Austin Blackstone / Mbed 2 deprecated client-lwip-lightswitch-demo-expanded

mbed client lightswitch demo

Dependencies:   mbed Socket lwip-eth lwip-sys lwip

Fork of mbed-client-classic-example-lwip by Austin Blackstone

mbedtls/mbedtls/config.h@11:cada08fc8a70, 2016-06-09 (annotated)

Committer:
mbedAustin
Date:
Thu Jun 09 17:08:36 2016 +0000
Revision:
11:cada08fc8a70
Commit for public Consumption

Who changed what in which revision?

UserRevisionLine numberNew contents of line
mbedAustin 11:cada08fc8a70 1 /**
mbedAustin 11:cada08fc8a70 2 * \file config.h
mbedAustin 11:cada08fc8a70 3 *
mbedAustin 11:cada08fc8a70 4 * \brief Configuration options (set of defines)
mbedAustin 11:cada08fc8a70 5 *
mbedAustin 11:cada08fc8a70 6 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
mbedAustin 11:cada08fc8a70 7 * SPDX-License-Identifier: Apache-2.0
mbedAustin 11:cada08fc8a70 8 *
mbedAustin 11:cada08fc8a70 9 * Licensed under the Apache License, Version 2.0 (the "License"); you may
mbedAustin 11:cada08fc8a70 10 * not use this file except in compliance with the License.
mbedAustin 11:cada08fc8a70 11 * You may obtain a copy of the License at
mbedAustin 11:cada08fc8a70 12 *
mbedAustin 11:cada08fc8a70 13 * http://www.apache.org/licenses/LICENSE-2.0
mbedAustin 11:cada08fc8a70 14 *
mbedAustin 11:cada08fc8a70 15 * Unless required by applicable law or agreed to in writing, software
mbedAustin 11:cada08fc8a70 16 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
mbedAustin 11:cada08fc8a70 17 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
mbedAustin 11:cada08fc8a70 18 * See the License for the specific language governing permissions and
mbedAustin 11:cada08fc8a70 19 * limitations under the License.
mbedAustin 11:cada08fc8a70 20 *
mbedAustin 11:cada08fc8a70 21 * This file is part of mbed TLS (https://tls.mbed.org)
mbedAustin 11:cada08fc8a70 22 */
mbedAustin 11:cada08fc8a70 23
mbedAustin 11:cada08fc8a70 24 /*
mbedAustin 11:cada08fc8a70 25 * This set of compile-time options may be used to enable
mbedAustin 11:cada08fc8a70 26 * or disable features selectively, and reduce the global
mbedAustin 11:cada08fc8a70 27 * memory footprint.
mbedAustin 11:cada08fc8a70 28 */
mbedAustin 11:cada08fc8a70 29 #ifndef MBEDTLS_CONFIG_H
mbedAustin 11:cada08fc8a70 30 #define MBEDTLS_CONFIG_H
mbedAustin 11:cada08fc8a70 31
mbedAustin 11:cada08fc8a70 32 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
mbedAustin 11:cada08fc8a70 33 #define _CRT_SECURE_NO_DEPRECATE 1
mbedAustin 11:cada08fc8a70 34 #endif
mbedAustin 11:cada08fc8a70 35
mbedAustin 11:cada08fc8a70 36 /**
mbedAustin 11:cada08fc8a70 37 * \name SECTION: System support
mbedAustin 11:cada08fc8a70 38 *
mbedAustin 11:cada08fc8a70 39 * This section sets system specific settings.
mbedAustin 11:cada08fc8a70 40 * \{
mbedAustin 11:cada08fc8a70 41 */
mbedAustin 11:cada08fc8a70 42
mbedAustin 11:cada08fc8a70 43 /**
mbedAustin 11:cada08fc8a70 44 * \def MBEDTLS_HAVE_ASM
mbedAustin 11:cada08fc8a70 45 *
mbedAustin 11:cada08fc8a70 46 * The compiler has support for asm().
mbedAustin 11:cada08fc8a70 47 *
mbedAustin 11:cada08fc8a70 48 * Requires support for asm() in compiler.
mbedAustin 11:cada08fc8a70 49 *
mbedAustin 11:cada08fc8a70 50 * Used in:
mbedAustin 11:cada08fc8a70 51 * library/timing.c
mbedAustin 11:cada08fc8a70 52 * library/padlock.c
mbedAustin 11:cada08fc8a70 53 * include/mbedtls/bn_mul.h
mbedAustin 11:cada08fc8a70 54 *
mbedAustin 11:cada08fc8a70 55 * Comment to disable the use of assembly code.
mbedAustin 11:cada08fc8a70 56 */
mbedAustin 11:cada08fc8a70 57 #define MBEDTLS_HAVE_ASM
mbedAustin 11:cada08fc8a70 58
mbedAustin 11:cada08fc8a70 59 /**
mbedAustin 11:cada08fc8a70 60 * \def MBEDTLS_HAVE_SSE2
mbedAustin 11:cada08fc8a70 61 *
mbedAustin 11:cada08fc8a70 62 * CPU supports SSE2 instruction set.
mbedAustin 11:cada08fc8a70 63 *
mbedAustin 11:cada08fc8a70 64 * Uncomment if the CPU supports SSE2 (IA-32 specific).
mbedAustin 11:cada08fc8a70 65 */
mbedAustin 11:cada08fc8a70 66 //#define MBEDTLS_HAVE_SSE2
mbedAustin 11:cada08fc8a70 67
mbedAustin 11:cada08fc8a70 68 /**
mbedAustin 11:cada08fc8a70 69 * \def MBEDTLS_HAVE_TIME
mbedAustin 11:cada08fc8a70 70 *
mbedAustin 11:cada08fc8a70 71 * System has time.h and time().
mbedAustin 11:cada08fc8a70 72 * The time does not need to be correct, only time differences are used,
mbedAustin 11:cada08fc8a70 73 * by contrast with MBEDTLS_HAVE_TIME_DATE
mbedAustin 11:cada08fc8a70 74 *
mbedAustin 11:cada08fc8a70 75 * Comment if your system does not support time functions
mbedAustin 11:cada08fc8a70 76 */
mbedAustin 11:cada08fc8a70 77 #define MBEDTLS_HAVE_TIME
mbedAustin 11:cada08fc8a70 78
mbedAustin 11:cada08fc8a70 79 /**
mbedAustin 11:cada08fc8a70 80 * \def MBEDTLS_HAVE_TIME_DATE
mbedAustin 11:cada08fc8a70 81 *
mbedAustin 11:cada08fc8a70 82 * System has time.h and time(), gmtime() and the clock is correct.
mbedAustin 11:cada08fc8a70 83 * The time needs to be correct (not necesarily very accurate, but at least
mbedAustin 11:cada08fc8a70 84 * the date should be correct). This is used to verify the validity period of
mbedAustin 11:cada08fc8a70 85 * X.509 certificates.
mbedAustin 11:cada08fc8a70 86 *
mbedAustin 11:cada08fc8a70 87 * Comment if your system does not have a correct clock.
mbedAustin 11:cada08fc8a70 88 */
mbedAustin 11:cada08fc8a70 89 #define MBEDTLS_HAVE_TIME_DATE
mbedAustin 11:cada08fc8a70 90
mbedAustin 11:cada08fc8a70 91 /**
mbedAustin 11:cada08fc8a70 92 * \def MBEDTLS_PLATFORM_MEMORY
mbedAustin 11:cada08fc8a70 93 *
mbedAustin 11:cada08fc8a70 94 * Enable the memory allocation layer.
mbedAustin 11:cada08fc8a70 95 *
mbedAustin 11:cada08fc8a70 96 * By default mbed TLS uses the system-provided calloc() and free().
mbedAustin 11:cada08fc8a70 97 * This allows different allocators (self-implemented or provided) to be
mbedAustin 11:cada08fc8a70 98 * provided to the platform abstraction layer.
mbedAustin 11:cada08fc8a70 99 *
mbedAustin 11:cada08fc8a70 100 * Enabling MBEDTLS_PLATFORM_MEMORY without the
mbedAustin 11:cada08fc8a70 101 * MBEDTLS_PLATFORM_{FREE,CALLOC}_MACROs will provide
mbedAustin 11:cada08fc8a70 102 * "mbedtls_platform_set_calloc_free()" allowing you to set an alternative calloc() and
mbedAustin 11:cada08fc8a70 103 * free() function pointer at runtime.
mbedAustin 11:cada08fc8a70 104 *
mbedAustin 11:cada08fc8a70 105 * Enabling MBEDTLS_PLATFORM_MEMORY and specifying
mbedAustin 11:cada08fc8a70 106 * MBEDTLS_PLATFORM_{CALLOC,FREE}_MACROs will allow you to specify the
mbedAustin 11:cada08fc8a70 107 * alternate function at compile time.
mbedAustin 11:cada08fc8a70 108 *
mbedAustin 11:cada08fc8a70 109 * Requires: MBEDTLS_PLATFORM_C
mbedAustin 11:cada08fc8a70 110 *
mbedAustin 11:cada08fc8a70 111 * Enable this layer to allow use of alternative memory allocators.
mbedAustin 11:cada08fc8a70 112 */
mbedAustin 11:cada08fc8a70 113 //#define MBEDTLS_PLATFORM_MEMORY
mbedAustin 11:cada08fc8a70 114
mbedAustin 11:cada08fc8a70 115 /**
mbedAustin 11:cada08fc8a70 116 * \def MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
mbedAustin 11:cada08fc8a70 117 *
mbedAustin 11:cada08fc8a70 118 * Do not assign standard functions in the platform layer (e.g. calloc() to
mbedAustin 11:cada08fc8a70 119 * MBEDTLS_PLATFORM_STD_CALLOC and printf() to MBEDTLS_PLATFORM_STD_PRINTF)
mbedAustin 11:cada08fc8a70 120 *
mbedAustin 11:cada08fc8a70 121 * This makes sure there are no linking errors on platforms that do not support
mbedAustin 11:cada08fc8a70 122 * these functions. You will HAVE to provide alternatives, either at runtime
mbedAustin 11:cada08fc8a70 123 * via the platform_set_xxx() functions or at compile time by setting
mbedAustin 11:cada08fc8a70 124 * the MBEDTLS_PLATFORM_STD_XXX defines, or enabling a
mbedAustin 11:cada08fc8a70 125 * MBEDTLS_PLATFORM_XXX_MACRO.
mbedAustin 11:cada08fc8a70 126 *
mbedAustin 11:cada08fc8a70 127 * Requires: MBEDTLS_PLATFORM_C
mbedAustin 11:cada08fc8a70 128 *
mbedAustin 11:cada08fc8a70 129 * Uncomment to prevent default assignment of standard functions in the
mbedAustin 11:cada08fc8a70 130 * platform layer.
mbedAustin 11:cada08fc8a70 131 */
mbedAustin 11:cada08fc8a70 132 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
mbedAustin 11:cada08fc8a70 133
mbedAustin 11:cada08fc8a70 134 /**
mbedAustin 11:cada08fc8a70 135 * \def MBEDTLS_PLATFORM_XXX_ALT
mbedAustin 11:cada08fc8a70 136 *
mbedAustin 11:cada08fc8a70 137 * Uncomment a macro to let mbed TLS support the function in the platform
mbedAustin 11:cada08fc8a70 138 * abstraction layer.
mbedAustin 11:cada08fc8a70 139 *
mbedAustin 11:cada08fc8a70 140 * Example: In case you uncomment MBEDTLS_PLATFORM_PRINTF_ALT, mbed TLS will
mbedAustin 11:cada08fc8a70 141 * provide a function "mbedtls_platform_set_printf()" that allows you to set an
mbedAustin 11:cada08fc8a70 142 * alternative printf function pointer.
mbedAustin 11:cada08fc8a70 143 *
mbedAustin 11:cada08fc8a70 144 * All these define require MBEDTLS_PLATFORM_C to be defined!
mbedAustin 11:cada08fc8a70 145 *
mbedAustin 11:cada08fc8a70 146 * \note MBEDTLS_PLATFORM_SNPRINTF_ALT is required on Windows;
mbedAustin 11:cada08fc8a70 147 * it will be enabled automatically by check_config.h
mbedAustin 11:cada08fc8a70 148 *
mbedAustin 11:cada08fc8a70 149 * \warning MBEDTLS_PLATFORM_XXX_ALT cannot be defined at the same time as
mbedAustin 11:cada08fc8a70 150 * MBEDTLS_PLATFORM_XXX_MACRO!
mbedAustin 11:cada08fc8a70 151 *
mbedAustin 11:cada08fc8a70 152 * Uncomment a macro to enable alternate implementation of specific base
mbedAustin 11:cada08fc8a70 153 * platform function
mbedAustin 11:cada08fc8a70 154 */
mbedAustin 11:cada08fc8a70 155 //#define MBEDTLS_PLATFORM_EXIT_ALT
mbedAustin 11:cada08fc8a70 156 //#define MBEDTLS_PLATFORM_FPRINTF_ALT
mbedAustin 11:cada08fc8a70 157 //#define MBEDTLS_PLATFORM_PRINTF_ALT
mbedAustin 11:cada08fc8a70 158 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT
mbedAustin 11:cada08fc8a70 159
mbedAustin 11:cada08fc8a70 160 /**
mbedAustin 11:cada08fc8a70 161 * \def MBEDTLS_DEPRECATED_WARNING
mbedAustin 11:cada08fc8a70 162 *
mbedAustin 11:cada08fc8a70 163 * Mark deprecated functions so that they generate a warning if used.
mbedAustin 11:cada08fc8a70 164 * Functions deprecated in one version will usually be removed in the next
mbedAustin 11:cada08fc8a70 165 * version. You can enable this to help you prepare the transition to a new
mbedAustin 11:cada08fc8a70 166 * major version by making sure your code is not using these functions.
mbedAustin 11:cada08fc8a70 167 *
mbedAustin 11:cada08fc8a70 168 * This only works with GCC and Clang. With other compilers, you may want to
mbedAustin 11:cada08fc8a70 169 * use MBEDTLS_DEPRECATED_REMOVED
mbedAustin 11:cada08fc8a70 170 *
mbedAustin 11:cada08fc8a70 171 * Uncomment to get warnings on using deprecated functions.
mbedAustin 11:cada08fc8a70 172 */
mbedAustin 11:cada08fc8a70 173 //#define MBEDTLS_DEPRECATED_WARNING
mbedAustin 11:cada08fc8a70 174
mbedAustin 11:cada08fc8a70 175 /**
mbedAustin 11:cada08fc8a70 176 * \def MBEDTLS_DEPRECATED_REMOVED
mbedAustin 11:cada08fc8a70 177 *
mbedAustin 11:cada08fc8a70 178 * Remove deprecated functions so that they generate an error if used.
mbedAustin 11:cada08fc8a70 179 * Functions deprecated in one version will usually be removed in the next
mbedAustin 11:cada08fc8a70 180 * version. You can enable this to help you prepare the transition to a new
mbedAustin 11:cada08fc8a70 181 * major version by making sure your code is not using these functions.
mbedAustin 11:cada08fc8a70 182 *
mbedAustin 11:cada08fc8a70 183 * Uncomment to get errors on using deprecated functions.
mbedAustin 11:cada08fc8a70 184 */
mbedAustin 11:cada08fc8a70 185 //#define MBEDTLS_DEPRECATED_REMOVED
mbedAustin 11:cada08fc8a70 186
mbedAustin 11:cada08fc8a70 187 /* \} name SECTION: System support */
mbedAustin 11:cada08fc8a70 188
mbedAustin 11:cada08fc8a70 189 /**
mbedAustin 11:cada08fc8a70 190 * \name SECTION: mbed TLS feature support
mbedAustin 11:cada08fc8a70 191 *
mbedAustin 11:cada08fc8a70 192 * This section sets support for features that are or are not needed
mbedAustin 11:cada08fc8a70 193 * within the modules that are enabled.
mbedAustin 11:cada08fc8a70 194 * \{
mbedAustin 11:cada08fc8a70 195 */
mbedAustin 11:cada08fc8a70 196
mbedAustin 11:cada08fc8a70 197 /**
mbedAustin 11:cada08fc8a70 198 * \def MBEDTLS_TIMING_ALT
mbedAustin 11:cada08fc8a70 199 *
mbedAustin 11:cada08fc8a70 200 * Uncomment to provide your own alternate implementation for mbedtls_timing_hardclock(),
mbedAustin 11:cada08fc8a70 201 * mbedtls_timing_get_timer(), mbedtls_set_alarm(), mbedtls_set/get_delay()
mbedAustin 11:cada08fc8a70 202 *
mbedAustin 11:cada08fc8a70 203 * Only works if you have MBEDTLS_TIMING_C enabled.
mbedAustin 11:cada08fc8a70 204 *
mbedAustin 11:cada08fc8a70 205 * You will need to provide a header "timing_alt.h" and an implementation at
mbedAustin 11:cada08fc8a70 206 * compile time.
mbedAustin 11:cada08fc8a70 207 */
mbedAustin 11:cada08fc8a70 208 //#define MBEDTLS_TIMING_ALT
mbedAustin 11:cada08fc8a70 209
mbedAustin 11:cada08fc8a70 210 /**
mbedAustin 11:cada08fc8a70 211 * \def MBEDTLS__MODULE_NAME__ALT
mbedAustin 11:cada08fc8a70 212 *
mbedAustin 11:cada08fc8a70 213 * Uncomment a macro to let mbed TLS use your alternate core implementation of
mbedAustin 11:cada08fc8a70 214 * a symmetric crypto or hash module (e.g. platform specific assembly
mbedAustin 11:cada08fc8a70 215 * optimized implementations). Keep in mind that the function prototypes
mbedAustin 11:cada08fc8a70 216 * should remain the same.
mbedAustin 11:cada08fc8a70 217 *
mbedAustin 11:cada08fc8a70 218 * This replaces the whole module. If you only want to replace one of the
mbedAustin 11:cada08fc8a70 219 * functions, use one of the MBEDTLS__FUNCTION_NAME__ALT flags.
mbedAustin 11:cada08fc8a70 220 *
mbedAustin 11:cada08fc8a70 221 * Example: In case you uncomment MBEDTLS_AES_ALT, mbed TLS will no longer
mbedAustin 11:cada08fc8a70 222 * provide the "struct mbedtls_aes_context" definition and omit the base function
mbedAustin 11:cada08fc8a70 223 * declarations and implementations. "aes_alt.h" will be included from
mbedAustin 11:cada08fc8a70 224 * "aes.h" to include the new function definitions.
mbedAustin 11:cada08fc8a70 225 *
mbedAustin 11:cada08fc8a70 226 * Uncomment a macro to enable alternate implementation of the corresponding
mbedAustin 11:cada08fc8a70 227 * module.
mbedAustin 11:cada08fc8a70 228 */
mbedAustin 11:cada08fc8a70 229 //#define MBEDTLS_AES_ALT
mbedAustin 11:cada08fc8a70 230 //#define MBEDTLS_ARC4_ALT
mbedAustin 11:cada08fc8a70 231 //#define MBEDTLS_BLOWFISH_ALT
mbedAustin 11:cada08fc8a70 232 //#define MBEDTLS_CAMELLIA_ALT
mbedAustin 11:cada08fc8a70 233 //#define MBEDTLS_DES_ALT
mbedAustin 11:cada08fc8a70 234 //#define MBEDTLS_XTEA_ALT
mbedAustin 11:cada08fc8a70 235 //#define MBEDTLS_MD2_ALT
mbedAustin 11:cada08fc8a70 236 //#define MBEDTLS_MD4_ALT
mbedAustin 11:cada08fc8a70 237 //#define MBEDTLS_MD5_ALT
mbedAustin 11:cada08fc8a70 238 //#define MBEDTLS_RIPEMD160_ALT
mbedAustin 11:cada08fc8a70 239 //#define MBEDTLS_SHA1_ALT
mbedAustin 11:cada08fc8a70 240 //#define MBEDTLS_SHA256_ALT
mbedAustin 11:cada08fc8a70 241 //#define MBEDTLS_SHA512_ALT
mbedAustin 11:cada08fc8a70 242
mbedAustin 11:cada08fc8a70 243 /**
mbedAustin 11:cada08fc8a70 244 * \def MBEDTLS__FUNCTION_NAME__ALT
mbedAustin 11:cada08fc8a70 245 *
mbedAustin 11:cada08fc8a70 246 * Uncomment a macro to let mbed TLS use you alternate core implementation of
mbedAustin 11:cada08fc8a70 247 * symmetric crypto or hash function. Keep in mind that function prototypes
mbedAustin 11:cada08fc8a70 248 * should remain the same.
mbedAustin 11:cada08fc8a70 249 *
mbedAustin 11:cada08fc8a70 250 * This replaces only one function. The header file from mbed TLS is still
mbedAustin 11:cada08fc8a70 251 * used, in contrast to the MBEDTLS__MODULE_NAME__ALT flags.
mbedAustin 11:cada08fc8a70 252 *
mbedAustin 11:cada08fc8a70 253 * Example: In case you uncomment MBEDTLS_SHA256_PROCESS_ALT, mbed TLS will
mbedAustin 11:cada08fc8a70 254 * no longer provide the mbedtls_sha1_process() function, but it will still provide
mbedAustin 11:cada08fc8a70 255 * the other function (using your mbedtls_sha1_process() function) and the definition
mbedAustin 11:cada08fc8a70 256 * of mbedtls_sha1_context, so your implementation of mbedtls_sha1_process must be compatible
mbedAustin 11:cada08fc8a70 257 * with this definition.
mbedAustin 11:cada08fc8a70 258 *
mbedAustin 11:cada08fc8a70 259 * Note: if you use the AES_xxx_ALT macros, then is is recommended to also set
mbedAustin 11:cada08fc8a70 260 * MBEDTLS_AES_ROM_TABLES in order to help the linker garbage-collect the AES
mbedAustin 11:cada08fc8a70 261 * tables.
mbedAustin 11:cada08fc8a70 262 *
mbedAustin 11:cada08fc8a70 263 * Uncomment a macro to enable alternate implementation of the corresponding
mbedAustin 11:cada08fc8a70 264 * function.
