PolarSSL is now part of ARM Official announcement and rebranded as mbed TLS.

API Documentation (Doxygen generated)

These pages are generated with doxygen directly from the source code!

config.h
Go to the documentation of this file.
1 
10 /*
11  * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
12  * SPDX-License-Identifier: Apache-2.0
13  *
14  * Licensed under the Apache License, Version 2.0 (the "License"); you may
15  * not use this file except in compliance with the License.
16  * You may obtain a copy of the License at
17  *
18  * http://www.apache.org/licenses/LICENSE-2.0
19  *
20  * Unless required by applicable law or agreed to in writing, software
21  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23  * See the License for the specific language governing permissions and
24  * limitations under the License.
25  *
26  * This file is part of mbed TLS (https://tls.mbed.org)
27  */
28 
29 #ifndef MBEDTLS_CONFIG_H
30 #define MBEDTLS_CONFIG_H
31 
32 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
33 #define _CRT_SECURE_NO_DEPRECATE 1
34 #endif
35 
57 #define MBEDTLS_HAVE_ASM
58 
85 //#define MBEDTLS_NO_UDBL_DIVISION
86 
94 //#define MBEDTLS_HAVE_SSE2
95 
109 #define MBEDTLS_HAVE_TIME
110 
121 #define MBEDTLS_HAVE_TIME_DATE
122 
145 //#define MBEDTLS_PLATFORM_MEMORY
146 
164 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
165 
189 //#define MBEDTLS_PLATFORM_EXIT_ALT
190 //#define MBEDTLS_PLATFORM_TIME_ALT
191 //#define MBEDTLS_PLATFORM_FPRINTF_ALT
192 //#define MBEDTLS_PLATFORM_PRINTF_ALT
193 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT
194 //#define MBEDTLS_PLATFORM_NV_SEED_ALT
195 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
196 
210 //#define MBEDTLS_DEPRECATED_WARNING
211 
222 //#define MBEDTLS_DEPRECATED_REMOVED
223 
224 /* \} name SECTION: System support */
225 
245 //#define MBEDTLS_TIMING_ALT
246 
272 //#define MBEDTLS_AES_ALT
273 //#define MBEDTLS_ARC4_ALT
274 //#define MBEDTLS_BLOWFISH_ALT
275 //#define MBEDTLS_CAMELLIA_ALT
276 //#define MBEDTLS_CCM_ALT
277 //#define MBEDTLS_CMAC_ALT
278 //#define MBEDTLS_DES_ALT
279 //#define MBEDTLS_DHM_ALT
280 //#define MBEDTLS_ECJPAKE_ALT
281 //#define MBEDTLS_GCM_ALT
282 //#define MBEDTLS_MD2_ALT
283 //#define MBEDTLS_MD4_ALT
284 //#define MBEDTLS_MD5_ALT
285 //#define MBEDTLS_RIPEMD160_ALT
286 //#define MBEDTLS_RSA_ALT
287 //#define MBEDTLS_SHA1_ALT
288 //#define MBEDTLS_SHA256_ALT
289 //#define MBEDTLS_SHA512_ALT
290 //#define MBEDTLS_XTEA_ALT
291 /*
292  * When replacing the elliptic curve module, pleace consider, that it is
293  * implemented with two .c files:
294  * - ecp.c
295  * - ecp_curves.c
296  * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
297  * macros as described above. The only difference is that you have to make sure
298  * that you provide functionality for both .c files.
299  */
300 //#define MBEDTLS_ECP_ALT
301 
337 //#define MBEDTLS_MD2_PROCESS_ALT
338 //#define MBEDTLS_MD4_PROCESS_ALT
339 //#define MBEDTLS_MD5_PROCESS_ALT
340 //#define MBEDTLS_RIPEMD160_PROCESS_ALT
341 //#define MBEDTLS_SHA1_PROCESS_ALT
342 //#define MBEDTLS_SHA256_PROCESS_ALT
343 //#define MBEDTLS_SHA512_PROCESS_ALT
344 //#define MBEDTLS_DES_SETKEY_ALT
345 //#define MBEDTLS_DES_CRYPT_ECB_ALT
346 //#define MBEDTLS_DES3_CRYPT_ECB_ALT
347 //#define MBEDTLS_AES_SETKEY_ENC_ALT
348 //#define MBEDTLS_AES_SETKEY_DEC_ALT
349 //#define MBEDTLS_AES_ENCRYPT_ALT
350 //#define MBEDTLS_AES_DECRYPT_ALT
351 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
352 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
353 //#define MBEDTLS_ECDSA_VERIFY_ALT
354 //#define MBEDTLS_ECDSA_SIGN_ALT
355 //#define MBEDTLS_ECDSA_GENKEY_ALT
356 
397 /* Required for all the functions in this section */
398 //#define MBEDTLS_ECP_INTERNAL_ALT
399 /* Support for Weierstrass curves with Jacobi representation */
400 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
401 //#define MBEDTLS_ECP_ADD_MIXED_ALT
402 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT
403 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
404 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
405 /* Support for curves with Montgomery arithmetic */
406 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
407 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
408 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
409 
425 //#define MBEDTLS_TEST_NULL_ENTROPY
426 
438 //#define MBEDTLS_ENTROPY_HARDWARE_ALT
439 
447 //#define MBEDTLS_AES_ROM_TABLES
448 
456 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY
457 
463 #define MBEDTLS_CIPHER_MODE_CBC
464 
470 #define MBEDTLS_CIPHER_MODE_CFB
471 
477 #define MBEDTLS_CIPHER_MODE_CTR
478 
510 //#define MBEDTLS_CIPHER_NULL_CIPHER
511 
523 #define MBEDTLS_CIPHER_PADDING_PKCS7
524 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
525 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
526 #define MBEDTLS_CIPHER_PADDING_ZEROS
527 
544 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
545 
557 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
558 
567 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED
568 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED
569 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
570 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
571 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED
572 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED
573 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED
574 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED
575 #define MBEDTLS_ECP_DP_BP256R1_ENABLED
576 #define MBEDTLS_ECP_DP_BP384R1_ENABLED
577 #define MBEDTLS_ECP_DP_BP512R1_ENABLED
578 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED
579 
589 #define MBEDTLS_ECP_NIST_OPTIM
590 
603 #define MBEDTLS_ECDSA_DETERMINISTIC
604 
625 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
626 
656 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
657 
676 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
677 
701 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
702 
729 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
730 
762 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
763 
787 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
788 
811 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
812 
835 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
836 
859 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
860 
878 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
879 
892 #define MBEDTLS_PK_PARSE_EC_EXTENDED
893 
907 #define MBEDTLS_ERROR_STRERROR_DUMMY
908 
916 #define MBEDTLS_GENPRIME
917 
923 #define MBEDTLS_FS_IO
924 
936 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
937 
947 //#define MBEDTLS_NO_PLATFORM_ENTROPY
948 
963 //#define MBEDTLS_ENTROPY_FORCE_SHA256
964 
991 //#define MBEDTLS_ENTROPY_NV_SEED
992 
1004 //#define MBEDTLS_MEMORY_DEBUG
1005 
1016 //#define MBEDTLS_MEMORY_BACKTRACE
1017 
1025 #define MBEDTLS_PK_RSA_ALT_SUPPORT
1026 
1036 #define MBEDTLS_PKCS1_V15
1037 
1047 #define MBEDTLS_PKCS1_V21
1048 
1058 //#define MBEDTLS_RSA_NO_CRT
1059 
1065 #define MBEDTLS_SELF_TEST
1066 
1081 //#define MBEDTLS_SHA256_SMALLER
1082 
1095 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1096 
1111 //#define MBEDTLS_SSL_DEBUG_ALL
1112 
1129 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1130 
