1 /** 2 * \file mbedtls_config.h 3 * 4 * \brief Configuration options (set of defines) 5 * 6 * This set of compile-time options may be used to enable 7 * or disable features selectively, and reduce the global 8 * memory footprint. 9 */ 10 /* 11 * Copyright The Mbed TLS Contributors 12 * SPDX-License-Identifier: Apache-2.0 13 * 14 * Licensed under the Apache License, Version 2.0 (the "License"); you may 15 * not use this file except in compliance with the License. 16 * You may obtain a copy of the License at 17 * 18 * http://www.apache.org/licenses/LICENSE-2.0 19 * 20 * Unless required by applicable law or agreed to in writing, software 21 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT 22 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 23 * See the License for the specific language governing permissions and 24 * limitations under the License. 25 */ 26 27 /** 28 * This is an optional version symbol that enables comatibility handling of 29 * config files. 30 * 31 * It is equal to the #MBEDTLS_VERSION_NUMBER of the Mbed TLS version that 32 * introduced the config format we want to be compatible with. 33 */ 34 //#define MBEDTLS_CONFIG_VERSION 0x03000000 35 36 /** 37 * \name SECTION: System support 38 * 39 * This section sets system specific settings. 40 * \{ 41 */ 42 43 #include <stdlib.h> 44 #include <stdio.h> 45 46 #define MBEDTLS_ECP_RESTARTABLE 1 47 /** 48 * \def MBEDTLS_HAVE_ASM 49 * 50 * The compiler has support for asm(). 51 * 52 * Requires support for asm() in compiler. 53 * 54 * Used in: 55 * library/aria.c 56 * library/bn_mul.h 57 * 58 * Required by: 59 * MBEDTLS_AESNI_C 60 * MBEDTLS_PADLOCK_C 61 * 62 * Comment to disable the use of assembly code. 63 */ 64 #define MBEDTLS_HAVE_ASM 65 66 /** 67 * \def MBEDTLS_NO_UDBL_DIVISION 68 * 69 * The platform lacks support for double-width integer division (64-bit 70 * division on a 32-bit platform, 128-bit division on a 64-bit platform). 71 * 72 * Used in: 73 * include/mbedtls/bignum.h 74 * library/bignum.c 75 * 76 * The bignum code uses double-width division to speed up some operations. 77 * Double-width division is often implemented in software that needs to 78 * be linked with the program. The presence of a double-width integer 79 * type is usually detected automatically through preprocessor macros, 80 * but the automatic detection cannot know whether the code needs to 81 * and can be linked with an implementation of division for that type. 82 * By default division is assumed to be usable if the type is present. 83 * Uncomment this option to prevent the use of double-width division. 84 * 85 * Note that division for the native integer type is always required. 86 * Furthermore, a 64-bit type is always required even on a 32-bit 87 * platform, but it need not support multiplication or division. In some 88 * cases it is also desirable to disable some double-width operations. For 89 * example, if double-width division is implemented in software, disabling 90 * it can reduce code size in some embedded targets. 91 */ 92 //#define MBEDTLS_NO_UDBL_DIVISION 93 94 /** 95 * \def MBEDTLS_NO_64BIT_MULTIPLICATION 96 * 97 * The platform lacks support for 32x32 -> 64-bit multiplication. 98 * 99 * Used in: 100 * library/poly1305.c 101 * 102 * Some parts of the library may use multiplication of two unsigned 32-bit 103 * operands with a 64-bit result in order to speed up computations. On some 104 * platforms, this is not available in hardware and has to be implemented in 105 * software, usually in a library provided by the toolchain. 106 * 107 * Sometimes it is not desirable to have to link to that library. This option 108 * removes the dependency of that library on platforms that lack a hardware 109 * 64-bit multiplier by embedding a software implementation in Mbed TLS. 110 * 111 * Note that depending on the compiler, this may decrease performance compared 112 * to using the library function provided by the toolchain. 113 */ 114 //#define MBEDTLS_NO_64BIT_MULTIPLICATION 115 116 /** 117 * \def MBEDTLS_HAVE_SSE2 118 * 119 * CPU supports SSE2 instruction set. 120 * 121 * Uncomment if the CPU supports SSE2 (IA-32 specific). 122 */ 123 //#define MBEDTLS_HAVE_SSE2 124 125 /** 126 * \def MBEDTLS_HAVE_TIME 127 * 128 * System has time.h and time(). 129 * The time does not need to be correct, only time differences are used, 130 * by contrast with MBEDTLS_HAVE_TIME_DATE 131 * 132 * Defining MBEDTLS_HAVE_TIME allows you to specify MBEDTLS_PLATFORM_TIME_ALT, 133 * MBEDTLS_PLATFORM_TIME_MACRO, MBEDTLS_PLATFORM_TIME_TYPE_MACRO and 134 * MBEDTLS_PLATFORM_STD_TIME. 135 * 136 * Comment if your system does not support time functions 137 */ 138 #define MBEDTLS_HAVE_TIME 139 140 /** 141 * \def MBEDTLS_HAVE_TIME_DATE 142 * 143 * System has time.h, time(), and an implementation for 144 * mbedtls_platform_gmtime_r() (see below). 145 * The time needs to be correct (not necessarily very accurate, but at least 146 * the date should be correct). This is used to verify the validity period of 147 * X.509 certificates. 148 * 149 * Comment if your system does not have a correct clock. 150 * 151 * \note mbedtls_platform_gmtime_r() is an abstraction in platform_util.h that 152 * behaves similarly to the gmtime_r() function from the C standard. Refer to 153 * the documentation for mbedtls_platform_gmtime_r() for more information. 154 * 155 * \note It is possible to configure an implementation for 156 * mbedtls_platform_gmtime_r() at compile-time by using the macro 157 * MBEDTLS_PLATFORM_GMTIME_R_ALT. 158 */ 159 // #define MBEDTLS_HAVE_TIME_DATE 160 161 /** 162 * \def MBEDTLS_PLATFORM_MEMORY 163 * 164 * Enable the memory allocation layer. 165 * 166 * By default mbed TLS uses the system-provided calloc() and free(). 167 * This allows different allocators (self-implemented or provided) to be 168 * provided to the platform abstraction layer. 169 * 170 * Enabling MBEDTLS_PLATFORM_MEMORY without the 171 * MBEDTLS_PLATFORM_{FREE,CALLOC}_MACROs will provide 172 * "mbedtls_platform_set_calloc_free()" allowing you to set an alternative calloc() and 173 * free() function pointer at runtime. 174 * 175 * Enabling MBEDTLS_PLATFORM_MEMORY and specifying 176 * MBEDTLS_PLATFORM_{CALLOC,FREE}_MACROs will allow you to specify the 177 * alternate function at compile time. 178 * 179 * Requires: MBEDTLS_PLATFORM_C 180 * 181 * Enable this layer to allow use of alternative memory allocators. 182 */ 183 #define MBEDTLS_PLATFORM_MEMORY 184 185 /** 186 * \def MBEDTLS_PLATFORM_NO_STD_FUNCTIONS 187 * 188 * Do not assign standard functions in the platform layer (e.g. calloc() to 189 * MBEDTLS_PLATFORM_STD_CALLOC and printf() to MBEDTLS_PLATFORM_STD_PRINTF) 190 * 191 * This makes sure there are no linking errors on platforms that do not support 192 * these functions. You will HAVE to provide alternatives, either at runtime 193 * via the platform_set_xxx() functions or at compile time by setting 194 * the MBEDTLS_PLATFORM_STD_XXX defines, or enabling a 195 * MBEDTLS_PLATFORM_XXX_MACRO. 196 * 197 * Requires: MBEDTLS_PLATFORM_C 198 * 199 * Uncomment to prevent default assignment of standard functions in the 200 * platform layer. 201 */ 202 #define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS 203 204 /** 205 * \def MBEDTLS_PLATFORM_EXIT_ALT 206 * 207 * MBEDTLS_PLATFORM_XXX_ALT: Uncomment a macro to let mbed TLS support the 208 * function in the platform abstraction layer. 209 * 210 * Example: In case you uncomment MBEDTLS_PLATFORM_PRINTF_ALT, mbed TLS will 211 * provide a function "mbedtls_platform_set_printf()" that allows you to set an 212 * alternative printf function pointer. 213 * 214 * All these define require MBEDTLS_PLATFORM_C to be defined! 215 * 216 * \note MBEDTLS_PLATFORM_SNPRINTF_ALT is required on Windows; 217 * it will be enabled automatically by check_config.h 218 * 219 * \warning MBEDTLS_PLATFORM_XXX_ALT cannot be defined at the same time as 220 * MBEDTLS_PLATFORM_XXX_MACRO! 221 * 222 * Requires: MBEDTLS_PLATFORM_TIME_ALT requires MBEDTLS_HAVE_TIME 223 * 224 * Uncomment a macro to enable alternate implementation of specific base 225 * platform function 226 */ 227 //#define MBEDTLS_PLATFORM_EXIT_ALT 228 #define MBEDTLS_PLATFORM_TIME_ALT 229 //#define MBEDTLS_PLATFORM_FPRINTF_ALT 230 //#define MBEDTLS_PLATFORM_PRINTF_ALT 231 #define MBEDTLS_PLATFORM_SNPRINTF_ALT 232 //#define MBEDTLS_PLATFORM_VSNPRINTF_ALT 233 //#define MBEDTLS_PLATFORM_NV_SEED_ALT 234 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT 235 236 /** 237 * \def MBEDTLS_DEPRECATED_WARNING 238 * 239 * Mark deprecated functions and features so that they generate a warning if 240 * used. Functionality deprecated in one version will usually be removed in the 241 * next version. You can enable this to help you prepare the transition to a 242 * new major version by making sure your code is not using this functionality. 243 * 244 * This only works with GCC and Clang. With other compilers, you may want to 245 * use MBEDTLS_DEPRECATED_REMOVED 246 * 247 * Uncomment to get warnings on using deprecated functions and features. 248 */ 249 //#define MBEDTLS_DEPRECATED_WARNING 250 251 /** 252 * \def MBEDTLS_DEPRECATED_REMOVED 253 * 254 * Remove deprecated functions and features so that they generate an error if 255 * used. Functionality deprecated in one version will usually be removed in the 256 * next version. You can enable this to help you prepare the transition to a 257 * new major version by making sure your code is not using this functionality. 258 * 259 * Uncomment to get errors on using deprecated functions and features. 260 */ 261 //#define MBEDTLS_DEPRECATED_REMOVED 262 263 /* \} name SECTION: System support */ 264 265 /** 266 * \name SECTION: mbed TLS feature support 267 * 268 * This section sets support for features that are or are not needed 269 * within the modules that are enabled. 270 * \{ 271 */ 272 273 /** 274 * \def MBEDTLS_TIMING_ALT 275 * 276 * Uncomment to provide your own alternate implementation for 277 * mbedtls_timing_get_timer(), mbedtls_set_alarm(), mbedtls_set/get_delay() 278 * 279 * Only works if you have MBEDTLS_TIMING_C enabled. 280 * 281 * You will need to provide a header "timing_alt.h" and an implementation at 282 * compile time. 283 */ 284 //#define MBEDTLS_TIMING_ALT 285 286 /** 287 * \def MBEDTLS_AES_ALT 288 * 289 * MBEDTLS__MODULE_NAME__ALT: Uncomment a macro to let mbed TLS use your 290 * alternate core implementation of a symmetric crypto, an arithmetic or hash 291 * module (e.g. platform specific assembly optimized implementations). Keep 292 * in mind that the function prototypes should remain the same. 293 * 294 * This replaces the whole module. If you only want to replace one of the 295 * functions, use one of the MBEDTLS__FUNCTION_NAME__ALT flags. 296 * 297 * Example: In case you uncomment MBEDTLS_AES_ALT, mbed TLS will no longer 298 * provide the "struct mbedtls_aes_context" definition and omit the base 299 * function declarations and implementations. "aes_alt.h" will be included from 300 * "aes.h" to include the new function definitions. 301 * 302 * Uncomment a macro to enable alternate implementation of the corresponding 303 * module. 304 * 305 * \warning MD5, DES and SHA-1 are considered weak and their 306 * use constitutes a security risk. If possible, we recommend 307 * avoiding dependencies on them, and considering stronger message 308 * digests and ciphers instead. 309 * 310 */ 311 //#define MBEDTLS_AES_ALT 312 //#define MBEDTLS_ARIA_ALT 313 //#define MBEDTLS_CAMELLIA_ALT 314 //#define MBEDTLS_CCM_ALT 315 //#define MBEDTLS_CHACHA20_ALT 316 //#define MBEDTLS_CHACHAPOLY_ALT 317 //#define MBEDTLS_CMAC_ALT 318 //#define MBEDTLS_DES_ALT 319 //#define MBEDTLS_DHM_ALT 320 //#define MBEDTLS_ECJPAKE_ALT 321 //#define MBEDTLS_GCM_ALT 322 //#define MBEDTLS_NIST_KW_ALT 323 //#define MBEDTLS_MD5_ALT 324 //#define MBEDTLS_POLY1305_ALT 325 //#define MBEDTLS_RIPEMD160_ALT 326 //#define MBEDTLS_RSA_ALT 327 //#define MBEDTLS_SHA1_ALT 328 //#define MBEDTLS_SHA256_ALT 329 //#define MBEDTLS_SHA512_ALT 330 331 /* 332 * When replacing the elliptic curve module, pleace consider, that it is 333 * implemented with two .c files: 334 * - ecp.c 335 * - ecp_curves.c 336 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT 337 * macros as described above. The only difference is that you have to make sure 338 * that you provide functionality for both .c files. 339 */ 340 //#define MBEDTLS_ECP_ALT 341 342 /** 343 * \def MBEDTLS_SHA256_PROCESS_ALT 344 * 345 * MBEDTLS__FUNCTION_NAME__ALT: Uncomment a macro to let mbed TLS use you 346 * alternate core implementation of symmetric crypto or hash function. Keep in 347 * mind that function prototypes should remain the same. 348 * 349 * This replaces only one function. The header file from mbed TLS is still 350 * used, in contrast to the MBEDTLS__MODULE_NAME__ALT flags. 351 * 352 * Example: In case you uncomment MBEDTLS_SHA256_PROCESS_ALT, mbed TLS will 353 * no longer provide the mbedtls_sha1_process() function, but it will still provide 354 * the other function (using your mbedtls_sha1_process() function) and the definition 355 * of mbedtls_sha1_context, so your implementation of mbedtls_sha1_process must be compatible 356 * with this definition. 357 * 358 * \note If you use the AES_xxx_ALT macros, then it is recommended to also set 359 * MBEDTLS_AES_ROM_TABLES in order to help the linker garbage-collect the AES 360 * tables. 361 * 362 * Uncomment a macro to enable alternate implementation of the corresponding 363 * function. 364 * 365 * \warning MD5, DES and SHA-1 are considered weak and their use 366 * constitutes a security risk. If possible, we recommend avoiding 367 * dependencies on them, and considering stronger message digests 368 * and ciphers instead. 369 * 370 * \warning If both MBEDTLS_ECDSA_SIGN_ALT and MBEDTLS_ECDSA_DETERMINISTIC are 371 * enabled, then the deterministic ECDH signature functions pass the 372 * the static HMAC-DRBG as RNG to mbedtls_ecdsa_sign(). Therefore 373 * alternative implementations should use the RNG only for generating 374 * the ephemeral key and nothing else. If this is not possible, then 375 * MBEDTLS_ECDSA_DETERMINISTIC should be disabled and an alternative 376 * implementation should be provided for mbedtls_ecdsa_sign_det_ext(). 377 * 378 */ 379 //#define MBEDTLS_MD5_PROCESS_ALT 380 //#define MBEDTLS_RIPEMD160_PROCESS_ALT 381 //#define MBEDTLS_SHA1_PROCESS_ALT 382 //#define MBEDTLS_SHA256_PROCESS_ALT 383 //#define MBEDTLS_SHA512_PROCESS_ALT 384 //#define MBEDTLS_DES_SETKEY_ALT 385 //#define MBEDTLS_DES_CRYPT_ECB_ALT 386 //#define MBEDTLS_DES3_CRYPT_ECB_ALT 387 //#define MBEDTLS_AES_SETKEY_ENC_ALT 388 //#define MBEDTLS_AES_SETKEY_DEC_ALT 389 //#define MBEDTLS_AES_ENCRYPT_ALT 390 //#define MBEDTLS_AES_DECRYPT_ALT 391 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT 392 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT 393 //#define MBEDTLS_ECDSA_VERIFY_ALT 394 //#define MBEDTLS_ECDSA_SIGN_ALT 395 //#define MBEDTLS_ECDSA_GENKEY_ALT 396 397 /** 398 * \def MBEDTLS_ECP_INTERNAL_ALT 399 * 400 * Expose a part of the internal interface of the Elliptic Curve Point module. 401 * 402 * MBEDTLS_ECP__FUNCTION_NAME__ALT: Uncomment a macro to let mbed TLS use your 403 * alternative core implementation of elliptic curve arithmetic. Keep in mind 404 * that function prototypes should remain the same. 405 * 406 * This partially replaces one function. The header file from mbed TLS is still 407 * used, in contrast to the MBEDTLS_ECP_ALT flag. The original implementation 408 * is still present and it is used for group structures not supported by the 409 * alternative. 410 * 411 * The original implementation can in addition be removed by setting the 412 * MBEDTLS_ECP_NO_FALLBACK option, in which case any function for which the 413 * corresponding MBEDTLS_ECP__FUNCTION_NAME__ALT macro is defined will not be 414 * able to fallback to curves not supported by the alternative implementation. 415 * 416 * Any of these options become available by defining MBEDTLS_ECP_INTERNAL_ALT 417 * and implementing the following functions: 418 * unsigned char mbedtls_internal_ecp_grp_capable( 419 * const mbedtls_ecp_group *grp ) 420 * int mbedtls_internal_ecp_init( const mbedtls_ecp_group *grp ) 421 * void mbedtls_internal_ecp_free( const mbedtls_ecp_group *grp ) 422 * The mbedtls_internal_ecp_grp_capable function should return 1 if the 423 * replacement functions implement arithmetic for the given group and 0 424 * otherwise. 425 * The functions mbedtls_internal_ecp_init and mbedtls_internal_ecp_free are 426 * called before and after each point operation and provide an opportunity to 427 * implement optimized set up and tear down instructions. 428 * 429 * Example: In case you set MBEDTLS_ECP_INTERNAL_ALT and 430 * MBEDTLS_ECP_DOUBLE_JAC_ALT, mbed TLS will still provide the ecp_double_jac() 431 * function, but will use your mbedtls_internal_ecp_double_jac() if the group 432 * for the operation is supported by your implementation (i.e. your 433 * mbedtls_internal_ecp_grp_capable() function returns 1 for this group). If the 434 * group is not supported by your implementation, then the original mbed TLS 435 * implementation of ecp_double_jac() is used instead, unless this fallback 436 * behaviour is disabled by setting MBEDTLS_ECP_NO_FALLBACK (in which case 437 * ecp_double_jac() will return MBEDTLS_ERR_ECP_FEATURE_UNAVAILABLE). 438 * 439 * The function prototypes and the definition of mbedtls_ecp_group and 440 * mbedtls_ecp_point will not change based on MBEDTLS_ECP_INTERNAL_ALT, so your 441 * implementation of mbedtls_internal_ecp__function_name__ must be compatible 442 * with their definitions. 443 * 444 * Uncomment a macro to enable alternate implementation of the corresponding 445 * function. 446 */ 447 /* Required for all the functions in this section */ 448 //#define MBEDTLS_ECP_INTERNAL_ALT 449 /* Turn off software fallback for curves not supported in hardware */ 450 //#define MBEDTLS_ECP_NO_FALLBACK 451 /* Support for Weierstrass curves with Jacobi representation */ 452 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT 453 //#define MBEDTLS_ECP_ADD_MIXED_ALT 454 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT 455 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT 456 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT 457 /* Support for curves with Montgomery arithmetic */ 458 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT 459 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT 460 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT 461 462 /** 463 * \def MBEDTLS_ENTROPY_HARDWARE_ALT 464 * 465 * Uncomment this macro to let mbed TLS use your own implementation of a 466 * hardware entropy collector. 467 * 468 * Your function must be called \c mbedtls_hardware_poll(), have the same 469 * prototype as declared in library/entropy_poll.h, and accept NULL as first 470 * argument. 471 * 472 * Uncomment to use your own hardware entropy collector. 473 */ 474 //#define MBEDTLS_ENTROPY_HARDWARE_ALT 475 476 /** 477 * \def MBEDTLS_AES_ROM_TABLES 478 * 479 * Use precomputed AES tables stored in ROM. 480 * 481 * Uncomment this macro to use precomputed AES tables stored in ROM. 482 * Comment this macro to generate AES tables in RAM at runtime. 483 * 484 * Tradeoff: Using precomputed ROM tables reduces RAM usage by ~8kb 485 * (or ~2kb if \c MBEDTLS_AES_FEWER_TABLES is used) and reduces the 486 * initialization time before the first AES operation can be performed. 487 * It comes at the cost of additional ~8kb ROM use (resp. ~2kb if \c 488 * MBEDTLS_AES_FEWER_TABLES below is used), and potentially degraded 489 * performance if ROM access is slower than RAM access. 490 * 491 * This option is independent of \c MBEDTLS_AES_FEWER_TABLES. 492 * 493 */ 494 #define MBEDTLS_AES_ROM_TABLES 495 496 /** 497 * \def MBEDTLS_AES_FEWER_TABLES 498 * 499 * Use less ROM/RAM for AES tables. 500 * 501 * Uncommenting this macro omits 75% of the AES tables from 502 * ROM / RAM (depending on the value of \c MBEDTLS_AES_ROM_TABLES) 503 * by computing their values on the fly during operations 504 * (the tables are entry-wise rotations of one another). 505 * 506 * Tradeoff: Uncommenting this reduces the RAM / ROM footprint 507 * by ~6kb but at the cost of more arithmetic operations during 508 * runtime. Specifically, one has to compare 4 accesses within 509 * different tables to 4 accesses with additional arithmetic 510 * operations within the same table. The performance gain/loss 511 * depends on the system and memory details. 512 * 513 * This option is independent of \c MBEDTLS_AES_ROM_TABLES. 514 * 515 */ 516 //#define MBEDTLS_AES_FEWER_TABLES 517 518 /** 519 * \def MBEDTLS_CAMELLIA_SMALL_MEMORY 520 * 521 * Use less ROM for the Camellia implementation (saves about 768 bytes). 522 * 523 * Uncomment this macro to use less memory for Camellia. 524 */ 525 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY 526 527 /** 528 * \def MBEDTLS_CHECK_RETURN_WARNING 529 * 530 * If this macro is defined, emit a compile-time warning if application code 531 * calls a function without checking its return value, but the return value 532 * should generally be checked in portable applications. 533 * 534 * This is only supported on platforms where #MBEDTLS_CHECK_RETURN is 535 * implemented. Otherwise this option has no effect. 536 * 537 * Uncomment to get warnings on using fallible functions without checking 538 * their return value. 539 * 540 * \note This feature is a work in progress. 541 * Warnings will be added to more functions in the future. 542 * 543 * \note A few functions are considered critical, and ignoring the return 544 * value of these functions will trigger a warning even if this 545 * macro is not defined. To completely disable return value check 546 * warnings, define #MBEDTLS_CHECK_RETURN with an empty expansion. 547 */ 548 //#define MBEDTLS_CHECK_RETURN_WARNING 549 550 /** 551 * \def MBEDTLS_CIPHER_MODE_CBC 552 * 553 * Enable Cipher Block Chaining mode (CBC) for symmetric ciphers. 554 */ 555 #define MBEDTLS_CIPHER_MODE_CBC 556 557 /** 558 * \def MBEDTLS_CIPHER_MODE_CFB 559 * 560 * Enable Cipher Feedback mode (CFB) for symmetric ciphers. 561 */ 562 #define MBEDTLS_CIPHER_MODE_CFB 563 564 /** 565 * \def MBEDTLS_CIPHER_MODE_CTR 566 * 567 * Enable Counter Block Cipher mode (CTR) for symmetric ciphers. 568 */ 569 #define MBEDTLS_CIPHER_MODE_CTR 570 571 /** 572 * \def MBEDTLS_CIPHER_MODE_OFB 573 * 574 * Enable Output Feedback mode (OFB) for symmetric ciphers. 575 */ 576 #define MBEDTLS_CIPHER_MODE_OFB 577 578 /** 579 * \def MBEDTLS_CIPHER_MODE_XTS 580 * 581 * Enable Xor-encrypt-xor with ciphertext stealing mode (XTS) for AES. 582 */ 583 #define MBEDTLS_CIPHER_MODE_XTS 584 585 /** 586 * \def MBEDTLS_CIPHER_NULL_CIPHER 587 * 588 * Enable NULL cipher. 589 * Warning: Only do so when you know what you are doing. This allows for 590 * encryption or channels without any security! 591 * 592 * To enable the following ciphersuites: 593 * MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA 594 * MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA 595 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA 596 * MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA 597 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384 598 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256 599 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA 600 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384 601 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256 602 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA 603 * MBEDTLS_TLS_RSA_WITH_NULL_SHA256 604 * MBEDTLS_TLS_RSA_WITH_NULL_SHA 605 * MBEDTLS_TLS_RSA_WITH_NULL_MD5 606 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384 607 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256 608 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA 609 * MBEDTLS_TLS_PSK_WITH_NULL_SHA384 610 * MBEDTLS_TLS_PSK_WITH_NULL_SHA256 611 * MBEDTLS_TLS_PSK_WITH_NULL_SHA 612 * 613 * Uncomment this macro to enable the NULL cipher and ciphersuites 614 */ 615 //#define MBEDTLS_CIPHER_NULL_CIPHER 616 617 /** 618 * \def MBEDTLS_CIPHER_PADDING_PKCS7 619 * 620 * MBEDTLS_CIPHER_PADDING_XXX: Uncomment or comment macros to add support for 621 * specific padding modes in the cipher layer with cipher modes that support 622 * padding (e.g. CBC) 623 * 624 * If you disable all padding modes, only full blocks can be used with CBC. 625 * 626 * Enable padding modes in the cipher layer. 627 */ 628 #define MBEDTLS_CIPHER_PADDING_PKCS7 629 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS 630 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN 631 #define MBEDTLS_CIPHER_PADDING_ZEROS 632 633 /** \def MBEDTLS_CTR_DRBG_USE_128_BIT_KEY 634 * 635 * Uncomment this macro to use a 128-bit key in the CTR_DRBG module. 636 * By default, CTR_DRBG uses a 256-bit key. 637 */ 638 //#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY 639 640 /** 641 * \def MBEDTLS_ECP_DP_SECP192R1_ENABLED 642 * 643 * MBEDTLS_ECP_XXXX_ENABLED: Enables specific curves within the Elliptic Curve 644 * module. By default all supported curves are enabled. 645 * 646 * Comment macros to disable the curve and functions for it 647 */ 648 /* Short Weierstrass curves (supporting ECP, ECDH, ECDSA) */ 649 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED 650 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED 651 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED 652 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED 653 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED 654 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED 655 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED 656 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED 657 #define MBEDTLS_ECP_DP_BP256R1_ENABLED 658 #define MBEDTLS_ECP_DP_BP384R1_ENABLED 659 #define MBEDTLS_ECP_DP_BP512R1_ENABLED 660 /* Montgomery curves (supporting ECP) */ 661 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED 662 #define MBEDTLS_ECP_DP_CURVE448_ENABLED 663 664 /** 665 * \def MBEDTLS_ECP_NIST_OPTIM 666 * 667 * Enable specific 'modulo p' routines for each NIST prime. 668 * Depending on the prime and architecture, makes operations 4 to 8 times 669 * faster on the corresponding curve. 670 * 671 * Comment this macro to disable NIST curves optimisation. 672 */ 673 #define MBEDTLS_ECP_NIST_OPTIM 674 675 /** 676 * \def MBEDTLS_ECP_RESTARTABLE 677 * 678 * Enable "non-blocking" ECC operations that can return early and be resumed. 679 * 680 * This allows various functions to pause by returning 681 * #MBEDTLS_ERR_ECP_IN_PROGRESS (or, for functions in the SSL module, 682 * #MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS) and then be called later again in 683 * order to further progress and eventually complete their operation. This is 684 * controlled through mbedtls_ecp_set_max_ops() which limits the maximum 685 * number of ECC operations a function may perform before pausing; see 686 * mbedtls_ecp_set_max_ops() for more information. 687 * 688 * This is useful in non-threaded environments if you want to avoid blocking 689 * for too long on ECC (and, hence, X.509 or SSL/TLS) operations. 690 * 691 * Uncomment this macro to enable restartable ECC computations. 692 * 693 * \note This option only works with the default software implementation of 694 * elliptic curve functionality. It is incompatible with 695 * MBEDTLS_ECP_ALT, MBEDTLS_ECDH_XXX_ALT, MBEDTLS_ECDSA_XXX_ALT. 696 */ 697 //#define MBEDTLS_ECP_RESTARTABLE 698 699 /** 700 * \def MBEDTLS_ECDSA_DETERMINISTIC 701 * 702 * Enable deterministic ECDSA (RFC 6979). 703 * Standard ECDSA is "fragile" in the sense that lack of entropy when signing 704 * may result in a compromise of the long-term signing key. This is avoided by 705 * the deterministic variant. 706 * 707 * Requires: MBEDTLS_HMAC_DRBG_C, MBEDTLS_ECDSA_C 708 * 709 * Comment this macro to disable deterministic ECDSA. 710 */ 711 //#define MBEDTLS_ECDSA_DETERMINISTIC 712 713 /** 714 * \def MBEDTLS_KEY_EXCHANGE_PSK_ENABLED 715 * 716 * Enable the PSK based ciphersuite modes in SSL / TLS. 717 * 718 * This enables the following ciphersuites (if other requisites are 719 * enabled as well): 720 * MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384 721 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384 722 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA 723 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384 724 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384 725 * MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256 726 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256 727 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA 728 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256 729 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256 730 */ 731 //#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED 732 733 /** 734 * \def MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED 735 * 736 * Enable the DHE-PSK based ciphersuite modes in SSL / TLS. 737 * 738 * Requires: MBEDTLS_DHM_C 739 * 740 * This enables the following ciphersuites (if other requisites are 741 * enabled as well): 742 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384 743 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384 744 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA 745 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384 746 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 747 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256 748 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256 749 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA 750 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256 751 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 752 * 753 * \warning Using DHE constitutes a security risk as it 754 * is not possible to validate custom DH parameters. 755 * If possible, it is recommended users should consider 756 * preferring other methods of key exchange. 757 * See dhm.h for more details. 