From nobody Fri Apr 19 01:05:14 2024
Delivered-To: importer@patchew.org
Received-SPF: pass (zohomail.com: domain of groups.io designates
 66.175.222.108 as permitted sender) client-ip=66.175.222.108;
 envelope-from=bounce+27952+101611+1787277+3901457@groups.io;
 helo=mail02.groups.io;
Authentication-Results: mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)
  smtp.mailfrom=bounce+27952+101611+1787277+3901457@groups.io;
	dmarc=fail(p=none dis=none)  header.from=intel.com
ARC-Seal: i=1; a=rsa-sha256; t=1679539485; cv=none;
	d=zohomail.com; s=zohoarc;
	b=LOfhaqSqHpzkSmaxNr02yxm+njfRWwyCFSKXK7wQS7KDQzIipL+uMb13UjpC06RPjlbTpV27NZPaMQsr3/vx4y0y/1sQIlTPLGow6T16Q38lHETlihU4CmY1jT4AmFVf8d9SloLYu+ekQczkDqBcMlFwtxXXbqgc6C6CdV1Njzg=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com;
 s=zohoarc;
	t=1679539485;
 h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To;
	bh=z2EJQw6p3KBChjnrfW261yLPFsDdSCs4t4ttDFarL+4=;
	b=AOAyuxDWoyjFGofeOLJc++TmY/ua8fzSrBf4F9QRZNEbyyL8HlhqwlLqHxPe4RUUO8Gk2RzyT7CKSuKyPx3WmYEQVg1PIpzjWQ52kfnpoSewN31l9ZyvKZlL2lUNHKr1dvpcStnw96joKi15BLM5Th8EBV1TPaLHyvPFEsgyTUE=
ARC-Authentication-Results: i=1; mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)
  smtp.mailfrom=bounce+27952+101611+1787277+3901457@groups.io;
	dmarc=fail header.from=<yi1.li@intel.com> (p=none dis=none)
Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by
 mx.zohomail.com
	with SMTPS id 1679539485429449.48129235638714;
 Wed, 22 Mar 2023 19:44:45 -0700 (PDT)
Return-Path: <bounce+27952+101611+1787277+3901457@groups.io>
X-Received: by 127.0.0.2 with SMTP id JjMiYY1788612xPX0IJoD7II;
 Wed, 22 Mar 2023 19:44:45 -0700
X-Received: from mga04.intel.com (mga04.intel.com [192.55.52.120])
 by mx.groups.io with SMTP id smtpd.web10.64005.1679539483463757164
 for <devel@edk2.groups.io>;
 Wed, 22 Mar 2023 19:44:44 -0700
X-IronPort-AV: E=McAfee;i="6600,9927,10657"; a="338100733"
X-IronPort-AV: E=Sophos;i="5.98,283,1673942400";
   d="scan'208";a="338100733"
X-Received: from orsmga008.jf.intel.com ([10.7.209.65])
  by fmsmga104.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 22 Mar 2023 19:44:43 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=McAfee;i="6600,9927,10657"; a="712492310"
X-IronPort-AV: E=Sophos;i="5.98,283,1673942400";
   d="scan'208";a="712492310"
X-Received: from liyi4-desktop.ccr.corp.intel.com ([10.239.153.82])
  by orsmga008-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 22 Mar 2023 19:44:42 -0700
From: "Li, Yi" <yi1.li@intel.com>
To: devel@edk2.groups.io
Cc: Yi Li <yi1.li@intel.com>
Subject: [edk2-devel] [edk2-staging/OpenSSL11_EOL][PATCH 1/4] bugfix: use null
 md5 onlyif no-md5 defined
Date: Thu, 23 Mar 2023 10:44:33 +0800
Message-Id: 
 <30a05d9a8a61458e981251d2b9c9061d4e7589b2.1679537389.git.yi1.li@intel.com>
In-Reply-To: <cover.1679537389.git.yi1.li@intel.com>
References: <cover.1679537389.git.yi1.li@intel.com>
MIME-Version: 1.0
Precedence: Bulk
List-Unsubscribe: <mailto:devel+unsubscribe@edk2.groups.io>
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Reply-To: devel@edk2.groups.io,yi1.li@intel.com
X-Gm-Message-State: GZrqdAltinQrMngf3ey0ki7Tx1787277AA=
