mbed TLS v2.16.7
config.h
Go to the documentation of this file.
1 
10 /*
11  * Copyright (C) 2006-2018, ARM Limited, All Rights Reserved
12  * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
13  *
14  * This file is provided under the Apache License 2.0, or the
15  * GNU General Public License v2.0 or later.
16  *
17  * **********
18  * Apache License 2.0:
19  *
20  * Licensed under the Apache License, Version 2.0 (the "License"); you may
21  * not use this file except in compliance with the License.
22  * You may obtain a copy of the License at
23  *
24  * http://www.apache.org/licenses/LICENSE-2.0
25  *
26  * Unless required by applicable law or agreed to in writing, software
27  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
28  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
29  * See the License for the specific language governing permissions and
30  * limitations under the License.
31  *
32  * **********
33  *
34  * **********
35  * GNU General Public License v2.0 or later:
36  *
37  * This program is free software; you can redistribute it and/or modify
38  * it under the terms of the GNU General Public License as published by
39  * the Free Software Foundation; either version 2 of the License, or
40  * (at your option) any later version.
41  *
42  * This program is distributed in the hope that it will be useful,
43  * but WITHOUT ANY WARRANTY; without even the implied warranty of
44  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
45  * GNU General Public License for more details.
46  *
47  * You should have received a copy of the GNU General Public License along
48  * with this program; if not, write to the Free Software Foundation, Inc.,
49  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
50  *
51  * **********
52  *
53  * This file is part of mbed TLS (https://tls.mbed.org)
54  */
55 
56 #ifndef MBEDTLS_CONFIG_H
57 #define MBEDTLS_CONFIG_H
58 
59 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
60 #define _CRT_SECURE_NO_DEPRECATE 1
61 #endif
62 
88 #define MBEDTLS_HAVE_ASM
89 
116 //#define MBEDTLS_NO_UDBL_DIVISION
117 
138 //#define MBEDTLS_NO_64BIT_MULTIPLICATION
139 
147 //#define MBEDTLS_HAVE_SSE2
148 
162 #define MBEDTLS_HAVE_TIME
163 
183 #define MBEDTLS_HAVE_TIME_DATE
184 
207 //#define MBEDTLS_PLATFORM_MEMORY
208 
226 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
227 
251 //#define MBEDTLS_PLATFORM_EXIT_ALT
252 //#define MBEDTLS_PLATFORM_TIME_ALT
253 //#define MBEDTLS_PLATFORM_FPRINTF_ALT
254 //#define MBEDTLS_PLATFORM_PRINTF_ALT
255 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT
256 //#define MBEDTLS_PLATFORM_NV_SEED_ALT
257 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
258 
272 //#define MBEDTLS_DEPRECATED_WARNING
273 
284 //#define MBEDTLS_DEPRECATED_REMOVED
285 
336 //#define MBEDTLS_CHECK_PARAMS
337 
350 //#define MBEDTLS_CHECK_PARAMS_ASSERT
351 
352 /* \} name SECTION: System support */
353 
373 //#define MBEDTLS_TIMING_ALT
374 
400 //#define MBEDTLS_AES_ALT
401 //#define MBEDTLS_ARC4_ALT
402 //#define MBEDTLS_ARIA_ALT
403 //#define MBEDTLS_BLOWFISH_ALT
404 //#define MBEDTLS_CAMELLIA_ALT
405 //#define MBEDTLS_CCM_ALT
406 //#define MBEDTLS_CHACHA20_ALT
407 //#define MBEDTLS_CHACHAPOLY_ALT
408 //#define MBEDTLS_CMAC_ALT
409 //#define MBEDTLS_DES_ALT
410 //#define MBEDTLS_DHM_ALT
411 //#define MBEDTLS_ECJPAKE_ALT
412 //#define MBEDTLS_GCM_ALT
413 //#define MBEDTLS_NIST_KW_ALT
414 //#define MBEDTLS_MD2_ALT
415 //#define MBEDTLS_MD4_ALT
416 //#define MBEDTLS_MD5_ALT
417 //#define MBEDTLS_POLY1305_ALT
418 //#define MBEDTLS_RIPEMD160_ALT
419 //#define MBEDTLS_RSA_ALT
420 //#define MBEDTLS_SHA1_ALT
421 //#define MBEDTLS_SHA256_ALT
422 //#define MBEDTLS_SHA512_ALT
423 //#define MBEDTLS_XTEA_ALT
424 
425 /*
426  * When replacing the elliptic curve module, pleace consider, that it is
427  * implemented with two .c files:
428  * - ecp.c
429  * - ecp_curves.c
430  * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
431  * macros as described above. The only difference is that you have to make sure
432  * that you provide functionality for both .c files.
