mbed TLS v2.16.1
config.h
Go to the documentation of this file.
1 
10 /*
11  * Copyright (C) 2006-2018, ARM Limited, All Rights Reserved
12  * SPDX-License-Identifier: GPL-2.0
13  *
14  * This program is free software; you can redistribute it and/or modify
15  * it under the terms of the GNU General Public License as published by
16  * the Free Software Foundation; either version 2 of the License, or
17  * (at your option) any later version.
18  *
19  * This program is distributed in the hope that it will be useful,
20  * but WITHOUT ANY WARRANTY; without even the implied warranty of
21  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
22  * GNU General Public License for more details.
23  *
24  * You should have received a copy of the GNU General Public License along
25  * with this program; if not, write to the Free Software Foundation, Inc.,
26  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
27  *
28  * This file is part of mbed TLS (https://tls.mbed.org)
29  */
30 
31 #ifndef MBEDTLS_CONFIG_H
32 #define MBEDTLS_CONFIG_H
33 
34 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
35 #define _CRT_SECURE_NO_DEPRECATE 1
36 #endif
37 
63 #define MBEDTLS_HAVE_ASM
64 
91 //#define MBEDTLS_NO_UDBL_DIVISION
92 
113 //#define MBEDTLS_NO_64BIT_MULTIPLICATION
114 
122 //#define MBEDTLS_HAVE_SSE2
123 
137 #define MBEDTLS_HAVE_TIME
138 
158 #define MBEDTLS_HAVE_TIME_DATE
159 
182 //#define MBEDTLS_PLATFORM_MEMORY
183 
201 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
202 
226 //#define MBEDTLS_PLATFORM_EXIT_ALT
227 //#define MBEDTLS_PLATFORM_TIME_ALT
228 //#define MBEDTLS_PLATFORM_FPRINTF_ALT
229 //#define MBEDTLS_PLATFORM_PRINTF_ALT
230 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT
231 //#define MBEDTLS_PLATFORM_NV_SEED_ALT
232 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
233 
247 //#define MBEDTLS_DEPRECATED_WARNING
248 
259 //#define MBEDTLS_DEPRECATED_REMOVED
260 
301 //#define MBEDTLS_CHECK_PARAMS
302 
303 /* \} name SECTION: System support */
304 
324 //#define MBEDTLS_TIMING_ALT
325 
351 //#define MBEDTLS_AES_ALT
352 //#define MBEDTLS_ARC4_ALT
353 //#define MBEDTLS_ARIA_ALT
354 //#define MBEDTLS_BLOWFISH_ALT
355 //#define MBEDTLS_CAMELLIA_ALT
356 //#define MBEDTLS_CCM_ALT
357 //#define MBEDTLS_CHACHA20_ALT
358 //#define MBEDTLS_CHACHAPOLY_ALT
359 //#define MBEDTLS_CMAC_ALT
360 //#define MBEDTLS_DES_ALT
361 //#define MBEDTLS_DHM_ALT
362 //#define MBEDTLS_ECJPAKE_ALT
363 //#define MBEDTLS_GCM_ALT
364 //#define MBEDTLS_NIST_KW_ALT
365 //#define MBEDTLS_MD2_ALT
366 //#define MBEDTLS_MD4_ALT
367 //#define MBEDTLS_MD5_ALT
368 //#define MBEDTLS_POLY1305_ALT
369 //#define MBEDTLS_RIPEMD160_ALT
370 //#define MBEDTLS_RSA_ALT
371 //#define MBEDTLS_SHA1_ALT
372 //#define MBEDTLS_SHA256_ALT
373 //#define MBEDTLS_SHA512_ALT
374 //#define MBEDTLS_XTEA_ALT
375 
376 /*
377  * When replacing the elliptic curve module, pleace consider, that it is
378  * implemented with two .c files:
379  * - ecp.c
380  * - ecp_curves.c
381  * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
382  * macros as described above. The only difference is that you have to make sure
383  * that you provide functionality for both .c files.
384  */
385 //#define MBEDTLS_ECP_ALT
386 
422 //#define MBEDTLS_MD2_PROCESS_ALT
423 //#define MBEDTLS_MD4_PROCESS_ALT
424 //#define MBEDTLS_MD5_PROCESS_ALT
425 //#define MBEDTLS_RIPEMD160_PROCESS_ALT
426 //#define MBEDTLS_SHA1_PROCESS_ALT
427 //#define MBEDTLS_SHA256_PROCESS_ALT
428 //#define MBEDTLS_SHA512_PROCESS_ALT
429 //#define MBEDTLS_DES_SETKEY_ALT
430 //#define MBEDTLS_DES_CRYPT_ECB_ALT
431 //#define MBEDTLS_DES3_CRYPT_ECB_ALT
432 //#define MBEDTLS_AES_SETKEY_ENC_ALT
433 //#define MBEDTLS_AES_SETKEY_DEC_ALT
434 //#define MBEDTLS_AES_ENCRYPT_ALT
435 //#define MBEDTLS_AES_DECRYPT_ALT
436 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
437 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
438 //#define MBEDTLS_ECDSA_VERIFY_ALT
439 //#define MBEDTLS_ECDSA_SIGN_ALT
440 //#define MBEDTLS_ECDSA_GENKEY_ALT
441 
482 /* Required for all the functions in this section */
483 //#define MBEDTLS_ECP_INTERNAL_ALT
484 /* Support for Weierstrass curves with Jacobi representation */
485 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
486 //#define MBEDTLS_ECP_ADD_MIXED_ALT
487 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT
488 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
489 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
490 /* Support for curves with Montgomery arithmetic */
491 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
492 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
493 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
494 
510 //#define MBEDTLS_TEST_NULL_ENTROPY
511 
523 //#define MBEDTLS_ENTROPY_HARDWARE_ALT
524 
543 //#define MBEDTLS_AES_ROM_TABLES
544 
565 //#define MBEDTLS_AES_FEWER_TABLES
566 
574 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY
575 
581 #define MBEDTLS_CIPHER_MODE_CBC
582 
588 #define MBEDTLS_CIPHER_MODE_CFB
589 
595 #define MBEDTLS_CIPHER_MODE_CTR
596 
602 #define MBEDTLS_CIPHER_MODE_OFB
603 
609 #define MBEDTLS_CIPHER_MODE_XTS
610 
642 //#define MBEDTLS_CIPHER_NULL_CIPHER
643 
655 #define MBEDTLS_CIPHER_PADDING_PKCS7
656 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
657 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
658 #define MBEDTLS_CIPHER_PADDING_ZEROS
659 
676 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
677 
689 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
690 
709 #define MBEDTLS_REMOVE_3DES_CIPHERSUITES
710 
719 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED
720 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED
721 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
722 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
723 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED
724 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED
725 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED
726 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED
727 #define MBEDTLS_ECP_DP_BP256R1_ENABLED
728 #define MBEDTLS_ECP_DP_BP384R1_ENABLED
729 #define MBEDTLS_ECP_DP_BP512R1_ENABLED
730 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED
731 #define MBEDTLS_ECP_DP_CURVE448_ENABLED
732 
742 #define MBEDTLS_ECP_NIST_OPTIM
743 
766 //#define MBEDTLS_ECP_RESTARTABLE
767 
780 #define MBEDTLS_ECDSA_DETERMINISTIC
781 
802 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
803 
833 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
834 
853 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
854 
878 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
879 
906 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
907 
939 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
940 
964 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
965 
988 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
989 
1012 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1013 
1036 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1037 
1055 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1056 
1069 #define MBEDTLS_PK_PARSE_EC_EXTENDED
1070 
1084 #define MBEDTLS_ERROR_STRERROR_DUMMY
1085 
1093 #define MBEDTLS_GENPRIME
1094 
1100 #define MBEDTLS_FS_IO
1101 
1113 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1114 
1124 //#define MBEDTLS_NO_PLATFORM_ENTROPY
1125 
1140 //#define MBEDTLS_ENTROPY_FORCE_SHA256
1141 
1168 //#define MBEDTLS_ENTROPY_NV_SEED
1169 
1181 //#define MBEDTLS_MEMORY_DEBUG
1182 
1193 //#define MBEDTLS_MEMORY_BACKTRACE
1194 
1202 #define MBEDTLS_PK_RSA_ALT_SUPPORT
1203 
1213 #define MBEDTLS_PKCS1_V15
1214 
1224 #define MBEDTLS_PKCS1_V21
1225 
1235 //#define MBEDTLS_RSA_NO_CRT
1236 
1242 #define MBEDTLS_SELF_TEST
1243 
1258 //#define MBEDTLS_SHA256_SMALLER
1259 
1272 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1273 
1283 //#define MBEDTLS_SSL_ASYNC_PRIVATE
1284 
1299 //#define MBEDTLS_SSL_DEBUG_ALL
1300 
1317 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1318 
1335 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1336 
1352 #define MBEDTLS_SSL_FALLBACK_SCSV
1353 
1362 //#define MBEDTLS_SSL_HW_RECORD_ACCEL
1363 
1374 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1375 
1396 #define MBEDTLS_SSL_RENEGOTIATION
1397 
1406 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1407 
1416 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1417 
1425 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1426 
1437 //#define MBEDTLS_SSL_PROTO_SSL3
1438 
1449 #define MBEDTLS_SSL_PROTO_TLS1
1450 
1461 #define MBEDTLS_SSL_PROTO_TLS1_1
1462 
1473 #define MBEDTLS_SSL_PROTO_TLS1_2
1474 
1488 #define MBEDTLS_SSL_PROTO_DTLS
1489 
1497 #define MBEDTLS_SSL_ALPN
1498 
1512 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1513 
1530 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1531 
1546 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1547 
1557 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1558 
1571 #define MBEDTLS_SSL_SESSION_TICKETS
1572 
1581 #define MBEDTLS_SSL_EXPORT_KEYS
1582 
1592 #define MBEDTLS_SSL_SERVER_NAME_INDICATION
1593 
1601 #define MBEDTLS_SSL_TRUNCATED_HMAC
1602 
1625 //#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1626 
1636 //#define MBEDTLS_THREADING_ALT
1637 
1647 //#define MBEDTLS_THREADING_PTHREAD
1648 
1660 #define MBEDTLS_VERSION_FEATURES
1661 
1670 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1671 
1682 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1683 
1696 #define MBEDTLS_X509_CHECK_KEY_USAGE
1697 
1709 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1710 
1719 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT
1720 
1744 //#define MBEDTLS_ZLIB_SUPPORT
1745 /* \} name SECTION: mbed TLS feature support */
1746 
1766 #define MBEDTLS_AESNI_C
1767 
1841 #define MBEDTLS_AES_C
1842 
1869 #define MBEDTLS_ARC4_C
1870 
1883 #define MBEDTLS_ASN1_PARSE_C
1884 
1897 #define MBEDTLS_ASN1_WRITE_C
1898 
1909 #define MBEDTLS_BASE64_C
1910 
1926 #define MBEDTLS_BIGNUM_C
1927 
1935 #define MBEDTLS_BLOWFISH_C
1936 
1990 #define MBEDTLS_CAMELLIA_C
1991 
2042 //#define MBEDTLS_ARIA_C
2043 
2056 #define MBEDTLS_CCM_C
2057 
2068 #define MBEDTLS_CERTS_C
2069 
2077 #define MBEDTLS_CHACHA20_C
2078 
2088 #define MBEDTLS_CHACHAPOLY_C
2089 
2100 #define MBEDTLS_CIPHER_C
2101 
2113 //#define MBEDTLS_CMAC_C
2114 
2129 #define MBEDTLS_CTR_DRBG_C
2130 
2143 #define MBEDTLS_DEBUG_C
2144 
2172 #define MBEDTLS_DES_C
2173 
2193 #define MBEDTLS_DHM_C
2194 
2209 #define MBEDTLS_ECDH_C
2210 
2224 #define MBEDTLS_ECDSA_C
2225 
2243 //#define MBEDTLS_ECJPAKE_C
2244 
2257 #define MBEDTLS_ECP_C
2258 
2271 #define MBEDTLS_ENTROPY_C
2272 
2283 #define MBEDTLS_ERROR_C
2284 
2297 #define MBEDTLS_GCM_C
2298 
2320 //#define MBEDTLS_HAVEGE_C
2321 
2335 #define MBEDTLS_HKDF_C
2336 
2349 #define MBEDTLS_HMAC_DRBG_C
2350 
2362 //#define MBEDTLS_NIST_KW_C
2363 
2374 #define MBEDTLS_MD_C
2375 
2391 //#define MBEDTLS_MD2_C
2392 
2408 //#define MBEDTLS_MD4_C
2409 
2430 #define MBEDTLS_MD5_C
2431 
2446 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2447 
2465 #define MBEDTLS_NET_C
2466 
2488 #define MBEDTLS_OID_C
2489 
2502 #define MBEDTLS_PADLOCK_C
2503 
2520 #define MBEDTLS_PEM_PARSE_C
2521 
2536 #define MBEDTLS_PEM_WRITE_C
2537 
2552 #define MBEDTLS_PK_C
2553 
2567 #define MBEDTLS_PK_PARSE_C
2568 
2581 #define MBEDTLS_PK_WRITE_C
2582 
2594 #define MBEDTLS_PKCS5_C
2595 
2609 //#define MBEDTLS_PKCS11_C
2610 
2625 #define MBEDTLS_PKCS12_C
2626 
2645 #define MBEDTLS_PLATFORM_C
2646 
2655 #define MBEDTLS_POLY1305_C
2656 
2666 #define MBEDTLS_RIPEMD160_C
2667 
2685 #define MBEDTLS_RSA_C
2686 
2707 #define MBEDTLS_SHA1_C
2708 
2724 #define MBEDTLS_SHA256_C
2725 
2739 #define MBEDTLS_SHA512_C
2740 
2751 #define MBEDTLS_SSL_CACHE_C
2752 
2761 #define MBEDTLS_SSL_COOKIE_C
2762 
2773 #define MBEDTLS_SSL_TICKET_C
2774 
2787 #define MBEDTLS_SSL_CLI_C
2788 
2801 #define MBEDTLS_SSL_SRV_C
2802 
2817 #define MBEDTLS_SSL_TLS_C
2818 
2839 //#define MBEDTLS_THREADING_C
2840 
2862 #define MBEDTLS_TIMING_C
2863 
2873 #define MBEDTLS_VERSION_C
2874 
2890 #define MBEDTLS_X509_USE_C
2891 
2906 #define MBEDTLS_X509_CRT_PARSE_C
2907 
2920 #define MBEDTLS_X509_CRL_PARSE_C
2921 
2934 #define MBEDTLS_X509_CSR_PARSE_C
2935 
2947 #define MBEDTLS_X509_CREATE_C
2948 
2960 #define MBEDTLS_X509_CRT_WRITE_C
2961 
2973 #define MBEDTLS_X509_CSR_WRITE_C
2974 
2983 #define MBEDTLS_XTEA_C
2984 
2985 /* \} name SECTION: mbed TLS modules */
