mbed TLS v2.7.17
config.h
Go to the documentation of this file.
1 
10 /*
11  * Copyright The Mbed TLS Contributors
12  * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
13  *
14  * This file is provided under the Apache License 2.0, or the
15  * GNU General Public License v2.0 or later.
16  *
17  * **********
18  * Apache License 2.0:
19  *
20  * Licensed under the Apache License, Version 2.0 (the "License"); you may
21  * not use this file except in compliance with the License.
22  * You may obtain a copy of the License at
23  *
24  * http://www.apache.org/licenses/LICENSE-2.0
25  *
26  * Unless required by applicable law or agreed to in writing, software
27  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
28  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
29  * See the License for the specific language governing permissions and
30  * limitations under the License.
31  *
32  * **********
33  *
34  * **********
35  * GNU General Public License v2.0 or later:
36  *
37  * This program is free software; you can redistribute it and/or modify
38  * it under the terms of the GNU General Public License as published by
39  * the Free Software Foundation; either version 2 of the License, or
40  * (at your option) any later version.
41  *
42  * This program is distributed in the hope that it will be useful,
43  * but WITHOUT ANY WARRANTY; without even the implied warranty of
44  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
45  * GNU General Public License for more details.
46  *
47  * You should have received a copy of the GNU General Public License along
48  * with this program; if not, write to the Free Software Foundation, Inc.,
49  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
50  *
51  * **********
52  */
53 
54 #ifndef MBEDTLS_CONFIG_H
55 #define MBEDTLS_CONFIG_H
56 
57 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
58 #define _CRT_SECURE_NO_DEPRECATE 1
59 #endif
60 
82 #define MBEDTLS_HAVE_ASM
83 
110 //#define MBEDTLS_NO_UDBL_DIVISION
111 
119 //#define MBEDTLS_HAVE_SSE2
120 
134 #define MBEDTLS_HAVE_TIME
135 
146 #define MBEDTLS_HAVE_TIME_DATE
147 
170 //#define MBEDTLS_PLATFORM_MEMORY
171 
189 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
190 
214 //#define MBEDTLS_PLATFORM_EXIT_ALT
215 //#define MBEDTLS_PLATFORM_TIME_ALT
216 //#define MBEDTLS_PLATFORM_FPRINTF_ALT
217 //#define MBEDTLS_PLATFORM_PRINTF_ALT
218 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT
219 //#define MBEDTLS_PLATFORM_NV_SEED_ALT
220 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
221 
235 //#define MBEDTLS_DEPRECATED_WARNING
236 
247 //#define MBEDTLS_DEPRECATED_REMOVED
248 
249 /* \} name SECTION: System support */
250 
270 //#define MBEDTLS_TIMING_ALT
271 
297 //#define MBEDTLS_AES_ALT
298 //#define MBEDTLS_ARC4_ALT
299 //#define MBEDTLS_BLOWFISH_ALT
300 //#define MBEDTLS_CAMELLIA_ALT
301 //#define MBEDTLS_CCM_ALT
302 //#define MBEDTLS_CMAC_ALT
303 //#define MBEDTLS_DES_ALT
304 //#define MBEDTLS_DHM_ALT
305 //#define MBEDTLS_ECJPAKE_ALT
306 //#define MBEDTLS_GCM_ALT
307 //#define MBEDTLS_MD2_ALT
308 //#define MBEDTLS_MD4_ALT
309 //#define MBEDTLS_MD5_ALT
310 //#define MBEDTLS_RIPEMD160_ALT
311 //#define MBEDTLS_RSA_ALT
312 //#define MBEDTLS_SHA1_ALT
313 //#define MBEDTLS_SHA256_ALT
314 //#define MBEDTLS_SHA512_ALT
315 //#define MBEDTLS_XTEA_ALT
316 /*
317  * When replacing the elliptic curve module, pleace consider, that it is
318  * implemented with two .c files:
319  * - ecp.c
320  * - ecp_curves.c
321  * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
322  * macros as described above. The only difference is that you have to make sure
323  * that you provide functionality for both .c files.
324  */
325 //#define MBEDTLS_ECP_ALT
326 
372 //#define MBEDTLS_MD2_PROCESS_ALT
373 //#define MBEDTLS_MD4_PROCESS_ALT
374 //#define MBEDTLS_MD5_PROCESS_ALT
375 //#define MBEDTLS_RIPEMD160_PROCESS_ALT
376 //#define MBEDTLS_SHA1_PROCESS_ALT
377 //#define MBEDTLS_SHA256_PROCESS_ALT
378 //#define MBEDTLS_SHA512_PROCESS_ALT
379 //#define MBEDTLS_DES_SETKEY_ALT
380 //#define MBEDTLS_DES_CRYPT_ECB_ALT
381 //#define MBEDTLS_DES3_CRYPT_ECB_ALT
382 //#define MBEDTLS_AES_SETKEY_ENC_ALT
383 //#define MBEDTLS_AES_SETKEY_DEC_ALT
384 //#define MBEDTLS_AES_ENCRYPT_ALT
385 //#define MBEDTLS_AES_DECRYPT_ALT
386 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
387 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
388 //#define MBEDTLS_ECDSA_VERIFY_ALT
389 //#define MBEDTLS_ECDSA_SIGN_ALT
390 //#define MBEDTLS_ECDSA_GENKEY_ALT
391 
432 /* Required for all the functions in this section */
433 //#define MBEDTLS_ECP_INTERNAL_ALT
434 /* Support for Weierstrass curves with Jacobi representation */
435 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
436 //#define MBEDTLS_ECP_ADD_MIXED_ALT
437 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT
438 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
439 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
440 /* Support for curves with Montgomery arithmetic */
441 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
442 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
443 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
444 
460 //#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
461 
479 //#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
480 
496 //#define MBEDTLS_TEST_NULL_ENTROPY
497 
509 //#define MBEDTLS_ENTROPY_HARDWARE_ALT
510 
518 //#define MBEDTLS_AES_ROM_TABLES
519 
527 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY
528 
534 #define MBEDTLS_CIPHER_MODE_CBC
535 
541 #define MBEDTLS_CIPHER_MODE_CFB
542 
548 #define MBEDTLS_CIPHER_MODE_CTR
549 
581 //#define MBEDTLS_CIPHER_NULL_CIPHER
582 
594 #define MBEDTLS_CIPHER_PADDING_PKCS7
595 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
596 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
597 #define MBEDTLS_CIPHER_PADDING_ZEROS
598 
615 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
616 
628 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
629 
648 #define MBEDTLS_REMOVE_3DES_CIPHERSUITES
649 
658 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED
659 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED
660 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
661 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
662 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED
663 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED
664 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED
665 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED
666 #define MBEDTLS_ECP_DP_BP256R1_ENABLED
667 #define MBEDTLS_ECP_DP_BP384R1_ENABLED
668 #define MBEDTLS_ECP_DP_BP512R1_ENABLED
669 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED
670 
680 #define MBEDTLS_ECP_NIST_OPTIM
681 
702 //#define MBEDTLS_ECP_NO_INTERNAL_RNG
703 
716 #define MBEDTLS_ECDSA_DETERMINISTIC
717 
738 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
739 
769 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
770 
789 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
790 
814 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
815 
842 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
843 
875 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
876 
900 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
901 
924 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
925 
948 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
949 
972 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
973 
991 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
992 
1005 #define MBEDTLS_PK_PARSE_EC_EXTENDED
1006 
1020 #define MBEDTLS_ERROR_STRERROR_DUMMY
1021 
1029 #define MBEDTLS_GENPRIME
1030 
1036 #define MBEDTLS_FS_IO
1037 
1049 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1050 
1060 //#define MBEDTLS_NO_PLATFORM_ENTROPY
1061 
1076 //#define MBEDTLS_ENTROPY_FORCE_SHA256
1077 
1104 //#define MBEDTLS_ENTROPY_NV_SEED
1105 
1117 //#define MBEDTLS_MEMORY_DEBUG
1118 
1129 //#define MBEDTLS_MEMORY_BACKTRACE
1130 
1138 #define MBEDTLS_PK_RSA_ALT_SUPPORT
1139 
1149 #define MBEDTLS_PKCS1_V15
1150 
1160 #define MBEDTLS_PKCS1_V21
1161 
1171 //#define MBEDTLS_RSA_NO_CRT
1172 
1178 #define MBEDTLS_SELF_TEST
1179 
1194 //#define MBEDTLS_SHA256_SMALLER
1195 