758 * 759 */ 760 //#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED 761 762 /** 763 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED 764 * 765 * Enable the ECDHE-PSK based ciphersuite modes in SSL / TLS. 766 * 767 * Requires: MBEDTLS_ECDH_C 768 * 769 * This enables the following ciphersuites (if other requisites are 770 * enabled as well): 771 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384 772 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA 773 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 774 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256 775 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA 776 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 777 */ 778 //#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED 779 780 /** 781 * \def MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 782 * 783 * Enable the RSA-PSK based ciphersuite modes in SSL / TLS. 784 * 785 * Requires: MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15, 786 * MBEDTLS_X509_CRT_PARSE_C 787 * 788 * This enables the following ciphersuites (if other requisites are 789 * enabled as well): 790 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384 791 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384 792 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA 793 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384 794 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 795 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256 796 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256 797 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA 798 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256 799 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 800 */ 801 //#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 802 803 /** 804 * \def MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 805 * 806 * Enable the RSA-only based ciphersuite modes in SSL / TLS. 807 * 808 * Requires: MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15, 809 * MBEDTLS_X509_CRT_PARSE_C 810 * 811 * This enables the following ciphersuites (if other requisites are 812 * enabled as well): 813 * MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384 814 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256 815 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA 816 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384 817 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256 818 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA 819 * MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256 820 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256 821 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA 822 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256 823 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256 824 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA 825 */ 826 //#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 827 828 /** 829 * \def MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED 830 * 831 * Enable the DHE-RSA based ciphersuite modes in SSL / TLS. 832 * 833 * Requires: MBEDTLS_DHM_C, MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15, 834 * MBEDTLS_X509_CRT_PARSE_C 835 * 836 * This enables the following ciphersuites (if other requisites are 837 * enabled as well): 838 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 839 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 840 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA 841 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384 842 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 843 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA 844 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 845 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 846 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA 847 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256 848 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 849 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA 850 * 851 * \warning Using DHE constitutes a security risk as it 852 * is not possible to validate custom DH parameters. 853 * If possible, it is recommended users should consider 854 * preferring other methods of key exchange. 855 * See dhm.h for more details. 856 * 857 */ 858 //#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED 859 860 /** 861 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 862 * 863 * Enable the ECDHE-RSA based ciphersuite modes in SSL / TLS. 864 * 865 * Requires: MBEDTLS_ECDH_C, MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15, 866 * MBEDTLS_X509_CRT_PARSE_C 867 * 868 * This enables the following ciphersuites (if other requisites are 869 * enabled as well): 870 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 871 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 872 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 873 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384 874 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 875 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 876 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 877 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 878 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256 879 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 880 */ 881 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 882 883 /** 884 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED 885 * 886 * Enable the ECDHE-ECDSA based ciphersuite modes in SSL / TLS. 887 * 888 * Requires: MBEDTLS_ECDH_C, MBEDTLS_ECDSA_C, MBEDTLS_X509_CRT_PARSE_C, 889 * 890 * This enables the following ciphersuites (if other requisites are 891 * enabled as well): 892 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 893 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 894 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA 895 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384 896 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 897 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 898 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 899 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA 900 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256 901 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 902 */ 903 //#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED 904 905 /** 906 * \def MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED 907 * 908 * Enable the ECDH-ECDSA based ciphersuite modes in SSL / TLS. 909 * 910 * Requires: MBEDTLS_ECDH_C, MBEDTLS_ECDSA_C, MBEDTLS_X509_CRT_PARSE_C 911 * 912 * This enables the following ciphersuites (if other requisites are 913 * enabled as well): 914 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA 915 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA 916 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 917 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 918 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 919 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 920 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 921 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 922 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256 923 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384 924 */ 925 //#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED 926 927 /** 928 * \def MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED 929 * 930 * Enable the ECDH-RSA based ciphersuite modes in SSL / TLS. 931 * 932 * Requires: MBEDTLS_ECDH_C, MBEDTLS_RSA_C, MBEDTLS_X509_CRT_PARSE_C 933 * 934 * This enables the following ciphersuites (if other requisites are 935 * enabled as well): 936 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA 937 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA 938 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 939 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 940 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256 941 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384 942 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256 943 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384 944 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256 945 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384 946 */ 947 //#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED 948 949 /** 950 * \def MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED 951 * 952 * Enable the ECJPAKE based ciphersuite modes in SSL / TLS. 953 * 954 * \warning This is currently experimental. EC J-PAKE support is based on the 955 * Thread v1.0.0 specification; incompatible changes to the specification 956 * might still happen. For this reason, this is disabled by default. 957 * 958 * Requires: MBEDTLS_ECJPAKE_C 959 * MBEDTLS_SHA256_C 960 * MBEDTLS_ECP_DP_SECP256R1_ENABLED 961 * 962 * This enables the following ciphersuites (if other requisites are 963 * enabled as well): 964 * MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8 965 */ 966 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED 967 968 /** 969 * \def MBEDTLS_PK_PARSE_EC_EXTENDED 970 * 971 * Enhance support for reading EC keys using variants of SEC1 not allowed by 972 * RFC 5915 and RFC 5480. 973 * 974 * Currently this means parsing the SpecifiedECDomain choice of EC 975 * parameters (only known groups are supported, not arbitrary domains, to 976 * avoid validation issues). 977 * 978 * Disable if you only need to support RFC 5915 + 5480 key formats. 979 */ 980 //#define MBEDTLS_PK_PARSE_EC_EXTENDED 981 982 /** 983 * \def MBEDTLS_ERROR_STRERROR_DUMMY 984 * 985 * Enable a dummy error function to make use of mbedtls_strerror() in 986 * third party libraries easier when MBEDTLS_ERROR_C is disabled 987 * (no effect when MBEDTLS_ERROR_C is enabled). 988 * 989 * You can safely disable this if MBEDTLS_ERROR_C is enabled, or if you're 990 * not using mbedtls_strerror() or error_strerror() in your application. 991 * 992 * Disable if you run into name conflicts and want to really remove the 993 * mbedtls_strerror() 994 */ 995 #define MBEDTLS_ERROR_STRERROR_DUMMY 996 997 /** 998 * \def MBEDTLS_GENPRIME 999 * 1000 * Enable the prime-number generation code. 1001 * 1002 * Requires: MBEDTLS_BIGNUM_C 1003 */ 1004 #define MBEDTLS_GENPRIME 1005 1006 /** 1007 * \def MBEDTLS_FS_IO 1008 * 1009 * Enable functions that use the filesystem. 1010 */ 1011 #define MBEDTLS_FS_IO 1012 1013 /** 1014 * \def MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES 1015 * 1016 * Do not add default entropy sources in mbedtls_entropy_init(). 1017 * 1018 * This is useful to have more control over the added entropy sources in an 1019 * application. 1020 * 1021 * Uncomment this macro to prevent loading of default entropy functions. 1022 */ 1023 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES 1024 1025 /** 1026 * \def MBEDTLS_NO_PLATFORM_ENTROPY 1027 * 1028 * Do not use built-in platform entropy functions. 1029 * This is useful if your platform does not support 1030 * standards like the /dev/urandom or Windows CryptoAPI. 1031 * 1032 * Uncomment this macro to disable the built-in platform entropy functions. 1033 */ 1034 //#define MBEDTLS_NO_PLATFORM_ENTROPY 1035 1036 /** 1037 * \def MBEDTLS_ENTROPY_FORCE_SHA256 1038 * 1039 * Force the entropy accumulator to use a SHA-256 accumulator instead of the 1040 * default SHA-512 based one (if both are available). 1041 * 1042 * Requires: MBEDTLS_SHA256_C 1043 * 1044 * On 32-bit systems SHA-256 can be much faster than SHA-512. Use this option 1045 * if you have performance concerns. 1046 * 1047 * This option is only useful if both MBEDTLS_SHA256_C and 1048 * MBEDTLS_SHA512_C are defined. Otherwise the available hash module is used. 1049 */ 1050 //#define MBEDTLS_ENTROPY_FORCE_SHA256 1051 1052 /** 1053 * \def MBEDTLS_ENTROPY_NV_SEED 1054 * 1055 * Enable the non-volatile (NV) seed file-based entropy source. 1056 * (Also enables the NV seed read/write functions in the platform layer) 1057 * 1058 * This is crucial (if not required) on systems that do not have a 1059 * cryptographic entropy source (in hardware or kernel) available. 1060 * 1061 * Requires: MBEDTLS_ENTROPY_C, MBEDTLS_PLATFORM_C 1062 * 1063 * \note The read/write functions that are used by the entropy source are 1064 * determined in the platform layer, and can be modified at runtime and/or 1065 * compile-time depending on the flags (MBEDTLS_PLATFORM_NV_SEED_*) used. 1066 * 1067 * \note If you use the default implementation functions that read a seedfile 1068 * with regular fopen(), please make sure you make a seedfile with the 1069 * proper name (defined in MBEDTLS_PLATFORM_STD_NV_SEED_FILE) and at 1070 * least MBEDTLS_ENTROPY_BLOCK_SIZE bytes in size that can be read from 1071 * and written to or you will get an entropy source error! The default 1072 * implementation will only use the first MBEDTLS_ENTROPY_BLOCK_SIZE 1073 * bytes from the file. 1074 * 1075 * \note The entropy collector will write to the seed file before entropy is 1076 * given to an external source, to update it. 1077 */ 1078 //#define MBEDTLS_ENTROPY_NV_SEED 1079 1080 /* MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER 1081 * 1082 * Enable key identifiers that encode a key owner identifier. 1083 * 1084 * The owner of a key is identified by a value of type ::mbedtls_key_owner_id_t 1085 * which is currently hard-coded to be int32_t. 1086 * 1087 * Note that this option is meant for internal use only and may be removed 1088 * without notice. It is incompatible with MBEDTLS_USE_PSA_CRYPTO. 1089 */ 1090 //#define MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER 1091 1092 /** 1093 * \def MBEDTLS_MEMORY_DEBUG 1094 * 1095 * Enable debugging of buffer allocator memory issues. Automatically prints 1096 * (to stderr) all (fatal) messages on memory allocation issues. Enables 1097 * function for 'debug output' of allocated memory. 1098 * 1099 * Requires: MBEDTLS_MEMORY_BUFFER_ALLOC_C 1100 * 1101 * Uncomment this macro to let the buffer allocator print out error messages. 1102 */ 1103 //#define MBEDTLS_MEMORY_DEBUG 1104 1105 /** 1106 * \def MBEDTLS_MEMORY_BACKTRACE 1107 * 1108 * Include backtrace information with each allocated block. 1109 * 1110 * Requires: MBEDTLS_MEMORY_BUFFER_ALLOC_C 1111 * GLIBC-compatible backtrace() an backtrace_symbols() support 1112 * 1113 * Uncomment this macro to include backtrace information 1114 */ 1115 //#define MBEDTLS_MEMORY_BACKTRACE 1116 1117 /** 1118 * \def MBEDTLS_PK_RSA_ALT_SUPPORT 1119 * 1120 * Support external private RSA keys (eg from a HSM) in the PK layer. 1121 * 1122 * Comment this macro to disable support for external private RSA keys. 1123 */ 1124 #define MBEDTLS_PK_RSA_ALT_SUPPORT 1125 1126 /** 1127 * \def MBEDTLS_PKCS1_V15 1128 * 1129 * Enable support for PKCS#1 v1.5 encoding. 1130 * 1131 * Requires: MBEDTLS_RSA_C 1132 * 1133 * This enables support for PKCS#1 v1.5 operations. 1134 */ 1135 #define MBEDTLS_PKCS1_V15 1136 1137 /** 1138 * \def MBEDTLS_PKCS1_V21 1139 * 1140 * Enable support for PKCS#1 v2.1 encoding. 1141 * 1142 * Requires: MBEDTLS_MD_C, MBEDTLS_RSA_C 1143 * 1144 * This enables support for RSAES-OAEP and RSASSA-PSS operations. 1145 */ 1146 #define MBEDTLS_PKCS1_V21 1147 1148 /** \def MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS 1149 * 1150 * Enable support for platform built-in keys. If you enable this feature, 1151 * you must implement the function mbedtls_psa_platform_get_builtin_key(). 1152 * See the documentation of that function for more information. 1153 * 1154 * Built-in keys are typically derived from a hardware unique key or 1155 * stored in a secure element. 1156 * 1157 * Requires: MBEDTLS_PSA_CRYPTO_C. 1158 * 1159 * \warning This interface is experimental and may change or be removed 1160 * without notice. 1161 */ 1162 //#define MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS 1163 1164 /** \def MBEDTLS_PSA_CRYPTO_CLIENT 1165 * 1166 * Enable support for PSA crypto client. 