Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Openssl 3.0.15 #6160

Merged
merged 3 commits into from
Sep 27, 2024
Merged

Openssl 3.0.15 #6160

merged 3 commits into from
Sep 27, 2024

Conversation

liyi77
Copy link
Contributor

@liyi77 liyi77 commented Sep 4, 2024

Description

https://bugzilla.tianocore.org/show_bug.cgi?id=4842

  • Breaking change?
    • Breaking change - Does this PR cause a break in build or boot behavior?
    • Examples: Does it add a new library class or move a module to a different repo.
  • Impacts security?
  • Includes tests?
    • Tests - Does this PR include any explicit test code?
    • Examples: Unit tests or integration tests.

How This Was Tested

Unit test of CryptoPkg.

Integration Instructions

NA

@github-actions github-actions bot added the impact:security This change has a direct security impact such as changing a crypto algorithm. label Sep 4, 2024
@liyi77
Copy link
Contributor Author

liyi77 commented Sep 4, 2024

Size impact between 3.0.9~3.0.15(no compressed):
No increase in Pei driver [Only AES, SHA, SM3]
65KB increase in FullDxe driver [All]

@liyi77 liyi77 closed this Sep 19, 2024
@liyi77 liyi77 reopened this Sep 19, 2024
@liyi77
CryptoPkg: Update openssl submodule to 3.0.15
9ebcd3f 
BZ: https://bugzilla.tianocore.org/show_bug.cgi?id=4842

CVE-2024-6119 affects TLS-client implementation of EDK2. Fix it by
updating to 3.0.15.

Signed-off-by: Li Yi <yi1.li@intel.com>
@liyi77
CryptoPkg: Update generated files based on openssl 3.0.15
038cc9d 
BZ: https://bugzilla.tianocore.org/show_bug.cgi?id=4842

Signed-off-by: Li Yi <yi1.li@intel.com>
@liyi77
Copy link
Contributor Author

liyi77 commented Sep 23, 2024

Hi @jyao1 , could you take a look?

@jyao1
Copy link
Contributor

jyao1 commented Sep 27, 2024

@liyi77 , would you please provide the compressed size difference?

@liyi77
Copy link
Contributor Author

liyi77 commented Sep 27, 2024

@liyi77 , would you please provide the compressed size difference?

there will be ~15KB increase after compressed.

@jyao1 jyao1 added the push Auto push patch series in PR if all checks pass label Sep 27, 2024
@mergify mergify bot merged commit 3ed4f43 into tianocore:master Sep 27, 2024
126 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@AkechiShiro AkechiShiro AkechiShiro left review comments

@jyao1 jyao1 jyao1 approved these changes

Assignees
No one assigned
Labels
impact:security This change has a direct security impact such as changing a crypto algorithm. push Auto push patch series in PR if all checks pass
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@liyi77 @jyao1 @AkechiShiro