summaryrefslogtreecommitdiff
path: root/Documentation/RFC
diff options
context:
space:
mode:
authorAlex Thiessen <alex.thiessen.de+coreboot@gmail.com>2018-01-03 06:29:52 +0000
committerStefan Reinauer <stefan.reinauer@coreboot.org>2018-01-14 23:11:40 +0000
commit00a455c8a70dcb3095cdce39b499d212b69454b7 (patch)
tree406e56ada88242626a4675248110d3bfd38ae965 /Documentation/RFC
parent106a3e8c7a3e0aba9d6e5a9c171d0e999063951a (diff)
downloadcoreboot-00a455c8a70dcb3095cdce39b499d212b69454b7.tar.xz
util/broadcom/secimage: Add OpenSSL 1.1 support
The `secimage` utility uses OpenSSL to calculate HMAC, which it does in a rather unorthodox way, using deprecated `HMAC_CTX_init` API and repeated calling of `HMAC_Init_ex` without a clear reason. The former causes build errors with OpenSSL 1.1 while the rest of the `HmacSha256Hash` function is confusing and overly complex. Make `HmacSha256Hash` use a single OpenSSL API call. Test passed: resulting signed binary remains identical. Change-Id: Ib23c0ad96f9d8cc30ad357de8c0b0ba967c7d724 Signed-off-by: Alex Thiessen <alex.thiessen.de+coreboot@gmail.com> Reviewed-on: https://review.coreboot.org/23069 Tested-by: build bot (Jenkins) <no-reply@coreboot.org> Reviewed-by: Paul Menzel <paulepanter@users.sourceforge.net> Reviewed-by: Stefan Reinauer <stefan.reinauer@coreboot.org>
Diffstat (limited to 'Documentation/RFC')
0 files changed, 0 insertions, 0 deletions