Content-Transfer-Encoding: quoted-printable
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io;
 q=dns/txt; s=20140610; t=1679539485;
 bh=NsJis+q8H4khHIoQmv42fT7qpLZ0y3dFzA1u9oj/7jo=;
 h=Cc:Date:From:Reply-To:Subject:To;
 b=lNUXAgLeaaXDPBJ5HjbhccL+TKNzhCeArCg186EugLO+VVrKsLiHkTDvRR9JfmTK2NH
 P3vKVrj7VCs96BCnquEvNMrjVqyJEI8XF1DNT2MfHZ82D3mkFVB70rXTHyyOqFuqeFAGH
 D3XIkLZ0pOt93HlRarKMQvoj4J5UU3xIhu8=
X-ZohoMail-DKIM: pass (identity @groups.io)
X-ZM-MESSAGEID: 1679539487136100004
Content-Type: text/plain; charset="utf-8"

Signed-off-by: Yi Li <yi1.li@intel.com>
---
 CryptoPkg/Library/OpensslLib/HashNull.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/CryptoPkg/Library/OpensslLib/HashNull.c b/CryptoPkg/Library/Op=
ensslLib/HashNull.c
index ebd6369f98..e2a4da80a1 100644
--- a/CryptoPkg/Library/OpensslLib/HashNull.c
+++ b/CryptoPkg/Library/OpensslLib/HashNull.c
@@ -20,6 +20,8 @@ int ossl_sm3_final(unsigned char *md, SM3_CTX *c){
     return -1;
 }
 #endif
+
+#ifdef OPENSSL_NO_MD5
 #include "openssl/x509.h"
 const EVP_MD *EVP_md5(void) {
     return NULL;
@@ -41,3 +43,4 @@ int ssl3_cbc_digest_record(const EVP_MD *md,
                            size_t mac_secret_length, char is_sslv3) {
                             return -1;
                            }
+#endif
--=20
2.31.1.windows.1



-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#101611): https://edk2.groups.io/g/devel/message/101611
Mute This Topic: https://groups.io/mt/97793937/1787277
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org]
-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
From nobody Fri Apr 19 01:05:14 2024
Delivered-To: importer@patchew.org
Received-SPF: pass (zohomail.com: domain of groups.io designates
 66.175.222.108 as permitted sender) client-ip=66.175.222.108;
 envelope-from=bounce+27952+101612+1787277+3901457@groups.io;
 helo=mail02.groups.io;
Authentication-Results: mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)
  smtp.mailfrom=bounce+27952+101612+1787277+3901457@groups.io;
	dmarc=fail(p=none dis=none)  header.from=intel.com
ARC-Seal: i=1; a=rsa-sha256; t=1679539486; cv=none;
	d=zohomail.com; s=zohoarc;
	b=XvNAOtMIp2A8xMhwVjUGUrHrHhOwLztEl9oVXlCRC84iQ/+sroMbzhvmNo88SWG1UYZjHTSSotdJSaQ/0Ee7GCs8oIQYWnZF0RUCYSjxeR2ZdPSaNBr9oFD6XcvWExjmy+N194ZTT9eS2tGP4/b10A68jIpR30/HqeoDH0bcxAs=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com;
 s=zohoarc;
	t=1679539486;
 h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To;
	bh=tfy70jOXt3P9SmnsEeM3tlC3BZCXzCoKg9A9Vtp8DCY=;
	b=INXtZiElNQYZ2b1FW55NrlLwIqheBqI6fcwRYc6ef7J9pPugBsCpZfch2OImQhBECMSkbf1jpz1kuth8PKuYn3NJF/6z7gk291xD1NzkPmno5F28aOMUJyizXGXg1TAPiGoqflXEltJIo6F/GDCqukB6QkmrzeXSeU/Nfzt3teQ=
ARC-Authentication-Results: i=1; mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)
  smtp.mailfrom=bounce+27952+101612+1787277+3901457@groups.io;
	dmarc=fail header.from=<yi1.li@intel.com> (p=none dis=none)
Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by
 mx.zohomail.com
	with SMTPS id 1679539486600990.1742997164765;
 Wed, 22 Mar 2023 19:44:46 -0700 (PDT)
Return-Path: <bounce+27952+101612+1787277+3901457@groups.io>
X-Received: by 127.0.0.2 with SMTP id aUMdYY1788612x70sGc6xj6h;
 Wed, 22 Mar 2023 19:44:46 -0700
X-Received: from mga04.intel.com (mga04.intel.com [192.55.52.120])
 by mx.groups.io with SMTP id smtpd.web10.64005.1679539483463757164
 for <devel@edk2.groups.io>;
 Wed, 22 Mar 2023 19:44:45 -0700
X-IronPort-AV: E=McAfee;i="6600,9927,10657"; a="338100736"
X-IronPort-AV: E=Sophos;i="5.98,283,1673942400";
   d="scan'208";a="338100736"
X-Received: from orsmga008.jf.intel.com ([10.7.209.65])
  by fmsmga104.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 22 Mar 2023 19:44:44 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=McAfee;i="6600,9927,10657"; a="712492315"
X-IronPort-AV: E=Sophos;i="5.98,283,1673942400";
   d="scan'208";a="712492315"
X-Received: from liyi4-desktop.ccr.corp.intel.com ([10.239.153.82])
  by orsmga008-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 22 Mar 2023 19:44:43 -0700
From: "Li, Yi" <yi1.li@intel.com>
To: devel@edk2.groups.io
Cc: Yi Li <yi1.li@intel.com>
Subject: [edk2-devel] [edk2-staging/OpenSSL11_EOL][PATCH 2/4] CryptoPkg:
 remove unnecessary sig, ec and rsa prov
Date: Thu, 23 Mar 2023 10:44:34 +0800
Message-Id: 
 <03e04f0c7c4f121c2c5350d635dbb68373b12746.1679537389.git.yi1.li@intel.com>
In-Reply-To: <cover.1679537389.git.yi1.li@intel.com>
References: <cover.1679537389.git.yi1.li@intel.com>
MIME-Version: 1.0
Precedence: Bulk
List-Unsubscribe: <mailto:devel+unsubscribe@edk2.groups.io>
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Reply-To: devel@edk2.groups.io,yi1.li@intel.com
X-Gm-Message-State: XFC8rkKXRhbQhiRWN4puVj38x1787277AA=
Content-Transfer-Encoding: quoted-printable
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io;
 q=dns/txt; s=20140610; t=1679539486;
 bh=DbhllE9u44H14fAHKlkXTyDTBSfZneIVt4+UAiiE1KA=;
 h=Cc:Date:From:Reply-To:Subject:To;
 b=AUnKJYps5AhHoV8nty8dw7CWvHL2V+Pf+AfXyOYIy+jOF4DWq7hv70NuyPvBcQh/YqE
 QQXrBO7+KOOmGJF+LbzyM26LceBUoLBJZ/uNWaaUtB4VBrefcttY9UvPatRyhZUYQrL3H
 e2W8uplxBrmyWM3a6bibGaWN+vMJDD8UGVM=
X-ZohoMail-DKIM: pass (identity @groups.io)
X-ZM-MESSAGEID: 1679539487136100003
Content-Type: text/plain; charset="utf-8"

Signed-off-by: Yi Li <yi1.li@intel.com>
---
 .../Library/OpensslLib/OpensslStub/uefiprov.c | 23 -------------------
 1 file changed, 23 deletions(-)

diff --git a/CryptoPkg/Library/OpensslLib/OpensslStub/uefiprov.c b/CryptoPk=
g/Library/OpensslLib/OpensslStub/uefiprov.c
index c21c475331..4473e3e706 100644
--- a/CryptoPkg/Library/OpensslLib/OpensslStub/uefiprov.c
+++ b/CryptoPkg/Library/OpensslLib/OpensslStub/uefiprov.c
@@ -160,9 +160,6 @@ static const OSSL_ALGORITHM deflt_kdfs[] =3D {
 static const OSSL_ALGORITHM deflt_keyexch[] =3D {
 #ifndef OPENSSL_NO_DH
     { PROV_NAMES_DH, "provider=3Ddefault", ossl_dh_keyexch_functions },
-#endif
-#ifndef OPENSSL_NO_EC
-    { PROV_NAMES_ECDH, "provider=3Ddefault", ossl_ecdh_keyexch_functions },
 #endif
     { PROV_NAMES_TLS1_PRF, "provider=3Ddefault", ossl_kdf_tls1_prf_keyexch=
_functions },
     { PROV_NAMES_HKDF, "provider=3Ddefault", ossl_kdf_hkdf_keyexch_functio=
ns },
@@ -175,15 +172,6 @@ static const OSSL_ALGORITHM deflt_rands[] =3D {
