| ## @file | |
| # Cryptographic Library Package for UEFI Security Implementation. | |
| # PEIM, DXE Driver, and SMM Driver with all crypto services enabled. | |
| # | |
| # Copyright (c) 2023, Intel Corporation. All rights reserved.<BR> | |
| # SPDX-License-Identifier: BSD-2-Clause-Patent | |
| # | |
| ## | |
| ################################################################################ | |
| # | |
| # Defines Section - statements that will be processed to create a Makefile. | |
| # | |
| ################################################################################ | |
| [Defines] | |
| PLATFORM_NAME = CryptoPkg | |
| PLATFORM_GUID = E1063286-6C8C-4c25-AEF0-67A9A5B6E6B6 | |
| PLATFORM_VERSION = 0.98 | |
| DSC_SPECIFICATION = 0x00010005 | |
| OUTPUT_DIRECTORY = Build/CryptoPkgMbed | |
| SUPPORTED_ARCHITECTURES = IA32|X64|AARCH64|RISCV64 | |
| BUILD_TARGETS = DEBUG|RELEASE|NOOPT | |
| SKUID_IDENTIFIER = DEFAULT | |
| !ifndef CRYPTO_IMG_TYPE | |
| DEFINE CRYPTO_IMG_TYPE = DXE_SMM | |
| !endif | |
| !if $(CRYPTO_IMG_TYPE) IN "PEI_DEFAULT PEI_PREMEM DXE_SMM" | |
| !else | |
| !error CRYPTO_IMG_TYPE must be set to one of PEI_DEFAULT PEI_PREMEM DXE_SMM. | |
| !endif | |
| ################################################################################ | |
| # | |
| # Library Class section - list of all Library Classes needed by this Platform. | |
| # | |
| ################################################################################ | |
| !include MdePkg/MdeLibs.dsc.inc | |
| [LibraryClasses] | |
| BaseLib|MdePkg/Library/BaseLib/BaseLib.inf | |
| BaseMemoryLib|MdePkg/Library/BaseMemoryLib/BaseMemoryLib.inf | |
| PcdLib|MdePkg/Library/BasePcdLibNull/BasePcdLibNull.inf | |
| DebugLib|MdePkg/Library/BaseDebugLibNull/BaseDebugLibNull.inf | |
| UefiBootServicesTableLib|MdePkg/Library/UefiBootServicesTableLib/UefiBootServicesTableLib.inf | |
| UefiDriverEntryPoint|MdePkg/Library/UefiDriverEntryPoint/UefiDriverEntryPoint.inf | |
| BaseCryptLib|CryptoPkg/Library/BaseCryptLibNull/BaseCryptLibNull.inf | |
| TlsLib|CryptoPkg/Library/TlsLibNull/TlsLibNull.inf | |
| HashApiLib|CryptoPkg/Library/BaseHashApiLib/BaseHashApiLib.inf | |
| RngLib|MdePkg/Library/BaseRngLib/BaseRngLib.inf | |
| SynchronizationLib|MdePkg/Library/BaseSynchronizationLib/BaseSynchronizationLib.inf | |
| [LibraryClasses.common.PEIM] | |
| PeimEntryPoint|MdePkg/Library/PeimEntryPoint/PeimEntryPoint.inf | |
| MemoryAllocationLib|MdePkg/Library/PeiMemoryAllocationLib/PeiMemoryAllocationLib.inf | |
| PeiServicesTablePointerLib|MdePkg/Library/PeiServicesTablePointerLib/PeiServicesTablePointerLib.inf | |
| PeiServicesLib|MdePkg/Library/PeiServicesLib/PeiServicesLib.inf | |
| HobLib|MdePkg/Library/PeiHobLib/PeiHobLib.inf | |
| [LibraryClasses.common.DXE_SMM_DRIVER] | |
| SmmServicesTableLib|MdePkg/Library/SmmServicesTableLib/SmmServicesTableLib.inf | |
| MemoryAllocationLib|MdePkg/Library/SmmMemoryAllocationLib/SmmMemoryAllocationLib.inf | |
| MmServicesTableLib|MdePkg/Library/MmServicesTableLib/MmServicesTableLib.inf | |
| SynchronizationLib|MdePkg/Library/BaseSynchronizationLib/BaseSynchronizationLib.inf | |
| [LibraryClasses] | |
| MemoryAllocationLib|MdePkg/Library/UefiMemoryAllocationLib/UefiMemoryAllocationLib.inf | |
| DebugLib|MdeModulePkg/Library/PeiDxeDebugLibReportStatusCode/PeiDxeDebugLibReportStatusCode.inf | |
| DebugPrintErrorLevelLib|MdePkg/Library/BaseDebugPrintErrorLevelLib/BaseDebugPrintErrorLevelLib.inf | |
| OemHookStatusCodeLib|MdeModulePkg/Library/OemHookStatusCodeLibNull/OemHookStatusCodeLibNull.inf | |
| PrintLib|MdePkg/Library/BasePrintLib/BasePrintLib.inf | |
| DevicePathLib|MdePkg/Library/UefiDevicePathLib/UefiDevicePathLib.inf | |
| PcdLib|MdePkg/Library/DxePcdLib/DxePcdLib.inf | |
| TimerLib|MdePkg/Library/BaseTimerLibNullTemplate/BaseTimerLibNullTemplate.inf | |
| UefiRuntimeServicesTableLib|MdePkg/Library/UefiRuntimeServicesTableLib/UefiRuntimeServicesTableLib.inf | |
| IoLib|MdePkg/Library/BaseIoLibIntrinsic/BaseIoLibIntrinsic.inf | |
| MbedTlsLib|CryptoPkg/Library/MbedTlsLib/MbedTlsLib.inf | |
| OpensslLib|CryptoPkg/Library/OpensslLib/OpensslLib.inf | |
| IntrinsicLib|CryptoPkg/Library/IntrinsicLib/IntrinsicLib.inf | |
| SafeIntLib|MdePkg/Library/BaseSafeIntLib/BaseSafeIntLib.inf | |
| [LibraryClasses.common.PEIM] | |
| PcdLib|MdePkg/Library/PeiPcdLib/PeiPcdLib.inf | |
| ReportStatusCodeLib|MdeModulePkg/Library/PeiReportStatusCodeLib/PeiReportStatusCodeLib.inf | |
| BaseCryptLib|CryptoPkg/Library/BaseCryptLibMbedTls/PeiCryptLib.inf | |
| TlsLib|CryptoPkg/Library/TlsLibNull/TlsLibNull.inf | |
