[libcamera-devel,0/5] libcamera: Support openssl as an alternative to gnutls

mbox series

Message ID	20220807021456.9578-1-laurent.pinchart@ideasonboard.com
Headers	show Return-Path: <libcamera-devel-bounces@lists.libcamera.org> To: libcamera-devel@lists.libcamera.org Date: Sun, 7 Aug 2022 05:14:51 +0300 Message-Id: <20220807021456.9578-1-laurent.pinchart@ideasonboard.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Subject: [libcamera-devel] [PATCH 0/5] libcamera: Support openssl as an alternative to gnutls Precedence: list From: Laurent Pinchart via libcamera-devel <libcamera-devel@lists.libcamera.org> Reply-To: Laurent Pinchart <laurent.pinchart@ideasonboard.com> Errors-To: libcamera-devel-bounces@lists.libcamera.org Sender: "libcamera-devel" <libcamera-devel-bounces@lists.libcamera.org>
Series	libcamera: Support openssl as an alternative to gnutls
Related	show [libcamera-devel,0/5] libcamera: Support openssl as an alternative to gnutls [libcamera-devel,1/5] Revert "libcamera: Make IPA module signing mandatory for the meantime" [libcamera-devel,2/5] libcamera: Make openssl and gnutls dependencies recommended [libcamera-devel,3/5] libcamera: meson: Use dependency() to find gnutls [libcamera-devel,4/5] libcamera: pub_key: Gracefully handle failures to load public key [libcamera-devel,5/5] libcamera: pub_key: Support openssl as an alternative to gnutls

Message ID

20220807021456.9578-1-laurent.pinchart@ideasonboard.com

Headers

To: libcamera-devel@lists.libcamera.org
Date: Sun,  7 Aug 2022 05:14:51 +0300
Message-Id: <20220807021456.9578-1-laurent.pinchart@ideasonboard.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Subject: [libcamera-devel] [PATCH 0/5] libcamera: Support openssl as an
	alternative to gnutls
Precedence: list
From: Laurent Pinchart via libcamera-devel
	<libcamera-devel@lists.libcamera.org>
Reply-To: Laurent Pinchart <laurent.pinchart@ideasonboard.com>
Errors-To: libcamera-devel-bounces@lists.libcamera.org
Sender: "libcamera-devel" <libcamera-devel-bounces@lists.libcamera.org>

Series

libcamera: Support openssl as an alternative to gnutls

show

Message

Laurent Pinchart Aug. 7, 2022, 2:14 a.m. UTC

Hello,

This small patch series adds support for openssl as an alternative to
gnutls to verify the signature of IPA modules.

Quite notably, patch 1/5 makes the dependency on crypto libraries
optional as it used to be, before we realized that missing IPA protocol
serialization made it effectively required in practice. Serialization is
now there, so module signature support can be made optional again.

This could possibly cause issues for some users who may not notice the
missing dependency and wonder why IPA modules run isolated (although
that should be a fully supported configuration). I've documented module
signing as recommended in README.md (patch 2/5), but we all know how
often documentation is overlooked. If anyone thinks this is a bad idea,
I can drop that change.

For the rest of the series, please see individual patches.

Laurent Pinchart (5):
  Revert "libcamera: Make IPA module signing mandatory for the meantime"
  libcamera: Make openssl and gnutls dependencies recommended
  libcamera: meson: Use dependency() to find gnutls
  libcamera: pub_key: Gracefully handle failures to load public key
  libcamera: pub_key: Support openssl as an alternative to gnutls

 README.rst                           |  7 +++--
 include/libcamera/internal/pub_key.h |  8 ++++--
 src/libcamera/ipa_manager.cpp        |  3 +++
 src/libcamera/meson.build            | 16 +++++++++---
 src/libcamera/pub_key.cpp            | 38 +++++++++++++++++++++++++---
 src/meson.build                      |  3 ++-
 6 files changed, 63 insertions(+), 12 deletions(-)


base-commit: 26c82ce13697e1af5950f4935ecff83c6453f351

[libcamera-devel,0/5] libcamera: Support openssl as an alternative to gnutls 16998 mbox series

Message

[libcamera-devel,0/5] libcamera: Support openssl as an alternative to gnutls
mbox series