Branch: refs/heads/master
Home: https://github.com/tianocore/edk2
Commit: cafc573ac0b89db1f02e17eae75842e63c4ef7d7
https://github.com/tianocore/edk2/commit/cafc573ac0b89db1f02e17eae75842e63c4ef7d7
Author: Yi Li <yi1...@intel.com>
Date: 2022-10-10 (Mon, 10 Oct 2022)
Changed paths:
M MdePkg/Include/IndustryStandard/Tls1.h
Log Message:
-----------
MdePkg: Add Tls configuration related define
REF:https://bugzilla.tianocore.org/show_bug.cgi?id=3892
Consumed by TlsSetEcCurve and TlsSetSignatureAlgoList.
Cc: Jiewen Yao <jiewen....@intel.com>
Cc: Michael D Kinney <michael.d.kin...@intel.com>
Cc: Liming Gao <gaolim...@byosoft.com.cn>
Signed-off-by: Yi Li <yi1...@intel.com>
Acked-by: Michael D Kinney <michael.d.kin...@intel.com>
Commit: bb78d969b703d0f2b6205d5e3ec3ec8989a2d6c0
https://github.com/tianocore/edk2/commit/bb78d969b703d0f2b6205d5e3ec3ec8989a2d6c0
Author: Yi Li <yi1...@intel.com>
Date: 2022-10-10 (Mon, 10 Oct 2022)
Changed paths:
M CryptoPkg/Include/Library/TlsLib.h
M CryptoPkg/Library/TlsLib/InternalTlsLib.h
M CryptoPkg/Library/TlsLib/TlsConfig.c
M CryptoPkg/Library/TlsLib/TlsProcess.c
M CryptoPkg/Library/TlsLibNull/TlsConfigNull.c
M CryptoPkg/Library/TlsLibNull/TlsProcessNull.c
Log Message:
-----------
CryptoPkg: Extend Tls function library
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3892
1. TlsSetSignatureAlgoList(): Configure the list of TLS signature algorithms
that should be used as part of the TLS session establishment.
This is needed for some WLAN Supplicant connection establishment flows
that allow only specific TLS signature algorithms to be used, e.g.,
Authenticate and Key Managmenet (AKM) suites that are SUITE-B compliant.
2. TlsSetEcCurve(): Configure the Elliptic Curve that should be used for
TLS flows the use cipher suite with EC,
e.g., TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384.
This is needed for some WLAN Supplicant connection establishment flows
that allow only specific TLS signature algorithms to be used,
e.g., Authenticate and Key Managmenet (AKM) suites that are SUITE-B compliant.
3. TlsShutdown():
Shutdown the TLS connection without releasing the resources,
meaning a new connection can be started without calling TlsNew() and
without setting certificates etc.
4. TlsGetExportKey(): Derive keying material from a TLS connection using the
mechanism described in RFC 5705 and export the key material (needed
by EAP methods such as EAP-TTLS and EAP-PEAP).
5. TlsSetHostPrivateKeyEx(): This function adds the local private key
(PEM-encoded or PKCS#8 or DER-encoded private key) into the specified
TLS object for TLS negotiation. There is already a similar function
TlsSetHostPrivateKey(), the new Ex function introduces a new parameter
Password, set Password to NULL when useless.
Cc: Jiewen Yao <jiewen....@intel.com>
Cc: Jian J Wang <jian.j.w...@intel.com>
Cc: Xiaoyu Lu <xiaoyu1...@intel.com>
Cc: Guomin Jiang <guomin.ji...@intel.com>
Signed-off-by: Yi Li <yi1...@intel.com>
Reviewed-by: Jiewen Yao <jiewen....@intel.com>
Commit: 8db4e9f9a0c2ec992e28259ceb7a8eb316716b05
https://github.com/tianocore/edk2/commit/8db4e9f9a0c2ec992e28259ceb7a8eb316716b05
Author: Yi Li <yi1...@intel.com>
Date: 2022-10-10 (Mon, 10 Oct 2022)
Changed paths:
M CryptoPkg/Driver/Crypto.c
M CryptoPkg/Include/Pcd/PcdCryptoServiceFamilyEnable.h
M CryptoPkg/Library/BaseCryptLibOnProtocolPpi/CryptLib.c
M CryptoPkg/Private/Protocol/Crypto.h
Log Message:
-----------
CryptoPkg: Add new Tls APIs to DXE and protocol
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3892
The implementation provides new Tls library functions
for Crypto EFI Driver and Protocol.
Cc: Jiewen Yao <jiewen....@intel.com>
Cc: Jian J Wang <jian.j.w...@intel.com>
Cc: Xiaoyu Lu <xiaoyu1...@intel.com>
Cc: Guomin Jiang <guomin.ji...@intel.com>
Signed-off-by: Yi Li <yi1...@intel.com>
Reviewed-by: Jiewen Yao <jiewen....@intel.com>
Compare: https://github.com/tianocore/edk2/compare/3c9e2f239a38...8db4e9f9a0c2
_______________________________________________
edk2-commits mailing list
edk2-commits@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/edk2-commits