mbedAustin 11:cada08fc8a70 265 */
mbedAustin 11:cada08fc8a70 266 //#define MBEDTLS_MD2_PROCESS_ALT
mbedAustin 11:cada08fc8a70 267 //#define MBEDTLS_MD4_PROCESS_ALT
mbedAustin 11:cada08fc8a70 268 //#define MBEDTLS_MD5_PROCESS_ALT
mbedAustin 11:cada08fc8a70 269 //#define MBEDTLS_RIPEMD160_PROCESS_ALT
mbedAustin 11:cada08fc8a70 270 //#define MBEDTLS_SHA1_PROCESS_ALT
mbedAustin 11:cada08fc8a70 271 //#define MBEDTLS_SHA256_PROCESS_ALT
mbedAustin 11:cada08fc8a70 272 //#define MBEDTLS_SHA512_PROCESS_ALT
mbedAustin 11:cada08fc8a70 273 //#define MBEDTLS_DES_SETKEY_ALT
mbedAustin 11:cada08fc8a70 274 //#define MBEDTLS_DES_CRYPT_ECB_ALT
mbedAustin 11:cada08fc8a70 275 //#define MBEDTLS_DES3_CRYPT_ECB_ALT
mbedAustin 11:cada08fc8a70 276 //#define MBEDTLS_AES_SETKEY_ENC_ALT
mbedAustin 11:cada08fc8a70 277 //#define MBEDTLS_AES_SETKEY_DEC_ALT
mbedAustin 11:cada08fc8a70 278 //#define MBEDTLS_AES_ENCRYPT_ALT
mbedAustin 11:cada08fc8a70 279 //#define MBEDTLS_AES_DECRYPT_ALT
mbedAustin 11:cada08fc8a70 280
mbedAustin 11:cada08fc8a70 281 /**
mbedAustin 11:cada08fc8a70 282 * \def MBEDTLS_ENTROPY_HARDWARE_ALT
mbedAustin 11:cada08fc8a70 283 *
mbedAustin 11:cada08fc8a70 284 * Uncomment this macro to let mbed TLS use your own implementation of a
mbedAustin 11:cada08fc8a70 285 * hardware entropy collector.
mbedAustin 11:cada08fc8a70 286 *
mbedAustin 11:cada08fc8a70 287 * Your function must be called \c mbedtls_hardware_poll(), have the same
mbedAustin 11:cada08fc8a70 288 * prototype as declared in entropy_poll.h, and accept NULL as first argument.
mbedAustin 11:cada08fc8a70 289 *
mbedAustin 11:cada08fc8a70 290 * Uncomment to use your own hardware entropy collector.
mbedAustin 11:cada08fc8a70 291 */
mbedAustin 11:cada08fc8a70 292 //#define MBEDTLS_ENTROPY_HARDWARE_ALT
mbedAustin 11:cada08fc8a70 293
mbedAustin 11:cada08fc8a70 294 /**
mbedAustin 11:cada08fc8a70 295 * \def MBEDTLS_AES_ROM_TABLES
mbedAustin 11:cada08fc8a70 296 *
mbedAustin 11:cada08fc8a70 297 * Store the AES tables in ROM.
mbedAustin 11:cada08fc8a70 298 *
mbedAustin 11:cada08fc8a70 299 * Uncomment this macro to store the AES tables in ROM.
mbedAustin 11:cada08fc8a70 300 */
mbedAustin 11:cada08fc8a70 301 //#define MBEDTLS_AES_ROM_TABLES
mbedAustin 11:cada08fc8a70 302
mbedAustin 11:cada08fc8a70 303 /**
mbedAustin 11:cada08fc8a70 304 * \def MBEDTLS_CAMELLIA_SMALL_MEMORY
mbedAustin 11:cada08fc8a70 305 *
mbedAustin 11:cada08fc8a70 306 * Use less ROM for the Camellia implementation (saves about 768 bytes).
mbedAustin 11:cada08fc8a70 307 *
mbedAustin 11:cada08fc8a70 308 * Uncomment this macro to use less memory for Camellia.
mbedAustin 11:cada08fc8a70 309 */
mbedAustin 11:cada08fc8a70 310 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY
mbedAustin 11:cada08fc8a70 311
mbedAustin 11:cada08fc8a70 312 /**
mbedAustin 11:cada08fc8a70 313 * \def MBEDTLS_CIPHER_MODE_CBC
mbedAustin 11:cada08fc8a70 314 *
mbedAustin 11:cada08fc8a70 315 * Enable Cipher Block Chaining mode (CBC) for symmetric ciphers.
mbedAustin 11:cada08fc8a70 316 */
mbedAustin 11:cada08fc8a70 317 #define MBEDTLS_CIPHER_MODE_CBC
mbedAustin 11:cada08fc8a70 318
mbedAustin 11:cada08fc8a70 319 /**
mbedAustin 11:cada08fc8a70 320 * \def MBEDTLS_CIPHER_MODE_CFB
mbedAustin 11:cada08fc8a70 321 *
mbedAustin 11:cada08fc8a70 322 * Enable Cipher Feedback mode (CFB) for symmetric ciphers.
mbedAustin 11:cada08fc8a70 323 */
mbedAustin 11:cada08fc8a70 324 //#define MBEDTLS_CIPHER_MODE_CFB
mbedAustin 11:cada08fc8a70 325
mbedAustin 11:cada08fc8a70 326 /**
mbedAustin 11:cada08fc8a70 327 * \def MBEDTLS_CIPHER_MODE_CTR
mbedAustin 11:cada08fc8a70 328 *
mbedAustin 11:cada08fc8a70 329 * Enable Counter Block Cipher mode (CTR) for symmetric ciphers.
mbedAustin 11:cada08fc8a70 330 */
mbedAustin 11:cada08fc8a70 331 //#define MBEDTLS_CIPHER_MODE_CTR
mbedAustin 11:cada08fc8a70 332
mbedAustin 11:cada08fc8a70 333 /**
mbedAustin 11:cada08fc8a70 334 * \def MBEDTLS_CIPHER_NULL_CIPHER
mbedAustin 11:cada08fc8a70 335 *
mbedAustin 11:cada08fc8a70 336 * Enable NULL cipher.
mbedAustin 11:cada08fc8a70 337 * Warning: Only do so when you know what you are doing. This allows for
mbedAustin 11:cada08fc8a70 338 * encryption or channels without any security!
mbedAustin 11:cada08fc8a70 339 *
mbedAustin 11:cada08fc8a70 340 * Requires MBEDTLS_ENABLE_WEAK_CIPHERSUITES as well to enable
mbedAustin 11:cada08fc8a70 341 * the following ciphersuites:
mbedAustin 11:cada08fc8a70 342 * MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 343 * MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 344 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 345 * MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 346 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384
mbedAustin 11:cada08fc8a70 347 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256
mbedAustin 11:cada08fc8a70 348 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 349 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384
mbedAustin 11:cada08fc8a70 350 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256
mbedAustin 11:cada08fc8a70 351 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 352 * MBEDTLS_TLS_RSA_WITH_NULL_SHA256
mbedAustin 11:cada08fc8a70 353 * MBEDTLS_TLS_RSA_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 354 * MBEDTLS_TLS_RSA_WITH_NULL_MD5
mbedAustin 11:cada08fc8a70 355 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384
mbedAustin 11:cada08fc8a70 356 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256
mbedAustin 11:cada08fc8a70 357 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 358 * MBEDTLS_TLS_PSK_WITH_NULL_SHA384
mbedAustin 11:cada08fc8a70 359 * MBEDTLS_TLS_PSK_WITH_NULL_SHA256
mbedAustin 11:cada08fc8a70 360 * MBEDTLS_TLS_PSK_WITH_NULL_SHA
mbedAustin 11:cada08fc8a70 361 *
mbedAustin 11:cada08fc8a70 362 * Uncomment this macro to enable the NULL cipher and ciphersuites
mbedAustin 11:cada08fc8a70 363 */
mbedAustin 11:cada08fc8a70 364 //#define MBEDTLS_CIPHER_NULL_CIPHER
mbedAustin 11:cada08fc8a70 365
mbedAustin 11:cada08fc8a70 366 /**
mbedAustin 11:cada08fc8a70 367 * \def MBEDTLS_CIPHER_PADDING_XXX
mbedAustin 11:cada08fc8a70 368 *
mbedAustin 11:cada08fc8a70 369 * Uncomment or comment macros to add support for specific padding modes
mbedAustin 11:cada08fc8a70 370 * in the cipher layer with cipher modes that support padding (e.g. CBC)
mbedAustin 11:cada08fc8a70 371 *
mbedAustin 11:cada08fc8a70 372 * If you disable all padding modes, only full blocks can be used with CBC.
mbedAustin 11:cada08fc8a70 373 *
mbedAustin 11:cada08fc8a70 374 * Enable padding modes in the cipher layer.
mbedAustin 11:cada08fc8a70 375 */
mbedAustin 11:cada08fc8a70 376 #define MBEDTLS_CIPHER_PADDING_PKCS7
mbedAustin 11:cada08fc8a70 377 //#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
mbedAustin 11:cada08fc8a70 378 //#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
mbedAustin 11:cada08fc8a70 379 //#define MBEDTLS_CIPHER_PADDING_ZEROS
mbedAustin 11:cada08fc8a70 380
mbedAustin 11:cada08fc8a70 381 /**
mbedAustin 11:cada08fc8a70 382 * \def MBEDTLS_ENABLE_WEAK_CIPHERSUITES
mbedAustin 11:cada08fc8a70 383 *
mbedAustin 11:cada08fc8a70 384 * Enable weak ciphersuites in SSL / TLS.
mbedAustin 11:cada08fc8a70 385 * Warning: Only do so when you know what you are doing. This allows for
mbedAustin 11:cada08fc8a70 386 * channels with virtually no security at all!
mbedAustin 11:cada08fc8a70 387 *
mbedAustin 11:cada08fc8a70 388 * This enables the following ciphersuites:
mbedAustin 11:cada08fc8a70 389 * MBEDTLS_TLS_RSA_WITH_DES_CBC_SHA
mbedAustin 11:cada08fc8a70 390 * MBEDTLS_TLS_DHE_RSA_WITH_DES_CBC_SHA
mbedAustin 11:cada08fc8a70 391 *
mbedAustin 11:cada08fc8a70 392 * Uncomment this macro to enable weak ciphersuites
mbedAustin 11:cada08fc8a70 393 */
mbedAustin 11:cada08fc8a70 394 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
mbedAustin 11:cada08fc8a70 395
mbedAustin 11:cada08fc8a70 396 /**
mbedAustin 11:cada08fc8a70 397 * \def MBEDTLS_REMOVE_ARC4_CIPHERSUITES
mbedAustin 11:cada08fc8a70 398 *
mbedAustin 11:cada08fc8a70 399 * Remove RC4 ciphersuites by default in SSL / TLS.
mbedAustin 11:cada08fc8a70 400 * This flag removes the ciphersuites based on RC4 from the default list as
mbedAustin 11:cada08fc8a70 401 * returned by mbedtls_ssl_list_ciphersuites(). However, it is still possible to
mbedAustin 11:cada08fc8a70 402 * enable (some of) them with mbedtls_ssl_conf_ciphersuites() by including them
mbedAustin 11:cada08fc8a70 403 * explicitly.
mbedAustin 11:cada08fc8a70 404 *
mbedAustin 11:cada08fc8a70 405 * Uncomment this macro to remove RC4 ciphersuites by default.
mbedAustin 11:cada08fc8a70 406 */
mbedAustin 11:cada08fc8a70 407 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
mbedAustin 11:cada08fc8a70 408
mbedAustin 11:cada08fc8a70 409 /**
mbedAustin 11:cada08fc8a70 410 * \def MBEDTLS_ECP_XXXX_ENABLED
mbedAustin 11:cada08fc8a70 411 *
mbedAustin 11:cada08fc8a70 412 * Enables specific curves within the Elliptic Curve module.
mbedAustin 11:cada08fc8a70 413 * By default all supported curves are enabled.
mbedAustin 11:cada08fc8a70 414 *
mbedAustin 11:cada08fc8a70 415 * Comment macros to disable the curve and functions for it
mbedAustin 11:cada08fc8a70 416 */
mbedAustin 11:cada08fc8a70 417 //#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
mbedAustin 11:cada08fc8a70 418 //#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
mbedAustin 11:cada08fc8a70 419 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
mbedAustin 11:cada08fc8a70 420 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
mbedAustin 11:cada08fc8a70 421 //#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
mbedAustin 11:cada08fc8a70 422 //#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
mbedAustin 11:cada08fc8a70 423 //#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
mbedAustin 11:cada08fc8a70 424 //#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
mbedAustin 11:cada08fc8a70 425 //#define MBEDTLS_ECP_DP_BP256R1_ENABLED
mbedAustin 11:cada08fc8a70 426 //#define MBEDTLS_ECP_DP_BP384R1_ENABLED
mbedAustin 11:cada08fc8a70 427 //#define MBEDTLS_ECP_DP_BP512R1_ENABLED
mbedAustin 11:cada08fc8a70 428 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED
mbedAustin 11:cada08fc8a70 429
mbedAustin 11:cada08fc8a70 430 /**
mbedAustin 11:cada08fc8a70 431 * \def MBEDTLS_ECP_NIST_OPTIM
mbedAustin 11:cada08fc8a70 432 *
mbedAustin 11:cada08fc8a70 433 * Enable specific 'modulo p' routines for each NIST prime.
mbedAustin 11:cada08fc8a70 434 * Depending on the prime and architecture, makes operations 4 to 8 times
mbedAustin 11:cada08fc8a70 435 * faster on the corresponding curve.
mbedAustin 11:cada08fc8a70 436 *
mbedAustin 11:cada08fc8a70 437 * Comment this macro to disable NIST curves optimisation.
mbedAustin 11:cada08fc8a70 438 */
mbedAustin 11:cada08fc8a70 439 #define MBEDTLS_ECP_NIST_OPTIM
mbedAustin 11:cada08fc8a70 440
mbedAustin 11:cada08fc8a70 441 /**
mbedAustin 11:cada08fc8a70 442 * \def MBEDTLS_ECDSA_DETERMINISTIC
mbedAustin 11:cada08fc8a70 443 *
mbedAustin 11:cada08fc8a70 444 * Enable deterministic ECDSA (RFC 6979).
mbedAustin 11:cada08fc8a70 445 * Standard ECDSA is "fragile" in the sense that lack of entropy when signing
mbedAustin 11:cada08fc8a70 446 * may result in a compromise of the long-term signing key. This is avoided by
mbedAustin 11:cada08fc8a70 447 * the deterministic variant.
mbedAustin 11:cada08fc8a70 448 *
mbedAustin 11:cada08fc8a70 449 * Requires: MBEDTLS_HMAC_DRBG_C
mbedAustin 11:cada08fc8a70 450 *
mbedAustin 11:cada08fc8a70 451 * Comment this macro to disable deterministic ECDSA.
mbedAustin 11:cada08fc8a70 452 */
mbedAustin 11:cada08fc8a70 453 #define MBEDTLS_ECDSA_DETERMINISTIC
mbedAustin 11:cada08fc8a70 454
mbedAustin 11:cada08fc8a70 455 /**
mbedAustin 11:cada08fc8a70 456 * \def MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
mbedAustin 11:cada08fc8a70 457 *
mbedAustin 11:cada08fc8a70 458 * Enable the PSK based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 459 *
mbedAustin 11:cada08fc8a70 460 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 461 * enabled as well):
mbedAustin 11:cada08fc8a70 462 * MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 463 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 464 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 465 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 466 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 467 * MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 468 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 469 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 470 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 471 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 472 * MBEDTLS_TLS_PSK_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 473 * MBEDTLS_TLS_PSK_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 474 */
mbedAustin 11:cada08fc8a70 475 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
mbedAustin 11:cada08fc8a70 476
mbedAustin 11:cada08fc8a70 477 /**
mbedAustin 11:cada08fc8a70 478 * \def MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
mbedAustin 11:cada08fc8a70 479 *
mbedAustin 11:cada08fc8a70 480 * Enable the DHE-PSK based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 481 *
mbedAustin 11:cada08fc8a70 482 * Requires: MBEDTLS_DHM_C
mbedAustin 11:cada08fc8a70 483 *
mbedAustin 11:cada08fc8a70 484 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 485 * enabled as well):
mbedAustin 11:cada08fc8a70 486 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 487 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 488 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 489 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 490 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 491 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 492 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 493 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 494 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 495 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 496 * MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 497 * MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 498 */
mbedAustin 11:cada08fc8a70 499 //#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
mbedAustin 11:cada08fc8a70 500
mbedAustin 11:cada08fc8a70 501 /**
mbedAustin 11:cada08fc8a70 502 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
mbedAustin 11:cada08fc8a70 503 *
mbedAustin 11:cada08fc8a70 504 * Enable the ECDHE-PSK based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 505 *
mbedAustin 11:cada08fc8a70 506 * Requires: MBEDTLS_ECDH_C
mbedAustin 11:cada08fc8a70 507 *
mbedAustin 11:cada08fc8a70 508 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 509 * enabled as well):
mbedAustin 11:cada08fc8a70 510 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 511 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 512 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 513 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 514 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 515 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 516 * MBEDTLS_TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 517 * MBEDTLS_TLS_ECDHE_PSK_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 518 */
mbedAustin 11:cada08fc8a70 519 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
mbedAustin 11:cada08fc8a70 520
mbedAustin 11:cada08fc8a70 521 /**
mbedAustin 11:cada08fc8a70 522 * \def MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
mbedAustin 11:cada08fc8a70 523 *
mbedAustin 11:cada08fc8a70 524 * Enable the RSA-PSK based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 525 *
mbedAustin 11:cada08fc8a70 526 * Requires: MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
mbedAustin 11:cada08fc8a70 527 * MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 528 *
mbedAustin 11:cada08fc8a70 529 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 530 * enabled as well):
mbedAustin 11:cada08fc8a70 531 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 532 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 533 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 534 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 535 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 536 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 537 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 538 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 539 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 540 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 541 * MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 542 * MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 543 */
mbedAustin 11:cada08fc8a70 544 //#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
mbedAustin 11:cada08fc8a70 545
mbedAustin 11:cada08fc8a70 546 /**
mbedAustin 11:cada08fc8a70 547 * \def MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
mbedAustin 11:cada08fc8a70 548 *
mbedAustin 11:cada08fc8a70 549 * Enable the RSA-only based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 550 *
mbedAustin 11:cada08fc8a70 551 * Requires: MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
mbedAustin 11:cada08fc8a70 552 * MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 553 *
mbedAustin 11:cada08fc8a70 554 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 555 * enabled as well):
mbedAustin 11:cada08fc8a70 556 * MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 557 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256
mbedAustin 11:cada08fc8a70 558 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 559 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 560 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
mbedAustin 11:cada08fc8a70 561 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
mbedAustin 11:cada08fc8a70 562 * MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 563 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 564 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 565 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 566 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 567 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
mbedAustin 11:cada08fc8a70 568 * MBEDTLS_TLS_RSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 569 * MBEDTLS_TLS_RSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 570 * MBEDTLS_TLS_RSA_WITH_RC4_128_MD5
mbedAustin 11:cada08fc8a70 571 */
mbedAustin 11:cada08fc8a70 572 //#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
mbedAustin 11:cada08fc8a70 573
mbedAustin 11:cada08fc8a70 574 /**
mbedAustin 11:cada08fc8a70 575 * \def MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
mbedAustin 11:cada08fc8a70 576 *
mbedAustin 11:cada08fc8a70 577 * Enable the DHE-RSA based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 578 *
mbedAustin 11:cada08fc8a70 579 * Requires: MBEDTLS_DHM_C, MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
mbedAustin 11:cada08fc8a70 580 * MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 581 *
mbedAustin 11:cada08fc8a70 582 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 583 * enabled as well):
mbedAustin 11:cada08fc8a70 584 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 585 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
mbedAustin 11:cada08fc8a70 586 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 587 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 588 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
mbedAustin 11:cada08fc8a70 589 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
mbedAustin 11:cada08fc8a70 590 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 591 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 592 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 593 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 594 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 595 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
mbedAustin 11:cada08fc8a70 596 * MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 597 */
mbedAustin 11:cada08fc8a70 598 //#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
mbedAustin 11:cada08fc8a70 599
mbedAustin 11:cada08fc8a70 600 /**
mbedAustin 11:cada08fc8a70 601 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
mbedAustin 11:cada08fc8a70 602 *
mbedAustin 11:cada08fc8a70 603 * Enable the ECDHE-RSA based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 604 *
mbedAustin 11:cada08fc8a70 605 * Requires: MBEDTLS_ECDH_C, MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
mbedAustin 11:cada08fc8a70 606 * MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 607 *
mbedAustin 11:cada08fc8a70 608 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 609 * enabled as well):
mbedAustin 11:cada08fc8a70 610 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 611 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 612 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 613 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 614 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 615 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 616 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 617 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 618 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 619 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 620 * MBEDTLS_TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 621 * MBEDTLS_TLS_ECDHE_RSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 622 */
mbedAustin 11:cada08fc8a70 623 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
mbedAustin 11:cada08fc8a70 624
mbedAustin 11:cada08fc8a70 625 /**
mbedAustin 11:cada08fc8a70 626 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
mbedAustin 11:cada08fc8a70 627 *
mbedAustin 11:cada08fc8a70 628 * Enable the ECDHE-ECDSA based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 629 *
mbedAustin 11:cada08fc8a70 630 * Requires: MBEDTLS_ECDH_C, MBEDTLS_ECDSA_C, MBEDTLS_X509_CRT_PARSE_C,
mbedAustin 11:cada08fc8a70 631 *
mbedAustin 11:cada08fc8a70 632 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 633 * enabled as well):
mbedAustin 11:cada08fc8a70 634 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 635 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 636 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 637 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 638 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 639 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 640 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 641 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 642 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 643 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 644 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 645 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 646 */
mbedAustin 11:cada08fc8a70 647 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
mbedAustin 11:cada08fc8a70 648
mbedAustin 11:cada08fc8a70 649 /**
mbedAustin 11:cada08fc8a70 650 * \def MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
mbedAustin 11:cada08fc8a70 651 *
mbedAustin 11:cada08fc8a70 652 * Enable the ECDH-ECDSA based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 653 *
mbedAustin 11:cada08fc8a70 654 * Requires: MBEDTLS_ECDH_C, MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 655 *
mbedAustin 11:cada08fc8a70 656 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 657 * enabled as well):
mbedAustin 11:cada08fc8a70 658 * MBEDTLS_TLS_ECDH_ECDSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 659 * MBEDTLS_TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 660 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 661 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 662 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 663 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 664 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 665 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 666 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 667 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 668 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 669 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 670 */
mbedAustin 11:cada08fc8a70 671 //#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
mbedAustin 11:cada08fc8a70 672
mbedAustin 11:cada08fc8a70 673 /**
mbedAustin 11:cada08fc8a70 674 * \def MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
mbedAustin 11:cada08fc8a70 675 *
mbedAustin 11:cada08fc8a70 676 * Enable the ECDH-RSA based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 677 *
mbedAustin 11:cada08fc8a70 678 * Requires: MBEDTLS_ECDH_C, MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 679 *
mbedAustin 11:cada08fc8a70 680 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 681 * enabled as well):
mbedAustin 11:cada08fc8a70 682 * MBEDTLS_TLS_ECDH_RSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 683 * MBEDTLS_TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 684 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 685 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 686 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 687 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 688 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 689 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 690 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 691 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 692 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 693 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 694 */
mbedAustin 11:cada08fc8a70 695 //#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
mbedAustin 11:cada08fc8a70 696
mbedAustin 11:cada08fc8a70 697 /**
mbedAustin 11:cada08fc8a70 698 * \def MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
mbedAustin 11:cada08fc8a70 699 *
mbedAustin 11:cada08fc8a70 700 * Enable the ECJPAKE based ciphersuite modes in SSL / TLS.
mbedAustin 11:cada08fc8a70 701 *
mbedAustin 11:cada08fc8a70 702 * \warning This is currently experimental. EC J-PAKE support is based on the
mbedAustin 11:cada08fc8a70 703 * Thread v1.0.0 specification; incompatible changes to the specification
mbedAustin 11:cada08fc8a70 704 * might still happen. For this reason, this is disabled by default.
mbedAustin 11:cada08fc8a70 705 *
mbedAustin 11:cada08fc8a70 706 * Requires: MBEDTLS_ECJPAKE_C
mbedAustin 11:cada08fc8a70 707 * MBEDTLS_SHA256_C
mbedAustin 11:cada08fc8a70 708 * MBEDTLS_ECP_DP_SECP256R1_ENABLED
mbedAustin 11:cada08fc8a70 709 *
mbedAustin 11:cada08fc8a70 710 * This enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 711 * enabled as well):
mbedAustin 11:cada08fc8a70 712 * MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8
mbedAustin 11:cada08fc8a70 713 */
mbedAustin 11:cada08fc8a70 714 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
mbedAustin 11:cada08fc8a70 715
mbedAustin 11:cada08fc8a70 716 /**
mbedAustin 11:cada08fc8a70 717 * \def MBEDTLS_PK_PARSE_EC_EXTENDED
mbedAustin 11:cada08fc8a70 718 *
mbedAustin 11:cada08fc8a70 719 * Enhance support for reading EC keys using variants of SEC1 not allowed by
mbedAustin 11:cada08fc8a70 720 * RFC 5915 and RFC 5480.
mbedAustin 11:cada08fc8a70 721 *
mbedAustin 11:cada08fc8a70 722 * Currently this means parsing the SpecifiedECDomain choice of EC
mbedAustin 11:cada08fc8a70 723 * parameters (only known groups are supported, not arbitrary domains, to
mbedAustin 11:cada08fc8a70 724 * avoid validation issues).
mbedAustin 11:cada08fc8a70 725 *
mbedAustin 11:cada08fc8a70 726 * Disable if you only need to support RFC 5915 + 5480 key formats.
mbedAustin 11:cada08fc8a70 727 */
mbedAustin 11:cada08fc8a70 728 //#define MBEDTLS_PK_PARSE_EC_EXTENDED
mbedAustin 11:cada08fc8a70 729
mbedAustin 11:cada08fc8a70 730 /**
mbedAustin 11:cada08fc8a70 731 * \def MBEDTLS_ERROR_STRERROR_DUMMY
mbedAustin 11:cada08fc8a70 732 *
mbedAustin 11:cada08fc8a70 733 * Enable a dummy error function to make use of mbedtls_strerror() in
mbedAustin 11:cada08fc8a70 734 * third party libraries easier when MBEDTLS_ERROR_C is disabled
mbedAustin 11:cada08fc8a70 735 * (no effect when MBEDTLS_ERROR_C is enabled).
mbedAustin 11:cada08fc8a70 736 *
mbedAustin 11:cada08fc8a70 737 * You can safely disable this if MBEDTLS_ERROR_C is enabled, or if you're
mbedAustin 11:cada08fc8a70 738 * not using mbedtls_strerror() or error_strerror() in your application.
mbedAustin 11:cada08fc8a70 739 *
mbedAustin 11:cada08fc8a70 740 * Disable if you run into name conflicts and want to really remove the
mbedAustin 11:cada08fc8a70 741 * mbedtls_strerror()
mbedAustin 11:cada08fc8a70 742 */
mbedAustin 11:cada08fc8a70 743 #define MBEDTLS_ERROR_STRERROR_DUMMY
mbedAustin 11:cada08fc8a70 744
mbedAustin 11:cada08fc8a70 745 /**
mbedAustin 11:cada08fc8a70 746 * \def MBEDTLS_GENPRIME
mbedAustin 11:cada08fc8a70 747 *
mbedAustin 11:cada08fc8a70 748 * Enable the prime-number generation code.
mbedAustin 11:cada08fc8a70 749 *
mbedAustin 11:cada08fc8a70 750 * Requires: MBEDTLS_BIGNUM_C
mbedAustin 11:cada08fc8a70 751 */
mbedAustin 11:cada08fc8a70 752 //#define MBEDTLS_GENPRIME
mbedAustin 11:cada08fc8a70 753
mbedAustin 11:cada08fc8a70 754 /**
mbedAustin 11:cada08fc8a70 755 * \def MBEDTLS_FS_IO
mbedAustin 11:cada08fc8a70 756 *
mbedAustin 11:cada08fc8a70 757 * Enable functions that use the filesystem.
mbedAustin 11:cada08fc8a70 758 */
mbedAustin 11:cada08fc8a70 759 //#define MBEDTLS_FS_IO
mbedAustin 11:cada08fc8a70 760
mbedAustin 11:cada08fc8a70 761 /**
mbedAustin 11:cada08fc8a70 762 * \def MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
mbedAustin 11:cada08fc8a70 763 *
mbedAustin 11:cada08fc8a70 764 * Do not add default entropy sources. These are the platform specific,
mbedAustin 11:cada08fc8a70 765 * mbedtls_timing_hardclock and HAVEGE based poll functions.
mbedAustin 11:cada08fc8a70 766 *
mbedAustin 11:cada08fc8a70 767 * This is useful to have more control over the added entropy sources in an
mbedAustin 11:cada08fc8a70 768 * application.
mbedAustin 11:cada08fc8a70 769 *
mbedAustin 11:cada08fc8a70 770 * Uncomment this macro to prevent loading of default entropy functions.
mbedAustin 11:cada08fc8a70 771 */
mbedAustin 11:cada08fc8a70 772 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
mbedAustin 11:cada08fc8a70 773
mbedAustin 11:cada08fc8a70 774 /**
mbedAustin 11:cada08fc8a70 775 * \def MBEDTLS_NO_PLATFORM_ENTROPY
mbedAustin 11:cada08fc8a70 776 *
mbedAustin 11:cada08fc8a70 777 * Do not use built-in platform entropy functions.
mbedAustin 11:cada08fc8a70 778 * This is useful if your platform does not support
mbedAustin 11:cada08fc8a70 779 * standards like the /dev/urandom or Windows CryptoAPI.
mbedAustin 11:cada08fc8a70 780 *
mbedAustin 11:cada08fc8a70 781 * Uncomment this macro to disable the built-in platform entropy functions.
mbedAustin 11:cada08fc8a70 782 */
mbedAustin 11:cada08fc8a70 783 //#define MBEDTLS_NO_PLATFORM_ENTROPY
mbedAustin 11:cada08fc8a70 784
mbedAustin 11:cada08fc8a70 785 /**
mbedAustin 11:cada08fc8a70 786 * \def MBEDTLS_ENTROPY_FORCE_SHA256
mbedAustin 11:cada08fc8a70 787 *
mbedAustin 11:cada08fc8a70 788 * Force the entropy accumulator to use a SHA-256 accumulator instead of the
mbedAustin 11:cada08fc8a70 789 * default SHA-512 based one (if both are available).
mbedAustin 11:cada08fc8a70 790 *
mbedAustin 11:cada08fc8a70 791 * Requires: MBEDTLS_SHA256_C
mbedAustin 11:cada08fc8a70 792 *
mbedAustin 11:cada08fc8a70 793 * On 32-bit systems SHA-256 can be much faster than SHA-512. Use this option
mbedAustin 11:cada08fc8a70 794 * if you have performance concerns.
mbedAustin 11:cada08fc8a70 795 *
mbedAustin 11:cada08fc8a70 796 * This option is only useful if both MBEDTLS_SHA256_C and
mbedAustin 11:cada08fc8a70 797 * MBEDTLS_SHA512_C are defined. Otherwise the available hash module is used.
mbedAustin 11:cada08fc8a70 798 */
mbedAustin 11:cada08fc8a70 799 //#define MBEDTLS_ENTROPY_FORCE_SHA256
mbedAustin 11:cada08fc8a70 800
mbedAustin 11:cada08fc8a70 801 /**
mbedAustin 11:cada08fc8a70 802 * \def MBEDTLS_MEMORY_DEBUG
mbedAustin 11:cada08fc8a70 803 *
mbedAustin 11:cada08fc8a70 804 * Enable debugging of buffer allocator memory issues. Automatically prints
mbedAustin 11:cada08fc8a70 805 * (to stderr) all (fatal) messages on memory allocation issues. Enables
mbedAustin 11:cada08fc8a70 806 * function for 'debug output' of allocated memory.
mbedAustin 11:cada08fc8a70 807 *
mbedAustin 11:cada08fc8a70 808 * Requires: MBEDTLS_MEMORY_BUFFER_ALLOC_C
mbedAustin 11:cada08fc8a70 809 *
mbedAustin 11:cada08fc8a70 810 * Uncomment this macro to let the buffer allocator print out error messages.
mbedAustin 11:cada08fc8a70 811 */
mbedAustin 11:cada08fc8a70 812 //#define MBEDTLS_MEMORY_DEBUG
mbedAustin 11:cada08fc8a70 813
mbedAustin 11:cada08fc8a70 814 /**
mbedAustin 11:cada08fc8a70 815 * \def MBEDTLS_MEMORY_BACKTRACE
mbedAustin 11:cada08fc8a70 816 *
mbedAustin 11:cada08fc8a70 817 * Include backtrace information with each allocated block.
mbedAustin 11:cada08fc8a70 818 *
mbedAustin 11:cada08fc8a70 819 * Requires: MBEDTLS_MEMORY_BUFFER_ALLOC_C
mbedAustin 11:cada08fc8a70 820 * GLIBC-compatible backtrace() an backtrace_symbols() support
mbedAustin 11:cada08fc8a70 821 *
mbedAustin 11:cada08fc8a70 822 * Uncomment this macro to include backtrace information
mbedAustin 11:cada08fc8a70 823 */
mbedAustin 11:cada08fc8a70 824 //#define MBEDTLS_MEMORY_BACKTRACE
mbedAustin 11:cada08fc8a70 825
mbedAustin 11:cada08fc8a70 826 /**
mbedAustin 11:cada08fc8a70 827 * \def MBEDTLS_PK_RSA_ALT_SUPPORT
mbedAustin 11:cada08fc8a70 828 *
mbedAustin 11:cada08fc8a70 829 * Support external private RSA keys (eg from a HSM) in the PK layer.
mbedAustin 11:cada08fc8a70 830 *
mbedAustin 11:cada08fc8a70 831 * Comment this macro to disable support for external private RSA keys.
mbedAustin 11:cada08fc8a70 832 */
mbedAustin 11:cada08fc8a70 833 #define MBEDTLS_PK_RSA_ALT_SUPPORT
mbedAustin 11:cada08fc8a70 834
mbedAustin 11:cada08fc8a70 835 /**
mbedAustin 11:cada08fc8a70 836 * \def MBEDTLS_PKCS1_V15
mbedAustin 11:cada08fc8a70 837 *
mbedAustin 11:cada08fc8a70 838 * Enable support for PKCS#1 v1.5 encoding.
mbedAustin 11:cada08fc8a70 839 *
mbedAustin 11:cada08fc8a70 840 * Requires: MBEDTLS_RSA_C
mbedAustin 11:cada08fc8a70 841 *
mbedAustin 11:cada08fc8a70 842 * This enables support for PKCS#1 v1.5 operations.
mbedAustin 11:cada08fc8a70 843 */
mbedAustin 11:cada08fc8a70 844 #define MBEDTLS_PKCS1_V15
mbedAustin 11:cada08fc8a70 845
mbedAustin 11:cada08fc8a70 846 /**
mbedAustin 11:cada08fc8a70 847 * \def MBEDTLS_PKCS1_V21
mbedAustin 11:cada08fc8a70 848 *
mbedAustin 11:cada08fc8a70 849 * Enable support for PKCS#1 v2.1 encoding.
mbedAustin 11:cada08fc8a70 850 *
mbedAustin 11:cada08fc8a70 851 * Requires: MBEDTLS_MD_C, MBEDTLS_RSA_C
mbedAustin 11:cada08fc8a70 852 *
mbedAustin 11:cada08fc8a70 853 * This enables support for RSAES-OAEP and RSASSA-PSS operations.
mbedAustin 11:cada08fc8a70 854 */
mbedAustin 11:cada08fc8a70 855 #define MBEDTLS_PKCS1_V21
mbedAustin 11:cada08fc8a70 856
mbedAustin 11:cada08fc8a70 857 /**
mbedAustin 11:cada08fc8a70 858 * \def MBEDTLS_RSA_NO_CRT
mbedAustin 11:cada08fc8a70 859 *
mbedAustin 11:cada08fc8a70 860 * Do not use the Chinese Remainder Theorem for the RSA private operation.
mbedAustin 11:cada08fc8a70 861 *
mbedAustin 11:cada08fc8a70 862 * Uncomment this macro to disable the use of CRT in RSA.
mbedAustin 11:cada08fc8a70 863 *
mbedAustin 11:cada08fc8a70 864 */
mbedAustin 11:cada08fc8a70 865 //#define MBEDTLS_RSA_NO_CRT
mbedAustin 11:cada08fc8a70 866
mbedAustin 11:cada08fc8a70 867 /**
mbedAustin 11:cada08fc8a70 868 * \def MBEDTLS_SELF_TEST
mbedAustin 11:cada08fc8a70 869 *
mbedAustin 11:cada08fc8a70 870 * Enable the checkup functions (*_self_test).
mbedAustin 11:cada08fc8a70 871 */
mbedAustin 11:cada08fc8a70 872 #define MBEDTLS_SELF_TEST
mbedAustin 11:cada08fc8a70 873
mbedAustin 11:cada08fc8a70 874 /**
mbedAustin 11:cada08fc8a70 875 * \def MBEDTLS_SHA256_SMALLER
mbedAustin 11:cada08fc8a70 876 *
mbedAustin 11:cada08fc8a70 877 * Enable an implementation of SHA-256 that has lower ROM footprint but also
mbedAustin 11:cada08fc8a70 878 * lower performance.
mbedAustin 11:cada08fc8a70 879 *
mbedAustin 11:cada08fc8a70 880 * The default implementation is meant to be a reasonnable compromise between
mbedAustin 11:cada08fc8a70 881 * performance and size. This version optimizes more aggressively for size at
mbedAustin 11:cada08fc8a70 882 * the expense of performance. Eg on Cortex-M4 it reduces the size of
mbedAustin 11:cada08fc8a70 883 * mbedtls_sha256_process() from ~2KB to ~0.5KB for a performance hit of about
mbedAustin 11:cada08fc8a70 884 * 30%.
mbedAustin 11:cada08fc8a70 885 *
mbedAustin 11:cada08fc8a70 886 * Uncomment to enable the smaller implementation of SHA256.
mbedAustin 11:cada08fc8a70 887 */
mbedAustin 11:cada08fc8a70 888 //#define MBEDTLS_SHA256_SMALLER
mbedAustin 11:cada08fc8a70 889
mbedAustin 11:cada08fc8a70 890 /**
mbedAustin 11:cada08fc8a70 891 * \def MBEDTLS_SSL_AEAD_RANDOM_IV
mbedAustin 11:cada08fc8a70 892 *
mbedAustin 11:cada08fc8a70 893 * Generate a random IV rather than using the record sequence number as a
mbedAustin 11:cada08fc8a70 894 * nonce for ciphersuites using and AEAD algorithm (GCM or CCM).
mbedAustin 11:cada08fc8a70 895 *
mbedAustin 11:cada08fc8a70 896 * Using the sequence number is generally recommended.
mbedAustin 11:cada08fc8a70 897 *
mbedAustin 11:cada08fc8a70 898 * Uncomment this macro to always use random IVs with AEAD ciphersuites.
mbedAustin 11:cada08fc8a70 899 */
mbedAustin 11:cada08fc8a70 900 //#define MBEDTLS_SSL_AEAD_RANDOM_IV
mbedAustin 11:cada08fc8a70 901
mbedAustin 11:cada08fc8a70 902 /**
mbedAustin 11:cada08fc8a70 903 * \def MBEDTLS_SSL_ALL_ALERT_MESSAGES
mbedAustin 11:cada08fc8a70 904 *
mbedAustin 11:cada08fc8a70 905 * Enable sending of alert messages in case of encountered errors as per RFC.
mbedAustin 11:cada08fc8a70 906 * If you choose not to send the alert messages, mbed TLS can still communicate
mbedAustin 11:cada08fc8a70 907 * with other servers, only debugging of failures is harder.
mbedAustin 11:cada08fc8a70 908 *
mbedAustin 11:cada08fc8a70 909 * The advantage of not sending alert messages, is that no information is given
mbedAustin 11:cada08fc8a70 910 * about reasons for failures thus preventing adversaries of gaining intel.
mbedAustin 11:cada08fc8a70 911 *
mbedAustin 11:cada08fc8a70 912 * Enable sending of all alert messages
mbedAustin 11:cada08fc8a70 913 */
mbedAustin 11:cada08fc8a70 914 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES
mbedAustin 11:cada08fc8a70 915
mbedAustin 11:cada08fc8a70 916 /**
mbedAustin 11:cada08fc8a70 917 * \def MBEDTLS_SSL_DEBUG_ALL
mbedAustin 11:cada08fc8a70 918 *
mbedAustin 11:cada08fc8a70 919 * Enable the debug messages in SSL module for all issues.
mbedAustin 11:cada08fc8a70 920 * Debug messages have been disabled in some places to prevent timing
mbedAustin 11:cada08fc8a70 921 * attacks due to (unbalanced) debugging function calls.
mbedAustin 11:cada08fc8a70 922 *
mbedAustin 11:cada08fc8a70 923 * If you need all error reporting you should enable this during debugging,
mbedAustin 11:cada08fc8a70 924 * but remove this for production servers that should log as well.
mbedAustin 11:cada08fc8a70 925 *
mbedAustin 11:cada08fc8a70 926 * Uncomment this macro to report all debug messages on errors introducing
mbedAustin 11:cada08fc8a70 927 * a timing side-channel.
mbedAustin 11:cada08fc8a70 928 *
mbedAustin 11:cada08fc8a70 929 */
mbedAustin 11:cada08fc8a70 930 //#define MBEDTLS_SSL_DEBUG_ALL
mbedAustin 11:cada08fc8a70 931
mbedAustin 11:cada08fc8a70 932 /** \def MBEDTLS_SSL_ENCRYPT_THEN_MAC
mbedAustin 11:cada08fc8a70 933 *
mbedAustin 11:cada08fc8a70 934 * Enable support for Encrypt-then-MAC, RFC 7366.
mbedAustin 11:cada08fc8a70 935 *
mbedAustin 11:cada08fc8a70 936 * This allows peers that both support it to use a more robust protection for
mbedAustin 11:cada08fc8a70 937 * ciphersuites using CBC, providing deep resistance against timing attacks
mbedAustin 11:cada08fc8a70 938 * on the padding or underlying cipher.
mbedAustin 11:cada08fc8a70 939 *
mbedAustin 11:cada08fc8a70 940 * This only affects CBC ciphersuites, and is useless if none is defined.
mbedAustin 11:cada08fc8a70 941 *
mbedAustin 11:cada08fc8a70 942 * Requires: MBEDTLS_SSL_PROTO_TLS1 or
mbedAustin 11:cada08fc8a70 943 * MBEDTLS_SSL_PROTO_TLS1_1 or
mbedAustin 11:cada08fc8a70 944 * MBEDTLS_SSL_PROTO_TLS1_2
mbedAustin 11:cada08fc8a70 945 *
mbedAustin 11:cada08fc8a70 946 * Comment this macro to disable support for Encrypt-then-MAC
mbedAustin 11:cada08fc8a70 947 */
mbedAustin 11:cada08fc8a70 948 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC
mbedAustin 11:cada08fc8a70 949
mbedAustin 11:cada08fc8a70 950 /** \def MBEDTLS_SSL_EXTENDED_MASTER_SECRET
mbedAustin 11:cada08fc8a70 951 *
mbedAustin 11:cada08fc8a70 952 * Enable support for Extended Master Secret, aka Session Hash
mbedAustin 11:cada08fc8a70 953 * (draft-ietf-tls-session-hash-02).
mbedAustin 11:cada08fc8a70 954 *
mbedAustin 11:cada08fc8a70 955 * This was introduced as "the proper fix" to the Triple Handshake familiy of
mbedAustin 11:cada08fc8a70 956 * attacks, but it is recommended to always use it (even if you disable
mbedAustin 11:cada08fc8a70 957 * renegotiation), since it actually fixes a more fundamental issue in the
mbedAustin 11:cada08fc8a70 958 * original SSL/TLS design, and has implications beyond Triple Handshake.
mbedAustin 11:cada08fc8a70 959 *
mbedAustin 11:cada08fc8a70 960 * Requires: MBEDTLS_SSL_PROTO_TLS1 or
mbedAustin 11:cada08fc8a70 961 * MBEDTLS_SSL_PROTO_TLS1_1 or
mbedAustin 11:cada08fc8a70 962 * MBEDTLS_SSL_PROTO_TLS1_2
mbedAustin 11:cada08fc8a70 963 *
mbedAustin 11:cada08fc8a70 964 * Comment this macro to disable support for Extended Master Secret.
mbedAustin 11:cada08fc8a70 965 */
mbedAustin 11:cada08fc8a70 966 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
mbedAustin 11:cada08fc8a70 967
mbedAustin 11:cada08fc8a70 968 /**
mbedAustin 11:cada08fc8a70 969 * \def MBEDTLS_SSL_FALLBACK_SCSV
mbedAustin 11:cada08fc8a70 970 *
mbedAustin 11:cada08fc8a70 971 * Enable support for FALLBACK_SCSV (draft-ietf-tls-downgrade-scsv-00).
mbedAustin 11:cada08fc8a70 972 *
mbedAustin 11:cada08fc8a70 973 * For servers, it is recommended to always enable this, unless you support
mbedAustin 11:cada08fc8a70 974 * only one version of TLS, or know for sure that none of your clients
mbedAustin 11:cada08fc8a70 975 * implements a fallback strategy.
mbedAustin 11:cada08fc8a70 976 *
mbedAustin 11:cada08fc8a70 977 * For clients, you only need this if you're using a fallback strategy, which
mbedAustin 11:cada08fc8a70 978 * is not recommended in the first place, unless you absolutely need it to
mbedAustin 11:cada08fc8a70 979 * interoperate with buggy (version-intolerant) servers.
mbedAustin 11:cada08fc8a70 980 *
mbedAustin 11:cada08fc8a70 981 * Comment this macro to disable support for FALLBACK_SCSV
mbedAustin 11:cada08fc8a70 982 */
mbedAustin 11:cada08fc8a70 983 //#define MBEDTLS_SSL_FALLBACK_SCSV
mbedAustin 11:cada08fc8a70 984
mbedAustin 11:cada08fc8a70 985 /**
mbedAustin 11:cada08fc8a70 986 * \def MBEDTLS_SSL_HW_RECORD_ACCEL
mbedAustin 11:cada08fc8a70 987 *
mbedAustin 11:cada08fc8a70 988 * Enable hooking functions in SSL module for hardware acceleration of
mbedAustin 11:cada08fc8a70 989 * individual records.
mbedAustin 11:cada08fc8a70 990 *
mbedAustin 11:cada08fc8a70 991 * Uncomment this macro to enable hooking functions.
mbedAustin 11:cada08fc8a70 992 */
mbedAustin 11:cada08fc8a70 993 //#define MBEDTLS_SSL_HW_RECORD_ACCEL
mbedAustin 11:cada08fc8a70 994
mbedAustin 11:cada08fc8a70 995 /**
mbedAustin 11:cada08fc8a70 996 * \def MBEDTLS_SSL_CBC_RECORD_SPLITTING
mbedAustin 11:cada08fc8a70 997 *
mbedAustin 11:cada08fc8a70 998 * Enable 1/n-1 record splitting for CBC mode in SSLv3 and TLS 1.0.
mbedAustin 11:cada08fc8a70 999 *
mbedAustin 11:cada08fc8a70 1000 * This is a countermeasure to the BEAST attack, which also minimizes the risk
mbedAustin 11:cada08fc8a70 1001 * of interoperability issues compared to sending 0-length records.
mbedAustin 11:cada08fc8a70 1002 *
mbedAustin 11:cada08fc8a70 1003 * Comment this macro to disable 1/n-1 record splitting.
mbedAustin 11:cada08fc8a70 1004 */
mbedAustin 11:cada08fc8a70 1005 //#define MBEDTLS_SSL_CBC_RECORD_SPLITTING
mbedAustin 11:cada08fc8a70 1006
mbedAustin 11:cada08fc8a70 1007 /**
mbedAustin 11:cada08fc8a70 1008 * \def MBEDTLS_SSL_RENEGOTIATION
mbedAustin 11:cada08fc8a70 1009 *
mbedAustin 11:cada08fc8a70 1010 * Disable support for TLS renegotiation.
mbedAustin 11:cada08fc8a70 1011 *
mbedAustin 11:cada08fc8a70 1012 * The two main uses of renegotiation are (1) refresh keys on long-lived
mbedAustin 11:cada08fc8a70 1013 * connections and (2) client authentication after the initial handshake.
mbedAustin 11:cada08fc8a70 1014 * If you don't need renegotiation, it's probably better to disable it, since
mbedAustin 11:cada08fc8a70 1015 * it has been associated with security issues in the past and is easy to
mbedAustin 11:cada08fc8a70 1016 * misuse/misunderstand.
mbedAustin 11:cada08fc8a70 1017 *
mbedAustin 11:cada08fc8a70 1018 * Comment this to disable support for renegotiation.
mbedAustin 11:cada08fc8a70 1019 */
mbedAustin 11:cada08fc8a70 1020 #define MBEDTLS_SSL_RENEGOTIATION
mbedAustin 11:cada08fc8a70 1021
mbedAustin 11:cada08fc8a70 1022 /**
mbedAustin 11:cada08fc8a70 1023 * \def MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
mbedAustin 11:cada08fc8a70 1024 *
mbedAustin 11:cada08fc8a70 1025 * Enable support for receiving and parsing SSLv2 Client Hello messages for the
mbedAustin 11:cada08fc8a70 1026 * SSL Server module (MBEDTLS_SSL_SRV_C).
mbedAustin 11:cada08fc8a70 1027 *
mbedAustin 11:cada08fc8a70 1028 * Uncomment this macro to enable support for SSLv2 Client Hello messages.
mbedAustin 11:cada08fc8a70 1029 */
mbedAustin 11:cada08fc8a70 1030 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
mbedAustin 11:cada08fc8a70 1031
mbedAustin 11:cada08fc8a70 1032 /**
mbedAustin 11:cada08fc8a70 1033 * \def MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
mbedAustin 11:cada08fc8a70 1034 *
mbedAustin 11:cada08fc8a70 1035 * Pick the ciphersuite according to the client's preferences rather than ours
mbedAustin 11:cada08fc8a70 1036 * in the SSL Server module (MBEDTLS_SSL_SRV_C).
mbedAustin 11:cada08fc8a70 1037 *
mbedAustin 11:cada08fc8a70 1038 * Uncomment this macro to respect client's ciphersuite order
mbedAustin 11:cada08fc8a70 1039 */
mbedAustin 11:cada08fc8a70 1040 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
mbedAustin 11:cada08fc8a70 1041
mbedAustin 11:cada08fc8a70 1042 /**
mbedAustin 11:cada08fc8a70 1043 * \def MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
mbedAustin 11:cada08fc8a70 1044 *
mbedAustin 11:cada08fc8a70 1045 * Enable support for RFC 6066 max_fragment_length extension in SSL.
mbedAustin 11:cada08fc8a70 1046 *
mbedAustin 11:cada08fc8a70 1047 * Comment this macro to disable support for the max_fragment_length extension
mbedAustin 11:cada08fc8a70 1048 */
mbedAustin 11:cada08fc8a70 1049 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
mbedAustin 11:cada08fc8a70 1050
mbedAustin 11:cada08fc8a70 1051 /**
mbedAustin 11:cada08fc8a70 1052 * \def MBEDTLS_SSL_PROTO_SSL3
mbedAustin 11:cada08fc8a70 1053 *
mbedAustin 11:cada08fc8a70 1054 * Enable support for SSL 3.0.
mbedAustin 11:cada08fc8a70 1055 *
mbedAustin 11:cada08fc8a70 1056 * Requires: MBEDTLS_MD5_C
mbedAustin 11:cada08fc8a70 1057 * MBEDTLS_SHA1_C
mbedAustin 11:cada08fc8a70 1058 *
mbedAustin 11:cada08fc8a70 1059 * Comment this macro to disable support for SSL 3.0
mbedAustin 11:cada08fc8a70 1060 */
mbedAustin 11:cada08fc8a70 1061 //#define MBEDTLS_SSL_PROTO_SSL3
mbedAustin 11:cada08fc8a70 1062
mbedAustin 11:cada08fc8a70 1063 /**
mbedAustin 11:cada08fc8a70 1064 * \def MBEDTLS_SSL_PROTO_TLS1
mbedAustin 11:cada08fc8a70 1065 *
mbedAustin 11:cada08fc8a70 1066 * Enable support for TLS 1.0.
mbedAustin 11:cada08fc8a70 1067 *
mbedAustin 11:cada08fc8a70 1068 * Requires: MBEDTLS_MD5_C
mbedAustin 11:cada08fc8a70 1069 * MBEDTLS_SHA1_C
mbedAustin 11:cada08fc8a70 1070 *
mbedAustin 11:cada08fc8a70 1071 * Comment this macro to disable support for TLS 1.0
mbedAustin 11:cada08fc8a70 1072 */
mbedAustin 11:cada08fc8a70 1073 //#define MBEDTLS_SSL_PROTO_TLS1
mbedAustin 11:cada08fc8a70 1074
mbedAustin 11:cada08fc8a70 1075 /**
mbedAustin 11:cada08fc8a70 1076 * \def MBEDTLS_SSL_PROTO_TLS1_1
mbedAustin 11:cada08fc8a70 1077 *
mbedAustin 11:cada08fc8a70 1078 * Enable support for TLS 1.1 (and DTLS 1.0 if DTLS is enabled).
mbedAustin 11:cada08fc8a70 1079 *
mbedAustin 11:cada08fc8a70 1080 * Requires: MBEDTLS_MD5_C
mbedAustin 11:cada08fc8a70 1081 * MBEDTLS_SHA1_C
mbedAustin 11:cada08fc8a70 1082 *
mbedAustin 11:cada08fc8a70 1083 * Comment this macro to disable support for TLS 1.1 / DTLS 1.0
mbedAustin 11:cada08fc8a70 1084 */
mbedAustin 11:cada08fc8a70 1085 //#define MBEDTLS_SSL_PROTO_TLS1_1
mbedAustin 11:cada08fc8a70 1086
mbedAustin 11:cada08fc8a70 1087 /**
mbedAustin 11:cada08fc8a70 1088 * \def MBEDTLS_SSL_PROTO_TLS1_2
mbedAustin 11:cada08fc8a70 1089 *
mbedAustin 11:cada08fc8a70 1090 * Enable support for TLS 1.2 (and DTLS 1.2 if DTLS is enabled).
mbedAustin 11:cada08fc8a70 1091 *
mbedAustin 11:cada08fc8a70 1092 * Requires: MBEDTLS_SHA1_C or MBEDTLS_SHA256_C or MBEDTLS_SHA512_C
mbedAustin 11:cada08fc8a70 1093 * (Depends on ciphersuites)
mbedAustin 11:cada08fc8a70 1094 *
mbedAustin 11:cada08fc8a70 1095 * Comment this macro to disable support for TLS 1.2 / DTLS 1.2
mbedAustin 11:cada08fc8a70 1096 */
mbedAustin 11:cada08fc8a70 1097 #define MBEDTLS_SSL_PROTO_TLS1_2
mbedAustin 11:cada08fc8a70 1098
mbedAustin 11:cada08fc8a70 1099 /**
mbedAustin 11:cada08fc8a70 1100 * \def MBEDTLS_SSL_PROTO_DTLS
mbedAustin 11:cada08fc8a70 1101 *
mbedAustin 11:cada08fc8a70 1102 * Enable support for DTLS (all available versions).
mbedAustin 11:cada08fc8a70 1103 *
mbedAustin 11:cada08fc8a70 1104 * Enable this and MBEDTLS_SSL_PROTO_TLS1_1 to enable DTLS 1.0,
mbedAustin 11:cada08fc8a70 1105 * and/or this and MBEDTLS_SSL_PROTO_TLS1_2 to enable DTLS 1.2.
mbedAustin 11:cada08fc8a70 1106 *
mbedAustin 11:cada08fc8a70 1107 * Requires: MBEDTLS_SSL_PROTO_TLS1_1
mbedAustin 11:cada08fc8a70 1108 * or MBEDTLS_SSL_PROTO_TLS1_2
mbedAustin 11:cada08fc8a70 1109 *
mbedAustin 11:cada08fc8a70 1110 * Comment this macro to disable support for DTLS
mbedAustin 11:cada08fc8a70 1111 */
mbedAustin 11:cada08fc8a70 1112 #define MBEDTLS_SSL_PROTO_DTLS
mbedAustin 11:cada08fc8a70 1113
mbedAustin 11:cada08fc8a70 1114 /**
mbedAustin 11:cada08fc8a70 1115 * \def MBEDTLS_SSL_ALPN
mbedAustin 11:cada08fc8a70 1116 *
mbedAustin 11:cada08fc8a70 1117 * Enable support for RFC 7301 Application Layer Protocol Negotiation.
mbedAustin 11:cada08fc8a70 1118 *
mbedAustin 11:cada08fc8a70 1119 * Comment this macro to disable support for ALPN.
mbedAustin 11:cada08fc8a70 1120 */
mbedAustin 11:cada08fc8a70 1121 #define MBEDTLS_SSL_ALPN
mbedAustin 11:cada08fc8a70 1122
mbedAustin 11:cada08fc8a70 1123 /**
mbedAustin 11:cada08fc8a70 1124 * \def MBEDTLS_SSL_DTLS_ANTI_REPLAY
mbedAustin 11:cada08fc8a70 1125 *
mbedAustin 11:cada08fc8a70 1126 * Enable support for the anti-replay mechanism in DTLS.
mbedAustin 11:cada08fc8a70 1127 *
mbedAustin 11:cada08fc8a70 1128 * Requires: MBEDTLS_SSL_TLS_C
mbedAustin 11:cada08fc8a70 1129 * MBEDTLS_SSL_PROTO_DTLS
mbedAustin 11:cada08fc8a70 1130 *
mbedAustin 11:cada08fc8a70 1131 * \warning Disabling this is often a security risk!
mbedAustin 11:cada08fc8a70 1132 * See mbedtls_ssl_conf_dtls_anti_replay() for details.
mbedAustin 11:cada08fc8a70 1133 *
mbedAustin 11:cada08fc8a70 1134 * Comment this to disable anti-replay in DTLS.
mbedAustin 11:cada08fc8a70 1135 */
mbedAustin 11:cada08fc8a70 1136 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
mbedAustin 11:cada08fc8a70 1137
mbedAustin 11:cada08fc8a70 1138 /**
mbedAustin 11:cada08fc8a70 1139 * \def MBEDTLS_SSL_DTLS_HELLO_VERIFY
mbedAustin 11:cada08fc8a70 1140 *
mbedAustin 11:cada08fc8a70 1141 * Enable support for HelloVerifyRequest on DTLS servers.
mbedAustin 11:cada08fc8a70 1142 *
mbedAustin 11:cada08fc8a70 1143 * This feature is highly recommended to prevent DTLS servers being used as
mbedAustin 11:cada08fc8a70 1144 * amplifiers in DoS attacks against other hosts. It should always be enabled
mbedAustin 11:cada08fc8a70 1145 * unless you know for sure amplification cannot be a problem in the
mbedAustin 11:cada08fc8a70 1146 * environment in which your server operates.
mbedAustin 11:cada08fc8a70 1147 *
mbedAustin 11:cada08fc8a70 1148 * \warning Disabling this can ba a security risk! (see above)
mbedAustin 11:cada08fc8a70 1149 *
mbedAustin 11:cada08fc8a70 1150 * Requires: MBEDTLS_SSL_PROTO_DTLS
mbedAustin 11:cada08fc8a70 1151 *
mbedAustin 11:cada08fc8a70 1152 * Comment this to disable support for HelloVerifyRequest.
mbedAustin 11:cada08fc8a70 1153 */
mbedAustin 11:cada08fc8a70 1154 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
mbedAustin 11:cada08fc8a70 1155
mbedAustin 11:cada08fc8a70 1156 /**
mbedAustin 11:cada08fc8a70 1157 * \def MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
mbedAustin 11:cada08fc8a70 1158 *
mbedAustin 11:cada08fc8a70 1159 * Enable server-side support for clients that reconnect from the same port.
mbedAustin 11:cada08fc8a70 1160 *
mbedAustin 11:cada08fc8a70 1161 * Some clients unexpectedly close the connection and try to reconnect using the
mbedAustin 11:cada08fc8a70 1162 * same source port. This needs special support from the server to handle the
mbedAustin 11:cada08fc8a70 1163 * new connection securely, as described in section 4.2.8 of RFC 6347. This
mbedAustin 11:cada08fc8a70 1164 * flag enables that support.
mbedAustin 11:cada08fc8a70 1165 *
mbedAustin 11:cada08fc8a70 1166 * Requires: MBEDTLS_SSL_DTLS_HELLO_VERIFY
mbedAustin 11:cada08fc8a70 1167 *
mbedAustin 11:cada08fc8a70 1168 * Comment this to disable support for clients reusing the source port.
mbedAustin 11:cada08fc8a70 1169 */
mbedAustin 11:cada08fc8a70 1170 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
mbedAustin 11:cada08fc8a70 1171
mbedAustin 11:cada08fc8a70 1172 /**
mbedAustin 11:cada08fc8a70 1173 * \def MBEDTLS_SSL_DTLS_BADMAC_LIMIT
mbedAustin 11:cada08fc8a70 1174 *
mbedAustin 11:cada08fc8a70 1175 * Enable support for a limit of records with bad MAC.
mbedAustin 11:cada08fc8a70 1176 *
mbedAustin 11:cada08fc8a70 1177 * See mbedtls_ssl_conf_dtls_badmac_limit().
mbedAustin 11:cada08fc8a70 1178 *
mbedAustin 11:cada08fc8a70 1179 * Requires: MBEDTLS_SSL_PROTO_DTLS
mbedAustin 11:cada08fc8a70 1180 */
mbedAustin 11:cada08fc8a70 1181 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
mbedAustin 11:cada08fc8a70 1182
mbedAustin 11:cada08fc8a70 1183 /**
mbedAustin 11:cada08fc8a70 1184 * \def MBEDTLS_SSL_SESSION_TICKETS
mbedAustin 11:cada08fc8a70 1185 *
mbedAustin 11:cada08fc8a70 1186 * Enable support for RFC 5077 session tickets in SSL.
mbedAustin 11:cada08fc8a70 1187 * Client-side, provides full support for session tickets (maintainance of a
mbedAustin 11:cada08fc8a70 1188 * session store remains the responsibility of the application, though).
mbedAustin 11:cada08fc8a70 1189 * Server-side, you also need to provide callbacks for writing and parsing
mbedAustin 11:cada08fc8a70 1190 * tickets, including authenticated encryption and key management. Example
mbedAustin 11:cada08fc8a70 1191 * callbacks are provided by MBEDTLS_SSL_TICKET_C.
mbedAustin 11:cada08fc8a70 1192 *
mbedAustin 11:cada08fc8a70 1193 * Comment this macro to disable support for SSL session tickets
mbedAustin 11:cada08fc8a70 1194 */
mbedAustin 11:cada08fc8a70 1195 #define MBEDTLS_SSL_SESSION_TICKETS
mbedAustin 11:cada08fc8a70 1196
mbedAustin 11:cada08fc8a70 1197 /**
mbedAustin 11:cada08fc8a70 1198 * \def MBEDTLS_SSL_EXPORT_KEYS
mbedAustin 11:cada08fc8a70 1199 *
mbedAustin 11:cada08fc8a70 1200 * Enable support for exporting key block and master secret.
mbedAustin 11:cada08fc8a70 1201 * This is required for certain users of TLS, e.g. EAP-TLS.
mbedAustin 11:cada08fc8a70 1202 *
mbedAustin 11:cada08fc8a70 1203 * Comment this macro to disable support for key export
mbedAustin 11:cada08fc8a70 1204 */
mbedAustin 11:cada08fc8a70 1205 #define MBEDTLS_SSL_EXPORT_KEYS
mbedAustin 11:cada08fc8a70 1206
mbedAustin 11:cada08fc8a70 1207 /**
mbedAustin 11:cada08fc8a70 1208 * \def MBEDTLS_SSL_SERVER_NAME_INDICATION
mbedAustin 11:cada08fc8a70 1209 *
mbedAustin 11:cada08fc8a70 1210 * Enable support for RFC 6066 server name indication (SNI) in SSL.
mbedAustin 11:cada08fc8a70 1211 *
mbedAustin 11:cada08fc8a70 1212 * Requires: MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 1213 *
mbedAustin 11:cada08fc8a70 1214 * Comment this macro to disable support for server name indication in SSL
mbedAustin 11:cada08fc8a70 1215 */
mbedAustin 11:cada08fc8a70 1216 #define MBEDTLS_SSL_SERVER_NAME_INDICATION
mbedAustin 11:cada08fc8a70 1217
mbedAustin 11:cada08fc8a70 1218 /**
mbedAustin 11:cada08fc8a70 1219 * \def MBEDTLS_SSL_TRUNCATED_HMAC
mbedAustin 11:cada08fc8a70 1220 *
mbedAustin 11:cada08fc8a70 1221 * Enable support for RFC 6066 truncated HMAC in SSL.
mbedAustin 11:cada08fc8a70 1222 *
mbedAustin 11:cada08fc8a70 1223 * Comment this macro to disable support for truncated HMAC in SSL
mbedAustin 11:cada08fc8a70 1224 */
mbedAustin 11:cada08fc8a70 1225 //#define MBEDTLS_SSL_TRUNCATED_HMAC
mbedAustin 11:cada08fc8a70 1226
mbedAustin 11:cada08fc8a70 1227 /**
mbedAustin 11:cada08fc8a70 1228 * \def MBEDTLS_THREADING_ALT
mbedAustin 11:cada08fc8a70 1229 *
mbedAustin 11:cada08fc8a70 1230 * Provide your own alternate threading implementation.
mbedAustin 11:cada08fc8a70 1231 *
mbedAustin 11:cada08fc8a70 1232 * Requires: MBEDTLS_THREADING_C
mbedAustin 11:cada08fc8a70 1233 *
mbedAustin 11:cada08fc8a70 1234 * Uncomment this to allow your own alternate threading implementation.
mbedAustin 11:cada08fc8a70 1235 */
mbedAustin 11:cada08fc8a70 1236 //#define MBEDTLS_THREADING_ALT
mbedAustin 11:cada08fc8a70 1237
mbedAustin 11:cada08fc8a70 1238 /**
mbedAustin 11:cada08fc8a70 1239 * \def MBEDTLS_THREADING_PTHREAD
mbedAustin 11:cada08fc8a70 1240 *
mbedAustin 11:cada08fc8a70 1241 * Enable the pthread wrapper layer for the threading layer.
mbedAustin 11:cada08fc8a70 1242 *
mbedAustin 11:cada08fc8a70 1243 * Requires: MBEDTLS_THREADING_C
mbedAustin 11:cada08fc8a70 1244 *
mbedAustin 11:cada08fc8a70 1245 * Uncomment this to enable pthread mutexes.
mbedAustin 11:cada08fc8a70 1246 */
mbedAustin 11:cada08fc8a70 1247 //#define MBEDTLS_THREADING_PTHREAD
mbedAustin 11:cada08fc8a70 1248
mbedAustin 11:cada08fc8a70 1249 /**
mbedAustin 11:cada08fc8a70 1250 * \def MBEDTLS_VERSION_FEATURES
mbedAustin 11:cada08fc8a70 1251 *
mbedAustin 11:cada08fc8a70 1252 * Allow run-time checking of compile-time enabled features. Thus allowing users
mbedAustin 11:cada08fc8a70 1253 * to check at run-time if the library is for instance compiled with threading
mbedAustin 11:cada08fc8a70 1254 * support via mbedtls_version_check_feature().
mbedAustin 11:cada08fc8a70 1255 *
mbedAustin 11:cada08fc8a70 1256 * Requires: MBEDTLS_VERSION_C
mbedAustin 11:cada08fc8a70 1257 *
mbedAustin 11:cada08fc8a70 1258 * Comment this to disable run-time checking and save ROM space
mbedAustin 11:cada08fc8a70 1259 */
mbedAustin 11:cada08fc8a70 1260 #define MBEDTLS_VERSION_FEATURES
mbedAustin 11:cada08fc8a70 1261
mbedAustin 11:cada08fc8a70 1262 /**
mbedAustin 11:cada08fc8a70 1263 * \def MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
mbedAustin 11:cada08fc8a70 1264 *
mbedAustin 11:cada08fc8a70 1265 * If set, the X509 parser will not break-off when parsing an X509 certificate
mbedAustin 11:cada08fc8a70 1266 * and encountering an extension in a v1 or v2 certificate.
mbedAustin 11:cada08fc8a70 1267 *
mbedAustin 11:cada08fc8a70 1268 * Uncomment to prevent an error.
mbedAustin 11:cada08fc8a70 1269 */
mbedAustin 11:cada08fc8a70 1270 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
mbedAustin 11:cada08fc8a70 1271
mbedAustin 11:cada08fc8a70 1272 /**
mbedAustin 11:cada08fc8a70 1273 * \def MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
mbedAustin 11:cada08fc8a70 1274 *
mbedAustin 11:cada08fc8a70 1275 * If set, the X509 parser will not break-off when parsing an X509 certificate
mbedAustin 11:cada08fc8a70 1276 * and encountering an unknown critical extension.
mbedAustin 11:cada08fc8a70 1277 *
mbedAustin 11:cada08fc8a70 1278 * \warning Depending on your PKI use, enabling this can be a security risk!
mbedAustin 11:cada08fc8a70 1279 *
mbedAustin 11:cada08fc8a70 1280 * Uncomment to prevent an error.
mbedAustin 11:cada08fc8a70 1281 */
mbedAustin 11:cada08fc8a70 1282 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
mbedAustin 11:cada08fc8a70 1283
mbedAustin 11:cada08fc8a70 1284 /**
mbedAustin 11:cada08fc8a70 1285 * \def MBEDTLS_X509_CHECK_KEY_USAGE
mbedAustin 11:cada08fc8a70 1286 *
mbedAustin 11:cada08fc8a70 1287 * Enable verification of the keyUsage extension (CA and leaf certificates).
mbedAustin 11:cada08fc8a70 1288 *
mbedAustin 11:cada08fc8a70 1289 * Disabling this avoids problems with mis-issued and/or misused
mbedAustin 11:cada08fc8a70 1290 * (intermediate) CA and leaf certificates.
mbedAustin 11:cada08fc8a70 1291 *
mbedAustin 11:cada08fc8a70 1292 * \warning Depending on your PKI use, disabling this can be a security risk!
mbedAustin 11:cada08fc8a70 1293 *
mbedAustin 11:cada08fc8a70 1294 * Comment to skip keyUsage checking for both CA and leaf certificates.
mbedAustin 11:cada08fc8a70 1295 */
mbedAustin 11:cada08fc8a70 1296 #define MBEDTLS_X509_CHECK_KEY_USAGE
mbedAustin 11:cada08fc8a70 1297
mbedAustin 11:cada08fc8a70 1298 /**
mbedAustin 11:cada08fc8a70 1299 * \def MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
mbedAustin 11:cada08fc8a70 1300 *
mbedAustin 11:cada08fc8a70 1301 * Enable verification of the extendedKeyUsage extension (leaf certificates).
mbedAustin 11:cada08fc8a70 1302 *
mbedAustin 11:cada08fc8a70 1303 * Disabling this avoids problems with mis-issued and/or misused certificates.
mbedAustin 11:cada08fc8a70 1304 *
mbedAustin 11:cada08fc8a70 1305 * \warning Depending on your PKI use, disabling this can be a security risk!
mbedAustin 11:cada08fc8a70 1306 *
mbedAustin 11:cada08fc8a70 1307 * Comment to skip extendedKeyUsage checking for certificates.
mbedAustin 11:cada08fc8a70 1308 */
mbedAustin 11:cada08fc8a70 1309 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
mbedAustin 11:cada08fc8a70 1310
mbedAustin 11:cada08fc8a70 1311 /**
mbedAustin 11:cada08fc8a70 1312 * \def MBEDTLS_X509_RSASSA_PSS_SUPPORT
mbedAustin 11:cada08fc8a70 1313 *
mbedAustin 11:cada08fc8a70 1314 * Enable parsing and verification of X.509 certificates, CRLs and CSRS
mbedAustin 11:cada08fc8a70 1315 * signed with RSASSA-PSS (aka PKCS#1 v2.1).
mbedAustin 11:cada08fc8a70 1316 *
mbedAustin 11:cada08fc8a70 1317 * Comment this macro to disallow using RSASSA-PSS in certificates.
mbedAustin 11:cada08fc8a70 1318 */
mbedAustin 11:cada08fc8a70 1319 //#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
mbedAustin 11:cada08fc8a70 1320
mbedAustin 11:cada08fc8a70 1321 /**
mbedAustin 11:cada08fc8a70 1322 * \def MBEDTLS_ZLIB_SUPPORT
mbedAustin 11:cada08fc8a70 1323 *
mbedAustin 11:cada08fc8a70 1324 * If set, the SSL/TLS module uses ZLIB to support compression and
mbedAustin 11:cada08fc8a70 1325 * decompression of packet data.
mbedAustin 11:cada08fc8a70 1326 *
mbedAustin 11:cada08fc8a70 1327 * \warning TLS-level compression MAY REDUCE SECURITY! See for example the
mbedAustin 11:cada08fc8a70 1328 * CRIME attack. Before enabling this option, you should examine with care if
mbedAustin 11:cada08fc8a70 1329 * CRIME or similar exploits may be a applicable to your use case.
mbedAustin 11:cada08fc8a70 1330 *
mbedAustin 11:cada08fc8a70 1331 * \note Currently compression can't be used with DTLS.
mbedAustin 11:cada08fc8a70 1332 *
mbedAustin 11:cada08fc8a70 1333 * Used in: library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1334 * library/ssl_cli.c
mbedAustin 11:cada08fc8a70 1335 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 1336 *
mbedAustin 11:cada08fc8a70 1337 * This feature requires zlib library and headers to be present.
mbedAustin 11:cada08fc8a70 1338 *
mbedAustin 11:cada08fc8a70 1339 * Uncomment to enable use of ZLIB
mbedAustin 11:cada08fc8a70 1340 */
mbedAustin 11:cada08fc8a70 1341 //#define MBEDTLS_ZLIB_SUPPORT
mbedAustin 11:cada08fc8a70 1342 /* \} name SECTION: mbed TLS feature support */
mbedAustin 11:cada08fc8a70 1343
mbedAustin 11:cada08fc8a70 1344 /**
mbedAustin 11:cada08fc8a70 1345 * \name SECTION: mbed TLS modules
mbedAustin 11:cada08fc8a70 1346 *
mbedAustin 11:cada08fc8a70 1347 * This section enables or disables entire modules in mbed TLS
mbedAustin 11:cada08fc8a70 1348 * \{
mbedAustin 11:cada08fc8a70 1349 */
mbedAustin 11:cada08fc8a70 1350
mbedAustin 11:cada08fc8a70 1351 /**
mbedAustin 11:cada08fc8a70 1352 * \def MBEDTLS_AESNI_C
mbedAustin 11:cada08fc8a70 1353 *
mbedAustin 11:cada08fc8a70 1354 * Enable AES-NI support on x86-64.
mbedAustin 11:cada08fc8a70 1355 *
mbedAustin 11:cada08fc8a70 1356 * Module: library/aesni.c
mbedAustin 11:cada08fc8a70 1357 * Caller: library/aes.c
mbedAustin 11:cada08fc8a70 1358 *
mbedAustin 11:cada08fc8a70 1359 * Requires: MBEDTLS_HAVE_ASM
mbedAustin 11:cada08fc8a70 1360 *
mbedAustin 11:cada08fc8a70 1361 * This modules adds support for the AES-NI instructions on x86-64
mbedAustin 11:cada08fc8a70 1362 */
mbedAustin 11:cada08fc8a70 1363 //#define MBEDTLS_AESNI_C
mbedAustin 11:cada08fc8a70 1364
mbedAustin 11:cada08fc8a70 1365 /**
mbedAustin 11:cada08fc8a70 1366 * \def MBEDTLS_AES_C
mbedAustin 11:cada08fc8a70 1367 *
mbedAustin 11:cada08fc8a70 1368 * Enable the AES block cipher.
mbedAustin 11:cada08fc8a70 1369 *
mbedAustin 11:cada08fc8a70 1370 * Module: library/aes.c
mbedAustin 11:cada08fc8a70 1371 * Caller: library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1372 * library/pem.c
mbedAustin 11:cada08fc8a70 1373 * library/ctr_drbg.c
mbedAustin 11:cada08fc8a70 1374 *
mbedAustin 11:cada08fc8a70 1375 * This module enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 1376 * enabled as well):
mbedAustin 11:cada08fc8a70 1377 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1378 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1379 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1380 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1381 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1382 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1383 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1384 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1385 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1386 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1387 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1388 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1389 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1390 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1391 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1392 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1393 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1394 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
mbedAustin 11:cada08fc8a70 1395 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1396 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1397 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1398 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1399 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1400 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1401 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1402 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1403 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1404 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1405 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1406 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1407 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1408 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1409 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1410 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1411 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1412 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1413 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1414 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1415 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1416 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1417 * MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1418 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256
mbedAustin 11:cada08fc8a70 1419 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1420 * MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1421 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1422 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1423 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1424 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1425 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1426 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1427 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1428 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1429 * MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1430 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1431 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1432 * MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1433 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1434 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1435 *
mbedAustin 11:cada08fc8a70 1436 * PEM_PARSE uses AES for decrypting encrypted keys.
mbedAustin 11:cada08fc8a70 1437 */
mbedAustin 11:cada08fc8a70 1438 #define MBEDTLS_AES_C
mbedAustin 11:cada08fc8a70 1439
mbedAustin 11:cada08fc8a70 1440 /**
mbedAustin 11:cada08fc8a70 1441 * \def MBEDTLS_ARC4_C
mbedAustin 11:cada08fc8a70 1442 *
mbedAustin 11:cada08fc8a70 1443 * Enable the ARCFOUR stream cipher.
mbedAustin 11:cada08fc8a70 1444 *
mbedAustin 11:cada08fc8a70 1445 * Module: library/arc4.c
mbedAustin 11:cada08fc8a70 1446 * Caller: library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1447 *
mbedAustin 11:cada08fc8a70 1448 * This module enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 1449 * enabled as well):
mbedAustin 11:cada08fc8a70 1450 * MBEDTLS_TLS_ECDH_ECDSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1451 * MBEDTLS_TLS_ECDH_RSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1452 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1453 * MBEDTLS_TLS_ECDHE_RSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1454 * MBEDTLS_TLS_ECDHE_PSK_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1455 * MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1456 * MBEDTLS_TLS_RSA_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1457 * MBEDTLS_TLS_RSA_WITH_RC4_128_MD5
mbedAustin 11:cada08fc8a70 1458 * MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1459 * MBEDTLS_TLS_PSK_WITH_RC4_128_SHA
mbedAustin 11:cada08fc8a70 1460 */
mbedAustin 11:cada08fc8a70 1461 //#define MBEDTLS_ARC4_C
mbedAustin 11:cada08fc8a70 1462
mbedAustin 11:cada08fc8a70 1463 /**
mbedAustin 11:cada08fc8a70 1464 * \def MBEDTLS_ASN1_PARSE_C
mbedAustin 11:cada08fc8a70 1465 *
mbedAustin 11:cada08fc8a70 1466 * Enable the generic ASN1 parser.
mbedAustin 11:cada08fc8a70 1467 *
mbedAustin 11:cada08fc8a70 1468 * Module: library/asn1.c
mbedAustin 11:cada08fc8a70 1469 * Caller: library/x509.c
mbedAustin 11:cada08fc8a70 1470 * library/dhm.c
mbedAustin 11:cada08fc8a70 1471 * library/pkcs12.c
mbedAustin 11:cada08fc8a70 1472 * library/pkcs5.c
mbedAustin 11:cada08fc8a70 1473 * library/pkparse.c
mbedAustin 11:cada08fc8a70 1474 */
mbedAustin 11:cada08fc8a70 1475 #define MBEDTLS_ASN1_PARSE_C
mbedAustin 11:cada08fc8a70 1476
mbedAustin 11:cada08fc8a70 1477 /**
mbedAustin 11:cada08fc8a70 1478 * \def MBEDTLS_ASN1_WRITE_C
mbedAustin 11:cada08fc8a70 1479 *
mbedAustin 11:cada08fc8a70 1480 * Enable the generic ASN1 writer.
mbedAustin 11:cada08fc8a70 1481 *
mbedAustin 11:cada08fc8a70 1482 * Module: library/asn1write.c
mbedAustin 11:cada08fc8a70 1483 * Caller: library/ecdsa.c
mbedAustin 11:cada08fc8a70 1484 * library/pkwrite.c
mbedAustin 11:cada08fc8a70 1485 * library/x509_create.c
mbedAustin 11:cada08fc8a70 1486 * library/x509write_crt.c
mbedAustin 11:cada08fc8a70 1487 * library/mbedtls_x509write_csr.c
mbedAustin 11:cada08fc8a70 1488 */
mbedAustin 11:cada08fc8a70 1489 #define MBEDTLS_ASN1_WRITE_C
mbedAustin 11:cada08fc8a70 1490
mbedAustin 11:cada08fc8a70 1491 /**
mbedAustin 11:cada08fc8a70 1492 * \def MBEDTLS_BASE64_C
mbedAustin 11:cada08fc8a70 1493 *
mbedAustin 11:cada08fc8a70 1494 * Enable the Base64 module.
mbedAustin 11:cada08fc8a70 1495 *
mbedAustin 11:cada08fc8a70 1496 * Module: library/base64.c
mbedAustin 11:cada08fc8a70 1497 * Caller: library/pem.c
mbedAustin 11:cada08fc8a70 1498 *
mbedAustin 11:cada08fc8a70 1499 * This module is required for PEM support (required by X.509).
mbedAustin 11:cada08fc8a70 1500 */
mbedAustin 11:cada08fc8a70 1501 #define MBEDTLS_BASE64_C
mbedAustin 11:cada08fc8a70 1502
mbedAustin 11:cada08fc8a70 1503 /**
mbedAustin 11:cada08fc8a70 1504 * \def MBEDTLS_BIGNUM_C
mbedAustin 11:cada08fc8a70 1505 *
mbedAustin 11:cada08fc8a70 1506 * Enable the multi-precision integer library.
mbedAustin 11:cada08fc8a70 1507 *
mbedAustin 11:cada08fc8a70 1508 * Module: library/bignum.c
mbedAustin 11:cada08fc8a70 1509 * Caller: library/dhm.c
mbedAustin 11:cada08fc8a70 1510 * library/ecp.c
mbedAustin 11:cada08fc8a70 1511 * library/ecdsa.c
mbedAustin 11:cada08fc8a70 1512 * library/rsa.c
mbedAustin 11:cada08fc8a70 1513 * library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1514 *
mbedAustin 11:cada08fc8a70 1515 * This module is required for RSA, DHM and ECC (ECDH, ECDSA) support.
mbedAustin 11:cada08fc8a70 1516 */
mbedAustin 11:cada08fc8a70 1517 #define MBEDTLS_BIGNUM_C
mbedAustin 11:cada08fc8a70 1518
mbedAustin 11:cada08fc8a70 1519 /**
mbedAustin 11:cada08fc8a70 1520 * \def MBEDTLS_BLOWFISH_C
mbedAustin 11:cada08fc8a70 1521 *
mbedAustin 11:cada08fc8a70 1522 * Enable the Blowfish block cipher.
mbedAustin 11:cada08fc8a70 1523 *
mbedAustin 11:cada08fc8a70 1524 * Module: library/blowfish.c
mbedAustin 11:cada08fc8a70 1525 */
mbedAustin 11:cada08fc8a70 1526 //#define MBEDTLS_BLOWFISH_C
mbedAustin 11:cada08fc8a70 1527
mbedAustin 11:cada08fc8a70 1528 /**
mbedAustin 11:cada08fc8a70 1529 * \def MBEDTLS_CAMELLIA_C
mbedAustin 11:cada08fc8a70 1530 *
mbedAustin 11:cada08fc8a70 1531 * Enable the Camellia block cipher.
mbedAustin 11:cada08fc8a70 1532 *
mbedAustin 11:cada08fc8a70 1533 * Module: library/camellia.c
mbedAustin 11:cada08fc8a70 1534 * Caller: library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1535 *
mbedAustin 11:cada08fc8a70 1536 * This module enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 1537 * enabled as well):
mbedAustin 11:cada08fc8a70 1538 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1539 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1540 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1541 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1542 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1543 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1544 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1545 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1546 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1547 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1548 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1549 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1550 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1551 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
mbedAustin 11:cada08fc8a70 1552 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1553 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1554 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1555 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1556 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1557 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1558 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1559 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1560 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1561 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1562 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1563 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1564 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1565 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1566 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1567 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
mbedAustin 11:cada08fc8a70 1568 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
mbedAustin 11:cada08fc8a70 1569 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1570 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1571 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
mbedAustin 11:cada08fc8a70 1572 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1573 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1574 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1575 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1576 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384
mbedAustin 11:cada08fc8a70 1577 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384
mbedAustin 11:cada08fc8a70 1578 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 1579 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256
mbedAustin 11:cada08fc8a70 1580 */
mbedAustin 11:cada08fc8a70 1581 //#define MBEDTLS_CAMELLIA_C
mbedAustin 11:cada08fc8a70 1582
mbedAustin 11:cada08fc8a70 1583 /**
mbedAustin 11:cada08fc8a70 1584 * \def MBEDTLS_CCM_C
mbedAustin 11:cada08fc8a70 1585 *
mbedAustin 11:cada08fc8a70 1586 * Enable the Counter with CBC-MAC (CCM) mode for 128-bit block cipher.
mbedAustin 11:cada08fc8a70 1587 *
mbedAustin 11:cada08fc8a70 1588 * Module: library/ccm.c
mbedAustin 11:cada08fc8a70 1589 *
mbedAustin 11:cada08fc8a70 1590 * Requires: MBEDTLS_AES_C or MBEDTLS_CAMELLIA_C
mbedAustin 11:cada08fc8a70 1591 *
mbedAustin 11:cada08fc8a70 1592 * This module enables the AES-CCM ciphersuites, if other requisites are
mbedAustin 11:cada08fc8a70 1593 * enabled as well.
mbedAustin 11:cada08fc8a70 1594 */
mbedAustin 11:cada08fc8a70 1595 #define MBEDTLS_CCM_C
mbedAustin 11:cada08fc8a70 1596
mbedAustin 11:cada08fc8a70 1597 /**
mbedAustin 11:cada08fc8a70 1598 * \def MBEDTLS_CERTS_C
mbedAustin 11:cada08fc8a70 1599 *
mbedAustin 11:cada08fc8a70 1600 * Enable the test certificates.
mbedAustin 11:cada08fc8a70 1601 *
mbedAustin 11:cada08fc8a70 1602 * Module: library/certs.c
mbedAustin 11:cada08fc8a70 1603 * Caller:
mbedAustin 11:cada08fc8a70 1604 *
mbedAustin 11:cada08fc8a70 1605 * This module is used for testing (ssl_client/server).
mbedAustin 11:cada08fc8a70 1606 */
mbedAustin 11:cada08fc8a70 1607 #define MBEDTLS_CERTS_C
mbedAustin 11:cada08fc8a70 1608
mbedAustin 11:cada08fc8a70 1609 /**
mbedAustin 11:cada08fc8a70 1610 * \def MBEDTLS_CIPHER_C
mbedAustin 11:cada08fc8a70 1611 *
mbedAustin 11:cada08fc8a70 1612 * Enable the generic cipher layer.
mbedAustin 11:cada08fc8a70 1613 *
mbedAustin 11:cada08fc8a70 1614 * Module: library/cipher.c
mbedAustin 11:cada08fc8a70 1615 * Caller: library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1616 *
mbedAustin 11:cada08fc8a70 1617 * Uncomment to enable generic cipher wrappers.
mbedAustin 11:cada08fc8a70 1618 */
mbedAustin 11:cada08fc8a70 1619 #define MBEDTLS_CIPHER_C
mbedAustin 11:cada08fc8a70 1620
mbedAustin 11:cada08fc8a70 1621 /**
mbedAustin 11:cada08fc8a70 1622 * \def MBEDTLS_CTR_DRBG_C
mbedAustin 11:cada08fc8a70 1623 *
mbedAustin 11:cada08fc8a70 1624 * Enable the CTR_DRBG AES-256-based random generator.
mbedAustin 11:cada08fc8a70 1625 *
mbedAustin 11:cada08fc8a70 1626 * Module: library/ctr_drbg.c
mbedAustin 11:cada08fc8a70 1627 * Caller:
mbedAustin 11:cada08fc8a70 1628 *
mbedAustin 11:cada08fc8a70 1629 * Requires: MBEDTLS_AES_C
mbedAustin 11:cada08fc8a70 1630 *
mbedAustin 11:cada08fc8a70 1631 * This module provides the CTR_DRBG AES-256 random number generator.
mbedAustin 11:cada08fc8a70 1632 */
mbedAustin 11:cada08fc8a70 1633 #define MBEDTLS_CTR_DRBG_C
mbedAustin 11:cada08fc8a70 1634
mbedAustin 11:cada08fc8a70 1635 /**
mbedAustin 11:cada08fc8a70 1636 * \def MBEDTLS_DEBUG_C
mbedAustin 11:cada08fc8a70 1637 *
mbedAustin 11:cada08fc8a70 1638 * Enable the debug functions.
mbedAustin 11:cada08fc8a70 1639 *
mbedAustin 11:cada08fc8a70 1640 * Module: library/debug.c
mbedAustin 11:cada08fc8a70 1641 * Caller: library/ssl_cli.c
mbedAustin 11:cada08fc8a70 1642 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 1643 * library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1644 *
mbedAustin 11:cada08fc8a70 1645 * This module provides debugging functions.
mbedAustin 11:cada08fc8a70 1646 */
mbedAustin 11:cada08fc8a70 1647 #define MBEDTLS_DEBUG_C
mbedAustin 11:cada08fc8a70 1648
mbedAustin 11:cada08fc8a70 1649 /**
mbedAustin 11:cada08fc8a70 1650 * \def MBEDTLS_DES_C
mbedAustin 11:cada08fc8a70 1651 *
mbedAustin 11:cada08fc8a70 1652 * Enable the DES block cipher.
mbedAustin 11:cada08fc8a70 1653 *
mbedAustin 11:cada08fc8a70 1654 * Module: library/des.c
mbedAustin 11:cada08fc8a70 1655 * Caller: library/pem.c
mbedAustin 11:cada08fc8a70 1656 * library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1657 *
mbedAustin 11:cada08fc8a70 1658 * This module enables the following ciphersuites (if other requisites are
mbedAustin 11:cada08fc8a70 1659 * enabled as well):
mbedAustin 11:cada08fc8a70 1660 * MBEDTLS_TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1661 * MBEDTLS_TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1662 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1663 * MBEDTLS_TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1664 * MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1665 * MBEDTLS_TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1666 * MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1667 * MBEDTLS_TLS_RSA_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1668 * MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1669 * MBEDTLS_TLS_PSK_WITH_3DES_EDE_CBC_SHA
mbedAustin 11:cada08fc8a70 1670 *
mbedAustin 11:cada08fc8a70 1671 * PEM_PARSE uses DES/3DES for decrypting encrypted keys.
mbedAustin 11:cada08fc8a70 1672 */
mbedAustin 11:cada08fc8a70 1673 //#define MBEDTLS_DES_C
mbedAustin 11:cada08fc8a70 1674
mbedAustin 11:cada08fc8a70 1675 /**
mbedAustin 11:cada08fc8a70 1676 * \def MBEDTLS_DHM_C
mbedAustin 11:cada08fc8a70 1677 *
mbedAustin 11:cada08fc8a70 1678 * Enable the Diffie-Hellman-Merkle module.
mbedAustin 11:cada08fc8a70 1679 *
mbedAustin 11:cada08fc8a70 1680 * Module: library/dhm.c
mbedAustin 11:cada08fc8a70 1681 * Caller: library/ssl_cli.c
mbedAustin 11:cada08fc8a70 1682 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 1683 *
mbedAustin 11:cada08fc8a70 1684 * This module is used by the following key exchanges:
mbedAustin 11:cada08fc8a70 1685 * DHE-RSA, DHE-PSK
mbedAustin 11:cada08fc8a70 1686 */
mbedAustin 11:cada08fc8a70 1687 //#define MBEDTLS_DHM_C
mbedAustin 11:cada08fc8a70 1688
mbedAustin 11:cada08fc8a70 1689 /**
mbedAustin 11:cada08fc8a70 1690 * \def MBEDTLS_ECDH_C
mbedAustin 11:cada08fc8a70 1691 *
mbedAustin 11:cada08fc8a70 1692 * Enable the elliptic curve Diffie-Hellman library.
mbedAustin 11:cada08fc8a70 1693 *
mbedAustin 11:cada08fc8a70 1694 * Module: library/ecdh.c
mbedAustin 11:cada08fc8a70 1695 * Caller: library/ssl_cli.c
mbedAustin 11:cada08fc8a70 1696 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 1697 *
mbedAustin 11:cada08fc8a70 1698 * This module is used by the following key exchanges:
mbedAustin 11:cada08fc8a70 1699 * ECDHE-ECDSA, ECDHE-RSA, DHE-PSK
mbedAustin 11:cada08fc8a70 1700 *
mbedAustin 11:cada08fc8a70 1701 * Requires: MBEDTLS_ECP_C
mbedAustin 11:cada08fc8a70 1702 */
mbedAustin 11:cada08fc8a70 1703 #define MBEDTLS_ECDH_C
mbedAustin 11:cada08fc8a70 1704
mbedAustin 11:cada08fc8a70 1705 /**
mbedAustin 11:cada08fc8a70 1706 * \def MBEDTLS_ECDSA_C
mbedAustin 11:cada08fc8a70 1707 *
mbedAustin 11:cada08fc8a70 1708 * Enable the elliptic curve DSA library.
mbedAustin 11:cada08fc8a70 1709 *
mbedAustin 11:cada08fc8a70 1710 * Module: library/ecdsa.c
mbedAustin 11:cada08fc8a70 1711 * Caller:
mbedAustin 11:cada08fc8a70 1712 *
mbedAustin 11:cada08fc8a70 1713 * This module is used by the following key exchanges:
mbedAustin 11:cada08fc8a70 1714 * ECDHE-ECDSA
mbedAustin 11:cada08fc8a70 1715 *
mbedAustin 11:cada08fc8a70 1716 * Requires: MBEDTLS_ECP_C, MBEDTLS_ASN1_WRITE_C, MBEDTLS_ASN1_PARSE_C
mbedAustin 11:cada08fc8a70 1717 */
mbedAustin 11:cada08fc8a70 1718 #define MBEDTLS_ECDSA_C
mbedAustin 11:cada08fc8a70 1719
mbedAustin 11:cada08fc8a70 1720 /**
mbedAustin 11:cada08fc8a70 1721 * \def MBEDTLS_ECJPAKE_C
mbedAustin 11:cada08fc8a70 1722 *
mbedAustin 11:cada08fc8a70 1723 * Enable the elliptic curve J-PAKE library.
mbedAustin 11:cada08fc8a70 1724 *
mbedAustin 11:cada08fc8a70 1725 * \warning This is currently experimental. EC J-PAKE support is based on the
mbedAustin 11:cada08fc8a70 1726 * Thread v1.0.0 specification; incompatible changes to the specification
mbedAustin 11:cada08fc8a70 1727 * might still happen. For this reason, this is disabled by default.
mbedAustin 11:cada08fc8a70 1728 *
mbedAustin 11:cada08fc8a70 1729 * Module: library/ecjpake.c
mbedAustin 11:cada08fc8a70 1730 * Caller:
mbedAustin 11:cada08fc8a70 1731 *
mbedAustin 11:cada08fc8a70 1732 * This module is used by the following key exchanges:
mbedAustin 11:cada08fc8a70 1733 * ECJPAKE
mbedAustin 11:cada08fc8a70 1734 *
mbedAustin 11:cada08fc8a70 1735 * Requires: MBEDTLS_ECP_C, MBEDTLS_MD_C
mbedAustin 11:cada08fc8a70 1736 */
mbedAustin 11:cada08fc8a70 1737 //#define MBEDTLS_ECJPAKE_C
mbedAustin 11:cada08fc8a70 1738
mbedAustin 11:cada08fc8a70 1739 /**
mbedAustin 11:cada08fc8a70 1740 * \def MBEDTLS_ECP_C
mbedAustin 11:cada08fc8a70 1741 *
mbedAustin 11:cada08fc8a70 1742 * Enable the elliptic curve over GF(p) library.
mbedAustin 11:cada08fc8a70 1743 *
mbedAustin 11:cada08fc8a70 1744 * Module: library/ecp.c
mbedAustin 11:cada08fc8a70 1745 * Caller: library/ecdh.c
mbedAustin 11:cada08fc8a70 1746 * library/ecdsa.c
mbedAustin 11:cada08fc8a70 1747 * library/ecjpake.c
mbedAustin 11:cada08fc8a70 1748 *
mbedAustin 11:cada08fc8a70 1749 * Requires: MBEDTLS_BIGNUM_C and at least one MBEDTLS_ECP_DP_XXX_ENABLED
mbedAustin 11:cada08fc8a70 1750 */
mbedAustin 11:cada08fc8a70 1751 #define MBEDTLS_ECP_C
mbedAustin 11:cada08fc8a70 1752
mbedAustin 11:cada08fc8a70 1753 /**
mbedAustin 11:cada08fc8a70 1754 * \def MBEDTLS_ENTROPY_C
mbedAustin 11:cada08fc8a70 1755 *
mbedAustin 11:cada08fc8a70 1756 * Enable the platform-specific entropy code.
mbedAustin 11:cada08fc8a70 1757 *
mbedAustin 11:cada08fc8a70 1758 * Module: library/entropy.c
mbedAustin 11:cada08fc8a70 1759 * Caller:
mbedAustin 11:cada08fc8a70 1760 *
mbedAustin 11:cada08fc8a70 1761 * Requires: MBEDTLS_SHA512_C or MBEDTLS_SHA256_C
mbedAustin 11:cada08fc8a70 1762 *
mbedAustin 11:cada08fc8a70 1763 * This module provides a generic entropy pool
mbedAustin 11:cada08fc8a70 1764 */
mbedAustin 11:cada08fc8a70 1765 #define MBEDTLS_ENTROPY_C
mbedAustin 11:cada08fc8a70 1766
mbedAustin 11:cada08fc8a70 1767 /**
mbedAustin 11:cada08fc8a70 1768 * \def MBEDTLS_ERROR_C
mbedAustin 11:cada08fc8a70 1769 *
mbedAustin 11:cada08fc8a70 1770 * Enable error code to error string conversion.
mbedAustin 11:cada08fc8a70 1771 *
mbedAustin 11:cada08fc8a70 1772 * Module: library/error.c
mbedAustin 11:cada08fc8a70 1773 * Caller:
mbedAustin 11:cada08fc8a70 1774 *
mbedAustin 11:cada08fc8a70 1775 * This module enables mbedtls_strerror().
mbedAustin 11:cada08fc8a70 1776 */
mbedAustin 11:cada08fc8a70 1777 #define MBEDTLS_ERROR_C
mbedAustin 11:cada08fc8a70 1778
mbedAustin 11:cada08fc8a70 1779 /**
mbedAustin 11:cada08fc8a70 1780 * \def MBEDTLS_GCM_C
mbedAustin 11:cada08fc8a70 1781 *
mbedAustin 11:cada08fc8a70 1782 * Enable the Galois/Counter Mode (GCM) for AES.
mbedAustin 11:cada08fc8a70 1783 *
mbedAustin 11:cada08fc8a70 1784 * Module: library/gcm.c
mbedAustin 11:cada08fc8a70 1785 *
mbedAustin 11:cada08fc8a70 1786 * Requires: MBEDTLS_AES_C or MBEDTLS_CAMELLIA_C
mbedAustin 11:cada08fc8a70 1787 *
mbedAustin 11:cada08fc8a70 1788 * This module enables the AES-GCM and CAMELLIA-GCM ciphersuites, if other
mbedAustin 11:cada08fc8a70 1789 * requisites are enabled as well.
mbedAustin 11:cada08fc8a70 1790 */
mbedAustin 11:cada08fc8a70 1791 #define MBEDTLS_GCM_C
mbedAustin 11:cada08fc8a70 1792
mbedAustin 11:cada08fc8a70 1793 /**
mbedAustin 11:cada08fc8a70 1794 * \def MBEDTLS_HAVEGE_C
mbedAustin 11:cada08fc8a70 1795 *
mbedAustin 11:cada08fc8a70 1796 * Enable the HAVEGE random generator.
mbedAustin 11:cada08fc8a70 1797 *
mbedAustin 11:cada08fc8a70 1798 * Warning: the HAVEGE random generator is not suitable for virtualized
mbedAustin 11:cada08fc8a70 1799 * environments
mbedAustin 11:cada08fc8a70 1800 *
mbedAustin 11:cada08fc8a70 1801 * Warning: the HAVEGE random generator is dependent on timing and specific
mbedAustin 11:cada08fc8a70 1802 * processor traits. It is therefore not advised to use HAVEGE as
mbedAustin 11:cada08fc8a70 1803 * your applications primary random generator or primary entropy pool
mbedAustin 11:cada08fc8a70 1804 * input. As a secondary input to your entropy pool, it IS able add
mbedAustin 11:cada08fc8a70 1805 * the (limited) extra entropy it provides.
mbedAustin 11:cada08fc8a70 1806 *
mbedAustin 11:cada08fc8a70 1807 * Module: library/havege.c
mbedAustin 11:cada08fc8a70 1808 * Caller:
mbedAustin 11:cada08fc8a70 1809 *
mbedAustin 11:cada08fc8a70 1810 * Requires: MBEDTLS_TIMING_C
mbedAustin 11:cada08fc8a70 1811 *
mbedAustin 11:cada08fc8a70 1812 * Uncomment to enable the HAVEGE random generator.
mbedAustin 11:cada08fc8a70 1813 */
mbedAustin 11:cada08fc8a70 1814 //#define MBEDTLS_HAVEGE_C
mbedAustin 11:cada08fc8a70 1815
mbedAustin 11:cada08fc8a70 1816 /**
mbedAustin 11:cada08fc8a70 1817 * \def MBEDTLS_HMAC_DRBG_C
mbedAustin 11:cada08fc8a70 1818 *
mbedAustin 11:cada08fc8a70 1819 * Enable the HMAC_DRBG random generator.
mbedAustin 11:cada08fc8a70 1820 *
mbedAustin 11:cada08fc8a70 1821 * Module: library/hmac_drbg.c
mbedAustin 11:cada08fc8a70 1822 * Caller:
mbedAustin 11:cada08fc8a70 1823 *
mbedAustin 11:cada08fc8a70 1824 * Requires: MBEDTLS_MD_C
mbedAustin 11:cada08fc8a70 1825 *
mbedAustin 11:cada08fc8a70 1826 * Uncomment to enable the HMAC_DRBG random number geerator.
mbedAustin 11:cada08fc8a70 1827 */
mbedAustin 11:cada08fc8a70 1828 #define MBEDTLS_HMAC_DRBG_C
mbedAustin 11:cada08fc8a70 1829
mbedAustin 11:cada08fc8a70 1830 /**
mbedAustin 11:cada08fc8a70 1831 * \def MBEDTLS_MD_C
mbedAustin 11:cada08fc8a70 1832 *
mbedAustin 11:cada08fc8a70 1833 * Enable the generic message digest layer.
mbedAustin 11:cada08fc8a70 1834 *
mbedAustin 11:cada08fc8a70 1835 * Module: library/mbedtls_md.c
mbedAustin 11:cada08fc8a70 1836 * Caller:
mbedAustin 11:cada08fc8a70 1837 *
mbedAustin 11:cada08fc8a70 1838 * Uncomment to enable generic message digest wrappers.
mbedAustin 11:cada08fc8a70 1839 */
mbedAustin 11:cada08fc8a70 1840 #define MBEDTLS_MD_C
mbedAustin 11:cada08fc8a70 1841
mbedAustin 11:cada08fc8a70 1842 /**
mbedAustin 11:cada08fc8a70 1843 * \def MBEDTLS_MD2_C
mbedAustin 11:cada08fc8a70 1844 *
mbedAustin 11:cada08fc8a70 1845 * Enable the MD2 hash algorithm.
mbedAustin 11:cada08fc8a70 1846 *
mbedAustin 11:cada08fc8a70 1847 * Module: library/mbedtls_md2.c
mbedAustin 11:cada08fc8a70 1848 * Caller:
mbedAustin 11:cada08fc8a70 1849 *
mbedAustin 11:cada08fc8a70 1850 * Uncomment to enable support for (rare) MD2-signed X.509 certs.
mbedAustin 11:cada08fc8a70 1851 */
mbedAustin 11:cada08fc8a70 1852 //#define MBEDTLS_MD2_C
mbedAustin 11:cada08fc8a70 1853
mbedAustin 11:cada08fc8a70 1854 /**
mbedAustin 11:cada08fc8a70 1855 * \def MBEDTLS_MD4_C
mbedAustin 11:cada08fc8a70 1856 *
mbedAustin 11:cada08fc8a70 1857 * Enable the MD4 hash algorithm.
mbedAustin 11:cada08fc8a70 1858 *
mbedAustin 11:cada08fc8a70 1859 * Module: library/mbedtls_md4.c
mbedAustin 11:cada08fc8a70 1860 * Caller:
mbedAustin 11:cada08fc8a70 1861 *
mbedAustin 11:cada08fc8a70 1862 * Uncomment to enable support for (rare) MD4-signed X.509 certs.
mbedAustin 11:cada08fc8a70 1863 */
mbedAustin 11:cada08fc8a70 1864 //#define MBEDTLS_MD4_C
mbedAustin 11:cada08fc8a70 1865
mbedAustin 11:cada08fc8a70 1866 /**
mbedAustin 11:cada08fc8a70 1867 * \def MBEDTLS_MD5_C
mbedAustin 11:cada08fc8a70 1868 *
mbedAustin 11:cada08fc8a70 1869 * Enable the MD5 hash algorithm.
mbedAustin 11:cada08fc8a70 1870 *
mbedAustin 11:cada08fc8a70 1871 * Module: library/mbedtls_md5.c
mbedAustin 11:cada08fc8a70 1872 * Caller: library/mbedtls_md.c
mbedAustin 11:cada08fc8a70 1873 * library/pem.c
mbedAustin 11:cada08fc8a70 1874 * library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1875 *
mbedAustin 11:cada08fc8a70 1876 * This module is required for SSL/TLS and X.509.
mbedAustin 11:cada08fc8a70 1877 * PEM_PARSE uses MD5 for decrypting encrypted keys.
mbedAustin 11:cada08fc8a70 1878 */
mbedAustin 11:cada08fc8a70 1879 //#define MBEDTLS_MD5_C
mbedAustin 11:cada08fc8a70 1880
mbedAustin 11:cada08fc8a70 1881 /**
mbedAustin 11:cada08fc8a70 1882 * \def MBEDTLS_MEMORY_BUFFER_ALLOC_C
mbedAustin 11:cada08fc8a70 1883 *
mbedAustin 11:cada08fc8a70 1884 * Enable the buffer allocator implementation that makes use of a (stack)
mbedAustin 11:cada08fc8a70 1885 * based buffer to 'allocate' dynamic memory. (replaces calloc() and free()
mbedAustin 11:cada08fc8a70 1886 * calls)
mbedAustin 11:cada08fc8a70 1887 *
mbedAustin 11:cada08fc8a70 1888 * Module: library/memory_buffer_alloc.c
mbedAustin 11:cada08fc8a70 1889 *
mbedAustin 11:cada08fc8a70 1890 * Requires: MBEDTLS_PLATFORM_C
mbedAustin 11:cada08fc8a70 1891 * MBEDTLS_PLATFORM_MEMORY (to use it within mbed TLS)
mbedAustin 11:cada08fc8a70 1892 *
mbedAustin 11:cada08fc8a70 1893 * Enable this module to enable the buffer memory allocator.
mbedAustin 11:cada08fc8a70 1894 */
mbedAustin 11:cada08fc8a70 1895 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
mbedAustin 11:cada08fc8a70 1896
mbedAustin 11:cada08fc8a70 1897 /**
mbedAustin 11:cada08fc8a70 1898 * \def MBEDTLS_NET_C
mbedAustin 11:cada08fc8a70 1899 *
mbedAustin 11:cada08fc8a70 1900 * Enable the TCP/IP networking routines.
mbedAustin 11:cada08fc8a70 1901 *
mbedAustin 11:cada08fc8a70 1902 * Module: library/net.c
mbedAustin 11:cada08fc8a70 1903 *
mbedAustin 11:cada08fc8a70 1904 * This module provides TCP/IP networking routines.
mbedAustin 11:cada08fc8a70 1905 */
mbedAustin 11:cada08fc8a70 1906 //#define MBEDTLS_NET_C
mbedAustin 11:cada08fc8a70 1907
mbedAustin 11:cada08fc8a70 1908 /**
mbedAustin 11:cada08fc8a70 1909 * \def MBEDTLS_OID_C
mbedAustin 11:cada08fc8a70 1910 *
mbedAustin 11:cada08fc8a70 1911 * Enable the OID database.
mbedAustin 11:cada08fc8a70 1912 *
mbedAustin 11:cada08fc8a70 1913 * Module: library/oid.c
mbedAustin 11:cada08fc8a70 1914 * Caller: library/asn1write.c
mbedAustin 11:cada08fc8a70 1915 * library/pkcs5.c
mbedAustin 11:cada08fc8a70 1916 * library/pkparse.c
mbedAustin 11:cada08fc8a70 1917 * library/pkwrite.c
mbedAustin 11:cada08fc8a70 1918 * library/rsa.c
mbedAustin 11:cada08fc8a70 1919 * library/x509.c
mbedAustin 11:cada08fc8a70 1920 * library/x509_create.c
mbedAustin 11:cada08fc8a70 1921 * library/mbedtls_x509_crl.c
mbedAustin 11:cada08fc8a70 1922 * library/mbedtls_x509_crt.c
mbedAustin 11:cada08fc8a70 1923 * library/mbedtls_x509_csr.c
mbedAustin 11:cada08fc8a70 1924 * library/x509write_crt.c
mbedAustin 11:cada08fc8a70 1925 * library/mbedtls_x509write_csr.c
mbedAustin 11:cada08fc8a70 1926 *
mbedAustin 11:cada08fc8a70 1927 * This modules translates between OIDs and internal values.
mbedAustin 11:cada08fc8a70 1928 */
mbedAustin 11:cada08fc8a70 1929 #define MBEDTLS_OID_C
mbedAustin 11:cada08fc8a70 1930
mbedAustin 11:cada08fc8a70 1931 /**
mbedAustin 11:cada08fc8a70 1932 * \def MBEDTLS_PADLOCK_C
mbedAustin 11:cada08fc8a70 1933 *
mbedAustin 11:cada08fc8a70 1934 * Enable VIA Padlock support on x86.
mbedAustin 11:cada08fc8a70 1935 *
mbedAustin 11:cada08fc8a70 1936 * Module: library/padlock.c
mbedAustin 11:cada08fc8a70 1937 * Caller: library/aes.c
mbedAustin 11:cada08fc8a70 1938 *
mbedAustin 11:cada08fc8a70 1939 * Requires: MBEDTLS_HAVE_ASM
mbedAustin 11:cada08fc8a70 1940 *
mbedAustin 11:cada08fc8a70 1941 * This modules adds support for the VIA PadLock on x86.
mbedAustin 11:cada08fc8a70 1942 */
mbedAustin 11:cada08fc8a70 1943 //#define MBEDTLS_PADLOCK_C
mbedAustin 11:cada08fc8a70 1944
mbedAustin 11:cada08fc8a70 1945 /**
mbedAustin 11:cada08fc8a70 1946 * \def MBEDTLS_PEM_PARSE_C
mbedAustin 11:cada08fc8a70 1947 *
mbedAustin 11:cada08fc8a70 1948 * Enable PEM decoding / parsing.
mbedAustin 11:cada08fc8a70 1949 *
mbedAustin 11:cada08fc8a70 1950 * Module: library/pem.c
mbedAustin 11:cada08fc8a70 1951 * Caller: library/dhm.c
mbedAustin 11:cada08fc8a70 1952 * library/pkparse.c
mbedAustin 11:cada08fc8a70 1953 * library/mbedtls_x509_crl.c
mbedAustin 11:cada08fc8a70 1954 * library/mbedtls_x509_crt.c
mbedAustin 11:cada08fc8a70 1955 * library/mbedtls_x509_csr.c
mbedAustin 11:cada08fc8a70 1956 *
mbedAustin 11:cada08fc8a70 1957 * Requires: MBEDTLS_BASE64_C
mbedAustin 11:cada08fc8a70 1958 *
mbedAustin 11:cada08fc8a70 1959 * This modules adds support for decoding / parsing PEM files.
mbedAustin 11:cada08fc8a70 1960 */
mbedAustin 11:cada08fc8a70 1961 #define MBEDTLS_PEM_PARSE_C
mbedAustin 11:cada08fc8a70 1962
mbedAustin 11:cada08fc8a70 1963 /**
mbedAustin 11:cada08fc8a70 1964 * \def MBEDTLS_PEM_WRITE_C
mbedAustin 11:cada08fc8a70 1965 *
mbedAustin 11:cada08fc8a70 1966 * Enable PEM encoding / writing.
mbedAustin 11:cada08fc8a70 1967 *
mbedAustin 11:cada08fc8a70 1968 * Module: library/pem.c
mbedAustin 11:cada08fc8a70 1969 * Caller: library/pkwrite.c
mbedAustin 11:cada08fc8a70 1970 * library/x509write_crt.c
mbedAustin 11:cada08fc8a70 1971 * library/mbedtls_x509write_csr.c
mbedAustin 11:cada08fc8a70 1972 *
mbedAustin 11:cada08fc8a70 1973 * Requires: MBEDTLS_BASE64_C
mbedAustin 11:cada08fc8a70 1974 *
mbedAustin 11:cada08fc8a70 1975 * This modules adds support for encoding / writing PEM files.
mbedAustin 11:cada08fc8a70 1976 */
mbedAustin 11:cada08fc8a70 1977 //#define MBEDTLS_PEM_WRITE_C
mbedAustin 11:cada08fc8a70 1978
mbedAustin 11:cada08fc8a70 1979 /**
mbedAustin 11:cada08fc8a70 1980 * \def MBEDTLS_PK_C
mbedAustin 11:cada08fc8a70 1981 *
mbedAustin 11:cada08fc8a70 1982 * Enable the generic public (asymetric) key layer.
mbedAustin 11:cada08fc8a70 1983 *
mbedAustin 11:cada08fc8a70 1984 * Module: library/pk.c
mbedAustin 11:cada08fc8a70 1985 * Caller: library/ssl_tls.c
mbedAustin 11:cada08fc8a70 1986 * library/ssl_cli.c
mbedAustin 11:cada08fc8a70 1987 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 1988 *
mbedAustin 11:cada08fc8a70 1989 * Requires: MBEDTLS_RSA_C or MBEDTLS_ECP_C
mbedAustin 11:cada08fc8a70 1990 *
mbedAustin 11:cada08fc8a70 1991 * Uncomment to enable generic public key wrappers.
mbedAustin 11:cada08fc8a70 1992 */
mbedAustin 11:cada08fc8a70 1993 #define MBEDTLS_PK_C
mbedAustin 11:cada08fc8a70 1994
mbedAustin 11:cada08fc8a70 1995 /**
mbedAustin 11:cada08fc8a70 1996 * \def MBEDTLS_PK_PARSE_C
mbedAustin 11:cada08fc8a70 1997 *
mbedAustin 11:cada08fc8a70 1998 * Enable the generic public (asymetric) key parser.
mbedAustin 11:cada08fc8a70 1999 *
mbedAustin 11:cada08fc8a70 2000 * Module: library/pkparse.c
mbedAustin 11:cada08fc8a70 2001 * Caller: library/mbedtls_x509_crt.c
mbedAustin 11:cada08fc8a70 2002 * library/mbedtls_x509_csr.c
mbedAustin 11:cada08fc8a70 2003 *
mbedAustin 11:cada08fc8a70 2004 * Requires: MBEDTLS_PK_C
mbedAustin 11:cada08fc8a70 2005 *
mbedAustin 11:cada08fc8a70 2006 * Uncomment to enable generic public key parse functions.
mbedAustin 11:cada08fc8a70 2007 */
mbedAustin 11:cada08fc8a70 2008 #define MBEDTLS_PK_PARSE_C
mbedAustin 11:cada08fc8a70 2009
mbedAustin 11:cada08fc8a70 2010 /**
mbedAustin 11:cada08fc8a70 2011 * \def MBEDTLS_PK_WRITE_C
mbedAustin 11:cada08fc8a70 2012 *
mbedAustin 11:cada08fc8a70 2013 * Enable the generic public (asymetric) key writer.
mbedAustin 11:cada08fc8a70 2014 *
mbedAustin 11:cada08fc8a70 2015 * Module: library/pkwrite.c
mbedAustin 11:cada08fc8a70 2016 * Caller: library/x509write.c
mbedAustin 11:cada08fc8a70 2017 *
mbedAustin 11:cada08fc8a70 2018 * Requires: MBEDTLS_PK_C
mbedAustin 11:cada08fc8a70 2019 *
mbedAustin 11:cada08fc8a70 2020 * Uncomment to enable generic public key write functions.
mbedAustin 11:cada08fc8a70 2021 */
mbedAustin 11:cada08fc8a70 2022 #define MBEDTLS_PK_WRITE_C
mbedAustin 11:cada08fc8a70 2023
mbedAustin 11:cada08fc8a70 2024 /**
mbedAustin 11:cada08fc8a70 2025 * \def MBEDTLS_PKCS5_C
mbedAustin 11:cada08fc8a70 2026 *
mbedAustin 11:cada08fc8a70 2027 * Enable PKCS#5 functions.
mbedAustin 11:cada08fc8a70 2028 *
mbedAustin 11:cada08fc8a70 2029 * Module: library/pkcs5.c
mbedAustin 11:cada08fc8a70 2030 *
mbedAustin 11:cada08fc8a70 2031 * Requires: MBEDTLS_MD_C
mbedAustin 11:cada08fc8a70 2032 *
mbedAustin 11:cada08fc8a70 2033 * This module adds support for the PKCS#5 functions.
mbedAustin 11:cada08fc8a70 2034 */
mbedAustin 11:cada08fc8a70 2035 //#define MBEDTLS_PKCS5_C
mbedAustin 11:cada08fc8a70 2036
mbedAustin 11:cada08fc8a70 2037 /**
mbedAustin 11:cada08fc8a70 2038 * \def MBEDTLS_PKCS11_C
mbedAustin 11:cada08fc8a70 2039 *
mbedAustin 11:cada08fc8a70 2040 * Enable wrapper for PKCS#11 smartcard support.
mbedAustin 11:cada08fc8a70 2041 *
mbedAustin 11:cada08fc8a70 2042 * Module: library/pkcs11.c
mbedAustin 11:cada08fc8a70 2043 * Caller: library/pk.c
mbedAustin 11:cada08fc8a70 2044 *
mbedAustin 11:cada08fc8a70 2045 * Requires: MBEDTLS_PK_C
mbedAustin 11:cada08fc8a70 2046 *
mbedAustin 11:cada08fc8a70 2047 * This module enables SSL/TLS PKCS #11 smartcard support.
mbedAustin 11:cada08fc8a70 2048 * Requires the presence of the PKCS#11 helper library (libpkcs11-helper)
mbedAustin 11:cada08fc8a70 2049 */
mbedAustin 11:cada08fc8a70 2050 //#define MBEDTLS_PKCS11_C
mbedAustin 11:cada08fc8a70 2051
mbedAustin 11:cada08fc8a70 2052 /**
mbedAustin 11:cada08fc8a70 2053 * \def MBEDTLS_PKCS12_C
mbedAustin 11:cada08fc8a70 2054 *
mbedAustin 11:cada08fc8a70 2055 * Enable PKCS#12 PBE functions.
mbedAustin 11:cada08fc8a70 2056 * Adds algorithms for parsing PKCS#8 encrypted private keys
mbedAustin 11:cada08fc8a70 2057 *
mbedAustin 11:cada08fc8a70 2058 * Module: library/pkcs12.c
mbedAustin 11:cada08fc8a70 2059 * Caller: library/pkparse.c
mbedAustin 11:cada08fc8a70 2060 *
mbedAustin 11:cada08fc8a70 2061 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_CIPHER_C, MBEDTLS_MD_C
mbedAustin 11:cada08fc8a70 2062 * Can use: MBEDTLS_ARC4_C
mbedAustin 11:cada08fc8a70 2063 *
mbedAustin 11:cada08fc8a70 2064 * This module enables PKCS#12 functions.
mbedAustin 11:cada08fc8a70 2065 */
mbedAustin 11:cada08fc8a70 2066 //#define MBEDTLS_PKCS12_C
mbedAustin 11:cada08fc8a70 2067
mbedAustin 11:cada08fc8a70 2068 /**
mbedAustin 11:cada08fc8a70 2069 * \def MBEDTLS_PLATFORM_C
mbedAustin 11:cada08fc8a70 2070 *
mbedAustin 11:cada08fc8a70 2071 * Enable the platform abstraction layer that allows you to re-assign
mbedAustin 11:cada08fc8a70 2072 * functions like calloc(), free(), snprintf(), printf(), fprintf(), exit().
mbedAustin 11:cada08fc8a70 2073 *
mbedAustin 11:cada08fc8a70 2074 * Enabling MBEDTLS_PLATFORM_C enables to use of MBEDTLS_PLATFORM_XXX_ALT
mbedAustin 11:cada08fc8a70 2075 * or MBEDTLS_PLATFORM_XXX_MACRO directives, allowing the functions mentioned
mbedAustin 11:cada08fc8a70 2076 * above to be specified at runtime or compile time respectively.
mbedAustin 11:cada08fc8a70 2077 *
mbedAustin 11:cada08fc8a70 2078 * \note This abstraction layer must be enabled on Windows (including MSYS2)
mbedAustin 11:cada08fc8a70 2079 * as other module rely on it for a fixed snprintf implementation.
mbedAustin 11:cada08fc8a70 2080 *
mbedAustin 11:cada08fc8a70 2081 * Module: library/platform.c
mbedAustin 11:cada08fc8a70 2082 * Caller: Most other .c files
mbedAustin 11:cada08fc8a70 2083 *
mbedAustin 11:cada08fc8a70 2084 * This module enables abstraction of common (libc) functions.
mbedAustin 11:cada08fc8a70 2085 */
mbedAustin 11:cada08fc8a70 2086 #define MBEDTLS_PLATFORM_C
mbedAustin 11:cada08fc8a70 2087
mbedAustin 11:cada08fc8a70 2088 /**
mbedAustin 11:cada08fc8a70 2089 * \def MBEDTLS_RIPEMD160_C
mbedAustin 11:cada08fc8a70 2090 *
mbedAustin 11:cada08fc8a70 2091 * Enable the RIPEMD-160 hash algorithm.
mbedAustin 11:cada08fc8a70 2092 *
mbedAustin 11:cada08fc8a70 2093 * Module: library/mbedtls_ripemd160.c
mbedAustin 11:cada08fc8a70 2094 * Caller: library/mbedtls_md.c
mbedAustin 11:cada08fc8a70 2095 *
mbedAustin 11:cada08fc8a70 2096 */
mbedAustin 11:cada08fc8a70 2097 //#define MBEDTLS_RIPEMD160_C
mbedAustin 11:cada08fc8a70 2098
mbedAustin 11:cada08fc8a70 2099 /**
mbedAustin 11:cada08fc8a70 2100 * \def MBEDTLS_RSA_C
mbedAustin 11:cada08fc8a70 2101 *
mbedAustin 11:cada08fc8a70 2102 * Enable the RSA public-key cryptosystem.
mbedAustin 11:cada08fc8a70 2103 *
mbedAustin 11:cada08fc8a70 2104 * Module: library/rsa.c
mbedAustin 11:cada08fc8a70 2105 * Caller: library/ssl_cli.c
mbedAustin 11:cada08fc8a70 2106 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 2107 * library/ssl_tls.c
mbedAustin 11:cada08fc8a70 2108 * library/x509.c
mbedAustin 11:cada08fc8a70 2109 *
mbedAustin 11:cada08fc8a70 2110 * This module is used by the following key exchanges:
mbedAustin 11:cada08fc8a70 2111 * RSA, DHE-RSA, ECDHE-RSA, RSA-PSK
mbedAustin 11:cada08fc8a70 2112 *
mbedAustin 11:cada08fc8a70 2113 * Requires: MBEDTLS_BIGNUM_C, MBEDTLS_OID_C
mbedAustin 11:cada08fc8a70 2114 */
mbedAustin 11:cada08fc8a70 2115 #define MBEDTLS_RSA_C
mbedAustin 11:cada08fc8a70 2116
mbedAustin 11:cada08fc8a70 2117 /**
mbedAustin 11:cada08fc8a70 2118 * \def MBEDTLS_SHA1_C
mbedAustin 11:cada08fc8a70 2119 *
mbedAustin 11:cada08fc8a70 2120 * Enable the SHA1 cryptographic hash algorithm.
mbedAustin 11:cada08fc8a70 2121 *
mbedAustin 11:cada08fc8a70 2122 * Module: library/mbedtls_sha1.c
mbedAustin 11:cada08fc8a70 2123 * Caller: library/mbedtls_md.c
mbedAustin 11:cada08fc8a70 2124 * library/ssl_cli.c
mbedAustin 11:cada08fc8a70 2125 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 2126 * library/ssl_tls.c
mbedAustin 11:cada08fc8a70 2127 * library/x509write_crt.c
mbedAustin 11:cada08fc8a70 2128 *
mbedAustin 11:cada08fc8a70 2129 * This module is required for SSL/TLS and SHA1-signed certificates.
mbedAustin 11:cada08fc8a70 2130 */
mbedAustin 11:cada08fc8a70 2131 //#define MBEDTLS_SHA1_C
mbedAustin 11:cada08fc8a70 2132
mbedAustin 11:cada08fc8a70 2133 /**
mbedAustin 11:cada08fc8a70 2134 * \def MBEDTLS_SHA256_C
mbedAustin 11:cada08fc8a70 2135 *
mbedAustin 11:cada08fc8a70 2136 * Enable the SHA-224 and SHA-256 cryptographic hash algorithms.
mbedAustin 11:cada08fc8a70 2137 *
mbedAustin 11:cada08fc8a70 2138 * Module: library/mbedtls_sha256.c
mbedAustin 11:cada08fc8a70 2139 * Caller: library/entropy.c
mbedAustin 11:cada08fc8a70 2140 * library/mbedtls_md.c
mbedAustin 11:cada08fc8a70 2141 * library/ssl_cli.c
mbedAustin 11:cada08fc8a70 2142 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 2143 * library/ssl_tls.c
mbedAustin 11:cada08fc8a70 2144 *
mbedAustin 11:cada08fc8a70 2145 * This module adds support for SHA-224 and SHA-256.
mbedAustin 11:cada08fc8a70 2146 * This module is required for the SSL/TLS 1.2 PRF function.
mbedAustin 11:cada08fc8a70 2147 */
mbedAustin 11:cada08fc8a70 2148 #define MBEDTLS_SHA256_C
mbedAustin 11:cada08fc8a70 2149
mbedAustin 11:cada08fc8a70 2150 /**
mbedAustin 11:cada08fc8a70 2151 * \def MBEDTLS_SHA512_C
mbedAustin 11:cada08fc8a70 2152 *
mbedAustin 11:cada08fc8a70 2153 * Enable the SHA-384 and SHA-512 cryptographic hash algorithms.
mbedAustin 11:cada08fc8a70 2154 *
mbedAustin 11:cada08fc8a70 2155 * Module: library/mbedtls_sha512.c
mbedAustin 11:cada08fc8a70 2156 * Caller: library/entropy.c
mbedAustin 11:cada08fc8a70 2157 * library/mbedtls_md.c
mbedAustin 11:cada08fc8a70 2158 * library/ssl_cli.c
mbedAustin 11:cada08fc8a70 2159 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 2160 *
mbedAustin 11:cada08fc8a70 2161 * This module adds support for SHA-384 and SHA-512.
mbedAustin 11:cada08fc8a70 2162 */
mbedAustin 11:cada08fc8a70 2163 #define MBEDTLS_SHA512_C
mbedAustin 11:cada08fc8a70 2164
mbedAustin 11:cada08fc8a70 2165 /**
mbedAustin 11:cada08fc8a70 2166 * \def MBEDTLS_SSL_CACHE_C
mbedAustin 11:cada08fc8a70 2167 *
mbedAustin 11:cada08fc8a70 2168 * Enable simple SSL cache implementation.
mbedAustin 11:cada08fc8a70 2169 *
mbedAustin 11:cada08fc8a70 2170 * Module: library/ssl_cache.c
mbedAustin 11:cada08fc8a70 2171 * Caller:
mbedAustin 11:cada08fc8a70 2172 *
mbedAustin 11:cada08fc8a70 2173 * Requires: MBEDTLS_SSL_CACHE_C
mbedAustin 11:cada08fc8a70 2174 */
mbedAustin 11:cada08fc8a70 2175 #define MBEDTLS_SSL_CACHE_C
mbedAustin 11:cada08fc8a70 2176
mbedAustin 11:cada08fc8a70 2177 /**
mbedAustin 11:cada08fc8a70 2178 * \def MBEDTLS_SSL_COOKIE_C
mbedAustin 11:cada08fc8a70 2179 *
mbedAustin 11:cada08fc8a70 2180 * Enable basic implementation of DTLS cookies for hello verification.
mbedAustin 11:cada08fc8a70 2181 *
mbedAustin 11:cada08fc8a70 2182 * Module: library/ssl_cookie.c
mbedAustin 11:cada08fc8a70 2183 * Caller:
mbedAustin 11:cada08fc8a70 2184 */
mbedAustin 11:cada08fc8a70 2185 #define MBEDTLS_SSL_COOKIE_C
mbedAustin 11:cada08fc8a70 2186
mbedAustin 11:cada08fc8a70 2187 /**
mbedAustin 11:cada08fc8a70 2188 * \def MBEDTLS_SSL_TICKET_C
mbedAustin 11:cada08fc8a70 2189 *
mbedAustin 11:cada08fc8a70 2190 * Enable an implementation of TLS server-side callbacks for session tickets.
mbedAustin 11:cada08fc8a70 2191 *
mbedAustin 11:cada08fc8a70 2192 * Module: library/ssl_ticket.c
mbedAustin 11:cada08fc8a70 2193 * Caller:
mbedAustin 11:cada08fc8a70 2194 *
mbedAustin 11:cada08fc8a70 2195 * Requires: MBEDTLS_CIPHER_C
mbedAustin 11:cada08fc8a70 2196 */
mbedAustin 11:cada08fc8a70 2197 #define MBEDTLS_SSL_TICKET_C
mbedAustin 11:cada08fc8a70 2198
mbedAustin 11:cada08fc8a70 2199 /**
mbedAustin 11:cada08fc8a70 2200 * \def MBEDTLS_SSL_CLI_C
mbedAustin 11:cada08fc8a70 2201 *
mbedAustin 11:cada08fc8a70 2202 * Enable the SSL/TLS client code.
mbedAustin 11:cada08fc8a70 2203 *
mbedAustin 11:cada08fc8a70 2204 * Module: library/ssl_cli.c
mbedAustin 11:cada08fc8a70 2205 * Caller:
mbedAustin 11:cada08fc8a70 2206 *
mbedAustin 11:cada08fc8a70 2207 * Requires: MBEDTLS_SSL_TLS_C
mbedAustin 11:cada08fc8a70 2208 *
mbedAustin 11:cada08fc8a70 2209 * This module is required for SSL/TLS client support.
mbedAustin 11:cada08fc8a70 2210 */
mbedAustin 11:cada08fc8a70 2211 #define MBEDTLS_SSL_CLI_C
mbedAustin 11:cada08fc8a70 2212
mbedAustin 11:cada08fc8a70 2213 /**
mbedAustin 11:cada08fc8a70 2214 * \def MBEDTLS_SSL_SRV_C
mbedAustin 11:cada08fc8a70 2215 *
mbedAustin 11:cada08fc8a70 2216 * Enable the SSL/TLS server code.
mbedAustin 11:cada08fc8a70 2217 *
mbedAustin 11:cada08fc8a70 2218 * Module: library/ssl_srv.c
mbedAustin 11:cada08fc8a70 2219 * Caller:
mbedAustin 11:cada08fc8a70 2220 *
mbedAustin 11:cada08fc8a70 2221 * Requires: MBEDTLS_SSL_TLS_C
mbedAustin 11:cada08fc8a70 2222 *
mbedAustin 11:cada08fc8a70 2223 * This module is required for SSL/TLS server support.
mbedAustin 11:cada08fc8a70 2224 */
mbedAustin 11:cada08fc8a70 2225 #define MBEDTLS_SSL_SRV_C
mbedAustin 11:cada08fc8a70 2226
mbedAustin 11:cada08fc8a70 2227 /**
mbedAustin 11:cada08fc8a70 2228 * \def MBEDTLS_SSL_TLS_C
mbedAustin 11:cada08fc8a70 2229 *
mbedAustin 11:cada08fc8a70 2230 * Enable the generic SSL/TLS code.
mbedAustin 11:cada08fc8a70 2231 *
mbedAustin 11:cada08fc8a70 2232 * Module: library/ssl_tls.c
mbedAustin 11:cada08fc8a70 2233 * Caller: library/ssl_cli.c
mbedAustin 11:cada08fc8a70 2234 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 2235 *
mbedAustin 11:cada08fc8a70 2236 * Requires: MBEDTLS_CIPHER_C, MBEDTLS_MD_C
mbedAustin 11:cada08fc8a70 2237 * and at least one of the MBEDTLS_SSL_PROTO_XXX defines
mbedAustin 11:cada08fc8a70 2238 *
mbedAustin 11:cada08fc8a70 2239 * This module is required for SSL/TLS.
mbedAustin 11:cada08fc8a70 2240 */
mbedAustin 11:cada08fc8a70 2241 #define MBEDTLS_SSL_TLS_C
mbedAustin 11:cada08fc8a70 2242
mbedAustin 11:cada08fc8a70 2243 /**
mbedAustin 11:cada08fc8a70 2244 * \def MBEDTLS_THREADING_C
mbedAustin 11:cada08fc8a70 2245 *
mbedAustin 11:cada08fc8a70 2246 * Enable the threading abstraction layer.
mbedAustin 11:cada08fc8a70 2247 * By default mbed TLS assumes it is used in a non-threaded environment or that
mbedAustin 11:cada08fc8a70 2248 * contexts are not shared between threads. If you do intend to use contexts
mbedAustin 11:cada08fc8a70 2249 * between threads, you will need to enable this layer to prevent race
mbedAustin 11:cada08fc8a70 2250 * conditions.
mbedAustin 11:cada08fc8a70 2251 *
mbedAustin 11:cada08fc8a70 2252 * Module: library/threading.c
mbedAustin 11:cada08fc8a70 2253 *
mbedAustin 11:cada08fc8a70 2254 * This allows different threading implementations (self-implemented or
mbedAustin 11:cada08fc8a70 2255 * provided).
mbedAustin 11:cada08fc8a70 2256 *
mbedAustin 11:cada08fc8a70 2257 * You will have to enable either MBEDTLS_THREADING_ALT or
mbedAustin 11:cada08fc8a70 2258 * MBEDTLS_THREADING_PTHREAD.
mbedAustin 11:cada08fc8a70 2259 *
mbedAustin 11:cada08fc8a70 2260 * Enable this layer to allow use of mutexes within mbed TLS
mbedAustin 11:cada08fc8a70 2261 */
mbedAustin 11:cada08fc8a70 2262 //#define MBEDTLS_THREADING_C
mbedAustin 11:cada08fc8a70 2263
mbedAustin 11:cada08fc8a70 2264 /**
mbedAustin 11:cada08fc8a70 2265 * \def MBEDTLS_TIMING_C
mbedAustin 11:cada08fc8a70 2266 *
mbedAustin 11:cada08fc8a70 2267 * Enable the portable timing interface.
mbedAustin 11:cada08fc8a70 2268 *
mbedAustin 11:cada08fc8a70 2269 * Module: library/timing.c
mbedAustin 11:cada08fc8a70 2270 * Caller: library/havege.c
mbedAustin 11:cada08fc8a70 2271 *
mbedAustin 11:cada08fc8a70 2272 * This module is used by the HAVEGE random number generator.
mbedAustin 11:cada08fc8a70 2273 */
mbedAustin 11:cada08fc8a70 2274 //#define MBEDTLS_TIMING_C
mbedAustin 11:cada08fc8a70 2275
mbedAustin 11:cada08fc8a70 2276 /**
mbedAustin 11:cada08fc8a70 2277 * \def MBEDTLS_VERSION_C
mbedAustin 11:cada08fc8a70 2278 *
mbedAustin 11:cada08fc8a70 2279 * Enable run-time version information.
mbedAustin 11:cada08fc8a70 2280 *
mbedAustin 11:cada08fc8a70 2281 * Module: library/version.c
mbedAustin 11:cada08fc8a70 2282 *
mbedAustin 11:cada08fc8a70 2283 * This module provides run-time version information.
mbedAustin 11:cada08fc8a70 2284 */
mbedAustin 11:cada08fc8a70 2285 #define MBEDTLS_VERSION_C
mbedAustin 11:cada08fc8a70 2286
mbedAustin 11:cada08fc8a70 2287 /**
mbedAustin 11:cada08fc8a70 2288 * \def MBEDTLS_X509_USE_C
mbedAustin 11:cada08fc8a70 2289 *
mbedAustin 11:cada08fc8a70 2290 * Enable X.509 core for using certificates.
mbedAustin 11:cada08fc8a70 2291 *
mbedAustin 11:cada08fc8a70 2292 * Module: library/x509.c
mbedAustin 11:cada08fc8a70 2293 * Caller: library/mbedtls_x509_crl.c
mbedAustin 11:cada08fc8a70 2294 * library/mbedtls_x509_crt.c
mbedAustin 11:cada08fc8a70 2295 * library/mbedtls_x509_csr.c
mbedAustin 11:cada08fc8a70 2296 *
mbedAustin 11:cada08fc8a70 2297 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_BIGNUM_C, MBEDTLS_OID_C,
mbedAustin 11:cada08fc8a70 2298 * MBEDTLS_PK_PARSE_C
mbedAustin 11:cada08fc8a70 2299 *
mbedAustin 11:cada08fc8a70 2300 * This module is required for the X.509 parsing modules.
mbedAustin 11:cada08fc8a70 2301 */
mbedAustin 11:cada08fc8a70 2302 #define MBEDTLS_X509_USE_C
mbedAustin 11:cada08fc8a70 2303
mbedAustin 11:cada08fc8a70 2304 /**
mbedAustin 11:cada08fc8a70 2305 * \def MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 2306 *
mbedAustin 11:cada08fc8a70 2307 * Enable X.509 certificate parsing.
mbedAustin 11:cada08fc8a70 2308 *
mbedAustin 11:cada08fc8a70 2309 * Module: library/mbedtls_x509_crt.c
mbedAustin 11:cada08fc8a70 2310 * Caller: library/ssl_cli.c
mbedAustin 11:cada08fc8a70 2311 * library/ssl_srv.c
mbedAustin 11:cada08fc8a70 2312 * library/ssl_tls.c
mbedAustin 11:cada08fc8a70 2313 *
mbedAustin 11:cada08fc8a70 2314 * Requires: MBEDTLS_X509_USE_C
mbedAustin 11:cada08fc8a70 2315 *
mbedAustin 11:cada08fc8a70 2316 * This module is required for X.509 certificate parsing.
mbedAustin 11:cada08fc8a70 2317 */
mbedAustin 11:cada08fc8a70 2318 #define MBEDTLS_X509_CRT_PARSE_C
mbedAustin 11:cada08fc8a70 2319
mbedAustin 11:cada08fc8a70 2320 /**
mbedAustin 11:cada08fc8a70 2321 * \def MBEDTLS_X509_CRL_PARSE_C
mbedAustin 11:cada08fc8a70 2322 *
mbedAustin 11:cada08fc8a70 2323 * Enable X.509 CRL parsing.
mbedAustin 11:cada08fc8a70 2324 *
mbedAustin 11:cada08fc8a70 2325 * Module: library/mbedtls_x509_crl.c
mbedAustin 11:cada08fc8a70 2326 * Caller: library/mbedtls_x509_crt.c
mbedAustin 11:cada08fc8a70 2327 *
mbedAustin 11:cada08fc8a70 2328 * Requires: MBEDTLS_X509_USE_C
mbedAustin 11:cada08fc8a70 2329 *
mbedAustin 11:cada08fc8a70 2330 * This module is required for X.509 CRL parsing.
mbedAustin 11:cada08fc8a70 2331 */
mbedAustin 11:cada08fc8a70 2332 #define MBEDTLS_X509_CRL_PARSE_C
mbedAustin 11:cada08fc8a70 2333
mbedAustin 11:cada08fc8a70 2334 /**
mbedAustin 11:cada08fc8a70 2335 * \def MBEDTLS_X509_CSR_PARSE_C
mbedAustin 11:cada08fc8a70 2336 *
mbedAustin 11:cada08fc8a70 2337 * Enable X.509 Certificate Signing Request (CSR) parsing.
mbedAustin 11:cada08fc8a70 2338 *
mbedAustin 11:cada08fc8a70 2339 * Module: library/mbedtls_x509_csr.c
mbedAustin 11:cada08fc8a70 2340 * Caller: library/x509_crt_write.c
mbedAustin 11:cada08fc8a70 2341 *
mbedAustin 11:cada08fc8a70 2342 * Requires: MBEDTLS_X509_USE_C
mbedAustin 11:cada08fc8a70 2343 *
mbedAustin 11:cada08fc8a70 2344 * This module is used for reading X.509 certificate request.
mbedAustin 11:cada08fc8a70 2345 */
mbedAustin 11:cada08fc8a70 2346 //#define MBEDTLS_X509_CSR_PARSE_C
mbedAustin 11:cada08fc8a70 2347
mbedAustin 11:cada08fc8a70 2348 /**
mbedAustin 11:cada08fc8a70 2349 * \def MBEDTLS_X509_CREATE_C
mbedAustin 11:cada08fc8a70 2350 *
mbedAustin 11:cada08fc8a70 2351 * Enable X.509 core for creating certificates.
mbedAustin 11:cada08fc8a70 2352 *
mbedAustin 11:cada08fc8a70 2353 * Module: library/x509_create.c
mbedAustin 11:cada08fc8a70 2354 *
mbedAustin 11:cada08fc8a70 2355 * Requires: MBEDTLS_BIGNUM_C, MBEDTLS_OID_C, MBEDTLS_PK_WRITE_C
mbedAustin 11:cada08fc8a70 2356 *
mbedAustin 11:cada08fc8a70 2357 * This module is the basis for creating X.509 certificates and CSRs.
mbedAustin 11:cada08fc8a70 2358 */
mbedAustin 11:cada08fc8a70 2359 //#define MBEDTLS_X509_CREATE_C
mbedAustin 11:cada08fc8a70 2360
mbedAustin 11:cada08fc8a70 2361 /**
mbedAustin 11:cada08fc8a70 2362 * \def MBEDTLS_X509_CRT_WRITE_C
mbedAustin 11:cada08fc8a70 2363 *
mbedAustin 11:cada08fc8a70 2364 * Enable creating X.509 certificates.
mbedAustin 11:cada08fc8a70 2365 *
mbedAustin 11:cada08fc8a70 2366 * Module: library/x509_crt_write.c
mbedAustin 11:cada08fc8a70 2367 *
mbedAustin 11:cada08fc8a70 2368 * Requires: MBEDTLS_X509_CREATE_C
mbedAustin 11:cada08fc8a70 2369 *
mbedAustin 11:cada08fc8a70 2370 * This module is required for X.509 certificate creation.
mbedAustin 11:cada08fc8a70 2371 */
mbedAustin 11:cada08fc8a70 2372 //#define MBEDTLS_X509_CRT_WRITE_C
mbedAustin 11:cada08fc8a70 2373
mbedAustin 11:cada08fc8a70 2374 /**
mbedAustin 11:cada08fc8a70 2375 * \def MBEDTLS_X509_CSR_WRITE_C
mbedAustin 11:cada08fc8a70 2376 *
mbedAustin 11:cada08fc8a70 2377 * Enable creating X.509 Certificate Signing Requests (CSR).
mbedAustin 11:cada08fc8a70 2378 *
mbedAustin 11:cada08fc8a70 2379 * Module: library/x509_csr_write.c
mbedAustin 11:cada08fc8a70 2380 *
mbedAustin 11:cada08fc8a70 2381 * Requires: MBEDTLS_X509_CREATE_C
mbedAustin 11:cada08fc8a70 2382 *
mbedAustin 11:cada08fc8a70 2383 * This module is required for X.509 certificate request writing.
mbedAustin 11:cada08fc8a70 2384 */
mbedAustin 11:cada08fc8a70 2385 //#define MBEDTLS_X509_CSR_WRITE_C
mbedAustin 11:cada08fc8a70 2386
mbedAustin 11:cada08fc8a70 2387 /**
mbedAustin 11:cada08fc8a70 2388 * \def MBEDTLS_XTEA_C
mbedAustin 11:cada08fc8a70 2389 *
mbedAustin 11:cada08fc8a70 2390 * Enable the XTEA block cipher.
mbedAustin 11:cada08fc8a70 2391 *
mbedAustin 11:cada08fc8a70 2392 * Module: library/xtea.c
mbedAustin 11:cada08fc8a70 2393 * Caller:
mbedAustin 11:cada08fc8a70 2394 */
mbedAustin 11:cada08fc8a70 2395 //#define MBEDTLS_XTEA_C
mbedAustin 11:cada08fc8a70 2396
mbedAustin 11:cada08fc8a70 2397 /* \} name SECTION: mbed TLS modules */
mbedAustin 11:cada08fc8a70 2398
mbedAustin 11:cada08fc8a70 2399 /**
mbedAustin 11:cada08fc8a70 2400 * \name SECTION: Module configuration options
mbedAustin 11:cada08fc8a70 2401 *
mbedAustin 11:cada08fc8a70 2402 * This section allows for the setting of module specific sizes and
mbedAustin 11:cada08fc8a70 2403 * configuration options. The default values are already present in the
mbedAustin 11:cada08fc8a70 2404 * relevant header files and should suffice for the regular use cases.
mbedAustin 11:cada08fc8a70 2405 *
mbedAustin 11:cada08fc8a70 2406 * Our advice is to enable options and change their values here
mbedAustin 11:cada08fc8a70 2407 * only if you have a good reason and know the consequences.
mbedAustin 11:cada08fc8a70 2408 *
mbedAustin 11:cada08fc8a70 2409 * Please check the respective header file for documentation on these
mbedAustin 11:cada08fc8a70 2410 * parameters (to prevent duplicate documentation).
mbedAustin 11:cada08fc8a70 2411 * \{
mbedAustin 11:cada08fc8a70 2412 */
mbedAustin 11:cada08fc8a70 2413
mbedAustin 11:cada08fc8a70 2414 /* MPI / BIGNUM options */
mbedAustin 11:cada08fc8a70 2415 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
mbedAustin 11:cada08fc8a70 2416 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
mbedAustin 11:cada08fc8a70 2417
mbedAustin 11:cada08fc8a70 2418 /* CTR_DRBG options */
mbedAustin 11:cada08fc8a70 2419 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
mbedAustin 11:cada08fc8a70 2420 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
mbedAustin 11:cada08fc8a70 2421 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
mbedAustin 11:cada08fc8a70 2422 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
mbedAustin 11:cada08fc8a70 2423 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
mbedAustin 11:cada08fc8a70 2424
mbedAustin 11:cada08fc8a70 2425 /* HMAC_DRBG options */
mbedAustin 11:cada08fc8a70 2426 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
mbedAustin 11:cada08fc8a70 2427 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
mbedAustin 11:cada08fc8a70 2428 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
mbedAustin 11:cada08fc8a70 2429 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
mbedAustin 11:cada08fc8a70 2430
mbedAustin 11:cada08fc8a70 2431 /* ECP options */
mbedAustin 11:cada08fc8a70 2432 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
mbedAustin 11:cada08fc8a70 2433 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
mbedAustin 11:cada08fc8a70 2434 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
mbedAustin 11:cada08fc8a70 2435
mbedAustin 11:cada08fc8a70 2436 /* Entropy options */
mbedAustin 11:cada08fc8a70 2437 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
mbedAustin 11:cada08fc8a70 2438 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
mbedAustin 11:cada08fc8a70 2439
mbedAustin 11:cada08fc8a70 2440 /* Memory buffer allocator options */
mbedAustin 11:cada08fc8a70 2441 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
mbedAustin 11:cada08fc8a70 2442
mbedAustin 11:cada08fc8a70 2443 /* Platform options */
mbedAustin 11:cada08fc8a70 2444 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
mbedAustin 11:cada08fc8a70 2445 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
mbedAustin 11:cada08fc8a70 2446 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
mbedAustin 11:cada08fc8a70 2447 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
mbedAustin 11:cada08fc8a70 2448 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
mbedAustin 11:cada08fc8a70 2449 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
mbedAustin 11:cada08fc8a70 2450 /* Note: your snprintf must correclty zero-terminate the buffer! */
mbedAustin 11:cada08fc8a70 2451 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
mbedAustin 11:cada08fc8a70 2452
mbedAustin 11:cada08fc8a70 2453 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
mbedAustin 11:cada08fc8a70 2454 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
mbedAustin 11:cada08fc8a70 2455 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
mbedAustin 11:cada08fc8a70 2456 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
mbedAustin 11:cada08fc8a70 2457 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
mbedAustin 11:cada08fc8a70 2458 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
mbedAustin 11:cada08fc8a70 2459 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
mbedAustin 11:cada08fc8a70 2460 /* Note: your snprintf must correclty zero-terminate the buffer! */
mbedAustin 11:cada08fc8a70 2461 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
mbedAustin 11:cada08fc8a70 2462
mbedAustin 11:cada08fc8a70 2463 /* SSL Cache options */
mbedAustin 11:cada08fc8a70 2464 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
mbedAustin 11:cada08fc8a70 2465 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
mbedAustin 11:cada08fc8a70 2466
mbedAustin 11:cada08fc8a70 2467 /* SSL options */
mbedAustin 11:cada08fc8a70 2468 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 /**< Maxium fragment length in bytes, determines the size of each of the two internal I/O buffers */
mbedAustin 11:cada08fc8a70 2469 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
mbedAustin 11:cada08fc8a70 2470 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
mbedAustin 11:cada08fc8a70 2471 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
mbedAustin 11:cada08fc8a70 2472
mbedAustin 11:cada08fc8a70 2473 /**
mbedAustin 11:cada08fc8a70 2474 * Complete list of ciphersuites to use, in order of preference.
mbedAustin 11:cada08fc8a70 2475 *
mbedAustin 11:cada08fc8a70 2476 * \warning No dependency checking is done on that field! This option can only
mbedAustin 11:cada08fc8a70 2477 * be used to restrict the set of available ciphersuites. It is your
mbedAustin 11:cada08fc8a70 2478 * responsibility to make sure the needed modules are active.
mbedAustin 11:cada08fc8a70 2479 *
mbedAustin 11:cada08fc8a70 2480 * Use this to save a few hundred bytes of ROM (default ordering of all
mbedAustin 11:cada08fc8a70 2481 * available ciphersuites) and a few to a few hundred bytes of RAM.
mbedAustin 11:cada08fc8a70 2482 *
mbedAustin 11:cada08fc8a70 2483 * The value below is only an example, not the default.
mbedAustin 11:cada08fc8a70 2484 */
mbedAustin 11:cada08fc8a70 2485 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
mbedAustin 11:cada08fc8a70 2486
mbedAustin 11:cada08fc8a70 2487 /* X509 options */
mbedAustin 11:cada08fc8a70 2488 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
mbedAustin 11:cada08fc8a70 2489
mbedAustin 11:cada08fc8a70 2490 /* \} name SECTION: Module configuration options */
mbedAustin 11:cada08fc8a70 2491
mbedAustin 11:cada08fc8a70 2492 #if defined(TARGET_LIKE_MBED)
mbedAustin 11:cada08fc8a70 2493 #include "mbedtls/target_config.h"
mbedAustin 11:cada08fc8a70 2494 #endif
mbedAustin 11:cada08fc8a70 2495
mbedAustin 11:cada08fc8a70 2496 /*
mbedAustin 11:cada08fc8a70 2497 * Allow user to override any previous default.
mbedAustin 11:cada08fc8a70 2498 *
mbedAustin 11:cada08fc8a70 2499 * Use two macro names for that, as:
mbedAustin 11:cada08fc8a70 2500 * - with yotta the prefix YOTTA_CFG_ is forced
mbedAustin 11:cada08fc8a70 2501 * - without yotta is looks weird to have a YOTTA prefix.
mbedAustin 11:cada08fc8a70 2502 */
mbedAustin 11:cada08fc8a70 2503 #if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE)
mbedAustin 11:cada08fc8a70 2504 #include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE
mbedAustin 11:cada08fc8a70 2505 #elif defined(MBEDTLS_USER_CONFIG_FILE)
mbedAustin 11:cada08fc8a70 2506 #include MBEDTLS_USER_CONFIG_FILE
mbedAustin 11:cada08fc8a70 2507 #endif
mbedAustin 11:cada08fc8a70 2508
mbedAustin 11:cada08fc8a70 2509 #include "check_config.h"
mbedAustin 11:cada08fc8a70 2510
mbedAustin 11:cada08fc8a70 2511 #endif /* MBEDTLS_CONFIG_H */