From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bounce+27952+107294+7686176+12367111@groups.io>
Received: from mail02.groups.io (mail02.groups.io [66.175.222.108])
	by spool.mail.gandi.net (Postfix) with ESMTPS id 3E81F740032
	for <rebecca@openfw.io>; Thu, 27 Jul 2023 06:35:26 +0000 (UTC)
DKIM-Signature: a=rsa-sha256; bh=UB3XJA4sr88J5o/qYc8Llw5n0+lXLTB3nS2lns0/Qgw=;
 c=relaxed/simple; d=groups.io;
 h=X-Received:X-Received:X-IronPort-AV:X-IronPort-AV:X-Received:X-ExtLoop1:X-IronPort-AV:X-IronPort-AV:X-Received:From:To:Cc:Subject:Date:Message-Id:In-Reply-To:References:MIME-Version:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:X-Gm-Message-State:Content-Transfer-Encoding;
 s=20140610; t=1690439724; v=1;
 b=Qg6cdNB/9GbJQ1rjPg90nf4uPAK3lrc3xk3DoeLot1u4p2i+/xOfzL2VxCiel8aicUxPNm/F
 w6Izw405sGOGjvESB2OA2bK1xnSe1we5vwXUmftNoEraAjNcO1UZ6Kkc7OlLbWCM7k0PR8ZyktX
 qsM9Qm0uIrY34WyNnXYGiQvg=
X-Received: by 127.0.0.2 with SMTP id fMUNYY7687511xJKeGFasIBD; Wed, 26 Jul 2023 23:35:24 -0700
X-Received: from mgamail.intel.com (mgamail.intel.com [134.134.136.24])
 by mx.groups.io with SMTP id smtpd.web11.1784.1690439721663325568
 for <devel@edk2.groups.io>;
 Wed, 26 Jul 2023 23:35:24 -0700
X-IronPort-AV: E=McAfee;i="6600,9927,10783"; a="370895757"
X-IronPort-AV: E=Sophos;i="6.01,234,1684825200"; 
   d="scan'208";a="370895757"
X-Received: from orsmga001.jf.intel.com ([10.7.209.18])
  by orsmga102.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 26 Jul 2023 23:35:23 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=McAfee;i="6600,9927,10783"; a="762046117"
X-IronPort-AV: E=Sophos;i="6.01,234,1684825200"; 
   d="scan'208";a="762046117"
X-Received: from shwdesssddpdwei.ccr.corp.intel.com ([10.239.157.28])
  by orsmga001.jf.intel.com with ESMTP; 26 Jul 2023 23:35:21 -0700
From: "Sheng Wei" <w.sheng@intel.com>
To: devel@edk2.groups.io
Cc: Jiewen Yao <jiewen.yao@intel.com>,
	Jian J Wang <jian.j.wang@intel.com>,
	Min Xu <min.m.xu@intel.com>,
	Zeyi Chen <zeyi.chen@intel.com>,
	Fiona Wang <fiona.wang@intel.com>,
	Xiaoyu Lu <xiaoyu1.lu@intel.com>,
	Guomin Jiang <guomin.jiang@intel.com>,
	Michael D Kinney <michael.d.kinney@intel.com>,
	Liming Gao <gaoliming@byosoft.com.cn>
Subject: [edk2-devel] [PATCH V5 1/3] MdePkg/Include: Add GUID for CERT_RSA3072 and CERT_RSA4096
Date: Thu, 27 Jul 2023 14:35:11 +0800
Message-Id: <20230727063513.437-2-w.sheng@intel.com>
In-Reply-To: <20230727063513.437-1-w.sheng@intel.com>
References: <20230727063513.437-1-w.sheng@intel.com>
MIME-Version: 1.0
Precedence: Bulk
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Reply-To: devel@edk2.groups.io,w.sheng@intel.com
List-Unsubscribe-Post: List-Unsubscribe=One-Click
List-Unsubscribe: <https://edk2.groups.io/g/devel/leave/12367111/7686176/1913456212/plugh>
X-Gm-Message-State: 6oax6gNYmUW7fOMuyGcpr9dZx7686176AA=
Content-Transfer-Encoding: quoted-printable
X-GND-Status: LEGIT
Authentication-Results: spool.mail.gandi.net;
	dkim=pass header.d=groups.io header.s=20140610 header.b="Qg6cdNB/";
	dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=intel.com (policy=none);
	spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io

Add gEfiCertRsa3072Guid and gEfiCertRsa4096Guid

Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Min Xu <min.m.xu@intel.com>
Cc: Zeyi Chen <zeyi.chen@intel.com>
Cc: Fiona Wang <fiona.wang@intel.com>
Cc: Xiaoyu Lu <xiaoyu1.lu@intel.com>
Cc: Guomin Jiang <guomin.jiang@intel.com>
Cc: Michael D Kinney <michael.d.kinney@intel.com>
Cc: Liming Gao <gaoliming@byosoft.com.cn>
Signed-off-by: Sheng Wei <w.sheng@intel.com>
---
 MdePkg/Include/Guid/ImageAuthentication.h | 26 +++++++++++++++++++++++
 MdePkg/MdePkg.dec                         |  2 ++
 2 files changed, 28 insertions(+)

