Tom,
Let me know if you get any useful offline answers. From our experience, there
are some licensed 3rd party solutions that are tiny but aren’t cheap.
The problem is parts of any encryption runs the risk of triggering government
laws about encryption. So the owners of Tianocore made the decision to pull in
OpenSSL as a whole to put the problem onto the user of TC.
Making smaller versions of OpenSSL means you have a lot of work to incorporate
newer versions.
Kevin
From: edk2-devel <[email protected]> on behalf of Tomas Pilar
(tpilar) <[email protected]>
Sent: Wednesday, November 28, 2018 11:40 AM
To: [email protected]
Subject: [edk2] Pkcs7 crypto verification without openSSL Hi,
Are there any plans for a crypto library that does not pull in openSSL? When I
try to add BaseCryptLib to be able to use FmpAuthenticationLib, my driver size
baloons significantly (increase of ~0x30000) and it seems like a basic public
SHA256 crypto check library should not be _that_ large?
Cheers,
Tom
_______________________________________________
edk2-devel mailing list
[email protected]
https://lists.01.org/mailman/listinfo/edk2-devel
_______________________________________________
edk2-devel mailing list
[email protected]
https://lists.01.org/mailman/listinfo/edk2-devel
