TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TF-A / trusted-firmware-a / d5dfdeb65ff5b7f24dded201d2945c7b74565ce8 / . / include / drivers / auth / mbedtls / mbedtls_config.h
blob: acfde268a2e54ad42f83fe4a343b35c4484fff62 [file] [log] [blame]
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]1/*
John Tsichritzis6d01a462018-06-07 16:31:34 +0100[diff] [blame]2 * Copyright (c) 2015-2018, ARM Limited and Contributors. All rights reserved.
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]3 *
dp-arm82cb2c12017-05-03 09:38:09 +0100[diff] [blame]4 * SPDX-License-Identifier: BSD-3-Clause
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]5 */
Antonio Nino Diazc3cf06f2018-11-08 10:20:19 +0000[diff] [blame]6#ifndef MBEDTLS_CONFIG_H
7#define MBEDTLS_CONFIG_H
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]8
9/*
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]10 * Key algorithms currently supported on mbed TLS libraries
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]11 */
Qixiang Xu9db9c652017-08-24 15:12:20 +0800[diff] [blame]12#define TF_MBEDTLS_RSA 1
13#define TF_MBEDTLS_ECDSA 2
Qixiang Xudcbf3932017-08-24 15:26:39 +0800[diff] [blame]14#define TF_MBEDTLS_RSA_AND_ECDSA 3
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]15
16/*
Qixiang Xu9a3088a2017-11-09 13:56:29 +0800[diff] [blame]17 * Hash algorithms currently supported on mbed TLS libraries
18 */
19#define TF_MBEDTLS_SHA256 1
20#define TF_MBEDTLS_SHA384 2
21#define TF_MBEDTLS_SHA512 3
22
23/*
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]24 * Configuration file to build mbed TLS with the required features for
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]25 * Trusted Boot
26 */
27
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]28#define MBEDTLS_PLATFORM_MEMORY
29#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
Antonio Nino Diazab1794f2017-05-19 11:37:22 +0100[diff] [blame]30/* Prevent mbed TLS from using snprintf so that it can use tf_snprintf. */
31#define MBEDTLS_PLATFORM_SNPRINTF_ALT
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]32
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]33#define MBEDTLS_PKCS1_V21
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]34
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]35#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
36#define MBEDTLS_X509_CHECK_KEY_USAGE
37#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]38
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]39#define MBEDTLS_ASN1_PARSE_C
40#define MBEDTLS_ASN1_WRITE_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]41
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]42#define MBEDTLS_BASE64_C
43#define MBEDTLS_BIGNUM_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]44
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]45#define MBEDTLS_ERROR_C
46#define MBEDTLS_MD_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]47
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]48#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
49#define MBEDTLS_OID_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]50
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]51#define MBEDTLS_PK_C
52#define MBEDTLS_PK_PARSE_C
53#define MBEDTLS_PK_WRITE_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]54
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]55#define MBEDTLS_PLATFORM_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]56
David Cunadob1883512017-05-10 16:38:44 +0100[diff] [blame]57#if (TF_MBEDTLS_KEY_ALG_ID == TF_MBEDTLS_ECDSA)
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]58#define MBEDTLS_ECDSA_C
59#define MBEDTLS_ECP_C
60#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
David Cunadob1883512017-05-10 16:38:44 +0100[diff] [blame]61#elif (TF_MBEDTLS_KEY_ALG_ID == TF_MBEDTLS_RSA)
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]62#define MBEDTLS_RSA_C
Qixiang Xu9db9c652017-08-24 15:12:20 +0800[diff] [blame]63#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
Qixiang Xudcbf3932017-08-24 15:26:39 +0800[diff] [blame]64#elif (TF_MBEDTLS_KEY_ALG_ID == TF_MBEDTLS_RSA_AND_ECDSA)
65#define MBEDTLS_RSA_C
66#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
67#define MBEDTLS_ECDSA_C
68#define MBEDTLS_ECP_C
69#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]70#endif
71
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]72#define MBEDTLS_SHA256_C
Qixiang Xu9a3088a2017-11-09 13:56:29 +0800[diff] [blame]73#if (TF_MBEDTLS_HASH_ALG_ID != TF_MBEDTLS_SHA256)
74#define MBEDTLS_SHA512_C
75#endif
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]76
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]77#define MBEDTLS_VERSION_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]78
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]79#define MBEDTLS_X509_USE_C
80#define MBEDTLS_X509_CRT_PARSE_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]81
82/* MPI / BIGNUM options */
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]83#define MBEDTLS_MPI_WINDOW_SIZE 2
84#define MBEDTLS_MPI_MAX_SIZE 256
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]85
86/* Memory buffer allocator options */
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]87#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 8
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]88
Julius Wernerd5dfdeb2019-07-09 13:49:11 -0700[diff] [blame^]89#ifndef __ASSEMBLER__
Qixiang Xu9b1eae92017-10-13 09:23:42 +0800[diff] [blame]90/* System headers required to build mbed TLS with the current configuration */
91#include <stdlib.h>
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]92#include "mbedtls/check_config.h"
Qixiang Xu9b1eae92017-10-13 09:23:42 +0800[diff] [blame]93#endif
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]94
John Tsichritzis6d01a462018-06-07 16:31:34 +0100[diff] [blame]95/*
96 * Determine Mbed TLS heap size
97 * 13312 = 13*1024
98 * 7168 = 7*1024
99 */
100#if (TF_MBEDTLS_KEY_ALG_ID == TF_MBEDTLS_ECDSA) \
101 || (TF_MBEDTLS_KEY_ALG_ID == TF_MBEDTLS_RSA_AND_ECDSA)
102#define TF_MBEDTLS_HEAP_SIZE U(13312)
103#elif (TF_MBEDTLS_KEY_ALG_ID == TF_MBEDTLS_RSA)
104#define TF_MBEDTLS_HEAP_SIZE U(7168)
105#endif
106
Antonio Nino Diazc3cf06f2018-11-08 10:20:19 +0000[diff] [blame]107#endif /* MBEDTLS_CONFIG_H */