Toyomasa Watarai
Simple interface for Mbed Cloud Client
Embed:
(wiki syntax)
Show/hide line numbers
mbedTLSConfig_mbedOS_PSK.h
00001 //---------------------------------------------------------------------------- 00002 // The confidential and proprietary information contained in this file may 00003 // only be used by a person authorised under and to the extent permitted 00004 // by a subsisting licensing agreement from ARM Limited or its affiliates. 00005 // 00006 // (C) COPYRIGHT 2016 ARM Limited or its affiliates. 00007 // ALL RIGHTS RESERVED 00008 // 00009 // This entire notice must be reproduced on all copies of this file 00010 // and copies of this file may only be made by a person if such person is 00011 // permitted to do so under the terms of a subsisting license agreement 00012 // from ARM Limited or its affiliates. 00013 //---------------------------------------------------------------------------- 00014 00015 #ifndef PAL_MBEDTLS_USER_CONFIG_H 00016 #define PAL_MBEDTLS_USER_CONFIG_H 00017 00018 /*! All of the following definitions are mandatory requirements for correct 00019 * fucntionality of PAL TLS and Crypto components. 00020 * Please do not disable them. 00021 */ 00022 00023 /* Platform has time function to provide time for certificates verifications */ 00024 #if 1 //Please set to 1 if you are using secure time 00025 #ifndef MBEDTLS_HAVE_TIME 00026 #define MBEDTLS_HAVE_TIME 00027 #endif //MBEDTLS_HAVE_TIME 00028 00029 #ifndef MBEDTLS_HAVE_TIME_DATE 00030 #define MBEDTLS_HAVE_TIME_DATE 00031 #endif //MBEDTLS_HAVE_TIME_DATE 00032 00033 #ifndef MBEDTLS_PLATFORM_TIME_ALT 00034 #define MBEDTLS_PLATFORM_TIME_ALT 00035 #endif //MBEDTLS_PLATFORM_TIME_ALT 00036 00037 /* System support */ 00038 #ifndef MBEDTLS_HAVE_ASM 00039 #define MBEDTLS_HAVE_ASM 00040 #endif //MBEDTLS_HAVE_ASM 00041 #endif 00042 /* mbed TLS feature support */ 00043 #ifndef MBEDTLS_ECP_DP_SECP256R1_ENABLED 00044 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED 00045 #endif //MBEDTLS_ECP_DP_SECP256R1_ENABLED 00046 00047 #ifndef MBEDTLS_ECP_NIST_OPTIM 00048 #define MBEDTLS_ECP_NIST_OPTIM 00049 #endif //MBEDTLS_ECP_NIST_OPTIM 00050 00051 #ifndef MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 00052 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 00053 #endif //MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 00054 00055 #ifndef MBEDTLS_SSL_PROTO_TLS1_2 00056 #define MBEDTLS_SSL_PROTO_TLS1_2 00057 #endif //MBEDTLS_SSL_PROTO_TLS1_2 00058 00059 #ifndef MBEDTLS_SSL_PROTO_DTLS 00060 #define MBEDTLS_SSL_PROTO_DTLS 00061 #endif //MBEDTLS_SSL_PROTO_DTLS 00062 00063 #ifndef MBEDTLS_SSL_DTLS_ANTI_REPLAY 00064 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY 00065 #endif //MBEDTLS_SSL_DTLS_ANTI_REPLAY 00066 00067 #ifndef MBEDTLS_SSL_DTLS_HELLO_VERIFY 00068 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY 00069 #endif //MBEDTLS_SSL_DTLS_HELLO_VERIFY 00070 00071 #ifndef MBEDTLS_SSL_EXPORT_KEYS 00072 #define MBEDTLS_SSL_EXPORT_KEYS 00073 #endif //MBEDTLS_SSL_EXPORT_KEYS 00074 00075 /* mbed TLS modules */ 00076 #ifndef MBEDTLS_AES_C 00077 #define MBEDTLS_AES_C 00078 #endif //MBEDTLS_AES_C 00079 00080 #ifndef MBEDTLS_ASN1_PARSE_C 00081 #define MBEDTLS_ASN1_PARSE_C 00082 #endif //MBEDTLS_ASN1_PARSE_C 00083 00084 #ifndef MBEDTLS_ASN1_WRITE_C 00085 #define MBEDTLS_ASN1_WRITE_C 00086 #endif //MBEDTLS_ASN1_WRITE_C 00087 00088 #ifndef MBEDTLS_BIGNUM_C 00089 #define MBEDTLS_BIGNUM_C 00090 #endif //MBEDTLS_BIGNUM_C 00091 00092 #ifndef MBEDTLS_CIPHER_C 00093 #define MBEDTLS_CIPHER_C 00094 #endif //MBEDTLS_CIPHER_C 00095 00096 #ifndef MBEDTLS_CTR_DRBG_C 00097 #define MBEDTLS_CTR_DRBG_C 00098 #endif //MBEDTLS_CTR_DRBG_C 00099 00100 #ifndef MBEDTLS_ECP_C 00101 #define MBEDTLS_ECP_C 00102 #endif //MBEDTLS_ECP_C 00103 00104 #ifndef MBEDTLS_ENTROPY_C 00105 #define MBEDTLS_ENTROPY_C 00106 #endif //MBEDTLS_ENTROPY_C 00107 00108 #ifndef MBEDTLS_MD_C 00109 #define MBEDTLS_MD_C 00110 #endif //MBEDTLS_MD_C 00111 00112 #ifndef MBEDTLS_OID_C 00113 #define MBEDTLS_OID_C 00114 #endif //MBEDTLS_OID_C 00115 00116 #ifndef MBEDTLS_PK_C 00117 #define MBEDTLS_PK_C 00118 #endif //MBEDTLS_PK_C 00119 00120 #ifndef MBEDTLS_PK_PARSE_C 00121 #define MBEDTLS_PK_PARSE_C 00122 #endif //MBEDTLS_PK_PARSE_C 00123 00124 #ifndef MBEDTLS_SHA256_C 00125 #define MBEDTLS_SHA256_C 00126 #endif //MBEDTLS_SHA256_C 00127 00128 #ifndef MBEDTLS_SSL_COOKIE_C 00129 #define MBEDTLS_SSL_COOKIE_C 00130 #endif //MBEDTLS_SSL_COOKIE_C 00131 00132 #ifndef MBEDTLS_SSL_CLI_C 00133 #define MBEDTLS_SSL_CLI_C 00134 #endif //MBEDTLS_SSL_CLI_C 00135 00136 #ifndef MBEDTLS_SSL_TLS_C 00137 #define MBEDTLS_SSL_TLS_C 00138 #endif //MBEDTLS_SSL_TLS_C 00139 00140 // XXX mbedclient needs these: mbedtls_x509_crt_free, mbedtls_x509_crt_init, mbedtls_x509_crt_parse 00141 #ifndef MBEDTLS_X509_USE_C 00142 // #define MBEDTLS_X509_USE_C 00143 #endif //MBEDTLS_X509_USE_C 00144 00145 #ifndef MBEDTLS_X509_CRT_PARSE_C 00146 // #define MBEDTLS_X509_CRT_PARSE_C 00147 #endif //MBEDTLS_X509_CRT_PARSE_C 00148 // a bit wrong way to get mbedtls_ssl_conf_psk: 00149 00150 #ifndef MBEDTLS_CMAC_C 00151 #define MBEDTLS_CMAC_C 00152 #endif //MBEDTLS_CMAC_C 00153 00154 #ifndef MBEDTLS_ECDH_C 00155 #define MBEDTLS_ECDH_C 00156 #endif //MBEDTLS_ECDH_C 00157 00158 #ifndef MBEDTLS_ECDSA_C 00159 #define MBEDTLS_ECDSA_C 00160 #endif //MBEDTLS_ECDSA_C 00161 00162 #ifndef MBEDTLS_GCM_C 00163 #define MBEDTLS_GCM_C 00164 #endif //MBEDTLS_GCM_C 00165 00166 #ifndef MBEDTLS_X509_CRT_PARSE_C 00167 //#define MBEDTLS_X509_CRT_PARSE_C 00168 #endif //MBEDTLS_X509_CRT_PARSE_C 00169 00170 #ifndef MBEDTLS_X509_CSR_PARSE_C 00171 //#define MBEDTLS_X509_CSR_PARSE_C 00172 #endif //MBEDTLS_X509_CSR_PARSE_C 00173 00174 #ifndef MBEDTLS_X509_CREATE_C 00175 //#define MBEDTLS_X509_CREATE_C 00176 #endif //MBEDTLS_X509_CREATE_C 00177 00178 #ifndef MBEDTLS_X509_CSR_WRITE_C 00179 //#define MBEDTLS_X509_CSR_WRITE_C 00180 #endif //MBEDTLS_X509_CSR_WRITE_C 00181 00182 #ifndef MBEDTLS_CTR_DRBG_MAX_REQUEST 00183 #define MBEDTLS_CTR_DRBG_MAX_REQUEST 2048 00184 #endif //MBEDTLS_CTR_DRBG_MAX_REQUEST 00185 