00001 00028 #ifndef MBEDTLS_CONFIG_H 00029 #define MBEDTLS_CONFIG_H 00030 00031 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE) 00032 #define _CRT_SECURE_NO_DEPRECATE 1 00033 #endif 00034 00056 #define MBEDTLS_HAVE_ASM 00057 00065 //#define MBEDTLS_HAVE_SSE2 00066 00076 #define MBEDTLS_HAVE_TIME 00077 00088 #define MBEDTLS_HAVE_TIME_DATE 00089 00112 //#define MBEDTLS_PLATFORM_MEMORY 00113 00131 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS 00132 00154 //#define MBEDTLS_PLATFORM_EXIT_ALT 00155 //#define MBEDTLS_PLATFORM_TIME_ALT 00156 //#define MBEDTLS_PLATFORM_FPRINTF_ALT 00157 //#define MBEDTLS_PLATFORM_PRINTF_ALT 00158 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT 00159 //#define MBEDTLS_PLATFORM_NV_SEED_ALT 00160 00174 //#define MBEDTLS_DEPRECATED_WARNING 00175 00186 //#define MBEDTLS_DEPRECATED_REMOVED 00187 00188 /* \} name SECTION: System support */ 00189 00209 //#define MBEDTLS_TIMING_ALT 00210 00230 //#define MBEDTLS_AES_ALT 00231 //#define MBEDTLS_ARC4_ALT 00232 //#define MBEDTLS_BLOWFISH_ALT 00233 //#define MBEDTLS_CAMELLIA_ALT 00234 //#define MBEDTLS_DES_ALT 00235 //#define MBEDTLS_XTEA_ALT 00236 //#define MBEDTLS_MD2_ALT 00237 //#define MBEDTLS_MD4_ALT 00238 //#define MBEDTLS_MD5_ALT 00239 //#define MBEDTLS_RIPEMD160_ALT 00240 //#define MBEDTLS_SHA1_ALT 00241 //#define MBEDTLS_SHA256_ALT 00242 //#define MBEDTLS_SHA512_ALT 00243 00267 //#define MBEDTLS_MD2_PROCESS_ALT 00268 //#define MBEDTLS_MD4_PROCESS_ALT 00269 //#define MBEDTLS_MD5_PROCESS_ALT 00270 //#define MBEDTLS_RIPEMD160_PROCESS_ALT 00271 //#define MBEDTLS_SHA1_PROCESS_ALT 00272 //#define MBEDTLS_SHA256_PROCESS_ALT 00273 //#define MBEDTLS_SHA512_PROCESS_ALT 00274 //#define MBEDTLS_DES_SETKEY_ALT 00275 //#define MBEDTLS_DES_CRYPT_ECB_ALT 00276 //#define MBEDTLS_DES3_CRYPT_ECB_ALT 00277 //#define MBEDTLS_AES_SETKEY_ENC_ALT 00278 //#define MBEDTLS_AES_SETKEY_DEC_ALT 00279 //#define MBEDTLS_AES_ENCRYPT_ALT 00280 //#define MBEDTLS_AES_DECRYPT_ALT 00281 00297 //#define MBEDTLS_TEST_NULL_ENTROPY 00298 00310 //#define MBEDTLS_ENTROPY_HARDWARE_ALT 00311 00319 //#define MBEDTLS_AES_ROM_TABLES 00320 00328 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY 00329 00335 #define MBEDTLS_CIPHER_MODE_CBC 00336 00342 #define MBEDTLS_CIPHER_MODE_CFB 00343 00349 #define MBEDTLS_CIPHER_MODE_CTR 00350 00382 //#define MBEDTLS_CIPHER_NULL_CIPHER 00383 00395 #define MBEDTLS_CIPHER_PADDING_PKCS7 00396 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS 00397 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN 00398 #define MBEDTLS_CIPHER_PADDING_ZEROS 00399 00413 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES 00414 00426 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES 00427 00436 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED 00437 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED 00438 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED 00439 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED 00440 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED 00441 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED 00442 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED 00443 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED 00444 #define MBEDTLS_ECP_DP_BP256R1_ENABLED 00445 #define MBEDTLS_ECP_DP_BP384R1_ENABLED 00446 #define MBEDTLS_ECP_DP_BP512R1_ENABLED 00447 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED 00448 00458 #define MBEDTLS_ECP_NIST_OPTIM 00459 00472 #define MBEDTLS_ECDSA_DETERMINISTIC 00473 00494 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED 00495 00518 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED 00519 00538 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED 00539 00563 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 00564 00591 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 00592 00617 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED 00618 00642 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 00643 00666 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED 00667 00690 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED 00691 00714 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED 00715 00733 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED 00734 00747 #define MBEDTLS_PK_PARSE_EC_EXTENDED 00748 00762 #define MBEDTLS_ERROR_STRERROR_DUMMY 00763 00771 #define MBEDTLS_GENPRIME 00772 00778 #define MBEDTLS_FS_IO 00779 00791 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES 00792 00802 //#define MBEDTLS_NO_PLATFORM_ENTROPY 00803 00818 //#define MBEDTLS_ENTROPY_FORCE_SHA256 00819 00846 //#define MBEDTLS_ENTROPY_NV_SEED 00847 00859 //#define MBEDTLS_MEMORY_DEBUG 00860 00871 //#define MBEDTLS_MEMORY_BACKTRACE 00872 00880 #define MBEDTLS_PK_RSA_ALT_SUPPORT 00881 00891 #define MBEDTLS_PKCS1_V15 00892 00902 #define MBEDTLS_PKCS1_V21 00903 00912 //#define MBEDTLS_RSA_NO_CRT 00913 00919 #define MBEDTLS_SELF_TEST 00920 00935 //#define MBEDTLS_SHA256_SMALLER 00936 00947 //#define MBEDTLS_SSL_AEAD_RANDOM_IV 00948 00961 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES 00962 00977 //#define MBEDTLS_SSL_DEBUG_ALL 00978 00995 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC 00996 01013 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET 01014 01030 #define MBEDTLS_SSL_FALLBACK_SCSV 01031 01040 //#define MBEDTLS_SSL_HW_RECORD_ACCEL 01041 01052 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING 01053 01067 #define MBEDTLS_SSL_RENEGOTIATION 01068 01077 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO 01078 01087 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE 01088 01096 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 01097 01108 //#define MBEDTLS_SSL_PROTO_SSL3 01109 01120 #define MBEDTLS_SSL_PROTO_TLS1 01121 01132 #define MBEDTLS_SSL_PROTO_TLS1_1 01133 01144 #define MBEDTLS_SSL_PROTO_TLS1_2 01145 01159 #define MBEDTLS_SSL_PROTO_DTLS 01160 01168 #define MBEDTLS_SSL_ALPN 01169 01183 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY 01184 01201 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY 01202 01217 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE 01218 01228 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT 01229 01242 #define MBEDTLS_SSL_SESSION_TICKETS 01243 01252 #define MBEDTLS_SSL_EXPORT_KEYS 01253 01263 #define MBEDTLS_SSL_SERVER_NAME_INDICATION 01264 01272 #define MBEDTLS_SSL_TRUNCATED_HMAC 01273 01283 //#define MBEDTLS_THREADING_ALT 01284 01294 //#define MBEDTLS_THREADING_PTHREAD 01295 01307 #define MBEDTLS_VERSION_FEATURES 01308 01317 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3 01318 01329 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION 01330 01343 #define MBEDTLS_X509_CHECK_KEY_USAGE 01344 01356 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE 01357 01366 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT 01367 01388 //#define MBEDTLS_ZLIB_SUPPORT 01389 /* \} name SECTION: mbed TLS feature support */ 01390 01410 #define MBEDTLS_AESNI_C 01411 01485 #define MBEDTLS_AES_C 01486 01508 #define MBEDTLS_ARC4_C 01509 01522 #define MBEDTLS_ASN1_PARSE_C 01523 01536 #define MBEDTLS_ASN1_WRITE_C 01537 01548 #define MBEDTLS_BASE64_C 01549 01564 #define MBEDTLS_BIGNUM_C 01565 01573 #define MBEDTLS_BLOWFISH_C 01574 01628 #define MBEDTLS_CAMELLIA_C 01629 01642 #define MBEDTLS_CCM_C 01643 01654 #define MBEDTLS_CERTS_C 01655 01666 #define MBEDTLS_CIPHER_C 01667 01680 #define MBEDTLS_CTR_DRBG_C 01681 01694 #define MBEDTLS_DEBUG_C 01695 01720 #define MBEDTLS_DES_C 01721 01734 #define MBEDTLS_DHM_C 01735 01750 #define MBEDTLS_ECDH_C 01751 01765 #define MBEDTLS_ECDSA_C 01766 01784 //#define MBEDTLS_ECJPAKE_C 01785 01798 #define MBEDTLS_ECP_C 01799 01812 #define MBEDTLS_ENTROPY_C 01813 01824 #define MBEDTLS_ERROR_C 01825 01838 #define MBEDTLS_GCM_C 01839 01861 //#define MBEDTLS_HAVEGE_C 01862 01875 #define MBEDTLS_HMAC_DRBG_C 01876 01887 #define MBEDTLS_MD_C 01888 01899 //#define MBEDTLS_MD2_C 01900 01911 //#define MBEDTLS_MD4_C 01912 01926 #define MBEDTLS_MD5_C 01927 01942 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C 01943 01961 #define MBEDTLS_NET_C 01962 01984 #define MBEDTLS_OID_C 01985 01998 #define MBEDTLS_PADLOCK_C 01999 02016 #define MBEDTLS_PEM_PARSE_C 02017 02032 #define MBEDTLS_PEM_WRITE_C 02033 02048 #define MBEDTLS_PK_C 02049 02063 #define MBEDTLS_PK_PARSE_C 02064 02077 #define MBEDTLS_PK_WRITE_C 02078 02090 #define MBEDTLS_PKCS5_C 02091 02105 //#define MBEDTLS_PKCS11_C 02106 02121 #define MBEDTLS_PKCS12_C 02122 02141 #define MBEDTLS_PLATFORM_C 02142 02152 #define MBEDTLS_RIPEMD160_C 02153 02170 #define MBEDTLS_RSA_C 02171 02186 #define MBEDTLS_SHA1_C 02187 02203 #define MBEDTLS_SHA256_C 02204 02218 #define MBEDTLS_SHA512_C 02219 02230 #define MBEDTLS_SSL_CACHE_C 02231 02240 #define MBEDTLS_SSL_COOKIE_C 02241 02252 #define MBEDTLS_SSL_TICKET_C 02253 02266 #define MBEDTLS_SSL_CLI_C 02267 02280 #define MBEDTLS_SSL_SRV_C 02281 02296 #define MBEDTLS_SSL_TLS_C 02297 02318 //#define MBEDTLS_THREADING_C 02319 02341 #define MBEDTLS_TIMING_C 02342 02352 #define MBEDTLS_VERSION_C 02353 02369 #define MBEDTLS_X509_USE_C 02370 02385 #define MBEDTLS_X509_CRT_PARSE_C 02386 02399 #define MBEDTLS_X509_CRL_PARSE_C 02400 02413 #define MBEDTLS_X509_CSR_PARSE_C 02414 02426 #define MBEDTLS_X509_CREATE_C 02427 02439 #define MBEDTLS_X509_CRT_WRITE_C 02440 02452 #define MBEDTLS_X509_CSR_WRITE_C 02453 02462 #define MBEDTLS_XTEA_C 02463 02464 /* \} name SECTION: mbed TLS modules */ 02465 02481 /* MPI / BIGNUM options */ 02482 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */ 02483 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */ 02484 02485 /* CTR_DRBG options */ 02486 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */ 02487 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 02488 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 02489 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 02490 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 02491 02492 /* HMAC_DRBG options */ 02493 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 02494 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 02495 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 02496 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 02497 02498 /* ECP options */ 02499 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */ 02500 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */ 02501 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */ 02502 02503 /* Entropy options */ 02504 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */ 02505 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */ 02506 02507 /* Memory buffer allocator options */ 02508 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */ 02509 02510 /* Platform options */ 02511 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */ 02512 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */ 02513 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */ 02514 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */ 02515 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined */ 02516 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */ 02517 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */ 02518 /* Note: your snprintf must correclty zero-terminate the buffer! */ 02519 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */ 02520 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */ 02521 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */ 02522 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 02523 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 02524 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */ 02525 02526 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */ 02527 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */ 02528 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */ 02529 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */ 02530 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */ 02531 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined */ 02532 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined */ 02533 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */ 02534 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */ 02535 /* Note: your snprintf must correclty zero-terminate the buffer! */ 02536 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */ 02537 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 02538 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 02539 02540 /* SSL Cache options */ 02541 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */ 02542 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */ 02543 02544 /* SSL options */ 02545 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 /**< Maxium fragment length in bytes, determines the size of each of the two internal I/O buffers */ 02546 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */ 02547 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */ 02548 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */ 02549 02562 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 02563 02564 /* X509 options */ 02565 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */ 02566 02567 /* \} name SECTION: Customisation configuration options */ 02568 02569 /* Target and application specific configurations */ 02570 //#define YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE "target_config.h" 02571 02572 /* 02573 * Allow user to override any previous default. 02574 * 02575 * Use two macro names for that, as: 02576 * - with yotta the prefix YOTTA_CFG_ is forced 02577 * - without yotta is looks weird to have a YOTTA prefix. 02578 */ 02579 #if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE) 02580 #include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE 02581 #elif defined(MBEDTLS_USER_CONFIG_FILE) 02582 #include MBEDTLS_USER_CONFIG_FILE 02583 #endif 02584 02585 #include "check_config.h" 02586 02587 #endif /* MBEDTLS_CONFIG_H */