From nobody Mon Feb  9 23:00:31 2026
Delivered-To: importer@patchew.org
Received-SPF: pass (zoho.com: domain of groups.io designates 66.175.222.12 as
 permitted sender) client-ip=66.175.222.12;
 envelope-from=bounce+27952+41596+1787277+3901457@groups.io;
 helo=web01.groups.io;
Authentication-Results: mx.zohomail.com;
	dkim=pass;
	spf=pass (zoho.com: domain of groups.io designates 66.175.222.12 as permitted
 sender)  smtp.mailfrom=bounce+27952+41596+1787277+3901457@groups.io;
	dmarc=fail(p=none dis=none)  header.from=intel.com
ARC-Seal: i=1; a=rsa-sha256; t=1559126582; cv=none;
	d=zoho.com; s=zohoarc;
	b=dtP1spZSWcyJ8nMIObIjf/IjF+Fy2tCGNk79A16Jv5uA0zoZ88sg/GLgDJMNyf8Z33wLBmopTss3BgObs6zMAKidxUSJzkDlM96rEzUOzk+UpE1Y+TAW+rK5YLBF4gfINm6qgmYvlCijvw769ryDNg15MLxPXvFJT6ySU8bc0As=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zoho.com;
 s=zohoarc;
	t=1559126582;
 h=Cc:Date:From:In-Reply-To:List-Id:List-Unsubscribe:Message-ID:Reply-To:References:Sender:Subject:To:ARC-Authentication-Results;
	bh=dBxr2V93O9RpSfTquSawRhWNSxQMVzBnDqqd5bZ72Ms=;
	b=cDZTKWIMZl++UQ6N9lz66zRSIjH1ojRwrdVvicSjCUCDBu/A0fv+TDPs8DvhxGTxFz23qp0p3YdElJJUqROgSbdFbAYxKANwC3YxHV4iPjgW8b7+BeTCasKsBVzByFNjH01IroJOET0RDUMVOFBko5cAfg/eb8++FFxP3z7BF8o=
ARC-Authentication-Results: i=1; mx.zoho.com;
	dkim=pass;
	spf=pass (zoho.com: domain of groups.io designates 66.175.222.12 as permitted
 sender)  smtp.mailfrom=bounce+27952+41596+1787277+3901457@groups.io;
	dmarc=fail header.from=<xiaoyux.lu@intel.com> (p=none dis=none)
 header.from=<xiaoyux.lu@intel.com>
Received: from web01.groups.io (web01.groups.io [66.175.222.12]) by
 mx.zohomail.com
	with SMTPS id 1559126582749807.0663356791974;
 Wed, 29 May 2019 03:43:02 -0700 (PDT)
Return-Path: <bounce+27952+41596+1787277+3901457@groups.io>
X-Received: from mga14.intel.com (mga14.intel.com [])
 by groups.io with SMTP; Wed, 29 May 2019 03:43:02 -0700
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
X-Received: from fmsmga004.fm.intel.com ([10.253.24.48])
  by fmsmga103.fm.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384;
 29 May 2019 03:43:01 -0700
X-ExtLoop1: 1
X-Received: from xiaoyu-dev.sh.intel.com ([10.239.47.11])
  by fmsmga004.fm.intel.com with ESMTP; 29 May 2019 03:43:01 -0700
From: "Xiaoyu Lu" <xiaoyux.lu@intel.com>
To: devel@edk2.groups.io
Cc: Xiaoyu Lu <xiaoyux.lu@intel.com>,
	Jian J Wang <jian.j.wang@intel.com>,
	Ting Ye <ting.ye@intel.com>
Subject: [edk2-devel] [PATCH v5 9/9] CryptoPkg/BaseCryptLib: Make HMAC_CTX
 size backward compatible
Date: Wed, 29 May 2019 06:40:38 -0400
Message-Id: <1559126438-9211-10-git-send-email-xiaoyux.lu@intel.com>
In-Reply-To: <1559126438-9211-1-git-send-email-xiaoyux.lu@intel.com>
References: <1559126438-9211-1-git-send-email-xiaoyux.lu@intel.com>
Precedence: Bulk
List-Unsubscribe: <https://edk2.groups.io/g/devel/unsub>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Reply-To: devel@edk2.groups.io,xiaoyux.lu@intel.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io;
 q=dns/txt; s=20140610; t=1559126582;
 bh=xUuf/EfERlB5z0alEAVHRsIOltMcZ9B8zRy664biroM=;
 h=Cc:Date:From:Reply-To:Subject:To;
 b=q2hcdmX2HA36XDYc2z1Ss6+Km7tjobYddPJkyTI3nqtDlYUeP1YLi9uEtOmWk8Qm4AS
 vMLK8ToqdDQQn3bjVhJtV0ZDJW+agn5JCNCtnjEMIKwFDekG0eevjQGgoiiVdcHT5yToz
 0zdzF6JPGtDFxhYQ8SPTM32wFC3zfpV4N84=
X-ZohoMail-DKIM: pass (identity @groups.io)
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"