1167 * 1168 * \note This option allows to include the code necessary for a PSA 1169 * crypto client when the PSA crypto implementation is not included in 1170 * the library (MBEDTLS_PSA_CRYPTO_C disabled). The code included is the 1171 * code to set and get PSA key attributes. 1172 * The development of PSA drivers partially relying on the library to 1173 * fulfill the hardware gaps is another possible usage of this option. 1174 * 1175 * \warning This interface is experimental and may change or be removed 1176 * without notice. 1177 */ 1178 //#define MBEDTLS_PSA_CRYPTO_CLIENT 1179 1180 /** \def MBEDTLS_PSA_CRYPTO_DRIVERS 1181 * 1182 * Enable support for the experimental PSA crypto driver interface. 1183 * 1184 * Requires: MBEDTLS_PSA_CRYPTO_C 1185 * 1186 * \warning This interface is experimental and may change or be removed 1187 * without notice. 1188 */ 1189 //#define MBEDTLS_PSA_CRYPTO_DRIVERS 1190 1191 /** \def MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG 1192 * 1193 * Make the PSA Crypto module use an external random generator provided 1194 * by a driver, instead of Mbed TLS's entropy and DRBG modules. 1195 * 1196 * \note This random generator must deliver random numbers with cryptographic 1197 * quality and high performance. It must supply unpredictable numbers 1198 * with a uniform distribution. The implementation of this function 1199 * is responsible for ensuring that the random generator is seeded 1200 * with sufficient entropy. If you have a hardware TRNG which is slow 1201 * or delivers non-uniform output, declare it as an entropy source 1202 * with mbedtls_entropy_add_source() instead of enabling this option. 1203 * 1204 * If you enable this option, you must configure the type 1205 * ::mbedtls_psa_external_random_context_t in psa/crypto_platform.h 1206 * and define a function called mbedtls_psa_external_get_random() 1207 * with the following prototype: 1208 * ``` 1209 * psa_status_t mbedtls_psa_external_get_random( 1210 * mbedtls_psa_external_random_context_t *context, 1211 * uint8_t *output, size_t output_size, size_t *output_length); 1212 * ); 1213 * ``` 1214 * The \c context value is initialized to 0 before the first call. 1215 * The function must fill the \c output buffer with \p output_size bytes 1216 * of random data and set \c *output_length to \p output_size. 1217 * 1218 * Requires: MBEDTLS_PSA_CRYPTO_C 1219 * 1220 * \warning If you enable this option, code that uses the PSA cryptography 1221 * interface will not use any of the entropy sources set up for 1222 * the entropy module, nor the NV seed that MBEDTLS_ENTROPY_NV_SEED 1223 * enables. 1224 * 1225 * \note This option is experimental and may be removed without notice. 1226 */ 1227 //#define MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG 1228 1229 /** 1230 * \def MBEDTLS_PSA_CRYPTO_SPM 1231 * 1232 * When MBEDTLS_PSA_CRYPTO_SPM is defined, the code is built for SPM (Secure 1233 * Partition Manager) integration which separates the code into two parts: a 1234 * NSPE (Non-Secure Process Environment) and an SPE (Secure Process 1235 * Environment). 1236 * 1237 * Module: library/psa_crypto.c 1238 * Requires: MBEDTLS_PSA_CRYPTO_C 1239 * 1240 */ 1241 //#define MBEDTLS_PSA_CRYPTO_SPM 1242 1243 /** 1244 * \def MBEDTLS_PSA_INJECT_ENTROPY 1245 * 1246 * Enable support for entropy injection at first boot. This feature is 1247 * required on systems that do not have a built-in entropy source (TRNG). 1248 * This feature is currently not supported on systems that have a built-in 1249 * entropy source. 1250 * 1251 * Requires: MBEDTLS_PSA_CRYPTO_STORAGE_C, MBEDTLS_ENTROPY_NV_SEED 1252 * 1253 */ 1254 //#define MBEDTLS_PSA_INJECT_ENTROPY 1255 1256 /** 1257 * \def MBEDTLS_RSA_NO_CRT 1258 * 1259 * Do not use the Chinese Remainder Theorem 1260 * for the RSA private operation. 1261 * 1262 * Uncomment this macro to disable the use of CRT in RSA. 1263 * 1264 */ 1265 //#define MBEDTLS_RSA_NO_CRT 1266 1267 /** 1268 * \def MBEDTLS_SELF_TEST 1269 * 1270 * Enable the checkup functions (*_self_test). 1271 */ 1272 //#define MBEDTLS_SELF_TEST 1273 1274 /** 1275 * \def MBEDTLS_SHA256_SMALLER 1276 * 1277 * Enable an implementation of SHA-256 that has lower ROM footprint but also 1278 * lower performance. 1279 * 1280 * The default implementation is meant to be a reasonnable compromise between 1281 * performance and size. This version optimizes more aggressively for size at 1282 * the expense of performance. Eg on Cortex-M4 it reduces the size of 1283 * mbedtls_sha256_process() from ~2KB to ~0.5KB for a performance hit of about 1284 * 30%. 1285 * 1286 * Uncomment to enable the smaller implementation of SHA256. 1287 */ 1288 //#define MBEDTLS_SHA256_SMALLER 1289 1290 /** 1291 * \def MBEDTLS_SHA512_SMALLER 1292 * 1293 * Enable an implementation of SHA-512 that has lower ROM footprint but also 1294 * lower performance. 1295 * 1296 * Uncomment to enable the smaller implementation of SHA512. 1297 */ 1298 //#define MBEDTLS_SHA512_SMALLER 1299 1300 /** 1301 * \def MBEDTLS_SSL_ALL_ALERT_MESSAGES 1302 * 1303 * Enable sending of alert messages in case of encountered errors as per RFC. 1304 * If you choose not to send the alert messages, mbed TLS can still communicate 1305 * with other servers, only debugging of failures is harder. 1306 * 1307 * The advantage of not sending alert messages, is that no information is given 1308 * about reasons for failures thus preventing adversaries of gaining intel. 1309 * 1310 * Enable sending of all alert messages 1311 */ 1312 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES 1313 1314 /** 1315 * \def MBEDTLS_SSL_DTLS_CONNECTION_ID 1316 * 1317 * Enable support for the DTLS Connection ID extension 1318 * (version draft-ietf-tls-dtls-connection-id-05, 1319 * https://tools.ietf.org/html/draft-ietf-tls-dtls-connection-id-05) 1320 * which allows to identify DTLS connections across changes 1321 * in the underlying transport. 1322 * 1323 * Setting this option enables the SSL APIs `mbedtls_ssl_set_cid()`, 1324 * `mbedtls_ssl_get_peer_cid()` and `mbedtls_ssl_conf_cid()`. 1325 * See the corresponding documentation for more information. 1326 * 1327 * \warning The Connection ID extension is still in draft state. 1328 * We make no stability promises for the availability 1329 * or the shape of the API controlled by this option. 1330 * 1331 * The maximum lengths of outgoing and incoming CIDs can be configured 1332 * through the options 1333 * - MBEDTLS_SSL_CID_OUT_LEN_MAX 1334 * - MBEDTLS_SSL_CID_IN_LEN_MAX. 1335 * 1336 * Requires: MBEDTLS_SSL_PROTO_DTLS 1337 * 1338 * Uncomment to enable the Connection ID extension. 1339 */ 1340 //#define MBEDTLS_SSL_DTLS_CONNECTION_ID 1341 1342 /** 1343 * \def MBEDTLS_SSL_ASYNC_PRIVATE 1344 * 1345 * Enable asynchronous external private key operations in SSL. This allows 1346 * you to configure an SSL connection to call an external cryptographic 1347 * module to perform private key operations instead of performing the 1348 * operation inside the library. 1349 * 1350 */ 1351 //#define MBEDTLS_SSL_ASYNC_PRIVATE 1352 1353 /** 1354 * \def MBEDTLS_SSL_CONTEXT_SERIALIZATION 1355 * 1356 * Enable serialization of the TLS context structures, through use of the 1357 * functions mbedtls_ssl_context_save() and mbedtls_ssl_context_load(). 1358 * 1359 * This pair of functions allows one side of a connection to serialize the 1360 * context associated with the connection, then free or re-use that context 1361 * while the serialized state is persisted elsewhere, and finally deserialize 1362 * that state to a live context for resuming read/write operations on the 1363 * connection. From a protocol perspective, the state of the connection is 1364 * unaffected, in particular this is entirely transparent to the peer. 1365 * 1366 * Note: this is distinct from TLS session resumption, which is part of the 1367 * protocol and fully visible by the peer. TLS session resumption enables 1368 * establishing new connections associated to a saved session with shorter, 1369 * lighter handshakes, while context serialization is a local optimization in 1370 * handling a single, potentially long-lived connection. 1371 * 1372 * Enabling these APIs makes some SSL structures larger, as 64 extra bytes are 1373 * saved after the handshake to allow for more efficient serialization, so if 1374 * you don't need this feature you'll save RAM by disabling it. 1375 * 1376 * Comment to disable the context serialization APIs. 1377 */ 1378 #define MBEDTLS_SSL_CONTEXT_SERIALIZATION 1379 1380 /** 1381 * \def MBEDTLS_SSL_DEBUG_ALL 1382 * 1383 * Enable the debug messages in SSL module for all issues. 1384 * Debug messages have been disabled in some places to prevent timing 1385 * attacks due to (unbalanced) debugging function calls. 1386 * 1387 * If you need all error reporting you should enable this during debugging, 1388 * but remove this for production servers that should log as well. 1389 * 1390 * Uncomment this macro to report all debug messages on errors introducing 1391 * a timing side-channel. 1392 * 1393 */ 1394 //#define MBEDTLS_SSL_DEBUG_ALL 1395 1396 /** \def MBEDTLS_SSL_ENCRYPT_THEN_MAC 1397 * 1398 * Enable support for Encrypt-then-MAC, RFC 7366. 1399 * 1400 * This allows peers that both support it to use a more robust protection for 1401 * ciphersuites using CBC, providing deep resistance against timing attacks 1402 * on the padding or underlying cipher. 1403 * 1404 * This only affects CBC ciphersuites, and is useless if none is defined. 1405 * 1406 * Requires: MBEDTLS_SSL_PROTO_TLS1_2 1407 * 1408 * Comment this macro to disable support for Encrypt-then-MAC 1409 */ 1410 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC 1411 1412 /** \def MBEDTLS_SSL_EXTENDED_MASTER_SECRET 1413 * 1414 * Enable support for RFC 7627: Session Hash and Extended Master Secret 1415 * Extension. 1416 * 1417 * This was introduced as "the proper fix" to the Triple Handshake familiy of 1418 * attacks, but it is recommended to always use it (even if you disable 1419 * renegotiation), since it actually fixes a more fundamental issue in the 1420 * original SSL/TLS design, and has implications beyond Triple Handshake. 1421 * 1422 * Requires: MBEDTLS_SSL_PROTO_TLS1_2 1423 * 1424 * Comment this macro to disable support for Extended Master Secret. 1425 */ 1426 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET 1427 1428 /** 1429 * \def MBEDTLS_SSL_KEEP_PEER_CERTIFICATE 1430 * 1431 * This option controls the availability of the API mbedtls_ssl_get_peer_cert() 1432 * giving access to the peer's certificate after completion of the handshake. 1433 * 1434 * Unless you need mbedtls_ssl_peer_cert() in your application, it is 1435 * recommended to disable this option for reduced RAM usage. 1436 * 1437 * \note If this option is disabled, mbedtls_ssl_get_peer_cert() is still 1438 * defined, but always returns \c NULL. 1439 * 1440 * \note This option has no influence on the protection against the 1441 * triple handshake attack. Even if it is disabled, Mbed TLS will 1442 * still ensure that certificates do not change during renegotiation, 1443 * for exaple by keeping a hash of the peer's certificate. 1444 * 1445 * Comment this macro to disable storing the peer's certificate 1446 * after the handshake. 1447 */ 1448 #define MBEDTLS_SSL_KEEP_PEER_CERTIFICATE 1449 1450 /** 1451 * \def MBEDTLS_SSL_RENEGOTIATION 1452 * 1453 * Enable support for TLS renegotiation. 1454 * 1455 * The two main uses of renegotiation are (1) refresh keys on long-lived 1456 * connections and (2) client authentication after the initial handshake. 1457 * If you don't need renegotiation, it's probably better to disable it, since 1458 * it has been associated with security issues in the past and is easy to 1459 * misuse/misunderstand. 1460 * 1461 * Comment this to disable support for renegotiation. 1462 * 1463 * \note Even if this option is disabled, both client and server are aware 1464 * of the Renegotiation Indication Extension (RFC 5746) used to 1465 * prevent the SSL renegotiation attack (see RFC 5746 Sect. 1). 1466 * (See \c mbedtls_ssl_conf_legacy_renegotiation for the 1467 * configuration of this extension). 1468 * 1469 */ 1470 #define MBEDTLS_SSL_RENEGOTIATION 1471 1472 /** 1473 * \def MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 1474 * 1475 * Enable support for RFC 6066 max_fragment_length extension in SSL. 1476 * 1477 * Comment this macro to disable support for the max_fragment_length extension 1478 */ 1479 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 1480 1481 /** 1482 * \def MBEDTLS_SSL_PROTO_TLS1_2 1483 * 1484 * Enable support for TLS 1.2 (and DTLS 1.2 if DTLS is enabled). 1485 * 1486 * Requires: MBEDTLS_SHA1_C or MBEDTLS_SHA256_C or MBEDTLS_SHA512_C 1487 * (Depends on ciphersuites) 1488 * 1489 * Comment this macro to disable support for TLS 1.2 / DTLS 1.2 1490 */ 1491 #define MBEDTLS_SSL_PROTO_TLS1_2 1492 1493 /** 1494 * \def MBEDTLS_SSL_PROTO_TLS1_3 1495 * 1496 * Enable support for TLS 1.3. 1497 * 1498 * \note The support for TLS 1.3 is not comprehensive yet, in particular 1499 * pre-shared keys are not supported. 1500 * See docs/architecture/tls13-support.md for a description of the TLS 1501 * 1.3 support that this option enables. 1502 * 1503 * Uncomment this macro to enable the support for TLS 1.3. 1504 * 1505 */ 1506 //#define MBEDTLS_SSL_PROTO_TLS1_3 1507 1508 /** 1509 * \def MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE 1510 * 1511 * Enable TLS 1.3 middlebox compatibility mode. 1512 * 1513 * As specified in Section D.4 of RFC 8446, TLS 1.3 offers a compatibility 1514 * mode to make a TLS 1.3 connection more likely to pass through middle boxes 1515 * expecting TLS 1.2 traffic. 1516 * 1517 * Turning on the compatibility mode comes at the cost of a few added bytes 1518 * on the wire, but it doesn't affect compatibility with TLS 1.3 implementations 1519 * that don't use it. Therefore, unless transmission bandwidth is critical and 1520 * you know that middlebox compatibility issues won't occur, it is therefore 1521 * recommended to set this option. 1522 * 1523 * Comment to disable compatibility mode for TLS 1.3. If 1524 * MBEDTLS_SSL_PROTO_TLS1_3 is not enabled, this option does not have any 1525 * effect on the build. 1526 * 1527 */ 1528 //#define MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE 1529 1530 /** 1531 * \def MBEDTLS_SSL_PROTO_DTLS 1532 * 1533 * Enable support for DTLS (all available versions). 1534 * 1535 * Enable this and MBEDTLS_SSL_PROTO_TLS1_2 to enable DTLS 1.2. 1536 * 1537 * Requires: MBEDTLS_SSL_PROTO_TLS1_2 1538 * 1539 * Comment this macro to disable support for DTLS 1540 */ 1541 //#define MBEDTLS_SSL_PROTO_DTLS 1542 1543 /** 1544 * \def MBEDTLS_SSL_ALPN 1545 * 1546 * Enable support for RFC 7301 Application Layer Protocol Negotiation. 1547 * 1548 * Comment this macro to disable support for ALPN. 1549 */ 1550 #define MBEDTLS_SSL_ALPN 1551 1552 /** 1553 * \def MBEDTLS_SSL_DTLS_ANTI_REPLAY 1554 * 1555 * Enable support for the anti-replay mechanism in DTLS. 1556 * 1557 * Requires: MBEDTLS_SSL_TLS_C 1558 * MBEDTLS_SSL_PROTO_DTLS 1559 * 1560 * \warning Disabling this is often a security risk! 1561 * See mbedtls_ssl_conf_dtls_anti_replay() for details. 1562 * 1563 * Comment this to disable anti-replay in DTLS. 1564 */ 1565 //#define MBEDTLS_SSL_DTLS_ANTI_REPLAY 1566 1567 /** 1568 * \def MBEDTLS_SSL_DTLS_HELLO_VERIFY 1569 * 1570 * Enable support for HelloVerifyRequest on DTLS servers. 