diff --git a/MdePkg/Include/Guid/ImageAuthentication.h b/MdePkg/Include/Gui=
d/ImageAuthentication.h
index fe83596571..c8ea2c14fb 100644
--- a/MdePkg/Include/Guid/ImageAuthentication.h
+++ b/MdePkg/Include/Guid/ImageAuthentication.h
@@ -144,6 +144,30 @@ typedef struct {
     0x3c5766e8, 0x269c, 0x4e34, {0xaa, 0x14, 0xed, 0x77, 0x6e, 0x85, 0xb3,=
 0xb6} \=0D
   }=0D
 =0D
+///=0D
+/// This identifies a signature containing an RSA-3072 key. The key (only =
the modulus=0D
+/// since the public key exponent is known to be 0x10001) shall be stored =
in big-endian=0D
+/// order.=0D
+/// The SignatureHeader size shall always be 0. The SignatureSize shall al=
ways be 16 (size=0D
+/// of SignatureOwner component) + 384 bytes.=0D
+///=0D
+#define EFI_CERT_RSA3072_GUID \=0D
+  { \=0D
+    0xedd320c2, 0xb057, 0x4b8e, {0xad, 0x46, 0x2c, 0x9b, 0x85, 0x89, 0xee,=
 0x92 } \=0D
+  }=0D
+=0D
+///=0D
+/// This identifies a signature containing an RSA-4096 key. The key (only =
the modulus=0D
+/// since the public key exponent is known to be 0x10001) shall be stored =
in big-endian=0D
+/// order.=0D
+/// The SignatureHeader size shall always be 0. The SignatureSize shall al=
ways be 16 (size=0D
+/// of SignatureOwner component) + 512 bytes.=0D
+///=0D
+#define EFI_CERT_RSA4096_GUID \=0D
+  { \=0D
+    0xb23e89a6, 0x8c8b, 0x4412, {0x85, 0x73, 0x15, 0x4e, 0x8d, 0x00, 0x98,=
 0x2c } \=0D
+  }=0D
+=0D
 ///=0D
 /// This identifies a signature containing a RSA-2048 signature of a SHA-2=
56 hash.  The=0D
 /// SignatureHeader size shall always be 0. The SignatureSize shall always=
 be 16 (size of=0D
@@ -330,6 +354,8 @@ typedef struct {
 extern EFI_GUID  gEfiImageSecurityDatabaseGuid;=0D
 extern EFI_GUID  gEfiCertSha256Guid;=0D
 extern EFI_GUID  gEfiCertRsa2048Guid;=0D
+extern EFI_GUID  gEfiCertRsa3072Guid;=0D
+extern EFI_GUID  gEfiCertRsa4096Guid;=0D
 extern EFI_GUID  gEfiCertRsa2048Sha256Guid;=0D
 extern EFI_GUID  gEfiCertSha1Guid;=0D
 extern EFI_GUID  gEfiCertRsa2048Sha1Guid;=0D
diff --git a/MdePkg/MdePkg.dec b/MdePkg/MdePkg.dec
index b85614992b..24e4779d33 100644
--- a/MdePkg/MdePkg.dec
+++ b/MdePkg/MdePkg.dec
@@ -581,6 +581,8 @@
   gEfiImageSecurityDatabaseGuid  =3D { 0xd719b2cb, 0x3d3a, 0x4596, {0xa3, =
0xbc, 0xda, 0xd0,  0xe, 0x67, 0x65, 0x6f }}=0D
   gEfiCertSha256Guid             =3D { 0xc1c41626, 0x504c, 0x4092, {0xac, =
0xa9, 0x41, 0xf9, 0x36, 0x93, 0x43, 0x28 }}=0D
   gEfiCertRsa2048Guid            =3D { 0x3c5766e8, 0x269c, 0x4e34, {0xaa, =
0x14, 0xed, 0x77, 0x6e, 0x85, 0xb3, 0xb6 }}=0D
+  gEfiCertRsa3072Guid            =3D { 0xedd320c2, 0xb057, 0x4b8e, {0xad, =
0x46, 0x2c, 0x9b, 0x85, 0x89, 0xee, 0x92 }}=0D
+  gEfiCertRsa4096Guid            =3D { 0xb23e89a6, 0x8c8b, 0x4412, {0x85, =
0x73, 0x15, 0x4e, 0x8d, 0x00, 0x98, 0x2c }}=0D
   gEfiCertRsa2048Sha256Guid      =3D { 0xe2b36190, 0x879b, 0x4a3d, {0xad, =
0x8d, 0xf2, 0xe7, 0xbb, 0xa3, 0x27, 0x84 }}=0D
   gEfiCertSha1Guid               =3D { 0x826ca512, 0xcf10, 0x4ac9, {0xb1, =
0x87, 0xbe,  0x1, 0x49, 0x66, 0x31, 0xbd }}=0D
   gEfiCertRsa2048Sha1Guid        =3D { 0x67f8444f, 0x8743, 0x48f1, {0xa3, =
0x28, 0x1e, 0xaa, 0xb8, 0x73, 0x60, 0x80 }}=0D
--=20
2.26.2.windows.1



-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#107294): https://edk2.groups.io/g/devel/message/107294
Mute This Topic: https://groups.io/mt/100385942/7686176
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io]
-=-=-=-=-=-=-=-=-=-=-=-