00001 00010 /* 00011 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved 00012 * SPDX-License-Identifier: Apache-2.0 00013 * 00014 * Licensed under the Apache License, Version 2.0 (the "License"); you may 00015 * not use this file except in compliance with the License. 00016 * You may obtain a copy of the License at 00017 * 00018 * http://www.apache.org/licenses/LICENSE-2.0 00019 * 00020 * Unless required by applicable law or agreed to in writing, software 00021 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT 00022 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 00023 * See the License for the specific language governing permissions and 00024 * limitations under the License. 00025 * 00026 * This file is part of mbed TLS (https://tls.mbed.org) 00027 */ 00028 00029 #ifndef MBEDTLS_CONFIG_H 00030 #define MBEDTLS_CONFIG_H 00031 00032 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE) 00033 #define _CRT_SECURE_NO_DEPRECATE 1 00034 #endif 00035 00057 #define MBEDTLS_HAVE_ASM 00058 00085 //#define MBEDTLS_NO_UDBL_DIVISION 00086 00094 //#define MBEDTLS_HAVE_SSE2 00095 00109 #define MBEDTLS_HAVE_TIME 00110 00121 #define MBEDTLS_HAVE_TIME_DATE 00122 00145 //#define MBEDTLS_PLATFORM_MEMORY 00146 00164 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS 00165 00189 //#define MBEDTLS_PLATFORM_EXIT_ALT 00190 //#define MBEDTLS_PLATFORM_TIME_ALT 00191 //#define MBEDTLS_PLATFORM_FPRINTF_ALT 00192 //#define MBEDTLS_PLATFORM_PRINTF_ALT 00193 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT 00194 //#define MBEDTLS_PLATFORM_NV_SEED_ALT 00195 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT 00196 00210 //#define MBEDTLS_DEPRECATED_WARNING 00211 00222 //#define MBEDTLS_DEPRECATED_REMOVED 00223 00224 /* \} name SECTION: System support */ 00225 00245 //#define MBEDTLS_TIMING_ALT 00246 00272 //#define MBEDTLS_AES_ALT 00273 //#define MBEDTLS_ARC4_ALT 00274 //#define MBEDTLS_BLOWFISH_ALT 00275 //#define MBEDTLS_CAMELLIA_ALT 00276 //#define MBEDTLS_CCM_ALT 00277 //#define MBEDTLS_CMAC_ALT 00278 //#define MBEDTLS_DES_ALT 00279 //#define MBEDTLS_DHM_ALT 00280 //#define MBEDTLS_ECJPAKE_ALT 00281 //#define MBEDTLS_GCM_ALT 00282 //#define MBEDTLS_MD2_ALT 00283 //#define MBEDTLS_MD4_ALT 00284 //#define MBEDTLS_MD5_ALT 00285 //#define MBEDTLS_RIPEMD160_ALT 00286 //#define MBEDTLS_RSA_ALT 00287 //#define MBEDTLS_SHA1_ALT 00288 //#define MBEDTLS_SHA256_ALT 00289 //#define MBEDTLS_SHA512_ALT 00290 //#define MBEDTLS_XTEA_ALT 00291 /* 00292 * When replacing the elliptic curve module, pleace consider, that it is 00293 * implemented with two .c files: 00294 * - ecp.c 00295 * - ecp_curves.c 00296 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT 00297 * macros as described above. The only difference is that you have to make sure 00298 * that you provide functionality for both .c files. 00299 */ 00300 //#define MBEDTLS_ECP_ALT 00301 00337 //#define MBEDTLS_MD2_PROCESS_ALT 00338 //#define MBEDTLS_MD4_PROCESS_ALT 00339 //#define MBEDTLS_MD5_PROCESS_ALT 00340 //#define MBEDTLS_RIPEMD160_PROCESS_ALT 00341 //#define MBEDTLS_SHA1_PROCESS_ALT 00342 //#define MBEDTLS_SHA256_PROCESS_ALT 00343 //#define MBEDTLS_SHA512_PROCESS_ALT 00344 //#define MBEDTLS_DES_SETKEY_ALT 00345 //#define MBEDTLS_DES_CRYPT_ECB_ALT 00346 //#define MBEDTLS_DES3_CRYPT_ECB_ALT 00347 //#define MBEDTLS_AES_SETKEY_ENC_ALT 00348 //#define MBEDTLS_AES_SETKEY_DEC_ALT 00349 //#define MBEDTLS_AES_ENCRYPT_ALT 00350 //#define MBEDTLS_AES_DECRYPT_ALT 00351 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT 00352 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT 00353 //#define MBEDTLS_ECDSA_VERIFY_ALT 00354 //#define MBEDTLS_ECDSA_SIGN_ALT 00355 //#define MBEDTLS_ECDSA_GENKEY_ALT 00356 00397 /* Required for all the functions in this section */ 00398 //#define MBEDTLS_ECP_INTERNAL_ALT 00399 /* Support for Weierstrass curves with Jacobi representation */ 00400 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT 00401 //#define MBEDTLS_ECP_ADD_MIXED_ALT 00402 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT 00403 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT 00404 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT 00405 /* Support for curves with Montgomery