1571 * 1572 * This feature is highly recommended to prevent DTLS servers being used as 1573 * amplifiers in DoS attacks against other hosts. It should always be enabled 1574 * unless you know for sure amplification cannot be a problem in the 1575 * environment in which your server operates. 1576 * 1577 * \warning Disabling this can ba a security risk! (see above) 1578 * 1579 * Requires: MBEDTLS_SSL_PROTO_DTLS 1580 * 1581 * Comment this to disable support for HelloVerifyRequest. 1582 */ 1583 //#define MBEDTLS_SSL_DTLS_HELLO_VERIFY 1584 1585 /** 1586 * \def MBEDTLS_SSL_DTLS_SRTP 1587 * 1588 * Enable support for negotiation of DTLS-SRTP (RFC 5764) 1589 * through the use_srtp extension. 1590 * 1591 * \note This feature provides the minimum functionality required 1592 * to negotiate the use of DTLS-SRTP and to allow the derivation of 1593 * the associated SRTP packet protection key material. 1594 * In particular, the SRTP packet protection itself, as well as the 1595 * demultiplexing of RTP and DTLS packets at the datagram layer 1596 * (see Section 5 of RFC 5764), are not handled by this feature. 1597 * Instead, after successful completion of a handshake negotiating 1598 * the use of DTLS-SRTP, the extended key exporter API 1599 * mbedtls_ssl_conf_export_keys_cb() should be used to implement 1600 * the key exporter described in Section 4.2 of RFC 5764 and RFC 5705 1601 * (this is implemented in the SSL example programs). 1602 * The resulting key should then be passed to an SRTP stack. 1603 * 1604 * Setting this option enables the runtime API 1605 * mbedtls_ssl_conf_dtls_srtp_protection_profiles() 1606 * through which the supported DTLS-SRTP protection 1607 * profiles can be configured. You must call this API at 1608 * runtime if you wish to negotiate the use of DTLS-SRTP. 1609 * 1610 * Requires: MBEDTLS_SSL_PROTO_DTLS 1611 * 1612 * Uncomment this to enable support for use_srtp extension. 1613 */ 1614 //#define MBEDTLS_SSL_DTLS_SRTP 1615 1616 /** 1617 * \def MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE 1618 * 1619 * Enable server-side support for clients that reconnect from the same port. 1620 * 1621 * Some clients unexpectedly close the connection and try to reconnect using the 1622 * same source port. This needs special support from the server to handle the 1623 * new connection securely, as described in section 4.2.8 of RFC 6347. This 1624 * flag enables that support. 1625 * 1626 * Requires: MBEDTLS_SSL_DTLS_HELLO_VERIFY 1627 * 1628 * Comment this to disable support for clients reusing the source port. 1629 */ 1630 //#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE 1631 1632 /** 1633 * \def MBEDTLS_SSL_SESSION_TICKETS 1634 * 1635 * Enable support for RFC 5077 session tickets in SSL. 1636 * Client-side, provides full support for session tickets (maintenance of a 1637 * session store remains the responsibility of the application, though). 1638 * Server-side, you also need to provide callbacks for writing and parsing 1639 * tickets, including authenticated encryption and key management. Example 1640 * callbacks are provided by MBEDTLS_SSL_TICKET_C. 1641 * 1642 * Comment this macro to disable support for SSL session tickets 1643 */ 1644 #define MBEDTLS_SSL_SESSION_TICKETS 1645 1646 /** 1647 * \def MBEDTLS_SSL_SERVER_NAME_INDICATION 1648 * 1649 * Enable support for RFC 6066 server name indication (SNI) in SSL. 1650 * 1651 * Requires: MBEDTLS_X509_CRT_PARSE_C 1652 * 1653 * Comment this macro to disable support for server name indication in SSL 1654 */ 1655 #define MBEDTLS_SSL_SERVER_NAME_INDICATION 1656 1657 /** 1658 * \def MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH 1659 * 1660 * When this option is enabled, the SSL buffer will be resized automatically 1661 * based on the negotiated maximum fragment length in each direction. 1662 * 1663 * Requires: MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 1664 */ 1665 //#define MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH 1666 1667 /** 1668 * \def MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN 1669 * 1670 * Enable testing of the constant-flow nature of some sensitive functions with 1671 * clang's MemorySanitizer. This causes some existing tests to also test 1672 * this non-functional property of the code under test. 1673 * 1674 * This setting requires compiling with clang -fsanitize=memory. The test 1675 * suites can then be run normally. 1676 * 1677 * \warning This macro is only used for extended testing; it is not considered 1678 * part of the library's API, so it may change or disappear at any time. 1679 * 1680 * Uncomment to enable testing of the constant-flow nature of selected code. 1681 */ 1682 //#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN 1683 1684 /** 1685 * \def MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND 1686 * 1687 * Enable testing of the constant-flow nature of some sensitive functions with 1688 * valgrind's memcheck tool. This causes some existing tests to also test 1689 * this non-functional property of the code under test. 1690 * 1691 * This setting requires valgrind headers for building, and is only useful for 1692 * testing if the tests suites are run with valgrind's memcheck. This can be 1693 * done for an individual test suite with 'valgrind ./test_suite_xxx', or when 1694 * using CMake, this can be done for all test suites with 'make memcheck'. 1695 * 1696 * \warning This macro is only used for extended testing; it is not considered 1697 * part of the library's API, so it may change or disappear at any time. 1698 * 1699 * Uncomment to enable testing of the constant-flow nature of selected code. 1700 */ 1701 //#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND 1702 1703 /** 1704 * \def MBEDTLS_TEST_HOOKS 1705 * 1706 * Enable features for invasive testing such as introspection functions and 1707 * hooks for fault injection. This enables additional unit tests. 1708 * 1709 * Merely enabling this feature should not change the behavior of the product. 1710 * It only adds new code, and new branching points where the default behavior 1711 * is the same as when this feature is disabled. 1712 * However, this feature increases the attack surface: there is an added 1713 * risk of vulnerabilities, and more gadgets that can make exploits easier. 1714 * Therefore this feature must never be enabled in production. 1715 * 1716 * See `docs/architecture/testing/mbed-crypto-invasive-testing.md` for more 1717 * information. 1718 * 1719 * Uncomment to enable invasive tests. 1720 */ 1721 //#define MBEDTLS_TEST_HOOKS 1722 1723 /** 1724 * \def MBEDTLS_THREADING_ALT 1725 * 1726 * Provide your own alternate threading implementation. 1727 * 1728 * Requires: MBEDTLS_THREADING_C 1729 * 1730 * Uncomment this to allow your own alternate threading implementation. 1731 */ 1732 //#define MBEDTLS_THREADING_ALT 1733 1734 /** 1735 * \def MBEDTLS_THREADING_PTHREAD 1736 * 1737 * Enable the pthread wrapper layer for the threading layer. 1738 * 1739 * Requires: MBEDTLS_THREADING_C 1740 * 1741 * Uncomment this to enable pthread mutexes. 1742 */ 1743 //#define MBEDTLS_THREADING_PTHREAD 1744 1745 /** 1746 * \def MBEDTLS_USE_PSA_CRYPTO 1747 * 1748 * Make the X.509 and TLS library use PSA for cryptographic operations, and 1749 * enable new APIs for using keys handled by PSA Crypto. 1750 * 1751 * \note Development of this option is currently in progress, and parts of Mbed 1752 * TLS's X.509 and TLS modules are not ported to PSA yet. However, these parts 1753 * will still continue to work as usual, so enabling this option should not 1754 * break backwards compatibility. 1755 * 1756 * \note See docs/use-psa-crypto.md for a complete description of what this 1757 * option currently does, and of parts that are not affected by it so far. 1758 * 1759 * \warning This option enables new Mbed TLS APIs which are currently 1760 * considered experimental and may change in incompatible ways at any time. 1761 * That is, the APIs enabled by this option are not covered by the usual 1762 * promises of API stability. 1763 * 1764 * Requires: MBEDTLS_PSA_CRYPTO_C. 1765 * 1766 * Uncomment this to enable internal use of PSA Crypto and new associated APIs. 1767 */ 1768 //#define MBEDTLS_USE_PSA_CRYPTO 1769 1770 /** 1771 * \def MBEDTLS_PSA_CRYPTO_CONFIG 1772 * 1773 * This setting allows support for cryptographic mechanisms through the PSA 1774 * API to be configured separately from support through the mbedtls API. 1775 * 1776 * Uncomment this to enable use of PSA Crypto configuration settings which 1777 * can be found in include/psa/crypto_config.h. 1778 * 1779 * This feature is still experimental and is not ready for production since 1780 * it is not completed. 1781 */ 1782 //#define MBEDTLS_PSA_CRYPTO_CONFIG 1783 1784 /** 1785 * \def MBEDTLS_VERSION_FEATURES 1786 * 1787 * Allow run-time checking of compile-time enabled features. Thus allowing users 1788 * to check at run-time if the library is for instance compiled with threading 1789 * support via mbedtls_version_check_feature(). 1790 * 1791 * Requires: MBEDTLS_VERSION_C 1792 * 1793 * Comment this to disable run-time checking and save ROM space 1794 */ 1795 //#define MBEDTLS_VERSION_FEATURES 1796 1797 /** 1798 * \def MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK 1799 * 1800 * If set, this enables the X.509 API `mbedtls_x509_crt_verify_with_ca_cb()` 1801 * and the SSL API `mbedtls_ssl_conf_ca_cb()` which allow users to configure 1802 * the set of trusted certificates through a callback instead of a linked 1803 * list. 1804 * 1805 * This is useful for example in environments where a large number of trusted 1806 * certificates is present and storing them in a linked list isn't efficient 1807 * enough, or when the set of trusted certificates changes frequently. 1808 * 1809 * See the documentation of `mbedtls_x509_crt_verify_with_ca_cb()` and 1810 * `mbedtls_ssl_conf_ca_cb()` for more information. 1811 * 1812 * Uncomment to enable trusted certificate callbacks. 1813 */ 1814 //#define MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK 1815 1816 /** 1817 * \def MBEDTLS_X509_REMOVE_INFO 1818 * 1819 * Disable mbedtls_x509_*_info() and related APIs. 1820 * 1821 * Uncomment to omit mbedtls_x509_*_info(), as well as mbedtls_debug_print_crt() 1822 * and other functions/constants only used by these functions, thus reducing 1823 * the code footprint by several KB. 1824 */ 1825 //#define MBEDTLS_X509_REMOVE_INFO 1826 1827 /** 1828 * \def MBEDTLS_X509_RSASSA_PSS_SUPPORT 1829 * 1830 * Enable parsing and verification of X.509 certificates, CRLs and CSRS 1831 * signed with RSASSA-PSS (aka PKCS#1 v2.1). 1832 * 1833 * Comment this macro to disallow using RSASSA-PSS in certificates. 1834 */ 1835 //#define MBEDTLS_X509_RSASSA_PSS_SUPPORT 1836 /* \} name SECTION: mbed TLS feature support */ 1837 1838 /** 1839 * \name SECTION: mbed TLS modules 1840 * 1841 * This section enables or disables entire modules in mbed TLS 1842 * \{ 1843 */ 1844 1845 /** 1846 * \def MBEDTLS_AESNI_C 1847 * 1848 * Enable AES-NI support on x86-64. 1849 * 1850 * Module: library/aesni.c 1851 * Caller: library/aes.c 1852 * 1853 * Requires: MBEDTLS_HAVE_ASM 1854 * 1855 * This modules adds support for the AES-NI instructions on x86-64 1856 */ 1857 //#define MBEDTLS_AESNI_C 1858 1859 /** 1860 * \def MBEDTLS_AES_C 1861 * 1862 * Enable the AES block cipher. 1863 * 1864 * Module: library/aes.c 1865 * Caller: library/cipher.c 1866 * library/pem.c 1867 * library/ctr_drbg.c 1868 * 1869 * This module enables the following ciphersuites (if other requisites are 1870 * enabled as well): 1871 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA 1872 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA 1873 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA 1874 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA 1875 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 1876 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 1877 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 1878 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 1879 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 1880 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 1881 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256 1882 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384 1883 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 1884 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 1885 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 1886 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 1887 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 1888 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 1889 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA 1890 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 1891 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA 1892 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 1893 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 1894 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 1895 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 1896 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 1897 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 1898 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA 1899 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 1900 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA 1901 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384 1902 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384 1903 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384 1904 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA 1905 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA 1906 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256 1907 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256 1908 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256 1909 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA 1910 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA 1911 * MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384 1912 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256 1913 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA 1914 * MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256 1915 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256 1916 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA 1917 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384 1918 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384 1919 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA 1920 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256 1921 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256 1922 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA 1923 * MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384 1924 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384 1925 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA 1926 * MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256 1927 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256 1928 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA 1929 * 1930 * PEM_PARSE uses AES for decrypting encrypted keys. 1931 */ 1932 #define MBEDTLS_AES_C 1933 1934 /** 1935 * \def MBEDTLS_ASN1_PARSE_C 1936 * 1937 * Enable the generic ASN1 parser. 