leo hendrickson / Mbed OS example-Ethernet-mbed-Cloud-connect

Important changes to repositories hosted on mbed.com

Mbed hosted mercurial repositories are deprecated and are due to be permanently deleted in July 2026.

To keep a copy of this software download the repository Zip archive or clone locally using Mercurial.

It is also possible to export all your personal repositories from the account settings page.

simple-mbed-cloud-client/mbed-cloud-client/mbed-client-pal/Configs/mbedTLS/mbedTLSConfig_mbedOS.h@0:8f0bb79ddd48, 2021-05-04 (annotated)

Committer:
leothedragon
Date:
Tue May 04 08:55:12 2021 +0000
Revision:
0:8f0bb79ddd48
nmn

Who changed what in which revision?

UserRevisionLine numberNew contents of line
leothedragon 0:8f0bb79ddd48 1 // ----------------------------------------------------------------------------
leothedragon 0:8f0bb79ddd48 2 // Copyright 2016-2019 ARM Ltd.
leothedragon 0:8f0bb79ddd48 3 //
leothedragon 0:8f0bb79ddd48 4 // SPDX-License-Identifier: Apache-2.0
leothedragon 0:8f0bb79ddd48 5 //
leothedragon 0:8f0bb79ddd48 6 // Licensed under the Apache License, Version 2.0 (the "License");
leothedragon 0:8f0bb79ddd48 7 // you may not use this file except in compliance with the License.
leothedragon 0:8f0bb79ddd48 8 // You may obtain a copy of the License at
leothedragon 0:8f0bb79ddd48 9 //
leothedragon 0:8f0bb79ddd48 10 // http://www.apache.org/licenses/LICENSE-2.0
leothedragon 0:8f0bb79ddd48 11 //
leothedragon 0:8f0bb79ddd48 12 // Unless required by applicable law or agreed to in writing, software
leothedragon 0:8f0bb79ddd48 13 // distributed under the License is distributed on an "AS IS" BASIS,
leothedragon 0:8f0bb79ddd48 14 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
leothedragon 0:8f0bb79ddd48 15 // See the License for the specific language governing permissions and
leothedragon 0:8f0bb79ddd48 16 // limitations under the License.
leothedragon 0:8f0bb79ddd48 17 // ----------------------------------------------------------------------------
leothedragon 0:8f0bb79ddd48 18
leothedragon 0:8f0bb79ddd48 19 #ifndef PAL_MBEDTLS_USER_CONFIG_H
leothedragon 0:8f0bb79ddd48 20 #define PAL_MBEDTLS_USER_CONFIG_H
leothedragon 0:8f0bb79ddd48 21
leothedragon 0:8f0bb79ddd48 22
leothedragon 0:8f0bb79ddd48 23 /*! All of the following definitions are mandatory requirements for correct
leothedragon 0:8f0bb79ddd48 24 * functionality of PAL TLS and Crypto components.
leothedragon 0:8f0bb79ddd48 25 * Please do not disable them.
leothedragon 0:8f0bb79ddd48 26 */
leothedragon 0:8f0bb79ddd48 27
leothedragon 0:8f0bb79ddd48 28 /* Platform has time function to provide time for certificates verifications */
leothedragon 0:8f0bb79ddd48 29 #if 1 //Please set to 1 if you are using secure time
leothedragon 0:8f0bb79ddd48 30 #ifndef MBEDTLS_HAVE_TIME
leothedragon 0:8f0bb79ddd48 31 #define MBEDTLS_HAVE_TIME
leothedragon 0:8f0bb79ddd48 32 #endif //MBEDTLS_HAVE_TIME
leothedragon 0:8f0bb79ddd48 33
leothedragon 0:8f0bb79ddd48 34 #ifndef MBEDTLS_HAVE_TIME_DATE