1208 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1209 
1224 //#define MBEDTLS_SSL_DEBUG_ALL
1225 
1242 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1243 
1260 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1261 
1277 #define MBEDTLS_SSL_FALLBACK_SCSV
1278 
1287 //#define MBEDTLS_SSL_HW_RECORD_ACCEL
1288 
1299 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1300 
1321 #define MBEDTLS_SSL_RENEGOTIATION
1322 
1331 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1332 
1341 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1342 
1350 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1351 
1362 //#define MBEDTLS_SSL_PROTO_SSL3
1363 
1374 #define MBEDTLS_SSL_PROTO_TLS1
1375 
1386 #define MBEDTLS_SSL_PROTO_TLS1_1
1387 
1398 #define MBEDTLS_SSL_PROTO_TLS1_2
1399 
1413 #define MBEDTLS_SSL_PROTO_DTLS
1414 
1422 #define MBEDTLS_SSL_ALPN
1423 
1437 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1438 
1455 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1456 
1471 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1472 
1482 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1483 
1496 #define MBEDTLS_SSL_SESSION_TICKETS
1497 
1506 #define MBEDTLS_SSL_EXPORT_KEYS
1507 
1517 #define MBEDTLS_SSL_SERVER_NAME_INDICATION
1518 
1526 #define MBEDTLS_SSL_TRUNCATED_HMAC
1527 
1550 //#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1551 
1561 //#define MBEDTLS_THREADING_ALT
1562 
1572 #define MBEDTLS_THREADING_PTHREAD
1573 
1585 #define MBEDTLS_VERSION_FEATURES
1586 
1595 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1596 
1607 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1608 
1621 #define MBEDTLS_X509_CHECK_KEY_USAGE
1622 
1634 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1635 
1644 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT
1645 
1666 #define MBEDTLS_ZLIB_SUPPORT
1667 /* \} name SECTION: mbed TLS feature support */
1668 
1688 #define MBEDTLS_AESNI_C
1689 
1763 #define MBEDTLS_AES_C
1764 
1791 #define MBEDTLS_ARC4_C
1792 
1805 #define MBEDTLS_ASN1_PARSE_C
1806 
1819 #define MBEDTLS_ASN1_WRITE_C
1820 
1831 #define MBEDTLS_BASE64_C
1832 
1848 #define MBEDTLS_BIGNUM_C
1849 
1857 #define MBEDTLS_BLOWFISH_C
1858 
1912 #define MBEDTLS_CAMELLIA_C
1913 
1926 #define MBEDTLS_CCM_C
1927 
1938 #define MBEDTLS_CERTS_C
1939 
1950 #define MBEDTLS_CIPHER_C
1951 
1963 //#define MBEDTLS_CMAC_C
1964 
1981 #define MBEDTLS_CTR_DRBG_C
1982 
1995 #define MBEDTLS_DEBUG_C
1996 
2024 #define MBEDTLS_DES_C
2025 
2045 #define MBEDTLS_DHM_C
2046 
2061 #define MBEDTLS_ECDH_C
2062 
2076 #define MBEDTLS_ECDSA_C
2077 
2095 //#define MBEDTLS_ECJPAKE_C
2096 
2109 #define MBEDTLS_ECP_C
2110 
2123 #define MBEDTLS_ENTROPY_C
2124 
2135 #define MBEDTLS_ERROR_C
2136 
2149 #define MBEDTLS_GCM_C
2150 
2172 #define MBEDTLS_HAVEGE_C
2173 
2186 #define MBEDTLS_HMAC_DRBG_C
2187 
2198 #define MBEDTLS_MD_C
2199 
2215 //#define MBEDTLS_MD2_C
2216 
2232 //#define MBEDTLS_MD4_C
2233 
2254 #define MBEDTLS_MD5_C
2255 
2270 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2271 
2289 #define MBEDTLS_NET_C
2290 
2312 #define MBEDTLS_OID_C
2313 
2326 #define MBEDTLS_PADLOCK_C
2327 
2344 #define MBEDTLS_PEM_PARSE_C
2345 
2360 #define MBEDTLS_PEM_WRITE_C
2361 
2376 #define MBEDTLS_PK_C
2377 
2391 #define MBEDTLS_PK_PARSE_C
2392 
2405 #define MBEDTLS_PK_WRITE_C
2406 
2418 #define MBEDTLS_PKCS5_C
2419 
2433 #define MBEDTLS_PKCS11_C
2434 
2449 #define MBEDTLS_PKCS12_C
2450 
2469 #define MBEDTLS_PLATFORM_C
2470 
2480 #define MBEDTLS_RIPEMD160_C
2481 
2499 #define MBEDTLS_RSA_C
2500 
2521 #define MBEDTLS_SHA1_C
2522 
2538 #define MBEDTLS_SHA256_C
2539 
2553 #define MBEDTLS_SHA512_C
2554 
2565 #define MBEDTLS_SSL_CACHE_C
2566 
2575 #define MBEDTLS_SSL_COOKIE_C
2576 
2587 #define MBEDTLS_SSL_TICKET_C
2588 
2601 #define MBEDTLS_SSL_CLI_C
2602 
2615 #define MBEDTLS_SSL_SRV_C
2616 
2631 #define MBEDTLS_SSL_TLS_C
2632 
2653 #define MBEDTLS_THREADING_C
2654 
2676 #define MBEDTLS_TIMING_C
2677 
2687 #define MBEDTLS_VERSION_C
2688 
2704 #define MBEDTLS_X509_USE_C
2705 
2720 #define MBEDTLS_X509_CRT_PARSE_C
2721 
2734 #define MBEDTLS_X509_CRL_PARSE_C
2735 
2748 #define MBEDTLS_X509_CSR_PARSE_C
2749 
2761 #define MBEDTLS_X509_CREATE_C
2762 
2774 #define MBEDTLS_X509_CRT_WRITE_C
2775 
2787 #define MBEDTLS_X509_CSR_WRITE_C
2788 
2797 #define MBEDTLS_XTEA_C
2798 
2799 /* \} name SECTION: mbed TLS modules */
2800 
2816 /* MPI / BIGNUM options */
2817 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
2818 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
2819 
2820 /* CTR_DRBG options */