1147 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1148 
1164 #define MBEDTLS_SSL_FALLBACK_SCSV
1165 
1174 //#define MBEDTLS_SSL_HW_RECORD_ACCEL
1175 
1186 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1187 
1208 #define MBEDTLS_SSL_RENEGOTIATION
1209 
1218 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1219 
1228 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1229 
1237 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1238 
1249 //#define MBEDTLS_SSL_PROTO_SSL3
1250 
1261 #define MBEDTLS_SSL_PROTO_TLS1
1262 
1273 #define MBEDTLS_SSL_PROTO_TLS1_1
1274 
1285 #define MBEDTLS_SSL_PROTO_TLS1_2
1286 
1300 #define MBEDTLS_SSL_PROTO_DTLS
1301 
1309 #define MBEDTLS_SSL_ALPN
1310 
1324 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1325 
1342 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1343 
1358 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1359 
1369 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1370 
1383 #define MBEDTLS_SSL_SESSION_TICKETS
1384 
1393 #define MBEDTLS_SSL_EXPORT_KEYS
1394 
1404 #define MBEDTLS_SSL_SERVER_NAME_INDICATION
1405 
1413 #define MBEDTLS_SSL_TRUNCATED_HMAC
1414 
1437 //#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1438 
1448 //#define MBEDTLS_THREADING_ALT
1449 
1459 //#define MBEDTLS_THREADING_PTHREAD
1460 
1472 #define MBEDTLS_VERSION_FEATURES
1473 
1482 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1483 
1494 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1495 
1508 #define MBEDTLS_X509_CHECK_KEY_USAGE
1509 
1521 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1522 
1531 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT
1532 
1556 //#define MBEDTLS_ZLIB_SUPPORT
1557 /* \} name SECTION: mbed TLS feature support */
1558 
1578 #define MBEDTLS_AESNI_C
1579 
1653 #define MBEDTLS_AES_C
1654 
1681 #define MBEDTLS_ARC4_C
1682 
1695 #define MBEDTLS_ASN1_PARSE_C
1696 
1709 #define MBEDTLS_ASN1_WRITE_C
1710 
1721 #define MBEDTLS_BASE64_C
1722 
1738 #define MBEDTLS_BIGNUM_C
1739 
1747 #define MBEDTLS_BLOWFISH_C
1748 
1802 #define MBEDTLS_CAMELLIA_C
1803 
1816 #define MBEDTLS_CCM_C
1817 
1828 #define MBEDTLS_CERTS_C
1829 
1840 #define MBEDTLS_CIPHER_C
1841 
1853 //#define MBEDTLS_CMAC_C
1854 
1867 #define MBEDTLS_CTR_DRBG_C
1868 
1881 #define MBEDTLS_DEBUG_C
1882 
1910 #define MBEDTLS_DES_C
1911 
1931 #define MBEDTLS_DHM_C
1932 
1947 #define MBEDTLS_ECDH_C
1948 
1962 #define MBEDTLS_ECDSA_C
1963 
1981 //#define MBEDTLS_ECJPAKE_C
1982 
1995 #define MBEDTLS_ECP_C
1996 
2009 #define MBEDTLS_ENTROPY_C
2010 
2021 #define MBEDTLS_ERROR_C
2022 
2035 #define MBEDTLS_GCM_C
2036 
2058 //#define MBEDTLS_HAVEGE_C
2059 
2072 #define MBEDTLS_HMAC_DRBG_C
2073 
2084 #define MBEDTLS_MD_C
2085 
2101 //#define MBEDTLS_MD2_C
2102 
2118 //#define MBEDTLS_MD4_C
2119 
2140 #define MBEDTLS_MD5_C
2141 
2156 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2157 
2175 #define MBEDTLS_NET_C
2176 
2198 #define MBEDTLS_OID_C
2199 
2212 #define MBEDTLS_PADLOCK_C
2213 
2230 #define MBEDTLS_PEM_PARSE_C
2231 
2246 #define MBEDTLS_PEM_WRITE_C
2247 
2262 #define MBEDTLS_PK_C
2263 
2277 #define MBEDTLS_PK_PARSE_C
2278 
2291 #define MBEDTLS_PK_WRITE_C
2292 
2304 #define MBEDTLS_PKCS5_C
2305 
2319 //#define MBEDTLS_PKCS11_C
2320 
2335 #define MBEDTLS_PKCS12_C
2336 
2355 #define MBEDTLS_PLATFORM_C
2356 
2366 #define MBEDTLS_RIPEMD160_C
2367 
2385 #define MBEDTLS_RSA_C
2386 
2407 #define MBEDTLS_SHA1_C
2408 
2424 #define MBEDTLS_SHA256_C
2425 
2439 #define MBEDTLS_SHA512_C
2440 
2451 #define MBEDTLS_SSL_CACHE_C
2452 
2461 #define MBEDTLS_SSL_COOKIE_C
2462 
2473 #define MBEDTLS_SSL_TICKET_C
2474 
2487 #define MBEDTLS_SSL_CLI_C
2488 
2501 #define MBEDTLS_SSL_SRV_C
2502 
2517 #define MBEDTLS_SSL_TLS_C
2518 
2539 //#define MBEDTLS_THREADING_C
2540 
2562 #define MBEDTLS_TIMING_C
2563 
2573 #define MBEDTLS_VERSION_C
2574 
2590 #define MBEDTLS_X509_USE_C
2591 
2606 #define MBEDTLS_X509_CRT_PARSE_C
2607 
2620 #define MBEDTLS_X509_CRL_PARSE_C
2621 
2634 #define MBEDTLS_X509_CSR_PARSE_C
2635 
2647 #define MBEDTLS_X509_CREATE_C
2648 
2660 #define MBEDTLS_X509_CRT_WRITE_C
2661 
2673 #define MBEDTLS_X509_CSR_WRITE_C
2674 
2683 #define MBEDTLS_XTEA_C
2684 
2685 /* \} name SECTION: mbed TLS modules */
2686 
2702 /* MPI / BIGNUM options */
2703 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
2704 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
2705 
2706 /* CTR_DRBG options */
2707 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
2708 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