     { NULL, NULL, NULL }
 };
=20
-static const OSSL_ALGORITHM deflt_signature[] =3D {
-    { PROV_NAMES_RSA, "provider=3Ddefault", ossl_rsa_signature_functions },
-#ifndef OPENSSL_NO_EC
-    { PROV_NAMES_ECDSA, "provider=3Ddefault", ossl_ecdsa_signature_functio=
ns },
-#endif
-
-    { NULL, NULL, NULL }
-};
-
 static const OSSL_ALGORITHM deflt_asym_cipher[] =3D {
     { PROV_NAMES_RSA, "provider=3Ddefault", ossl_rsa_asym_cipher_functions=
 },
     { NULL, NULL, NULL }
@@ -196,15 +184,6 @@ static const OSSL_ALGORITHM deflt_keymgmt[] =3D {
     { PROV_NAMES_DHX, "provider=3Ddefault", ossl_dhx_keymgmt_functions,
       PROV_DESCS_DHX },
 #endif
-
-    { PROV_NAMES_RSA, "provider=3Ddefault", ossl_rsa_keymgmt_functions,
-      PROV_DESCS_RSA },
-    { PROV_NAMES_RSA_PSS, "provider=3Ddefault", ossl_rsapss_keymgmt_functi=
ons,
-      PROV_DESCS_RSA_PSS },
-#ifndef OPENSSL_NO_EC
-    { PROV_NAMES_EC, "provider=3Ddefault", ossl_ec_keymgmt_functions,
-      PROV_DESCS_EC },
-#endif
     { PROV_NAMES_TLS1_PRF, "provider=3Ddefault", ossl_kdf_keymgmt_function=
s,
       PROV_DESCS_TLS1_PRF_SIGN },
     { PROV_NAMES_HKDF, "provider=3Ddefault", ossl_kdf_keymgmt_functions,
@@ -232,8 +211,6 @@ static const OSSL_ALGORITHM *deflt_query(void *provctx,=
 int operation_id,
         return deflt_keymgmt;
     case OSSL_OP_KEYEXCH:
         return deflt_keyexch;
-    case OSSL_OP_SIGNATURE:
-        return deflt_signature;
     case OSSL_OP_ASYM_CIPHER:
         return deflt_asym_cipher;
     }
--=20
2.31.1.windows.1



-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#101612): https://edk2.groups.io/g/devel/message/101612
Mute This Topic: https://groups.io/mt/97793938/1787277
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org]
-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
From nobody Fri Apr 19 01:05:14 2024
Delivered-To: importer@patchew.org
Received-SPF: pass (zohomail.com: domain of groups.io designates
 66.175.222.108 as permitted sender) client-ip=66.175.222.108;
 envelope-from=bounce+27952+101613+1787277+3901457@groups.io;
 helo=mail02.groups.io;
Authentication-Results: mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)
  smtp.mailfrom=bounce+27952+101613+1787277+3901457@groups.io;
	dmarc=fail(p=none dis=none)  header.from=intel.com
ARC-Seal: i=1; a=rsa-sha256; t=1679539487; cv=none;
	d=zohomail.com; s=zohoarc;
	b=M6XSvvuT8ASdXpJeRu8tV1fVuu1rCDiSULLpTyM3GNqyhwza9VbRJgY4FvqzOz6Y6NiDcf3sTOHS9taB0TtNlho1Fg6+64VNs1fhSa+iiNg7xeC1oO/ySWj8fmX/naxkKWAzSD3G0K94bsx/2p4FFbYxUgZYO7qN6hmPYe+GF3M=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com;
 s=zohoarc;
	t=1679539487;
 h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To;
	bh=Y+EyQdn8qkFIvr7LSbtGmQz0vRUN11rcdFFuAv1I6jo=;
	b=daztOReZfyMcfYGOB6simdZ4nELUrNoGz/QDuGeIEP9PH3oHgA9wX/UnaokA0jN7vQB0vLKIEWF2n8JXjl9uDhsE0WejzS77hMY6g8q5/AnDxrMAuctHuze9Ri2PVWQ4NPKZAy+vRXg50XYUBFBNWmLobS18M7lJv9LjUmWsT7U=
ARC-Authentication-Results: i=1; mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)
  smtp.mailfrom=bounce+27952+101613+1787277+3901457@groups.io;
	dmarc=fail header.from=<yi1.li@intel.com> (p=none dis=none)
Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by
 mx.zohomail.com
	with SMTPS id 1679539487147786.1816140275008;
 Wed, 22 Mar 2023 19:44:47 -0700 (PDT)
Return-Path: <bounce+27952+101613+1787277+3901457@groups.io>
X-Received: by 127.0.0.2 with SMTP id jtXqYY1788612xHK35UdVwof;
 Wed, 22 Mar 2023 19:44:46 -0700
X-Received: from mga04.intel.com (mga04.intel.com [192.55.52.120])
 by mx.groups.io with SMTP id smtpd.web10.64005.1679539483463757164
 for <devel@edk2.groups.io>;
 Wed, 22 Mar 2023 19:44:46 -0700
X-IronPort-AV: E=McAfee;i="6600,9927,10657"; a="338100753"
X-IronPort-AV: E=Sophos;i="5.98,283,1673942400";
   d="scan'208";a="338100753"
X-Received: from orsmga008.jf.intel.com ([10.7.209.65])
  by fmsmga104.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 22 Mar 2023 19:44:46 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=McAfee;i="6600,9927,10657"; a="712492329"
X-IronPort-AV: E=Sophos;i="5.98,283,1673942400";
   d="scan'208";a="712492329"
X-Received: from liyi4-desktop.ccr.corp.intel.com ([10.239.153.82])
  by orsmga008-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 22 Mar 2023 19:44:44 -0700
From: "Li, Yi" <yi1.li@intel.com>
To: devel@edk2.groups.io
Cc: Yi Li <yi1.li@intel.com>
Subject: [edk2-devel] [edk2-staging/OpenSSL11_EOL][PATCH 3/4] CryptoPkg:
 update openssl submodule
Date: Thu, 23 Mar 2023 10:44:35 +0800
Message-Id: 
 <acd83f2b4d6b50a43307af80b16ac77a565209d1.1679537389.git.yi1.li@intel.com>
In-Reply-To: <cover.1679537389.git.yi1.li@intel.com>
References: <cover.1679537389.git.yi1.li@intel.com>
MIME-Version: 1.0
Precedence: Bulk
List-Unsubscribe: <mailto:devel+unsubscribe@edk2.groups.io>
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Reply-To: devel@edk2.groups.io,yi1.li@intel.com
X-Gm-Message-State: TVyfwGbklyTxvtNp1VeSpkRpx1787277AA=
Content-Transfer-Encoding: quoted-printable
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io;
 q=dns/txt; s=20140610; t=1679539486;
 bh=53BtWgHJcnXrvJWh1p7E1/AjyH6aub9EvNDkuGJ7BMM=;
 h=Cc:Date:From:Reply-To:Subject:To;
 b=rUtmioIiJmjbNjKDk2vdTT3XSEeN1fbFvPfk2Z8qeI+r7MboZm419EceAwOaBqoLb1J
 tkUPGDaGziGsPJ0CYYi4fLxNX8UT9rBQPAyYucU9a/l/nkHX/MWt80zZJEu8Yn3UMW77Q
 gfUlVlQyhjcQDa+VvyRXXjOiUogf+Hm1zbQ=
X-ZohoMail-DKIM: pass (identity @groups.io)
X-ZM-MESSAGEID: 1679539488931100013
Content-Type: text/plain; charset="utf-8"

Signed-off-by: Yi Li <yi1.li@intel.com>
---
 CryptoPkg/Library/OpensslLib/openssl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/CryptoPkg/Library/OpensslLib/openssl b/CryptoPkg/Library/Opens=
slLib/openssl
index 6048380660..2b0a888c36 160000
--- a/CryptoPkg/Library/OpensslLib/openssl
+++ b/CryptoPkg/Library/OpensslLib/openssl
@@ -1 +1 @@
-Subproject commit 6048380660df37d5828c1ff1d343f24a21091715
+Subproject commit 2b0a888c3623e1dc0637fbe0c5dcc1211b4d0545
--=20
2.31.1.windows.1



-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#101613): https://edk2.groups.io/g/devel/message/101613
Mute This Topic: https://groups.io/mt/97793939/1787277
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org]
-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
From nobody Fri Apr 19 01:05:14 2024
