Skip to content

Fix ssl3 #97

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
lgirdwood merged 2 commits into from
Jun 17, 2022
Merged

Fix ssl3 #97

lgirdwood merged 2 commits into from
Jun 17, 2022

Conversation

@juimonen
Copy link

@juimonen juimonen commented Jun 16, 2022

No description provided.

@juimonen juimonen mentioned this pull request Jun 16, 2022
Closed
@aiChaoSONG aiChaoSONG mentioned this pull request Jun 16, 2022
Closed
@aiChaoSONG
Copy link

aiChaoSONG commented Jun 16, 2022

SOF test PR to test this:thesofproject/sof#5928

Jaska Uimonen added 2 commits June 16, 2022 17:30
rimage: fix openssl 3.0 support in ver25 signing
6ccf05b 
Fix a misunderstanding with openssl APIs and don't "double sign" the
binary.

Signed-off-by: Jaska Uimonen <jaska.uimonen@intel.com>
rimage: ace signing functions need openssl 3.0 guards
08660cb 
Ace signing functions need guards for not to use deprecated openssl
functions and thus fail the compilation. Openssl3 implementation
needs to be done as the added stub now returns just -EINVAL.

Signed-off-by: Jaska Uimonen <jaska.uimonen@intel.com>
marc-hb
marc-hb reviewed Jun 16, 2022
View reviewed changes
plbossart
plbossart reviewed Jun 16, 2022
View reviewed changes
@marc-hb
Copy link
Contributor

marc-hb commented Jun 16, 2022

Thanks @aiChaoSONG for submitting this to CI in test PR thesofproject/sof#5928.

Everyone note how it's possible to submit an unmerged rimage PR to SOF CI, explanations in the rimage README.

This bug was incredibly time-consuming: after this is merged and well tested over a couple weeks I think it should be backported to SOF release branches (which will require another bit of submodule-fu)

lgirdwood
lgirdwood approved these changes Jun 16, 2022
View reviewed changes
Copy link
Member

@lgirdwood lgirdwood left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We need to take this for v2.2, and we can readd the MTL support in the correct place for v2.3.

src/pkcs1_5.c
void *ptr1, unsigned int size1, void *ptr2,
unsigned int size2)
{
return -EINVAL;
Copy link
Member

@lgirdwood lgirdwood Jun 16, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@juimonen So IIUC, the code that should be here was removed in the previous patch becuase it was in the wrong place and caused FW to be signed twice ?
@mwasko @marcinszkudlinski it looks like we need the MTL code added here, the code is in the wrong place currently, so not new development just a code move and revalidate. Just checking incase you already have this fix ?

Copy link
Author

@juimonen juimonen Jun 16, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I had an misunderstanding in my own ver25 ssl3 code (first patch), ace functions we're not implemented for ssl3 at all -> I needed to make quick guards and stub (second patch), because git HEAD was not even compiling in systems with ssl3. So just wanted to fix tgl fast, I need to check the ace code later.

Copy link
Member

@lgirdwood lgirdwood Jun 17, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ok, lets merge this as correct SSL3 code and adapt MTL to follow the same flow when using SSL3.

@lgirdwood lgirdwood merged commit 02abc5d into thesofproject:main Jun 17, 2022
@lgirdwood
Copy link
Member

lgirdwood commented Jun 17, 2022

@juimonen can you send a PR to udate teh rimage submodule in SOF. Thanks !

@marc-hb marc-hb mentioned this pull request Jul 31, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@plbossart plbossart plbossart left review comments

@lgirdwood lgirdwood lgirdwood approved these changes

@marc-hb marc-hb marc-hb left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@juimonen @aiChaoSONG @marc-hb @lgirdwood @plbossart