authenticate the signature.
 Copyright (c) 2013 - 2014, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
+http://opensource.org/licenses/bsd-license.php
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 **/
 …
   GetInfo gets raw data size and attribute of the input guided section.
   It first checks whether the input guid section is supported.
+  It first checks whether the input guid section is supported.
   If not, EFI_INVALID_PARAMETER will return.
 …
   @param SectionAttribute   The attribute of the input guided section.
   @retval EFI_SUCCESS            The size of destination buffer, the size of scratch buffer and
+  @retval EFI_SUCCESS            The size of destination buffer, the size of scratch buffer and
                                  the attribute of the input section are successull retrieved.
   @retval EFI_INVALID_PARAMETER  The GUID in InputSection does not match this instance guid.
 …
   Extraction handler tries to extract raw data from the input guided section.
   It also does authentication check for RSA 2048 SHA 256 signature in the input guided section.
   It first checks whether the input guid section is supported.
+  It first checks whether the input guid section is supported.
   If not, EFI_INVALID_PARAMETER will return.
 …
   VOID                            *HashContext;
   VOID                            *Rsa;
   HashContext = NULL;
   Rsa         = NULL;
   if (IS_SECTION2 (InputSection)) {
     //
 …
       return EFI_INVALID_PARAMETER;
+    }
     //
     // Get the RSA 2048 SHA 256 information.
 …
       return EFI_INVALID_PARAMETER;
+    }
     //
     // Get the RSA 2048 SHA 256 information.
 …
   //
   Status = EFI_SUCCESS;
   //
   // Fail if the HashType is not SHA 256
 …
     goto Done;
+  }
   //
   // Fail if the PublicKey is not one of the public keys in PcdRsa2048Sha256PublicKeyBuffer
 …
     goto Done;
+  }
   //
+  //
   // Set RSA Key Components.
   // NOTE: Only N and E are needed to be set as RSA public key for signature verification.
 …
   PERF_START (NULL, "RsaVerify", "PEI", 0);
   CryptoStatus = RsaPkcs1Verify (
                    Rsa,
                    Digest,
                    SHA256_DIGEST_SIZE,
                    CertBlockRsa2048Sha256->Signature,
+                   Rsa,
+                   Digest,
+                   SHA256_DIGEST_SIZE,
+                   CertBlockRsa2048Sha256->Signature,
                    sizeof (CertBlockRsa2048Sha256->Signature)
                    );

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/PeiRsa2048Sha256GuidedSectionExtractLib/PeiRsa2048Sha256GuidedSectionExtractLib.inf

-              r58464
+              r58466
 ## @file
 #  This library doesn't produce any library class. The constructor function uses
+#  This library doesn't produce any library class. The constructor function uses
 #  ExtractGuidedSectionLib service to register an RSA 2048 SHA 256 guided section handler
 #  that parses RSA 2048 SHA 256 encapsulation section and extracts raw data.
 …
   PerformanceLib
 [PcdEx]
+[PcdEx]
   gEfiSecurityPkgTokenSpaceGuid.PcdRsa2048Sha256PublicKeyBuffer      ## SOMETIMES_CONSUMES
 [Guids]
   gEfiCertTypeRsa2048Sha256Guid  ## PRODUCES     ## UNDEFINED  # Specifies RSA 2048 SHA 256 authentication algorithm.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/PlatformSecureLibNull/PlatformSecureLibNull.c

-              r48674
+              r58466
 /** @file
   NULL PlatformSecureLib instance does NOT really detect whether a physical present
+  NULL PlatformSecureLib instance does NOT really detect whether a physical present
   user exists but return TRUE directly. This instance can be used to verify security
   related features during platform enabling and development. It should be replaced
 …
 Copyright (c) 2011 - 2012, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   This function provides a platform-specific method to detect whether the platform
   is operating by a physically present user.
+  is operating by a physically present user.
   Programmatic changing of platform security policy (such as disable Secure Boot,
 …
   NOTE THAT: This function cannot depend on any EFI Variable Service since they are
   not available when this function is called in AuthenticateVariable driver.
   @retval  TRUE       The platform is operated by a physically present user.
   @retval  FALSE      The platform is NOT operated by a physically present user.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/PlatformSecureLibNull/PlatformSecureLibNull.inf

r58459	r58466
2	2	# NULL platform secure library instance that alway returns TRUE for a user physical present
3	3	#
4		# NULL PlatformSecureLib instance does NOT really detect whether a physical present
	4	# NULL PlatformSecureLib instance does NOT really detect whether a physical present
5	5	# user exists but returns TRUE directly. This instance can be used to verify security
6	6	# related features during platform enabling and development. It should be replaced

