## @file\r
# Cryptographic Library Instance for SMM driver.\r
#\r
-# This library instance uses ConstantTimeClock.c thus does not provide\r
-# functionality for following APIs which need system time support:\r
-# 1) RsaGenerateKey\r
-# 2) RsaCheckKey\r
-# 3) RsaPkcs1Sign\r
-# 4) Pkcs7Sign\r
-# 5) DhGenerateParameter\r
-# 6) DhGenerateKey\r
+# Caution: This module requires additional review when modified.\r
+# This library will have external input - signature.\r
+# This external input must be validated carefully to avoid security issues such as\r
+# buffer overflow or integer overflow.\r
+#\r
+# Note: SHA-384 Digest functions, SHA-512 Digest functions,\r
+# RSA external functions, PKCS#7 SignedData sign functions, Diffie-Hellman functions, and\r
+# authenticode signature verification functions are not supported in this instance.\r
+#\r
+# Copyright (c) 2010 - 2022, Intel Corporation. All rights reserved.<BR>\r
+# SPDX-License-Identifier: BSD-2-Clause-Patent\r
#\r
-# Copyright (c) 2010 - 2012, Intel Corporation. All rights reserved.<BR>\r
-# This program and the accompanying materials\r
-# are licensed and made available under the terms and conditions of the BSD License\r
-# which accompanies this distribution. The full text of the license may be found at\r
-# http://opensource.org/licenses/bsd-license.php\r
-# \r
-# THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,\r
-# WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.\r
-# \r
##\r
\r
[Defines]\r
INF_VERSION = 0x00010005\r
BASE_NAME = SmmCryptLib\r
+ MODULE_UNI_FILE = SmmCryptLib.uni\r
FILE_GUID = 028080a3-8958-4a62-a1a8-0fa1da162007\r
MODULE_TYPE = DXE_SMM_DRIVER\r
VERSION_STRING = 1.0\r
PI_SPECIFICATION_VERSION = 0x0001000A\r
- LIBRARY_CLASS = BaseCryptLib|DXE_SMM_DRIVER SMM_CORE\r
+ LIBRARY_CLASS = BaseCryptLib|DXE_SMM_DRIVER SMM_CORE MM_STANDALONE\r
\r
#\r
# The following information is for reference only and not required by the build tools.\r
#\r
-# VALID_ARCHITECTURES = IA32 X64\r
+# VALID_ARCHITECTURES = IA32 X64 ARM AARCH64\r
#\r
\r
[Sources]\r
+ InternalCryptLib.h\r
Hash/CryptMd5.c\r
Hash/CryptSha1.c\r
Hash/CryptSha256.c\r
- Pk/CryptRsa.c\r
- Pk/CryptPkcs7.c\r
+ Hash/CryptSm3.c\r
+ Hash/CryptSha512.c\r
+ Hash/CryptSha3.c\r
+ Hash/CryptXkcp.c\r
+ Hash/CryptCShake256.c\r
+ Hash/CryptParallelHash.c\r
+ Hmac/CryptHmacSha256.c\r
+ Kdf/CryptHkdfNull.c\r
+ Cipher/CryptAes.c\r
+ Pk/CryptRsaBasic.c\r
+ Pk/CryptRsaExtNull.c\r
+ Pk/CryptPkcs1Oaep.c\r
+ Pk/CryptPkcs5Pbkdf2.c\r
+ Pk/CryptPkcs7SignNull.c\r
+ Pk/CryptPkcs7VerifyCommon.c\r
+ Pk/CryptPkcs7VerifyBase.c\r
+ Pk/CryptPkcs7VerifyEku.c\r
+ Pk/CryptDhNull.c\r
Pk/CryptX509.c\r
+ Pk/CryptAuthenticodeNull.c\r
+ Pk/CryptTsNull.c\r
+ Pk/CryptRsaPss.c\r
+ Pk/CryptRsaPssSignNull.c\r
Pem/CryptPem.c\r
\r
SysCall/CrtWrapper.c\r
SysCall/BaseMemAllocation.c\r
\r
[Sources.Ia32]\r
- SysCall/Ia32/MathMultS64x64.c | MSFT\r
- SysCall/Ia32/MathDivU64x64.c | MSFT\r
- SysCall/Ia32/MathReminderU64x64.c | MSFT\r
- SysCall/Ia32/MathLShiftS64.c | MSFT\r
- SysCall/Ia32/MathRShiftU64.c | MSFT\r
-\r
- SysCall/Ia32/MathMultS64x64.c | INTEL\r
- SysCall/Ia32/MathDivU64x64.c | INTEL\r
- SysCall/Ia32/MathReminderU64x64.c | INTEL\r
- SysCall/Ia32/MathLShiftS64.c | INTEL\r
- SysCall/Ia32/MathRShiftU64.c | INTEL\r
-\r
- SysCall/Ia32/MathMultS64x64.S | GCC\r
- SysCall/Ia32/MathDivU64x64.S | GCC\r
- SysCall/Ia32/MathReminderU64x64.S | GCC\r
- SysCall/Ia32/MathLShiftS64.S | GCC\r
- SysCall/Ia32/MathRShiftU64.S | GCC\r
-\r
Rand/CryptRandTsc.c\r
\r
[Sources.X64]\r
Rand/CryptRandTsc.c\r
\r
-[Sources.IPF]\r
- Rand/CryptRandItc.c\r
-\r
[Sources.ARM]\r
Rand/CryptRand.c\r
\r
+[Sources.AARCH64]\r
+ Rand/CryptRand.c\r
+\r
[Packages]\r
MdePkg/MdePkg.dec\r
CryptoPkg/CryptoPkg.dec\r
OpensslLib\r
IntrinsicLib\r
PrintLib\r
+ MmServicesTableLib\r
+ SynchronizationLib\r
+\r
+[FixedPcd]\r
+ gEfiCryptoPkgTokenSpaceGuid.PcdOpensslEcEnabled\r
\r
#\r
# Remove these [BuildOptions] after this library is cleaned up\r
#\r
[BuildOptions]\r
- GCC:*_GCC44_IA32_CC_FLAGS = "-D__cdecl=__attribute__((cdecl))" "-D__declspec(t)=__attribute__((t))"\r
- \r
+ #\r
+ # suppress the following warnings so we do not break the build with warnings-as-errors:\r
+ # C4090: 'function' : different 'const' qualifiers\r
+ #\r
+ MSFT:*_*_*_CC_FLAGS = /wd4090\r
+\r
+ XCODE:*_*_*_CC_FLAGS = -mmmx -msse -std=c99\r
+\r
+ GCC:*_CLANG35_*_CC_FLAGS = -std=c99\r
+ GCC:*_CLANG38_*_CC_FLAGS = -std=c99\r
+ GCC:*_CLANGPDB_*_CC_FLAGS = -std=c99 -Wno-error=incompatible-pointer-types\r