1938 * 1939 * Module: library/asn1.c 1940 * Caller: library/x509.c 1941 * library/dhm.c 1942 * library/pkcs12.c 1943 * library/pkcs5.c 1944 * library/pkparse.c 1945 */ 1946 #define MBEDTLS_ASN1_PARSE_C 1947 1948 /** 1949 * \def MBEDTLS_ASN1_WRITE_C 1950 * 1951 * Enable the generic ASN1 writer. 1952 * 1953 * Module: library/asn1write.c 1954 * Caller: library/ecdsa.c 1955 * library/pkwrite.c 1956 * library/x509_create.c 1957 * library/x509write_crt.c 1958 * library/x509write_csr.c 1959 */ 1960 #define MBEDTLS_ASN1_WRITE_C 1961 1962 /** 1963 * \def MBEDTLS_BASE64_C 1964 * 1965 * Enable the Base64 module. 1966 * 1967 * Module: library/base64.c 1968 * Caller: library/pem.c 1969 * 1970 * This module is required for PEM support (required by X.509). 1971 */ 1972 #define MBEDTLS_BASE64_C 1973 1974 /** 1975 * \def MBEDTLS_BIGNUM_C 1976 * 1977 * Enable the multi-precision integer library. 1978 * 1979 * Module: library/bignum.c 1980 * Caller: library/dhm.c 1981 * library/ecp.c 1982 * library/ecdsa.c 1983 * library/rsa.c 1984 * library/rsa_alt_helpers.c 1985 * library/ssl_tls.c 1986 * 1987 * This module is required for RSA, DHM and ECC (ECDH, ECDSA) support. 1988 */ 1989 #define MBEDTLS_BIGNUM_C 1990 1991 /** 1992 * \def MBEDTLS_CAMELLIA_C 1993 * 1994 * Enable the Camellia block cipher. 1995 * 1996 * Module: library/camellia.c 1997 * Caller: library/cipher.c 1998 * 1999 * This module enables the following ciphersuites (if other requisites are 2000 * enabled as well): 2001 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 2002 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 2003 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256 2004 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384 2005 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256 2006 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384 2007 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256 2008 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384 2009 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384 2010 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384 2011 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384 2012 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 2013 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 2014 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 2015 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA 2016 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256 2017 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256 2018 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256 2019 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 2020 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 2021 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 2022 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA 2023 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384 2024 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 2025 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 2026 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256 2027 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 2028 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 2029 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384 2030 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256 2031 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA 2032 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256 2033 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256 2034 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA 2035 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384 2036 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 2037 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256 2038 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 2039 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384 2040 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384 2041 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256 2042 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256 2043 */ 2044 //#define MBEDTLS_CAMELLIA_C 2045 2046 /** 2047 * \def MBEDTLS_ARIA_C 2048 * 2049 * Enable the ARIA block cipher. 2050 * 2051 * Module: library/aria.c 2052 * Caller: library/cipher.c 2053 * 2054 * This module enables the following ciphersuites (if other requisites are 2055 * enabled as well): 2056 * 2057 * MBEDTLS_TLS_RSA_WITH_ARIA_128_CBC_SHA256 2058 * MBEDTLS_TLS_RSA_WITH_ARIA_256_CBC_SHA384 2059 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256 2060 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384 2061 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256 2062 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384 2063 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256 2064 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384 2065 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256 2066 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384 2067 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256 2068 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384 2069 * MBEDTLS_TLS_RSA_WITH_ARIA_128_GCM_SHA256 2070 * MBEDTLS_TLS_RSA_WITH_ARIA_256_GCM_SHA384 2071 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256 2072 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384 2073 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256 2074 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384 2075 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256 2076 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384 2077 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 2078 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384 2079 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256 2080 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384 2081 * MBEDTLS_TLS_PSK_WITH_ARIA_128_CBC_SHA256 2082 * MBEDTLS_TLS_PSK_WITH_ARIA_256_CBC_SHA384 2083 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256 2084 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384 2085 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256 2086 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384 2087 * MBEDTLS_TLS_PSK_WITH_ARIA_128_GCM_SHA256 2088 * MBEDTLS_TLS_PSK_WITH_ARIA_256_GCM_SHA384 2089 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256 2090 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384 2091 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256 2092 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384 2093 * MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256 2094 * MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384 2095 */ 2096 #define MBEDTLS_ARIA_C 2097 2098 /** 2099 * \def MBEDTLS_CCM_C 2100 * 2101 * Enable the Counter with CBC-MAC (CCM) mode for 128-bit block cipher. 2102 * 2103 * Module: library/ccm.c 2104 * 2105 * Requires: MBEDTLS_AES_C or MBEDTLS_CAMELLIA_C 2106 * 2107 * This module enables the AES-CCM ciphersuites, if other requisites are 2108 * enabled as well. 2109 */ 2110 //#define MBEDTLS_CCM_C 2111 2112 /** 2113 * \def MBEDTLS_CHACHA20_C 2114 * 2115 * Enable the ChaCha20 stream cipher. 2116 * 2117 * Module: library/chacha20.c 2118 */ 2119 #define MBEDTLS_CHACHA20_C 2120 2121 /** 2122 * \def MBEDTLS_CHACHAPOLY_C 2123 * 2124 * Enable the ChaCha20-Poly1305 AEAD algorithm. 2125 * 2126 * Module: library/chachapoly.c 2127 * 2128 * This module requires: MBEDTLS_CHACHA20_C, MBEDTLS_POLY1305_C 2129 */ 2130 #define MBEDTLS_CHACHAPOLY_C 2131 2132 /** 2133 * \def MBEDTLS_CIPHER_C 2134 * 2135 * Enable the generic cipher layer. 2136 * 2137 * Module: library/cipher.c 2138 * Caller: library/ssl_tls.c 2139 * 2140 * Uncomment to enable generic cipher wrappers. 2141 */ 2142 #define MBEDTLS_CIPHER_C 2143 2144 /** 2145 * \def MBEDTLS_CMAC_C 2146 * 2147 * Enable the CMAC (Cipher-based Message Authentication Code) mode for block 2148 * ciphers. 2149 * 2150 * \note When #MBEDTLS_CMAC_ALT is active, meaning that the underlying 2151 * implementation of the CMAC algorithm is provided by an alternate 2152 * implementation, that alternate implementation may opt to not support 2153 * AES-192 or 3DES as underlying block ciphers for the CMAC operation. 2154 * 2155 * Module: library/cmac.c 2156 * 2157 * Requires: MBEDTLS_AES_C or MBEDTLS_DES_C 2158 * 2159 */ 2160 #define MBEDTLS_CMAC_C 2161 2162 /** 2163 * \def MBEDTLS_CTR_DRBG_C 2164 * 2165 * Enable the CTR_DRBG AES-based random generator. 2166 * The CTR_DRBG generator uses AES-256 by default. 2167 * To use AES-128 instead, enable \c MBEDTLS_CTR_DRBG_USE_128_BIT_KEY above. 2168 * 2169 * \note To achieve a 256-bit security strength with CTR_DRBG, 2170 * you must use AES-256 *and* use sufficient entropy. 2171 * See ctr_drbg.h for more details. 2172 * 2173 * Module: library/ctr_drbg.c 2174 * Caller: 2175 * 2176 * Requires: MBEDTLS_AES_C 2177 * 2178 * This module provides the CTR_DRBG AES random number generator. 2179 */ 2180 #define MBEDTLS_CTR_DRBG_C 2181 2182 /** 2183 * \def MBEDTLS_DEBUG_C 2184 * 2185 * Enable the debug functions. 2186 * 2187 * Module: library/debug.c 2188 * Caller: library/ssl_cli.c 2189 * library/ssl_srv.c 2190 * library/ssl_tls.c 2191 * 2192 * This module provides debugging functions. 2193 */ 2194 //#define MBEDTLS_DEBUG_C 2195 2196 /** 2197 * \def MBEDTLS_DES_C 2198 * 2199 * Enable the DES block cipher. 2200 * 2201 * Module: library/des.c 2202 * Caller: library/pem.c 2203 * library/cipher.c 2204 * 2205 * PEM_PARSE uses DES/3DES for decrypting encrypted keys. 2206 * 2207 * \warning DES is considered a weak cipher and its use constitutes a 2208 * security risk. We recommend considering stronger ciphers instead. 2209 */ 2210 //#define MBEDTLS_DES_C 2211 2212 /** 2213 * \def MBEDTLS_DHM_C 2214 * 2215 * Enable the Diffie-Hellman-Merkle module. 2216 * 2217 * Module: library/dhm.c 2218 * Caller: library/ssl_cli.c 2219 * library/ssl_srv.c 2220 * 2221 * This module is used by the following key exchanges: 2222 * DHE-RSA, DHE-PSK 2223 * 2224 * \warning Using DHE constitutes a security risk as it 2225 * is not possible to validate custom DH parameters. 2226 * If possible, it is recommended users should consider 2227 * preferring other methods of key exchange. 2228 * See dhm.h for more details. 2229 * 2230 */ 2231 //#define MBEDTLS_DHM_C 2232 2233 /** 2234 * \def MBEDTLS_ECDH_C 2235 * 2236 * Enable the elliptic curve Diffie-Hellman library. 2237 * 2238 * Module: library/ecdh.c 2239 * Caller: library/ssl_cli.c 2240 * library/ssl_srv.c 2241 * 2242 * This module is used by the following key exchanges: 2243 * ECDHE-ECDSA, ECDHE-RSA, DHE-PSK 2244 * 2245 * Requires: MBEDTLS_ECP_C 2246 */ 2247 #define MBEDTLS_ECDH_C 2248 2249 /** 2250 * \def MBEDTLS_ECDSA_C 2251 * 2252 * Enable the elliptic curve DSA library. 2253 * 2254 * Module: library/ecdsa.c 2255 * Caller: 2256 * 2257 * This module is used by the following key exchanges: 2258 * ECDHE-ECDSA 2259 * 2260 * Requires: MBEDTLS_ECP_C, MBEDTLS_ASN1_WRITE_C, MBEDTLS_ASN1_PARSE_C, 2261 * and at least one MBEDTLS_ECP_DP_XXX_ENABLED for a 2262 * short Weierstrass curve. 2263 */ 2264 #define MBEDTLS_ECDSA_C 2265 2266 /** 2267 * \def MBEDTLS_ECJPAKE_C 2268 * 2269 * Enable the elliptic curve J-PAKE library. 2270 * 2271 * \note EC J-PAKE support is based on the Thread v1.0.0 specification. 2272 * It has not been reviewed for compliance with newer standards such as 2273 * Thread v1.1 or RFC 8236. 2274 * 2275 * Module: library/ecjpake.c 2276 * Caller: 2277 * 2278 * This module is used by the following key exchanges: 2279 * ECJPAKE 2280 * 2281 * Requires: MBEDTLS_ECP_C, MBEDTLS_MD_C 2282 */ 2283 #define MBEDTLS_ECJPAKE_C 2284 2285 /** 2286 * \def MBEDTLS_ECP_C 2287 * 2288 * Enable the elliptic curve over GF(p) library. 2289 * 2290 * Module: library/ecp.c 2291 * Caller: library/ecdh.c 2292 * library/ecdsa.c 2293 * library/ecjpake.c 2294 * 2295 * Requires: MBEDTLS_BIGNUM_C and at least one MBEDTLS_ECP_DP_XXX_ENABLED 2296 */ 2297 #define MBEDTLS_ECP_C 2298 2299 /** 2300 * \def MBEDTLS_ENTROPY_C 2301 * 2302 * Enable the platform-specific entropy code. 2303 * 2304 * Module: library/entropy.c 2305 * Caller: 2306 * 2307 * Requires: MBEDTLS_SHA512_C or MBEDTLS_SHA256_C 2308 * 2309 * This module provides a generic entropy pool 2310 */ 2311 #define MBEDTLS_ENTROPY_C 2312 2313 /** 2314 * \def MBEDTLS_ERROR_C 2315 * 2316 * Enable error code to error string conversion. 2317 * 2318 * Module: library/error.c 2319 * Caller: 2320 * 2321 * This module enables mbedtls_strerror(). 2322 */ 2323 //#define MBEDTLS_ERROR_C 2324 2325 /** 2326 * \def MBEDTLS_GCM_C 2327 * 2328 * Enable the Galois/Counter Mode (GCM). 2329 * 2330 * Module: library/gcm.c 2331 * 2332 * Requires: MBEDTLS_AES_C or MBEDTLS_CAMELLIA_C or MBEDTLS_ARIA_C 2333 * 2334 * This module enables the AES-GCM and CAMELLIA-GCM ciphersuites, if other 2335 * requisites are enabled as well. 2336 */ 2337 #define MBEDTLS_GCM_C 2338 2339 /** 2340 * \def MBEDTLS_HKDF_C 2341 * 2342 * Enable the HKDF algorithm (RFC 5869). 2343 * 2344 * Module: library/hkdf.c 2345 * Caller: 2346 * 2347 * Requires: MBEDTLS_MD_C 2348 * 2349 * This module adds support for the Hashed Message Authentication Code 2350 * (HMAC)-based key derivation function (HKDF). 2351 */ 2352 #define MBEDTLS_HKDF_C 2353 2354 /** 2355 * \def MBEDTLS_HMAC_DRBG_C 2356 * 2357 * Enable the HMAC_DRBG random generator. 2358 * 2359 * Module: library/hmac_drbg.c 2360 * Caller: 2361 * 2362 * Requires: MBEDTLS_MD_C 2363 * 2364 * Uncomment to enable the HMAC_DRBG random number geerator. 2365 */ 2366 //#define MBEDTLS_HMAC_DRBG_C 2367 2368 /** 2369 * \def MBEDTLS_NIST_KW_C 2370 * 2371 * Enable the Key Wrapping mode for 128-bit block ciphers, 2372 * as defined in NIST SP 800-38F. Only KW and KWP modes 2373 * are supported. At the moment, only AES is approved by NIST. 2374 * 2375 * Module: library/nist_kw.c 2376 * 2377 * Requires: MBEDTLS_AES_C and MBEDTLS_CIPHER_C 2378 */ 2379 #define MBEDTLS_NIST_KW_C 2380 2381 /** 2382 * \def MBEDTLS_MD_C 2383 * 2384 * Enable the generic message digest layer. 2385 * 2386 * Module: library/md.c 2387 * Caller: 2388 * 2389 * Uncomment to enable generic message digest wrappers. 2390 */ 2391 #define MBEDTLS_MD_C 2392 2393 /** 2394 * \def MBEDTLS_MD5_C 2395 * 2396 * Enable the MD5 hash algorithm. 2397 * 2398 * Module: library/md5.c 2399 * Caller: library/md.c 2400 * library/pem.c 2401 * library/ssl_tls.c 2402 * 2403 * This module is required for TLS 1.2 depending on the handshake parameters. 2404 * Further, it is used for checking MD5-signed certificates, and for PBKDF1 2405 * when decrypting PEM-encoded encrypted keys. 2406 * 2407 * \warning MD5 is considered a weak message digest and its use constitutes a 2408 * security risk. If possible, we recommend avoiding dependencies on 2409 * it, and considering stronger message digests instead. 2410 * 2411 */ 2412 #define MBEDTLS_MD5_C 2413 2414 /** 2415 * \def MBEDTLS_MEMORY_BUFFER_ALLOC_C 2416 * 2417 * Enable the buffer allocator implementation that makes use of a (stack) 2418 * based buffer to 'allocate' dynamic memory. (replaces calloc() and free() 2419 * calls) 2420 * 2421 * Module: library/memory_buffer_alloc.c 2422 * 2423 * Requires: MBEDTLS_PLATFORM_C 2424 * MBEDTLS_PLATFORM_MEMORY (to use it within mbed TLS) 2425 * 2426 * Enable this module to enable the buffer memory allocator. 2427 */ 2428 #ifdef HILINK_E2E_SECURITY_CONFIG 2429 #define MBEDTLS_MEMORY_BUFFER_ALLOC_C 2430 #endif 2431 2432 /** 2433 * \def MBEDTLS_NET_C 2434 * 2435 * Enable the TCP and UDP over IPv6/IPv4 networking routines. 