Naming scheme for crypto tuning options #101

gilles-peskine-arm · 2024-05-22T13:34:43Z

The goal of this issue is to define a naming scheme for configuration options that tune how cryptography is performed. This excludes cryptographic mechanism selection (PSA_WANT_xxx), driver availability (driver JSON parametrization), and platform options (handled separately).

The relevant boolean options in Mbed TLS 3.6 are:

MBEDTLS_AES_FEWER_TABLES
MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH
MBEDTLS_AES_ROM_TABLES
MBEDTLS_CAMELLIA_SMALL_MEMORY
MBEDTLS_ECP_FIXED_POINT_OPTIM
MBEDTLS_ECP_NIST_OPTIM

If any of those options are to be removed or reorganized, this should be tracked as a separate issue.

The text was updated successfully, but these errors were encountered:

gilles-peskine-arm · 2024-05-22T14:06:36Z

I just found that this already exists in the mbedtls repository. Mbed-TLS/mbedtls#9100

gilles-peskine-arm · 2024-05-22T14:10:05Z

The mbedtls issue is a broader study issue, so on second thoughts I'm reopening this one to focus on the options that are being moved and renamed.

gilles-peskine-arm added the size-s Estimated task size: small (~2d) label May 22, 2024

gilles-peskine-arm closed this as not planned Won't fix, can't repro, duplicate, stale May 22, 2024

gilles-peskine-arm reopened this May 22, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Naming scheme for crypto tuning options #101

Naming scheme for crypto tuning options #101

gilles-peskine-arm commented May 22, 2024 •

edited

Loading

gilles-peskine-arm commented May 22, 2024

gilles-peskine-arm commented May 22, 2024

Naming scheme for crypto tuning options #101

Naming scheme for crypto tuning options #101

Comments

gilles-peskine-arm commented May 22, 2024 • edited Loading

gilles-peskine-arm commented May 22, 2024

gilles-peskine-arm commented May 22, 2024

gilles-peskine-arm commented May 22, 2024 •

edited

Loading