From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from NAM11-CO1-obe.outbound.protection.outlook.com (NAM11-CO1-obe.outbound.protection.outlook.com [40.92.18.81]) by mx.groups.io with SMTP id smtpd.web10.44.1646156339118480881 for ; Tue, 01 Mar 2022 09:39:01 -0800 Authentication-Results: mx.groups.io; dkim=pass header.i=@outlook.com header.s=selector1 header.b=QlByFOZ+; spf=pass (domain: outlook.com, ip: 40.92.18.81, mailfrom: spbrogan@outlook.com) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Fc2W7eBV6kajkEEiC/rjvnT8LMi1tjBhXbG01bqFEhnxr/MJSuA+SqwHmhaMDbxpxfeoAZDiJQ728U1zwzZFUjDIScIhEBB6pmh2aqnPy8BsnLxYNDPG+JxZhF0sA54bLgmWp71swz7tn1szTotHSTYp9dFfcBpNBkbgICAtU+c7acz1m/jD4ojEHGwGQiNz3Yb+V54fN6wO4/8q78ZrdtSoAS7ttmeRYYSy9wLfGJnyZ2TuNmvVQyU+Ip2KRh3VIkzoujEuYnwMBae/y4o/s2JKCKk2lGqxAY682Rw9xfqLE+9Qfh0TplyOWzokLth4RfDgzK8UjlPU1uFC3JN1kg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=pPgKTwBnq390XhE201ke/qmSnctf4eVPQFPnGFoqFRM=; b=nJ32IFBy/JUbYBRktVP78vW2bpYDL/zlMamswdDC1JHU/DkU6efny8qRJpyGZ2yGoWQHohAR7C/8qJIxNkAfRrFSh7jmYmqiJGWd6+gZL7QKB07V5YlCarC7roMZZWTo2lzLQdeQrnB1pWanKtu8q5VD6holOoukm5t5ZuJikRYnco6XnTjqXqhGBPhOnzjDqql5vaU44kRggIOIs3WK18TtOmZh4Ema4wEg2ZsALE01L8irdsc7zZ2BjvAybqRT5oJERR1GcWqrmrF+OMU4xmsXCP8P1zBnTTA8pwr+jdPQddOm7L8IbcTJXsDYjWFzNuZ/Uji/CIT6Jmva8644ag== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=pPgKTwBnq390XhE201ke/qmSnctf4eVPQFPnGFoqFRM=; b=QlByFOZ+INFlt5m//ZAVVw9hx2R08uspSb4FV5us99ru5voH3FYa53B85e1LakocNj/8emBXlEg1OWuBn+nSgBNQ1Xgd40soNV+L9DMi6QdJERR7kWL/ivONJdUK6ATEIHURcjrY7j2ulm71KzfR4tbWTbnQ+Y4k6j837JE06+Z21Q2ABiz7CafpN1AA68rxeC+P8N671uVDOQd4cMbOTCcvIi/vho8NQvt/I4Ld9aNSDsdRajPmx7inx8qBRLHr6j9VC4igNMf/EbYJkQiGERSc2Yn78OeIJvnldq9akhVS0dsIFavLgOtYZYElK9pnuzMFQXN1sf4dh20dhntXRw== Received: from BY3PR19MB4900.namprd19.prod.outlook.com (2603:10b6:a03:354::11) by BY3PR19MB5218.namprd19.prod.outlook.com (2603:10b6:a03:368::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5017.24; Tue, 1 Mar 2022 17:38:57 +0000 Received: from BY3PR19MB4900.namprd19.prod.outlook.com ([fe80::51c:dd9e:9397:b17c]) by BY3PR19MB4900.namprd19.prod.outlook.com ([fe80::51c:dd9e:9397:b17c%6]) with mapi id 15.20.5038.014; Tue, 1 Mar 2022 17:38:57 +0000 Message-ID: Date: Tue, 1 Mar 2022 09:38:53 -0800 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.6.1 Subject: Re: [edk2-devel] [PATCH 1/2] Reconfigure OpensslLib to add elliptic curve chipher algorithms To: devel@edk2.groups.io, kraxel@redhat.com, yi1.li@intel.com Cc: "Kovvuri, Vineel" , jiewen.yao@intel.com References: <26433.1645811519240546455@groups.io> <20220301140451.wtqcyt6vyus5klgw@sirius.home.kraxel.org> From: "Sean" In-Reply-To: <20220301140451.wtqcyt6vyus5klgw@sirius.home.kraxel.org> X-TMN: [3EkFhztQ1llzsxBvPzBJflf6wlD/fXdy] X-ClientProxiedBy: MW2PR2101CA0019.namprd21.prod.outlook.com (2603:10b6:302:1::32) To BY3PR19MB4900.namprd19.prod.outlook.com (2603:10b6:a03:354::11) Return-Path: spbrogan@outlook.com X-Microsoft-Original-Message-ID: MIME-Version: 1.0 X-MS-Exchange-MessageSentRepresentingType: 1 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: e44fbe04-fa10-41f5-86b0-08d9fbaa5bd5 X-MS-TrafficTypeDiagnostic: BY3PR19MB5218:EE_ X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?cGtQUThNL1piZGNldjJoMzZvaWMxZzYydWw0OTBhOFNsREJReUc4NEdRWDN1?