coreboot-kgpe-d16/util/broadcom/secimage
Alex Thiessen 00a455c8a7 util/broadcom/secimage: Add OpenSSL 1.1 support
The `secimage` utility uses OpenSSL to calculate HMAC, which it does in
a rather unorthodox way, using deprecated `HMAC_CTX_init` API and
repeated calling of `HMAC_Init_ex` without a clear reason. The former
causes build errors with OpenSSL 1.1 while the rest of the
`HmacSha256Hash` function is confusing and overly complex.

Make `HmacSha256Hash` use a single OpenSSL API call. Test passed:
resulting signed binary remains identical.

Change-Id: Ib23c0ad96f9d8cc30ad357de8c0b0ba967c7d724
Signed-off-by: Alex Thiessen <alex.thiessen.de+coreboot@gmail.com>
Reviewed-on: https://review.coreboot.org/23069
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Paul Menzel <paulepanter@users.sourceforge.net>
Reviewed-by: Stefan Reinauer <stefan.reinauer@coreboot.org>
2018-01-14 23:11:40 +00:00
..
Makefile
Makefile.inc
crypto.c util/broadcom/secimage: Add OpenSSL 1.1 support 2018-01-14 23:11:40 +00:00
io.c util/broadcom: Check for successful file access 2016-12-16 18:22:43 +01:00
misc.c util/broadcom: Close file after use 2016-12-16 15:55:33 +01:00
sbi.c util/broadcom: Add two more NULL checks 2016-12-16 15:56:35 +01:00
secimage.h