2436 * 2437 * \note This module only works on POSIX/Unix (including Linux, BSD and OS X) 2438 * and Windows. For other platforms, you'll want to disable it, and write your 2439 * own networking callbacks to be passed to \c mbedtls_ssl_set_bio(). 2440 * 2441 * \note See also our Knowledge Base article about porting to a new 2442 * environment: 2443 * https://tls.mbed.org/kb/how-to/how-do-i-port-mbed-tls-to-a-new-environment-OS 2444 * 2445 * Module: library/net_sockets.c 2446 * 2447 * This module provides networking routines. 2448 */ 2449 #define MBEDTLS_NET_C 2450 2451 /** 2452 * \def MBEDTLS_OID_C 2453 * 2454 * Enable the OID database. 2455 * 2456 * Module: library/oid.c 2457 * Caller: library/asn1write.c 2458 * library/pkcs5.c 2459 * library/pkparse.c 2460 * library/pkwrite.c 2461 * library/rsa.c 2462 * library/x509.c 2463 * library/x509_create.c 2464 * library/x509_crl.c 2465 * library/x509_crt.c 2466 * library/x509_csr.c 2467 * library/x509write_crt.c 2468 * library/x509write_csr.c 2469 * 2470 * This modules translates between OIDs and internal values. 2471 */ 2472 #define MBEDTLS_OID_C 2473 2474 /** 2475 * \def MBEDTLS_PADLOCK_C 2476 * 2477 * Enable VIA Padlock support on x86. 2478 * 2479 * Module: library/padlock.c 2480 * Caller: library/aes.c 2481 * 2482 * Requires: MBEDTLS_HAVE_ASM 2483 * 2484 * This modules adds support for the VIA PadLock on x86. 2485 */ 2486 #define MBEDTLS_PADLOCK_C 2487 2488 /** 2489 * \def MBEDTLS_PEM_PARSE_C 2490 * 2491 * Enable PEM decoding / parsing. 2492 * 2493 * Module: library/pem.c 2494 * Caller: library/dhm.c 2495 * library/pkparse.c 2496 * library/x509_crl.c 2497 * library/x509_crt.c 2498 * library/x509_csr.c 2499 * 2500 * Requires: MBEDTLS_BASE64_C 2501 * 2502 * This modules adds support for decoding / parsing PEM files. 2503 */ 2504 #define MBEDTLS_PEM_PARSE_C 2505 2506 /** 2507 * \def MBEDTLS_PEM_WRITE_C 2508 * 2509 * Enable PEM encoding / writing. 2510 * 2511 * Module: library/pem.c 2512 * Caller: library/pkwrite.c 2513 * library/x509write_crt.c 2514 * library/x509write_csr.c 2515 * 2516 * Requires: MBEDTLS_BASE64_C 2517 * 2518 * This modules adds support for encoding / writing PEM files. 2519 */ 2520 #define MBEDTLS_PEM_WRITE_C 2521 2522 /** 2523 * \def MBEDTLS_PK_C 2524 * 2525 * Enable the generic public (asymetric) key layer. 2526 * 2527 * Module: library/pk.c 2528 * Caller: library/ssl_tls.c 2529 * library/ssl_cli.c 2530 * library/ssl_srv.c 2531 * 2532 * Requires: MBEDTLS_RSA_C or MBEDTLS_ECP_C 2533 * 2534 * Uncomment to enable generic public key wrappers. 2535 */ 2536 #define MBEDTLS_PK_C 2537 2538 /** 2539 * \def MBEDTLS_PK_PARSE_C 2540 * 2541 * Enable the generic public (asymetric) key parser. 2542 * 2543 * Module: library/pkparse.c 2544 * Caller: library/x509_crt.c 2545 * library/x509_csr.c 2546 * 2547 * Requires: MBEDTLS_PK_C 2548 * 2549 * Uncomment to enable generic public key parse functions. 2550 */ 2551 #define MBEDTLS_PK_PARSE_C 2552 2553 /** 2554 * \def MBEDTLS_PK_WRITE_C 2555 * 2556 * Enable the generic public (asymetric) key writer. 2557 * 2558 * Module: library/pkwrite.c 2559 * Caller: library/x509write.c 2560 * 2561 * Requires: MBEDTLS_PK_C 2562 * 2563 * Uncomment to enable generic public key write functions. 2564 */ 2565 #define MBEDTLS_PK_WRITE_C 2566 2567 /** 2568 * \def MBEDTLS_PKCS5_C 2569 * 2570 * Enable PKCS#5 functions. 2571 * 2572 * Module: library/pkcs5.c 2573 * 2574 * Requires: MBEDTLS_MD_C 2575 * 2576 * This module adds support for the PKCS#5 functions. 2577 */ 2578 #define MBEDTLS_PKCS5_C 2579 2580 /** 2581 * \def MBEDTLS_PKCS12_C 2582 * 2583 * Enable PKCS#12 PBE functions. 2584 * Adds algorithms for parsing PKCS#8 encrypted private keys 2585 * 2586 * Module: library/pkcs12.c 2587 * Caller: library/pkparse.c 2588 * 2589 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_CIPHER_C, MBEDTLS_MD_C 2590 * 2591 * This module enables PKCS#12 functions. 2592 */ 2593 //#define MBEDTLS_PKCS12_C 2594 2595 /** 2596 * \def MBEDTLS_PLATFORM_C 2597 * 2598 * Enable the platform abstraction layer that allows you to re-assign 2599 * functions like calloc(), free(), snprintf(), printf(), fprintf(), exit(). 2600 * 2601 * Enabling MBEDTLS_PLATFORM_C enables to use of MBEDTLS_PLATFORM_XXX_ALT 2602 * or MBEDTLS_PLATFORM_XXX_MACRO directives, allowing the functions mentioned 2603 * above to be specified at runtime or compile time respectively. 2604 * 2605 * \note This abstraction layer must be enabled on Windows (including MSYS2) 2606 * as other module rely on it for a fixed snprintf implementation. 2607 * 2608 * Module: library/platform.c 2609 * Caller: Most other .c files 2610 * 2611 * This module enables abstraction of common (libc) functions. 2612 */ 2613 #define MBEDTLS_PLATFORM_C 2614 2615 /** 2616 * \def MBEDTLS_POLY1305_C 2617 * 2618 * Enable the Poly1305 MAC algorithm. 2619 * 2620 * Module: library/poly1305.c 2621 * Caller: library/chachapoly.c 2622 */ 2623 #define MBEDTLS_POLY1305_C 2624 2625 /** 2626 * \def MBEDTLS_PSA_CRYPTO_C 2627 * 2628 * Enable the Platform Security Architecture cryptography API. 2629 * 2630 * Module: library/psa_crypto.c 2631 * 2632 * Requires: either MBEDTLS_CTR_DRBG_C and MBEDTLS_ENTROPY_C, 2633 * or MBEDTLS_HMAC_DRBG_C and MBEDTLS_ENTROPY_C, 2634 * or MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG. 2635 * 2636 */ 2637 #define MBEDTLS_PSA_CRYPTO_C 2638 2639 /** 2640 * \def MBEDTLS_PSA_CRYPTO_SE_C 2641 * 2642 * Enable secure element support in the Platform Security Architecture 2643 * cryptography API. 2644 * 2645 * \warning This feature is not yet suitable for production. It is provided 2646 * for API evaluation and testing purposes only. 2647 * 2648 * Module: library/psa_crypto_se.c 2649 * 2650 * Requires: MBEDTLS_PSA_CRYPTO_C, MBEDTLS_PSA_CRYPTO_STORAGE_C 2651 * 2652 */ 2653 //#define MBEDTLS_PSA_CRYPTO_SE_C 2654 2655 /** 2656 * \def MBEDTLS_PSA_CRYPTO_STORAGE_C 2657 * 2658 * Enable the Platform Security Architecture persistent key storage. 2659 * 2660 * Module: library/psa_crypto_storage.c 2661 * 2662 * Requires: MBEDTLS_PSA_CRYPTO_C, 2663 * either MBEDTLS_PSA_ITS_FILE_C or a native implementation of 2664 * the PSA ITS interface 2665 */ 2666 #define MBEDTLS_PSA_CRYPTO_STORAGE_C 2667 2668 /** 2669 * \def MBEDTLS_PSA_ITS_FILE_C 2670 * 2671 * Enable the emulation of the Platform Security Architecture 2672 * Internal Trusted Storage (PSA ITS) over files. 2673 * 2674 * Module: library/psa_its_file.c 2675 * 2676 * Requires: MBEDTLS_FS_IO 2677 */ 2678 #define MBEDTLS_PSA_ITS_FILE_C 2679 2680 /** 2681 * \def MBEDTLS_RIPEMD160_C 2682 * 2683 * Enable the RIPEMD-160 hash algorithm. 2684 * 2685 * Module: library/ripemd160.c 2686 * Caller: library/md.c 2687 * 2688 */ 2689 //#define MBEDTLS_RIPEMD160_C 2690 2691 /** 2692 * \def MBEDTLS_RSA_C 2693 * 2694 * Enable the RSA public-key cryptosystem. 2695 * 2696 * Module: library/rsa.c 2697 * library/rsa_alt_helpers.c 2698 * Caller: library/ssl_cli.c 2699 * library/ssl_srv.c 2700 * library/ssl_tls.c 2701 * library/x509.c 2702 * 2703 * This module is used by the following key exchanges: 2704 * RSA, DHE-RSA, ECDHE-RSA, RSA-PSK 2705 * 2706 * Requires: MBEDTLS_BIGNUM_C, MBEDTLS_OID_C 2707 */ 2708 #define MBEDTLS_RSA_C 2709 2710 /** 2711 * \def MBEDTLS_SHA1_C 2712 * 2713 * Enable the SHA1 cryptographic hash algorithm. 2714 * 2715 * Module: library/sha1.c 2716 * Caller: library/md.c 2717 * library/ssl_cli.c 2718 * library/ssl_srv.c 2719 * library/ssl_tls.c 2720 * library/x509write_crt.c 2721 * 2722 * This module is required for TLS 1.2 depending on the handshake parameters, 2723 * and for SHA1-signed certificates. 2724 * 2725 * \warning SHA-1 is considered a weak message digest and its use constitutes 2726 * a security risk. If possible, we recommend avoiding dependencies 2727 * on it, and considering stronger message digests instead. 2728 * 2729 */ 2730 #define MBEDTLS_SHA1_C 2731 2732 /** 2733 * \def MBEDTLS_SHA224_C 2734 * 2735 * Enable the SHA-224 cryptographic hash algorithm. 2736 * 2737 * Requires: MBEDTLS_SHA256_C. The library does not currently support enabling 2738 * SHA-224 without SHA-256. 2739 * 2740 * Module: library/sha256.c 2741 * Caller: library/md.c 2742 * library/ssl_cookie.c 2743 * 2744 * This module adds support for SHA-224. 2745 */ 2746 #define MBEDTLS_SHA224_C 2747 2748 /** 2749 * \def MBEDTLS_SHA256_C 2750 * 2751 * Enable the SHA-256 cryptographic hash algorithm. 2752 * 2753 * Requires: MBEDTLS_SHA224_C. The library does not currently support enabling 2754 * SHA-256 without SHA-224. 2755 * 2756 * Module: library/sha256.c 2757 * Caller: library/entropy.c 2758 * library/md.c 2759 * library/ssl_cli.c 2760 * library/ssl_srv.c 2761 * library/ssl_tls.c 2762 * 2763 * This module adds support for SHA-256. 2764 * This module is required for the SSL/TLS 1.2 PRF function. 2765 */ 2766 #define MBEDTLS_SHA256_C 2767 2768 /** 2769 * \def MBEDTLS_SHA384_C 2770 * 2771 * Enable the SHA-384 cryptographic hash algorithm. 2772 * 2773 * Requires: MBEDTLS_SHA512_C 2774 * 2775 * Module: library/sha512.c 2776 * Caller: library/md.c 2777 * library/ssl_cli.c 2778 * library/ssl_srv.c 2779 * 2780 * Comment to disable SHA-384 2781 */ 2782 #define MBEDTLS_SHA384_C 2783 2784 /** 2785 * \def MBEDTLS_SHA512_C 2786 * 2787 * Enable SHA-512 cryptographic hash algorithms. 2788 * 2789 * Module: library/sha512.c 2790 * Caller: library/entropy.c 2791 * library/md.c 2792 * library/ssl_tls.c 2793 * library/ssl_cookie.c 2794 * 2795 * This module adds support for SHA-512. 2796 */ 2797 #define MBEDTLS_SHA512_C 2798 2799 /** 2800 * \def MBEDTLS_SSL_CACHE_C 2801 * 2802 * Enable simple SSL cache implementation. 2803 * 2804 * Module: library/ssl_cache.c 2805 * Caller: 2806 * 2807 * Requires: MBEDTLS_SSL_CACHE_C 2808 */ 2809 #define MBEDTLS_SSL_CACHE_C 2810 2811 /** 2812 * \def MBEDTLS_SSL_COOKIE_C 2813 * 2814 * Enable basic implementation of DTLS cookies for hello verification. 2815 * 2816 * Module: library/ssl_cookie.c 2817 * Caller: 2818 */ 2819 #define MBEDTLS_SSL_COOKIE_C 2820 2821 /** 2822 * \def MBEDTLS_SSL_TICKET_C 2823 * 2824 * Enable an implementation of TLS server-side callbacks for session tickets. 2825 * 2826 * Module: library/ssl_ticket.c 2827 * Caller: 2828 * 2829 * Requires: MBEDTLS_CIPHER_C 2830 */ 2831 #define MBEDTLS_SSL_TICKET_C 2832 2833 /** 2834 * \def MBEDTLS_SSL_CLI_C 2835 * 2836 * Enable the SSL/TLS client code. 2837 * 2838 * Module: library/ssl_cli.c 2839 * Caller: 2840 * 2841 * Requires: MBEDTLS_SSL_TLS_C 2842 * 2843 * This module is required for SSL/TLS client support. 2844 */ 2845 #define MBEDTLS_SSL_CLI_C 2846 2847 /** 2848 * \def MBEDTLS_SSL_SRV_C 2849 * 2850 * Enable the SSL/TLS server code. 2851 * 2852 * Module: library/ssl_srv.c 2853 * Caller: 2854 * 2855 * Requires: MBEDTLS_SSL_TLS_C 2856 * 2857 * This module is required for SSL/TLS server support. 2858 */ 2859 //#define MBEDTLS_SSL_SRV_C 2860 2861 /** 2862 * \def MBEDTLS_SSL_TLS_C 2863 * 2864 * Enable the generic SSL/TLS code. 2865 * 2866 * Module: library/ssl_tls.c 2867 * Caller: library/ssl_cli.c 2868 * library/ssl_srv.c 2869 * 2870 * Requires: MBEDTLS_CIPHER_C, MBEDTLS_MD_C 2871 * and at least one of the MBEDTLS_SSL_PROTO_XXX defines 2872 * 2873 * This module is required for SSL/TLS. 2874 */ 2875 #define MBEDTLS_SSL_TLS_C 2876 2877 /** 2878 * \def MBEDTLS_THREADING_C 2879 * 2880 * Enable the threading abstraction layer. 2881 * By default mbed TLS assumes it is used in a non-threaded environment or that 2882 * contexts are not shared between threads. If you do intend to use contexts 2883 * between threads, you will need to enable this layer to prevent race 2884 * conditions. See also our Knowledge Base article about threading: 2885 * https://tls.mbed.org/kb/development/thread-safety-and-multi-threading 2886 * 2887 * Module: library/threading.c 2888 * 2889 * This allows different threading implementations (self-implemented or 2890 * provided). 2891 * 2892 * You will have to enable either MBEDTLS_THREADING_ALT or 2893 * MBEDTLS_THREADING_PTHREAD. 2894 * 2895 * Enable this layer to allow use of mutexes within mbed TLS 2896 */ 2897 //#define MBEDTLS_THREADING_C 2898 2899 /** 2900 * \def MBEDTLS_TIMING_C 2901 * 2902 * Enable the semi-portable timing interface. 2903 * 2904 * \note The provided implementation only works on POSIX/Unix (including Linux, 2905 * BSD and OS X) and Windows. On other platforms, you can either disable that 2906 * module and provide your own implementations of the callbacks needed by 2907 * \c mbedtls_ssl_set_timer_cb() for DTLS, or leave it enabled and provide 2908 * your own implementation of the whole module by setting 2909 * \c MBEDTLS_TIMING_ALT in the current file. 2910 * 2911 * \note See also our Knowledge Base article about porting to a new 2912 * environment: 2913 * https://tls.mbed.org/kb/how-to/how-do-i-port-mbed-tls-to-a-new-environment-OS 2914 * 2915 * Module: library/timing.c 2916 */ 2917 //#define MBEDTLS_TIMING_C 2918 2919 /** 2920 * \def MBEDTLS_VERSION_C 2921 * 2922 * Enable run-time version information. 2923 * 2924 * Module: library/version.c 2925 * 2926 * This module provides run-time version information. 2927 */ 2928 #define MBEDTLS_VERSION_C 2929 2930 /** 2931 * \def MBEDTLS_X509_USE_C 2932 * 2933 * Enable X.509 core for using certificates. 2934 * 2935 * Module: library/x509.c 2936 * Caller: library/x509_crl.c 2937 * library/x509_crt.c 2938 * library/x509_csr.c 2939 * 2940 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_BIGNUM_C, MBEDTLS_OID_C, 2941 * MBEDTLS_PK_PARSE_C 2942 * 2943 * This module is required for the X.509 parsing modules. 2944 */ 2945 #define MBEDTLS_X509_USE_C 2946 2947 /** 2948 * \def MBEDTLS_X509_CRT_PARSE_C 2949 * 2950 * Enable X.509 certificate parsing. 2951 * 2952 * Module: library/x509_crt.c 2953 * Caller: library/ssl_cli.c 2954 * library/ssl_srv.c 2955 * library/ssl_tls.c 2956 * 2957 * Requires: MBEDTLS_X509_USE_C 2958 * 2959 * This module is required for X.509 certificate parsing. 2960 */ 2961 #define MBEDTLS_X509_CRT_PARSE_C 2962 2963 /** 2964 * \def MBEDTLS_X509_CRL_PARSE_C 2965 * 2966 * Enable X.509 CRL parsing. 2967 * 2968 * Module: library/x509_crl.c 2969 * Caller: library/x509_crt.c 2970 * 2971 * Requires: MBEDTLS_X509_USE_C 2972 * 2973 * This module is required for X.509 CRL parsing. 2974 */ 2975 #define MBEDTLS_X509_CRL_PARSE_C 2976 2977 /** 2978 * \def MBEDTLS_X509_CSR_PARSE_C 2979 * 2980 * Enable X.509 Certificate Signing Request (CSR) parsing. 2981 * 2982 * Module: library/x509_csr.c 2983 * Caller: library/x509_crt_write.c 2984 * 2985 * Requires: MBEDTLS_X509_USE_C 2986 * 2987 * This module is used for reading X.509 certificate request. 2988 */ 2989 //#define MBEDTLS_X509_CSR_PARSE_C 2990 2991 /** 2992 * \def MBEDTLS_X509_CREATE_C 2993 * 2994 * Enable X.509 core for creating certificates. 2995 * 2996 * Module: library/x509_create.c 2997 * 2998 * Requires: MBEDTLS_BIGNUM_C, MBEDTLS_OID_C, MBEDTLS_PK_WRITE_C 2999 * 3000 * This module is the basis for creating X.509 certificates and CSRs. 3001 */ 3002 //#define MBEDTLS_X509_CREATE_C 3003 3004 /** 3005 * \def MBEDTLS_X509_CRT_WRITE_C 3006 * 3007 * Enable creating X.509 certificates. 3008 * 3009 * Module: library/x509_crt_write.c 3010 * 3011 * Requires: MBEDTLS_X509_CREATE_C 3012 * 3013 * This module is required for X.509 certificate creation. 3014 */ 3015 //#define MBEDTLS_X509_CRT_WRITE_C 3016 3017 /** 3018 * \def MBEDTLS_X509_CSR_WRITE_C 3019 * 3020 * Enable creating X.509 Certificate Signing Requests (CSR). 