From 389c8779e866c4b624e60f50beaa7cf7d74a1b03 Mon Sep 17 00:00:00 2001
From: tye1 <tye1@6f19259b-4bc3-4df7-8a09-765794883524>
Date: Mon, 23 Apr 2012 06:17:17 +0000
Subject: Fix common AuthVariable protection issue.

Signed-off-by: Ye Ting<ting.ye@intel.com>
Reviewed by: Fu, Siyuan <siyuan.fu@intel.com>
Reviewed by: Dong, Guo <guo.dong@intel.com>


git-svn-id: https://edk2.svn.sourceforge.net/svnroot/edk2/trunk/edk2@13204 6f19259b-4bc3-4df7-8a09-765794883524
---
 SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'SecurityPkg')

diff --git a/SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c b/SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c
index 12587af7b2..6d41de904b 100644
--- a/SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c
+++ b/SecurityPkg/VariableAuthenticated/RuntimeDxe/AuthService.c
@@ -1337,9 +1337,9 @@ ProcessVariable (
       KeyIndex   = Variable->CurrPtr->PubKeyIndex;
       IsFirstTime = FALSE;
     }
-  } else if ((Variable->CurrPtr != NULL) &&
-           (Variable->CurrPtr->Attributes & EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS) != 0
-          ) {
+  } else if ((Variable->CurrPtr != NULL) && 
+             ((Variable->CurrPtr->Attributes & (EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS | EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS)) != 0)
+            ) {
     //
     // If the variable is already write-protected, it always needs authentication before update.
     //
-- 
cgit v1.2.3