mbed TLS v2.9.0
config.h
Go to the documentation of this file.
1 
10 /*
11  * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
12  * SPDX-License-Identifier: Apache-2.0
13  *
14  * Licensed under the Apache License, Version 2.0 (the "License"); you may
15  * not use this file except in compliance with the License.
16  * You may obtain a copy of the License at
17  *
18  * http://www.apache.org/licenses/LICENSE-2.0
19  *
20  * Unless required by applicable law or agreed to in writing, software
21  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23  * See the License for the specific language governing permissions and
24  * limitations under the License.
25  *
26  * This file is part of mbed TLS (https://tls.mbed.org)
27  */
28 
29 #ifndef MBEDTLS_CONFIG_H
30 #define MBEDTLS_CONFIG_H
31 
32 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
33 #define _CRT_SECURE_NO_DEPRECATE 1
34 #endif
35 
57 #define MBEDTLS_HAVE_ASM
58 
85 //#define MBEDTLS_NO_UDBL_DIVISION
86 
94 //#define MBEDTLS_HAVE_SSE2
95 
109 #define MBEDTLS_HAVE_TIME
110 
121 #define MBEDTLS_HAVE_TIME_DATE
122 
145 //#define MBEDTLS_PLATFORM_MEMORY
146 
164 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
165 
189 //#define MBEDTLS_PLATFORM_EXIT_ALT
190 //#define MBEDTLS_PLATFORM_TIME_ALT
191 //#define MBEDTLS_PLATFORM_FPRINTF_ALT
192 //#define MBEDTLS_PLATFORM_PRINTF_ALT
193 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT
194 //#define MBEDTLS_PLATFORM_NV_SEED_ALT
195 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
196 
210 //#define MBEDTLS_DEPRECATED_WARNING
211 
222 //#define MBEDTLS_DEPRECATED_REMOVED
223 
224 /* \} name SECTION: System support */
225 
245 //#define MBEDTLS_TIMING_ALT
246 
272 //#define MBEDTLS_AES_ALT
273 //#define MBEDTLS_ARC4_ALT
274 //#define MBEDTLS_BLOWFISH_ALT
275 //#define MBEDTLS_CAMELLIA_ALT
276 //#define MBEDTLS_CCM_ALT
277 //#define MBEDTLS_CMAC_ALT
278 //#define MBEDTLS_DES_ALT
279 //#define MBEDTLS_DHM_ALT
280 //#define MBEDTLS_ECJPAKE_ALT
281 //#define MBEDTLS_GCM_ALT
282 //#define MBEDTLS_MD2_ALT
283 //#define MBEDTLS_MD4_ALT
284 //#define MBEDTLS_MD5_ALT
285 //#define MBEDTLS_RIPEMD160_ALT
286 //#define MBEDTLS_RSA_ALT
287 //#define MBEDTLS_SHA1_ALT
288 //#define MBEDTLS_SHA256_ALT
289 //#define MBEDTLS_SHA512_ALT
290 //#define MBEDTLS_XTEA_ALT
291 /*
292  * When replacing the elliptic curve module, pleace consider, that it is
293  * implemented with two .c files:
294  * - ecp.c
295  * - ecp_curves.c
296  * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
297  * macros as described above. The only difference is that you have to make sure
298  * that you provide functionality for both .c files.
299  */
300 //#define MBEDTLS_ECP_ALT
301 
337 //#define MBEDTLS_MD2_PROCESS_ALT
338 //#define MBEDTLS_MD4_PROCESS_ALT
339 //#define MBEDTLS_MD5_PROCESS_ALT
340 //#define MBEDTLS_RIPEMD160_PROCESS_ALT
341 //#define MBEDTLS_SHA1_PROCESS_ALT
342 //#define MBEDTLS_SHA256_PROCESS_ALT
343 //#define MBEDTLS_SHA512_PROCESS_ALT
344 //#define MBEDTLS_DES_SETKEY_ALT
345 //#define MBEDTLS_DES_CRYPT_ECB_ALT
346 //#define MBEDTLS_DES3_CRYPT_ECB_ALT
347 //#define MBEDTLS_AES_SETKEY_ENC_ALT
348 //#define MBEDTLS_AES_SETKEY_DEC_ALT
349 //#define MBEDTLS_AES_ENCRYPT_ALT
350 //#define MBEDTLS_AES_DECRYPT_ALT
351 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
352 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
353 //#define MBEDTLS_ECDSA_VERIFY_ALT
354 //#define MBEDTLS_ECDSA_SIGN_ALT
355 //#define MBEDTLS_ECDSA_GENKEY_ALT
356 
397 /* Required for all the functions in this section */
398 //#define MBEDTLS_ECP_INTERNAL_ALT
399 /* Support for Weierstrass curves with Jacobi representation */
400 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
401 //#define MBEDTLS_ECP_ADD_MIXED_ALT
402 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT
403 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
404 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
405 /* Support for curves with Montgomery arithmetic */
406 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
407 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
408 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
409 
425 //#define MBEDTLS_TEST_NULL_ENTROPY
426 
438 //#define MBEDTLS_ENTROPY_HARDWARE_ALT
439 
458 //#define MBEDTLS_AES_ROM_TABLES
459 
480 //#define MBEDTLS_AES_FEWER_TABLES
481 
489 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY
490 
496 #define MBEDTLS_CIPHER_MODE_CBC
497 
503 #define MBEDTLS_CIPHER_MODE_CFB
504 
510 #define MBEDTLS_CIPHER_MODE_CTR
511 
543 //#define MBEDTLS_CIPHER_NULL_CIPHER
544 
556 #define MBEDTLS_CIPHER_PADDING_PKCS7
557 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
558 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
559 #define MBEDTLS_CIPHER_PADDING_ZEROS
560 
577 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
578 
590 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
591 
600 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED
601 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED
602 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
603 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
604 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED
605 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED
606 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED
607 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED
608 #define MBEDTLS_ECP_DP_BP256R1_ENABLED
609 #define MBEDTLS_ECP_DP_BP384R1_ENABLED
610 #define MBEDTLS_ECP_DP_BP512R1_ENABLED
611 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED
612 #define MBEDTLS_ECP_DP_CURVE448_ENABLED
613 
623 #define MBEDTLS_ECP_NIST_OPTIM
624 
637 #define MBEDTLS_ECDSA_DETERMINISTIC
638 
659 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
660 
690 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
691 
710 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
711 
735 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
736 
763 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
764 
796 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
797 
821 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
822 
845 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
846 
869 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
870 
893 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
894 
912 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
913 
926 #define MBEDTLS_PK_PARSE_EC_EXTENDED
927 
941 #define MBEDTLS_ERROR_STRERROR_DUMMY
942 
950 #define MBEDTLS_GENPRIME
951 
957 #define MBEDTLS_FS_IO
958 
970 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
971 
981 //#define MBEDTLS_NO_PLATFORM_ENTROPY
982 
997 //#define MBEDTLS_ENTROPY_FORCE_SHA256
998 
1025 //#define MBEDTLS_ENTROPY_NV_SEED
1026 
1038 //#define MBEDTLS_MEMORY_DEBUG
1039 
1050 //#define MBEDTLS_MEMORY_BACKTRACE
1051 
1059 #define MBEDTLS_PK_RSA_ALT_SUPPORT
1060 
1070 #define MBEDTLS_PKCS1_V15
1071 
1081 #define MBEDTLS_PKCS1_V21
1082 
1092 //#define MBEDTLS_RSA_NO_CRT
1093 
1099 #define MBEDTLS_SELF_TEST
1100 
1115 //#define MBEDTLS_SHA256_SMALLER
1116 
1129 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1130 
1145 //#define MBEDTLS_SSL_DEBUG_ALL
1146 
