Digi
/
meta-digi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

openssl: Add patch to automatically load cryptochip engine 

https://jira.digi.com/browse/DEL-5592

Signed-off-by: Gabriel Valcazar <gabriel.valcazar@digi.com>
This commit is contained in:
Gabriel Valcazar 2018-05-04 18:51:02 +02:00 committed by Arturo Buzarra
parent d08f067e12
commit 8e0be48793
2 changed files with 48 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
meta-digi-dey/recipes-connectivity/openssl/openssl/0003-Modify-openssl.cnf-to-automatically-load-the-cryptoc.patch Normal file
View File

@ -0,0 +1,40 @@
From: Gabriel Valcazar <gabriel.valcazar@digi.com>
Date: Wed, 2 May 2018 18:49:28 +0200
Subject: [PATCH] Modify openssl.cnf to automatically load the cryptochip
engine
https://jira.digi.com/browse/DEL-5592
Signed-off-by: Gabriel Valcazar <gabriel.valcazar@digi.com>
---
apps/openssl.cnf | 13 +++++++++++++
1 file changed, 13 insertions(+)
diff --git a/apps/openssl.cnf b/apps/openssl.cnf
index 1eb86c4..49d9d83 100644
--- a/apps/openssl.cnf
+++ b/apps/openssl.cnf
@@ -3,6 +3,8 @@
# This is mostly being used for generation of certificate requests.
#
+openssl_conf = openssl_init
+
# This definition stops the following lines choking if HOME isn't
# defined.
HOME = .
@@ -348,3 +350,14 @@ tsa_name = yes # Must the TSA name be included in the reply?
# (optional, default: no)
ess_cert_id_chain = no # Must the ESS cert id chain be included?
# (optional, default: no)
+
+[ openssl_init ]
+engines = engine_section
+
+[ engine_section ]
+ateccx08 = ateccx08_config
+
+[ ateccx08_config ]
+engine_id = ateccx08
+dynamic_path = /usr/lib/ssl/engines/libateccssl.so
+init = 0

9
meta-digi-dey/recipes-connectivity/openssl/openssl_%.bbappend
View File

@ -1,4 +1,4 @@
# Copyright (C) 2016 Digi International.
# Copyright (C) 2016-2018 Digi International.
FILESEXTRAPATHS_prepend := "${THISDIR}/${BPN}:"
@ -6,3 +6,10 @@ SRC_URI += " \
file://0001-cryptodev-Fix-issue-with-signature-generation.patch \
file://0002-cryptodev-allow-copying-EVP-contexts.patch \
"
CRYPTOCHIP_COMMON_PATCHES = " \
file://0003-Modify-openssl.cnf-to-automatically-load-the-cryptoc.patch \
"
SRC_URI_append_ccimx6ul = " ${CRYPTOCHIP_COMMON_PATCHES}"
SRC_URI_append_ccimx6qpsbc = " ${CRYPTOCHIP_COMMON_PATCHES}"