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/TcgPpVendorLibNull/TcgPpVendorLibNull.c

-              r58464
+              r58466
 Copyright (c) 2015, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   This API should be invoked in BIOS boot phase to process pending request.
   Caution: This function may receive untrusted input.
   If OperationRequest < 128, then ASSERT().
 …
   This API should be invoked in BIOS boot phase to process pending request.
   Caution: This function may receive untrusted input.
 …
   Caution: This function may receive untrusted input.
   If OperationRequest < 128, then ASSERT().
 …
   Caution: This function may receive untrusted input.
   If OperationRequest < 128, then ASSERT().

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/TcgPpVendorLibNull/TcgPpVendorLibNull.inf

r58464	r58466
33	33	MdePkg/MdePkg.dec
34	34	SecurityPkg/SecurityPkg.dec
35
	35
36	36	[LibraryClasses]
37	37	DebugLib

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm12CommandLib/Tpm12NvStorage.c

-              r58464
+              r58466
 /**
   Send NV DefineSpace command to TPM1.2.
   @param PubInfo           The public parameters of the NV area.
   @param EncAuth           The encrypted AuthData, only valid if the attributes require subsequent authorization.
 …
 /**
   Send NV WriteValue command to TPM1.2.
   @param NvIndex           The index of the area to set.
   @param Offset            The offset into the NV Area.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm12DeviceLibDTpm/Tpm12DeviceLibDTpm.inf

-              r58464
+              r58466
 ## @file
 #  Provides TPM 1.2 TIS functions
+#
 #  This library implements TIS (TPM Interface Specification) functions which is
 #  used for every TPM 1.2 command. Choosing this library means platform uses and
+#
+#  This library implements TIS (TPM Interface Specification) functions which is
+#  used for every TPM 1.2 command. Choosing this library means platform uses and
 #  only uses TPM 1.2 device.
+#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm12DeviceLibDTpm/Tpm12Tis.c

-              r58464
+              r58466
 /** @file
   TIS (TPM Interface Specification) functions used by TPM1.2.
 Copyright (c) 2013 - 2015, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
 ///
 /// When this bit is 1, TPM is in the Ready state,
+/// When this bit is 1, TPM is in the Ready state,
 /// indicating it is ready to receive a new command.
 ///
 …
+{
   UINT8                             RegRead;
   RegRead = MmioRead8 ((UINTN)&TisReg->Access);
   return (BOOLEAN)(RegRead != (UINT8)-1);
 …
 /**
   Get BurstCount by reading the burstCount field of a TIS regiger
+  Get BurstCount by reading the burstCount field of a TIS regiger
   in the time of default TIS_TIMEOUT_D.
 …
 /**
   Set TPM chip to ready state by sending ready command TIS_PC_STS_READY
+  Set TPM chip to ready state by sending ready command TIS_PC_STS_READY
   to Status Register in time.
 …
 /**
   Get the control of TPM chip by sending requestUse command TIS_PC_ACC_RQUUSE
+  Get the control of TPM chip by sending requestUse command TIS_PC_ACC_RQUUSE
   to ACCESS Register in the time of default TIS_TIMEOUT_A.
 …
+{
   EFI_STATUS                        Status;
   if (TisReg == NULL) {
     return EFI_INVALID_PARAMETER;
+  }
   if (!Tpm12TisPcPresenceCheck (TisReg)) {
     return EFI_NOT_FOUND;
 …
   Send a command to TPM for execution and return response data.
   @param[in]      TisReg        TPM register space base address.
   @param[in]      BufferIn      Buffer for command data.
   @param[in]      SizeIn        Size of command data.
   @param[in, out] BufferOut     Buffer for response data.
   @param[in, out] SizeOut       Size of response data.
+  @param[in]      TisReg        TPM register space base address.
+  @param[in]      BufferIn      Buffer for command data.
+  @param[in]      SizeIn        Size of command data.
+  @param[in, out] BufferOut     Buffer for response data.
+  @param[in, out] SizeOut       Size of response data.
   @retval EFI_SUCCESS           Operation completed successfully.
   @retval EFI_BUFFER_TOO_SMALL  Response data buffer is too small.
 …
   @retval EFI_SUCCESS            The command byte stream was successfully sent to the device and a response was successfully received.
   @retval EFI_DEVICE_ERROR       The command was not successfully sent to the device or a response was not successfully received from the device.
   @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
+  @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
 **/
 EFI_STATUS

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm12DeviceLibTcg/Tpm12DeviceLibTcg.c

-              r58464
+              r58466
 #include <IndustryStandard/Tpm12.h>
 EFI_TCG_PROTOCOL  *mTcgProtocol = NULL;
+EFI_TCG_PROTOCOL  *mTcgProtocol = NULL;
 /**
 …
   @retval EFI_SUCCESS            The command byte stream was successfully sent to the device and a response was successfully received.
   @retval EFI_DEVICE_ERROR       The command was not successfully sent to the device or a response was not successfully received from the device.
   @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
+  @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
 **/
 EFI_STATUS

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm12DeviceLibTcg/Tpm12DeviceLibTcg.inf

r58464	r58466
22	22	MODULE_TYPE = BASE
23	23	VERSION_STRING = 1.0
24		LIBRARY_CLASS = Tpm12DeviceLib\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER UEFI_APPLICATION UEFI_DRIVER
	24	LIBRARY_CLASS = Tpm12DeviceLib\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER UEFI_APPLICATION UEFI_DRIVER
25	25
26	26	#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2Capability.c

-              r58464
+              r58466
   This command returns various information regarding the TPM and its current state.
   The capability parameter determines the category of data returned. The property parameter
   selects the first value of the selected category to be returned. If there is no property
+  The capability parameter determines the category of data returned. The property parameter
+  selects the first value of the selected category to be returned. If there is no property
   that corresponds to the value of property, the next higher value is returned, if it exists.
   The moreData parameter will have a value of YES if there are more values of the requested
+  The moreData parameter will have a value of YES if there are more values of the requested
   type that were not returned.
   If no next capability exists, the TPM will return a zero-length list and moreData will have
+  If no next capability exists, the TPM will return a zero-length list and moreData will have
   a value of NO.
   NOTE:
   To simplify this function, leave returned CapabilityData for caller to unpack since there are
+  NOTE:
+  To simplify this function, leave returned CapabilityData for caller to unpack since there are
   many capability categories and only few categories will be used in firmware. It means the caller
   need swap the byte order for the feilds in CapabilityData.
   @param[in]  Capability         Group selection; determines the format of the response.
   @param[in]  Property           Further definition of information.
+  @param[in]  Property           Further definition of information.
   @param[in]  PropertyCount      Number of properties of the indicated type to return.
   @param[out] MoreData           Flag to indicate if there are more values of this type.
   @param[out] CapabilityData     The capability data.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   SendBuffer.Property = SwapBytes32 (Property);
   SendBuffer.PropertyCount = SwapBytes32 (PropertyCount);
   SendBufferSize = (UINT32) sizeof (SendBuffer);
   SendBuffer.Header.paramSize = SwapBytes32 (SendBufferSize);
   //
   // send Tpm command
 …
   //
   CopyMem (CapabilityData, &RecvBuffer.CapabilityData, RecvBufferSize - sizeof (TPM2_RESPONSE_HEADER) - sizeof (UINT8));
   return EFI_SUCCESS;
+}
 …
   @param[out] Family             The Family of TPM. (a 4-octet character string)
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   TPMS_CAPABILITY_DATA    TpmCap;
   TPMI_YES_NO             MoreData;
   EFI_STATUS              Status;
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_FAMILY_INDICATOR,
 ,
              &MoreData,
+  EFI_STATUS              Status;
+  Status = Tpm2GetCapability (
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_FAMILY_INDICATOR,
+,
+             &MoreData,
              &TpmCap
              );
 …
   @param[out] ManufactureId      The manufacture ID of TPM.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   TPMS_CAPABILITY_DATA    TpmCap;
   TPMI_YES_NO             MoreData;
   EFI_STATUS              Status;
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_MANUFACTURER,
 ,
              &MoreData,
+  EFI_STATUS              Status;
+  Status = Tpm2GetCapability (
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_MANUFACTURER,
+,
+             &MoreData,
              &TpmCap
              );
 …
   @param[out] FirmwareVersion1   The FirmwareVersion1.
   @param[out] FirmwareVersion2   The FirmwareVersion2.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   TPMS_CAPABILITY_DATA    TpmCap;
   TPMI_YES_NO             MoreData;
   EFI_STATUS              Status;
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_FIRMWARE_VERSION_1,
 ,
              &MoreData,
+  EFI_STATUS              Status;
+  Status = Tpm2GetCapability (
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_FIRMWARE_VERSION_1,
