blob: c37f61ce2d09241fa7ebab55503eda3e6dcd13f3 [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +00001/**
2 * \file config.h
3 *
Paul Bakker37ca75d2011-01-06 12:28:03 +00004 * \brief Configuration options (set of defines)
5 *
Simon Butcher5b331b92016-01-03 16:14:14 +00006 * This set of compile-time options may be used to enable
7 * or disable features selectively, and reduce the global
8 * memory footprint.
Darryl Greena40a1012018-01-05 15:33:17 +00009 */
10/*
Bence Szépkúti1e148272020-08-07 13:07:28 +020011 * Copyright The Mbed TLS Contributors
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +020012 * SPDX-License-Identifier: Apache-2.0
13 *
14 * Licensed under the Apache License, Version 2.0 (the "License"); you may
15 * not use this file except in compliance with the License.
16 * You may obtain a copy of the License at
17 *
18 * http://www.apache.org/licenses/LICENSE-2.0
19 *
20 * Unless required by applicable law or agreed to in writing, software
21 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23 * See the License for the specific language governing permissions and
24 * limitations under the License.
Manuel Pégourié-Gonnarde2b0efe2015-08-11 10:38:37 +020025 */
26
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020027#ifndef MBEDTLS_CONFIG_H
28#define MBEDTLS_CONFIG_H
Paul Bakker5121ce52009-01-03 21:22:43 +000029
Paul Bakkercce9d772011-11-18 14:26:47 +000030#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
Paul Bakker5121ce52009-01-03 21:22:43 +000031#define _CRT_SECURE_NO_DEPRECATE 1
32#endif
33
Paul Bakkerf3b86c12011-01-27 15:24:17 +000034/**
Paul Bakker0a62cd12011-01-21 11:00:08 +000035 * \name SECTION: System support
36 *
37 * This section sets system specific settings.
38 * \{
39 */
40
Paul Bakkerf3b86c12011-01-27 15:24:17 +000041/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020042 * \def MBEDTLS_HAVE_ASM
Paul Bakkerf3b86c12011-01-27 15:24:17 +000043 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +020044 * The compiler has support for asm().
Paul Bakker68041ec2009-04-19 21:17:55 +000045 *
46 * Requires support for asm() in compiler.
47 *
48 * Used in:
Manuel Pégourié-Gonnard26b54fa2018-02-27 12:20:20 +010049 * library/aria.c
Chris Jones4c5819c2021-03-03 17:45:34 +000050 * library/bn_mul.h
Paul Bakker68041ec2009-04-19 21:17:55 +000051 *
Manuel Pégourié-Gonnard26b54fa2018-02-27 12:20:20 +010052 * Required by:
53 * MBEDTLS_AESNI_C
54 * MBEDTLS_PADLOCK_C
55 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +020056 * Comment to disable the use of assembly code.
Paul Bakker5121ce52009-01-03 21:22:43 +000057 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020058#define MBEDTLS_HAVE_ASM
Paul Bakker5121ce52009-01-03 21:22:43 +000059
Paul Bakkerf3b86c12011-01-27 15:24:17 +000060/**
Gilles Peskineed942f82017-06-08 15:19:20 +020061 * \def MBEDTLS_NO_UDBL_DIVISION
62 *
63 * The platform lacks support for double-width integer division (64-bit
64 * division on a 32-bit platform, 128-bit division on a 64-bit platform).
65 *
66 * Used in:
67 * include/mbedtls/bignum.h
68 * library/bignum.c
69 *
70 * The bignum code uses double-width division to speed up some operations.
71 * Double-width division is often implemented in software that needs to
72 * be linked with the program. The presence of a double-width integer
73 * type is usually detected automatically through preprocessor macros,
74 * but the automatic detection cannot know whether the code needs to
75 * and can be linked with an implementation of division for that type.
76 * By default division is assumed to be usable if the type is present.
77 * Uncomment this option to prevent the use of double-width division.
78 *
79 * Note that division for the native integer type is always required.
80 * Furthermore, a 64-bit type is always required even on a 32-bit
Andres Amaya Garcia2801d002017-07-21 10:56:22 +010081 * platform, but it need not support multiplication or division. In some
82 * cases it is also desirable to disable some double-width operations. For
83 * example, if double-width division is implemented in software, disabling
84 * it can reduce code size in some embedded targets.
Gilles Peskineed942f82017-06-08 15:19:20 +020085 */
86//#define MBEDTLS_NO_UDBL_DIVISION
87
88/**
Manuel Pégourié-Gonnard2adb3752018-06-07 10:51:44 +020089 * \def MBEDTLS_NO_64BIT_MULTIPLICATION
90 *
91 * The platform lacks support for 32x32 -> 64-bit multiplication.
92 *
93 * Used in:
94 * library/poly1305.c
95 *
96 * Some parts of the library may use multiplication of two unsigned 32-bit
97 * operands with a 64-bit result in order to speed up computations. On some
98 * platforms, this is not available in hardware and has to be implemented in
99 * software, usually in a library provided by the toolchain.
100 *
101 * Sometimes it is not desirable to have to link to that library. This option
102 * removes the dependency of that library on platforms that lack a hardware
103 * 64-bit multiplier by embedding a software implementation in Mbed TLS.
104 *
105 * Note that depending on the compiler, this may decrease performance compared
106 * to using the library function provided by the toolchain.
107 */
108//#define MBEDTLS_NO_64BIT_MULTIPLICATION
109
110/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200111 * \def MBEDTLS_HAVE_SSE2
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000112 *
Paul Bakkere23c3152012-10-01 14:42:47 +0000113 * CPU supports SSE2 instruction set.
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000114 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000115 * Uncomment if the CPU supports SSE2 (IA-32 specific).
Paul Bakker5121ce52009-01-03 21:22:43 +0000116 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200117//#define MBEDTLS_HAVE_SSE2
Paul Bakkerfa9b1002013-07-03 15:31:03 +0200118
119/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200120 * \def MBEDTLS_HAVE_TIME
Paul Bakkerfa9b1002013-07-03 15:31:03 +0200121 *
Manuel Pégourié-Gonnard60c793b2015-06-18 20:52:58 +0200122 * System has time.h and time().
123 * The time does not need to be correct, only time differences are used,
124 * by contrast with MBEDTLS_HAVE_TIME_DATE
Paul Bakkerfa9b1002013-07-03 15:31:03 +0200125 *
Andres Amaya Garcia1e4ec662016-07-20 10:16:25 +0100126 * Defining MBEDTLS_HAVE_TIME allows you to specify MBEDTLS_PLATFORM_TIME_ALT,
127 * MBEDTLS_PLATFORM_TIME_MACRO, MBEDTLS_PLATFORM_TIME_TYPE_MACRO and
128 * MBEDTLS_PLATFORM_STD_TIME.
129 *
Paul Bakkerfa9b1002013-07-03 15:31:03 +0200130 * Comment if your system does not support time functions
131 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200132#define MBEDTLS_HAVE_TIME
Manuel Pégourié-Gonnard10934de2013-12-13 12:54:09 +0100133
134/**
Manuel Pégourié-Gonnard60c793b2015-06-18 20:52:58 +0200135 * \def MBEDTLS_HAVE_TIME_DATE
136 *
Hanno Becker4e67cca2018-09-05 16:18:38 +0100137 * System has time.h, time(), and an implementation for
138 * mbedtls_platform_gmtime_r() (see below).
Antonin Décimo36e89b52019-01-23 15:24:37 +0100139 * The time needs to be correct (not necessarily very accurate, but at least
Manuel Pégourié-Gonnard60c793b2015-06-18 20:52:58 +0200140 * the date should be correct). This is used to verify the validity period of
141 * X.509 certificates.
142 *
143 * Comment if your system does not have a correct clock.
Andres Amaya Garcia97f3ecb2018-08-07 20:39:27 +0100144 *
Hanno Becker6a739782018-09-05 15:06:19 +0100145 * \note mbedtls_platform_gmtime_r() is an abstraction in platform_util.h that
Hanno Beckerc52ef402018-09-05 16:28:59 +0100146 * behaves similarly to the gmtime_r() function from the C standard. Refer to
147 * the documentation for mbedtls_platform_gmtime_r() for more information.
Andres Amaya Garciac99b12b2018-08-21 19:32:44 +0100148 *
149 * \note It is possible to configure an implementation for
Hanno Becker6a739782018-09-05 15:06:19 +0100150 * mbedtls_platform_gmtime_r() at compile-time by using the macro
151 * MBEDTLS_PLATFORM_GMTIME_R_ALT.
Manuel Pégourié-Gonnard60c793b2015-06-18 20:52:58 +0200152 */
153#define MBEDTLS_HAVE_TIME_DATE
154
155/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200156 * \def MBEDTLS_PLATFORM_MEMORY
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100157 *
158 * Enable the memory allocation layer.
159 *
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +0200160 * By default mbed TLS uses the system-provided calloc() and free().
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100161 * This allows different allocators (self-implemented or provided) to be
162 * provided to the platform abstraction layer.
163 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200164 * Enabling MBEDTLS_PLATFORM_MEMORY without the
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +0200165 * MBEDTLS_PLATFORM_{FREE,CALLOC}_MACROs will provide
166 * "mbedtls_platform_set_calloc_free()" allowing you to set an alternative calloc() and
Rich Evans16f8cd82015-02-06 16:14:34 +0000167 * free() function pointer at runtime.
168 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200169 * Enabling MBEDTLS_PLATFORM_MEMORY and specifying
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +0200170 * MBEDTLS_PLATFORM_{CALLOC,FREE}_MACROs will allow you to specify the
Rich Evans16f8cd82015-02-06 16:14:34 +0000171 * alternate function at compile time.
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100172 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200173 * Requires: MBEDTLS_PLATFORM_C
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100174 *
175 * Enable this layer to allow use of alternative memory allocators.
176 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200177//#define MBEDTLS_PLATFORM_MEMORY
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100178
179/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200180 * \def MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
Paul Bakker088c5c52014-04-25 11:11:10 +0200181 *
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +0200182 * Do not assign standard functions in the platform layer (e.g. calloc() to
183 * MBEDTLS_PLATFORM_STD_CALLOC and printf() to MBEDTLS_PLATFORM_STD_PRINTF)
Paul Bakker088c5c52014-04-25 11:11:10 +0200184 *
185 * This makes sure there are no linking errors on platforms that do not support
186 * these functions. You will HAVE to provide alternatives, either at runtime
187 * via the platform_set_xxx() functions or at compile time by setting
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200188 * the MBEDTLS_PLATFORM_STD_XXX defines, or enabling a
189 * MBEDTLS_PLATFORM_XXX_MACRO.
Paul Bakker088c5c52014-04-25 11:11:10 +0200190 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200191 * Requires: MBEDTLS_PLATFORM_C
Paul Bakker088c5c52014-04-25 11:11:10 +0200192 *
193 * Uncomment to prevent default assignment of standard functions in the
194 * platform layer.
195 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200196//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
Paul Bakker088c5c52014-04-25 11:11:10 +0200197
198/**
Janos Follathc351d182016-03-21 08:43:59 +0000199 * \def MBEDTLS_PLATFORM_EXIT_ALT
Paul Bakker747a83a2014-02-01 22:50:07 +0100200 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100201 * MBEDTLS_PLATFORM_XXX_ALT: Uncomment a macro to let mbed TLS support the
202 * function in the platform abstraction layer.
Paul Bakker747a83a2014-02-01 22:50:07 +0100203 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200204 * Example: In case you uncomment MBEDTLS_PLATFORM_PRINTF_ALT, mbed TLS will
205 * provide a function "mbedtls_platform_set_printf()" that allows you to set an
Paul Bakker747a83a2014-02-01 22:50:07 +0100206 * alternative printf function pointer.
207 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200208 * All these define require MBEDTLS_PLATFORM_C to be defined!
Paul Bakker747a83a2014-02-01 22:50:07 +0100209 *
Manuel Pégourié-Gonnard9db28872015-06-26 10:52:01 +0200210 * \note MBEDTLS_PLATFORM_SNPRINTF_ALT is required on Windows;
211 * it will be enabled automatically by check_config.h
212 *
Manuel Pégourié-Gonnard6c0c8e02015-06-22 10:23:34 +0200213 * \warning MBEDTLS_PLATFORM_XXX_ALT cannot be defined at the same time as
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200214 * MBEDTLS_PLATFORM_XXX_MACRO!
Rich Evans16f8cd82015-02-06 16:14:34 +0000215 *
Andres Amaya Garcia1e4ec662016-07-20 10:16:25 +0100216 * Requires: MBEDTLS_PLATFORM_TIME_ALT requires MBEDTLS_HAVE_TIME
217 *
Paul Bakker747a83a2014-02-01 22:50:07 +0100218 * Uncomment a macro to enable alternate implementation of specific base
219 * platform function
220 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200221//#define MBEDTLS_PLATFORM_EXIT_ALT
SimonBd5800b72016-04-26 07:43:27 +0100222//#define MBEDTLS_PLATFORM_TIME_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200223//#define MBEDTLS_PLATFORM_FPRINTF_ALT
224//#define MBEDTLS_PLATFORM_PRINTF_ALT
225//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
k-stachowiak723f8672018-07-16 14:27:07 +0200226//#define MBEDTLS_PLATFORM_VSNPRINTF_ALT
Paul Bakkercf0a9f92016-06-01 11:25:44 +0100227//#define MBEDTLS_PLATFORM_NV_SEED_ALT
Andres Amaya Garcia59c20262017-07-18 10:23:04 +0100228//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100229
230/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200231 * \def MBEDTLS_DEPRECATED_WARNING
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100232 *
Andres Amaya Garcia09634242018-11-29 09:55:41 +0000233 * Mark deprecated functions and features so that they generate a warning if
234 * used. Functionality deprecated in one version will usually be removed in the
235 * next version. You can enable this to help you prepare the transition to a
236 * new major version by making sure your code is not using this functionality.
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100237 *
238 * This only works with GCC and Clang. With other compilers, you may want to
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200239 * use MBEDTLS_DEPRECATED_REMOVED
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100240 *
Andres Amaya Garcia09634242018-11-29 09:55:41 +0000241 * Uncomment to get warnings on using deprecated functions and features.
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100242 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200243//#define MBEDTLS_DEPRECATED_WARNING
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100244
245/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200246 * \def MBEDTLS_DEPRECATED_REMOVED
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100247 *
Andres Amaya Garcia09634242018-11-29 09:55:41 +0000248 * Remove deprecated functions and features so that they generate an error if
249 * used. Functionality deprecated in one version will usually be removed in the
250 * next version. You can enable this to help you prepare the transition to a
251 * new major version by making sure your code is not using this functionality.
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100252 *
Andres Amaya Garcia09634242018-11-29 09:55:41 +0000253 * Uncomment to get errors on using deprecated functions and features.
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100254 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200255//#define MBEDTLS_DEPRECATED_REMOVED
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100256
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200257/* \} name SECTION: System support */
Paul Bakker0a62cd12011-01-21 11:00:08 +0000258
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000259/**
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +0000260 * \name SECTION: mbed TLS feature support
Paul Bakker0a62cd12011-01-21 11:00:08 +0000261 *
262 * This section sets support for features that are or are not needed
263 * within the modules that are enabled.
264 * \{
265 */
Paul Bakker5121ce52009-01-03 21:22:43 +0000266
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000267/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200268 * \def MBEDTLS_TIMING_ALT
Paul Bakkerf2561b32014-02-06 15:11:55 +0100269 *
TRodziewiczd8540832021-06-10 15:16:50 +0200270 * Uncomment to provide your own alternate implementation for
Manuel Pégourié-Gonnarda63bc942015-05-14 18:22:47 +0200271 * mbedtls_timing_get_timer(), mbedtls_set_alarm(), mbedtls_set/get_delay()
Paul Bakkerf2561b32014-02-06 15:11:55 +0100272 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200273 * Only works if you have MBEDTLS_TIMING_C enabled.
Paul Bakkerf2561b32014-02-06 15:11:55 +0100274 *
275 * You will need to provide a header "timing_alt.h" and an implementation at
276 * compile time.
277 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200278//#define MBEDTLS_TIMING_ALT
Paul Bakkerf2561b32014-02-06 15:11:55 +0100279
280/**
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100281 * \def MBEDTLS_AES_ALT
Paul Bakker90995b52013-06-24 19:20:35 +0200282 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100283 * MBEDTLS__MODULE_NAME__ALT: Uncomment a macro to let mbed TLS use your
Janos Follathb0697532016-08-18 12:38:46 +0100284 * alternate core implementation of a symmetric crypto, an arithmetic or hash
285 * module (e.g. platform specific assembly optimized implementations). Keep
286 * in mind that the function prototypes should remain the same.
Paul Bakker90995b52013-06-24 19:20:35 +0200287 *
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200288 * This replaces the whole module. If you only want to replace one of the
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200289 * functions, use one of the MBEDTLS__FUNCTION_NAME__ALT flags.
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200290 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200291 * Example: In case you uncomment MBEDTLS_AES_ALT, mbed TLS will no longer
Janos Follathee782bc2016-11-07 15:41:26 +0000292 * provide the "struct mbedtls_aes_context" definition and omit the base
293 * function declarations and implementations. "aes_alt.h" will be included from
Paul Bakker90995b52013-06-24 19:20:35 +0200294 * "aes.h" to include the new function definitions.
295 *
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200296 * Uncomment a macro to enable alternate implementation of the corresponding
297 * module.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100298 *
TRodziewicz10e8cf52021-05-31 17:58:57 +0200299 * \warning MD5, DES and SHA-1 are considered weak and their
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100300 * use constitutes a security risk. If possible, we recommend
301 * avoiding dependencies on them, and considering stronger message
302 * digests and ciphers instead.
303 *
Paul Bakker90995b52013-06-24 19:20:35 +0200304 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200305//#define MBEDTLS_AES_ALT
Markku-Juhani O. Saarinen0fb47fe2017-12-01 15:41:38 +0000306//#define MBEDTLS_ARIA_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200307//#define MBEDTLS_CAMELLIA_ALT
Steven Cooreman222e2ff2017-04-04 11:37:15 +0200308//#define MBEDTLS_CCM_ALT
Daniel King34b822c2016-05-15 17:28:08 -0300309//#define MBEDTLS_CHACHA20_ALT
Manuel Pégourié-Gonnarde533b222018-06-04 12:23:19 +0200310//#define MBEDTLS_CHACHAPOLY_ALT
Steven Cooreman63342772017-04-04 11:47:16 +0200311//#define MBEDTLS_CMAC_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200312//#define MBEDTLS_DES_ALT
nirekh01d569ecf2018-01-09 16:43:21 +0000313//#define MBEDTLS_DHM_ALT
Hanno Becker616d1ca2018-01-24 10:25:05 +0000314//#define MBEDTLS_ECJPAKE_ALT
Jaeden Amero15263302017-09-21 12:53:48 +0100315//#define MBEDTLS_GCM_ALT
Ron Eldor466a57f2018-05-03 16:54:28 +0300316//#define MBEDTLS_NIST_KW_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200317//#define MBEDTLS_MD5_ALT
Daniel Kingadc32c02016-05-16 18:25:45 -0300318//#define MBEDTLS_POLY1305_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200319//#define MBEDTLS_RIPEMD160_ALT
Hanno Becker88683b22018-01-04 18:26:54 +0000320//#define MBEDTLS_RSA_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200321//#define MBEDTLS_SHA1_ALT
322//#define MBEDTLS_SHA256_ALT
323//#define MBEDTLS_SHA512_ALT
Markku-Juhani O. Saarinen0fb47fe2017-12-01 15:41:38 +0000324
Janos Follathb0697532016-08-18 12:38:46 +0100325/*
326 * When replacing the elliptic curve module, pleace consider, that it is
327 * implemented with two .c files:
328 * - ecp.c
329 * - ecp_curves.c
Janos Follathee782bc2016-11-07 15:41:26 +0000330 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
331 * macros as described above. The only difference is that you have to make sure
332 * that you provide functionality for both .c files.
Janos Follathb0697532016-08-18 12:38:46 +0100333 */
334//#define MBEDTLS_ECP_ALT
Paul Bakker90995b52013-06-24 19:20:35 +0200335
336/**
TRodziewicz75628d52021-06-18 12:56:27 +0200337 * \def MBEDTLS_SHA256_PROCESS_ALT
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200338 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100339 * MBEDTLS__FUNCTION_NAME__ALT: Uncomment a macro to let mbed TLS use you
340 * alternate core implementation of symmetric crypto or hash function. Keep in
341 * mind that function prototypes should remain the same.
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200342 *
343 * This replaces only one function. The header file from mbed TLS is still
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200344 * used, in contrast to the MBEDTLS__MODULE_NAME__ALT flags.
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200345 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200346 * Example: In case you uncomment MBEDTLS_SHA256_PROCESS_ALT, mbed TLS will
347 * no longer provide the mbedtls_sha1_process() function, but it will still provide
348 * the other function (using your mbedtls_sha1_process() function) and the definition
349 * of mbedtls_sha1_context, so your implementation of mbedtls_sha1_process must be compatible
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200350 * with this definition.
351 *
Tobias Nießen1e8ca122021-05-10 19:53:15 +0200352 * \note If you use the AES_xxx_ALT macros, then it is recommended to also set
Hanno Beckera5723f42017-06-26 12:46:19 +0100353 * MBEDTLS_AES_ROM_TABLES in order to help the linker garbage-collect the AES
354 * tables.
Manuel Pégourié-Gonnard31993f22015-05-12 15:41:08 +0200355 *
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200356 * Uncomment a macro to enable alternate implementation of the corresponding
357 * function.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100358 *
TRodziewicz10e8cf52021-05-31 17:58:57 +0200359 * \warning MD5, DES and SHA-1 are considered weak and their use
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100360 * constitutes a security risk. If possible, we recommend avoiding
361 * dependencies on them, and considering stronger message digests
362 * and ciphers instead.
363 *
Janos Follath1231d212019-01-07 15:01:32 +0000364 * \warning If both MBEDTLS_ECDSA_SIGN_ALT and MBEDTLS_ECDSA_DETERMINISTIC are
365 * enabled, then the deterministic ECDH signature functions pass the
366 * the static HMAC-DRBG as RNG to mbedtls_ecdsa_sign(). Therefore
367 * alternative implementations should use the RNG only for generating
368 * the ephemeral key and nothing else. If this is not possible, then
369 * MBEDTLS_ECDSA_DETERMINISTIC should be disabled and an alternative
TRodziewiczc1c479f2021-05-06 00:53:22 +0200370 * implementation should be provided for mbedtls_ecdsa_sign_det_ext().
Janos Follath1231d212019-01-07 15:01:32 +0000371 *
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200372 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200373//#define MBEDTLS_MD5_PROCESS_ALT
374//#define MBEDTLS_RIPEMD160_PROCESS_ALT
375//#define MBEDTLS_SHA1_PROCESS_ALT
376//#define MBEDTLS_SHA256_PROCESS_ALT
377//#define MBEDTLS_SHA512_PROCESS_ALT
Manuel Pégourié-Gonnard70a50102015-05-12 15:02:45 +0200378//#define MBEDTLS_DES_SETKEY_ALT
379//#define MBEDTLS_DES_CRYPT_ECB_ALT
380//#define MBEDTLS_DES3_CRYPT_ECB_ALT
Manuel Pégourié-Gonnard31993f22015-05-12 15:41:08 +0200381//#define MBEDTLS_AES_SETKEY_ENC_ALT
382//#define MBEDTLS_AES_SETKEY_DEC_ALT
383//#define MBEDTLS_AES_ENCRYPT_ALT
384//#define MBEDTLS_AES_DECRYPT_ALT
Ron Eldora84c1cb2017-10-10 19:04:27 +0300385//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
Ron Eldor3226d362017-10-12 14:17:48 +0300386//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
Ron Eldor314adb62017-10-10 18:28:25 +0300387//#define MBEDTLS_ECDSA_VERIFY_ALT
388//#define MBEDTLS_ECDSA_SIGN_ALT
389//#define MBEDTLS_ECDSA_GENKEY_ALT
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200390
391/**
Janos Follathc44ab972016-11-18 16:38:23 +0000392 * \def MBEDTLS_ECP_INTERNAL_ALT
393 *
394 * Expose a part of the internal interface of the Elliptic Curve Point module.
Janos Follathb0697532016-08-18 12:38:46 +0100395 *
396 * MBEDTLS_ECP__FUNCTION_NAME__ALT: Uncomment a macro to let mbed TLS use your
Janos Follath372697b2016-10-28 16:53:11 +0100397 * alternative core implementation of elliptic curve arithmetic. Keep in mind
398 * that function prototypes should remain the same.
Janos Follathb0697532016-08-18 12:38:46 +0100399 *
400 * This partially replaces one function. The header file from mbed TLS is still
401 * used, in contrast to the MBEDTLS_ECP_ALT flag. The original implementation
402 * is still present and it is used for group structures not supported by the
403 * alternative.
404 *
Steven Cooreman97b49842021-01-08 16:32:20 +0100405 * The original implementation can in addition be removed by setting the
Steven Cooreman6226a122021-01-21 13:58:31 +0100406 * MBEDTLS_ECP_NO_FALLBACK option, in which case any function for which the
Steven Cooreman97b49842021-01-08 16:32:20 +0100407 * corresponding MBEDTLS_ECP__FUNCTION_NAME__ALT macro is defined will not be
408 * able to fallback to curves not supported by the alternative implementation.
409 *
Janos Follathc44ab972016-11-18 16:38:23 +0000410 * Any of these options become available by defining MBEDTLS_ECP_INTERNAL_ALT
411 * and implementing the following functions:
412 * unsigned char mbedtls_internal_ecp_grp_capable(
413 * const mbedtls_ecp_group *grp )
414 * int mbedtls_internal_ecp_init( const mbedtls_ecp_group *grp )
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500415 * void mbedtls_internal_ecp_free( const mbedtls_ecp_group *grp )
Janos Follathc44ab972016-11-18 16:38:23 +0000416 * The mbedtls_internal_ecp_grp_capable function should return 1 if the
417 * replacement functions implement arithmetic for the given group and 0
418 * otherwise.