arithmetic */ 00406 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT 00407 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT 00408 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT 00409 00425 //#define MBEDTLS_TEST_NULL_ENTROPY 00426 00438 //#define MBEDTLS_ENTROPY_HARDWARE_ALT 00439 00447 //#define MBEDTLS_AES_ROM_TABLES 00448 00456 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY 00457 00463 #define MBEDTLS_CIPHER_MODE_CBC 00464 00470 #define MBEDTLS_CIPHER_MODE_CFB 00471 00477 #define MBEDTLS_CIPHER_MODE_CTR 00478 00510 //#define MBEDTLS_CIPHER_NULL_CIPHER 00511 00523 #define MBEDTLS_CIPHER_PADDING_PKCS7 00524 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS 00525 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN 00526 #define MBEDTLS_CIPHER_PADDING_ZEROS 00527 00544 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES 00545 00557 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES 00558 00567 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED 00568 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED 00569 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED 00570 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED 00571 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED 00572 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED 00573 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED 00574 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED 00575 #define MBEDTLS_ECP_DP_BP256R1_ENABLED 00576 #define MBEDTLS_ECP_DP_BP384R1_ENABLED 00577 #define MBEDTLS_ECP_DP_BP512R1_ENABLED 00578 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED 00579 00589 #define MBEDTLS_ECP_NIST_OPTIM 00590 00603 #define MBEDTLS_ECDSA_DETERMINISTIC 00604 00625 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED 00626 00656 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED 00657 00676 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED 00677 00701 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 00702 00729 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 00730 00762 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED 00763 00787 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 00788 00811 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED 00812 00835 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED 00836 00859 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED 00860 00878 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED 00879 00892 #define MBEDTLS_PK_PARSE_EC_EXTENDED 00893 00907 #define MBEDTLS_ERROR_STRERROR_DUMMY 00908 00916 #define MBEDTLS_GENPRIME 00917 00923 #define MBEDTLS_FS_IO 00924 00936 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES 00937 00947 //#define MBEDTLS_NO_PLATFORM_ENTROPY 00948 00963 //#define MBEDTLS_ENTROPY_FORCE_SHA256 00964 00991 //#define MBEDTLS_ENTROPY_NV_SEED 00992 01004 //#define MBEDTLS_MEMORY_DEBUG 01005 01016 //#define MBEDTLS_MEMORY_BACKTRACE 01017 01025 #define MBEDTLS_PK_RSA_ALT_SUPPORT 01026 01036 #define MBEDTLS_PKCS1_V15 01037 01047 #define MBEDTLS_PKCS1_V21 01048 01058 //#define MBEDTLS_RSA_NO_CRT 01059 01065 #define MBEDTLS_SELF_TEST 01066 01081 //#define MBEDTLS_SHA256_SMALLER 01082 01095 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES 01096 01111 //#define MBEDTLS_SSL_DEBUG_ALL 01112 01129 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC 01130 01147 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET 01148 01164 #define MBEDTLS_SSL_FALLBACK_SCSV 01165 01174 //#define MBEDTLS_SSL_HW_RECORD_ACCEL 01175 01186 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING 01187 01208 #define MBEDTLS_SSL_RENEGOTIATION 01209 01218 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO 01219 01228 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE 01229 01237 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 01238 01249 //#define MBEDTLS_SSL_PROTO_SSL3 01250 01261 #define MBEDTLS_SSL_PROTO_TLS1 01262 01273 #define MBEDTLS_SSL_PROTO_TLS1_1 01274 01285 #define MBEDTLS_SSL_PROTO_TLS1_2 01286 01300 #define MBEDTLS_SSL_PROTO_DTLS 01301 01309 #define MBEDTLS_SSL_ALPN 01310 01324 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY 01325 01342 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY 01343 01358 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE 01359 01369 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT 01370 01383 #define MBEDTLS_SSL_SESSION_TICKETS 01384 01393 #define MBEDTLS_SSL_EXPORT_KEYS 01394 01404 #define MBEDTLS_SSL_SERVER_NAME_INDICATION 01405 01413 #define MBEDTLS_SSL_TRUNCATED_HMAC 01414 01437 //#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT 01438 01448 //#define MBEDTLS_THREADING_ALT 01449 01459 //#define MBEDTLS_THREADING_PTHREAD 01460 01472 #define MBEDTLS_VERSION_FEATURES 01473 01482 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3 01483 01494 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION 01495 01508 #define MBEDTLS_X509_CHECK_KEY_USAGE 01509 01521 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE 01522 01531 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT 01532 01553 //#define MBEDTLS_ZLIB_SUPPORT 01554 /* \} name SECTION: mbed TLS feature support */ 01555 01575 #define MBEDTLS_AESNI_C 01576 01650 #define MBEDTLS_AES_C 01651 01678 #define MBEDTLS_ARC4_C 01679 01692 #define MBEDTLS_ASN1_PARSE_C 01693 01706 #define MBEDTLS_ASN1_WRITE_C 01707 01718 #define MBEDTLS_BASE64_C 01719 01735 #define MBEDTLS_BIGNUM_C 01736 01744 #define MBEDTLS_BLOWFISH_C 01745 01799 #define MBEDTLS_CAMELLIA_C 01800 01813 #define MBEDTLS_CCM_C 01814 01825 #define MBEDTLS_CERTS_C 01826 01837 #define MBEDTLS_CIPHER_C 01838 01850 //#define MBEDTLS_CMAC_C 01851 01864 #define MBEDTLS_CTR_DRBG_C 01865 01878 #define MBEDTLS_DEBUG_C 01879 01907 #define MBEDTLS_DES_C 01908 01928 #define MBEDTLS_DHM_C 01929 01944 #define MBEDTLS_ECDH_C 01945 01959 #define MBEDTLS_ECDSA_C 01960 01978 //#define MBEDTLS_ECJPAKE_C 01979 01992 #define MBEDTLS_ECP_C 01993 02006 #define MBEDTLS_ENTROPY_C 02007 02018 #define MBEDTLS_ERROR_C 02019 02032 #define MBEDTLS_GCM_C 02033 02055 //#define MBEDTLS_HAVEGE_C 02056 02069 #define MBEDTLS_HMAC_DRBG_C 02070 02081 #define MBEDTLS_MD_C 02082 02098 //#define MBEDTLS_MD2_C 02099 02115 //#define MBEDTLS_MD4_C 02116 02137 #define MBEDTLS_MD5_C 02138 02153 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C 02154 02172 #define MBEDTLS_NET_C 02173 02195 #define MBEDTLS_OID_C 02196 02209 #define MBEDTLS_PADLOCK_C 02210 02227 #define MBEDTLS_PEM_PARSE_C 02228 02243 #define MBEDTLS_PEM_WRITE_C 02244 02259 #define MBEDTLS_PK_C 02260 02274 #define MBEDTLS_PK_PARSE_C 02275 02288 #define MBEDTLS_PK_WRITE_C 02289 02301 #define MBEDTLS_PKCS5_C 02302 02316 //#define MBEDTLS_PKCS11_C 02317 02332 #define MBEDTLS_PKCS12_C 02333 02352 #define MBEDTLS_PLATFORM_C 02353 02363 #define MBEDTLS_RIPEMD160_C 02364 02382 #define MBEDTLS_RSA_C 02383 02404 #define MBEDTLS_SHA1_C 02405 02421 #define MBEDTLS_SHA256_C 02422 02436 #define MBEDTLS_SHA512_C 02437 02448 #define MBEDTLS_SSL_CACHE_C 02449 02458 #define MBEDTLS_SSL_COOKIE_C 02459 02470 #define MBEDTLS_SSL_TICKET_C 02471 02484 #define MBEDTLS_SSL_CLI_C 02485 02498 #define MBEDTLS_SSL_SRV_C 02499 02514 #define MBEDTLS_SSL_TLS_C 02515 02536 //#define MBEDTLS_THREADING_C 02537 02559 #define MBEDTLS_TIMING_C 02560 02570 #define MBEDTLS_VERSION_C 02571 02587 #define MBEDTLS_X509_USE_C 02588 02603 #define MBEDTLS_X509_CRT_PARSE_C 02604 02617 #define MBEDTLS_X509_CRL_PARSE_C 02618 02631 #define MBEDTLS_X509_CSR_PARSE_C 02632 02644 #define MBEDTLS_X509_CREATE_C 02645 02657 #define MBEDTLS_X509_CRT_WRITE_C 02658 02670 #define MBEDTLS_X509_CSR_WRITE_C 02671 02680 #define MBEDTLS_XTEA_C 02681 02682 /* \} name SECTION: mbed TLS modules */ 02683 02699 /* MPI / BIGNUM options */ 02700 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */ 02701 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */ 02702 02703 /* CTR_DRBG options */ 02704 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */ 02705 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 02706 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 02707 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 02708 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 02709 02710 /* HMAC_DRBG options */ 02711 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 02712 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 02713 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 