+,
+             &MoreData,
              &TpmCap
              );
 …
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_FIRMWARE_VERSION_2,
 ,
              &MoreData,
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_FIRMWARE_VERSION_2,
+,
+             &MoreData,
              &TpmCap
              );
 …
   @param[out] MaxCommandSize     The maximum value for commandSize in a command.
   @param[out] MaxResponseSize    The maximum value for responseSize in a command.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_MAX_COMMAND_SIZE,
 ,
              &MoreData,
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_MAX_COMMAND_SIZE,
+,
+             &MoreData,
              &TpmCap
              );
 …
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_MAX_RESPONSE_SIZE,
 ,
              &MoreData,
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_MAX_RESPONSE_SIZE,
+,
+             &MoreData,
              &TpmCap
              );
 …
   *MaxResponseSize = SwapBytes32 (TpmCap.data.tpmProperties.tpmProperty->value);
   return EFI_SUCCESS;
+  return EFI_SUCCESS;
+}
 /**
   This command returns Returns a list of TPMS_ALG_PROPERTIES. Each entry is an
   algorithm ID and a set of properties of the algorithm.
+  algorithm ID and a set of properties of the algorithm.
   This function parse the value got from TPM2_GetCapability and return the list.
   @param[out] AlgList      List of algorithm.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   UINTN                   Index;
   EFI_STATUS              Status;
   Status = Tpm2GetCapability (
              TPM_CAP_ALGS,
 ,
              MAX_CAP_ALGS,
              &MoreData,
              &TpmCap
              );
   if (EFI_ERROR (Status)) {
     return Status;
+  }
+  Status = Tpm2GetCapability (
+             TPM_CAP_ALGS,
+,
+             MAX_CAP_ALGS,
+             &MoreData,
+             &TpmCap
+             );
+  if (EFI_ERROR (Status)) {
+    return Status;
+  }
   CopyMem (AlgList, &TpmCap.data.algorithms, sizeof (TPML_ALG_PROPERTY));
 …
   @param[out] LockoutCounter     The LockoutCounter of TPM.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   TPMS_CAPABILITY_DATA    TpmCap;
   TPMI_YES_NO             MoreData;
   EFI_STATUS              Status;
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_LOCKOUT_COUNTER,
 ,
              &MoreData,
+  EFI_STATUS              Status;
+  Status = Tpm2GetCapability (
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_LOCKOUT_COUNTER,
+,
+             &MoreData,
              &TpmCap
              );
 …
   @param[out] LockoutInterval    The LockoutInterval of TPM.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   TPMS_CAPABILITY_DATA    TpmCap;
   TPMI_YES_NO             MoreData;
   EFI_STATUS              Status;
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_LOCKOUT_INTERVAL,
 ,
              &MoreData,
+  EFI_STATUS              Status;
+  Status = Tpm2GetCapability (
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_LOCKOUT_INTERVAL,
+,
+             &MoreData,
              &TpmCap
              );
 …
   @param[out] InputBufferSize    The InputBufferSize of TPM.
                                  the maximum size of a parameter (typically, a TPM2B_MAX_BUFFER)
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   TPMS_CAPABILITY_DATA    TpmCap;
   TPMI_YES_NO             MoreData;
   EFI_STATUS              Status;
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_INPUT_BUFFER,
 ,
              &MoreData,
+  EFI_STATUS              Status;
+  Status = Tpm2GetCapability (
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_INPUT_BUFFER,
+,
+             &MoreData,
              &TpmCap
              );
 …
   @param[out] Pcrs    The Pcr Selection
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   Status = Tpm2GetCapability (
              TPM_CAP_PCRS,
 ,
 ,
              &MoreData,
+             TPM_CAP_PCRS,
+,
+,
+             &MoreData,
              &TpmCap
              );
 …
   @param[out] AlgorithmSet    The AlgorithmSet of TPM.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   TPMS_CAPABILITY_DATA    TpmCap;
   TPMI_YES_NO             MoreData;
   EFI_STATUS              Status;
   Status = Tpm2GetCapability (
              TPM_CAP_TPM_PROPERTIES,
              TPM_PT_ALGORITHM_SET,
 ,
              &MoreData,
+  EFI_STATUS              Status;
+  Status = Tpm2GetCapability (
+             TPM_CAP_TPM_PROPERTIES,
+             TPM_PT_ALGORITHM_SET,
+,
+             &MoreData,
              &TpmCap
              );

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2Context.c

-              r58464
+              r58466
   @param[in]  FlushHandle        The handle of the item to flush.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   SendBuffer.FlushHandle = SwapBytes32 (FlushHandle);
   SendBufferSize = (UINT32) sizeof (SendBuffer);
   SendBuffer.Header.paramSize = SwapBytes32 (SendBufferSize);