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500419 * The functions mbedtls_internal_ecp_init and mbedtls_internal_ecp_free are
Janos Follathc44ab972016-11-18 16:38:23 +0000420 * called before and after each point operation and provide an opportunity to
421 * implement optimized set up and tear down instructions.
Janos Follathb0697532016-08-18 12:38:46 +0100422 *
Steven Cooreman6226a122021-01-21 13:58:31 +0100423 * Example: In case you set MBEDTLS_ECP_INTERNAL_ALT and
424 * MBEDTLS_ECP_DOUBLE_JAC_ALT, mbed TLS will still provide the ecp_double_jac()
425 * function, but will use your mbedtls_internal_ecp_double_jac() if the group
426 * for the operation is supported by your implementation (i.e. your
427 * mbedtls_internal_ecp_grp_capable() function returns 1 for this group). If the
428 * group is not supported by your implementation, then the original mbed TLS
429 * implementation of ecp_double_jac() is used instead, unless this fallback
430 * behaviour is disabled by setting MBEDTLS_ECP_NO_FALLBACK (in which case
431 * ecp_double_jac() will return MBEDTLS_ERR_ECP_FEATURE_UNAVAILABLE).
432 *
433 * The function prototypes and the definition of mbedtls_ecp_group and
434 * mbedtls_ecp_point will not change based on MBEDTLS_ECP_INTERNAL_ALT, so your
435 * implementation of mbedtls_internal_ecp__function_name__ must be compatible
436 * with their definitions.
Janos Follathb0697532016-08-18 12:38:46 +0100437 *
438 * Uncomment a macro to enable alternate implementation of the corresponding
439 * function.
440 */
441/* Required for all the functions in this section */
Janos Follathc44ab972016-11-18 16:38:23 +0000442//#define MBEDTLS_ECP_INTERNAL_ALT
Steven Cooreman97b49842021-01-08 16:32:20 +0100443/* Turn off software fallback for curves not supported in hardware */
444//#define MBEDTLS_ECP_NO_FALLBACK
Janos Follathb0697532016-08-18 12:38:46 +0100445/* Support for Weierstrass curves with Jacobi representation */
446//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
447//#define MBEDTLS_ECP_ADD_MIXED_ALT
448//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
449//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
450//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
451/* Support for curves with Montgomery arithmetic */
452//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
453//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
454//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
455
456/**
Manuel Pégourié-Gonnard8ba88f02015-06-22 12:14:20 +0200457 * \def MBEDTLS_ENTROPY_HARDWARE_ALT
Manuel Pégourié-Gonnard3f77dfb2015-06-19 10:06:21 +0200458 *
459 * Uncomment this macro to let mbed TLS use your own implementation of a
460 * hardware entropy collector.
461 *
462 * Your function must be called \c mbedtls_hardware_poll(), have the same
Chris Jones3848e312021-03-11 16:17:59 +0000463 * prototype as declared in library/entropy_poll.h, and accept NULL as first
464 * argument.
Manuel Pégourié-Gonnard3f77dfb2015-06-19 10:06:21 +0200465 *
466 * Uncomment to use your own hardware entropy collector.
467 */
468//#define MBEDTLS_ENTROPY_HARDWARE_ALT
469
470/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200471 * \def MBEDTLS_AES_ROM_TABLES
Paul Bakker15566e42011-04-24 21:19:15 +0000472 *
Hanno Becker177d3cf2017-06-07 15:52:48 +0100473 * Use precomputed AES tables stored in ROM.
Paul Bakker15566e42011-04-24 21:19:15 +0000474 *
Hanno Becker177d3cf2017-06-07 15:52:48 +0100475 * Uncomment this macro to use precomputed AES tables stored in ROM.
476 * Comment this macro to generate AES tables in RAM at runtime.
477 *
Hanno Becker4c1dc3c2018-03-27 16:52:03 +0100478 * Tradeoff: Using precomputed ROM tables reduces RAM usage by ~8kb
479 * (or ~2kb if \c MBEDTLS_AES_FEWER_TABLES is used) and reduces the
Hanno Becker6a92ce62018-03-28 11:42:05 +0100480 * initialization time before the first AES operation can be performed.
481 * It comes at the cost of additional ~8kb ROM use (resp. ~2kb if \c
482 * MBEDTLS_AES_FEWER_TABLES below is used), and potentially degraded
483 * performance if ROM access is slower than RAM access.
Hanno Becker177d3cf2017-06-07 15:52:48 +0100484 *
485 * This option is independent of \c MBEDTLS_AES_FEWER_TABLES.
486 *
Paul Bakker15566e42011-04-24 21:19:15 +0000487 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200488//#define MBEDTLS_AES_ROM_TABLES
Paul Bakker15566e42011-04-24 21:19:15 +0000489
490/**
Hanno Becker177d3cf2017-06-07 15:52:48 +0100491 * \def MBEDTLS_AES_FEWER_TABLES
Jussi Kivilinna2fd1bb82015-11-12 16:38:31 +0200492 *
Hanno Becker177d3cf2017-06-07 15:52:48 +0100493 * Use less ROM/RAM for AES tables.
Jussi Kivilinna2fd1bb82015-11-12 16:38:31 +0200494 *
Hanno Becker177d3cf2017-06-07 15:52:48 +0100495 * Uncommenting this macro omits 75% of the AES tables from
496 * ROM / RAM (depending on the value of \c MBEDTLS_AES_ROM_TABLES)
497 * by computing their values on the fly during operations
498 * (the tables are entry-wise rotations of one another).
499 *
500 * Tradeoff: Uncommenting this reduces the RAM / ROM footprint
Hanno Becker08a5c182017-06-19 16:33:58 +0100501 * by ~6kb but at the cost of more arithmetic operations during
Hanno Becker177d3cf2017-06-07 15:52:48 +0100502 * runtime. Specifically, one has to compare 4 accesses within
503 * different tables to 4 accesses with additional arithmetic
504 * operations within the same table. The performance gain/loss
505 * depends on the system and memory details.
506 *
507 * This option is independent of \c MBEDTLS_AES_ROM_TABLES.
508 *
Jussi Kivilinna2fd1bb82015-11-12 16:38:31 +0200509 */
Hanno Becker177d3cf2017-06-07 15:52:48 +0100510//#define MBEDTLS_AES_FEWER_TABLES
Jussi Kivilinna2fd1bb82015-11-12 16:38:31 +0200511
512/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200513 * \def MBEDTLS_CAMELLIA_SMALL_MEMORY
Manuel Pégourié-Gonnard62edcc82015-04-03 16:28:19 +0200514 *
515 * Use less ROM for the Camellia implementation (saves about 768 bytes).
516 *
517 * Uncomment this macro to use less memory for Camellia.
518 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200519//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
Manuel Pégourié-Gonnard62edcc82015-04-03 16:28:19 +0200520
521/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200522 * \def MBEDTLS_CIPHER_MODE_CBC
Manuel Pégourié-Gonnardf7dc3782013-09-13 14:10:44 +0200523 *
524 * Enable Cipher Block Chaining mode (CBC) for symmetric ciphers.
525 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200526#define MBEDTLS_CIPHER_MODE_CBC
Manuel Pégourié-Gonnardf7dc3782013-09-13 14:10:44 +0200527
528/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200529 * \def MBEDTLS_CIPHER_MODE_CFB
Paul Bakkerb6ecaf52011-04-19 14:29:23 +0000530 *
531 * Enable Cipher Feedback mode (CFB) for symmetric ciphers.
532 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200533#define MBEDTLS_CIPHER_MODE_CFB
Paul Bakkerb6ecaf52011-04-19 14:29:23 +0000534
535/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200536 * \def MBEDTLS_CIPHER_MODE_CTR
Paul Bakkerb6ecaf52011-04-19 14:29:23 +0000537 *
538 * Enable Counter Block Cipher mode (CTR) for symmetric ciphers.
539 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200540#define MBEDTLS_CIPHER_MODE_CTR
Paul Bakkerb6ecaf52011-04-19 14:29:23 +0000541
542/**
Jaeden Ameroff2f4932018-06-14 11:38:50 +0100543 * \def MBEDTLS_CIPHER_MODE_OFB
544 *
545 * Enable Output Feedback mode (OFB) for symmetric ciphers.
546 */
547#define MBEDTLS_CIPHER_MODE_OFB
548
549/**
550 * \def MBEDTLS_CIPHER_MODE_XTS
551 *
552 * Enable Xor-encrypt-xor with ciphertext stealing mode (XTS) for AES.
553 */
554#define MBEDTLS_CIPHER_MODE_XTS
555
556/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200557 * \def MBEDTLS_CIPHER_NULL_CIPHER
Paul Bakkerfab5c822012-02-06 16:45:10 +0000558 *
559 * Enable NULL cipher.
560 * Warning: Only do so when you know what you are doing. This allows for
561 * encryption or channels without any security!
562 *
Ronald Croncee42702021-04-26 11:34:44 +0200563 * To enable the following ciphersuites:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200564 * MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA
565 * MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA
566 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA
567 * MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA
568 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384
569 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256
570 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA
571 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384
572 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256
573 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA
574 * MBEDTLS_TLS_RSA_WITH_NULL_SHA256
575 * MBEDTLS_TLS_RSA_WITH_NULL_SHA
576 * MBEDTLS_TLS_RSA_WITH_NULL_MD5
577 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384
578 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256
579 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA
580 * MBEDTLS_TLS_PSK_WITH_NULL_SHA384
581 * MBEDTLS_TLS_PSK_WITH_NULL_SHA256
582 * MBEDTLS_TLS_PSK_WITH_NULL_SHA
Paul Bakkerfab5c822012-02-06 16:45:10 +0000583 *
584 * Uncomment this macro to enable the NULL cipher and ciphersuites
Paul Bakkerfab5c822012-02-06 16:45:10 +0000585 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200586//#define MBEDTLS_CIPHER_NULL_CIPHER
Paul Bakkerfab5c822012-02-06 16:45:10 +0000587
588/**
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100589 * \def MBEDTLS_CIPHER_PADDING_PKCS7
Paul Bakker48e93c82013-08-14 12:21:18 +0200590 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100591 * MBEDTLS_CIPHER_PADDING_XXX: Uncomment or comment macros to add support for
592 * specific padding modes in the cipher layer with cipher modes that support
593 * padding (e.g. CBC)
Paul Bakker48e93c82013-08-14 12:21:18 +0200594 *
595 * If you disable all padding modes, only full blocks can be used with CBC.
596 *
597 * Enable padding modes in the cipher layer.
598 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200599#define MBEDTLS_CIPHER_PADDING_PKCS7
600#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
601#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
602#define MBEDTLS_CIPHER_PADDING_ZEROS
Paul Bakker48e93c82013-08-14 12:21:18 +0200603
Gilles Peskine1540e5b2019-10-03 14:21:14 +0200604/** \def MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
605 *
606 * Uncomment this macro to use a 128-bit key in the CTR_DRBG module.
607 * By default, CTR_DRBG uses a 256-bit key.
608 */
609//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
610
Paul Bakker48e93c82013-08-14 12:21:18 +0200611/**
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100612 * \def MBEDTLS_ECP_DP_SECP192R1_ENABLED
Paul Bakker5dc6b5f2013-06-29 23:26:34 +0200613 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100614 * MBEDTLS_ECP_XXXX_ENABLED: Enables specific curves within the Elliptic Curve
615 * module. By default all supported curves are enabled.
Paul Bakker5dc6b5f2013-06-29 23:26:34 +0200616 *
617 * Comment macros to disable the curve and functions for it
618 */
Gilles Peskine799e5762018-09-14 17:34:00 +0200619/* Short Weierstrass curves (supporting ECP, ECDH, ECDSA) */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200620#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
621#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
622#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
623#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
624#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
625#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
626#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
627#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
628#define MBEDTLS_ECP_DP_BP256R1_ENABLED
629#define MBEDTLS_ECP_DP_BP384R1_ENABLED
630#define MBEDTLS_ECP_DP_BP512R1_ENABLED
Gilles Peskine799e5762018-09-14 17:34:00 +0200631/* Montgomery curves (supporting ECP) */
Manuel Pégourié-Gonnard07894332015-06-23 00:18:41 +0200632#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
Nicholas Wilson08f3ef12015-11-10 13:10:01 +0000633#define MBEDTLS_ECP_DP_CURVE448_ENABLED
Paul Bakker5dc6b5f2013-06-29 23:26:34 +0200634
635/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200636 * \def MBEDTLS_ECP_NIST_OPTIM
Manuel Pégourié-Gonnardc04c5302013-10-23 16:11:52 +0200637 *
638 * Enable specific 'modulo p' routines for each NIST prime.
639 * Depending on the prime and architecture, makes operations 4 to 8 times
640 * faster on the corresponding curve.
641 *
642 * Comment this macro to disable NIST curves optimisation.
643 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200644#define MBEDTLS_ECP_NIST_OPTIM
Manuel Pégourié-Gonnardc04c5302013-10-23 16:11:52 +0200645
646/**
Manuel Pégourié-Gonnard4b9c51e2017-04-20 15:50:26 +0200647 * \def MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100648 *
649 * Enable "non-blocking" ECC operations that can return early and be resumed.
