Re: [edk2] Timebased Auth Variable driver should ensure AuthAlgorithm is SHA256 before further verification

er 11, 2017 6:40 PM To: edk2-devel@lists.01.org Subject: [edk2] Timebased Auth Variable driver should ensure AuthAlgorithm is SHA256 before further verification Hello, We ran into issues with the Timebased Authenticated variable handling. In commit: c035e37335ae43229d7e68de74a65f2c01ebc0af This

Re: [edk2] Timebased Auth Variable driver should ensure AuthAlgorithm is SHA256 before further verification

- From: edk2-devel [mailto:edk2-devel-boun...@lists.01.org] On Behalf Of Wim Vervoorn Sent: Monday, December 11, 2017 6:40 PM To: edk2-devel@lists.01.org Subject: [edk2] Timebased Auth Variable driver should ensure AuthAlgorithm is SHA256 before further verification Hello, We ran into issues

[edk2] Timebased Auth Variable driver should ensure AuthAlgorithm is SHA256 before further verification

Hello, We ran into issues with the Timebased Authenticated variable handling. In commit: c035e37335ae43229d7e68de74a65f2c01ebc0af This was added. This assumed the very first tag will be the Sha256 Oid. We have noticed situations where this is the case. The question is if the check below repres