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2EnhancedAuthorization.c

-              r58464
+              r58466
   @param[out] Timeout            Time value used to indicate to the TPM when the ticket expires.
   @param[out] PolicyTicket       A ticket that includes a value indicating when the authorization expires.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   SendBuffer.AuthHandle = SwapBytes32 (AuthHandle);
   SendBuffer.PolicySession = SwapBytes32 (PolicySession);
   //
   // Add in Auth session
 …
   CopyMem (Buffer, PolicyRef->buffer, PolicyRef->size);
   Buffer += PolicyRef->size;
   WriteUnaligned32 ((UINT32 *)Buffer, SwapBytes32((UINT32)Expiration));
   Buffer += sizeof(UINT32);
 …
   @param[in] PolicySession      Handle for the policy session being extended.
   @param[in] HashList           the list of hashes to check for a match.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   @param[in]  PolicySession      Handle for the policy session being extended.
   @param[in]  Code               The allowed commandCode.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   @param[in]  PolicySession      Handle for the policy session.
   @param[out] PolicyHash         the current value of the policyHash of policySession.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2Help.c

r58464	r58466
74	74
75	75	Buffer = (UINT8 *)AuthSessionOut;
76
	76
77	77	//
78	78	// Add in Auth session

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2Hierarchy.c

-              r58464
+              r58466
   @param[in] AuthHandle        TPM_RH_LOCKOUT or TPM_RH_PLATFORM+{PP}
   @param[in] AuthSession       Auth Session context
   @retval EFI_SUCCESS      Operation completed successfully.
   @retval EFI_DEVICE_ERROR Unexpected device behavior.
 …
   //
   Status = Tpm2SubmitCommand (
              CmdSize,
              (UINT8 *)&Cmd,
+             CmdSize,
+             (UINT8 *)&Cmd,
              &ResultBufSize,
              ResultBuf
 …
   //
   Status = Tpm2SubmitCommand (
              CmdSize,
              (UINT8 *)&Cmd,
+             CmdSize,
+             (UINT8 *)&Cmd,
              &ResultBufSize,
              ResultBuf
 …
   //
   Status = Tpm2SubmitCommand (
              CmdSize,
              (UINT8 *)&Cmd,
+             CmdSize,
+             (UINT8 *)&Cmd,
              &ResultBufSize,
              ResultBuf
 …
   //
   Status = Tpm2SubmitCommand (
              CmdSize,
              (UINT8 *)&Cmd,
+             CmdSize,
+             (UINT8 *)&Cmd,
              &ResultBufSize,
              ResultBuf

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2Integrity.c

-              r58464
+              r58466
   //
   Buffer = (UINT8 *)&Cmd.AuthSessionPcr;
   // sessionInfoSize
   SessionInfoSize = CopyAuthSessionCommand (NULL, Buffer);
   Buffer += SessionInfoSize;
   Cmd.AuthorizationSize = SwapBytes32(SessionInfoSize);
   //Digest Count
   WriteUnaligned32 ((UINT32 *)Buffer, SwapBytes32(Digests->count));
   Buffer += sizeof(UINT32);
   //Digest
   for (Index = 0; Index < Digests->count; Index++) {
 …
   CopyMem (Buffer, EventData->buffer, EventData->size);
   Buffer += EventData->size;
   CmdSize              = (UINT32)((UINTN)Buffer - (UINTN)&Cmd);
   Cmd.Header.paramSize = SwapBytes32(CmdSize);
 …
   @param[out] PcrSelectionOut    The PCR in the returned list.
   @param[out] PcrValues          The contents of the PCR indicated in pcrSelect.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   SendBuffer.Header.tag = SwapBytes16(TPM_ST_NO_SESSIONS);
   SendBuffer.Header.commandCode = SwapBytes32(TPM_CC_PCR_Read);
   SendBuffer.PcrSelectionIn.count = SwapBytes32(PcrSelectionIn->count);
   for (Index = 0; Index < PcrSelectionIn->count; Index++) {
 …
   @param[out] SizeNeeded         number of octets required to satisfy the request
   @param[out] SizeAvailable      Number of octets available. Computed before the allocation
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   //
   Status = Tpm2SubmitCommand (
              CmdSize,
              (UINT8 *)&Cmd,
+             CmdSize,
+             (UINT8 *)&Cmd,
              &ResultBufSize,
              ResultBuf