= =?utf-8?B?WmVnbXFIRi9aRmRZUEpraW16WnR2Z3IrbVltcmQvaW93eVNSVFQyeklQa0NK?= =?utf-8?B?SytRUFZZZFFmTE0rcVZDdXYyanVzQzFBRW03M2t2eFNLSE5Zb3I2RHhRK0Rs?= =?utf-8?B?Y3pFeHZZbGJkcUVyenMrbWxobEV3NUR2YWVoU1VnaWE5WTMwV0N5Wk0raHZ3?= =?utf-8?B?SERIVVYzbE1jbFFnbFpKYThUajdRS0k3L3d5TmxQTitFOEhSbEczaVBsdFJV?= =?utf-8?B?VmwzNk1FTzQ0ZTA0RWhHUlc3M1lxMFUzMU9KQy90Wm5OdHhoOGJkK1VRdmt1?= =?utf-8?B?Y1BhQ3FyNUs4cU1vdXdpNE4zeXBNK0tVdVF1YUErc0s3dmtGdEFqVnA1aUlL?= =?utf-8?B?b0gxQTJ4bEFFcU5XTC92eHVLdHBmMnZLdnViUHpRSkppb3ptdjJZUG9MWU1k?= =?utf-8?B?VlJhOTVLOUYrbnBRZ2E0ZCt6VFlIZ0h5Mkhpd25zeC9INmlOa2ZoTE80ek9s?= =?utf-8?B?WFFUUWJucUU3SWdKeGRnazVlVDF1aCs0T0NZZEh2bGRBendGbFg2dlNXbzBp?= =?utf-8?B?ZnVPaU0yWlVMWXBjay8vVFRKTDVuNDFTd3NGZEtlQkRRYUttWThNUW9zZ3BI?= =?utf-8?B?WDhlejVlWUVRbkZiY2MxMVNEbG9SajdyMmg1bGFheXJBLzVHQU5IN1BGbU4z?= =?utf-8?B?VmFCMXpVcUVFNS9JV2JQczFGZGtoTHZxM0ZGWjd2SU84MWlnVWlvSEV4UWp4?= =?utf-8?B?ZWNKdHQ0eVc2Yng2M0NES0FvdHhMZi96WnZMTFBKYUdPbitMVkVFblFGT2Ja?= =?utf-8?B?VnhCNEU3cXdRKzZSbGp6UXJad1VlNGJQeVhmMWkwdUFtYXdZbDJ2Zk5pdTFk?= =?utf-8?B?V3RPTXc4dHNDb2Nqc3h4eUtrNHpXTHdRTW1vRnNJQWoyRWZRdmR2MkhCRXhN?= =?utf-8?B?R2hrMDRGa0tRQnlPSERtaS8wM0E1ZEg1TDBucW9MYTNTT2J2eElZRU81YVM1?= =?utf-8?B?RW5kOG9tZFhjbHVzRUxwR0g2SDFVWVc2eG52dUZDNXNjaW1yNk5Zbk9FbU1H?= =?utf-8?B?d3FPMEl3TUE3V0hNUy9yYnhQR1JIUVgxeEJUeXNMMzhoNUpqVitja0sxNjhS?= =?utf-8?B?c3FWcENqSFQ5T0dVSDVvNzBvT01LUHVBRDJTd1A0NVVWTE5xZG8yQmJzbEtu?= =?utf-8?B?ZklvSzJqZ1JXUnZtM1R3QnJvS1BySTBCYVhoTU1GZHBMU0hYbE5hZ2JGVWFU?= =?utf-8?B?TWppSVdidEs3bWZOTnFCbFd4Mjgzd3pubm1YckhSeG96T2d0dz09?= X-OriginatorOrg: outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: e44fbe04-fa10-41f5-86b0-08d9fbaa5bd5 X-MS-Exchange-CrossTenant-AuthSource: BY3PR19MB4900.namprd19.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 01 Mar 2022 17:38:57.2260 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY3PR19MB5218 Content-Language: en-US Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit On 3/1/2022 6:04 AM, Gerd Hoffmann wrote: >> CryptoPkg: Add instrinsics to support building ECC on IA32 windows > > See also https://edk2.groups.io/g/devel/message/87130 & followups. > git branch here: https://github.com/kraxel/edk2/commits/intrinsics > >> OvmfPkg: Increase DXEFV size to accommodate ECC ciphers related changes > > Changing flash size breaks backward compatibility, so this is a problem. > openssl3 porting runs into this too, not solved yet. > > Jiewen (Cc'ed) suggested to look into using CryptoPkg/Driver instead of > linking openssl as Library, so we have only one copy of the code. Not > investigated yet. > > Also: what do you need ecc support for? TLS requirements for modern endpoints/services are "generally" moving to ECC. > > take care, > Gerd > > > > > >