Redesign OID API for smaller code size #9380
Labels
api-break
This issue/PR breaks the API and must wait for a new major version
component-crypto
Crypto primitives and low-level interfaces
component-x509
enhancement
The OID API (
oid.h
) and implementation (oid.c
) are not good for code size for several reasons:MBEDTLS_SHA256_C
is defined), but we don't guard tables by how they're used (e.g. hash OIDs are included unconditionally, even if nothing consumes them, because it's a public API).The goal of this issue is to redesign the OID API and implementation with code size in mind, both to enable more compact code and to automatically include only what is needed. The general idea is:
oid.h
in TF-PSA-Crypto only exposes some generic lookup functions which are automatically enabled if some other part of the library needs them. If needed, X.509 will have additional conversion functions that crypto doesn't need.This is a design issue. The goal is a design specification. Once we have a design, there will be further tasks for implementation.
The text was updated successfully, but these errors were encountered: