Allow compile-time configuration of PRNG in SSL module Introduces MBEDTLS_SSL_CONF_RNG to allow configuring the RNG to be used by the SSL module at compile-time. Impact on code-size: | | GCC 8.2.1 | ARMC5 5.06 | ARMC6 6.12 | | --- | --- | --- | --- | | `libmbedtls.a` before | 23535 | 24089 | 27103 | | `libmbedtls.a` after | 23471 | 24077 | 27045 | | gain in Bytes | 64 | 12 | 58 |

commit: ece325c8dd0e4fb1847b92530bfaaddc88e8d467 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Thu Jun 13 15:39:27 2019 +0100
committer: Hanno Becker <hanno.becker@arm.com> Thu Jul 04 10:27:41 2019 +0100
tree: 303d73abfe2b2dd9d8776671fff203c0c9525890
parent: 1841f84c7983cdb6cd188e0d536e63767c5d939c [diff] [blame]
diff --git a/include/mbedtls/config.h b/include/mbedtls/config.h
index 95dd4cd..597f2a3 100644
--- a/include/mbedtls/config.h
+++ b/include/mbedtls/config.h

@@ -3601,6 +3601,13 @@
 //#define MBEDTLS_SSL_CONF_CID_LEN 0
 //#define MBEDTLS_SSL_CONF_IGNORE_UNEXPECTED_CID MBEDTLS_SSL_UNEXPECTED_CID_IGNORE
 
+/* The PRNG to use by the SSL module. If defined, this must
+ * evaluate to the name on externally defined function with signature
+ * int (*f_rng)(void *, unsigned char *, size_t),
+ * e.g. mbedtls_ctr_drbg_random or mbedtls_hmac_drbg_random.
+ */
+//#define MBEDTLS_SSL_CONF_RNG mbedtls_ctr_drbg_random
+
 /* ExtendedMasterSecret extension
  * The following two options must be set/unset simultaneously. */
 //#define MBEDTLS_SSL_CONF_EXTENDED_MASTER_SECRET MBEDTLS_SSL_EXTENDED_MS_ENABLED
commit	ece325c8dd0e4fb1847b92530bfaaddc88e8d467	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Thu Jun 13 15:39:27 2019 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Thu Jul 04 10:27:41 2019 +0100
tree	303d73abfe2b2dd9d8776671fff203c0c9525890
parent	1841f84c7983cdb6cd188e0d536e63767c5d939c [diff] [blame]