433  */
434 //#define MBEDTLS_ECP_ALT
435 
481 //#define MBEDTLS_MD2_PROCESS_ALT
482 //#define MBEDTLS_MD4_PROCESS_ALT
483 //#define MBEDTLS_MD5_PROCESS_ALT
484 //#define MBEDTLS_RIPEMD160_PROCESS_ALT
485 //#define MBEDTLS_SHA1_PROCESS_ALT
486 //#define MBEDTLS_SHA256_PROCESS_ALT
487 //#define MBEDTLS_SHA512_PROCESS_ALT
488 //#define MBEDTLS_DES_SETKEY_ALT
489 //#define MBEDTLS_DES_CRYPT_ECB_ALT
490 //#define MBEDTLS_DES3_CRYPT_ECB_ALT
491 //#define MBEDTLS_AES_SETKEY_ENC_ALT
492 //#define MBEDTLS_AES_SETKEY_DEC_ALT
493 //#define MBEDTLS_AES_ENCRYPT_ALT
494 //#define MBEDTLS_AES_DECRYPT_ALT
495 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
496 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
497 //#define MBEDTLS_ECDSA_VERIFY_ALT
498 //#define MBEDTLS_ECDSA_SIGN_ALT
499 //#define MBEDTLS_ECDSA_GENKEY_ALT
500 
541 /* Required for all the functions in this section */
542 //#define MBEDTLS_ECP_INTERNAL_ALT
543 /* Support for Weierstrass curves with Jacobi representation */
544 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
545 //#define MBEDTLS_ECP_ADD_MIXED_ALT
546 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT
547 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
548 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
549 /* Support for curves with Montgomery arithmetic */
550 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
551 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
552 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
553 
569 //#define MBEDTLS_TEST_NULL_ENTROPY
570 
582 //#define MBEDTLS_ENTROPY_HARDWARE_ALT
583 
602 //#define MBEDTLS_AES_ROM_TABLES
603 
624 //#define MBEDTLS_AES_FEWER_TABLES
625 
633 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY
634 
640 #define MBEDTLS_CIPHER_MODE_CBC
641 
647 #define MBEDTLS_CIPHER_MODE_CFB
648 
654 #define MBEDTLS_CIPHER_MODE_CTR
655 
661 #define MBEDTLS_CIPHER_MODE_OFB
662 
668 #define MBEDTLS_CIPHER_MODE_XTS
669 
701 //#define MBEDTLS_CIPHER_NULL_CIPHER
702 
714 #define MBEDTLS_CIPHER_PADDING_PKCS7
715 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
716 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
717 #define MBEDTLS_CIPHER_PADDING_ZEROS
718 
724 //#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
725 
742 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
743 
755 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
756 
775 #define MBEDTLS_REMOVE_3DES_CIPHERSUITES
776 
785 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED
786 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED
787 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
788 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
789 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED
790 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED
791 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED
792 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED
793 #define MBEDTLS_ECP_DP_BP256R1_ENABLED
794 #define MBEDTLS_ECP_DP_BP384R1_ENABLED
795 #define MBEDTLS_ECP_DP_BP512R1_ENABLED
796 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED
797 #define MBEDTLS_ECP_DP_CURVE448_ENABLED
798 
808 #define MBEDTLS_ECP_NIST_OPTIM
809 
830 //#define MBEDTLS_ECP_NO_INTERNAL_RNG
831 
854 //#define MBEDTLS_ECP_RESTARTABLE
855 
868 #define MBEDTLS_ECDSA_DETERMINISTIC
869 
890 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
891 
921 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
922 
941 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
942 
966 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
967 
994 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
995 
1027 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1028 
1052 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1053 
1076 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1077 
1100 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1101 
1124 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1125 
1143 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1144 
1157 #define MBEDTLS_PK_PARSE_EC_EXTENDED
1158 
1172 #define MBEDTLS_ERROR_STRERROR_DUMMY
1173 
1181 #define MBEDTLS_GENPRIME
1182 
1188 #define MBEDTLS_FS_IO
1189 
1201 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1202 
1212 //#define MBEDTLS_NO_PLATFORM_ENTROPY
1213 
1228 //#define MBEDTLS_ENTROPY_FORCE_SHA256
1229 
1256 //#define MBEDTLS_ENTROPY_NV_SEED
1257 
1269 //#define MBEDTLS_MEMORY_DEBUG
1270 
1281 //#define MBEDTLS_MEMORY_BACKTRACE
1282 
1290 #define MBEDTLS_PK_RSA_ALT_SUPPORT
1291 
1301 #define MBEDTLS_PKCS1_V15
1302 
1312 #define MBEDTLS_PKCS1_V21
1313 
1323 //#define MBEDTLS_RSA_NO_CRT
1324 
1330 #define MBEDTLS_SELF_TEST
1331 
1346 //#define MBEDTLS_SHA256_SMALLER
1347 
1360 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1361 
1371 //#define MBEDTLS_SSL_ASYNC_PRIVATE
1372 
1387 //#define MBEDTLS_SSL_DEBUG_ALL
1388 
1405 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1406 
1423 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1424 
1440 #define MBEDTLS_SSL_FALLBACK_SCSV
1441 
1450 //#define MBEDTLS_SSL_HW_RECORD_ACCEL
1451 
1462 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1463 
1484 #define MBEDTLS_SSL_RENEGOTIATION
1485 
1494 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1495 
1504 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1505 
1513 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1514 
1525 //#define MBEDTLS_SSL_PROTO_SSL3
1526 
1537 #define MBEDTLS_SSL_PROTO_TLS1
1538 
1549 #define MBEDTLS_SSL_PROTO_TLS1_1
1550 
1561 #define MBEDTLS_SSL_PROTO_TLS1_2
1562 
1576 #define MBEDTLS_SSL_PROTO_DTLS
1577 
1585 #define MBEDTLS_SSL_ALPN
1586 
1600 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1601 
1618 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1619 
1634 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1635 
1645 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1646 
1659 #define MBEDTLS_SSL_SESSION_TICKETS
1660 
1669 #define MBEDTLS_SSL_EXPORT_KEYS
1670 
1680 #define MBEDTLS_SSL_SERVER_NAME_INDICATION
1681 
1689 #define MBEDTLS_SSL_TRUNCATED_HMAC
1690 
1713 //#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1714 
1724 //#define MBEDTLS_THREADING_ALT
1725 
1735 #define MBEDTLS_THREADING_PTHREAD
1736 
1748 #define MBEDTLS_VERSION_FEATURES
1749 
1758 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1759 
1770 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1771 
1784 #define MBEDTLS_X509_CHECK_KEY_USAGE
1785 
1797 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1798 
1807 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT
1808 
1832 #define MBEDTLS_ZLIB_SUPPORT
1833 /* \} name SECTION: mbed TLS feature support */
1834 
1854 #define MBEDTLS_AESNI_C
1855 
1929 #define MBEDTLS_AES_C
1930 
1957 #define MBEDTLS_ARC4_C
1958 
1971 #define MBEDTLS_ASN1_PARSE_C
1972 
1985 #define MBEDTLS_ASN1_WRITE_C
1986 
1997 #define MBEDTLS_BASE64_C
1998 
2014 #define MBEDTLS_BIGNUM_C
2015 
2023 #define MBEDTLS_BLOWFISH_C
2024 
2078 #define MBEDTLS_CAMELLIA_C
2079 
2130 //#define MBEDTLS_ARIA_C
2131 
2144 #define MBEDTLS_CCM_C
2145 
2156 #define MBEDTLS_CERTS_C
2157 
2165 #define MBEDTLS_CHACHA20_C
2166 
2176 #define MBEDTLS_CHACHAPOLY_C
2177 
2188 #define MBEDTLS_CIPHER_C
2189 
2201 //#define MBEDTLS_CMAC_C
2202 
2221 #define MBEDTLS_CTR_DRBG_C
2222 
2235 #define MBEDTLS_DEBUG_C
2236 
2264 #define MBEDTLS_DES_C
2265 
2285 #define MBEDTLS_DHM_C
2286 
2301 #define MBEDTLS_ECDH_C
2302 
2316 #define MBEDTLS_ECDSA_C
2317 
2335 //#define MBEDTLS_ECJPAKE_C
2336 
2349 #define MBEDTLS_ECP_C
2350 
2363 #define MBEDTLS_ENTROPY_C
2364 
2375 #define MBEDTLS_ERROR_C
2376 
2389 #define MBEDTLS_GCM_C
2390 
2412 #define MBEDTLS_HAVEGE_C
2413 
2427 #define MBEDTLS_HKDF_C
2428 
2441 #define MBEDTLS_HMAC_DRBG_C
2442 
2454 //#define MBEDTLS_NIST_KW_C
2455 
2466 #define MBEDTLS_MD_C
2467 
2483 //#define MBEDTLS_MD2_C
2484 
2500 //#define MBEDTLS_MD4_C
2501 
2522 #define MBEDTLS_MD5_C
2523 
2538 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2539 
2557 #define MBEDTLS_NET_C
2558 
2580 #define MBEDTLS_OID_C
2581 
2594 #define MBEDTLS_PADLOCK_C
2595 
2612 #define MBEDTLS_PEM_PARSE_C
2613 
2628 #define MBEDTLS_PEM_WRITE_C
2629 
2644 #define MBEDTLS_PK_C
2645 
2659 #define MBEDTLS_PK_PARSE_C
2660 
2673 #define MBEDTLS_PK_WRITE_C
2674 
2686 #define MBEDTLS_PKCS5_C
2687 
2701 #define MBEDTLS_PKCS11_C
2702 
2717 #define MBEDTLS_PKCS12_C
2718 
2737 #define MBEDTLS_PLATFORM_C
2738 
2747 #define MBEDTLS_POLY1305_C
2748 
2758 #define MBEDTLS_RIPEMD160_C
2759 
2777 #define MBEDTLS_RSA_C
2778 
2799 #define MBEDTLS_SHA1_C
2800 
2816 #define MBEDTLS_SHA256_C
2817 
2831 #define MBEDTLS_SHA512_C
2832 
2843 #define MBEDTLS_SSL_CACHE_C
2844 
2853 #define MBEDTLS_SSL_COOKIE_C
2854 
2865 #define MBEDTLS_SSL_TICKET_C
2866 
2879 #define MBEDTLS_SSL_CLI_C
2880 
2893 #define MBEDTLS_SSL_SRV_C
2894 
2909 #define MBEDTLS_SSL_TLS_C
2910 
2931 #define MBEDTLS_THREADING_C
2932 
2954 #define MBEDTLS_TIMING_C
2955 
2965 #define MBEDTLS_VERSION_C
2966 
2982 #define MBEDTLS_X509_USE_C
2983 
2998 #define MBEDTLS_X509_CRT_PARSE_C
2999 
3012 #define MBEDTLS_X509_CRL_PARSE_C
3013 
3026 #define MBEDTLS_X509_CSR_PARSE_C
3027 
3039 #define MBEDTLS_X509_CREATE_C
3040 
3052 #define MBEDTLS_X509_CRT_WRITE_C
3053 
3065 #define MBEDTLS_X509_CSR_WRITE_C
3066 
3075 #define MBEDTLS_XTEA_C
3076 
3077 /* \} name SECTION: mbed TLS modules */
3078 
3094 /* MPI / BIGNUM options */
3095 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
3096 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3097 
3098 /* CTR_DRBG options */
3099 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3100 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3101 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3102 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3103 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3104 
3105 /* HMAC_DRBG options */
3106 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3107 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3108 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3109 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3110 
3111 /* ECP options */
3112 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3113 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3114 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3115 
3116 /* Entropy options */
3117 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3118 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3119 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3120 
3121 /* Memory buffer allocator options */
3122 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3123 
3124 /* Platform options */
3125 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3126 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3127 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3128 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3129 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3130 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3131 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3132 /* Note: your snprintf must correctly zero-terminate the buffer! */
3133 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3134 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3135 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3136 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3137 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3138 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3139 
3140 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3141 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3142 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3143 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3144 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3145 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3146 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3147 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3148 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3149 /* Note: your snprintf must correctly zero-terminate the buffer! */
3150 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3151 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3152 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3153 
3188 //#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3189 
3190 /* SSL Cache options */
3191 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3192 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3193 
3194 /* SSL options */
3195 
3220 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384
3221 
3245 //#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3246 
3269 //#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3270 
3286 //#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3287 
3288 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3289 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3290 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3291 
3304 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3305 
3306 /* X509 options */
3307 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3308 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3309 
3322 // #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3323 
3339 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3340 
3359 //#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3360 
3378 //#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3379 
3380 /* \} name SECTION: Customisation configuration options */
3381 
3382 /* Target and application specific configurations
3383  *
3384  * Allow user to override any previous default.
3385  *
3386  */
3387 #if defined(MBEDTLS_USER_CONFIG_FILE)
3388 #include MBEDTLS_USER_CONFIG_FILE
3389 #endif
3390 
3391 #include "check_config.h"
3392 
3393 #endif /* MBEDTLS_CONFIG_H */
Consistency checks for configuration options.