Add mbedtls_ecp_set_max_ops()
The plan is to count basic operations as follows: - call to ecp_add_mixed() -> 11 - call to ecp_double_jac() -> 8 - call to mpi_mul_mpi() -> 1 - call to mpi_inv_mod() -> 120 - everything else -> not counted The counts for ecp_add_mixed() and ecp_double_jac() are based on the actual number of calls to mpi_mul_mpi() they they make. The count for mpi_inv_mod() is based on timing measurements on K64F and LPC1768 boards, and are consistent with the usual very rough estimate of one inversion = 100 multiplications. It could be useful to repeat that measurement on a Cortex-M0 board as those have smaller divider and multipliers, so the result could be a bit different but should be the same order of magnitude. The documented limitation of 120 basic ops is due to the calls to mpi_inv_mod() which are currently not interruptible nor planned to be so far.
This commit is contained in:
Manuel Pégourié-Gonnard
parent
5e3c62fd1d
commit
054433c493
2 changed files with 49 additions and 1 deletions
|
|
@ -85,6 +85,22 @@ static void mbedtls_zeroize( void *v, size_t n ) {
|
|||
static unsigned long add_count, dbl_count, mul_count;
|
||||
#endif
|
||||
|
||||
|
||||
#if defined(MBEDTLS_ECP_EARLY_RETURN)
|
||||
/*
|
||||
* Maximum number of "basic operations" to be done in a row.
|
||||
*/
|
||||
static unsigned ecp_max_ops = 0;
|
||||
|
||||
/*
|
||||
* Set ecp_max_ops
|
||||
*/
|
||||
void mbedtls_ecp_set_max_ops( unsigned max_ops )
|
||||
{
|
||||
ecp_max_ops = max_ops;
|
||||
}
|
||||
#endif /* MBEDTLS_ECP_EARLY_RETURN */
|
||||
|
||||
#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) || \
|
||||
defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) || \
|
||||
defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) || \
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue