00001 00010 /* 00011 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved 00012 * SPDX-License-Identifier: Apache-2.0 00013 * 00014 * Licensed under the Apache License, Version 2.0 (the "License"); you may 00015 * not use this file except in compliance with the License. 00016 * You may obtain a copy of the License at 00017 * 00018 * http://www.apache.org/licenses/LICENSE-2.0 00019 * 00020 * Unless required by applicable law or agreed to in writing, software 00021 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT 00022 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 00023 * See the License for the specific language governing permissions and 00024 * limitations under the License. 00025 * 00026 * This file is part of mbed TLS (https://tls.mbed.org) 00027 */ 00028 00029 #ifndef MBEDTLS_CONFIG_H 00030 #define MBEDTLS_CONFIG_H 00031 00032 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE) 00033 #define _CRT_SECURE_NO_DEPRECATE 1 00034 #endif 00035 00057 #define MBEDTLS_HAVE_ASM 00058 00085 //#define MBEDTLS_NO_UDBL_DIVISION 00086 00094 //#define MBEDTLS_HAVE_SSE2 00095 00109 #define MBEDTLS_HAVE_TIME 00110 00121 #define MBEDTLS_HAVE_TIME_DATE 00122 00145 //#define MBEDTLS_PLATFORM_MEMORY 00146 00164 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS 00165 00189 //#define MBEDTLS_PLATFORM_EXIT_ALT 00190 //#define MBEDTLS_PLATFORM_TIME_ALT 00191 //#define MBEDTLS_PLATFORM_FPRINTF_ALT 00192 //#define MBEDTLS_PLATFORM_PRINTF_ALT 00193 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT 00194 //#define MBEDTLS_PLATFORM_NV_SEED_ALT 00195 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT 00196 00210 //#define MBEDTLS_DEPRECATED_WARNING 00211 00222 //#define MBEDTLS_DEPRECATED_REMOVED 00223 00224 /* \} name SECTION: System support */ 00225 00245 //#define MBEDTLS_TIMING_ALT 00246 00272 //#define MBEDTLS_AES_ALT 00273 //#define MBEDTLS_ARC4_ALT 00274 //#define MBEDTLS_BLOWFISH_ALT 00275 //#define MBEDTLS_CAMELLIA_ALT 00276 //#define MBEDTLS_CCM_ALT 00277 //#define MBEDTLS_CMAC_ALT 00278 //#define MBEDTLS_DES_ALT 00279 //#define MBEDTLS_DHM_ALT 00280 //#define MBEDTLS_ECJPAKE_ALT 00281 //#define MBEDTLS_GCM_ALT 00282 //#define MBEDTLS_MD2_ALT 00283 //#define MBEDTLS_MD4_ALT 00284 //#define MBEDTLS_MD5_ALT 00285 //#define MBEDTLS_RIPEMD160_ALT 00286 //#define MBEDTLS_RSA_ALT 00287 //#define MBEDTLS_SHA1_ALT 00288 //#define MBEDTLS_SHA256_ALT 00289 //#define MBEDTLS_SHA512_ALT 00290 //#define MBEDTLS_XTEA_ALT 00291 /* 00292 * When replacing the elliptic curve module, pleace consider, that it is 00293 * implemented with two .c files: 00294 * - ecp.c 00295 * - ecp_curves.c 00296 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT 00297 * macros as described above. The only difference is that you have to make sure 00298 * that you provide functionality for both .c files. 00299 */ 00300 //#define MBEDTLS_ECP_ALT 00301 00337 //#define MBEDTLS_MD2_PROCESS_ALT 00338 //#define MBEDTLS_MD4_PROCESS_ALT 00339 //#define MBEDTLS_MD5_PROCESS_ALT 00340 //#define MBEDTLS_RIPEMD160_PROCESS_ALT 00341 //#define MBEDTLS_SHA1_PROCESS_ALT 00342 //#define MBEDTLS_SHA256_PROCESS_ALT 00343 //#define MBEDTLS_SHA512_PROCESS_ALT 00344 //#define MBEDTLS_DES_SETKEY_ALT 00345 //#define MBEDTLS_DES_CRYPT_ECB_ALT 00346 //#define MBEDTLS_DES3_CRYPT_ECB_ALT 00347 //#define MBEDTLS_AES_SETKEY_ENC_ALT 00348 //#define MBEDTLS_AES_SETKEY_DEC_ALT 00349 //#define MBEDTLS_AES_ENCRYPT_ALT 00350 //#define MBEDTLS_AES_DECRYPT_ALT 00351 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT 00352 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT 00353 //#define MBEDTLS_ECDSA_VERIFY_ALT 00354 //#define MBEDTLS_ECDSA_SIGN_ALT 00355 //#define MBEDTLS_ECDSA_GENKEY_ALT 00356 00397 /* Required for all the functions in this section */ 00398 //#define MBEDTLS_ECP_INTERNAL_ALT 00399 /* Support for Weierstrass curves with Jacobi representation */ 00400 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT 00401 //#define MBEDTLS_ECP_ADD_MIXED_ALT 00402 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT 00403 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT 00404 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT 00405 /* Support for curves with Montgomery arithmetic */ 00406 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT 00407 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT 00408 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT 00409 00425 //#define MBEDTLS_TEST_NULL_ENTROPY 00426 00438 //#define MBEDTLS_ENTROPY_HARDWARE_ALT 00439 00447 //#define MBEDTLS_AES_ROM_TABLES 00448 00456 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY 00457 00463 #define MBEDTLS_CIPHER_MODE_CBC 00464 00470 #define MBEDTLS_CIPHER_MODE_CFB 00471 00477 #define MBEDTLS_CIPHER_MODE_CTR 00478 00510 //#define MBEDTLS_CIPHER_NULL_CIPHER 00511 00523 #define MBEDTLS_CIPHER_PADDING_PKCS7 00524 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS 00525 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN 00526 #define MBEDTLS_CIPHER_PADDING_ZEROS 00527 00544 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES 00545 00557 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES 00558 00567 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED 00568 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED 00569 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED 00570 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED 00571 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED 00572 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED 00573 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED 00574 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED 00575 #define MBEDTLS_ECP_DP_BP256R1_ENABLED 00576 #define MBEDTLS_ECP_DP_BP384R1_ENABLED 00577 #define MBEDTLS_ECP_DP_BP512R1_ENABLED 00578 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED 00579 00589 #define MBEDTLS_ECP_NIST_OPTIM 00590 00603 #define MBEDTLS_ECDSA_DETERMINISTIC 00604 00625 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED 00626 00656 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED 00657 00676 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED 00677 00701 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 00702 00729 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 00730 00762 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED 00763 00787 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 00788 00811 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED 00812 00835 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED 00836 00859 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED 00860 00878 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED 00879 00892 #define MBEDTLS_PK_PARSE_EC_EXTENDED 00893 00907 #define MBEDTLS_ERROR_STRERROR_DUMMY 00908 00916 #define MBEDTLS_GENPRIME 00917 00923 #define MBEDTLS_FS_IO 00924 00936 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES 00937 00947 //#define MBEDTLS_NO_PLATFORM_ENTROPY 00948 00963 //#define MBEDTLS_ENTROPY_FORCE_SHA256 00964 00991 //#define MBEDTLS_ENTROPY_NV_SEED 00992 01004 //#define MBEDTLS_MEMORY_DEBUG 01005 01016 //#define MBEDTLS_MEMORY_BACKTRACE 01017 01025 #define MBEDTLS_PK_RSA_ALT_SUPPORT 01026 01036 #define MBEDTLS_PKCS1_V15 01037 01047 #define MBEDTLS_PKCS1_V21 01048 01057 //#define MBEDTLS_RSA_NO_CRT 01058 01064 #define MBEDTLS_SELF_TEST 01065 01080 //#define MBEDTLS_SHA256_SMALLER 01081 01094 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES 01095 01110 //#define MBEDTLS_SSL_DEBUG_ALL 01111 01128 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC 01129 01146 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET 01147 01163 #define MBEDTLS_SSL_FALLBACK_SCSV 01164 01173 //#define MBEDTLS_SSL_HW_RECORD_ACCEL 01174 01185 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING 01186 01207 #define MBEDTLS_SSL_RENEGOTIATION 01208 01217 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO 01218 01227 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE 01228 01236 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 01237 01248 //#define MBEDTLS_SSL_PROTO_SSL3 01249 01260 #define MBEDTLS_SSL_PROTO_TLS1 01261 01272 #define MBEDTLS_SSL_PROTO_TLS1_1 01273 01284 #define MBEDTLS_SSL_PROTO_TLS1_2 01285 01299 #define MBEDTLS_SSL_PROTO_DTLS 01300 01308 #define MBEDTLS_SSL_ALPN 01309 01323 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY 01324 01341 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY 01342 01357 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE 01358 01368 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT 01369 01382 #define MBEDTLS_SSL_SESSION_TICKETS 01383 01392 #define MBEDTLS_SSL_EXPORT_KEYS 01393 01403 #define MBEDTLS_SSL_SERVER_NAME_INDICATION 01404 01412 #define MBEDTLS_SSL_TRUNCATED_HMAC 01413 01423 //#define MBEDTLS_THREADING_ALT 01424 01434 //#define MBEDTLS_THREADING_PTHREAD 01435 01447 #define MBEDTLS_VERSION_FEATURES 01448 01457 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3 01458 01469 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION 01470 01483 #define MBEDTLS_X509_CHECK_KEY_USAGE 01484 01496 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE 01497 01506 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT 01507 01528 //#define MBEDTLS_ZLIB_SUPPORT 01529 /* \} name SECTION: mbed TLS feature support */ 01530 01550 #define MBEDTLS_AESNI_C 01551 01625 #define MBEDTLS_AES_C 01626 01653 #define MBEDTLS_ARC4_C 01654 01667 #define MBEDTLS_ASN1_PARSE_C 01668 01681 #define MBEDTLS_ASN1_WRITE_C 01682 01693 #define MBEDTLS_BASE64_C 01694 01710 #define MBEDTLS_BIGNUM_C 01711 01719 #define MBEDTLS_BLOWFISH_C 01720 01774 #define MBEDTLS_CAMELLIA_C 01775 01788 #define MBEDTLS_CCM_C 01789 01800 #define MBEDTLS_CERTS_C 01801 01812 #define MBEDTLS_CIPHER_C 01813 01825 //#define MBEDTLS_CMAC_C 01826 01839 #define MBEDTLS_CTR_DRBG_C 01840 01853 #define MBEDTLS_DEBUG_C 01854 01882 #define MBEDTLS_DES_C 01883 01903 #define MBEDTLS_DHM_C 01904 01919 #define MBEDTLS_ECDH_C 01920 01934 #define MBEDTLS_ECDSA_C 01935 01953 //#define MBEDTLS_ECJPAKE_C 01954 01967 #define MBEDTLS_ECP_C 01968 01981 #define MBEDTLS_ENTROPY_C 01982 01993 #define MBEDTLS_ERROR_C 01994 02007 #define MBEDTLS_GCM_C 02008 02030 //#define MBEDTLS_HAVEGE_C 02031 02044 #define MBEDTLS_HMAC_DRBG_C 02045 02056 #define MBEDTLS_MD_C 02057 02073 //#define MBEDTLS_MD2_C 02074 02090 //#define MBEDTLS_MD4_C 02091 02112 #define MBEDTLS_MD5_C 02113 02128 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C 02129 02147 #define MBEDTLS_NET_C 02148 02170 #define MBEDTLS_OID_C 02171 02184 #define MBEDTLS_PADLOCK_C 02185 02202 #define MBEDTLS_PEM_PARSE_C 02203 02218 #define MBEDTLS_PEM_WRITE_C 02219 02234 #define MBEDTLS_PK_C 02235 02249 #define MBEDTLS_PK_PARSE_C 02250 02263 #define MBEDTLS_PK_WRITE_C 02264 02276 #define MBEDTLS_PKCS5_C 02277 02291 //#define MBEDTLS_PKCS11_C 02292 02307 #define MBEDTLS_PKCS12_C 02308 02327 #define MBEDTLS_PLATFORM_C 02328 02338 #define MBEDTLS_RIPEMD160_C 02339 02357 #define MBEDTLS_RSA_C 02358 02379 #define MBEDTLS_SHA1_C 02380 02396 #define MBEDTLS_SHA256_C 02397 02411 #define MBEDTLS_SHA512_C 02412 02423 #define MBEDTLS_SSL_CACHE_C 02424 02433 #define MBEDTLS_SSL_COOKIE_C 02434 02445 #define MBEDTLS_SSL_TICKET_C 02446 02459 #define MBEDTLS_SSL_CLI_C 02460 02473 #define MBEDTLS_SSL_SRV_C 02474 02489 #define MBEDTLS_SSL_TLS_C 02490 02511 //#define MBEDTLS_THREADING_C 02512 02534 #define MBEDTLS_TIMING_C 02535 02545 #define MBEDTLS_VERSION_C 02546 02562 #define MBEDTLS_X509_USE_C 02563 02578 #define MBEDTLS_X509_CRT_PARSE_C 02579 02592 #define MBEDTLS_X509_CRL_PARSE_C 02593 02606 #define MBEDTLS_X509_CSR_PARSE_C 02607 02619 #define MBEDTLS_X509_CREATE_C 02620 02632 #define MBEDTLS_X509_CRT_WRITE_C 02633 02645 #define MBEDTLS_X509_CSR_WRITE_C 02646 02655 #define MBEDTLS_XTEA_C 02656 02657 /* \} name SECTION: mbed TLS modules */ 02658 02674 /* MPI / BIGNUM options */ 02675 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */ 02676 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */ 02677 02678 /* CTR_DRBG options */ 02679 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */ 02680 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 02681 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 02682 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 02683 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 02684 02685 /* HMAC_DRBG options */ 02686 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 02687 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 02688 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 02689 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 02690 02691 /* ECP options */ 02692 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */ 02693 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */ 02694 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */ 02695 02696 /* Entropy options */ 02697 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */ 02698 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */ 02699 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */ 02700 02701 /* Memory buffer allocator options */ 02702 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */ 02703 02704 /* Platform options */ 02705 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */ 02706 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */ 02707 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */ 02708 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */ 02709 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02710 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */ 02711 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */ 02712 /* Note: your snprintf must correclty zero-terminate the buffer! */ 02713 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */ 02714 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */ 02715 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */ 02716 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 02717 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 02718 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */ 02719 02720 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */ 02721 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */ 02722 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */ 02723 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */ 02724 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */ 02725 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02726 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02727 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */ 02728 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */ 02729 /* Note: your snprintf must correclty zero-terminate the buffer! */ 02730 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */ 02731 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 02732 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 02733 02734 /* SSL Cache options */ 02735 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */ 02736 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */ 02737 02738 /* SSL options */ 02739 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 /**< Maxium fragment length in bytes, determines the size of each of the two internal I/O buffers */ 02740 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */ 02741 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */ 02742 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */ 02743 02756 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 02757 02758 /* X509 options */ 02759 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */ 02760 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */ 02761 02774 // #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES 02775 02791 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE 02792 02793 /* \} name SECTION: Customisation configuration options */ 02794 02795 /* Target and application specific configurations */ 02796 //#define YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE "mbedtls/target_config.h" 02797 02798 #if defined(TARGET_LIKE_MBED) && defined(YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE) 02799 #include YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE 02800 #endif 02801 02802 /* 02803 * Allow user to override any previous default. 02804 * 02805 * Use two macro names for that, as: 02806 * - with yotta the prefix YOTTA_CFG_ is forced 02807 * - without yotta is looks weird to have a YOTTA prefix. 02808 */ 02809 #if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE) 02810 #include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE 02811 #elif defined(MBEDTLS_USER_CONFIG_FILE) 02812 #include MBEDTLS_USER_CONFIG_FILE 02813 #endif 02814 02815 #include "check_config.h" 02816 02817 #endif /* MBEDTLS_CONFIG_H */