From mboxrd@z Thu Jan 1 00:00:00 1970 Authentication-Results: mx.groups.io; dkim=missing; spf=pass (domain: intel.com, ip: 192.55.52.115, mailfrom: xiaoyux.lu@intel.com) Received: from mga14.intel.com (mga14.intel.com [192.55.52.115]) by groups.io with SMTP; Thu, 16 May 2019 00:55:59 -0700 X-Amp-Result: SKIPPED(no attachment in message) X-Amp-File-Uploaded: False Received: from orsmga001.jf.intel.com ([10.7.209.18]) by fmsmga103.fm.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 16 May 2019 00:55:59 -0700 X-ExtLoop1: 1 Received: from xiaoyu-dev.sh.intel.com ([10.239.47.11]) by orsmga001.jf.intel.com with ESMTP; 16 May 2019 00:55:57 -0700 From: "Xiaoyu lu" To: devel@edk2.groups.io Cc: Laszlo Ersek , Jian J Wang , Ting Ye Subject: [PATCH v4 0/7] CryptoPkg: Upgrade OpenSSL to 1.1.1b Date: Thu, 16 May 2019 03:54:51 -0400 Message-Id: <1557993298-22205-1-git-send-email-xiaoyux.lu@intel.com> X-Mailer: git-send-email 2.7.4 This series is also available at: https://github.com/xiaoyuxlu/edk2/tree/bz_1089_upgrade_to_openssl_1_1_1b_v4 Changes: (1) CryptoPkgOpensslLib: Modify process_files.pl for upgrading OpenSSL (2) CryptoPkg/OpensslLib: Exclude unnecessary files in process_files.pl crypto/store/* are excluded. crypto/rand/randfile.c is excluded. (3) CryptoPkg/IntrinsicLib: Fix possible unresolved external symbol issue (4) CryptoPkg/OpensslLib: Prepare for upgrading OpenSSL Disable warnings for buiding OpenSSL_1_1_1b (5) CryptoPkg/OpensslLib: Fix cross-build problem for AARCH64 (6) CryptoPkg: Upgrade OpenSSL to 1.1.1b The biggest change is use TSC as entropy source If TSC isn't avaiable, fallback to TimerLib(PerformanceCounter). (7) CryptoPkg/BaseCryptLib: Make HMAC_CTX size backward compatible Verification done for this series: * Https boot in OvmfPkg. * BaseCrypt Library test. (Ovmf, EmulatorPkg) Important notice: Nt32Pkg doesn't support TimerLib > TimerLib|MdePkg/Library/BaseTimerLibNullTemplate/BaseTimerLibNullTemplate.inf So it will failed in Nt32Pkg. Cc: Jian J Wang Cc: Ting Ye Laszlo Ersek (1): CryptoPkg/OpensslLib: Fix cross-build problem for AARCH64 Xiaoyu Lu (6): CryptoPkg/OpensslLib: Modify process_files.pl for upgrading OpenSSL CryptoPkg/OpensslLib: Exclude unnecessary files in process_files.pl CryptoPkg/IntrinsicLib: Fix possible unresolved external symbol issue CryptoPkg/OpensslLib: Prepare for upgrading OpenSSL CryptoPkg: Upgrade OpenSSL to 1.1.1b CryptoPkg/BaseCryptLib: Make HMAC_CTX size backward compatible CryptoPkg/Library/IntrinsicLib/IntrinsicLib.inf | 4 +- CryptoPkg/Library/OpensslLib/OpensslLib.inf | 76 ++++- CryptoPkg/Library/OpensslLib/OpensslLibCrypto.inf | 67 ++++- CryptoPkg/Library/Include/CrtLibSupport.h | 13 +- CryptoPkg/Library/Include/openssl/opensslconf.h | 54 +++- CryptoPkg/Library/Include/sys/syscall.h | 11 + CryptoPkg/Library/OpensslLib/buildinf.h | 2 + CryptoPkg/Library/OpensslLib/rand_pool_noise.h | 29 ++ CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacMd5.c | 8 +- .../Library/BaseCryptLib/Hmac/CryptHmacSha1.c | 9 +- .../Library/BaseCryptLib/Hmac/CryptHmacSha256.c | 8 +- CryptoPkg/Library/IntrinsicLib/Ia32/MathFtol.c | 22 ++ CryptoPkg/Library/OpensslLib/ossl_store.c | 17 ++ CryptoPkg/Library/OpensslLib/rand_pool.c | 316 +++++++++++++++++++++ CryptoPkg/Library/OpensslLib/rand_pool_noise.c | 29 ++ CryptoPkg/Library/OpensslLib/rand_pool_noise_tsc.c | 43 +++ CryptoPkg/Library/OpensslLib/openssl | 2 +- CryptoPkg/Library/OpensslLib/process_files.pl | 11 +- 18 files changed, 669 insertions(+), 52 deletions(-) create mode 100644 CryptoPkg/Library/Include/sys/syscall.h create mode 100644 CryptoPkg/Library/OpensslLib/rand_pool_noise.h create mode 100644 CryptoPkg/Library/IntrinsicLib/Ia32/MathFtol.c create mode 100644 CryptoPkg/Library/OpensslLib/ossl_store.c create mode 100644 CryptoPkg/Library/OpensslLib/rand_pool.c create mode 100644 CryptoPkg/Library/OpensslLib/rand_pool_noise.c create mode 100644 CryptoPkg/Library/OpensslLib/rand_pool_noise_tsc.c -- 2.7.4