robin.thoni
/
ipxe
Beobachten 1
Favorisieren 0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 11 Wiki Aktivität
Du kannst nicht mehr als 25 Themen auswählen Themen müssen mit entweder einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
4363 Commits
2 Branches
Struktur: 1025835d80
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „1025835d80“
${ noResults }
ipxe/src/include/ipxe/efi/Guid/WinCertificate.h

WinCertificate.h 3.7KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130 
  1. /** @file

  2.   GUID for UEFI WIN_CERTIFICATE structure.

  3. 

  4.   Copyright (c) 2006 - 2012, Intel Corporation. All rights reserved.<BR>

  5.   This program and the accompanying materials

  6.   are licensed and made available under the terms and conditions of the BSD License

  7.   which accompanies this distribution.  The full text of the license may be found at

  8.   http://opensource.org/licenses/bsd-license.php

  9. 

  10.   THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,

  11.   WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.

  12. 

  13.   @par Revision Reference:

  14.   GUID defined in UEFI 2.0 spec.

  15. **/

  16. 

  17. #ifndef __EFI_WIN_CERTIFICATE_H__

  18. #define __EFI_WIN_CERTIFICATE_H__

  19. 

  20. FILE_LICENCE ( BSD3 );

  21. 

  22. //

  23. // _WIN_CERTIFICATE.wCertificateType

  24. //

  25. #define WIN_CERT_TYPE_PKCS_SIGNED_DATA 0x0002

  26. #define WIN_CERT_TYPE_EFI_PKCS115      0x0EF0

  27. #define WIN_CERT_TYPE_EFI_GUID         0x0EF1

  28. 

  29. ///

  30. /// The WIN_CERTIFICATE structure is part of the PE/COFF specification.

  31. ///

  32. typedef struct {

  33.   ///

  34.   /// The length of the entire certificate,

  35.   /// including the length of the header, in bytes.

  36.   ///

  37.   UINT32  dwLength;

  38.   ///

  39.   /// The revision level of the WIN_CERTIFICATE

  40.   /// structure. The current revision level is 0x0200.

  41.   ///

  42.   UINT16  wRevision;

  43.   ///

  44.   /// The certificate type. See WIN_CERT_TYPE_xxx for the UEFI

  45.   /// certificate types. The UEFI specification reserves the range of

  46.   /// certificate type values from 0x0EF0 to 0x0EFF.

  47.   ///

  48.   UINT16  wCertificateType;

  49.   ///

  50.   /// The following is the actual certificate. The format of

  51.   /// the certificate depends on wCertificateType.

  52.   ///

  53.   /// UINT8 bCertificate[ANYSIZE_ARRAY];

  54.   ///

  55. } WIN_CERTIFICATE;

  56. 

  57. ///

  58. /// WIN_CERTIFICATE_UEFI_GUID.CertType

  59. ///

  60. #define EFI_CERT_TYPE_RSA2048_SHA256_GUID \

  61.   {0xa7717414, 0xc616, 0x4977, {0x94, 0x20, 0x84, 0x47, 0x12, 0xa7, 0x35, 0xbf } }

  62. 

  63. ///

  64. /// WIN_CERTIFICATE_UEFI_GUID.CertData

  65. ///

  66. typedef struct {

  67.   EFI_GUID  HashType;

  68.   UINT8     PublicKey[256];

  69.   UINT8     Signature[256];

  70. } EFI_CERT_BLOCK_RSA_2048_SHA256;

  71. 

  72. 

  73. ///

  74. /// Certificate which encapsulates a GUID-specific digital signature

  75. ///

  76. typedef struct {

  77.   ///

  78.   /// This is the standard WIN_CERTIFICATE header, where

  79.   /// wCertificateType is set to WIN_CERT_TYPE_EFI_GUID.

  80.   ///

  81.   WIN_CERTIFICATE   Hdr;

  82.   ///

  83.   /// This is the unique id which determines the

  84.   /// format of the CertData. .

  85.   ///

  86.   EFI_GUID          CertType;

  87.   ///

  88.   /// The following is the certificate data. The format of

  89.   /// the data is determined by the CertType.

  90.   /// If CertType is EFI_CERT_TYPE_RSA2048_SHA256_GUID,

  91.   /// the CertData will be EFI_CERT_BLOCK_RSA_2048_SHA256 structure.

  92.   ///

  93.   UINT8            CertData[1];

  94. } WIN_CERTIFICATE_UEFI_GUID;

  95. 

  96. 

  97. ///

  98. /// Certificate which encapsulates the RSASSA_PKCS1-v1_5 digital signature.

  99. ///

  100. /// The WIN_CERTIFICATE_UEFI_PKCS1_15 structure is derived from

  101. /// WIN_CERTIFICATE and encapsulate the information needed to

  102. /// implement the RSASSA-PKCS1-v1_5 digital signature algorithm as

  103. /// specified in RFC2437.

  104. ///

  105. typedef struct {

  106.   ///

  107.   /// This is the standard WIN_CERTIFICATE header, where

  108.   /// wCertificateType is set to WIN_CERT_TYPE_UEFI_PKCS1_15.

  109.   ///

  110.   WIN_CERTIFICATE Hdr;

  111.   ///

  112.   /// This is the hashing algorithm which was performed on the

  113.   /// UEFI executable when creating the digital signature.

  114.   ///

  115.   EFI_GUID        HashAlgorithm;

  116.   ///

  117.   /// The following is the actual digital signature. The

  118.   /// size of the signature is the same size as the key

  119.   /// (1024-bit key is 128 bytes) and can be determined by

  120.   /// subtracting the length of the other parts of this header

  121.   /// from the total length of the certificate as found in

  122.   /// Hdr.dwLength.

  123.   ///

  124.   /// UINT8 Signature[];

  125.   ///

  126. } WIN_CERTIFICATE_EFI_PKCS1_15;

  127. 

  128. extern EFI_GUID gEfiCertTypeRsa2048Sha256Guid;

  129. 

  130. #endif