feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

wolfSSH size optimizations. Disable RSA OAEP, enable SHA-1 with DH. Do not need SHA2-384/512.

Browse Source
This commit is contained in:
David Garske
2024-05-31 12:16:06 -07:00
parent cfbadc8b07
commit b4910c4615
1 changed files with 12 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
examples/configs/user_settings_wolfssh.h
View File

@ -88,16 +88,22 @@ extern "C" {
#define WC_RSA_BLINDING #define WC_RSA_BLINDING
/* Asymmetric */ /* Asymmetric */
#if 1 /* RSA */ #if 1 /* RSA - PKCS1v1.5 */
#undef NO_RSA #undef NO_RSA
#define WC_NO_RSA_OAEP /* SSH does not use OAEP */
#ifdef USE_LOW_RESOURCE #ifdef USE_LOW_RESOURCE
#define RSA_LOW_MEM /* currently CalcRsaInverses uses RsaKey members so cannot enable */
/* #define RSA_LOW_MEM */
#endif #endif
#else #else
#define NO_RSA #define NO_RSA
#endif #endif
#if 1 /* DH */ #if 1 /* DH */
/* RFC 4253 requires "DH w/SHA-1"
* RFC 9142 requires "diffie-hellman-group14-sha256"
*/
#undef NO_DH #undef NO_DH
#ifndef WOLFCRYPT_ONLY #ifndef WOLFCRYPT_ONLY
#define HAVE_DH_DEFAULT_PARAMS #define HAVE_DH_DEFAULT_PARAMS
@ -128,12 +134,14 @@ extern "C" {
#define WOLFSSL_AES_SMALL_TABLES #define WOLFSSL_AES_SMALL_TABLES
#endif #endif
/* Hashing SHA2-256/384/512 */ /* Hashing SHA-1/SHA2-256 */
#undef NO_SHA
#undef NO_SHA256 #undef NO_SHA256
#ifdef USE_LOW_RESOURCE #ifdef USE_LOW_RESOURCE
#define USE_SLOW_SHA
#define USE_SLOW_SHA256 #define USE_SLOW_SHA256
#endif #endif
#if 1 #if 0
#define WOLFSSL_SHA384 #define WOLFSSL_SHA384
#define WOLFSSL_SHA512 #define WOLFSSL_SHA512
#ifdef USE_LOW_RESOURCE #ifdef USE_LOW_RESOURCE
@ -181,7 +189,6 @@ extern "C" {
#endif #endif
/* Disable Algorithms */ /* Disable Algorithms */
#define NO_SHA
#define NO_DSA #define NO_DSA
#define NO_DES3 #define NO_DES3
#define NO_MD4 #define NO_MD4