From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by spool.mail.gandi.net (Postfix) with ESMTPS id ED1609416B1 for ; Tue, 26 Dec 2023 11:29:09 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=AQFMVsDMJj1PLjvC//LnTh5EFnpIgQXQnpYoHVPrKgY=; c=relaxed/simple; d=groups.io; h=ARC-Seal:ARC-Message-Signature:ARC-Authentication-Results:Received-SPF:From:To:CC:Subject:Date:Message-ID:In-Reply-To:References:MIME-Version:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Transfer-Encoding:Content-Type; s=20140610; t=1703590148; v=1; b=FbegarELp8FRWBuE7oNGQG34ZfcnQ+E3m7suuJNCnhPxQmuFxTnGJkcMUx2Mh3zSlLDWt3TO xe+EU3j2kgiFhmLa41d1bE0vXCRls09Nw5vSOUR35fHVZ4ao6/yr5yIsgFOcp5Z7D4LfZixw2zc lfxLsgtpzHOUHrjXAAahx48I= X-Received: by 127.0.0.2 with SMTP id RdOuYY7687511xQn16fV75rG; Tue, 26 Dec 2023 03:29:08 -0800 X-Received: from NAM10-DM6-obe.outbound.protection.outlook.com (NAM10-DM6-obe.outbound.protection.outlook.com [40.107.93.77]) by mx.groups.io with SMTP id smtpd.web10.80564.1703590147844949909 for ; Tue, 26 Dec 2023 03:29:08 -0800 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=TchjQoOujT9H3UbBOtU2Hnmk3BGXQCmgEBaljDvD4vQckIQCh34mteHcGkJG0xhxRkMESnlYlQnDKrtOhs07wPIeSdIryAUfIylXXyk6N69eCVRW7kKx06CG8O62GoWmo4UwufPqg3dxW6EmzKBZzd1kUAA2AWYQEZ2a3FIABRHj+oWE+jYAuasQXOHyoZlBcP+yT40PG2G/9HnwvnOKVo0H/JkICDbejVH7DizpZh3lNKyxMi8PrUiCDhBbAgJ5/Pm3TNcYEKHwD8WD7zP5ygUeaGwk+ODTSiWl2WoM0MMjQq/DipBqvw4kVd72AXvz3fwuWgLRy1hEIc/k0f2peQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=6i6ojwZo8Dc+tqSwUpEvG+vakAyPvH1w+g43uljLmx0=; b=HQNSulOtgZTOFR/EXB5+qXTT2fI9R4jowuOXZvfEO+KIKpj1Fdms4pLPrgZglsxTMh7tFihnKnMnwHL9bYOWdKy9SqFZ6/RNhI32Ngs66gpEBf0mKO2ySuGWm+S+KZJeNZ9qKm8KquGyFMlRwFifeB2Lp1OEXGI/PVNscJW1ytCQvlRLtfkfEDSx38dB/3f8MA/EsdYoXBJDT2qd/kpZg9uopMH2dm1sJVehRkzAwkWVXZ8OSmRXg98PO/S+/qxI64ZWnsoUHQypM44Y6wiysSRzGWCeyzfh90mA+qqVy9o7Oii50np02upwTkLZIG2ojOdjuAkrZf8Lwsj2TjMZhA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 165.204.84.17) smtp.rcpttodomain=edk2.groups.io smtp.mailfrom=amd.com; dmarc=pass (p=quarantine sp=quarantine pct=100) action=none header.from=amd.com; dkim=none (message not signed); arc=none (0) X-Received: from DS7PR05CA0104.namprd05.prod.outlook.com (2603:10b6:8:56::16) by PH7PR12MB6636.namprd12.prod.outlook.com (2603:10b6:510:212::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7135.18; Tue, 26 Dec 2023 11:29:02 +0000 X-Received: from DS1PEPF00017092.namprd03.prod.outlook.com (2603:10b6:8:56:cafe::3f) by DS7PR05CA0104.outlook.office365.com (2603:10b6:8:56::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7135.18 via Frontend Transport; Tue, 26 Dec 2023 11:29:01 +0000 X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 165.204.84.17) smtp.mailfrom=amd.com; dkim=none (message not signed) header.d=none;dmarc=pass action=none header.from=amd.com; Received-SPF: Pass (protection.outlook.com: domain of amd.com designates 165.204.84.17 as permitted sender) receiver=protection.outlook.com; client-ip=165.204.84.17; helo=SATLEXMB04.amd.com; pr=C X-Received: from SATLEXMB04.amd.com (165.204.84.17) by DS1PEPF00017092.mail.protection.outlook.com (10.167.17.135) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.20.7135.14 via Frontend Transport; Tue, 26 Dec 2023 11:29:01 +0000 X-Received: from TPE-L1-ABNCHANG.amd.com (10.180.168.240) by SATLEXMB04.amd.com (10.181.40.