650 *
Manuel Pégourié-Gonnardf0bbd7e2018-10-15 13:22:41 +0200651 * This allows various functions to pause by returning
652 * #MBEDTLS_ERR_ECP_IN_PROGRESS (or, for functions in the SSL module,
653 * #MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS) and then be called later again in
654 * order to further progress and eventually complete their operation. This is
655 * controlled through mbedtls_ecp_set_max_ops() which limits the maximum
656 * number of ECC operations a function may perform before pausing; see
657 * mbedtls_ecp_set_max_ops() for more information.
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100658 *
Manuel Pégourié-Gonnard8b7b96b2017-08-23 10:02:51 +0200659 * This is useful in non-threaded environments if you want to avoid blocking
Manuel Pégourié-Gonnardf0bbd7e2018-10-15 13:22:41 +0200660 * for too long on ECC (and, hence, X.509 or SSL/TLS) operations.
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100661 *
Manuel Pégourié-Gonnardc9e16a92017-08-15 14:30:59 +0200662 * Uncomment this macro to enable restartable ECC computations.
Ron Eldor5ed8c1e2018-11-05 14:04:26 +0200663 *
Ron Eldor19779c42018-11-05 16:58:13 +0200664 * \note This option only works with the default software implementation of
665 * elliptic curve functionality. It is incompatible with
Thomas Daubney537e6432021-06-03 15:46:33 +0100666 * MBEDTLS_ECP_ALT, MBEDTLS_ECDH_XXX_ALT, MBEDTLS_ECDSA_XXX_ALT.
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100667 */
Manuel Pégourié-Gonnardc9e16a92017-08-15 14:30:59 +0200668//#define MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100669
670/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200671 * \def MBEDTLS_ECDSA_DETERMINISTIC
Manuel Pégourié-Gonnard461d4162014-01-06 10:16:28 +0100672 *
673 * Enable deterministic ECDSA (RFC 6979).
674 * Standard ECDSA is "fragile" in the sense that lack of entropy when signing
675 * may result in a compromise of the long-term signing key. This is avoided by
676 * the deterministic variant.
677 *
John Durkop36a82e52020-10-26 09:39:05 -0700678 * Requires: MBEDTLS_HMAC_DRBG_C, MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard5b1a5732014-01-07 16:46:17 +0100679 *
Manuel Pégourié-Gonnard461d4162014-01-06 10:16:28 +0100680 * Comment this macro to disable deterministic ECDSA.
681 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200682#define MBEDTLS_ECDSA_DETERMINISTIC
Manuel Pégourié-Gonnard461d4162014-01-06 10:16:28 +0100683
684/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200685 * \def MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
Paul Bakkerd4a56ec2013-04-16 18:05:29 +0200686 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200687 * Enable the PSK based ciphersuite modes in SSL / TLS.
Paul Bakkerd4a56ec2013-04-16 18:05:29 +0200688 *
Paul Bakkere07f41d2013-04-19 09:08:57 +0200689 * This enables the following ciphersuites (if other requisites are
690 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200691 * MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384
692 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384
693 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA
694 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384
695 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384
696 * MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256
697 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256
698 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA
699 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256
700 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256
Paul Bakkerd4a56ec2013-04-16 18:05:29 +0200701 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200702#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
Paul Bakkerd4a56ec2013-04-16 18:05:29 +0200703
704/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200705 * \def MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200706 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200707 * Enable the DHE-PSK based ciphersuite modes in SSL / TLS.
Paul Bakkere07f41d2013-04-19 09:08:57 +0200708 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200709 * Requires: MBEDTLS_DHM_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200710 *
711 * This enables the following ciphersuites (if other requisites are
712 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200713 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384
714 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384
715 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA
716 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384
717 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
718 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
719 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
720 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA
721 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256
722 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
Hanno Beckera2f6b722017-09-28 10:33:29 +0100723 *
Hanno Beckerf9734b32017-10-03 12:09:22 +0100724 * \warning Using DHE constitutes a security risk as it
725 * is not possible to validate custom DH parameters.
726 * If possible, it is recommended users should consider
727 * preferring other methods of key exchange.
728 * See dhm.h for more details.
Hanno Beckera2f6b722017-09-28 10:33:29 +0100729 *
Paul Bakkere07f41d2013-04-19 09:08:57 +0200730 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200731#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200732
733/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200734 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
Manuel Pégourié-Gonnard3ce3bbd2013-10-11 16:53:50 +0200735 *
736 * Enable the ECDHE-PSK based ciphersuite modes in SSL / TLS.
737 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200738 * Requires: MBEDTLS_ECDH_C
Manuel Pégourié-Gonnard3ce3bbd2013-10-11 16:53:50 +0200739 *
740 * This enables the following ciphersuites (if other requisites are
741 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200742 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384
743 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA
744 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
745 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256
746 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA
747 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
Manuel Pégourié-Gonnard3ce3bbd2013-10-11 16:53:50 +0200748 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200749#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
Manuel Pégourié-Gonnard3ce3bbd2013-10-11 16:53:50 +0200750
751/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200752 * \def MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200753 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200754 * Enable the RSA-PSK based ciphersuite modes in SSL / TLS.
Manuel Pégourié-Gonnard0fae60b2013-10-14 17:39:48 +0200755 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200756 * Requires: MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
757 * MBEDTLS_X509_CRT_PARSE_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200758 *
759 * This enables the following ciphersuites (if other requisites are
760 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200761 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384
762 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384
763 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA
764 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384
765 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384
766 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256
767 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256
768 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA
769 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256
770 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256
Paul Bakkere07f41d2013-04-19 09:08:57 +0200771 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200772#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200773
774/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200775 * \def MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200776 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200777 * Enable the RSA-only based ciphersuite modes in SSL / TLS.
Paul Bakkere07f41d2013-04-19 09:08:57 +0200778 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200779 * Requires: MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
780 * MBEDTLS_X509_CRT_PARSE_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200781 *
782 * This enables the following ciphersuites (if other requisites are
783 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200784 * MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384
785 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256
786 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA
787 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384
788 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
789 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
790 * MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256
791 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256
792 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA
793 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256
794 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
795 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
Paul Bakkere07f41d2013-04-19 09:08:57 +0200796 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200797#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200798
799/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200800 * \def MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200801 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200802 * Enable the DHE-RSA based ciphersuite modes in SSL / TLS.
Paul Bakkere07f41d2013-04-19 09:08:57 +0200803 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200804 * Requires: MBEDTLS_DHM_C, MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
805 * MBEDTLS_X509_CRT_PARSE_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200806 *
807 * This enables the following ciphersuites (if other requisites are
808 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200809 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
810 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
811 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
812 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
813 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
814 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
815 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
816 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
817 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
818 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
819 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
820 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
Hanno Beckera2f6b722017-09-28 10:33:29 +0100821 *
Hanno Beckerf9734b32017-10-03 12:09:22 +0100822 * \warning Using DHE constitutes a security risk as it
823 * is not possible to validate custom DH parameters.
824 * If possible, it is recommended users should consider
825 * preferring other methods of key exchange.
826 * See dhm.h for more details.
Hanno Beckera2f6b722017-09-28 10:33:29 +0100827 *
Paul Bakkere07f41d2013-04-19 09:08:57 +0200828 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200829#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200830
831/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200832 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200833 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200834 * Enable the ECDHE-RSA based ciphersuite modes in SSL / TLS.
Paul Bakkere07f41d2013-04-19 09:08:57 +0200835 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200836 * Requires: MBEDTLS_ECDH_C, MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
837 * MBEDTLS_X509_CRT_PARSE_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200838 *
839 * This enables the following ciphersuites (if other requisites are
840 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200841 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
842 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
843 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
844 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
845 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
846 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
847 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
848 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
849 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
850 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
Paul Bakkere07f41d2013-04-19 09:08:57 +0200851 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200852#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200853
854/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200855 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200856 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200857 * Enable the ECDHE-ECDSA based ciphersuite modes in SSL / TLS.
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200858 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200859 * Requires: MBEDTLS_ECDH_C, MBEDTLS_ECDSA_C, MBEDTLS_X509_CRT_PARSE_C,
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200860 *
861 * This enables the following ciphersuites (if other requisites are
862 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200863 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
864 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
865 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
866 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
867 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
868 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
869 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
870 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
871 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
872 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200873 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200874#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200875
876/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200877 * \def MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100878 *
879 * Enable the ECDH-ECDSA based ciphersuite modes in SSL / TLS.
880 *
Gilles Peskine7ab66a62018-09-14 17:47:41 +0200881 * Requires: MBEDTLS_ECDH_C, MBEDTLS_ECDSA_C, MBEDTLS_X509_CRT_PARSE_C
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100882 *
883 * This enables the following ciphersuites (if other requisites are
884 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200885 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
886 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
887 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
888 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
889 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
890 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
891 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
892 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
893 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
894 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100895 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200896#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100897
898/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200899 * \def MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100900 *
901 * Enable the ECDH-RSA based ciphersuite modes in SSL / TLS.
902 *
Gilles Peskine7ab66a62018-09-14 17:47:41 +0200903 * Requires: MBEDTLS_ECDH_C, MBEDTLS_RSA_C, MBEDTLS_X509_CRT_PARSE_C
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100904 *
905 * This enables the following ciphersuites (if other requisites are
906 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200907 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
908 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
909 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
910 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
911 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
912 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
913 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
914 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
915 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
916 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100917 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200918#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100919
920/**
Manuel Pégourié-Gonnard557535d2015-09-15 17:53:32 +0200921 * \def MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
922 *
923 * Enable the ECJPAKE based ciphersuite modes in SSL / TLS.
924 *
Manuel Pégourié-Gonnard75df9022015-09-16 23:21:01 +0200925 * \warning This is currently experimental. EC J-PAKE support is based on the
926 * Thread v1.0.0 specification; incompatible changes to the specification
927 * might still happen. For this reason, this is disabled by default.
Manuel Pégourié-Gonnard557535d2015-09-15 17:53:32 +0200928 *
929 * Requires: MBEDTLS_ECJPAKE_C
930 * MBEDTLS_SHA256_C
931 * MBEDTLS_ECP_DP_SECP256R1_ENABLED
932 *
933 * This enables the following ciphersuites (if other requisites are
934 * enabled as well):
935 * MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8
936 */
Manuel Pégourié-Gonnardcf828932015-10-20 14:57:00 +0200937//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard557535d2015-09-15 17:53:32 +0200938
939/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200940 * \def MBEDTLS_PK_PARSE_EC_EXTENDED
Manuel Pégourié-Gonnard6fac3512014-03-19 16:39:52 +0100941 *
942 * Enhance support for reading EC keys using variants of SEC1 not allowed by
943 * RFC 5915 and RFC 5480.
944 *
945 * Currently this means parsing the SpecifiedECDomain choice of EC
946 * parameters (only known groups are supported, not arbitrary domains, to
947 * avoid validation issues).
948 *
949 * Disable if you only need to support RFC 5915 + 5480 key formats.
950 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200951#define MBEDTLS_PK_PARSE_EC_EXTENDED
Manuel Pégourié-Gonnard6fac3512014-03-19 16:39:52 +0100952
953/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200954 * \def MBEDTLS_ERROR_STRERROR_DUMMY
Paul Bakker8fe40dc2013-02-02 12:43:08 +0100955 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200956 * Enable a dummy error function to make use of mbedtls_strerror() in
957 * third party libraries easier when MBEDTLS_ERROR_C is disabled
958 * (no effect when MBEDTLS_ERROR_C is enabled).
Manuel Pégourié-Gonnarddc16aa72014-06-25 12:55:12 +0200959 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200960 * You can safely disable this if MBEDTLS_ERROR_C is enabled, or if you're
961 * not using mbedtls_strerror() or error_strerror() in your application.
Paul Bakker8fe40dc2013-02-02 12:43:08 +0100962 *
963 * Disable if you run into name conflicts and want to really remove the
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200964 * mbedtls_strerror()
Paul Bakker8fe40dc2013-02-02 12:43:08 +0100965 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200966#define MBEDTLS_ERROR_STRERROR_DUMMY
Paul Bakker8fe40dc2013-02-02 12:43:08 +0100967
968/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200969 * \def MBEDTLS_GENPRIME
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000970 *
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +0200971 * Enable the prime-number generation code.
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200972 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200973 * Requires: MBEDTLS_BIGNUM_C
Paul Bakker5121ce52009-01-03 21:22:43 +0000974 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200975#define MBEDTLS_GENPRIME
Paul Bakker5121ce52009-01-03 21:22:43 +0000976
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000977/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200978 * \def MBEDTLS_FS_IO
Paul Bakker335db3f2011-04-25 15:28:35 +0000979 *
980 * Enable functions that use the filesystem.
981 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200982#define MBEDTLS_FS_IO
Paul Bakker335db3f2011-04-25 15:28:35 +0000983
984/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200985 * \def MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
Paul Bakker43655f42011-12-15 20:11:16 +0000986 *
TRodziewicz15a7b732021-06-16 11:22:53 +0200987 * Do not add default entropy sources in mbedtls_entropy_init().
