From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ard.biesheuvel@linaro.org>
Received-SPF: Pass (sender SPF authorized) identity=mailfrom;
 client-ip=2607:f8b0:4864:20::12a; helo=mail-it1-x12a.google.com;
 envelope-from=ard.biesheuvel@linaro.org; receiver=edk2-devel@lists.01.org 
Received: from mail-it1-x12a.google.com (mail-it1-x12a.google.com
 [IPv6:2607:f8b0:4864:20::12a])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (No client certificate requested)
 by ml01.01.org (Postfix) with ESMTPS id 78B24211982CB
 for <edk2-devel@lists.01.org>; Mon,  3 Dec 2018 04:40:18 -0800 (PST)
Received: by mail-it1-x12a.google.com with SMTP id z7so8946134iti.0
 for <edk2-devel@lists.01.org>; Mon, 03 Dec 2018 04:40:18 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google;
 h=mime-version:references:in-reply-to:from:date:message-id:subject:to
 :cc:content-transfer-encoding;
 bh=y6lol1sPVZ9mgv8isG0E94rymTwE0iBziHRvC/x9tIE=;
 b=hJUP/lZva8FuNCA3UsFRzUPCd0Zewsi1V5WLgSN/px5IOjU0JreqzKIFmyfLo9xWj8
 9kQ6CfCXbi9LrNs6r+8h3MP3ACxAtTN+2lIXT7w2nJKcyEDIC69edDDQkmzUGpGlO2kz
 hFYMPvEiBAzEBOr7JY3zc9OU2lh2E/mgF3wyQ=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:references:in-reply-to:from:date
 :message-id:subject:to:cc:content-transfer-encoding;
 bh=y6lol1sPVZ9mgv8isG0E94rymTwE0iBziHRvC/x9tIE=;
 b=HvECcHIS5ZmKMI07d4ZpmkMh7VBtBouFcbV2mfnggYRlzFgcpadUU0PISnW5hCGchZ
 cMn2D9cEUo4IBYiKwpQCfp8qSZgOFVMBma/I8wOyhjfg/DdWun3PPLg6YUx2poUT8JhB
 M7MqjVLMYfXsY1R7/r16/Co+0c21CpfPz61JqQDJ2HEYW7kzgV1nR+2cThYbAJrhTLZT
 bUIHxTpS11SmS2WC4eEPSVIYN3y4bhnNTniJqtmF2YCzxUJlh8FLm48SmOS7HfjImaWt
 VrfDv60539KwqLhbz4Ck2jbwDEtQI1no6Wg+eTh32Bs6vYQqhp+jRNpLTGcOd78gF8go
 a/ww==
X-Gm-Message-State: AA+aEWarD5PeW7sikQN8JBZwCv5lm+EYIovA4hA7uAU5mJndqhisXjGC
 hgDtT4cemyLrNjdvNwXazRIrGzEtQXTjNHUIhEmulw==
X-Google-Smtp-Source: AFSGD/V1VKyBKprn7vfeD/vJb37f+SKt3vE3oewWcugWkjm1/Kc8bLPJemp+R7iRt9FU4zuNPAkMCUZ1ME+ZaGITX44=
X-Received: by 2002:a02:734b:: with SMTP id a11mr13479383jae.62.1543840817156; 
 Mon, 03 Dec 2018 04:40:17 -0800 (PST)
MIME-Version: 1.0
References: <1d931e1b-a9fb-1f44-cbbb-20971b9a344b@solarflare.com>
In-Reply-To: <1d931e1b-a9fb-1f44-cbbb-20971b9a344b@solarflare.com>
From: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Date: Mon, 3 Dec 2018 13:40:04 +0100
Message-ID: <CAKv+Gu9Ya-o7hWQ=wYN6TqDw7yxBzcwfYv5aAFobGijj+U5wXg@mail.gmail.com>
To: "Tomas Pilar (tpilar)" <tpilar@solarflare.com>
Cc: "edk2-devel@lists.01.org" <edk2-devel@lists.01.org>
Subject: Re: Pkcs7 crypto verification without openSSL
X-BeenThere: edk2-devel@lists.01.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: EDK II Development  <edk2-devel.lists.01.org>
List-Unsubscribe: <https://lists.01.org/mailman/options/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=unsubscribe>
List-Archive: <http://lists.01.org/pipermail/edk2-devel/>
List-Post: <mailto:edk2-devel@lists.01.org>
List-Help: <mailto:edk2-devel-request@lists.01.org?subject=help>
List-Subscribe: <https://lists.01.org/mailman/listinfo/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Dec 2018 12:40:18 -0000
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

On Wed, 28 Nov 2018 at 18:40, Tomas Pilar (tpilar)
<tpilar@solarflare.com> wrote:
>
> Hi,
>
> Are there any plans for a crypto library that does not pull in openSSL? W=
hen I try to add BaseCryptLib to be able to use FmpAuthenticationLib, my dr=
iver size baloons significantly (increase of ~0x30000) and it seems like a =
basic public SHA256 crypto check library should not be _that_ large?

Well, I'd expect the code size to come from the asymmetric crypto, not
from the SHA256 hash code. Which FmpAuthenticationLib are you using?