diff options
| author | Peter Jones <pjones@redhat.com> | 2014-11-25 14:41:55 -0500 |
|---|---|---|
| committer | Peter Jones <pjones@redhat.com> | 2015-04-13 19:55:25 -0400 |
| commit | 5195d7d31bdec4e11401c4935e0fcf0b2c3f9e6f (patch) | |
| tree | 312ec7f13a59c244f9ff2b91571b3065e490afab | |
| parent | d01421eb5ae67daa9a2d341099b3e58fdb2f9f9e (diff) | |
| download | efi-boot-shim-5195d7d31bdec4e11401c4935e0fcf0b2c3f9e6f.tar.gz efi-boot-shim-5195d7d31bdec4e11401c4935e0fcf0b2c3f9e6f.zip | |
Don't install our protocols if we're not in secure mode.
System services haven't been hooked if we're not in secure mode, so
do_exit() will never be called. In this case shim never gets control
once grub exits, which means if booting fails and the firmware tries
another boot option, it'll attempt to talk to the shim protocol we
installed.
This is wrong, because it is allowed to have been cleared from ram at
this time, since the task it's under has exited.
So just don't install the protocols when we're not enforcing.
This version also has a message and a 2-second stall after calling
start_image(), so that we can tell if we are on the expected return path
of our execution flow.
| -rw-r--r-- | shim.c | 11 |
1 files changed, 11 insertions, 0 deletions
@@ -1682,6 +1682,9 @@ EFI_STATUS init_grub(EFI_HANDLE image_handle) if (efi_status != EFI_SUCCESS) efi_status = start_image(image_handle, MOK_MANAGER); + Print(L"start_image() returned %r\n", efi_status); + uefi_call_wrapper(BS->Stall, 1, 2000000); + return efi_status; } @@ -1985,6 +1988,10 @@ install_shim_protocols(void) { EFI_GUID shim_lock_guid = SHIM_LOCK_GUID; EFI_STATUS efi_status; + + if (!secure_mode()) + return EFI_SUCCESS; + /* * Install the protocol */ @@ -2011,6 +2018,10 @@ void uninstall_shim_protocols(void) { EFI_GUID shim_lock_guid = SHIM_LOCK_GUID; + + if (!secure_mode()) + return; + #if defined(OVERRIDE_SECURITY_POLICY) /* * Clean up the security protocol hook |