Paul Bakker43655f42011-12-15 20:11:16 +0000988 *
Shuo Chen95a0d112014-04-04 21:04:40 -0700989 * This is useful to have more control over the added entropy sources in an
Paul Bakker43655f42011-12-15 20:11:16 +0000990 * application.
991 *
992 * Uncomment this macro to prevent loading of default entropy functions.
Paul Bakker43655f42011-12-15 20:11:16 +0000993 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200994//#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
Paul Bakker43655f42011-12-15 20:11:16 +0000995
996/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200997 * \def MBEDTLS_NO_PLATFORM_ENTROPY
Paul Bakker6083fd22011-12-03 21:45:14 +0000998 *
999 * Do not use built-in platform entropy functions.
1000 * This is useful if your platform does not support
1001 * standards like the /dev/urandom or Windows CryptoAPI.
1002 *
1003 * Uncomment this macro to disable the built-in platform entropy functions.
Paul Bakker6083fd22011-12-03 21:45:14 +00001004 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001005//#define MBEDTLS_NO_PLATFORM_ENTROPY
Paul Bakker6083fd22011-12-03 21:45:14 +00001006
1007/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001008 * \def MBEDTLS_ENTROPY_FORCE_SHA256
Paul Bakker2ceda572014-02-06 15:55:25 +01001009 *
1010 * Force the entropy accumulator to use a SHA-256 accumulator instead of the
1011 * default SHA-512 based one (if both are available).
1012 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001013 * Requires: MBEDTLS_SHA256_C
Paul Bakker2ceda572014-02-06 15:55:25 +01001014 *
1015 * On 32-bit systems SHA-256 can be much faster than SHA-512. Use this option
1016 * if you have performance concerns.
1017 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001018 * This option is only useful if both MBEDTLS_SHA256_C and
1019 * MBEDTLS_SHA512_C are defined. Otherwise the available hash module is used.
Paul Bakker2ceda572014-02-06 15:55:25 +01001020 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001021//#define MBEDTLS_ENTROPY_FORCE_SHA256
Paul Bakker2ceda572014-02-06 15:55:25 +01001022
1023/**
Paul Bakkercf0a9f92016-06-01 11:25:44 +01001024 * \def MBEDTLS_ENTROPY_NV_SEED
1025 *
1026 * Enable the non-volatile (NV) seed file-based entropy source.
1027 * (Also enables the NV seed read/write functions in the platform layer)
1028 *
1029 * This is crucial (if not required) on systems that do not have a
1030 * cryptographic entropy source (in hardware or kernel) available.
1031 *
1032 * Requires: MBEDTLS_ENTROPY_C, MBEDTLS_PLATFORM_C
1033 *
Paul Bakker71a597a2016-06-07 10:59:03 +01001034 * \note The read/write functions that are used by the entropy source are
1035 * determined in the platform layer, and can be modified at runtime and/or
1036 * compile-time depending on the flags (MBEDTLS_PLATFORM_NV_SEED_*) used.
1037 *
1038 * \note If you use the default implementation functions that read a seedfile
Paul Bakkercf0a9f92016-06-01 11:25:44 +01001039 * with regular fopen(), please make sure you make a seedfile with the
1040 * proper name (defined in MBEDTLS_PLATFORM_STD_NV_SEED_FILE) and at
1041 * least MBEDTLS_ENTROPY_BLOCK_SIZE bytes in size that can be read from
Paul Bakker71a597a2016-06-07 10:59:03 +01001042 * and written to or you will get an entropy source error! The default
1043 * implementation will only use the first MBEDTLS_ENTROPY_BLOCK_SIZE
1044 * bytes from the file.
1045 *
1046 * \note The entropy collector will write to the seed file before entropy is
1047 * given to an external source, to update it.
Paul Bakkercf0a9f92016-06-01 11:25:44 +01001048 */
1049//#define MBEDTLS_ENTROPY_NV_SEED
1050
Ronald Cron71016a92020-08-28 19:01:50 +02001051/* MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001052 *
Ronald Cron71016a92020-08-28 19:01:50 +02001053 * Enable key identifiers that encode a key owner identifier.
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001054 *
Ronald Cron9a2511e2020-09-14 10:02:56 +02001055 * The owner of a key is identified by a value of type ::mbedtls_key_owner_id_t
1056 * which is currently hard-coded to be int32_t.
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001057 *
1058 * Note that this option is meant for internal use only and may be removed
Ronald Cron77c89f52020-11-10 17:45:56 +01001059 * without notice. It is incompatible with MBEDTLS_USE_PSA_CRYPTO.
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001060 */
Ronald Cron71016a92020-08-28 19:01:50 +02001061//#define MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001062
Paul Bakkercf0a9f92016-06-01 11:25:44 +01001063/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001064 * \def MBEDTLS_MEMORY_DEBUG
Paul Bakker6e339b52013-07-03 13:37:05 +02001065 *
1066 * Enable debugging of buffer allocator memory issues. Automatically prints
1067 * (to stderr) all (fatal) messages on memory allocation issues. Enables
1068 * function for 'debug output' of allocated memory.
1069 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001070 * Requires: MBEDTLS_MEMORY_BUFFER_ALLOC_C
Paul Bakker6e339b52013-07-03 13:37:05 +02001071 *
1072 * Uncomment this macro to let the buffer allocator print out error messages.
Paul Bakkera7ea6a52013-10-15 11:55:10 +02001073 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001074//#define MBEDTLS_MEMORY_DEBUG
Paul Bakker6e339b52013-07-03 13:37:05 +02001075
1076/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001077 * \def MBEDTLS_MEMORY_BACKTRACE
Paul Bakker6e339b52013-07-03 13:37:05 +02001078 *
1079 * Include backtrace information with each allocated block.
1080 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001081 * Requires: MBEDTLS_MEMORY_BUFFER_ALLOC_C
Paul Bakker6e339b52013-07-03 13:37:05 +02001082 * GLIBC-compatible backtrace() an backtrace_symbols() support
1083 *
1084 * Uncomment this macro to include backtrace information
Paul Bakker6e339b52013-07-03 13:37:05 +02001085 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001086//#define MBEDTLS_MEMORY_BACKTRACE
Paul Bakker6e339b52013-07-03 13:37:05 +02001087
1088/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001089 * \def MBEDTLS_PK_RSA_ALT_SUPPORT
Manuel Pégourié-Gonnard348bcb32015-03-31 14:01:33 +02001090 *
1091 * Support external private RSA keys (eg from a HSM) in the PK layer.
1092 *
1093 * Comment this macro to disable support for external private RSA keys.
1094 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001095#define MBEDTLS_PK_RSA_ALT_SUPPORT
Manuel Pégourié-Gonnard348bcb32015-03-31 14:01:33 +02001096
1097/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001098 * \def MBEDTLS_PKCS1_V15
Paul Bakker48377d92013-08-30 12:06:24 +02001099 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001100 * Enable support for PKCS#1 v1.5 encoding.
1101 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001102 * Requires: MBEDTLS_RSA_C
Paul Bakker48377d92013-08-30 12:06:24 +02001103 *
Paul Bakker48377d92013-08-30 12:06:24 +02001104 * This enables support for PKCS#1 v1.5 operations.
1105 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001106#define MBEDTLS_PKCS1_V15
Paul Bakker48377d92013-08-30 12:06:24 +02001107
1108/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001109 * \def MBEDTLS_PKCS1_V21
Paul Bakker9dcc3222011-03-08 14:16:06 +00001110 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001111 * Enable support for PKCS#1 v2.1 encoding.
1112 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001113 * Requires: MBEDTLS_MD_C, MBEDTLS_RSA_C
Paul Bakker5690efc2011-05-26 13:16:06 +00001114 *
Paul Bakker9dcc3222011-03-08 14:16:06 +00001115 * This enables support for RSAES-OAEP and RSASSA-PSS operations.
1116 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001117#define MBEDTLS_PKCS1_V21
Paul Bakker9dcc3222011-03-08 14:16:06 +00001118
Steven Cooreman6801f082021-02-19 17:21:22 +01001119/** \def MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS
1120 *
1121 * Enable support for platform built-in keys. If you enable this feature,
1122 * you must implement the function mbedtls_psa_platform_get_builtin_key().
1123 * See the documentation of that function for more information.
1124 *
1125 * Built-in keys are typically derived from a hardware unique key or
1126 * stored in a secure element.
1127 *
1128 * Requires: MBEDTLS_PSA_CRYPTO_C.
1129 *
1130 * \warning This interface is experimental and may change or be removed
1131 * without notice.
1132 */
1133//#define MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS
1134
Ronald Cron3768ac12021-01-26 16:58:00 +01001135/** \def MBEDTLS_PSA_CRYPTO_CLIENT
1136 *
1137 * Enable support for PSA crypto client.
1138 *
1139 * \note This option allows to include the code necessary for a PSA
1140 * crypto client when the PSA crypto implementation is not included in
1141 * the library (MBEDTLS_PSA_CRYPTO_C disabled). The code included is the
1142 * code to set and get PSA key attributes.
1143 * The development of PSA drivers partially relying on the library to
1144 * fulfill the hardware gaps is another possible usage of this option.
1145 *
1146 * \warning This interface is experimental and may change or be removed
1147 * without notice.
1148 */
1149//#define MBEDTLS_PSA_CRYPTO_CLIENT
1150
Steven Cooreman0d59f7b02020-07-16 20:27:57 +02001151/** \def MBEDTLS_PSA_CRYPTO_DRIVERS
1152 *
1153 * Enable support for the experimental PSA crypto driver interface.
1154 *
John Durkop185764f2020-10-12 21:32:12 -07001155 * Requires: MBEDTLS_PSA_CRYPTO_C
Steven Cooreman0d59f7b02020-07-16 20:27:57 +02001156 *
1157 * \warning This interface is experimental and may change or be removed
1158 * without notice.
1159 */
1160//#define MBEDTLS_PSA_CRYPTO_DRIVERS
1161
Gilles Peskinef08b3f82020-11-13 17:36:48 +01001162/** \def MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG
1163 *
1164 * Make the PSA Crypto module use an external random generator provided
1165 * by a driver, instead of Mbed TLS's entropy and DRBG modules.
1166 *
Gilles Peskineb663a602020-11-18 15:27:37 +01001167 * \note This random generator must deliver random numbers with cryptographic
1168 * quality and high performance. It must supply unpredictable numbers
1169 * with a uniform distribution. The implementation of this function
1170 * is responsible for ensuring that the random generator is seeded
1171 * with sufficient entropy. If you have a hardware TRNG which is slow
1172 * or delivers non-uniform output, declare it as an entropy source
1173 * with mbedtls_entropy_add_source() instead of enabling this option.
1174 *
Gilles Peskineb0a748e2020-11-30 12:01:54 +01001175 * If you enable this option, you must configure the type
Gilles Peskineb8af2282020-11-13 18:00:34 +01001176 * ::mbedtls_psa_external_random_context_t in psa/crypto_platform.h
1177 * and define a function called mbedtls_psa_external_get_random()
1178 * with the following prototype:
Gilles Peskinef08b3f82020-11-13 17:36:48 +01001179 * ```
1180 * psa_status_t mbedtls_psa_external_get_random(
1181 * mbedtls_psa_external_random_context_t *context,
1182 * uint8_t *output, size_t output_size, size_t *output_length);
1183 * );
1184 * ```
1185 * The \c context value is initialized to 0 before the first call.
1186 * The function must fill the \c output buffer with \p output_size bytes
1187 * of random data and set \c *output_length to \p output_size.
1188 *
1189 * Requires: MBEDTLS_PSA_CRYPTO_C
1190 *
1191 * \warning If you enable this option, code that uses the PSA cryptography
1192 * interface will not use any of the entropy sources set up for
1193 * the entropy module, nor the NV seed that MBEDTLS_ENTROPY_NV_SEED
1194 * enables.
1195 *
1196 * \note This option is experimental and may be removed without notice.
1197 */
1198//#define MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG
1199
Paul Bakker9dcc3222011-03-08 14:16:06 +00001200/**
Andrzej Kurekc6905232019-02-05 05:23:41 -05001201 * \def MBEDTLS_PSA_CRYPTO_SPM
1202 *
1203 * When MBEDTLS_PSA_CRYPTO_SPM is defined, the code is built for SPM (Secure
1204 * Partition Manager) integration which separates the code into two parts: a
1205 * NSPE (Non-Secure Process Environment) and an SPE (Secure Process
1206 * Environment).
1207 *
1208 * Module: library/psa_crypto.c
1209 * Requires: MBEDTLS_PSA_CRYPTO_C
1210 *
1211 */
1212//#define MBEDTLS_PSA_CRYPTO_SPM
1213
1214/**
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00001215 * \def MBEDTLS_PSA_INJECT_ENTROPY
Andrzej Kurekc6905232019-02-05 05:23:41 -05001216 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00001217 * Enable support for entropy injection at first boot. This feature is
1218 * required on systems that do not have a built-in entropy source (TRNG).
1219 * This feature is currently not supported on systems that have a built-in
1220 * entropy source.