2709 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
2710 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
2711 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
2712 
2713 /* HMAC_DRBG options */
2714 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
2715 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
2716 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
2717 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
2718 
2719 /* ECP options */
2720 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
2721 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
2722 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
2723 
2724 /* Entropy options */
2725 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
2726 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
2727 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
2728 
2729 /* Memory buffer allocator options */
2730 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
2731 
2732 /* Platform options */
2733 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
2734 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
2735 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
2736 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
2737 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2738 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
2739 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
2740 /* Note: your snprintf must correclty zero-terminate the buffer! */
2741 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
2742 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
2743 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
2744 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
2745 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
2746 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
2747 
2748 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
2749 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
2750 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
2751 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
2752 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
2753 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2754 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
2755 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
2756 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
2757 /* Note: your snprintf must correclty zero-terminate the buffer! */
2758 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
2759 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
2760 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
2761 
2762 /* SSL Cache options */
2763 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
2764 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
2765 
2766 /* SSL options */
2767 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384 /**< Maxium fragment length in bytes, determines the size of each of the two internal I/O buffers */
2768 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
2769 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
2770 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
2771 
2784 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
2785 
2786 /* X509 options */
2787 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
2788 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
2789 
2802 // #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
2803 
2819 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
2820 
2821 /* \} name SECTION: Customisation configuration options */
2822 
2823 /* Target and application specific configurations */
2824 //#define YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE "mbedtls/target_config.h"
2825 
2826 #if defined(TARGET_LIKE_MBED) && defined(YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE)
2827 #include YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE
2828 #endif
2829 
2830 /*
2831  * Allow user to override any previous default.
2832  *
2833  * Use two macro names for that, as:
2834  * - with yotta the prefix YOTTA_CFG_ is forced
2835  * - without yotta is looks weird to have a YOTTA prefix.
2836  */
2837 #if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE)
2838 #include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE
2839 #elif defined(MBEDTLS_USER_CONFIG_FILE)
2840 #include MBEDTLS_USER_CONFIG_FILE
2841 #endif
2842 
2843 #include "check_config.h"
2844 
2845 #endif /* MBEDTLS_CONFIG_H */
Consistency checks for configuration options.