Delivered-To: importer@patchew.org
Received-SPF: pass (zohomail.com: domain of groups.io designates
 66.175.222.108 as permitted sender) client-ip=66.175.222.108;
 envelope-from=bounce+27952+101614+1787277+3901457@groups.io;
 helo=mail02.groups.io;
Authentication-Results: mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)
  smtp.mailfrom=bounce+27952+101614+1787277+3901457@groups.io;
	dmarc=fail(p=none dis=none)  header.from=intel.com
ARC-Seal: i=1; a=rsa-sha256; t=1679539504; cv=none;
	d=zohomail.com; s=zohoarc;
	b=H8sQ/5q5QEbSqZPZLUsLVVH99F7rV3xxLFW0FzqhVqFAQbZgTTXgFgaWaaWtwOaChp1MGigWA7+qS7gcuXn7P3GSggkgLxHFPI9grCp+fA2aE7p8JZuhACxk8BJ78KRsEGwV4SZqjebLjE0olvK/4cn4PnZF6aqhkeUHyphE8LE=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com;
 s=zohoarc;
	t=1679539504;
 h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:References:Sender:Subject:To;
	bh=+AZaxOm7s9C5iyO9un5L4EZeI8VIt+d3QGzp+o+sHVk=;
	b=EtkYV6EY5SaEv870r4TGUoNQT0if4d5Ns3LTGNEGKB4APeRShQcTjvjWpWp5brgoygtYHTLsEMhGYTuqOKQBdP6sLkFzNb2VDGBEiEuG3dJgfKmNHD8riBxZFmre3UixNIkCyhDJrMEHHd/q8LkEPAn5AyQRwLOg1TDZw+nC9aA=
ARC-Authentication-Results: i=1; mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of groups.io designates 66.175.222.108 as
 permitted sender)
  smtp.mailfrom=bounce+27952+101614+1787277+3901457@groups.io;
	dmarc=fail header.from=<yi1.li@intel.com> (p=none dis=none)
Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by
 mx.zohomail.com
	with SMTPS id 1679539504053961.4549049022298;
 Wed, 22 Mar 2023 19:45:04 -0700 (PDT)
Return-Path: <bounce+27952+101614+1787277+3901457@groups.io>
X-Received: by 127.0.0.2 with SMTP id eYBSYY1788612xQmpTEFDBnx;
 Wed, 22 Mar 2023 19:44:48 -0700
X-Received: from mga04.intel.com (mga04.intel.com [192.55.52.120])
 by mx.groups.io with SMTP id smtpd.web10.64005.1679539483463757164
 for <devel@edk2.groups.io>;
 Wed, 22 Mar 2023 19:44:47 -0700
X-IronPort-AV: E=McAfee;i="6600,9927,10657"; a="338100782"
X-IronPort-AV: E=Sophos;i="5.98,283,1673942400";
   d="scan'208";a="338100782"
X-Received: from orsmga008.jf.intel.com ([10.7.209.65])
  by fmsmga104.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 22 Mar 2023 19:44:47 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=McAfee;i="6600,9927,10657"; a="712492359"
X-IronPort-AV: E=Sophos;i="5.98,283,1673942400";
   d="scan'208";a="712492359"
X-Received: from liyi4-desktop.ccr.corp.intel.com ([10.239.153.82])
  by orsmga008-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 22 Mar 2023 19:44:46 -0700
From: "Li, Yi" <yi1.li@intel.com>
To: devel@edk2.groups.io
Cc: Yi Li <yi1.li@intel.com>
Subject: [edk2-devel] [edk2-staging/OpenSSL11_EOL][PATCH 4/4] Readme: 0322
 update
Date: Thu, 23 Mar 2023 10:44:36 +0800
Message-Id: 
 <99a218c205bcc4ddc7ef48ef875dc9361e53926f.1679537389.git.yi1.li@intel.com>
In-Reply-To: <cover.1679537389.git.yi1.li@intel.com>
References: <cover.1679537389.git.yi1.li@intel.com>
MIME-Version: 1.0
Precedence: Bulk
List-Unsubscribe: <mailto:devel+unsubscribe@edk2.groups.io>
List-Subscribe: <mailto:devel+subscribe@edk2.groups.io>
List-Help: <mailto:devel+help@edk2.groups.io>
Sender: devel@edk2.groups.io