Andrzej Kurekc6905232019-02-05 05:23:41 -05001221 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00001222 * Requires: MBEDTLS_PSA_CRYPTO_STORAGE_C, MBEDTLS_ENTROPY_NV_SEED
Andrzej Kurekc6905232019-02-05 05:23:41 -05001223 *
1224 */
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00001225//#define MBEDTLS_PSA_INJECT_ENTROPY
Andrzej Kurekc6905232019-02-05 05:23:41 -05001226
1227/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001228 * \def MBEDTLS_RSA_NO_CRT
Paul Bakker0216cc12011-03-26 13:40:23 +00001229 *
Hanno Becker88ec2382017-05-03 13:51:16 +01001230 * Do not use the Chinese Remainder Theorem
1231 * for the RSA private operation.
Paul Bakker0216cc12011-03-26 13:40:23 +00001232 *
1233 * Uncomment this macro to disable the use of CRT in RSA.
1234 *
Paul Bakker0216cc12011-03-26 13:40:23 +00001235 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001236//#define MBEDTLS_RSA_NO_CRT
Paul Bakker15566e42011-04-24 21:19:15 +00001237
1238/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001239 * \def MBEDTLS_SELF_TEST
Paul Bakker15566e42011-04-24 21:19:15 +00001240 *
1241 * Enable the checkup functions (*_self_test).
1242 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001243#define MBEDTLS_SELF_TEST
Paul Bakker5c721f92011-07-27 16:51:09 +00001244
1245/**
Manuel Pégourié-Gonnardeb0d8702015-05-28 12:54:04 +02001246 * \def MBEDTLS_SHA256_SMALLER
1247 *
1248 * Enable an implementation of SHA-256 that has lower ROM footprint but also
1249 * lower performance.
1250 *
1251 * The default implementation is meant to be a reasonnable compromise between
1252 * performance and size. This version optimizes more aggressively for size at
1253 * the expense of performance. Eg on Cortex-M4 it reduces the size of
1254 * mbedtls_sha256_process() from ~2KB to ~0.5KB for a performance hit of about
1255 * 30%.
1256 *
1257 * Uncomment to enable the smaller implementation of SHA256.
1258 */
1259//#define MBEDTLS_SHA256_SMALLER
1260
1261/**
Manuel Pégourié-Gonnard2306d152019-07-17 12:36:53 +02001262 * \def MBEDTLS_SHA512_SMALLER
1263 *
1264 * Enable an implementation of SHA-512 that has lower ROM footprint but also
1265 * lower performance.
1266 *
1267 * Uncomment to enable the smaller implementation of SHA512.
1268 */
1269//#define MBEDTLS_SHA512_SMALLER
1270
1271/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001272 * \def MBEDTLS_SSL_ALL_ALERT_MESSAGES
Paul Bakker40865c82013-01-31 17:13:13 +01001273 *
1274 * Enable sending of alert messages in case of encountered errors as per RFC.
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00001275 * If you choose not to send the alert messages, mbed TLS can still communicate
Paul Bakker40865c82013-01-31 17:13:13 +01001276 * with other servers, only debugging of failures is harder.
1277 *
1278 * The advantage of not sending alert messages, is that no information is given
1279 * about reasons for failures thus preventing adversaries of gaining intel.
1280 *
1281 * Enable sending of all alert messages
1282 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001283#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
Paul Bakker40865c82013-01-31 17:13:13 +01001284
1285/**
Gilles Peskined3d02902020-03-04 21:35:27 +01001286 * \def MBEDTLS_SSL_DTLS_CONNECTION_ID
1287 *
1288 * Enable support for the DTLS Connection ID extension
1289 * (version draft-ietf-tls-dtls-connection-id-05,
1290 * https://tools.ietf.org/html/draft-ietf-tls-dtls-connection-id-05)
1291 * which allows to identify DTLS connections across changes
1292 * in the underlying transport.
1293 *
1294 * Setting this option enables the SSL APIs `mbedtls_ssl_set_cid()`,
1295 * `mbedtls_ssl_get_peer_cid()` and `mbedtls_ssl_conf_cid()`.
1296 * See the corresponding documentation for more information.
1297 *
1298 * \warning The Connection ID extension is still in draft state.
1299 * We make no stability promises for the availability
1300 * or the shape of the API controlled by this option.
1301 *
1302 * The maximum lengths of outgoing and incoming CIDs can be configured
1303 * through the options
1304 * - MBEDTLS_SSL_CID_OUT_LEN_MAX
1305 * - MBEDTLS_SSL_CID_IN_LEN_MAX.
1306 *
1307 * Requires: MBEDTLS_SSL_PROTO_DTLS
1308 *
1309 * Uncomment to enable the Connection ID extension.
1310 */
1311//#define MBEDTLS_SSL_DTLS_CONNECTION_ID
1312
1313/**
Gilles Peskineb74a1c72018-04-24 13:09:22 +02001314 * \def MBEDTLS_SSL_ASYNC_PRIVATE
1315 *
1316 * Enable asynchronous external private key operations in SSL. This allows
1317 * you to configure an SSL connection to call an external cryptographic
1318 * module to perform private key operations instead of performing the
1319 * operation inside the library.
1320 *
1321 */
Jaeden Amerod9c71da2018-06-15 20:31:26 +01001322//#define MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskineb74a1c72018-04-24 13:09:22 +02001323
1324/**
Gilles Peskined3d02902020-03-04 21:35:27 +01001325 * \def MBEDTLS_SSL_CONTEXT_SERIALIZATION
1326 *
1327 * Enable serialization of the TLS context structures, through use of the
1328 * functions mbedtls_ssl_context_save() and mbedtls_ssl_context_load().
1329 *
1330 * This pair of functions allows one side of a connection to serialize the
1331 * context associated with the connection, then free or re-use that context
1332 * while the serialized state is persisted elsewhere, and finally deserialize
1333 * that state to a live context for resuming read/write operations on the
1334 * connection. From a protocol perspective, the state of the connection is
1335 * unaffected, in particular this is entirely transparent to the peer.
1336 *
1337 * Note: this is distinct from TLS session resumption, which is part of the
1338 * protocol and fully visible by the peer. TLS session resumption enables
1339 * establishing new connections associated to a saved session with shorter,
1340 * lighter handshakes, while context serialization is a local optimization in
1341 * handling a single, potentially long-lived connection.
1342 *
1343 * Enabling these APIs makes some SSL structures larger, as 64 extra bytes are
1344 * saved after the handshake to allow for more efficient serialization, so if
1345 * you don't need this feature you'll save RAM by disabling it.
1346 *
1347 * Comment to disable the context serialization APIs.
1348 */
1349#define MBEDTLS_SSL_CONTEXT_SERIALIZATION
1350
1351/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001352 * \def MBEDTLS_SSL_DEBUG_ALL
Paul Bakkerd66f0702013-01-31 16:57:45 +01001353 *
1354 * Enable the debug messages in SSL module for all issues.
1355 * Debug messages have been disabled in some places to prevent timing
1356 * attacks due to (unbalanced) debugging function calls.
1357 *
1358 * If you need all error reporting you should enable this during debugging,
1359 * but remove this for production servers that should log as well.
1360 *
1361 * Uncomment this macro to report all debug messages on errors introducing
1362 * a timing side-channel.
1363 *
Paul Bakkerd66f0702013-01-31 16:57:45 +01001364 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001365//#define MBEDTLS_SSL_DEBUG_ALL
Paul Bakkerd66f0702013-01-31 16:57:45 +01001366
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001367/** \def MBEDTLS_SSL_ENCRYPT_THEN_MAC
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +01001368 *
1369 * Enable support for Encrypt-then-MAC, RFC 7366.
1370 *
1371 * This allows peers that both support it to use a more robust protection for
1372 * ciphersuites using CBC, providing deep resistance against timing attacks
1373 * on the padding or underlying cipher.
1374 *
1375 * This only affects CBC ciphersuites, and is useless if none is defined.
1376 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02001377 * Requires: MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +01001378 *
1379 * Comment this macro to disable support for Encrypt-then-MAC
1380 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001381#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +01001382
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001383/** \def MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +02001384 *
Manuel Pégourié-Gonnardbca8aa02020-03-24 12:11:49 +01001385 * Enable support for RFC 7627: Session Hash and Extended Master Secret
1386 * Extension.
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +02001387 *
1388 * This was introduced as "the proper fix" to the Triple Handshake familiy of
1389 * attacks, but it is recommended to always use it (even if you disable
1390 * renegotiation), since it actually fixes a more fundamental issue in the
1391 * original SSL/TLS design, and has implications beyond Triple Handshake.
1392 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02001393 * Requires: MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard769c6b62014-10-28 14:13:55 +01001394 *
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +02001395 * Comment this macro to disable support for Extended Master Secret.
1396 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001397#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +02001398
Paul Bakkerd66f0702013-01-31 16:57:45 +01001399/**
Hanno Beckerbb278f52019-02-05 17:04:00 +00001400 * \def MBEDTLS_SSL_KEEP_PEER_CERTIFICATE
1401 *
Hanno Beckerfd7f2982019-02-25 10:13:33 +00001402 * This option controls the availability of the API mbedtls_ssl_get_peer_cert()
Hanno Beckerbb278f52019-02-05 17:04:00 +00001403 * giving access to the peer's certificate after completion of the handshake.
1404 *
1405 * Unless you need mbedtls_ssl_peer_cert() in your application, it is
1406 * recommended to disable this option for reduced RAM usage.
1407 *
1408 * \note If this option is disabled, mbedtls_ssl_get_peer_cert() is still
1409 * defined, but always returns \c NULL.
1410 *
1411 * \note This option has no influence on the protection against the
1412 * triple handshake attack. Even if it is disabled, Mbed TLS will
1413 * still ensure that certificates do not change during renegotiation,
1414 * for exaple by keeping a hash of the peer's certificate.
1415 *
1416 * Comment this macro to disable storing the peer's certificate
1417 * after the handshake.
1418 */
1419#define MBEDTLS_SSL_KEEP_PEER_CERTIFICATE
1420
1421/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001422 * \def MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard615e6772014-11-03 08:23:14 +01001423 *
Hanno Becker0eb8fb82018-10-26 09:53:16 +01001424 * Enable support for TLS renegotiation.
Manuel Pégourié-Gonnard615e6772014-11-03 08:23:14 +01001425 *
1426 * The two main uses of renegotiation are (1) refresh keys on long-lived
1427 * connections and (2) client authentication after the initial handshake.
1428 * If you don't need renegotiation, it's probably better to disable it, since
1429 * it has been associated with security issues in the past and is easy to
1430 * misuse/misunderstand.
Manuel Pégourié-Gonnard03717042014-11-04 19:52:10 +01001431 *
Manuel Pégourié-Gonnard55f968b2015-03-09 16:23:15 +00001432 * Comment this to disable support for renegotiation.
Hanno Becker6851b102017-10-12 14:57:48 +01001433 *
1434 * \note Even if this option is disabled, both client and server are aware
1435 * of the Renegotiation Indication Extension (RFC 5746) used to
1436 * prevent the SSL renegotiation attack (see RFC 5746 Sect. 1).
1437 * (See \c mbedtls_ssl_conf_legacy_renegotiation for the
1438 * configuration of this extension).
1439 *
Manuel Pégourié-Gonnard615e6772014-11-03 08:23:14 +01001440 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001441#define MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard615e6772014-11-03 08:23:14 +01001442
1443/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001444 * \def MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Paul Bakker05decb22013-08-15 13:33:48 +02001445 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001446 * Enable support for RFC 6066 max_fragment_length extension in SSL.
Paul Bakker05decb22013-08-15 13:33:48 +02001447 *
1448 * Comment this macro to disable support for the max_fragment_length extension
1449 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001450#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Paul Bakker05decb22013-08-15 13:33:48 +02001451
1452/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001453 * \def MBEDTLS_SSL_PROTO_TLS1_2
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001454 *
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001455 * Enable support for TLS 1.2 (and DTLS 1.2 if DTLS is enabled).
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001456 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001457 * Requires: MBEDTLS_SHA1_C or MBEDTLS_SHA256_C or MBEDTLS_SHA512_C
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001458 * (Depends on ciphersuites)
1459 *
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001460 * Comment this macro to disable support for TLS 1.2 / DTLS 1.2
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001461 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001462#define MBEDTLS_SSL_PROTO_TLS1_2
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001463
1464/**
Hanno Becker9fc15ea2020-05-04 12:00:47 +01001465 * \def MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
1466 *
Hanno Becker3c358d42020-05-20 13:54:41 +01001467 * This macro is used to selectively enable experimental parts
1468 * of the code that contribute to the ongoing development of
1469 * the prototype TLS 1.3 and DTLS 1.3 implementation, and provide
1470 * no other purpose.
Hanno Becker9fc15ea2020-05-04 12:00:47 +01001471 *
Hanno Becker3c358d42020-05-20 13:54:41 +01001472 * \warning TLS 1.3 and DTLS 1.3 aren't yet supported in Mbed TLS,
1473 * and no feature exposed through this macro is part of the
1474 * public API. In particular, features under the control
1475 * of this macro are experimental and don't come with any
1476 * stability guarantees.