3021 * 3022 * Module: library/x509_csr_write.c 3023 * 3024 * Requires: MBEDTLS_X509_CREATE_C 3025 * 3026 * This module is required for X.509 certificate request writing. 3027 */ 3028 //#define MBEDTLS_X509_CSR_WRITE_C 3029 3030 /* \} name SECTION: mbed TLS modules */ 3031 3032 /** 3033 * \name SECTION: Module configuration options 3034 * 3035 * This section allows for the setting of module specific sizes and 3036 * configuration options. The default values are already present in the 3037 * relevant header files and should suffice for the regular use cases. 3038 * 3039 * Our advice is to enable options and change their values here 3040 * only if you have a good reason and know the consequences. 3041 * 3042 * Please check the respective header file for documentation on these 3043 * parameters (to prevent duplicate documentation). 3044 * \{ 3045 */ 3046 3047 /* MPI / BIGNUM options */ 3048 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */ 3049 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */ 3050 3051 /* CTR_DRBG options */ 3052 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */ 3053 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 3054 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 3055 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 3056 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 3057 3058 /* HMAC_DRBG options */ 3059 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 3060 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 3061 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 3062 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 3063 3064 /* ECP options */ 3065 //#define MBEDTLS_ECP_WINDOW_SIZE 4 /**< Maximum window size used */ 3066 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */ 3067 3068 /* Entropy options */ 3069 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */ 3070 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */ 3071 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */ 3072 3073 /* Memory buffer allocator options */ 3074 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */ 3075 3076 /* Platform options */ 3077 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */ 3078 #define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */ 3079 #define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */ 3080 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */ 3081 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 3082 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */ 3083 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */ 3084 /* Note: your snprintf must correctly zero-terminate the buffer! */ 3085 #define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */ 3086 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */ 3087 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */ 3088 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 3089 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 3090 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */ 3091 3092 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */ 3093 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */ 3094 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */ 3095 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */ 3096 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */ 3097 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 3098 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 3099 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */ 3100 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */ 3101 /* Note: your snprintf must correctly zero-terminate the buffer! */ 3102 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */ 3103 //#define MBEDTLS_PLATFORM_VSNPRINTF_MACRO vsnprintf /**< Default vsnprintf macro to use, can be undefined */ 3104 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 3105 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 3106 3107 /** \def MBEDTLS_CHECK_RETURN 3108 * 3109 * This macro is used at the beginning of the declaration of a function 3110 * to indicate that its return value should be checked. It should 3111 * instruct the compiler to emit a warning or an error if the function 3112 * is called without checking its return value. 3113 * 3114 * There is a default implementation for popular compilers in platform_util.h. 3115 * You can override the default implementation by defining your own here. 3116 * 3117 * If the implementation here is empty, this will effectively disable the 3118 * checking of functions' return values. 3119 */ 3120 //#define MBEDTLS_CHECK_RETURN __attribute__((__warn_unused_result__)) 3121 3122 /** \def MBEDTLS_IGNORE_RETURN 3123 * 3124 * This macro requires one argument, which should be a C function call. 3125 * If that function call would cause a #MBEDTLS_CHECK_RETURN warning, this 3126 * warning is suppressed. 3127 */ 3128 //#define MBEDTLS_IGNORE_RETURN( result ) ((void) !(result)) 3129 3130 /* PSA options */ 3131 /** 3132 * Use HMAC_DRBG with the specified hash algorithm for HMAC_DRBG for the 3133 * PSA crypto subsystem. 3134 * 3135 * If this option is unset: 3136 * - If CTR_DRBG is available, the PSA subsystem uses it rather than HMAC_DRBG. 3137 * - Otherwise, the PSA subsystem uses HMAC_DRBG with either 3138 * #MBEDTLS_MD_SHA512 or #MBEDTLS_MD_SHA256 based on availability and 3139 * on unspecified heuristics. 3140 */ 3141 //#define MBEDTLS_PSA_HMAC_DRBG_MD_TYPE MBEDTLS_MD_SHA256 3142 3143 /** \def MBEDTLS_PSA_KEY_SLOT_COUNT 3144 * Restrict the PSA library to supporting a maximum amount of simultaneously 3145 * loaded keys. A loaded key is a key stored by the PSA Crypto core as a 3146 * volatile key, or a persistent key which is loaded temporarily by the 3147 * library as part of a crypto operation in flight. 3148 * 3149 * If this option is unset, the library will fall back to a default value of 3150 * 32 keys. 3151 */ 3152 //#define MBEDTLS_PSA_KEY_SLOT_COUNT 32 3153 3154 /* SSL Cache options */ 3155 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */ 3156 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */ 3157 3158 /* SSL options */ 3159 3160 /** \def MBEDTLS_SSL_MAX_CONTENT_LEN 3161 * 3162 * Maximum length (in bytes) of incoming and outgoing plaintext fragments. 3163 * 3164 * This determines the size of both the incoming and outgoing TLS I/O buffers 3165 * in such a way that both are capable of holding the specified amount of 3166 * plaintext data, regardless of the protection mechanism used. 3167 * 3168 * To configure incoming and outgoing I/O buffers separately, use 3169 * #MBEDTLS_SSL_IN_CONTENT_LEN and #MBEDTLS_SSL_OUT_CONTENT_LEN, 3170 * which overwrite the value set by this option. 3171 * 3172 * \note When using a value less than the default of 16KB on the client, it is 3173 * recommended to use the Maximum Fragment Length (MFL) extension to 3174 * inform the server about this limitation. On the server, there 3175 * is no supported, standardized way of informing the client about 3176 * restriction on the maximum size of incoming messages, and unless 3177 * the limitation has been communicated by other means, it is recommended 3178 * to only change the outgoing buffer size #MBEDTLS_SSL_OUT_CONTENT_LEN 3179 * while keeping the default value of 16KB for the incoming buffer. 3180 * 3181 * Uncomment to set the maximum plaintext size of both 3182 * incoming and outgoing I/O buffers. 3183 */ 3184 #define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 3185 3186 /** \def MBEDTLS_SSL_IN_CONTENT_LEN 3187 * 3188 * Maximum length (in bytes) of incoming plaintext fragments. 3189 * 3190 * This determines the size of the incoming TLS I/O buffer in such a way 3191 * that it is capable of holding the specified amount of plaintext data, 3192 * regardless of the protection mechanism used. 3193 * 3194 * \note When using a value less than the default of 16KB on the client, it is 3195 * recommended to use the Maximum Fragment Length (MFL) extension to 3196 * inform the server about this limitation. On the server, there 3197 * is no supported, standardized way of informing the client about 3198 * restriction on the maximum size of incoming messages, and unless 3199 * the limitation has been communicated by other means, it is recommended 3200 * to only change the outgoing buffer size #MBEDTLS_SSL_OUT_CONTENT_LEN 3201 * while keeping the default value of 16KB for the incoming buffer. 3202 * 3203 * Uncomment to set the maximum plaintext size of the incoming I/O buffer. 3204 */ 3205 #define MBEDTLS_SSL_IN_CONTENT_LEN 16384 3206 3207 /** \def MBEDTLS_SSL_CID_IN_LEN_MAX 3208 * 3209 * The maximum length of CIDs used for incoming DTLS messages. 3210 * 3211 */ 3212 //#define MBEDTLS_SSL_CID_IN_LEN_MAX 32 3213 3214 /** \def MBEDTLS_SSL_CID_OUT_LEN_MAX 3215 * 3216 * The maximum length of CIDs used for outgoing DTLS messages. 3217 * 3218 */ 3219 //#define MBEDTLS_SSL_CID_OUT_LEN_MAX 32 3220 3221 /** \def MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY 3222 * 3223 * This option controls the use of record plaintext padding 3224 * in TLS 1.3 and when using the Connection ID extension in DTLS 1.2. 3225 * 3226 * The padding will always be chosen so that the length of the 3227 * padded plaintext is a multiple of the value of this option. 3228 * 3229 * Note: A value of \c 1 means that no padding will be used 3230 * for outgoing records. 3231 * 3232 * Note: On systems lacking division instructions, 3233 * a power of two should be preferred. 3234 */ 3235 //#define MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY 16 3236 3237 /** \def MBEDTLS_SSL_OUT_CONTENT_LEN 3238 * 3239 * Maximum length (in bytes) of outgoing plaintext fragments. 3240 * 3241 * This determines the size of the outgoing TLS I/O buffer in such a way 3242 * that it is capable of holding the specified amount of plaintext data, 3243 * regardless of the protection mechanism used. 3244 * 3245 * It is possible to save RAM by setting a smaller outward buffer, while keeping 3246 * the default inward 16384 byte buffer to conform to the TLS specification. 3247 * 3248 * The minimum required outward buffer size is determined by the handshake 3249 * protocol's usage. Handshaking will fail if the outward buffer is too small. 3250 * The specific size requirement depends on the configured ciphers and any 3251 * certificate data which is sent during the handshake. 3252 * 3253 * Uncomment to set the maximum plaintext size of the outgoing I/O buffer. 3254 */ 3255 #define MBEDTLS_SSL_OUT_CONTENT_LEN 16384 3256 3257 /** \def MBEDTLS_SSL_DTLS_MAX_BUFFERING 3258 * 3259 * Maximum number of heap-allocated bytes for the purpose of 3260 * DTLS handshake message reassembly and future message buffering. 3261 * 3262 * This should be at least 9/8 * MBEDTLS_SSL_IN_CONTENT_LEN 3263 * to account for a reassembled handshake message of maximum size, 3264 * together with its reassembly bitmap. 3265 * 3266 * A value of 2 * MBEDTLS_SSL_IN_CONTENT_LEN (32768 by default) 3267 * should be sufficient for all practical situations as it allows 3268 * to reassembly a large handshake message (such as a certificate) 3269 * while buffering multiple smaller handshake messages. 3270 * 3271 */ 3272 //#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768 3273 3274 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */ 3275 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */ 3276 3277 /** \def MBEDTLS_TLS_EXT_CID 3278 * 3279 * At the time of writing, the CID extension has not been assigned its 3280 * final value. Set this configuration option to make Mbed TLS use a 3281 * different value. 3282 * 3283 * A future minor revision of Mbed TLS may change the default value of 3284 * this option to match evolving standards and usage. 3285 */ 3286 //#define MBEDTLS_TLS_EXT_CID 254 3287 3288 /** 3289 * Complete list of ciphersuites to use, in order of preference. 3290 * 3291 * \warning No dependency checking is done on that field! This option can only 3292 * be used to restrict the set of available ciphersuites. It is your 3293 * responsibility to make sure the needed modules are active. 3294 * 3295 * Use this to save a few hundred bytes of ROM (default ordering of all 3296 * available ciphersuites) and a few to a few hundred bytes of RAM. 3297 * 3298 * The value below is only an example, not the default. 3299 */ 3300 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 3301 3302 /* X509 options */ 3303 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */ 3304 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */ 3305 3306 /** 3307 * Uncomment the macro to let mbed TLS use your alternate implementation of 3308 * mbedtls_platform_zeroize(). This replaces the default implementation in 3309 * platform_util.c. 3310 * 3311 * mbedtls_platform_zeroize() is a widely used function across the library to 3312 * zero a block of memory. The implementation is expected to be secure in the 3313 * sense that it has been written to prevent the compiler from removing calls 3314 * to mbedtls_platform_zeroize() as part of redundant code elimination 3315 * optimizations. However, it is difficult to guarantee that calls to 3316 * mbedtls_platform_zeroize() will not be optimized by the compiler as older 3317 * versions of the C language standards do not provide a secure implementation 3318 * of memset(). Therefore, MBEDTLS_PLATFORM_ZEROIZE_ALT enables users to 3319 * configure their own implementation of mbedtls_platform_zeroize(), for 3320 * example by using directives specific to their compiler, features from newer 3321 * C standards (e.g using memset_s() in C11) or calling a secure memset() from 3322 * their system (e.g explicit_bzero() in BSD). 3323 */ 3324 //#define MBEDTLS_PLATFORM_ZEROIZE_ALT 3325 3326 /** 3327 * Uncomment the macro to let Mbed TLS use your alternate implementation of 3328 * mbedtls_platform_gmtime_r(). This replaces the default implementation in 3329 * platform_util.c. 3330 * 3331 * gmtime() is not a thread-safe function as defined in the C standard. The 3332 * library will try to use safer implementations of this function, such as 3333 * gmtime_r() when available. However, if Mbed TLS cannot identify the target 3334 * system, the implementation of mbedtls_platform_gmtime_r() will default to 3335 * using the standard gmtime(). In this case, calls from the library to 3336 * gmtime() will be guarded by the global mutex mbedtls_threading_gmtime_mutex 3337 * if MBEDTLS_THREADING_C is enabled. We recommend that calls from outside the 3338 * library are also guarded with this mutex to avoid race conditions. However, 3339 * if the macro MBEDTLS_PLATFORM_GMTIME_R_ALT is defined, Mbed TLS will 3340 * unconditionally use the implementation for mbedtls_platform_gmtime_r() 3341 * supplied at compile time. 3342 */ 3343 //#define MBEDTLS_PLATFORM_GMTIME_R_ALT 3344 3345 /** 3346 * Enable the verified implementations of ECDH primitives from Project Everest 3347 * (currently only Curve25519). This feature changes the layout of ECDH 3348 * contexts and therefore is a compatibility break for applications that access 3349 * fields of a mbedtls_ecdh_context structure directly. See also 3350 * MBEDTLS_ECDH_LEGACY_CONTEXT in include/mbedtls/ecdh.h. 3351 */ 3352 //#define MBEDTLS_ECDH_VARIANT_EVEREST_ENABLED 3353 3354 /* \} name SECTION: Customisation configuration options */ 3355