00001 00028 #ifndef MBEDTLS_CONFIG_H 00029 #define MBEDTLS_CONFIG_H 00030 00031 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE) 00032 #define _CRT_SECURE_NO_DEPRECATE 1 00033 #endif 00034 00056 #define MBEDTLS_HAVE_ASM 00057 00065 //#define MBEDTLS_HAVE_SSE2 00066 00080 #define MBEDTLS_HAVE_TIME 00081 00092 #define MBEDTLS_HAVE_TIME_DATE 00093 00116 //#define MBEDTLS_PLATFORM_MEMORY 00117 00135 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS 00136 00160 //#define MBEDTLS_PLATFORM_EXIT_ALT 00161 //#define MBEDTLS_PLATFORM_TIME_ALT 00162 //#define MBEDTLS_PLATFORM_FPRINTF_ALT 00163 //#define MBEDTLS_PLATFORM_PRINTF_ALT 00164 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT 00165 //#define MBEDTLS_PLATFORM_NV_SEED_ALT 00166 00180 //#define MBEDTLS_DEPRECATED_WARNING 00181 00192 //#define MBEDTLS_DEPRECATED_REMOVED 00193 00194 /* \} name SECTION: System support */ 00195 00215 //#define MBEDTLS_TIMING_ALT 00216 00236 //#define MBEDTLS_AES_ALT 00237 //#define MBEDTLS_ARC4_ALT 00238 //#define MBEDTLS_BLOWFISH_ALT 00239 //#define MBEDTLS_CAMELLIA_ALT 00240 //#define MBEDTLS_DES_ALT 00241 //#define MBEDTLS_XTEA_ALT 00242 //#define MBEDTLS_MD2_ALT 00243 //#define MBEDTLS_MD4_ALT 00244 //#define MBEDTLS_MD5_ALT 00245 //#define MBEDTLS_RIPEMD160_ALT 00246 //#define MBEDTLS_SHA1_ALT 00247 //#define MBEDTLS_SHA256_ALT 00248 //#define MBEDTLS_SHA512_ALT 00249 00273 //#define MBEDTLS_MD2_PROCESS_ALT 00274 //#define MBEDTLS_MD4_PROCESS_ALT 00275 //#define MBEDTLS_MD5_PROCESS_ALT 00276 //#define MBEDTLS_RIPEMD160_PROCESS_ALT 00277 //#define MBEDTLS_SHA1_PROCESS_ALT 00278 //#define MBEDTLS_SHA256_PROCESS_ALT 00279 //#define MBEDTLS_SHA512_PROCESS_ALT 00280 //#define MBEDTLS_DES_SETKEY_ALT 00281 //#define MBEDTLS_DES_CRYPT_ECB_ALT 00282 //#define MBEDTLS_DES3_CRYPT_ECB_ALT 00283 //#define MBEDTLS_AES_SETKEY_ENC_ALT 00284 //#define MBEDTLS_AES_SETKEY_DEC_ALT 00285 //#define MBEDTLS_AES_ENCRYPT_ALT 00286 //#define MBEDTLS_AES_DECRYPT_ALT 00287 00303 //#define MBEDTLS_TEST_NULL_ENTROPY 00304 00316 //#define MBEDTLS_ENTROPY_HARDWARE_ALT 00317 00325 //#define MBEDTLS_AES_ROM_TABLES 00326 00334 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY 00335 00341 #define MBEDTLS_CIPHER_MODE_CBC 00342 00348 #define MBEDTLS_CIPHER_MODE_CFB 00349 00355 #define MBEDTLS_CIPHER_MODE_CTR 00356 00388 //#define MBEDTLS_CIPHER_NULL_CIPHER 00389 00401 #define MBEDTLS_CIPHER_PADDING_PKCS7 00402 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS 00403 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN 00404 #define MBEDTLS_CIPHER_PADDING_ZEROS 00405 00419 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES 00420 00432 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES 00433 00442 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED 00443 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED 00444 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED 00445 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED 00446 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED 00447 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED 00448 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED 00449 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED 00450 #define MBEDTLS_ECP_DP_BP256R1_ENABLED 00451 #define MBEDTLS_ECP_DP_BP384R1_ENABLED 00452 #define MBEDTLS_ECP_DP_BP512R1_ENABLED 00453 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED 00454 00464 #define MBEDTLS_ECP_NIST_OPTIM 00465 00478 #define MBEDTLS_ECDSA_DETERMINISTIC 00479 00500 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED 00501 00524 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED 00525 00544 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED 00545 00569 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 00570 00597 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 00598 00623 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED 00624 00648 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 00649 00672 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED 00673 00696 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED 00697 00720 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED 00721 00739 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED 00740 00753 #define MBEDTLS_PK_PARSE_EC_EXTENDED 00754 00768 #define MBEDTLS_ERROR_STRERROR_DUMMY 00769 00777 #define MBEDTLS_GENPRIME 00778 00784 #define MBEDTLS_FS_IO 00785 00797 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES 00798 00808 //#define MBEDTLS_NO_PLATFORM_ENTROPY 00809 00824 //#define MBEDTLS_ENTROPY_FORCE_SHA256 00825 00852 //#define MBEDTLS_ENTROPY_NV_SEED 00853 00865 //#define MBEDTLS_MEMORY_DEBUG 00866 00877 //#define MBEDTLS_MEMORY_BACKTRACE 00878 00886 #define