Hanno Becker9fc15ea2020-05-04 12:00:47 +01001477 *
1478 * Uncomment this macro to enable experimental and partial
1479 * functionality specific to TLS 1.3.
1480 */
Hanno Beckere4160602020-05-07 15:11:45 +01001481//#define MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
Hanno Becker9fc15ea2020-05-04 12:00:47 +01001482
1483/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001484 * \def MBEDTLS_SSL_PROTO_DTLS
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001485 *
1486 * Enable support for DTLS (all available versions).
1487 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02001488 * Enable this and MBEDTLS_SSL_PROTO_TLS1_2 to enable DTLS 1.2.
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001489 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02001490 * Requires: MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001491 *
1492 * Comment this macro to disable support for DTLS
1493 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001494#define MBEDTLS_SSL_PROTO_DTLS
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001495
1496/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001497 * \def MBEDTLS_SSL_ALPN
Manuel Pégourié-Gonnard7e250d42014-04-04 16:08:41 +02001498 *
Manuel Pégourié-Gonnard6b298e62014-11-20 18:28:50 +01001499 * Enable support for RFC 7301 Application Layer Protocol Negotiation.
Manuel Pégourié-Gonnard7e250d42014-04-04 16:08:41 +02001500 *
Paul Bakker27e36d32014-04-08 12:33:37 +02001501 * Comment this macro to disable support for ALPN.
Manuel Pégourié-Gonnard7e250d42014-04-04 16:08:41 +02001502 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001503#define MBEDTLS_SSL_ALPN
Manuel Pégourié-Gonnard7e250d42014-04-04 16:08:41 +02001504
1505/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001506 * \def MBEDTLS_SSL_DTLS_ANTI_REPLAY
Manuel Pégourié-Gonnard8464a462014-09-24 14:05:32 +02001507 *
1508 * Enable support for the anti-replay mechanism in DTLS.
1509 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001510 * Requires: MBEDTLS_SSL_TLS_C
1511 * MBEDTLS_SSL_PROTO_DTLS
Manuel Pégourié-Gonnard8464a462014-09-24 14:05:32 +02001512 *
Manuel Pégourié-Gonnarda6fcffe2014-10-13 18:15:52 +02001513 * \warning Disabling this is often a security risk!
Manuel Pégourié-Gonnard6729e792015-05-11 09:50:24 +02001514 * See mbedtls_ssl_conf_dtls_anti_replay() for details.
Manuel Pégourié-Gonnarda6fcffe2014-10-13 18:15:52 +02001515 *
Manuel Pégourié-Gonnard8464a462014-09-24 14:05:32 +02001516 * Comment this to disable anti-replay in DTLS.
1517 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001518#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
Manuel Pégourié-Gonnard8464a462014-09-24 14:05:32 +02001519
1520/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001521 * \def MBEDTLS_SSL_DTLS_HELLO_VERIFY
Manuel Pégourié-Gonnard82202f02014-07-23 00:28:58 +02001522 *
1523 * Enable support for HelloVerifyRequest on DTLS servers.
1524 *
1525 * This feature is highly recommended to prevent DTLS servers being used as
1526 * amplifiers in DoS attacks against other hosts. It should always be enabled
1527 * unless you know for sure amplification cannot be a problem in the
1528 * environment in which your server operates.
1529 *
Manuel Pégourié-Gonnarda6fcffe2014-10-13 18:15:52 +02001530 * \warning Disabling this can ba a security risk! (see above)
1531 *
Manuel Pégourié-Gonnarde057d3b2015-05-20 10:59:43 +02001532 * Requires: MBEDTLS_SSL_PROTO_DTLS
Manuel Pégourié-Gonnard82202f02014-07-23 00:28:58 +02001533 *
1534 * Comment this to disable support for HelloVerifyRequest.
1535 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001536#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
Manuel Pégourié-Gonnard82202f02014-07-23 00:28:58 +02001537
1538/**
Johan Pascalb62bb512015-12-03 21:56:45 +01001539 * \def MBEDTLS_SSL_DTLS_SRTP
1540 *
Tobias Nießen1e8ca122021-05-10 19:53:15 +02001541 * Enable support for negotiation of DTLS-SRTP (RFC 5764)
Johan Pascal842d6712020-09-23 13:34:40 +02001542 * through the use_srtp extension.
1543 *
1544 * \note This feature provides the minimum functionality required
1545 * to negotiate the use of DTLS-SRTP and to allow the derivation of
1546 * the associated SRTP packet protection key material.
1547 * In particular, the SRTP packet protection itself, as well as the
1548 * demultiplexing of RTP and DTLS packets at the datagram layer
1549 * (see Section 5 of RFC 5764), are not handled by this feature.
1550 * Instead, after successful completion of a handshake negotiating
1551 * the use of DTLS-SRTP, the extended key exporter API
1552 * mbedtls_ssl_conf_export_keys_ext_cb() should be used to implement
1553 * the key exporter described in Section 4.2 of RFC 5764 and RFC 5705
1554 * (this is implemented in the SSL example programs).
1555 * The resulting key should then be passed to an SRTP stack.
1556 *
1557 * Setting this option enables the runtime API
1558 * mbedtls_ssl_conf_dtls_srtp_protection_profiles()
1559 * through which the supported DTLS-SRTP protection
1560 * profiles can be configured. You must call this API at
1561 * runtime if you wish to negotiate the use of DTLS-SRTP.
Johan Pascalb62bb512015-12-03 21:56:45 +01001562 *
1563 * Requires: MBEDTLS_SSL_PROTO_DTLS
1564 *
Ron Eldor9cfb5eb2018-12-10 15:30:14 +02001565 * Uncomment this to enable support for use_srtp extension.
Johan Pascalb62bb512015-12-03 21:56:45 +01001566 */
Ron Eldor9cfb5eb2018-12-10 15:30:14 +02001567//#define MBEDTLS_SSL_DTLS_SRTP
Johan Pascalb62bb512015-12-03 21:56:45 +01001568
1569/**
Manuel Pégourié-Gonnard26d227d2015-09-04 10:53:25 +02001570 * \def MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1571 *
1572 * Enable server-side support for clients that reconnect from the same port.
1573 *
1574 * Some clients unexpectedly close the connection and try to reconnect using the
1575 * same source port. This needs special support from the server to handle the
Simon Butcher4f6882a2015-09-11 17:12:46 +01001576 * new connection securely, as described in section 4.2.8 of RFC 6347. This
Manuel Pégourié-Gonnard26d227d2015-09-04 10:53:25 +02001577 * flag enables that support.
1578 *
Manuel Pégourié-Gonnard62c74bb2015-09-08 17:50:29 +02001579 * Requires: MBEDTLS_SSL_DTLS_HELLO_VERIFY
Manuel Pégourié-Gonnard62c74bb2015-09-08 17:50:29 +02001580 *
Manuel Pégourié-Gonnard26d227d2015-09-04 10:53:25 +02001581 * Comment this to disable support for clients reusing the source port.
1582 */
1583#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1584
1585/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001586 * \def MBEDTLS_SSL_SESSION_TICKETS
Paul Bakkera503a632013-08-14 13:48:06 +02001587 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001588 * Enable support for RFC 5077 session tickets in SSL.
Antonin Décimo36e89b52019-01-23 15:24:37 +01001589 * Client-side, provides full support for session tickets (maintenance of a
Manuel Pégourié-Gonnard0c0f11f2015-05-20 09:55:50 +02001590 * session store remains the responsibility of the application, though).
1591 * Server-side, you also need to provide callbacks for writing and parsing
1592 * tickets, including authenticated encryption and key management. Example
1593 * callbacks are provided by MBEDTLS_SSL_TICKET_C.
Paul Bakkera503a632013-08-14 13:48:06 +02001594 *
1595 * Comment this macro to disable support for SSL session tickets
1596 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001597#define MBEDTLS_SSL_SESSION_TICKETS
Paul Bakkera503a632013-08-14 13:48:06 +02001598
1599/**
Robert Cragie4feb7ae2015-10-02 13:33:37 +01001600 * \def MBEDTLS_SSL_EXPORT_KEYS
1601 *
Manuel Pégourié-Gonnard024b6df2015-10-19 13:52:53 +02001602 * Enable support for exporting key block and master secret.
Robert Cragie4feb7ae2015-10-02 13:33:37 +01001603 * This is required for certain users of TLS, e.g. EAP-TLS.
1604 *
1605 * Comment this macro to disable support for key export
1606 */
1607#define MBEDTLS_SSL_EXPORT_KEYS
1608
1609/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001610 * \def MBEDTLS_SSL_SERVER_NAME_INDICATION
Paul Bakker0be444a2013-08-27 21:55:01 +02001611 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001612 * Enable support for RFC 6066 server name indication (SNI) in SSL.
Paul Bakker0be444a2013-08-27 21:55:01 +02001613 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001614 * Requires: MBEDTLS_X509_CRT_PARSE_C
Manuel Pégourié-Gonnardbbbb3cf2015-01-28 16:44:37 +00001615 *
Paul Bakker0be444a2013-08-27 21:55:01 +02001616 * Comment this macro to disable support for server name indication in SSL
1617 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001618#define MBEDTLS_SSL_SERVER_NAME_INDICATION
Paul Bakker0be444a2013-08-27 21:55:01 +02001619
1620/**
Gilles Peskinef03bd812020-03-23 18:13:58 +01001621 * \def MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1622 *
Andrzej Kurek2a54a6f2021-01-07 08:13:49 -05001623 * When this option is enabled, the SSL buffer will be resized automatically
1624 * based on the negotiated maximum fragment length in each direction.
Andrzej Kurek557289b2020-10-21 15:12:39 +02001625 *
1626 * Requires: MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Gilles Peskinef03bd812020-03-23 18:13:58 +01001627 */
1628//#define MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1629
1630/**
Manuel Pégourié-Gonnard6240def2020-07-10 09:35:54 +02001631 * \def MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
1632 *
1633 * Enable testing of the constant-flow nature of some sensitive functions with
1634 * clang's MemorySanitizer. This causes some existing tests to also test
Manuel Pégourié-Gonnarddd00bfc2020-08-24 12:58:36 +02001635 * this non-functional property of the code under test.
Manuel Pégourié-Gonnard6240def2020-07-10 09:35:54 +02001636 *
Manuel Pégourié-Gonnarddd00bfc2020-08-24 12:58:36 +02001637 * This setting requires compiling with clang -fsanitize=memory. The test
1638 * suites can then be run normally.
Manuel Pégourié-Gonnard6240def2020-07-10 09:35:54 +02001639 *
Manuel Pégourié-Gonnard8ff863b2020-07-31 12:59:34 +02001640 * \warning This macro is only used for extended testing; it is not considered
1641 * part of the library's API, so it may change or disappear at any time.
1642 *
Manuel Pégourié-Gonnard390fb4f2020-07-24 11:08:40 +02001643 * Uncomment to enable testing of the constant-flow nature of selected code.
Manuel Pégourié-Gonnard6240def2020-07-10 09:35:54 +02001644 */
1645//#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
1646
1647/**
Manuel Pégourié-Gonnard73afa372020-08-19 10:27:38 +02001648 * \def MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
1649 *
1650 * Enable testing of the constant-flow nature of some sensitive functions with
1651 * valgrind's memcheck tool. This causes some existing tests to also test
Manuel Pégourié-Gonnarddd00bfc2020-08-24 12:58:36 +02001652 * this non-functional property of the code under test.
Manuel Pégourié-Gonnard73afa372020-08-19 10:27:38 +02001653 *
1654 * This setting requires valgrind headers for building, and is only useful for
Manuel Pégourié-Gonnarddd00bfc2020-08-24 12:58:36 +02001655 * testing if the tests suites are run with valgrind's memcheck. This can be
1656 * done for an individual test suite with 'valgrind ./test_suite_xxx', or when
1657 * using CMake, this can be done for all test suites with 'make memcheck'.
Manuel Pégourié-Gonnard73afa372020-08-19 10:27:38 +02001658 *
1659 * \warning This macro is only used for extended testing; it is not considered
1660 * part of the library's API, so it may change or disappear at any time.
1661 *
1662 * Uncomment to enable testing of the constant-flow nature of selected code.
1663 */
1664//#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
1665
1666/**
Gilles Peskinefea6eaf2019-09-11 13:27:48 +02001667 * \def MBEDTLS_TEST_HOOKS
1668 *
1669 * Enable features for invasive testing such as introspection functions and
1670 * hooks for fault injection. This enables additional unit tests.
1671 *
1672 * Merely enabling this feature should not change the behavior of the product.
1673 * It only adds new code, and new branching points where the default behavior
1674 * is the same as when this feature is disabled.
1675 * However, this feature increases the attack surface: there is an added
1676 * risk of vulnerabilities, and more gadgets that can make exploits easier.
1677 * Therefore this feature must never be enabled in production.
1678 *
1679 * See `docs/architecture/testing/mbed-crypto-invasive-testing.md` for more
1680 * information.
1681 *
1682 * Uncomment to enable invasive tests.
1683 */
1684//#define MBEDTLS_TEST_HOOKS
1685
1686/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001687 * \def MBEDTLS_THREADING_ALT
Paul Bakker2466d932013-09-28 14:40:38 +02001688 *
1689 * Provide your own alternate threading implementation.