leothedragon 0:8f0bb79ddd48 35 #define MBEDTLS_HAVE_TIME_DATE
leothedragon 0:8f0bb79ddd48 36 #endif //MBEDTLS_HAVE_TIME_DATE
leothedragon 0:8f0bb79ddd48 37
leothedragon 0:8f0bb79ddd48 38 #ifndef MBEDTLS_PLATFORM_TIME_ALT
leothedragon 0:8f0bb79ddd48 39 #define MBEDTLS_PLATFORM_TIME_ALT
leothedragon 0:8f0bb79ddd48 40 #endif //MBEDTLS_PLATFORM_TIME_ALT
leothedragon 0:8f0bb79ddd48 41
leothedragon 0:8f0bb79ddd48 42 /* System support */
leothedragon 0:8f0bb79ddd48 43 #ifndef MBEDTLS_HAVE_ASM
leothedragon 0:8f0bb79ddd48 44 #define MBEDTLS_HAVE_ASM
leothedragon 0:8f0bb79ddd48 45 #endif //MBEDTLS_HAVE_ASM
leothedragon 0:8f0bb79ddd48 46 #endif
leothedragon 0:8f0bb79ddd48 47 /* mbed TLS feature support */
leothedragon 0:8f0bb79ddd48 48 #ifndef MBEDTLS_ECP_DP_SECP256R1_ENABLED
leothedragon 0:8f0bb79ddd48 49 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
leothedragon 0:8f0bb79ddd48 50 #endif //MBEDTLS_ECP_DP_SECP256R1_ENABLED
leothedragon 0:8f0bb79ddd48 51
leothedragon 0:8f0bb79ddd48 52 #ifndef MBEDTLS_ECP_NIST_OPTIM
leothedragon 0:8f0bb79ddd48 53 #define MBEDTLS_ECP_NIST_OPTIM
leothedragon 0:8f0bb79ddd48 54 #endif //MBEDTLS_ECP_NIST_OPTIM
leothedragon 0:8f0bb79ddd48 55
leothedragon 0:8f0bb79ddd48 56 #ifndef MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
leothedragon 0:8f0bb79ddd48 57 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
leothedragon 0:8f0bb79ddd48 58 #endif //MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
leothedragon 0:8f0bb79ddd48 59
leothedragon 0:8f0bb79ddd48 60 #ifndef MBEDTLS_SSL_PROTO_TLS1_2
leothedragon 0:8f0bb79ddd48 61 #define MBEDTLS_SSL_PROTO_TLS1_2
leothedragon 0:8f0bb79ddd48 62 #endif //MBEDTLS_SSL_PROTO_TLS1_2
leothedragon 0:8f0bb79ddd48 63
leothedragon 0:8f0bb79ddd48 64 #ifndef MBEDTLS_SSL_PROTO_DTLS
leothedragon 0:8f0bb79ddd48 65 #define MBEDTLS_SSL_PROTO_DTLS
leothedragon 0:8f0bb79ddd48 66 #endif //MBEDTLS_SSL_PROTO_DTLS
leothedragon 0:8f0bb79ddd48 67
leothedragon 0:8f0bb79ddd48 68 #ifndef MBEDTLS_SSL_DTLS_ANTI_REPLAY
leothedragon 0:8f0bb79ddd48 69 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
leothedragon 0:8f0bb79ddd48 70 #endif //MBEDTLS_SSL_DTLS_ANTI_REPLAY
leothedragon 0:8f0bb79ddd48 71
leothedragon 0:8f0bb79ddd48 72 #ifndef MBEDTLS_SSL_DTLS_HELLO_VERIFY
leothedragon 0:8f0bb79ddd48 73 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
leothedragon 0:8f0bb79ddd48 74 #endif //MBEDTLS_SSL_DTLS_HELLO_VERIFY
leothedragon 0:8f0bb79ddd48 75
leothedragon 0:8f0bb79ddd48 76 #ifndef MBEDTLS_SSL_EXPORT_KEYS
leothedragon 0:8f0bb79ddd48 77 #define MBEDTLS_SSL_EXPORT_KEYS
leothedragon 0:8f0bb79ddd48 78 #endif //MBEDTLS_SSL_EXPORT_KEYS
leothedragon 0:8f0bb79ddd48 79
leothedragon 0:8f0bb79ddd48 80 /* mbed TLS modules */
leothedragon 0:8f0bb79ddd48 81 #ifndef MBEDTLS_AES_C
leothedragon 0:8f0bb79ddd48 82 #define MBEDTLS_AES_C
leothedragon 0:8f0bb79ddd48 83 #endif //MBEDTLS_AES_C
leothedragon 0:8f0bb79ddd48 84
leothedragon 0:8f0bb79ddd48 85 /* Disable some of the speed optimizations on AES code to save
leothedragon 0:8f0bb79ddd48 86 * ~6200 bytes of ROM. According to comments on the mbedtls PR 394,
leothedragon 0:8f0bb79ddd48 87 * the speed on Cortex M4 is not even reduced by this. */
leothedragon 0:8f0bb79ddd48 88 #ifndef MBEDTLS_AES_FEWER_TABLES
leothedragon 0:8f0bb79ddd48 89 #define MBEDTLS_AES_FEWER_TABLES
leothedragon 0:8f0bb79ddd48 90 #endif // MBEDTLS_AES_FEWER_TABLES
leothedragon 0:8f0bb79ddd48 91
leothedragon 0:8f0bb79ddd48 92 #ifndef MBEDTLS_ASN1_PARSE_C
leothedragon 0:8f0bb79ddd48 93 #define MBEDTLS_ASN1_PARSE_C
leothedragon 0:8f0bb79ddd48 94 #endif //MBEDTLS_ASN1_PARSE_C
leothedragon 0:8f0bb79ddd48 95
leothedragon 0:8f0bb79ddd48 96 #ifndef MBEDTLS_ASN1_WRITE_C
leothedragon 0:8f0bb79ddd48 97 #define MBEDTLS_ASN1_WRITE_C
leothedragon 0:8f0bb79ddd48 98 #endif //MBEDTLS_ASN1_WRITE_C
leothedragon 0:8f0bb79ddd48 99
leothedragon 0:8f0bb79ddd48 100 #ifndef MBEDTLS_BIGNUM_C
leothedragon 0:8f0bb79ddd48 101 #define MBEDTLS_BIGNUM_C
leothedragon 0:8f0bb79ddd48 102 #endif //MBEDTLS_BIGNUM_C
leothedragon 0:8f0bb79ddd48 103
leothedragon 0:8f0bb79ddd48 104 #ifndef MBEDTLS_CIPHER_C
leothedragon 0:8f0bb79ddd48 105 #define MBEDTLS_CIPHER_C
leothedragon 0:8f0bb79ddd48 106 #endif //MBEDTLS_CIPHER_C
leothedragon 0:8f0bb79ddd48 107
leothedragon 0:8f0bb79ddd48 108 #ifndef MBEDTLS_CTR_DRBG_C
leothedragon 0:8f0bb79ddd48 109 #define MBEDTLS_CTR_DRBG_C
leothedragon 0:8f0bb79ddd48 110 #endif //MBEDTLS_CTR_DRBG_C
leothedragon 0:8f0bb79ddd48 111
leothedragon 0:8f0bb79ddd48 112 #ifndef MBEDTLS_ECP_C
leothedragon 0:8f0bb79ddd48 113 #define MBEDTLS_ECP_C
leothedragon 0:8f0bb79ddd48 114 #endif //MBEDTLS_ECP_C
leothedragon 0:8f0bb79ddd48 115
leothedragon 0:8f0bb79ddd48 116 #ifndef MBEDTLS_ENTROPY_C
leothedragon 0:8f0bb79ddd48 117 #define MBEDTLS_ENTROPY_C
leothedragon 0:8f0bb79ddd48 118 #endif //MBEDTLS_ENTROPY_C
leothedragon 0:8f0bb79ddd48 119
leothedragon 0:8f0bb79ddd48 120 #ifndef MBEDTLS_MD_C
leothedragon 0:8f0bb79ddd48 121 #define MBEDTLS_MD_C
leothedragon 0:8f0bb79ddd48 122 #endif //MBEDTLS_MD_C
leothedragon 0:8f0bb79ddd48 123
leothedragon 0:8f0bb79ddd48 124 #ifndef MBEDTLS_OID_C
leothedragon 0:8f0bb79ddd48 125 #define MBEDTLS_OID_C
leothedragon 0:8f0bb79ddd48 126 #endif //MBEDTLS_OID_C
leothedragon 0:8f0bb79ddd48 127
leothedragon 0:8f0bb79ddd48 128 #ifndef MBEDTLS_PK_C
leothedragon 0:8f0bb79ddd48 129 #define MBEDTLS_PK_C
leothedragon 0:8f0bb79ddd48 130 #endif //MBEDTLS_PK_C
leothedragon 0:8f0bb79ddd48 131
leothedragon 0:8f0bb79ddd48 132 #ifndef MBEDTLS_PK_PARSE_C
leothedragon 0:8f0bb79ddd48 133 #define MBEDTLS_PK_PARSE_C
leothedragon 0:8f0bb79ddd48 134 #endif //MBEDTLS_PK_PARSE_C
leothedragon 0:8f0bb79ddd48 135
leothedragon 0:8f0bb79ddd48 136 #ifndef MBEDTLS_SHA256_C
leothedragon 0:8f0bb79ddd48 137 #define MBEDTLS_SHA256_C
leothedragon 0:8f0bb79ddd48 138 #endif //MBEDTLS_SHA256_C
leothedragon 0:8f0bb79ddd48 139
leothedragon 0:8f0bb79ddd48 140 // Disable the speed optimizations of SHA256, makes binary size smaller
leothedragon 0:8f0bb79ddd48 141 // on Cortex-M by 1800B with ARMCC5 and 1384B with GCC 6.3.
leothedragon 0:8f0bb79ddd48 142 #ifndef MBEDTLS_SHA256_SMALLER
leothedragon 0:8f0bb79ddd48 143 #define MBEDTLS_SHA256_SMALLER
leothedragon 0:8f0bb79ddd48 144 #endif // MBEDTLS_SHA256_SMALLER
leothedragon 0:8f0bb79ddd48 145
leothedragon 0:8f0bb79ddd48 146 #ifndef MBEDTLS_SSL_COOKIE_C
leothedragon 0:8f0bb79ddd48 147 #define MBEDTLS_SSL_COOKIE_C
leothedragon 0:8f0bb79ddd48 148 #endif //MBEDTLS_SSL_COOKIE_C
leothedragon 0:8f0bb79ddd48 149
leothedragon 0:8f0bb79ddd48 150 #ifndef MBEDTLS_SSL_CLI_C
leothedragon 0:8f0bb79ddd48 151 #define MBEDTLS_SSL_CLI_C
leothedragon 0:8f0bb79ddd48 152 #endif //MBEDTLS_SSL_CLI_C
leothedragon 0:8f0bb79ddd48 153
leothedragon 0:8f0bb79ddd48 154 #ifndef MBEDTLS_SSL_TLS_C
leothedragon 0:8f0bb79ddd48 155 #define MBEDTLS_SSL_TLS_C
leothedragon 0:8f0bb79ddd48 156 #endif //MBEDTLS_SSL_TLS_C
leothedragon 0:8f0bb79ddd48 157 // XXX mbedclient needs these: mbedtls_x509_crt_free, mbedtls_x509_crt_init, mbedtls_x509_crt_parse
leothedragon 0:8f0bb79ddd48 158 #ifndef MBEDTLS_X509_USE_C
leothedragon 0:8f0bb79ddd48 159 #define MBEDTLS_X509_USE_C
leothedragon 0:8f0bb79ddd48 160 #endif //MBEDTLS_X509_USE_C
leothedragon 0:8f0bb79ddd48 161
leothedragon 0:8f0bb79ddd48 162 #ifndef MBEDTLS_X509_CRT_PARSE_C
leothedragon 0:8f0bb79ddd48 163 #define MBEDTLS_X509_CRT_PARSE_C
leothedragon 0:8f0bb79ddd48 164 #endif //MBEDTLS_X509_CRT_PARSE_C
leothedragon 0:8f0bb79ddd48 165 // a bit wrong way to get mbedtls_ssl_conf_psk:
leothedragon 0:8f0bb79ddd48 166 #ifndef MBEDTLS_CMAC_C
leothedragon 0:8f0bb79ddd48 167 #define MBEDTLS_CMAC_C
leothedragon 0:8f0bb79ddd48 168 #endif //MBEDTLS_CMAC_C
leothedragon 0:8f0bb79ddd48 169
leothedragon 0:8f0bb79ddd48 170 #ifndef MBEDTLS_ECDH_C
leothedragon 0:8f0bb79ddd48 171 #define MBEDTLS_ECDH_C
leothedragon 0:8f0bb79ddd48 172 #endif //MBEDTLS_ECDH_C
leothedragon 0:8f0bb79ddd48 173
leothedragon 0:8f0bb79ddd48 174 #ifndef MBEDTLS_ECDSA_C
leothedragon 0:8f0bb79ddd48 175 #define MBEDTLS_ECDSA_C
leothedragon 0:8f0bb79ddd48 176 #endif //MBEDTLS_ECDSA_C
leothedragon 0:8f0bb79ddd48 177
leothedragon 0:8f0bb79ddd48 178 #ifndef MBEDTLS_GCM_C
leothedragon 0:8f0bb79ddd48 179 #define MBEDTLS_GCM_C
leothedragon 0:8f0bb79ddd48 180 #endif //MBEDTLS_GCM_C
leothedragon 0:8f0bb79ddd48 181
leothedragon 0:8f0bb79ddd48 182 #ifndef MBEDTLS_X509_CRT_PARSE_C
leothedragon 0:8f0bb79ddd48 183 #define MBEDTLS_X509_CRT_PARSE_C
leothedragon 0:8f0bb79ddd48 184 #endif //MBEDTLS_X509_CRT_PARSE_C
leothedragon 0:8f0bb79ddd48 185
leothedragon 0:8f0bb79ddd48 186 #ifndef MBEDTLS_X509_CSR_PARSE_C
leothedragon 0:8f0bb79ddd48 187 #define MBEDTLS_X509_CSR_PARSE_C
leothedragon 0:8f0bb79ddd48 188 #endif //MBEDTLS_X509_CSR_PARSE_C
leothedragon 0:8f0bb79ddd48 189
leothedragon 0:8f0bb79ddd48 190 #ifndef MBEDTLS_X509_CREATE_C
leothedragon 0:8f0bb79ddd48 191 #define MBEDTLS_X509_CREATE_C
leothedragon 0:8f0bb79ddd48 192 #endif //MBEDTLS_X509_CREATE_C
leothedragon 0:8f0bb79ddd48 193
leothedragon 0:8f0bb79ddd48 194 #ifndef MBEDTLS_X509_CSR_WRITE_C
leothedragon 0:8f0bb79ddd48 195 #define MBEDTLS_X509_CSR_WRITE_C
leothedragon 0:8f0bb79ddd48 196 #endif //MBEDTLS_X509_CSR_WRITE_C
leothedragon 0:8f0bb79ddd48 197
leothedragon 0:8f0bb79ddd48 198 #ifndef MBEDTLS_CTR_DRBG_MAX_REQUEST
leothedragon 0:8f0bb79ddd48 199 #define MBEDTLS_CTR_DRBG_MAX_REQUEST 2048
leothedragon 0:8f0bb79ddd48 200 #endif //MBEDTLS_CTR_DRBG_MAX_REQUEST
leothedragon 0:8f0bb79ddd48 201
leothedragon 0:8f0bb79ddd48 202 // Needed by update
leothedragon 0:8f0bb79ddd48 203 #ifndef MBEDTLS_CIPHER_MODE_CTR
leothedragon 0:8f0bb79ddd48 204 #define MBEDTLS_CIPHER_MODE_CTR
leothedragon 0:8f0bb79ddd48 205 #endif //MBEDTLS_CIPHER_MODE_CTR
leothedragon 0:8f0bb79ddd48 206
leothedragon 0:8f0bb79ddd48 207 // Save ROM and a few bytes of RAM by specifying our own ciphersuite list
leothedragon 0:8f0bb79ddd48 208 #ifndef MBEDTLS_SSL_CIPHERSUITES
leothedragon 0:8f0bb79ddd48 209 #define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8, \
leothedragon 0:8f0bb79ddd48 210 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, \
leothedragon 0:8f0bb79ddd48 211 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, \
leothedragon 0:8f0bb79ddd48 212 MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8, \
leothedragon 0:8f0bb79ddd48 213 MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8
leothedragon 0:8f0bb79ddd48 214 #endif //MBEDTLS_SSL_CIPHERSUITES
leothedragon 0:8f0bb79ddd48 215
leothedragon 0:8f0bb79ddd48 216 /*! All of the following definitions are optimizations (reduce mbedTLS memory usage and size),
leothedragon 0:8f0bb79ddd48 217 * changing them is on the user responsibility since they can enlarge
leothedragon 0:8f0bb79ddd48 218 * the binary footprint and the memory usage
leothedragon 0:8f0bb79ddd48 219 */
leothedragon 0:8f0bb79ddd48 220
leothedragon 0:8f0bb79ddd48 221 // define to save 8KB RAM at the expense of ROM
leothedragon 0:8f0bb79ddd48 222 #ifndef MBEDTLS_AES_ROM_TABLES
leothedragon 0:8f0bb79ddd48 223 #define MBEDTLS_AES_ROM_TABLES
leothedragon 0:8f0bb79ddd48 224 #endif //MBEDTLS_AES_ROM_TABLES
leothedragon 0:8f0bb79ddd48 225
leothedragon 0:8f0bb79ddd48 226 // Reduce IO buffer to save RAM, default is 16KB
leothedragon 0:8f0bb79ddd48 227 #ifndef MBEDTLS_SSL_MAX_CONTENT_LEN
leothedragon 0:8f0bb79ddd48 228 #define MBEDTLS_SSL_MAX_CONTENT_LEN 4096
leothedragon 0:8f0bb79ddd48 229 #endif //MBEDTLS_SSL_MAX_CONTENT_LEN
leothedragon 0:8f0bb79ddd48 230
leothedragon 0:8f0bb79ddd48 231 // needed for Base64 encoding Opaque data for
leothedragon 0:8f0bb79ddd48 232 // registration payload, adds 500 bytes to flash.
leothedragon 0:8f0bb79ddd48 233 #ifndef MBEDTLS_BASE64_C
leothedragon 0:8f0bb79ddd48 234 #define MBEDTLS_BASE64_C
leothedragon 0:8f0bb79ddd48 235 #endif // MBEDTLS_BASE64_C
leothedragon 0:8f0bb79ddd48 236
leothedragon 0:8f0bb79ddd48 237 /**
leothedragon 0:8f0bb79ddd48 238 * \def MBEDTLS_SSL_RENEGOTIATION
leothedragon 0:8f0bb79ddd48 239 *
leothedragon 0:8f0bb79ddd48 240 * Enable support for TLS renegotiation.
leothedragon 0:8f0bb79ddd48 241 *
leothedragon 0:8f0bb79ddd48 242 * The two main uses of renegotiation are (1) refresh keys on long-lived
leothedragon 0:8f0bb79ddd48 243 * connections and (2) client authentication after the initial handshake.
leothedragon 0:8f0bb79ddd48 244 * If you don't need renegotiation, it's probably better to disable it, since
leothedragon 0:8f0bb79ddd48 245 * it has been associated with security issues in the past and is easy to
leothedragon 0:8f0bb79ddd48 246 * misuse/misunderstand.
leothedragon 0:8f0bb79ddd48 247 *
leothedragon 0:8f0bb79ddd48 248 * Comment this to disable support for renegotiation.
leothedragon 0:8f0bb79ddd48 249 *
leothedragon 0:8f0bb79ddd48 250 * \note Even if this option is disabled, both client and server are aware
leothedragon 0:8f0bb79ddd48 251 * of the Renegotiation Indication Extension (RFC 5746) used to
leothedragon 0:8f0bb79ddd48 252 * prevent the SSL renegotiation attack (see RFC 5746 Sect. 1).
leothedragon 0:8f0bb79ddd48 253 * (See \c mbedtls_ssl_conf_legacy_renegotiation for the
leothedragon 0:8f0bb79ddd48 254 * configuration of this extension).
leothedragon 0:8f0bb79ddd48 255 *
leothedragon 0:8f0bb79ddd48 256 * \note This feature is required by Device Management Client for Client-side
leothedragon 0:8f0bb79ddd48 257 * certificate expiration verification. Disabling it will also require
leothedragon 0:8f0bb79ddd48 258 * setting PAL_USE_SECURE_TIME to 0.
leothedragon 0:8f0bb79ddd48 259 *
leothedragon 0:8f0bb79ddd48 260 */
leothedragon 0:8f0bb79ddd48 261 #define MBEDTLS_SSL_RENEGOTIATION
leothedragon 0:8f0bb79ddd48 262
leothedragon 0:8f0bb79ddd48 263 // Needed by provisioning
leothedragon 0:8f0bb79ddd48 264 #undef MBEDTLS_PEM_WRITE_C
leothedragon 0:8f0bb79ddd48 265
leothedragon 0:8f0bb79ddd48 266 // Remove RSA, save 20KB at total
leothedragon 0:8f0bb79ddd48 267 #if !MBED_CONF_MBED_CLIENT_PAL_RSA_REQUIRED
leothedragon 0:8f0bb79ddd48 268 #undef MBEDTLS_RSA_C
leothedragon 0:8f0bb79ddd48 269 #undef MBEDTLS_PK_RSA_ALT_SUPPORT
leothedragon 0:8f0bb79ddd48 270 #undef MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
leothedragon 0:8f0bb79ddd48 271 #undef MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
leothedragon 0:8f0bb79ddd48 272 #undef MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
leothedragon 0:8f0bb79ddd48 273 #endif // MBED_CONF_MBED_CLIENT_PAL_RSA_REQUIRED
leothedragon 0:8f0bb79ddd48 274
leothedragon 0:8f0bb79ddd48 275 // Remove error messages, save 10KB of ROM
leothedragon 0:8f0bb79ddd48 276 #undef MBEDTLS_ERROR_C
leothedragon 0:8f0bb79ddd48 277
leothedragon 0:8f0bb79ddd48 278 // Remove selftesting and save 11KB of ROM
leothedragon 0:8f0bb79ddd48 279 #undef MBEDTLS_SELF_TEST
leothedragon 0:8f0bb79ddd48 280
leothedragon 0:8f0bb79ddd48 281 #undef MBEDTLS_CERTS_C
leothedragon 0:8f0bb79ddd48 282
leothedragon 0:8f0bb79ddd48 283 // Reduces ROM size by 30 kB
leothedragon 0:8f0bb79ddd48 284 #undef MBEDTLS_ERROR_STRERROR_DUMMY
leothedragon 0:8f0bb79ddd48 285
leothedragon 0:8f0bb79ddd48 286 #undef MBEDTLS_VERSION_FEATURES
leothedragon 0:8f0bb79ddd48 287
leothedragon 0:8f0bb79ddd48 288 #undef MBEDTLS_DEBUG_C
leothedragon 0:8f0bb79ddd48 289
leothedragon 0:8f0bb79ddd48 290 // needed for parsing the certificates
leothedragon 0:8f0bb79ddd48 291 #undef MBEDTLS_PEM_PARSE_C
leothedragon 0:8f0bb79ddd48 292
leothedragon 0:8f0bb79ddd48 293 #undef MBEDTLS_SHA512_C
leothedragon 0:8f0bb79ddd48 294
leothedragon 0:8f0bb79ddd48 295 #undef MBEDTLS_SSL_SRV_C
leothedragon 0:8f0bb79ddd48 296
leothedragon 0:8f0bb79ddd48 297 #undef MBEDTLS_ECP_DP_SECP192R1_ENABLED
leothedragon 0:8f0bb79ddd48 298 #undef MBEDTLS_ECP_DP_SECP224R1_ENABLED
leothedragon 0:8f0bb79ddd48 299 #undef MBEDTLS_ECP_DP_SECP384R1_ENABLED
leothedragon 0:8f0bb79ddd48 300 #undef MBEDTLS_ECP_DP_SECP521R1_ENABLED
leothedragon 0:8f0bb79ddd48 301 #undef MBEDTLS_ECP_DP_SECP192K1_ENABLED
leothedragon 0:8f0bb79ddd48 302 #undef MBEDTLS_ECP_DP_SECP224K1_ENABLED
leothedragon 0:8f0bb79ddd48 303 #undef MBEDTLS_ECP_DP_SECP256K1_ENABLED
leothedragon 0:8f0bb79ddd48 304 #undef MBEDTLS_ECP_DP_BP256R1_ENABLED
leothedragon 0:8f0bb79ddd48 305 #undef MBEDTLS_ECP_DP_BP384R1_ENABLED
leothedragon 0:8f0bb79ddd48 306 #undef MBEDTLS_ECP_DP_BP512R1_ENABLED
leothedragon 0:8f0bb79ddd48 307 #undef MBEDTLS_ECP_DP_CURVE25519_ENABLED
leothedragon 0:8f0bb79ddd48 308
leothedragon 0:8f0bb79ddd48 309 // Reduces size particularly in case PSA crypto is used
leothedragon 0:8f0bb79ddd48 310 #undef MBEDTLS_CHACHA20_C
leothedragon 0:8f0bb79ddd48 311 #undef MBEDTLS_CHACHAPOLY_C
leothedragon 0:8f0bb79ddd48 312 #undef MBEDTLS_POLY1305_C
leothedragon 0:8f0bb79ddd48 313
leothedragon 0:8f0bb79ddd48 314 #include "mbedtls/check_config.h"
leothedragon 0:8f0bb79ddd48 315
leothedragon 0:8f0bb79ddd48 316 #endif /* PAL_MBEDTLS_USER_CONFIG_H */