00186 // Needed by update 00187 #ifndef MBEDTLS_CIPHER_MODE_CTR 00188 #define MBEDTLS_CIPHER_MODE_CTR 00189 #endif //MBEDTLS_CIPHER_MODE_CTR 00190 00191 // Save ROM and a few bytes of RAM by specifying our own ciphersuite list 00192 #ifndef MBEDTLS_SSL_CIPHERSUITES 00193 #define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8, \ 00194 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, \ 00195 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, \ 00196 MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8, \ 00197 MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8, \ 00198 MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256 00199 #endif //MBEDTLS_SSL_CIPHERSUITES 00200 00201 /*! All of the following definitions are optimizations (reduce mbedTLS memory usage and size), 00202 * changing them is on the user responsibility since they can enlarge 00203 * the binary footprint and the memory usage 00204 */ 00205 00206 // define to save 8KB RAM at the expense of ROM 00207 #ifndef MBEDTLS_AES_ROM_TABLES 00208 #define MBEDTLS_AES_ROM_TABLES 00209 #endif //MBEDTLS_AES_ROM_TABLES 00210 00211 // Reduce IO buffer to save RAM, default is 16KB 00212 #ifndef MBEDTLS_SSL_MAX_CONTENT_LEN 00213 #define MBEDTLS_SSL_MAX_CONTENT_LEN 4096 00214 #endif //MBEDTLS_SSL_MAX_CONTENT_LEN 00215 00216 // Needed by provisioning 00217 #undef MBEDTLS_PEM_WRITE_C 00218 00219 // Remove RSA, save 20KB at total 00220 #undef MBEDTLS_RSA_C 00221 00222 #undef MBEDTLS_PK_RSA_ALT_SUPPORT 00223 00224 #undef MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 00225 00226 #undef MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 00227 00228 #undef MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 00229 00230 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED 00231 00232 // Remove error messages, save 10KB of ROM 00233 #undef MBEDTLS_ERROR_C 00234 00235 // Remove selftesting and save 11KB of ROM 00236 #undef MBEDTLS_SELF_TEST 00237 00238 #undef MBEDTLS_CERTS_C 00239 00240 // Reduces ROM size by 30 kB 00241 #undef MBEDTLS_ERROR_STRERROR_DUMMY 00242 00243 #undef MBEDTLS_VERSION_FEATURES 00244 00245 #undef MBEDTLS_DEBUG_C 00246 00247 // needed for parsing the certificates 00248 #undef MBEDTLS_PEM_PARSE_C 00249 00250 00251 // dep of the previous 00252 #undef MBEDTLS_BASE64_C 00253 00254 #undef MBEDTLS_SHA512_C 00255 00256 #undef MBEDTLS_SSL_SRV_C 00257 00258 #undef MBEDTLS_ECP_DP_SECP192R1_ENABLED 00259 #undef MBEDTLS_ECP_DP_SECP224R1_ENABLED 00260 #undef MBEDTLS_ECP_DP_SECP384R1_ENABLED 00261 #undef MBEDTLS_ECP_DP_SECP521R1_ENABLED 00262 #undef MBEDTLS_ECP_DP_SECP192K1_ENABLED 00263 #undef MBEDTLS_ECP_DP_SECP224K1_ENABLED 00264 #undef MBEDTLS_ECP_DP_SECP256K1_ENABLED 00265 #undef MBEDTLS_ECP_DP_BP256R1_ENABLED 00266 #undef MBEDTLS_ECP_DP_BP384R1_ENABLED 00267 #undef MBEDTLS_ECP_DP_BP512R1_ENABLED 00268 #undef MBEDTLS_ECP_DP_CURVE25519_ENABLED 00269 00270 00271 #include "mbedtls/check_config.h" 00272 00273 #endif /* PAL_MBEDTLS_USER_CONFIG_H */
Generated on Tue Jul 12 2022 19:01:35 by
1.7.2