02714 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 02715 02716 /* ECP options */ 02717 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */ 02718 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */ 02719 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */ 02720 02721 /* Entropy options */ 02722 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */ 02723 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */ 02724 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */ 02725 02726 /* Memory buffer allocator options */ 02727 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */ 02728 02729 /* Platform options */ 02730 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */ 02731 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */ 02732 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */ 02733 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */ 02734 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02735 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */ 02736 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */ 02737 /* Note: your snprintf must correclty zero-terminate the buffer! */ 02738 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */ 02739 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */ 02740 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */ 02741 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 02742 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 02743 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */ 02744 02745 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */ 02746 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */ 02747 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */ 02748 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */ 02749 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */ 02750 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02751 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02752 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */ 02753 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */ 02754 /* Note: your snprintf must correclty zero-terminate the buffer! */ 02755 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */ 02756 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 02757 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 02758 02759 /* SSL Cache options */ 02760 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */ 02761 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */ 02762 02763 /* SSL options */ 02764 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 /**< Maxium fragment length in bytes, determines the size of each of the two internal I/O buffers */ 02765 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */ 02766 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */ 02767 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */ 02768 02781 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 02782 02783 /* X509 options */ 02784 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */ 02785 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */ 02786 02799 // #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES 02800 02816 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE 02817 02818 /* \} name SECTION: Customisation configuration options */ 02819 02820 /* Target and application specific configurations */ 02821 //#define YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE "target_config.h" 02822 02823 #if defined(TARGET_LIKE_MBED) && defined(YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE) 02824 #include YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE 02825 #endif 02826 02827 /* 02828 * Allow user to override any previous default. 02829 * 02830 * Use two macro names for that, as: 02831 * - with yotta the prefix YOTTA_CFG_ is forced 02832 * - without yotta is looks weird to have a YOTTA prefix. 02833 */ 02834 #if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE) 02835 #include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE 02836 #elif defined(MBEDTLS_USER_CONFIG_FILE) 02837 #include MBEDTLS_USER_CONFIG_FILE 02838 #endif 02839 02840 #include "check_config.h" 02841 02842 #endif /* MBEDTLS_CONFIG_H */