From mboxrd@z Thu Jan  1 00:00:00 1970
Subject: Re: [edk2-devel] [PATCH 00/11] OvmfPkg: add Crypto Driver support
To: Ard Biesheuvel <ardb@kernel.org>,devel@edk2.groups.io
From: =?UTF-8?B?TWFydmluIEjDpHVzZXI=?= <mhaeuser@posteo.de>
X-Originating-Location: Frankfurt am Main, Hesse, DE (172.225.190.240)
X-Originating-Platform: Mac Safari 16.3
User-Agent: GROUPS.IO Web Poster
MIME-Version: 1.0
Date: Fri, 03 Feb 2023 17:13:27 -0800
References: <CAMj1kXGjRMXruRuptjOgFQH68Wj6HwWE+WG-kiKe_sOnJXNLSQ@mail.gmail.com>
In-Reply-To: <CAMj1kXGjRMXruRuptjOgFQH68Wj6HwWE+WG-kiKe_sOnJXNLSQ@mail.gmail.com>
Message-ID: <31418.1675473207981561000@groups.io>
Content-Type: multipart/alternative; boundary="VvWEvNk7VE4a2527aUnj"

--VvWEvNk7VE4a2527aUnj
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Hi Ard,

While I agree the tone is a bit irritating, I am not sure what kind of cont=
ext you expect there to be. The library is nearing EOL and usage beyond EOL=
 is unacceptable. It will take significant time to solve the related issues=
, test them, have them merged, and for them to trickle down the IBV chains.

OpenSSL is quite "big" in general and many consider it to not be a good cho=
ice for embedded usage. Do you know of any discussion regarding alternative=
s? I've heard folks use libsodium or mbedtls outside edk2, but don't have a=
ny experience with either. (Not necessarily looking to *start* a discussion=
, but mostly references / reading material, if you have any.)

Best regards,
Marvin

--VvWEvNk7VE4a2527aUnj
Content-Type: text/html; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Hi Ard,<br /><br />While I agree the tone is a bit irritating, I am not sur=
e what kind of context you expect there to be. The library is nearing EOL a=
nd usage beyond EOL is unacceptable. It will take significant time to solve=
 the related issues, test them, have them merged, and for them to trickle d=
own the IBV chains.<br /><br />OpenSSL is quite "big" in general and many c=
onsider it to not be a good choice for embedded usage. Do you know of any d=
iscussion regarding alternatives? I've heard folks use libsodium or mbedtls=
 outside edk2, but don't have any experience with either. (Not necessarily =
looking to *start* a discussion, but mostly references / reading material, =
if you have any.)<br /><br />Best regards,<br />Marvin

--VvWEvNk7VE4a2527aUnj--