| [LibraryClasses.IA32.PEIM, LibraryClasses.X64.PEIM] | |
| PeiServicesTablePointerLib|MdePkg/Library/PeiServicesTablePointerLibIdt/PeiServicesTablePointerLibIdt.inf | |
| [LibraryClasses.AARCH64.PEIM] | |
| PeiServicesTablePointerLib|ArmPkg/Library/PeiServicesTablePointerLib/PeiServicesTablePointerLib.inf | |
| [LibraryClasses.common.DXE_DRIVER] | |
| ReportStatusCodeLib|MdeModulePkg/Library/DxeReportStatusCodeLib/DxeReportStatusCodeLib.inf | |
| BaseCryptLib|CryptoPkg/Library/BaseCryptLibMbedTls/BaseCryptLib.inf | |
| TlsLib|CryptoPkg/Library/TlsLibNull/TlsLibNull.inf | |
| [LibraryClasses.common.DXE_SMM_DRIVER] | |
| ReportStatusCodeLib|MdeModulePkg/Library/SmmReportStatusCodeLib/SmmReportStatusCodeLib.inf | |
| BaseCryptLib|CryptoPkg/Library/BaseCryptLibMbedTls/SmmCryptLib.inf | |
| TlsLib|CryptoPkg/Library/TlsLibNull/TlsLibNull.inf | |
| ################################################################################ | |
| # | |
| # Pcd Section - list of all EDK II PCD Entries defined by this Platform | |
| # | |
| ################################################################################ | |
| [PcdsFixedAtBuild] | |
| gEfiMdePkgTokenSpaceGuid.PcdDebugPropertyMask|0x0f | |
| gEfiMdePkgTokenSpaceGuid.PcdDebugPrintErrorLevel|0x80000000 | |
| gEfiMdePkgTokenSpaceGuid.PcdReportStatusCodePropertyMask|0x06 | |
| !if $(CRYPTO_IMG_TYPE) IN "DXE_SMM" | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacMd5.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacSha1.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacSha256.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Md4.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Md5.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Pkcs.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Dh.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Random.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Rsa.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha1.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha512.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.X509.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Tdes.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Arc4.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Hkdf.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Tls.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.TlsSet.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.TlsGet.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.ParallelHash.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| !endif | |
| !if $(CRYPTO_IMG_TYPE) IN "PEI_DEFAULT" | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Aes.Family | PCD_CRYPTO_SERVICE_ENABLE_FAMILY | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Rsa.Services.Pkcs1Verify | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Rsa.Services.New | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Rsa.Services.SetKey | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Rsa.Services.Free | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha1.Services.GetContextSize | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha1.Services.Init | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha1.Services.Update | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha1.Services.Final | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Services.GetContextSize | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Services.Init | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Services.Update | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Services.Final | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.GetContextSize | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.Init | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.Update | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.Final | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.HashAll | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Services.GetContextSize | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Services.Init | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Services.Update | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Services.Final | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Services.HashAll | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sm3.Services.Duplicate | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacSha256.Services.New | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacSha256.Services.Free | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacSha256.Services.SetKey | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacSha256.Services.Duplicate | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacSha256.Services.Update | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.HmacSha256.Services.Final | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Hkdf.Services.Sha256ExtractAndExpand | TRUE | |
| !endif | |
| !if $(CRYPTO_IMG_TYPE) IN "PEI_PREMEM" | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Services.GetContextSize | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Services.Init | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Services.Update | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha256.Services.Final | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.GetContextSize | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.Init | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.Update | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.Final | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha384.Services.HashAll | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha512.Services.GetContextSize | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha512.Services.Init | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha512.Services.Update | TRUE | |
| gEfiCryptoPkgTokenSpaceGuid.PcdCryptoServiceFamilyEnable.Sha512.Services.Final | TRUE | |
| !endif | |
| ################################################################################################### | |
| # | |
| # Components Section - list of the modules and components that will be processed by compilation | |
| # tools and the EDK II tools to generate PE32/PE32+/Coff image files. | |
| # | |
| # Note: The EDK II DSC file is not used to specify how compiled binary images get placed | |
| # into firmware volume images. This section is just a list of modules to compile from | |
| # source into UEFI-compliant binaries. | |
| # It is the FDF file that contains information on combining binary files into firmware | |
| # volume images, whose concept is beyond UEFI and is described in PI specification. | |
| # Binary modules do not need to be listed in this section, as they should be | |
| # specified in the FDF file. For example: Shell binary (Shell_Full.efi), FAT binary (Fat.efi), | |
| # Logo (Logo.bmp), and etc. | |
| # There may also be modules listed in this section that are not required in the FDF file, | |
| # When a module listed here is excluded from FDF file, then UEFI-compliant binary will be | |
| # generated for it, but the binary will not be put into any firmware volume. | |
| # | |
| ################################################################################################### | |
| !if $(CRYPTO_IMG_TYPE) IN "PEI_DEFAULT PEI_PREMEM" | |
| [Components.IA32, Components.X64, Components.AARCH64] | |
| CryptoPkg/Driver/CryptoPei.inf { | |
| <Defines> | |
| !if "$(CRYPTO_SERVICES)" == "ALL" | |
| FILE_GUID = 8DF53C2E-3380-495F-A8B7-370CFE28E1C6 | |
| !elseif "$(CRYPTO_SERVICES)" == "NONE" | |
| FILE_GUID = E5A97EE3-71CC-407F-9DA9-6BE0C8A6C7DF | |
| !elseif "$(CRYPTO_SERVICES)" == "MIN_PEI" | |
| FILE_GUID = 0F5827A9-35FD-4F41-8D38-9BAFCE594D31 | |
| !endif | |
| } | |
| !endif | |
| !if $(CRYPTO_IMG_TYPE) IN "DXE_SMM" | |
| [Components.IA32, Components.X64, Components.AARCH64] | |
| CryptoPkg/Driver/CryptoDxe.inf { | |
| <Defines> | |
| !if "$(CRYPTO_SERVICES)" == "ALL" | |
| FILE_GUID = D9444B06-060D-42C5-9344-F04707BE0169 | |
| !elseif "$(CRYPTO_SERVICES)" == "NONE" | |
| FILE_GUID = C7A340F4-A6CC-4F95-A2DA-42BEA4C3944A | |
| !elseif "$(CRYPTO_SERVICES)" == MIN_DXE_MIN_SMM | |
| FILE_GUID = DDF5BE9E-159A-4B77-B6D7-82B84B5763A2 | |
| !endif | |
| } | |
| [Components.IA32, Components.X64] | |
| CryptoPkg/Driver/CryptoSmm.inf { | |
| <Defines> | |
| !if "$(CRYPTO_SERVICES)" == "ALL" | |
| FILE_GUID = A3542CE8-77F7-49DC-A834-45D37D2EC1FA | |
| !elseif "$(CRYPTO_SERVICES)" == "NONE" | |
| FILE_GUID = 6DCB3127-01E7-4131-A487-DC77A965A541 | |
| !elseif "$(CRYPTO_SERVICES)" == MIN_DXE_MIN_SMM | |
| FILE_GUID = 85F7EA15-3A2B-474A-8875-180542CD6BF3 | |
| !endif | |
| } | |
| !endif | |
| [BuildOptions] | |
| *_*_*_CC_FLAGS = -D DISABLE_NEW_DEPRECATED_INTERFACES | |
| MSFT:*_*_*_CC_FLAGS = /D ENABLE_MD5_DEPRECATED_INTERFACES | |
| INTEL:*_*_*_CC_FLAGS = /D ENABLE_MD5_DEPRECATED_INTERFACES | |
| GCC:*_*_*_CC_FLAGS = -D ENABLE_MD5_DEPRECATED_INTERFACES | |
| RVCT:*_*_*_CC_FLAGS = -DENABLE_MD5_DEPRECATED_INTERFACES | |
| !if $(CRYPTO_IMG_TYPE) IN "DXE_SMM" | |
| MSFT:*_*_*_DLINK_FLAGS = /ALIGN:4096 | |
| CLANGPDB: *_*_*_DLINK_FLAGS = /ALIGN:4096 | |
| GCC:*_GCC*_*_DLINK_FLAGS = -z common-page-size=0x1000 | |
| !endif |