2986 
3002 /* MPI / BIGNUM options */
3003 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
3004 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3005 
3006 /* CTR_DRBG options */
3007 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3008 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3009 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3010 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3011 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3012 //#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY /**< Use 128-bit key for CTR_DRBG - may reduce security (see ctr_drbg.h) */
3013 
3014 /* HMAC_DRBG options */
3015 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3016 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3017 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3018 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3019 
3020 /* ECP options */
3021 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3022 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3023 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3024 
3025 /* Entropy options */
3026 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3027 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3028 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3029 
3030 /* Memory buffer allocator options */
3031 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3032 
3033 /* Platform options */
3034 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3035 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3036 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3037 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3038 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3039 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3040 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3041 /* Note: your snprintf must correclty zero-terminate the buffer! */
3042 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3043 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3044 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3045 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3046 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3047 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3048 
3049 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3050 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3051 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3052 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3053 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3054 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3055 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3056 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3057 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3058 /* Note: your snprintf must correclty zero-terminate the buffer! */
3059 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3060 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3061 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3062 
3091 //#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3092 
3093 /* SSL Cache options */
3094 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3095 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3096 
3097 /* SSL options */
3098 
3123 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384
3124 
3148 //#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3149 
3172 //#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3173 
3189 //#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3190 
3191 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3192 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3193 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3194 
3207 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3208 
3209 /* X509 options */
3210 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3211 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3212 
3225 // #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3226 
3242 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3243 
3262 //#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3263 
3281 //#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3282 
3283 /* \} name SECTION: Customisation configuration options */
3284 
3285 /* Target and application specific configurations
3286  *
3287  * Allow user to override any previous default.
3288  *
3289  */
3290 #if defined(MBEDTLS_USER_CONFIG_FILE)
3291 #include MBEDTLS_USER_CONFIG_FILE
3292 #endif
3293 
3294 #include "check_config.h"
3295 
3296 #endif /* MBEDTLS_CONFIG_H */
Consistency checks for configuration options.