Simple interface for Mbed Cloud Client
Embed:
(wiki syntax)
Show/hide line numbers
mbedTLSConfig_mbedOS.h
00001 //---------------------------------------------------------------------------- 00002 // The confidential and proprietary information contained in this file may 00003 // only be used by a person authorised under and to the extent permitted 00004 // by a subsisting licensing agreement from ARM Limited or its affiliates. 00005 // 00006 // (C) COPYRIGHT 2016 ARM Limited or its affiliates. 00007 // ALL RIGHTS RESERVED 00008 // 00009 // This entire notice must be reproduced on all copies of this file 00010 // and copies of this file may only be made by a person if such person is 00011 // permitted to do so under the terms of a subsisting license agreement 00012 // from ARM Limited or its affiliates. 00013 //---------------------------------------------------------------------------- 00014 00015 #ifndef PAL_MBEDTLS_USER_CONFIG_H 00016 #define PAL_MBEDTLS_USER_CONFIG_H 00017 00018 00019 /*! All of the following definitions are mandatory requirements for correct 00020 * fucntionality of PAL TLS and Crypto components. 00021 * Please do not disable them. 00022 */ 00023 00024 /* Platform has time function to provide time for certificates verifications */ 00025 #if 1 //Please set to 1 if you are using secure time 00026 #ifndef MBEDTLS_HAVE_TIME 00027 #define MBEDTLS_HAVE_TIME 00028 #endif //MBEDTLS_HAVE_TIME 00029 00030 #ifndef MBEDTLS_HAVE_TIME_DATE 00031 #define MBEDTLS_HAVE_TIME_DATE 00032 #endif //MBEDTLS_HAVE_TIME_DATE 00033 00034 #ifndef MBEDTLS_PLATFORM_TIME_ALT 00035 #define MBEDTLS_PLATFORM_TIME_ALT 00036 #endif //MBEDTLS_PLATFORM_TIME_ALT 00037 00038 /* System support */ 00039 #ifndef MBEDTLS_HAVE_ASM 00040 #define MBEDTLS_HAVE_ASM 00041 #endif //MBEDTLS_HAVE_ASM 00042 #endif 00043 /* mbed TLS feature support */ 00044 #ifndef MBEDTLS_ECP_DP_SECP256R1_ENABLED 00045 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED 00046 #endif //MBEDTLS_ECP_DP_SECP256R1_ENABLED 00047 00048 #ifndef MBEDTLS_ECP_NIST_OPTIM 00049 #define MBEDTLS_ECP_NIST_OPTIM 00050 #endif //MBEDTLS_ECP_NIST_OPTIM 00051 00052 #ifndef MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 00053 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 00054 #endif //MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 00055 00056 #ifndef MBEDTLS_SSL_PROTO_TLS1_2 00057 #define MBEDTLS_SSL_PROTO_TLS1_2 00058 #endif //MBEDTLS_SSL_PROTO_TLS1_2 00059 00060 #ifndef MBEDTLS_SSL_PROTO_DTLS 00061 #define MBEDTLS_SSL_PROTO_DTLS 00062 #endif //MBEDTLS_SSL_PROTO_DTLS 00063 00064 #ifndef MBEDTLS_SSL_DTLS_ANTI_REPLAY 00065 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY 00066 #endif //MBEDTLS_SSL_DTLS_ANTI_REPLAY 00067 00068 #ifndef MBEDTLS_SSL_DTLS_HELLO_VERIFY 00069 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY 00070 #endif //MBEDTLS_SSL_DTLS_HELLO_VERIFY 00071 00072 #ifndef MBEDTLS_SSL_EXPORT_KEYS 00073 #define MBEDTLS_SSL_EXPORT_KEYS 00074 #endif //MBEDTLS_SSL_EXPORT_KEYS 00075 00076 /* mbed