Bugzilla: https://bugzilla.tianocore.org/show_bug.cgi?id=3D1089

OpenSSL internally redefines the size of HMAC_CTX at
crypto/hmac/hmac_lcl.h(OpenSSL commit e0810e35).
Ref: https://github.com/openssl/openssl/pull/4338

We should not use it directly and should remove relevant
functions(Hmac*GetContextSize).
Bugzilla: https://bugzilla.tianocore.org/show_bug.cgi?id=3D1792

But for compatiblility, temporarily change these definition
of HMAC_*_CTX_SIZE.

Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Ting Ye <ting.ye@intel.com>
Signed-off-by: Xiaoyu Lu <xiaoyux.lu@intel.com>
Reviewed-by: Laszlo Ersek <lersek@redhat.com>
Tested-by: Gary Lin <glin@suse.com>
---
 CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacMd5.c    | 8 ++++++--
 CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha1.c   | 9 +++++++--
 CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c | 8 ++++++--
 3 files changed, 19 insertions(+), 6 deletions(-)

diff --git a/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacMd5.c b/CryptoPkg=
/Library/BaseCryptLib/Hmac/CryptHmacMd5.c
index 3134806797f8..19e9fbeae66f 100644
--- a/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacMd5.c
+++ b/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacMd5.c
@@ -9,8 +9,12 @@ SPDX-License-Identifier: BSD-2-Clause-Patent
 #include "InternalCryptLib.h"
 #include <openssl/hmac.h>
=20
-#define HMAC_MD5_CTX_SIZE    sizeof(void *) * 4 + sizeof(unsigned int) + \
-                             sizeof(unsigned char) * HMAC_MAX_MD_CBLOCK
+//
+// NOTE: OpenSSL redefines the size of HMAC_CTX at crypto/hmac/hmac_lcl.h
+//       #define HMAC_MAX_MD_CBLOCK_SIZE     144
+//
+#define HMAC_MD5_CTX_SIZE    (sizeof(void *) * 4 + sizeof(unsigned int) + \
+                             sizeof(unsigned char) * 144)
=20
 /**
   Retrieves the size, in bytes, of the context buffer required for HMAC-MD=
5 operations.
diff --git a/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha1.c b/CryptoPk=
g/Library/BaseCryptLib/Hmac/CryptHmacSha1.c
index bbe3df4d4f70..7d7df9640e7f 100644
--- a/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha1.c
+++ b/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha1.c
@@ -9,8 +9,13 @@ SPDX-License-Identifier: BSD-2-Clause-Patent
 #include "InternalCryptLib.h"
 #include <openssl/hmac.h>
=20
-#define HMAC_SHA1_CTX_SIZE   sizeof(void *) * 4 + sizeof(unsigned int) + \
-                             sizeof(unsigned char) * HMAC_MAX_MD_CBLOCK
+//
+// NOTE: OpenSSL redefines the size of HMAC_CTX at crypto/hmac/hmac_lcl.h
+//       #define HMAC_MAX_MD_CBLOCK_SIZE     144
+//
+//
+#define  HMAC_SHA1_CTX_SIZE   (sizeof(void *) * 4 + sizeof(unsigned int) +=
 \
+                             sizeof(unsigned char) * 144)
=20
 /**
   Retrieves the size, in bytes, of the context buffer required for HMAC-SH=
A1 operations.
diff --git a/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c b/Crypto=
Pkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c
index ac9084fa850d..f24443e74552 100644
--- a/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c
+++ b/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c
@@ -9,8 +9,12 @@ SPDX-License-Identifier: BSD-2-Clause-Patent
 #include "InternalCryptLib.h"
 #include <openssl/hmac.h>
=20
-#define HMAC_SHA256_CTX_SIZE   sizeof(void *) * 4 + sizeof(unsigned int) +=
 \
-                               sizeof(unsigned char) * HMAC_MAX_MD_CBLOCK
+//
+// NOTE: OpenSSL redefines the size of HMAC_CTX at crypto/hmac/hmac_lcl.h
+//       #define HMAC_MAX_MD_CBLOCK_SIZE     144
+//
+#define HMAC_SHA256_CTX_SIZE    (sizeof(void *) * 4 + sizeof(unsigned int)=
 + \
+                             sizeof(unsigned char) * 144)
=20
 /**
   Retrieves the size, in bytes, of the context buffer required for HMAC-SH=
A256 operations.
--=20
2.7.4


-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
Groups.io Links: You receive all messages sent to this group.

View/Reply Online (#41596): https://edk2.groups.io/g/devel/message/41596
Mute This Topic: https://groups.io/mt/31832290/1787277
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub  [importer@patchew.org]
-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-