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.34; Tue, 26 Dec 2023 05:28:58 -0600 From: "Chang, Abner via groups.io" To: CC: Saloni Kasbekar , Zachary Clark-williams , Michael Brown , Nickle Wang , Igor Kulchytskyy Subject: [edk2-devel] [RFC][PATCH 1/2] NetworkPkg: EDKII HTTPS platform TLS policy Date: Tue, 26 Dec 2023 19:28:38 +0800 Message-ID: <20231226112839.1152-2-abner.chang@amd.com> In-Reply-To: <20231226112839.1152-1-abner.chang@amd.com> References: <20231226112839.1152-1-abner.chang@amd.com> MIME-Version: 1.0 X-Originating-IP: [10.180.168.240] X-ClientProxiedBy: SATLEXMB03.amd.com (10.181.40.144) To SATLEXMB04.amd.com (10.181.40.145) X-EOPAttributedMessage: 0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: DS1PEPF00017092:EE_|PH7PR12MB6636:EE_ X-MS-Office365-Filtering-Correlation-Id: 31a4ce7d-2967-4e57-0065-08dc0605dc1f X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam-Message-Info: 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 X-OriginatorOrg: amd.com X-MS-Exchange-CrossTenant-OriginalArrivalTime: 26 Dec 2023 11:29:01.6608 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: 31a4ce7d-2967-4e57-0065-08dc0605dc1f X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=3dd8961f-e488-4e60-8e11-a82d994e183d;Ip=[165.204.84.17];Helo=[SATLEXMB04.amd.com] X-MS-Exchange-CrossTenant-AuthSource: DS1PEPF00017092.namprd03.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH7PR12MB6636 Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,abner.chang@amd.com List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: GxjTthvp2sU7tW9nMPg59EIcx7686176AA= Content-Transfer-Encoding: quoted-printable Content-Type: text/plain X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20140610 header.b=FbegarEL; dmarc=none; spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io From: Abner Chang Definitions of EDKII_HTTPS_TLS_PLATFORM_POLICY_PROTOCOL. Signed-off-by: Abner Chang Cc: Saloni Kasbekar Cc: Zachary Clark-williams Cc: Michael Brown Cc: Nickle Wang Cc: Igor Kulchytskyy --- NetworkPkg/NetworkPkg.dec | 3 + .../Protocol/HttpsTlsPlatformPolicyProtocol.h | 72 +++++++++++++++++++ 2 files changed, 75 insertions(+) create mode 100644 NetworkPkg/Include/Protocol/HttpsTlsPlatformPolicyProto= col.h diff --git a/NetworkPkg/NetworkPkg.dec b/NetworkPkg/NetworkPkg.dec index e06f35e7747..88676c7eaf6 100644 --- a/NetworkPkg/NetworkPkg.dec +++ b/NetworkPkg/NetworkPkg.dec @@ -94,6 +94,9 @@ ## Include/Protocol/WiFiProfileSyncProtocol.h gEdkiiWiFiProfileSyncProtocolGuid =3D {0x399a2b8a, 0xc267, 0x44aa, {0x9a= , 0xb4, 0x30, 0x58, 0x8c, 0xd2, 0x2d, 0xcc}} =20 + ## Include/Protocol/HttpsTlsPlatformPolicyProtocol.h + gEdkiiHttpsTlsPlatformPolicyProtocolGuid =3D {0xbfe8e3e3, 0xb884, 0x4a6f= , {0xae, 0xd3, 