TLS modules */ 00077 #ifndef MBEDTLS_AES_C 00078 #define MBEDTLS_AES_C 00079 #endif //MBEDTLS_AES_C 00080 00081 #ifndef MBEDTLS_ASN1_PARSE_C 00082 #define MBEDTLS_ASN1_PARSE_C 00083 #endif //MBEDTLS_ASN1_PARSE_C 00084 00085 #ifndef MBEDTLS_ASN1_WRITE_C 00086 #define MBEDTLS_ASN1_WRITE_C 00087 #endif //MBEDTLS_ASN1_WRITE_C 00088 00089 #ifndef MBEDTLS_BIGNUM_C 00090 #define MBEDTLS_BIGNUM_C 00091 #endif //MBEDTLS_BIGNUM_C 00092 00093 #ifndef MBEDTLS_CIPHER_C 00094 #define MBEDTLS_CIPHER_C 00095 #endif //MBEDTLS_CIPHER_C 00096 00097 #ifndef MBEDTLS_CTR_DRBG_C 00098 #define MBEDTLS_CTR_DRBG_C 00099 #endif //MBEDTLS_CTR_DRBG_C 00100 00101 #ifndef MBEDTLS_ECP_C 00102 #define MBEDTLS_ECP_C 00103 #endif //MBEDTLS_ECP_C 00104 00105 #ifndef MBEDTLS_ENTROPY_C 00106 #define MBEDTLS_ENTROPY_C 00107 #endif //MBEDTLS_ENTROPY_C 00108 00109 #ifndef MBEDTLS_MD_C 00110 #define MBEDTLS_MD_C 00111 #endif //MBEDTLS_MD_C 00112 00113 #ifndef MBEDTLS_OID_C 00114 #define MBEDTLS_OID_C 00115 #endif //MBEDTLS_OID_C 00116 00117 #ifndef MBEDTLS_PK_C 00118 #define MBEDTLS_PK_C 00119 #endif //MBEDTLS_PK_C 00120 00121 #ifndef MBEDTLS_PK_PARSE_C 00122 #define MBEDTLS_PK_PARSE_C 00123 #endif //MBEDTLS_PK_PARSE_C 00124 00125 #ifndef MBEDTLS_SHA256_C 00126 #define MBEDTLS_SHA256_C 00127 #endif //MBEDTLS_SHA256_C 00128 00129 #ifndef MBEDTLS_SSL_COOKIE_C 00130 #define MBEDTLS_SSL_COOKIE_C 00131 #endif //MBEDTLS_SSL_COOKIE_C 00132 00133 #ifndef MBEDTLS_SSL_CLI_C 00134 #define MBEDTLS_SSL_CLI_C 00135 #endif //MBEDTLS_SSL_CLI_C 00136 00137 #ifndef MBEDTLS_SSL_TLS_C 00138 #define MBEDTLS_SSL_TLS_C 00139 #endif //MBEDTLS_SSL_TLS_C 00140 // XXX mbedclient needs these: mbedtls_x509_crt_free, mbedtls_x509_crt_init, mbedtls_x509_crt_parse 00141 #ifndef MBEDTLS_X509_USE_C 00142 #define MBEDTLS_X509_USE_C 00143 #endif //MBEDTLS_X509_USE_C 00144 00145 #ifndef MBEDTLS_X509_CRT_PARSE_C 00146 #define MBEDTLS_X509_CRT_PARSE_C 00147 #endif //MBEDTLS_X509_CRT_PARSE_C 00148 // a bit wrong way to get mbedtls_ssl_conf_psk: 00149 #ifndef MBEDTLS_CMAC_C 00150 #define MBEDTLS_CMAC_C 00151 #endif //MBEDTLS_CMAC_C 00152 00153 #ifndef MBEDTLS_ECDH_C 00154 #define MBEDTLS_ECDH_C 00155 #endif //MBEDTLS_ECDH_C 00156 00157 #ifndef MBEDTLS_ECDSA_C 00158 #define MBEDTLS_ECDSA_C 00159 #endif //MBEDTLS_ECDSA_C 00160 00161 #ifndef MBEDTLS_GCM_C 00162 #define MBEDTLS_GCM_C 00163 #endif //MBEDTLS_GCM_C 00164 00165 #ifndef MBEDTLS_X509_CRT_PARSE_C 00166 #define MBEDTLS_X509_CRT_PARSE_C 00167 #endif //MBEDTLS_X509_CRT_PARSE_C 00168 00169 #ifndef MBEDTLS_X509_CSR_PARSE_C 00170 #define MBEDTLS_X509_CSR_PARSE_C 00171 #endif //MBEDTLS_X509_CSR_PARSE_C 00172 00173 #ifndef MBEDTLS_X509_CREATE_C 00174 #define MBEDTLS_X509_CREATE_C 00175 #endif //MBEDTLS_X509_CREATE_C 00176 00177 #ifndef MBEDTLS_X509_CSR_WRITE_C 00178 #define MBEDTLS_X509_CSR_WRITE_C 00179 #endif //MBEDTLS_X509_CSR_WRITE_C 00180 00181 #ifndef MBEDTLS_CTR_DRBG_MAX_REQUEST 00182 #define MBEDTLS_CTR_DRBG_MAX_REQUEST 2048 00183 #endif //MBEDTLS_CTR_DRBG_MAX_REQUEST 00184 00185 // Needed