aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--libstb/secvar/backend/edk2-compat-process.c4
-rw-r--r--libstb/secvar/backend/edk2-compat.c1
2 files changed, 4 insertions, 1 deletions
diff --git a/libstb/secvar/backend/edk2-compat-process.c b/libstb/secvar/backend/edk2-compat-process.c
index 770c370..d69e066 100644
--- a/libstb/secvar/backend/edk2-compat-process.c
+++ b/libstb/secvar/backend/edk2-compat-process.c
@@ -45,7 +45,9 @@ int update_variable_in_bank(struct secvar *update_var, const char *data,
else
var->flags |= SECVAR_FLAG_VOLATILE;
- if (key_equals(update_var->key, "PK") || key_equals(update_var->key, "HWKH"))
+ if (key_equals(update_var->key, "PK")
+ || key_equals(update_var->key, "HWKH")
+ || key_equals(update_var->key, "TS"))
var->flags |= SECVAR_FLAG_PROTECTED;
return 0;
diff --git a/libstb/secvar/backend/edk2-compat.c b/libstb/secvar/backend/edk2-compat.c
index 9e61fbc..d7975fa 100644
--- a/libstb/secvar/backend/edk2-compat.c
+++ b/libstb/secvar/backend/edk2-compat.c
@@ -89,6 +89,7 @@ static int edk2_compat_pre_process(struct list_head *variable_bank,
memcpy(tsvar->key, "TS", 3);
tsvar->key_len = 3;
tsvar->data_size = sizeof(struct efi_time) * 4;
+ tsvar->flags = SECVAR_FLAG_PROTECTED;
memset(tsvar->data, 0, tsvar->data_size);
list_add_tail(variable_bank, &tsvar->link);
}
generated by cgit v1.1 at 2024-08-15 10:05:18 +0000