0xb8, 0xdb, 0xeb, 0xc5, 0x58, 0xc0}} + [PcdsFixedAtBuild] ## The max attempt number will be created by iSCSI driver. # @Prompt Max attempt number. diff --git a/NetworkPkg/Include/Protocol/HttpsTlsPlatformPolicyProtocol.h b= /NetworkPkg/Include/Protocol/HttpsTlsPlatformPolicyProtocol.h new file mode 100644 index 00000000000..5f82ceba924 --- /dev/null +++ b/NetworkPkg/Include/Protocol/HttpsTlsPlatformPolicyProtocol.h @@ -0,0 +1,72 @@ +/** @file + This file defines the EDKII HTTPS TLS Platform Protocol interface. + + Copyright (C) 2023 Advanced Micro Devices, Inc. All rights reserved.
+ SPDX-License-Identifier: BSD-2-Clause-Patent +**/ + +#ifndef EDKII_HTTPS_TLS_PLATFORM_POLICY_PROTOCOL_H_ +#define EDKII_HTTPS_TLS_PLATFORM_POLICY_PROTOCOL_H_ + +#include +#include + +#define EEDKII_HTTPS_TLS_PLATFORM_POLICY_PROTOCOL_GUID \ + { \ + 0xbfe8e3e3, 0xb884, 0x4a6f, {0xae, 0xd3, 0xb8, 0xdb, 0xeb, 0xc5, 0x58,= 0xc0} \ + } + +typedef struct _EDKII_HTTPS_TLS_PLATFORM_POLICY_PROTOCOL EDKII_HTTPS_TLS_P= LATFORM_POLICY_PROTOCOL; + +/// +/// EDKII_PLATFORM_HTTPS_TLS_CONFIG_DATA_VERSION +/// +typedef struct { + UINT8 Major; + UINT8 Minor; +} EDKII_PLATFORM_HTTPS_TLS_CONFIG_DATA_VERSION; + +typedef struct { + EDKII_PLATFORM_HTTPS_TLS_CONFIG_DATA_VERSION Version; + /// + /// EDKII_PLATFORM_HTTPS_TLS_CONFIG_DATA_VERSION V1.0 + /// + EFI_TLS_CONNECTION_END ConnectionEnd; + EFI_TLS_VERIFY VerifyMethod; + EFI_TLS_VERIFY_HOST VerifyHost; +} EDKII_PLATFORM_HTTPS_TLS_CONFIG_DATA; + +/** + Function to get platform HTTPS TLS Policy. + + @param[in] This Pointer to the EDKII_HTTPS_TLS_PLATF= ORM_POLICY_PROTOCOL + instance. + @param[in] HttpHandle EFI_HTTP_PROTOCOL handle used to tra= nsfer HTTP payload. + @param[out] PlatformPolicy Pointer to retrieve EDKII_PLATFORM_H= TTPS_TLS_CONFIG_DATA. + + @retval EFI_SUCCESS Platform HTTPS TLS config data is re= turned in + PlatformPolicy. + @retval EFI_INVALID_PARAMETER Either HttpHandle or PlatformPolicy = is NULL, or both are NULL. + @retval EFI_NOT_FOUND No HTTP protocol insterface is found= on HttpHandle. + @retval EFI_UNSUPPORTED HttpProtocolInstance is not the HTTP= instance platform + would like to config. +**/ +typedef +EFI_STATUS +(EFIAPI *EDKII_HTTPS_TLS_GET_PLATFORM_POLICY)( + IN EDKII_HTTPS_TLS_PLATFORM_POLICY_PROTOCOL *This, + IN EFI_HANDLE HttpHandle, + OUT EDKII_PLATFORM_HTTPS_TLS_CONFIG_DATA *PlatformPolicy + ); + +/// +/// Platform can install more than one EDKII_HTTPS_TLS_PLATFORM_POLICY_PRO= TOCOL +/// instances to return the platfrom HTTP TLS policy config data for the +/// multiple HTTP instances. +/// +struct _EDKII_HTTPS_TLS_PLATFORM_POLICY_PROTOCOL { + EDKII_HTTPS_TLS_GET_PLATFORM_POLICY PlatformGetPolicy; +}; + +extern EFI_GUID gEdkiiHttpsTlsPlatformPolicyProtocolGuid; +#endif // EDKII_HTTPS_TLS_PLATFORM_POLICY_PROTOCOL_H_ --=20 2.37.1.windows.1 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#112914): https://edk2.groups.io/g/devel/message/112914 Mute This Topic: https://groups.io/mt/103368440/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-