by update 00186 #ifndef MBEDTLS_CIPHER_MODE_CTR 00187 #define MBEDTLS_CIPHER_MODE_CTR 00188 #endif //MBEDTLS_CIPHER_MODE_CTR 00189 00190 // Save ROM and a few bytes of RAM by specifying our own ciphersuite list 00191 #ifndef MBEDTLS_SSL_CIPHERSUITES 00192 #define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8, \ 00193 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, \ 00194 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, \ 00195 MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8, \ 00196 MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8, \ 00197 MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256 00198 #endif //MBEDTLS_SSL_CIPHERSUITES 00199 00200 /*! All of the following definitions are optimizations (reduce mbedTLS memory usage and size), 00201 * changing them is on the user responsibility since they can enlarge 00202 * the binary footprint and the memory usage 00203 */ 00204 00205 // define to save 8KB RAM at the expense of ROM 00206 #ifndef MBEDTLS_AES_ROM_TABLES 00207 #define MBEDTLS_AES_ROM_TABLES 00208 #endif //MBEDTLS_AES_ROM_TABLES 00209 00210 // Reduce IO buffer to save RAM, default is 16KB 00211 #ifndef MBEDTLS_SSL_MAX_CONTENT_LEN 00212 #define MBEDTLS_SSL_MAX_CONTENT_LEN 4096 00213 #endif //MBEDTLS_SSL_MAX_CONTENT_LEN 00214 00215 // Needed by provisioning 00216 #undef MBEDTLS_PEM_WRITE_C 00217 00218 // Remove RSA, save 20KB at total 00219 #undef MBEDTLS_RSA_C 00220 00221 #undef MBEDTLS_PK_RSA_ALT_SUPPORT 00222 00223 #undef MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 00224 00225 #undef MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 00226 00227 #undef MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 00228 00229 //#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED 00230 00231 // Remove error messages, save 10KB of ROM 00232 #undef MBEDTLS_ERROR_C 00233 00234 // Remove selftesting and save 11KB of ROM 00235 #undef MBEDTLS_SELF_TEST 00236 00237 #undef MBEDTLS_CERTS_C 00238 00239 // Reduces ROM size by 30 kB 00240 #undef MBEDTLS_ERROR_STRERROR_DUMMY 00241 00242 #undef MBEDTLS_VERSION_FEATURES 00243 00244 #undef MBEDTLS_DEBUG_C 00245 00246 // needed for parsing the certificates 00247 #undef MBEDTLS_PEM_PARSE_C 00248 00249 00250 // dep of the previous 00251 #undef MBEDTLS_BASE64_C 00252 00253 #undef MBEDTLS_SHA512_C 00254 00255 #undef MBEDTLS_SSL_SRV_C 00256 00257 #undef MBEDTLS_ECP_DP_SECP192R1_ENABLED 00258 #undef MBEDTLS_ECP_DP_SECP224R1_ENABLED 00259 #undef MBEDTLS_ECP_DP_SECP384R1_ENABLED 00260 #undef MBEDTLS_ECP_DP_SECP521R1_ENABLED 00261 #undef MBEDTLS_ECP_DP_SECP192K1_ENABLED 00262 #undef MBEDTLS_ECP_DP_SECP224K1_ENABLED 00263 #undef MBEDTLS_ECP_DP_SECP256K1_ENABLED 00264 #undef MBEDTLS_ECP_DP_BP256R1_ENABLED 00265 #undef MBEDTLS_ECP_DP_BP384R1_ENABLED 00266 #undef MBEDTLS_ECP_DP_BP512R1_ENABLED 00267 #undef MBEDTLS_ECP_DP_CURVE25519_ENABLED 00268 00269 00270 #include "mbedtls/check_config.h" 00271 00272 #endif /* PAL_MBEDTLS_USER_CONFIG_H */
Generated on Tue Jul 12 2022 19:01:35 by 1.7.2