1163 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1164 
1181 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1182 
1198 #define MBEDTLS_SSL_FALLBACK_SCSV
1199 
1208 //#define MBEDTLS_SSL_HW_RECORD_ACCEL
1209 
1220 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1221 
1242 #define MBEDTLS_SSL_RENEGOTIATION
1243 
1252 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1253 
1262 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1263 
1271 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1272 
1283 //#define MBEDTLS_SSL_PROTO_SSL3
1284 
1295 #define MBEDTLS_SSL_PROTO_TLS1
1296 
1307 #define MBEDTLS_SSL_PROTO_TLS1_1
1308 
1319 #define MBEDTLS_SSL_PROTO_TLS1_2
1320 
1334 #define MBEDTLS_SSL_PROTO_DTLS
1335 
1343 #define MBEDTLS_SSL_ALPN
1344 
1358 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1359 
1376 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1377 
1392 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1393 
1403 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1404 
1417 #define MBEDTLS_SSL_SESSION_TICKETS
1418 
1427 #define MBEDTLS_SSL_EXPORT_KEYS
1428 
1438 #define MBEDTLS_SSL_SERVER_NAME_INDICATION
1439 
1447 #define MBEDTLS_SSL_TRUNCATED_HMAC
1448 
1471 //#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1472 
1482 //#define MBEDTLS_THREADING_ALT
1483 
1493 #define MBEDTLS_THREADING_PTHREAD
1494 
1506 #define MBEDTLS_VERSION_FEATURES
1507 
1516 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1517 
1528 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1529 
1542 #define MBEDTLS_X509_CHECK_KEY_USAGE
1543 
1555 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1556 
1565 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT
1566 
1590 //#define MBEDTLS_ZLIB_SUPPORT
1591 /* \} name SECTION: mbed TLS feature support */
1592 
1612 #define MBEDTLS_AESNI_C
1613 
1687 #define MBEDTLS_AES_C
1688 
1715 #define MBEDTLS_ARC4_C
1716 
1729 #define MBEDTLS_ASN1_PARSE_C
1730 
1743 #define MBEDTLS_ASN1_WRITE_C
1744 
1755 #define MBEDTLS_BASE64_C
1756 
1772 #define MBEDTLS_BIGNUM_C
1773 
1781 #define MBEDTLS_BLOWFISH_C
1782 
1836 #define MBEDTLS_CAMELLIA_C
1837 
1850 #define MBEDTLS_CCM_C
1851 
1862 #define MBEDTLS_CERTS_C
1863 
1874 #define MBEDTLS_CIPHER_C
1875 
1887 //#define MBEDTLS_CMAC_C
1888 
1901 #define MBEDTLS_CTR_DRBG_C
1902 
1915 #define MBEDTLS_DEBUG_C
1916 
1944 #define MBEDTLS_DES_C
1945 
1965 #define MBEDTLS_DHM_C
1966 
1981 #define MBEDTLS_ECDH_C
1982 
1996 #define MBEDTLS_ECDSA_C
1997 
2015 //#define MBEDTLS_ECJPAKE_C
2016 
2029 #define MBEDTLS_ECP_C
2030 
2043 #define MBEDTLS_ENTROPY_C
2044 
2055 #define MBEDTLS_ERROR_C
2056 
2069 #define MBEDTLS_GCM_C
2070 
2092 //#define MBEDTLS_HAVEGE_C
2093 
2106 #define MBEDTLS_HMAC_DRBG_C
2107 
2118 #define MBEDTLS_MD_C
2119 
2135 //#define MBEDTLS_MD2_C
2136 
2152 //#define MBEDTLS_MD4_C
2153 
2174 #define MBEDTLS_MD5_C
2175 
2190 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2191 
2209 #define MBEDTLS_NET_C
2210 
2232 #define MBEDTLS_OID_C
2233 
2246 #define MBEDTLS_PADLOCK_C
2247 
2264 #define MBEDTLS_PEM_PARSE_C
2265 
2280 #define MBEDTLS_PEM_WRITE_C
2281 
2296 #define MBEDTLS_PK_C
2297 
2311 #define MBEDTLS_PK_PARSE_C
2312 
2325 #define MBEDTLS_PK_WRITE_C
2326 
2338 #define MBEDTLS_PKCS5_C
2339 
2353 #define MBEDTLS_PKCS11_C
2354 
2369 #define MBEDTLS_PKCS12_C
2370 
2389 #define MBEDTLS_PLATFORM_C
2390 
2400 #define MBEDTLS_RIPEMD160_C
2401 
2419 #define MBEDTLS_RSA_C
2420 
2441 #define MBEDTLS_SHA1_C
2442 
2458 #define MBEDTLS_SHA256_C
2459 
2473 #define MBEDTLS_SHA512_C
2474 
2485 #define MBEDTLS_SSL_CACHE_C
2486 
2495 #define MBEDTLS_SSL_COOKIE_C
2496 
2507 #define MBEDTLS_SSL_TICKET_C
2508 
2521 #define MBEDTLS_SSL_CLI_C
2522 
2535 #define MBEDTLS_SSL_SRV_C
2536 
2551 #define MBEDTLS_SSL_TLS_C
2552 
2573 #define MBEDTLS_THREADING_C
2574 
2596 #define MBEDTLS_TIMING_C
2597 
2607 #define MBEDTLS_VERSION_C
2608 
2624 #define MBEDTLS_X509_USE_C
2625 
2640 #define MBEDTLS_X509_CRT_PARSE_C
2641 
2654 #define MBEDTLS_X509_CRL_PARSE_C
2655 
2668 #define MBEDTLS_X509_CSR_PARSE_C
2669 
2681 #define MBEDTLS_X509_CREATE_C
2682 
2694 #define MBEDTLS_X509_CRT_WRITE_C
2695 
2707 #define MBEDTLS_X509_CSR_WRITE_C
2708 
2717 #define MBEDTLS_XTEA_C
2718 
2719 /* \} name SECTION: mbed TLS modules */
2720 
2736 /* MPI / BIGNUM options */
2737 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
2738 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
2739 
2740 /* CTR_DRBG options */
2741 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
