mbed TLS v2.24.0
config.h
Go to the documentation of this file.
1 
10 /*
11  * Copyright The Mbed TLS Contributors
12  * SPDX-License-Identifier: Apache-2.0
13  *
14  * Licensed under the Apache License, Version 2.0 (the "License"); you may
15  * not use this file except in compliance with the License.
16  * You may obtain a copy of the License at
17  *
18  * http://www.apache.org/licenses/LICENSE-2.0
19  *
20  * Unless required by applicable law or agreed to in writing, software
21  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23  * See the License for the specific language governing permissions and
24  * limitations under the License.
25  */
26 
27 #ifdef _RTE_
28 #include "mbedTLS_config.h"
29 #endif
30 
31 #ifndef MBEDTLS_CONFIG_H
32 #define MBEDTLS_CONFIG_H
33 
34 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
35 #define _CRT_SECURE_NO_DEPRECATE 1
36 #endif
37 
63 #define MBEDTLS_HAVE_ASM
64 
91 #define MBEDTLS_NO_UDBL_DIVISION
92 
113 #define MBEDTLS_NO_64BIT_MULTIPLICATION
114 
122 #define MBEDTLS_HAVE_SSE2
123 
137 #define MBEDTLS_HAVE_TIME
138 
158 #define MBEDTLS_HAVE_TIME_DATE
159 
182 #define MBEDTLS_PLATFORM_MEMORY
183 
201 #define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
202 
226 #define MBEDTLS_PLATFORM_EXIT_ALT
227 #define MBEDTLS_PLATFORM_TIME_ALT
228 #define MBEDTLS_PLATFORM_FPRINTF_ALT
229 #define MBEDTLS_PLATFORM_PRINTF_ALT
230 #define MBEDTLS_PLATFORM_SNPRINTF_ALT
231 #define MBEDTLS_PLATFORM_VSNPRINTF_ALT
232 #define MBEDTLS_PLATFORM_NV_SEED_ALT
233 #define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
234 
248 #define MBEDTLS_DEPRECATED_WARNING
249 
260 #define MBEDTLS_DEPRECATED_REMOVED
261 
312 #define MBEDTLS_CHECK_PARAMS
313 
326 #define MBEDTLS_CHECK_PARAMS_ASSERT
327 
328 /* \} name SECTION: System support */
329 
349 #define MBEDTLS_TIMING_ALT
350 
376 #define MBEDTLS_AES_ALT
377 #define MBEDTLS_ARC4_ALT
378 #define MBEDTLS_ARIA_ALT
379 #define MBEDTLS_BLOWFISH_ALT
380 #define MBEDTLS_CAMELLIA_ALT
381 #define MBEDTLS_CCM_ALT
382 #define MBEDTLS_CHACHA20_ALT
383 #define MBEDTLS_CHACHAPOLY_ALT
384 #define MBEDTLS_CMAC_ALT
385 #define MBEDTLS_DES_ALT
386 #define MBEDTLS_DHM_ALT
387 #define MBEDTLS_ECJPAKE_ALT
388 #define MBEDTLS_GCM_ALT
389 #define MBEDTLS_NIST_KW_ALT
390 #define MBEDTLS_MD2_ALT
391 #define MBEDTLS_MD4_ALT
392 #define MBEDTLS_MD5_ALT
393 #define MBEDTLS_POLY1305_ALT
394 #define MBEDTLS_RIPEMD160_ALT
395 #define MBEDTLS_RSA_ALT
396 #define MBEDTLS_SHA1_ALT
397 #define MBEDTLS_SHA256_ALT
398 #define MBEDTLS_SHA512_ALT
399 #define MBEDTLS_XTEA_ALT
400 
401 /*
402  * When replacing the elliptic curve module, pleace consider, that it is
403  * implemented with two .c files:
404  * - ecp.c
405  * - ecp_curves.c
406  * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
407  * macros as described above. The only difference is that you have to make sure
408  * that you provide functionality for both .c files.
409  */
410 #define MBEDTLS_ECP_ALT
411 
457 #define MBEDTLS_MD2_PROCESS_ALT
458 #define MBEDTLS_MD4_PROCESS_ALT
459 #define MBEDTLS_MD5_PROCESS_ALT
460 #define MBEDTLS_RIPEMD160_PROCESS_ALT
461 #define MBEDTLS_SHA1_PROCESS_ALT
462 #define MBEDTLS_SHA256_PROCESS_ALT
463 #define MBEDTLS_SHA512_PROCESS_ALT
464 #define MBEDTLS_DES_SETKEY_ALT
465 #define MBEDTLS_DES_CRYPT_ECB_ALT
466 #define MBEDTLS_DES3_CRYPT_ECB_ALT
467 #define MBEDTLS_AES_SETKEY_ENC_ALT
468 #define MBEDTLS_AES_SETKEY_DEC_ALT
469 #define MBEDTLS_AES_ENCRYPT_ALT
470 #define MBEDTLS_AES_DECRYPT_ALT
471 #define MBEDTLS_ECDH_GEN_PUBLIC_ALT
472 #define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
473 #define MBEDTLS_ECDSA_VERIFY_ALT
474 #define MBEDTLS_ECDSA_SIGN_ALT
475 #define MBEDTLS_ECDSA_GENKEY_ALT
476 
517 /* Required for all the functions in this section */
518 #define MBEDTLS_ECP_INTERNAL_ALT
519 /* Support for Weierstrass curves with Jacobi representation */
520 #define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
521 #define MBEDTLS_ECP_ADD_MIXED_ALT
522 #define MBEDTLS_ECP_DOUBLE_JAC_ALT
523 #define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
524 #define MBEDTLS_ECP_NORMALIZE_JAC_ALT
525 /* Support for curves with Montgomery arithmetic */
526 #define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
527 #define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
528 #define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
529 
545 #define MBEDTLS_TEST_NULL_ENTROPY
546 
558 #define MBEDTLS_ENTROPY_HARDWARE_ALT
559 
578 #define MBEDTLS_AES_ROM_TABLES
579 
600 #define MBEDTLS_AES_FEWER_TABLES
601 
609 #define MBEDTLS_CAMELLIA_SMALL_MEMORY
610 
616 #define MBEDTLS_CIPHER_MODE_CBC
617 
623 #define MBEDTLS_CIPHER_MODE_CFB
624 
630 #define MBEDTLS_CIPHER_MODE_CTR
631 
637 #define MBEDTLS_CIPHER_MODE_OFB
638 
644 #define MBEDTLS_CIPHER_MODE_XTS
645 
677 #define MBEDTLS_CIPHER_NULL_CIPHER
678 
690 #define MBEDTLS_CIPHER_PADDING_PKCS7
691 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
692 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
693 #define MBEDTLS_CIPHER_PADDING_ZEROS
694 
700 #define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
701 
718 #define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
719 
731 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
732 
751 #define MBEDTLS_REMOVE_3DES_CIPHERSUITES
752 
761 /* Short Weierstrass curves (supporting ECP, ECDH, ECDSA) */
762 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED
763 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED
764 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
765 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
766 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED
767 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED
768 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED
769 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED
770 #define MBEDTLS_ECP_DP_BP256R1_ENABLED
771 #define MBEDTLS_ECP_DP_BP384R1_ENABLED
772 #define MBEDTLS_ECP_DP_BP512R1_ENABLED
773 /* Montgomery curves (supporting ECP) */
774 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED
775 #define MBEDTLS_ECP_DP_CURVE448_ENABLED
776 
786 #define MBEDTLS_ECP_NIST_OPTIM
787 
808 #define MBEDTLS_ECP_NO_INTERNAL_RNG
809 
833 #define MBEDTLS_ECP_RESTARTABLE
834 
861 #define MBEDTLS_ECDH_LEGACY_CONTEXT
862 
875 #define MBEDTLS_ECDSA_DETERMINISTIC
876 
897 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
898 
928 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
929 
948 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
949 
973 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
974 
1001 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1002 
1034 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1035 
1059 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1060 
1083 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1084 
1107 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1108 
1131 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1132 
1150 #define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1151 
1164 #define MBEDTLS_PK_PARSE_EC_EXTENDED
1165 
1179 #define MBEDTLS_ERROR_STRERROR_DUMMY
1180 
1188 #define MBEDTLS_GENPRIME
1189 
1195 #define MBEDTLS_FS_IO
1196 
1208 #define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1209 
1219 #define MBEDTLS_NO_PLATFORM_ENTROPY
1220 
1235 #define MBEDTLS_ENTROPY_FORCE_SHA256
1236 
1263 #define MBEDTLS_ENTROPY_NV_SEED
1264 
1265 /* MBEDTLS_PSA_CRYPTO_KEY_FILE_ID_ENCODES_OWNER
1266  *
1267  * In PSA key storage, encode the owner of the key.
1268  *
1269  * This is only meaningful when building the library as part of a
1270  * multi-client service. When you activate this option, you must provide
1271  * an implementation of the type psa_key_owner_id_t and a translation
1272  * from psa_key_file_id_t to file name in all the storage backends that
1273  * you wish to support.
1274  *
1275  * Note that this option is meant for internal use only and may be removed
1276  * without notice.
1277  */
1278 #define MBEDTLS_PSA_CRYPTO_KEY_FILE_ID_ENCODES_OWNER
1279 
1291 #define MBEDTLS_MEMORY_DEBUG
1292 
1303 #define MBEDTLS_MEMORY_BACKTRACE
1304 
1312 #define MBEDTLS_PK_RSA_ALT_SUPPORT
1313 
1323 #define MBEDTLS_PKCS1_V15
1324 
1334 #define MBEDTLS_PKCS1_V21
1335 
1348 #define MBEDTLS_PSA_CRYPTO_SPM
1349 
1361 #define MBEDTLS_PSA_INJECT_ENTROPY
1362 
1372 #define MBEDTLS_RSA_NO_CRT
1373 
1379 #define MBEDTLS_SELF_TEST
1380 
1395 #define MBEDTLS_SHA256_SMALLER
1396 
1405 #define MBEDTLS_SHA512_SMALLER
1406 
1417 #define MBEDTLS_SHA512_NO_SHA384
1418 
1431 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1432 
1445 #define MBEDTLS_SSL_RECORD_CHECKING
1446 
1473 #define MBEDTLS_SSL_DTLS_CONNECTION_ID
1474 
1484 #define MBEDTLS_SSL_ASYNC_PRIVATE
1485 
1511 #define MBEDTLS_SSL_CONTEXT_SERIALIZATION
1512 
1527 #define MBEDTLS_SSL_DEBUG_ALL
1528 
1545 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1546 
1563 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1564 
1581 #define MBEDTLS_SSL_FALLBACK_SCSV
1582 
1603 #define MBEDTLS_SSL_KEEP_PEER_CERTIFICATE
1604 
1616 #define MBEDTLS_SSL_HW_RECORD_ACCEL
1617 
1628 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1629 
1650 #define MBEDTLS_SSL_RENEGOTIATION
1651 
1663 #define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1664 
1673 #define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1674 
1682 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1683 
1697 #define MBEDTLS_SSL_PROTO_SSL3
1698 
1709 #define MBEDTLS_SSL_PROTO_TLS1
1710 
1721 #define MBEDTLS_SSL_PROTO_TLS1_1
1722 
1733 #define MBEDTLS_SSL_PROTO_TLS1_2
1734 
1752 #define MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
1753 
1767 #define MBEDTLS_SSL_PROTO_DTLS
1768 
1776 #define MBEDTLS_SSL_ALPN
1777 
1791 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1792 
1809 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1810 
1825 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1826 
1836 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1837 
1850 #define MBEDTLS_SSL_SESSION_TICKETS
1851 
1860 #define MBEDTLS_SSL_EXPORT_KEYS
1861 
1871 #define MBEDTLS_SSL_SERVER_NAME_INDICATION
1872 
1880 #define MBEDTLS_SSL_TRUNCATED_HMAC
1881 
1904 #define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1905 
1911 #define MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1912 
1928 #define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
1929 
1947 #define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
1948 
1967 #define MBEDTLS_TEST_HOOKS
1968 
1978 #define MBEDTLS_THREADING_ALT
1979 
1989 #define MBEDTLS_THREADING_PTHREAD
1990 
2016 #define MBEDTLS_USE_PSA_CRYPTO
2017 
2029 #define MBEDTLS_VERSION_FEATURES
2030 
2039 #define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
2040 
2051 #define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
2052 
2070 #define MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
2071 
2084 #define MBEDTLS_X509_CHECK_KEY_USAGE
2085 
2097 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
2098 
2107 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT
2108 
2132 #define MBEDTLS_ZLIB_SUPPORT
2133 /* \} name SECTION: mbed TLS feature support */
2134 
2154 #define MBEDTLS_AESNI_C
2155 
2229 #define MBEDTLS_AES_C
2230 
2257 #define MBEDTLS_ARC4_C
2258 
2271 #define MBEDTLS_ASN1_PARSE_C
2272 
2285 #define MBEDTLS_ASN1_WRITE_C
2286 
2297 #define MBEDTLS_BASE64_C
2298 
2314 #define MBEDTLS_BIGNUM_C
2315 
2323 #define MBEDTLS_BLOWFISH_C
2324 
2378 #define MBEDTLS_CAMELLIA_C
2379 
2430 #define MBEDTLS_ARIA_C
2431 
2444 #define MBEDTLS_CCM_C
2445 
2456 #define MBEDTLS_CERTS_C
2457 
2465 #define MBEDTLS_CHACHA20_C
2466 
2476 #define MBEDTLS_CHACHAPOLY_C
2477 
2488 #define MBEDTLS_CIPHER_C
2489 
2501 #define MBEDTLS_CMAC_C
2502 
2521 #define MBEDTLS_CTR_DRBG_C
2522 
2535 #define MBEDTLS_DEBUG_C
2536 
2564 #define MBEDTLS_DES_C
2565 
2585 #define MBEDTLS_DHM_C
2586 
2601 #define MBEDTLS_ECDH_C
2602 
2618 #define MBEDTLS_ECDSA_C
2619 
2637 #define MBEDTLS_ECJPAKE_C
2638 
2651 #define MBEDTLS_ECP_C
2652 
2665 #define MBEDTLS_ENTROPY_C
2666 
2677 #define MBEDTLS_ERROR_C
2678 
2691 #define MBEDTLS_GCM_C
2692 
2714 #define MBEDTLS_HAVEGE_C
2715 
2729 #define MBEDTLS_HKDF_C
2730 
2743 #define MBEDTLS_HMAC_DRBG_C
2744 
2756 #define MBEDTLS_NIST_KW_C
2757 
2768 #define MBEDTLS_MD_C
2769 
2785 #define MBEDTLS_MD2_C
2786 
2802 #define MBEDTLS_MD4_C
2803 
2824 #define MBEDTLS_MD5_C
2825 
2840 #define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2841 
2859 #define MBEDTLS_NET_C
2860 
2882 #define MBEDTLS_OID_C
2883 
2896 #define MBEDTLS_PADLOCK_C
2897 
2914 #define MBEDTLS_PEM_PARSE_C
2915 
2930 #define MBEDTLS_PEM_WRITE_C
2931 
2946 #define MBEDTLS_PK_C
2947 
2961 #define MBEDTLS_PK_PARSE_C
2962 
2975 #define MBEDTLS_PK_WRITE_C
2976 
2988 #define MBEDTLS_PKCS5_C
2989 
3006 #define MBEDTLS_PKCS11_C
3007 
3022 #define MBEDTLS_PKCS12_C
3023 
3042 #define MBEDTLS_PLATFORM_C
3043 
3052 #define MBEDTLS_POLY1305_C
3053 
3068 #define MBEDTLS_PSA_CRYPTO_C
3069 
3084 #define MBEDTLS_PSA_CRYPTO_SE_C
3085 
3097 #define MBEDTLS_PSA_CRYPTO_STORAGE_C
3098 
3109 #define MBEDTLS_PSA_ITS_FILE_C
3110 
3120 #define MBEDTLS_RIPEMD160_C
3121 
3139 #define MBEDTLS_RSA_C
3140 
3161 #define MBEDTLS_SHA1_C
3162 
3178 #define MBEDTLS_SHA256_C
3179 
3193 #define MBEDTLS_SHA512_C
3194 
3205 #define MBEDTLS_SSL_CACHE_C
3206 
3215 #define MBEDTLS_SSL_COOKIE_C
3216 
3227 #define MBEDTLS_SSL_TICKET_C
3228 
3241 #define MBEDTLS_SSL_CLI_C
3242 
3255 #define MBEDTLS_SSL_SRV_C
3256 
3271 #define MBEDTLS_SSL_TLS_C
3272 
3293 #define MBEDTLS_THREADING_C
3294 
3316 #define MBEDTLS_TIMING_C
3317 
3327 #define MBEDTLS_VERSION_C
3328 
3344 #define MBEDTLS_X509_USE_C
3345 
3360 #define MBEDTLS_X509_CRT_PARSE_C
3361 
3374 #define MBEDTLS_X509_CRL_PARSE_C
3375 
3388 #define MBEDTLS_X509_CSR_PARSE_C
3389 
3401 #define MBEDTLS_X509_CREATE_C
3402 
3414 #define MBEDTLS_X509_CRT_WRITE_C
3415 
3427 #define MBEDTLS_X509_CSR_WRITE_C
3428 
3437 #define MBEDTLS_XTEA_C
3438 
3439 /* \} name SECTION: mbed TLS modules */
3440 
3456 /* MPI / BIGNUM options */
3457 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
3458 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3459 
3460 /* CTR_DRBG options */
3461 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3462 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3463 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3464 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3465 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3466 
3467 /* HMAC_DRBG options */
3468 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3469 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3470 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3471 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3472 
3473 /* ECP options */
3474 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3475 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3476 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3477 
3478 /* Entropy options */
3479 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3480 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3481 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3482 
3483 /* Memory buffer allocator options */
3484 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3485 
3486 /* Platform options */
3487 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3488 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3489 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3490 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3491 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3492 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3493 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3494 /* Note: your snprintf must correctly zero-terminate the buffer! */
3495 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3496 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3497 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3498 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3499 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3500 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3501 
3502 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3503 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3504 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3505 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3506 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3507 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3508 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3509 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3510 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3511 /* Note: your snprintf must correctly zero-terminate the buffer! */
3512 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3513 //#define MBEDTLS_PLATFORM_VSNPRINTF_MACRO vsnprintf /**< Default vsnprintf macro to use, can be undefined */
3514 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3515 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3516 
3551 //#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3552 
3553 /* SSL Cache options */
3554 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3555 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3556 
3557 /* SSL options */
3558 
3583 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384
3584 
3608 //#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3609 
3615 //#define MBEDTLS_SSL_CID_IN_LEN_MAX 32
3616 
3622 //#define MBEDTLS_SSL_CID_OUT_LEN_MAX 32
3623 
3639 //#define MBEDTLS_SSL_CID_PADDING_GRANULARITY 16
3640 
3655 //#define MBEDTLS_SSL_TLS1_3_PADDING_GRANULARITY 1
3656 
3679 //#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3680 
3696 //#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3697 
3698 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3699 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3700 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3701 
3714 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3715 
3716 /* X509 options */
3717 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3718 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3719 
3732 //#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3733 
3749 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3750 
3769 //#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3770 
3788 //#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3789 
3797 //#define MBEDTLS_ECDH_VARIANT_EVEREST_ENABLED
3798 
3799 /* \} name SECTION: Customisation configuration options */
3800 
3801 /* Target and application specific configurations
3802  *
3803  * Allow user to override any previous default.
3804  *
3805  */
3806 #if defined(MBEDTLS_USER_CONFIG_FILE)
3807 #include MBEDTLS_USER_CONFIG_FILE
3808 #endif
3809 
3810 #include "mbedtls/check_config.h"
3811 
3812 #endif /* MBEDTLS_CONFIG_H */
Consistency checks for configuration options.