2821 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
2822 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
2823 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
2824 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
2825 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
2826 
2827 /* HMAC_DRBG options */
2828 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
2829 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
2830 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
2831 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
2832 
2833 /* ECP options */
2834 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
2835 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
2836 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
2837 
2838 /* Entropy options */
2839 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
2840 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
2841 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
2842 
2843 /* Memory buffer allocator options */
2844 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
2845 
2846 /* Platform options */
2847 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
2848 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
2849 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
2850 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
2851 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2852 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
2853 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
2854 /* Note: your snprintf must correctly zero-terminate the buffer! */
2855 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
2856 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
2857 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
2858 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
2859 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
2860 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
2861 
2862 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
2863 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
2864 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
2865 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
2866 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
2867 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2868 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2869 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
2870 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
2871 /* Note: your snprintf must correctly zero-terminate the buffer! */
2872 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
2873 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
2874 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
2875 
2876 /* SSL Cache options */
2877 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
2878 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
2879 
2880 /* SSL options */
2881 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 /**< Maxium fragment length in bytes, determines the size of each of the two internal I/O buffers */
2882 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
2883 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
2884 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
2885 
2898 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
2899 
2900 /* X509 options */
2901 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
2902 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
2903 
2916 // #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
2917 
2933 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
2934 
2935 /* \} name SECTION: Customisation configuration options */
2936 
2937 /* Target and application specific configurations */
2938 //#define YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE "target_config.h"
2939 
2940 #if defined(TARGET_LIKE_MBED) && defined(YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE)
2941 #include YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE
2942 #endif
2943 
2944 /*
2945  * Allow user to override any previous default.
2946  *
2947  * Use two macro names for that, as:
2948  * - with yotta the prefix YOTTA_CFG_ is forced
2949  * - without yotta is looks weird to have a YOTTA prefix.
2950  */
2951 #if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE)
2952 #include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE
2953 #elif defined(MBEDTLS_USER_CONFIG_FILE)
2954 #include MBEDTLS_USER_CONFIG_FILE
2955 #endif
2956 
2957 #include "check_config.h"
2958 
2959 #endif /* MBEDTLS_CONFIG_H */
Consistency checks for configuration options.