2742 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
2743 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
2744 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
2745 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
2746 
2747 /* HMAC_DRBG options */
2748 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
2749 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
2750 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
2751 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
2752 
2753 /* ECP options */
2754 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
2755 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
2756 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
2757 
2758 /* Entropy options */
2759 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
2760 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
2761 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
2762 
2763 /* Memory buffer allocator options */
2764 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
2765 
2766 /* Platform options */
2767 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
2768 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
2769 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
2770 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
2771 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2772 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
2773 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
2774 /* Note: your snprintf must correclty zero-terminate the buffer! */
2775 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
2776 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
2777 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
2778 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
2779 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
2780 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
2781 
2782 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
2783 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
2784 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
2785 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
2786 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
2787 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2788 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2789 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
2790 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
2791 /* Note: your snprintf must correclty zero-terminate the buffer! */
2792 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
2793 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
2794 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
2795 
2796 /* SSL Cache options */
2797 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
2798 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
2799 
2800 /* SSL options */
2801 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 /**< Maxium fragment length in bytes, determines the size of each of the two internal I/O buffers */
2802 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
2803 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
2804 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
2805 
2818 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
2819 
2820 /* X509 options */
2821 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
2822 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
2823 
2836 // #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
2837 
2853 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
2854 
2855 /* \} name SECTION: Customisation configuration options */
2856 
2857 /* Target and application specific configurations */
2858 //#define YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE "mbedtls/target_config.h"
2859 
2860 #if defined(TARGET_LIKE_MBED) && defined(YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE)
2861 #include YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE
2862 #endif
2863 
2864 /*
2865  * Allow user to override any previous default.
2866  *
2867  * Use two macro names for that, as:
2868  * - with yotta the prefix YOTTA_CFG_ is forced
2869  * - without yotta is looks weird to have a YOTTA prefix.
2870  */
2871 #if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE)
2872 #include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE
2873 #elif defined(MBEDTLS_USER_CONFIG_FILE)
2874 #include MBEDTLS_USER_CONFIG_FILE
2875 #endif
2876 
2877 #include "check_config.h"
2878 
2879 #endif /* MBEDTLS_CONFIG_H */
Consistency checks for configuration options.