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2NVStorage.c

-              r58464
+              r58466
   @param[out] NvPublic           The public area of the index.
   @param[out] NvName             The Name of the nvIndex.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   SendBuffer.NvIndex = SwapBytes32 (NvIndex);
   SendBufferSize = (UINT32) sizeof (SendBuffer);
   SendBuffer.Header.paramSize = SwapBytes32 (SendBufferSize);
 …
   CopyMem (NvName, (UINT8 *)&RecvBuffer + sizeof(TPM2_RESPONSE_HEADER) + sizeof(UINT16) + NvPublicSize, NvNameSize);
   NvName->size = NvNameSize;
   return EFI_SUCCESS;
+}
 …
   @param[in]  Auth               The authorization data.
   @param[in]  NvPublic           The public area of the index.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
     return EFI_DEVICE_ERROR;
+  }
   return EFI_SUCCESS;
+}
 …
   @param[in]  NvIndex            The NV Index.
   @param[in]  AuthSession        Auth Session context
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   @param[in]     Offset             Byte offset into the area.
   @param[in,out] OutData            The data read.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   OutData->size = SwapBytes16 (RecvBuffer.Data.size);
   CopyMem (OutData->buffer, &RecvBuffer.Data.buffer, OutData->size);
   return EFI_SUCCESS;
+}
 …
   @param[in]  InData             The data to write.
   @param[in]  Offset             The offset into the NV Area.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2Sequences.c

-              r58464
+              r58466
                                 An Event sequence starts if this is TPM_ALG_NULL.
   @param[out] SequenceHandle    A handle to reference the sequence
   @retval EFI_SUCCESS      Operation completed successfully.
   @retval EFI_DEVICE_ERROR Unexpected device behavior.
 …
   @param[in] SequenceHandle    Handle for the sequence object
   @param[in] Buffer            Data to be added to hash
   @retval EFI_SUCCESS      Operation completed successfully.
   @retval EFI_DEVICE_ERROR Unexpected device behavior.
 …
   @param[in]  Buffer            Data to be added to the Event
   @param[out] Results           List of digests computed for the PCR
   @retval EFI_SUCCESS      Operation completed successfully.
   @retval EFI_DEVICE_ERROR Unexpected device behavior.
 …
   @param[in]  Buffer            Data to be added to the hash/HMAC
   @param[out] Result            The returned HMAC or digest in a sized buffer
   @retval EFI_SUCCESS      Operation completed successfully.
   @retval EFI_DEVICE_ERROR Unexpected device behavior.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2CommandLib/Tpm2Session.c

-              r58464
+              r58466
   @param[out] SessionHandle      Handle for the newly created session.
   @param[out] NonceTPM           The initial nonce from the TPM, used in the computation of the sessionKey.
   @retval EFI_SUCCESS            Operation completed successfully.
   @retval EFI_DEVICE_ERROR       The command was unsuccessful.
 …
   WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (AuthHash));
   Buffer += sizeof(UINT16);
   SendBufferSize = (UINT32) ((UINTN)Buffer - (UINTN)&SendBuffer);
   SendBuffer.Header.paramSize = SwapBytes32 (SendBufferSize);

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibDTpm/Tpm2DeviceLibDTpm.c

-              r58464
+              r58466
   @retval EFI_SUCCESS            The command byte stream was successfully sent to the device and a response was successfully received.
   @retval EFI_DEVICE_ERROR       The command was not successfully sent to the device or a response was not successfully received from the device.
   @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
+  @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
 **/
 EFI_STATUS
 …
   @retval EFI_SUCCESS            The command byte stream was successfully sent to the device and a response was successfully received.
   @retval EFI_DEVICE_ERROR       The command was not successfully sent to the device or a response was not successfully received from the device.
   @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
+  @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
 **/
 EFI_STATUS

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibDTpm/Tpm2DeviceLibDTpm.inf

-              r58464
+              r58466
 ## @file
 #  Provides TPM 2.0 TIS functions for DTPM
+#
 #  This library implements TIS (TPM Interface Specification) functions which is
 #  used for every TPM 2.0 command. Choosing this library means platform uses and
+#
+#  This library implements TIS (TPM Interface Specification) functions which is
+#  used for every TPM 2.0 command. Choosing this library means platform uses and
 #  only uses TPM 2.0 DTPM device.
+#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibDTpm/Tpm2InstanceLibDTpm.c

-              r58464
+              r58466
   @retval EFI_SUCCESS            The command byte stream was successfully sent to the device and a response was successfully received.
   @retval EFI_DEVICE_ERROR       The command was not successfully sent to the device or a response was not successfully received from the device.
   @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
+  @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
 **/
 EFI_STATUS
 …
 /**
   The function register DTPM2.0 instance.
   @retval EFI_SUCCESS   DTPM2.0 instance is registered, or system dose not surpport registr DTPM2.0 instance
 **/