MBEDTLS_PK_RSA_ALT_SUPPORT 00887 00897 #define MBEDTLS_PKCS1_V15 00898 00908 #define MBEDTLS_PKCS1_V21 00909 00918 //#define MBEDTLS_RSA_NO_CRT 00919 00925 #define MBEDTLS_SELF_TEST 00926 00941 //#define MBEDTLS_SHA256_SMALLER 00942 00955 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES 00956 00971 //#define MBEDTLS_SSL_DEBUG_ALL 00972 00989 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC 00990 01007 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET 01008 01024 #define MBEDTLS_SSL_FALLBACK_SCSV 01025 01034 //#define MBEDTLS_SSL_HW_RECORD_ACCEL 01035 01046 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING 01047 01061 #define MBEDTLS_SSL_RENEGOTIATION 01062 01071 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO 01072 01081 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE 01082 01090 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH 01091 01102 //#define MBEDTLS_SSL_PROTO_SSL3 01103 01114 #define MBEDTLS_SSL_PROTO_TLS1 01115 01126 #define MBEDTLS_SSL_PROTO_TLS1_1 01127 01138 #define MBEDTLS_SSL_PROTO_TLS1_2 01139 01153 #define MBEDTLS_SSL_PROTO_DTLS 01154 01162 #define MBEDTLS_SSL_ALPN 01163 01177 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY 01178 01195 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY 01196 01211 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE 01212 01222 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT 01223 01236 #define MBEDTLS_SSL_SESSION_TICKETS 01237 01246 #define MBEDTLS_SSL_EXPORT_KEYS 01247 01257 #define MBEDTLS_SSL_SERVER_NAME_INDICATION 01258 01266 #define MBEDTLS_SSL_TRUNCATED_HMAC 01267 01277 //#define MBEDTLS_THREADING_ALT 01278 01288 //#define MBEDTLS_THREADING_PTHREAD 01289 01301 #define MBEDTLS_VERSION_FEATURES 01302 01311 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3 01312 01323 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION 01324 01337 #define MBEDTLS_X509_CHECK_KEY_USAGE 01338 01350 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE 01351 01360 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT 01361 01382 //#define MBEDTLS_ZLIB_SUPPORT 01383 /* \} name SECTION: mbed TLS feature support */ 01384 01404 #define MBEDTLS_AESNI_C 01405 01479 #define MBEDTLS_AES_C 01480 01502 #define MBEDTLS_ARC4_C 01503 01516 #define MBEDTLS_ASN1_PARSE_C 01517 01530 #define MBEDTLS_ASN1_WRITE_C 01531 01542 #define MBEDTLS_BASE64_C 01543 01558 #define MBEDTLS_BIGNUM_C 01559 01567 #define MBEDTLS_BLOWFISH_C 01568 01622 #define MBEDTLS_CAMELLIA_C 01623 01636 #define MBEDTLS_CCM_C 01637 01648 #define MBEDTLS_CERTS_C 01649 01660 #define MBEDTLS_CIPHER_C 01661 01673 //#define MBEDTLS_CMAC_C 01674 01687 #define MBEDTLS_CTR_DRBG_C 01688 01701 #define MBEDTLS_DEBUG_C 01702 01727 #define MBEDTLS_DES_C 01728 01741 #define MBEDTLS_DHM_C 01742 01757 #define MBEDTLS_ECDH_C 01758 01772 #define MBEDTLS_ECDSA_C 01773 01791 //#define MBEDTLS_ECJPAKE_C 01792 01805 #define MBEDTLS_ECP_C 01806 01819 #define MBEDTLS_ENTROPY_C 01820 01831 #define MBEDTLS_ERROR_C 01832 01845 #define MBEDTLS_GCM_C 01846 01868 //#define MBEDTLS_HAVEGE_C 01869 01882 #define MBEDTLS_HMAC_DRBG_C 01883 01894 #define MBEDTLS_MD_C 01895 01906 //#define MBEDTLS_MD2_C 01907 01918 //#define MBEDTLS_MD4_C 01919 01933 #define MBEDTLS_MD5_C 01934 01949 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C 01950 01968 #define MBEDTLS_NET_C 01969 01991 #define MBEDTLS_OID_C 01992 02005 #define MBEDTLS_PADLOCK_C 02006 02023 #define MBEDTLS_PEM_PARSE_C 02024 02039 #define MBEDTLS_PEM_WRITE_C 02040 02055 #define MBEDTLS_PK_C 02056 02070 #define MBEDTLS_PK_PARSE_C 02071 02084 #define MBEDTLS_PK_WRITE_C 02085 02097 #define MBEDTLS_PKCS5_C 02098 02112 //#define MBEDTLS_PKCS11_C 02113 02128 #define MBEDTLS_PKCS12_C 02129 02148 #define MBEDTLS_PLATFORM_C 02149 02159 #define MBEDTLS_RIPEMD160_C 02160 02177 #define MBEDTLS_RSA_C 02178 02193 #define MBEDTLS_SHA1_C 02194 02210 #define MBEDTLS_SHA256_C 02211 02225 #define MBEDTLS_SHA512_C 02226 02237 #define MBEDTLS_SSL_CACHE_C 02238 02247 #define MBEDTLS_SSL_COOKIE_C 02248 02259 #define MBEDTLS_SSL_TICKET_C 02260 02273 #define MBEDTLS_SSL_CLI_C 02274 02287 #define MBEDTLS_SSL_SRV_C 02288 02303 #define MBEDTLS_SSL_TLS_C 02304 02325 //#define MBEDTLS_THREADING_C 02326 02348 #define MBEDTLS_TIMING_C 02349 02359 #define MBEDTLS_VERSION_C 02360 02376 #define MBEDTLS_X509_USE_C 02377 02392 #define MBEDTLS_X509_CRT_PARSE_C 02393 02406 #define MBEDTLS_X509_CRL_PARSE_C 02407 02420 #define MBEDTLS_X509_CSR_PARSE_C 02421 02433 #define MBEDTLS_X509_CREATE_C 02434 02446 #define MBEDTLS_X509_CRT_WRITE_C 02447 02459 #define MBEDTLS_X509_CSR_WRITE_C 02460 02469 #define MBEDTLS_XTEA_C 02470 02471 /* \} name SECTION: mbed TLS modules */ 02472 02488 /* MPI / BIGNUM options */ 02489 