List-Id: <devel.edk2.groups.io>
Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io
Reply-To: devel@edk2.groups.io,yi1.li@intel.com
X-Gm-Message-State: T0d4VeuFFedOXr9Rp1Dsanssx1787277AA=
Content-Transfer-Encoding: quoted-printable
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=groups.io;
 q=dns/txt; s=20140610; t=1679539488;
 bh=3elVq2vdBuggjPiQGksV7HIVUpy1HD9ylU80DLPbb/I=;
 h=Cc:Date:From:Reply-To:Subject:To;
 b=kctVqi+YRt5xs32PLi6X2jKxMaoleZxmcNMT1z0SOxtPwOZNWTnz6KoO6ubfejK9hCX
 RcyfqQpLbm5KTUpcORXGzd88F1cffqWFOK25QfvPJPJH/iG92/CUulubmIAiovm/CgzP6
 hP24CGhkMVEkdPVub3FW3YOrcA04v9IjKb4=
X-ZohoMail-DKIM: pass (identity @groups.io)
X-ZM-MESSAGEID: 1679539504985100001
Content-Type: text/plain; charset="utf-8"

Signed-off-by: Yi Li <yi1.li@intel.com>
---
 CryptoPkg/Readme-OpenSSL3.0.md | 65 +++++++++++++++++++++++++++++-----
 1 file changed, 57 insertions(+), 8 deletions(-)

diff --git a/CryptoPkg/Readme-OpenSSL3.0.md b/CryptoPkg/Readme-OpenSSL3.0.md
index 85ed37b61d..fc5d24d074 100644
--- a/CryptoPkg/Readme-OpenSSL3.0.md
+++ b/CryptoPkg/Readme-OpenSSL3.0.md
@@ -17,19 +17,26 @@ The branch owner: Li Yi <yi1.li@intel.com>
=20
 ## Latest update
 Will update latest result here (Build based on Intel platform). =20
+Binaries mode (use crypto drivers) =20
 |     Driver      |   1.1.1    |    3.0     |   percent  | =20
 |-----------------|------------|------------|------------| =20
 |CryptoPei        |   386      |    398     |    3.1%    | =20
 |CryptoPeiPreMem  |   31       |    31      |    0%      | =20
-|CryptoDxeFull    |   1014     |    1031    |    1.7%    | =20
-|CryptoDxe        |   804      |    886     |    10.1%   | =20
-|CryptoSmm        |   558      |    604     |    8.2%    | =20
-
+|CryptoDxeFull    |   1014     |    997     |    -1.6%   | =20
+|CryptoDxe        |   804      |    871     |    8.3%    | =20
+|CryptoSmm        |   558      |    581     |    4.1%    | =20
+ =20
 | LZMA Compressed |   1.1.1    |    3.0     |   percent  | =20
 |-----------------|------------|------------|------------| =20
-|CryptoDxe        |   311      |    350     |    12.2%   | =20
-|CryptoSmm        |   211      |    238     |    12.8%   | =20
-|FV (Dxe+Smm)     |   357      |    412     |    15.4%   | =20
+|CryptoDxe        |   311      |    346     |    11.2%   | =20
+|CryptoSmm        |   211      |    233     |    10.4%   | =20
+|FV (Dxe+Smm)     |   357      |    406     |    13.7%   | =20
+
+Library mode (use crypto library) =20
+|     Driver         |   1.1.1    |    3.0     |    delta   | =20
+|--------------------|------------|------------|------------| =20
+|      FV            |   2377     |    2639    |     262    | =20
+|SecurityStubDxe.efi |   562      |    605     |     43     | =20
=20
 ## Limitation
=20
@@ -49,7 +56,7 @@ More complex API: There will be two code paths supporting=
 1.1.1 legacy and 3.0 p
 ### 1.Cut Provider
 As CryptoPkg\Library\OpensslLib\OpensslStub\uefiprov.c
=20
-### Remove unnecessary module=20
+### 2.Remove unnecessary module=20
 SM2, =20
 SM3 - 12KB, =20
 MD5 - 8KB, =20
@@ -105,5 +112,47 @@ remove unused bio prov - 4KB
 #### Risk:
 This is workaround.
=20
+## Openssl code change summary
+### Level 1: Reasonable changes to reduce size
+1. Add macro such like OPENSSL_NO_ECX OPENSSL_NO_ECD to remove ecx and ecd=
 feature, =20
+will reduce size about 104KB. =20
+(commit: ec: disable ecx and ecd) =20
+https://github.com/liyi77/openssl/commit/2b0a888c3623e1dc0637fbe0c5dcc1211=
b4d0545 =20
+ =20
+2. Avoid build error when sm3 disabled. =20
+(commit: sm3: avoid build error after sm3 disabled) =20
+https://github.com/liyi77/openssl/commit/df92e440e45667da6ca1f9013f015e6d1=
8981f2e =20
+
+### Level 2: A bit like workaround, with possibility of upstream to openssl
+1. Enable the legacy path for X509 pubkey decode and pmeth initialization,=
 =20
+The purpose is to avoid the use of EN/DECODE and Signature provider, will =
reduce size about 90KB. =20
+(commit: x509: enable legacy path in pub decode) =20
+https://github.com/liyi77/openssl/commit/8780956da77c949ca42f6c4c3fd6ef704=
5646ef0 =20
+(commit: evp: enable legacy pmeth) =20
+https://github.com/liyi77/openssl/commit/a2232b35aa308198b61c5734c1bfe1d02=
63f074b =20
+ =20
+2. Add 'type' field back to enable OPENSSL_NO_AUTOALGINIT,  will reduce si=
ze about 27KB. =20
+issue: https://github.com/openssl/openssl/issues/20221 =20
+(commit: evp: add type filed back) =20
+https://github.com/liyi77/openssl/commit/9c68a18a3a1967baf8d93eacadac9f0e1=
4523715 =20
+
+### Level 3: Totally workaround and hard to upstream to openssl, may need =
scripts to apply them inside EDK2
+1. Provider cut. =20
+(commit: CryptoPkg: add own openssl provider) =20
+https://github.com/liyi77/edk2-staging/commit/c3a5b69d8a3465259cfdca8f38b0=
dc7683b3690e =20
+ =20
+2. Cut Name/NID mapping, will reduce size about 70KB. =20
+(commit: CryptoPkg: trim obj_dat.h) =20
+https://github.com/liyi77/edk2-staging/commit/6874485ebf89959953f7094990c7=
123e19748527 =20
+
+3. Cut unnecessary API in structure. =20
+(commit: evp: cut bio_enc func 3KB) =20
+https://github.com/liyi77/openssl/commit/3a2331133c2e3bda3e9bdb861ea97e5d3=
969fb2d =20
+(commit: x509: remove print function 7KB) =20
+https://github.com/liyi77/openssl/commit/faa5d6781c3af601bcbc11ff199e2955d=
7ff4306 =20
+(commit: rsa: remove unused rsa ameth 7KB) =20
+https://github.com/liyi77/openssl/commit/8488c75701cdd5e626785e6d9d002f6fb=
30ae0ff =20
+(commit: x509: remove unused extentions 19KB) =20
+https://github.com/liyi77/openssl/commit/c27b3428708eb240b626946ce10d42198=
06d8adf =20
 ## Timeline
 Target for 2023 Q1
\ No newline at end of file
--=20
2.31.1.windows.1



-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#101614): https://edk2.groups.io/g/devel/message/101614
Mute This Topic: https://groups.io/mt/97793941/1787277
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org]
-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-