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibDTpm/Tpm2InstanceLibDTpm.inf

r58464	r58466
2	2	# Provides a DTPM instance for TPM 2.0
3	3	#
4		# This library can be registered to Tpm 2.0 device router, to be active TPM 2.0
	4	# This library can be registered to Tpm 2.0 device router, to be active TPM 2.0
5	5	# engine, based on platform setting.
6	6	#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibDTpm/Tpm2Tis.c

-              r58464
+              r58466
 /** @file
   TIS (TPM Interface Specification) functions used by dTPM2.0 library.
 Copyright (c) 2013 - 2015, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
 ///
 /// When this bit is 1, TPM is in the Ready state,
+/// When this bit is 1, TPM is in the Ready state,
 /// indicating it is ready to receive a new command.
 ///
 …
+{
   UINT8                             RegRead;
   RegRead = MmioRead8 ((UINTN)&TisReg->Access);
   return (BOOLEAN)(RegRead != (UINT8)-1);
 …
 /**
   Get BurstCount by reading the burstCount field of a TIS regiger
+  Get BurstCount by reading the burstCount field of a TIS regiger
   in the time of default TIS_TIMEOUT_D.
 …
 /**
   Set TPM chip to ready state by sending ready command TIS_PC_STS_READY
+  Set TPM chip to ready state by sending ready command TIS_PC_STS_READY
   to Status Register in time.
 …
 /**
   Get the control of TPM chip by sending requestUse command TIS_PC_ACC_RQUUSE
+  Get the control of TPM chip by sending requestUse command TIS_PC_ACC_RQUUSE
   to ACCESS Register in the time of default TIS_TIMEOUT_A.
 …
+{
   EFI_STATUS                        Status;
   if (TisReg == NULL) {
     return EFI_INVALID_PARAMETER;
+  }
   if (!TisPcPresenceCheck (TisReg)) {
     return EFI_NOT_FOUND;
 …
   Send a command to TPM for execution and return response data.
   @param[in]      TisReg        TPM register space base address.
   @param[in]      BufferIn      Buffer for command data.
   @param[in]      SizeIn        Size of command data.
   @param[in, out] BufferOut     Buffer for response data.
   @param[in, out] SizeOut       Size of response data.
+  @param[in]      TisReg        TPM register space base address.
+  @param[in]      BufferIn      Buffer for command data.
+  @param[in]      SizeIn        Size of command data.
+  @param[in, out] BufferOut     Buffer for response data.
+  @param[in, out] SizeOut       Size of response data.
   @retval EFI_SUCCESS           Operation completed successfully.
   @retval EFI_BUFFER_TOO_SMALL  Response data buffer is too small.
 …
   @retval EFI_SUCCESS            The command byte stream was successfully sent to the device and a response was successfully received.
   @retval EFI_DEVICE_ERROR       The command was not successfully sent to the device or a response was not successfully received from the device.
   @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
+  @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
 **/
 EFI_STATUS

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibRouter/Tpm2DeviceLibRouterDxe.c

r58464	r58466
33	33	@retval EFI_SUCCESS The command byte stream was successfully sent to the device and a response was successfully received.
34	34	@retval EFI_DEVICE_ERROR The command was not successfully sent to the device or a response was not successfully received from the device.
35		@retval EFI_BUFFER_TOO_SMALL The output parameter block is too small.
	35	@retval EFI_BUFFER_TOO_SMALL The output parameter block is too small.
36	36	**/
37	37	EFI_STATUS

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibRouter/Tpm2DeviceLibRouterDxe.inf

r58464	r58466
23	23	MODULE_TYPE = DXE_DRIVER
24	24	VERSION_STRING = 1.0
25		LIBRARY_CLASS = Tpm2DeviceLib\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
	25	LIBRARY_CLASS = Tpm2DeviceLib\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
26	26
27	27	#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibRouter/Tpm2DeviceLibRouterPei.c

r58464	r58466
55	55	@retval EFI_SUCCESS The command byte stream was successfully sent to the device and a response was successfully received.
56	56	@retval EFI_DEVICE_ERROR The command was not successfully sent to the device or a response was not successfully received from the device.
57		@retval EFI_BUFFER_TOO_SMALL The output parameter block is too small.
	57	@retval EFI_BUFFER_TOO_SMALL The output parameter block is too small.
58	58	**/
59	59	EFI_STATUS

