3 * Copyright (C) 2006-2012 Sawtooth Consulting Ltd.
5 * This file is part of CyaSSL.
7 * CyaSSL is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 2 of the License, or
10 * (at your option) any later version.
12 * CyaSSL is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, write to the Free Software
19 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
23 /* super class file for PK algos */
25 /* default ... include all MPI */
28 /* RSA only (does not support DH/DSA/ECC) */
29 /* #define SC_RSA_1 */
31 /* For reference.... On an Athlon64 optimizing for speed...
33 LTM's mpi.o with all functions [striped] is 142KiB in size.
37 /* Works for RSA only, mpi.o is 68KiB */
39 #define BN_MP_SHRINK_C
41 #define BN_MP_PRIME_RANDOM_EX_C
42 #define BN_MP_INVMOD_C
45 #define BN_MP_MULMOD_C
46 #define BN_MP_ADDMOD_C
47 #define BN_MP_EXPTMOD_C
48 #define BN_MP_SET_INT_C
49 #define BN_MP_INIT_MULTI_C
50 #define BN_MP_CLEAR_MULTI_C
51 #define BN_MP_UNSIGNED_BIN_SIZE_C
52 #define BN_MP_TO_UNSIGNED_BIN_C
54 #define BN_MP_PRIME_RABIN_MILLER_TRIALS_C
56 #define BN_PRIME_TAB_C
59 #define BN_MP_DIV_SMALL /* Slower division, not critical */
61 /* here we are on the last pass so we turn things off. The functions classes are still there
62 * but we remove them specifically from the build. This also invokes tweaks in functions
63 * like removing support for even moduli, etc...
66 #undef BN_MP_TOOM_MUL_C
67 #undef BN_MP_TOOM_SQR_C
68 #undef BN_MP_KARATSUBA_MUL_C
69 #undef BN_MP_KARATSUBA_SQR_C
71 #undef BN_MP_REDUCE_SETUP_C
72 #undef BN_MP_DR_IS_MODULUS_C
73 #undef BN_MP_DR_SETUP_C
74 #undef BN_MP_DR_REDUCE_C
75 #undef BN_MP_REDUCE_IS_2K_C
76 #undef BN_MP_REDUCE_2K_SETUP_C
77 #undef BN_MP_REDUCE_2K_C
78 #undef BN_S_MP_EXPTMOD_C
80 #undef BN_S_MP_MUL_HIGH_DIGS_C
81 #undef BN_FAST_S_MP_MUL_HIGH_DIGS_C
82 #undef BN_FAST_MP_INVMOD_C
84 /* To safely undefine these you have to make sure your RSA key won't exceed the Comba threshold
85 * which is roughly 255 digits [7140 bits for 32-bit machines, 15300 bits for 64-bit machines]
86 * which means roughly speaking you can handle upto 2536-bit RSA keys with these defined without
89 #undef BN_S_MP_MUL_DIGS_C
91 #undef BN_MP_MONTGOMERY_REDUCE_C