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */ 02490 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */ 02491 02492 /* CTR_DRBG options */ 02493 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */ 02494 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 02495 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 02496 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 02497 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 02498 02499 /* HMAC_DRBG options */ 02500 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */ 02501 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */ 02502 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */ 02503 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */ 02504 02505 /* ECP options */ 02506 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */ 02507 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */ 02508 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */ 02509 02510 /* Entropy options */ 02511 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */ 02512 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */ 02513 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */ 02514 02515 /* Memory buffer allocator options */ 02516 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */ 02517 02518 /* Platform options */ 02519 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */ 02520 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */ 02521 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */ 02522 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */ 02523 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02524 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */ 02525 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */ 02526 /* Note: your snprintf must correclty zero-terminate the buffer! */ 02527 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */ 02528 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */ 02529 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */ 02530 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 02531 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 02532 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */ 02533 02534 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */ 02535 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */ 02536 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */ 02537 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */ 02538 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */ 02539 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02540 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */ 02541 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */ 02542 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */ 02543 /* Note: your snprintf must correclty zero-terminate the buffer! */ 02544 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */ 02545 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */ 02546 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */ 02547 02548 /* SSL Cache options */ 02549 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */ 02550 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */ 02551 02552 /* SSL options */ 02553 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 /**< Maxium fragment length in bytes, determines the size of each of the two internal I/O buffers */ 02554 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */ 02555 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */ 02556 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */ 02557 02570 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 02571 02572 /* X509 options */ 02573 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */ 02574 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */ 02575 02576 /* \} name SECTION: Customisation configuration options */ 02577 02578 /* Target and application specific configurations */ 02579 //#define YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE "mbedtls/target_config.h" 02580 02581 #if defined(TARGET_LIKE_MBED) && defined(YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE) 02582 #include YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE 02583 #endif 02584 02585 /* 02586 * Allow user to override any previous default. 02587 * 02588 * Use two macro names for that, as: 02589 * - with yotta the prefix YOTTA_CFG_ is forced 02590 * - without yotta is looks weird to have a YOTTA prefix. 02591 */ 02592 #if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE) 02593 #include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE 02594 #elif defined(MBEDTLS_USER_CONFIG_FILE) 02595 #include MBEDTLS_USER_CONFIG_FILE 02596 #endif 02597 02598 #include "check_config.h" 02599 02600 #endif /* MBEDTLS_CONFIG_H */