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibTrEE/Tpm2DeviceLibTrEE.c

-              r58464
+              r58466
 #include <IndustryStandard/Tpm20.h>
 EFI_TREE_PROTOCOL  *mTreeProtocol = NULL;
+EFI_TREE_PROTOCOL  *mTreeProtocol = NULL;
 /**
 …
   @retval EFI_SUCCESS            The command byte stream was successfully sent to the device and a response was successfully received.
   @retval EFI_DEVICE_ERROR       The command was not successfully sent to the device or a response was not successfully received from the device.
   @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
+  @retval EFI_BUFFER_TOO_SMALL   The output parameter block is too small.
 **/
 EFI_STATUS

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/Tpm2DeviceLibTrEE/Tpm2DeviceLibTrEE.inf

r58464	r58466
22	22	MODULE_TYPE = DXE_DRIVER
23	23	VERSION_STRING = 1.0
24		LIBRARY_CLASS = Tpm2DeviceLib\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
	24	LIBRARY_CLASS = Tpm2DeviceLib\|DXE_DRIVER DXE_RUNTIME_DRIVER DXE_SAL_DRIVER DXE_SMM_DRIVER UEFI_APPLICATION UEFI_DRIVER
25	25
26	26	#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/TpmCommLib/CommonHeader.h

-              r48674
+              r58466
 Copyright (c) 2006 - 2010, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/TpmCommLib/TisPc.c

-              r58459
+              r58466
 Copyright (c) 2005 - 2012, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
+{
   UINT8                             RegRead;
   RegRead = MmioRead8 ((UINTN)&TisReg->Access);
   return (BOOLEAN)(RegRead != (UINT8)-1);
 …
 /**
   Get BurstCount by reading the burstCount field of a TIS regiger
+  Get BurstCount by reading the burstCount field of a TIS regiger
   in the time of default TIS_TIMEOUT_D.
 …
 /**
   Set TPM chip to ready state by sending ready command TIS_PC_STS_READY
+  Set TPM chip to ready state by sending ready command TIS_PC_STS_READY
   to Status Register in time.
 …
 /**
   Get the control of TPM chip by sending requestUse command TIS_PC_ACC_RQUUSE
+  Get the control of TPM chip by sending requestUse command TIS_PC_ACC_RQUUSE
   to ACCESS Register in the time of default TIS_TIMEOUT_A.
 …
+{
   EFI_STATUS                        Status;
   if (TisReg == NULL) {
     return EFI_INVALID_PARAMETER;
+  }
   if (!TisPcPresenceCheck (TisReg)) {
     return EFI_NOT_FOUND;

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/TpmCommLib/TpmComm.c

-              r48674
+              r58466
 Copyright (c) 2005 - 2010, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   @param[in]  DataLen       Size of the raw data.
   @param[out] Digest        Pointer to a buffer that stores the final digest.
   @retval     EFI_SUCCESS   Always successfully calculate the final digest.
 **/

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/TpmCommLib/TpmCommLib.inf

r58459	r58466
2	2	# Provides some common functions for the TCG feature
3	3	#
4		# This instance provides basic TPM Interface Specification (TIS) functions
	4	# This instance provides basic TPM Interface Specification (TIS) functions
5	5	# and TPM hashall function.
6	6	#

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/TrEEPpVendorLibNull/TrEEPpVendorLibNull.c

-              r58464
+              r58466
 Copyright (c) 2015, Intel Corporation. All rights reserved.<BR>
 This program and the accompanying materials
 are licensed and made available under the terms and conditions of the BSD License
 which accompanies this distribution.  The full text of the license may be found at
+This program and the accompanying materials
+are licensed and made available under the terms and conditions of the BSD License
+which accompanies this distribution.  The full text of the license may be found at
 http://opensource.org/licenses/bsd-license.php
 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
+THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
 …
   This API should be invoked in BIOS boot phase to process pending request.
   Caution: This function may receive untrusted input.
   If OperationRequest < 128, then ASSERT().
 …
   This API should be invoked in BIOS boot phase to process pending request.
   Caution: This function may receive untrusted input.
 …
   Caution: This function may receive untrusted input.
   If OperationRequest < 128, then ASSERT().
 …
   Caution: This function may receive untrusted input.
   If OperationRequest < 128, then ASSERT().

trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library/TrEEPpVendorLibNull/TrEEPpVendorLibNull.inf

r58464	r58466
33	33	MdePkg/MdePkg.dec
34	34	SecurityPkg/SecurityPkg.dec
35
	35
36	36	[LibraryClasses]
37	37	DebugLib

Changeset 58466 in vbox for trunk/src/VBox/Devices/EFI/Firmware/SecurityPkg/Library

Legend:

Download in other formats: