From mboxrd@z Thu Jan 1 00:00:00 1970 Authentication-Results: mx.groups.io; dkim=missing; spf=pass (domain: intel.com, ip: 192.55.52.88, mailfrom: imran.desai@intel.com) Received: from mga01.intel.com (mga01.intel.com [192.55.52.88]) by groups.io with SMTP; Thu, 18 Jul 2019 15:53:36 -0700 X-Amp-Result: SKIPPED(no attachment in message) X-Amp-File-Uploaded: False Received: from fmsmga002.fm.intel.com ([10.253.24.26]) by fmsmga101.fm.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 18 Jul 2019 15:53:36 -0700 X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.64,279,1559545200"; d="scan'208";a="195783045" Received: from ejuergex-mobl1.amr.corp.intel.com ([10.255.82.10]) by fmsmga002.fm.intel.com with ESMTP; 18 Jul 2019 15:53:32 -0700 From: "Imran Desai" To: devel@edk2.groups.io Cc: Michael D Kinney , Liming Gao , Chao Zhang , Jiewen Yao , Jian Wang , Jordan Justen , Laszlo Ersek , Ard Biesheuvel , =?UTF-8?q?Marc-Andr=C3=A9=20Lureau?= , Stefan Berger Subject: [PATCH v7 0/4] Implement SM3 measured boot Date: Thu, 18 Jul 2019 15:53:22 -0700 Message-Id: <20190718225326.40839-1-imran.desai@intel.com> X-Mailer: git-send-email 2.17.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit BZ: https://bugzilla.tianocore.org/show_bug.cgi?id=1781 GITHUB: https://github.com/idesai/edk2/tree/enable_sm3_measured_boot_v7 EDK2 Support for SM3 digest algorithm is needed to enable TPM with SM3 PCR banks. This digest algorithm is part of the China Crypto algorithm suite. This integration has dependency on the openssl_1_1_1b integration into edk2. Delta in v7: 1. Dropped 95a040cff from v6 to address https://edk2.groups.io/g/devel/topic/ 32454898?p=,,,20,0,0,0::Created,,sm3,20,2,0,32454898,ct=1&ct=1 2. Relocated SM3 GUID definition from MdePkg to SecurityPkg in 9728b54f4 Cc: Michael D Kinney Cc: Liming Gao Cc: Chao Zhang Cc: Jiewen Yao Cc: Jian Wang Cc: Jordan Justen Cc: Laszlo Ersek Cc: Ard Biesheuvel Cc: Marc-André Lureau Cc: Stefan Berger Imran Desai (4): SecurityPkg: introduce the SM3 digest algorithm SecurityPkg/HashLibBaseCryptoRouter: recognize the SM3 digest algorithm SecurityPkg: set SM3 bit in TPM 2.0 hash mask by default OvmfPkg: link SM3 support into Tcg2Pei and Tcg2Dxe OvmfPkg/OvmfPkgIa32.dsc | 2 + OvmfPkg/OvmfPkgIa32X64.dsc | 2 + OvmfPkg/OvmfPkgX64.dsc | 2 + SecurityPkg/Include/Library/HashLib.h | 4 + .../HashInstanceLibSm3/HashInstanceLibSm3.c | 150 ++++++++++++++++++ .../HashInstanceLibSm3/HashInstanceLibSm3.inf | 41 +++++ .../HashInstanceLibSm3/HashInstanceLibSm3.uni | 15 ++ .../HashLibBaseCryptoRouterCommon.c | 1 + SecurityPkg/SecurityPkg.dec | 5 +- SecurityPkg/SecurityPkg.dsc | 3 + 10 files changed, 223 insertions(+), 2 deletions(-) create mode 100644 SecurityPkg/Library/HashInstanceLibSm3/HashInstanceLibSm3.c create mode 100644 SecurityPkg/Library/HashInstanceLibSm3/HashInstanceLibSm3.inf create mode 100644 SecurityPkg/Library/HashInstanceLibSm3/HashInstanceLibSm3.uni -- 2.17.0