From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by spool.mail.gandi.net (Postfix) with ESMTPS id C9780740032 for ; Thu, 28 Mar 2024 01:04:43 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=tkHjuWFsrVN9+6KeuwUPNdko6ZjRdCDp9CMchYME/KQ=; c=relaxed/simple; d=groups.io; h=From:To:Cc:References:In-Reply-To:Subject:Date:Message-ID:MIME-Version:Thread-Index:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Resent-Date:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Type:Content-Transfer-Encoding:Content-Language; s=20240206; t=1711587882; v=1; b=rxwU7zRYryEjv00cJytrzLlAK9AeeyadOOT5xI9B7J/1vyksZYF6RUmL0b2WoGUSfouOWIT+ 8UqwxqMV8YUVF7WyBFLRDG16bkcJ1mCLQs0qTPeKk6YSEF5rYESMmubD2118jWBawsWFTzywDC0 R+77DDJCUOfDjoSzTidD/G8ut3YZeq588yoJpYq7/EDvTw2ljoPt8+dRZb5/4FZqGvFUHlvrVCh 74Mx178KeU7zW+V3YwwJsUsYSECxKxuPkhEyAkQ24aHzqwDI3lR4ZBwbu/eV1daZzOuAIzu9rxA DC2+rxTr3nBd41Ct3p2jvC0z3w0nbCM3bb6NkaDwdXcSg== X-Received: by 127.0.0.2 with SMTP id 4T6aYY7687511xRkCALTNnxS; Wed, 27 Mar 2024 18:04:42 -0700 X-Received: from cxsh.intel-email.com (cxsh.intel-email.com [121.46.250.151]) by mx.groups.io with SMTP id smtpd.web11.4388.1711587881503749397 for ; Wed, 27 Mar 2024 18:04:41 -0700 X-Received: from cxsh.intel-email.com (localhost [127.0.0.1]) by cxsh.intel-email.com (Postfix) with ESMTP id 2DCA8DDA7B1 for ; Thu, 28 Mar 2024 09:04:39 +0800 (CST) X-Received: from localhost (localhost [127.0.0.1]) by cxsh.intel-email.com (Postfix) with ESMTP id 29681DDA7AE for ; Thu, 28 Mar 2024 09:04:39 +0800 (CST) X-Received: from mail.byosoft.com.cn (mail.byosoft.com.cn [58.240.74.242]) by cxsh.intel-email.com (Postfix) with SMTP id 663A0DDA7AF for ; Thu, 28 Mar 2024 09:04:36 +0800 (CST) X-Received: from DESKTOPS6D0PVI ([58.246.60.130]) (envelope-sender ) by 192.168.6.13 with ESMTP(SSL) for ; Thu, 28 Mar 2024 09:04:32 +0800 X-WM-Sender: gaoliming@byosoft.com.cn X-Originating-IP: 58.246.60.130 X-WM-AuthFlag: YES X-WM-AuthUser: gaoliming@byosoft.com.cn From: "gaoliming via groups.io" To: "'Wenxing Hou'" , Cc: "'Michael D Kinney'" , "'Zhiguang Liu'" , "'Jiewen Yao'" References: <20240327061544.1693-1-wenxing.hou@intel.com> <20240327061544.1693-2-wenxing.hou@intel.com> In-Reply-To: <20240327061544.1693-2-wenxing.hou@intel.com> Subject: =?UTF-8?B?W2VkazItZGV2ZWxdIOWbnuWkjTogW1BBVENIIHYzIDEvMl0gTWRlUGtnOiBBZGQgVUVGSSAyLjEwIERldmljZUF1dGhlbnRpY2F0aW9u?= Date: Thu, 28 Mar 2024 09:04:36 +0800 Message-ID: <062601da80ab$e6f94630$b4ebd290$@byosoft.com.cn> MIME-Version: 1.0 Thread-Index: AQE+Lb82cBaNCyqpo57DzBQqvzpkAAG3W+wmsndBSyA= Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Resent-Date: Wed, 27 Mar 2024 18:04:41 -0700 Reply-To: devel@edk2.groups.io,gaoliming@byosoft.com.cn List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: kD2b0JOdJ9IMPcanG3odSPQix7686176AA= Content-Type: text/plain; charset="gb2312" Content-Transfer-Encoding: quoted-printable Content-Language: zh-cn X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20240206 header.b=rxwU7zRY; dmarc=pass (policy=none) header.from=groups.io; spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io Reviewed-by: Liming Gao > -----=D3=CA=BC=FE=D4=AD=BC=FE----- > =B7=A2=BC=FE=C8=CB: Wenxing Hou > =B7=A2=CB=CD=CA=B1=BC=E4: 2024=C4=EA3=D4=C227=C8=D5 14:16 > =CA=D5=BC=FE=C8=CB: devel@edk2.groups.io > =B3=AD=CB=CD: Michael D Kinney ; Liming Gao > ; Zhiguang Liu ; Jiewen > Yao > =D6=F7=CC=E2: [PATCH v3 1/2] MdePkg: Add UEFI 2.10 DeviceAuthentication >=20 > According to UEFI 2.10 spec > 32.8.2 UEFI Device Signature Variable GUID and Variable Name section, > add signature database for device authentication. >=20 > Cc: Michael D Kinney > Cc: Liming Gao > Cc: Zhiguang Liu > Cc: Jiewen Yao > Signed-off-by: Wenxing Hou > --- > MdePkg/Include/Guid/DeviceAuthentication.h | 61 > ++++++++++++++++++++++ > 1 file changed, 61 insertions(+) > create mode 100644 MdePkg/Include/Guid/DeviceAuthentication.h >=20 > diff --git a/MdePkg/Include/Guid/DeviceAuthentication.h > b/MdePkg/Include/Guid/DeviceAuthentication.h > new file mode 100644 > index 0000000000..0dd933dfa5 > --- /dev/null > +++ b/MdePkg/Include/Guid/DeviceAuthentication.h > @@ -0,0 +1,61 @@ > +/** @file >=20 > + Guid & data structure used for Device Security. >=20 > + >=20 > + Copyright (c) 2024, Intel Corporation. All rights reserved.
>=20 > + SPDX-License-Identifier: BSD-2-Clause-Patent >=20 > + >=20 > +**/ >=20 > + >=20 > +#ifndef EFI_DEVICE_AUTHENTICATION_GUID_H_ >=20 > +#define EFI_DEVICE_AUTHENTICATION_GUID_H_ >=20 > + >=20 > +/** >=20 > + This is a signature database for device authentication, instead of image > authentication. >=20 > + >=20 > + The content of the signature database is same as the one in db/dbx. (a list > of EFI_SIGNATURE_LIST) >=20 > +**/ >=20 > +#define EFI_DEVICE_SIGNATURE_DATABASE_GUID \ >=20 > + {0xb9c2b4f4, 0xbf5f, 0x462d, 0x8a, 0xdf, 0xc5, 0xc7, 0xa, 0xc3, 0x5d, 0xad} >=20 > +#define EFI_DEVICE_SECURITY_DATABASE L"devdb" >=20 > + >=20 > +extern EFI_GUID gEfiDeviceSignatureDatabaseGuid; >=20 > + >=20 > +/** >=20 > + Signature Database: >=20 > + >=20 > + +---------------------------------------+ <----------------- >=20 > + | SignatureType (GUID) | | >=20 > + +---------------------------------------+ | >=20 > + | SignatureListSize (UINT32) | | >=20 > + +---------------------------------------+ | >=20 > + | SignatureHeaderSize (UINT32) | | >=20 > + +---------------------------------------+ | >=20 > + | SignatureSize (UINT32) | > |-EFI_SIGNATURE_LIST (1) >=20 > + +---------------------------------------+ | >=20 > + | SignatureHeader (SignatureHeaderSize) | | >=20 > + +---------------------------------------+ <-- | >=20 > + | SignatureOwner (GUID) | | | >=20 > + +---------------------------------------+ |-EFI_SIGNATURE_DATA (1) >=20 > + | SignatureData (SignatureSize - 16) | | | >=20 > + +---------------------------------------+ <-- | >=20 > + | SignatureOwner (GUID) | | | >=20 > + +---------------------------------------+ |-EFI_SIGNATURE_DATA (n) >=20 > + | SignatureData (SignatureSize - 16) | | | >=20 > + +---------------------------------------+ <----------------- >=20 > + | SignatureType (GUID) | | >=20 > + +---------------------------------------+ | >=20 > + | SignatureListSize (UINT32) | > |-EFI_SIGNATURE_LIST (n) >=20 > + +---------------------------------------+ | >=20 > + | ... | | >=20 > + +---------------------------------------+ <----------------- >=20 > + >=20 > + SignatureType :=3D EFI_CERT_SHAxxx_GUID | >=20 > + EFI_CERT_RSA2048_GUID | >=20 > + EFI_CERT_RSA2048_SHAxxx_GUID | >=20 > + EFI_CERT_X509_GUID | >=20 > + EFI_CERT_X509_SHAxxx_GUID >=20 > + (xxx =3D 256, 384, 512) >=20 > + >=20 > +**/ >=20 > + >=20 > +#endif >=20 > -- > 2.26.2.windows.1 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#117185): https://edk2.groups.io/g/devel/message/117185 Mute This Topic: https://groups.io/mt/105189414/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-