1690 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001691 * Requires: MBEDTLS_THREADING_C
Paul Bakker2466d932013-09-28 14:40:38 +02001692 *
1693 * Uncomment this to allow your own alternate threading implementation.
Paul Bakker2466d932013-09-28 14:40:38 +02001694 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001695//#define MBEDTLS_THREADING_ALT
Paul Bakker2466d932013-09-28 14:40:38 +02001696
1697/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001698 * \def MBEDTLS_THREADING_PTHREAD
Paul Bakker2466d932013-09-28 14:40:38 +02001699 *
1700 * Enable the pthread wrapper layer for the threading layer.
1701 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001702 * Requires: MBEDTLS_THREADING_C
Paul Bakker2466d932013-09-28 14:40:38 +02001703 *
1704 * Uncomment this to enable pthread mutexes.
Paul Bakker2466d932013-09-28 14:40:38 +02001705 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001706//#define MBEDTLS_THREADING_PTHREAD
Paul Bakker2466d932013-09-28 14:40:38 +02001707
1708/**
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001709 * \def MBEDTLS_USE_PSA_CRYPTO
1710 *
Manuel Pégourié-Gonnard971dea32019-02-01 12:38:40 +01001711 * Make the X.509 and TLS library use PSA for cryptographic operations, and
1712 * enable new APIs for using keys handled by PSA Crypto.
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001713 *
Jaeden Amero8dd16902019-07-22 16:39:49 +01001714 * \note Development of this option is currently in progress, and parts of Mbed
1715 * TLS's X.509 and TLS modules are not ported to PSA yet. However, these parts
Andrzej Kurekd65b11d2019-04-16 04:20:24 -04001716 * will still continue to work as usual, so enabling this option should not
1717 * break backwards compatibility.
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001718 *
Gilles Peskined3d02902020-03-04 21:35:27 +01001719 * \warning The PSA Crypto API is in beta stage. While you're welcome to
1720 * experiment using it, incompatible API changes are still possible, and some
1721 * parts may not have reached the same quality as the rest of Mbed TLS yet.
Manuel Pégourié-Gonnard971dea32019-02-01 12:38:40 +01001722 *
1723 * \warning This option enables new Mbed TLS APIs that are dependent on the
1724 * PSA Crypto API, so can't come with the same stability guarantees as the
1725 * rest of the Mbed TLS APIs. You're welcome to experiment with them, but for
Andrzej Kurekd3deb1d2019-04-16 04:14:48 -04001726 * now, access to these APIs is opt-in (via enabling the present option), in
Manuel Pégourié-Gonnard971dea32019-02-01 12:38:40 +01001727 * order to clearly differentiate them from the stable Mbed TLS APIs.
Hanno Becker51560b62018-11-19 09:46:26 +00001728 *
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001729 * Requires: MBEDTLS_PSA_CRYPTO_C.
Manuel Pégourié-Gonnard971dea32019-02-01 12:38:40 +01001730 *
Andrzej Kurekd3deb1d2019-04-16 04:14:48 -04001731 * Uncomment this to enable internal use of PSA Crypto and new associated APIs.
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001732 */
1733//#define MBEDTLS_USE_PSA_CRYPTO
1734
1735/**
John Durkop6e33dbe2020-09-17 21:15:13 -07001736 * \def MBEDTLS_PSA_CRYPTO_CONFIG
1737 *
John Durkop185764f2020-10-12 21:32:12 -07001738 * This setting allows support for cryptographic mechanisms through the PSA
1739 * API to be configured separately from support through the mbedtls API.
John Durkop6e33dbe2020-09-17 21:15:13 -07001740 *
John Durkop185764f2020-10-12 21:32:12 -07001741 * Uncomment this to enable use of PSA Crypto configuration settings which
Gilles Peskine58858b72020-11-09 15:26:09 +01001742 * can be found in include/psa/crypto_config.h.
1743 *
1744 * If you enable this option and write your own configuration file, you must
1745 * include mbedtls/config_psa.h in your configuration file. The default
1746 * provided mbedtls/config.h contains the necessary inclusion.
John Durkop185764f2020-10-12 21:32:12 -07001747 *
1748 * This feature is still experimental and is not ready for production since
1749 * it is not completed.
John Durkop6e33dbe2020-09-17 21:15:13 -07001750 */
1751//#define MBEDTLS_PSA_CRYPTO_CONFIG
1752
1753/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001754 * \def MBEDTLS_VERSION_FEATURES
Paul Bakker0f90d7d2014-04-30 11:49:44 +02001755 *
1756 * Allow run-time checking of compile-time enabled features. Thus allowing users
1757 * to check at run-time if the library is for instance compiled with threading
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001758 * support via mbedtls_version_check_feature().
Paul Bakker0f90d7d2014-04-30 11:49:44 +02001759 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001760 * Requires: MBEDTLS_VERSION_C
Paul Bakker0f90d7d2014-04-30 11:49:44 +02001761 *
1762 * Comment this to disable run-time checking and save ROM space
1763 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001764#define MBEDTLS_VERSION_FEATURES
Paul Bakker0f90d7d2014-04-30 11:49:44 +02001765
1766/**
Hanno Becker288dedc2019-03-27 11:00:53 +00001767 * \def MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
1768 *
Jarno Lamsaf49fedc2019-04-01 14:58:30 +03001769 * If set, this enables the X.509 API `mbedtls_x509_crt_verify_with_ca_cb()`
Hanno Becker288dedc2019-03-27 11:00:53 +00001770 * and the SSL API `mbedtls_ssl_conf_ca_cb()` which allow users to configure
1771 * the set of trusted certificates through a callback instead of a linked
1772 * list.
1773 *
1774 * This is useful for example in environments where a large number of trusted
1775 * certificates is present and storing them in a linked list isn't efficient
1776 * enough, or when the set of trusted certificates changes frequently.
1777 *
Jarno Lamsaf49fedc2019-04-01 14:58:30 +03001778 * See the documentation of `mbedtls_x509_crt_verify_with_ca_cb()` and
Hanno Becker288dedc2019-03-27 11:00:53 +00001779 * `mbedtls_ssl_conf_ca_cb()` for more information.
1780 *
1781 * Uncomment to enable trusted certificate callbacks.
1782 */
1783//#define MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
1784
1785/**
Hanno Becker612a2f12020-10-09 09:19:39 +01001786 * \def MBEDTLS_X509_REMOVE_INFO
Peter Kolbus9a969b62018-12-11 13:55:56 -06001787 *
Chris Jones2c745862020-12-16 11:41:06 +00001788 * Disable mbedtls_x509_*_info() and related APIs.
Peter Kolbus9a969b62018-12-11 13:55:56 -06001789 *
Chris Jones2c745862020-12-16 11:41:06 +00001790 * Uncomment to omit mbedtls_x509_*_info(), as well as mbedtls_debug_print_crt()
Peter Kolbus9a969b62018-12-11 13:55:56 -06001791 * and other functions/constants only used by these functions, thus reducing
1792 * the code footprint by several KB.
1793 */
Chris Jones2c745862020-12-16 11:41:06 +00001794//#define MBEDTLS_X509_REMOVE_INFO
Peter Kolbus9a969b62018-12-11 13:55:56 -06001795
1796/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001797 * \def MBEDTLS_X509_RSASSA_PSS_SUPPORT
Manuel Pégourié-Gonnardd1539b12014-06-06 16:42:37 +02001798 *
1799 * Enable parsing and verification of X.509 certificates, CRLs and CSRS
1800 * signed with RSASSA-PSS (aka PKCS#1 v2.1).
1801 *
1802 * Comment this macro to disallow using RSASSA-PSS in certificates.
1803 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001804#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00001805/* \} name SECTION: mbed TLS feature support */
Paul Bakker0a62cd12011-01-21 11:00:08 +00001806
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001807/**
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00001808 * \name SECTION: mbed TLS modules
Paul Bakker0a62cd12011-01-21 11:00:08 +00001809 *
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00001810 * This section enables or disables entire modules in mbed TLS
Paul Bakker0a62cd12011-01-21 11:00:08 +00001811 * \{
1812 */
Paul Bakker5121ce52009-01-03 21:22:43 +00001813
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001814/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001815 * \def MBEDTLS_AESNI_C
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01001816 *
1817 * Enable AES-NI support on x86-64.
1818 *
1819 * Module: library/aesni.c
1820 * Caller: library/aes.c
1821 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001822 * Requires: MBEDTLS_HAVE_ASM
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01001823 *
1824 * This modules adds support for the AES-NI instructions on x86-64
1825 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001826#define MBEDTLS_AESNI_C
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01001827
1828/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001829 * \def MBEDTLS_AES_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001830 *
1831 * Enable the AES block cipher.
1832 *
Paul Bakker5121ce52009-01-03 21:22:43 +00001833 * Module: library/aes.c
Manuel Pégourié-Gonnardfdd43542018-02-28 10:49:02 +01001834 * Caller: library/cipher.c
Paul Bakker96743fc2011-02-12 14:30:57 +00001835 * library/pem.c
Paul Bakker6083fd22011-12-03 21:45:14 +00001836 * library/ctr_drbg.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001837 *
Paul Bakker645ce3a2012-10-31 12:32:41 +00001838 * This module enables the following ciphersuites (if other requisites are
1839 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001840 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
1841 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
1842 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
1843 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
1844 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
1845 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
1846 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
1847 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
1848 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
1849 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
1850 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
1851 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
1852 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
1853 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
1854 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
1855 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
1856 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
1857 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
1858 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
1859 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
1860 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
1861 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
1862 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
1863 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
1864 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
1865 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
1866 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
1867 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
1868 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
1869 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
1870 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384
1871 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384
1872 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384
1873 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA
1874 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA
1875 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
1876 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256
1877 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
1878 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA
1879 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA
1880 * MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384
1881 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256
1882 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA
1883 * MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256
1884 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256
1885 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA
1886 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384
1887 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384
1888 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA
1889 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256
1890 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256
1891 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA
1892 * MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384
1893 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384
1894 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA
1895 * MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256
1896 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256
1897 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA
Paul Bakker6deb37e2013-02-19 13:17:08 +01001898 *
Paul Bakkercff68422013-09-15 20:43:33 +02001899 * PEM_PARSE uses AES for decrypting encrypted keys.
Paul Bakker5121ce52009-01-03 21:22:43 +00001900 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001901#define MBEDTLS_AES_C
Paul Bakker5121ce52009-01-03 21:22:43 +00001902
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001903/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001904 * \def MBEDTLS_ASN1_PARSE_C
Paul Bakkerefc30292011-11-10 14:43:23 +00001905 *
1906 * Enable the generic ASN1 parser.
1907 *
1908 * Module: library/asn1.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02001909 * Caller: library/x509.c
1910 * library/dhm.c
1911 * library/pkcs12.c
1912 * library/pkcs5.c
1913 * library/pkparse.c
Paul Bakkerefc30292011-11-10 14:43:23 +00001914 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001915#define MBEDTLS_ASN1_PARSE_C
Paul Bakkerefc30292011-11-10 14:43:23 +00001916
1917/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001918 * \def MBEDTLS_ASN1_WRITE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00001919 *
1920 * Enable the generic ASN1 writer.
1921 *
1922 * Module: library/asn1write.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02001923 * Caller: library/ecdsa.c
1924 * library/pkwrite.c
1925 * library/x509_create.c
1926 * library/x509write_crt.c
Simon Butcher2cb47392016-11-04 12:23:11 +00001927 * library/x509write_csr.c
Paul Bakkerbdb912d2012-02-13 23:11:30 +00001928 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001929#define MBEDTLS_ASN1_WRITE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00001930
1931/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001932 * \def MBEDTLS_BASE64_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001933 *
1934 * Enable the Base64 module.
1935 *
Paul Bakker5121ce52009-01-03 21:22:43 +00001936 * Module: library/base64.c
Paul Bakker5690efc2011-05-26 13:16:06 +00001937 * Caller: library/pem.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001938 *
Paul Bakker5690efc2011-05-26 13:16:06 +00001939 * This module is required for PEM support (required by X.509).
Paul Bakker5121ce52009-01-03 21:22:43 +00001940 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001941#define MBEDTLS_BASE64_C
Paul Bakker5121ce52009-01-03 21:22:43 +00001942
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001943/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001944 * \def MBEDTLS_BIGNUM_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001945 *
Paul Bakker9a736322012-11-14 12:39:52 +00001946 * Enable the multi-precision integer library.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001947 *
Paul Bakker5121ce52009-01-03 21:22:43 +00001948 * Module: library/bignum.c
1949 * Caller: library/dhm.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02001950 * library/ecp.c
Manuel Pégourié-Gonnardbf319772014-06-25 13:00:17 +02001951 * library/ecdsa.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001952 * library/rsa.c
Chris Jones3848e312021-03-11 16:17:59 +00001953 * library/rsa_alt_helpers.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001954 * library/ssl_tls.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001955 *
Manuel Pégourié-Gonnardbf319772014-06-25 13:00:17 +02001956 * This module is required for RSA, DHM and ECC (ECDH, ECDSA) support.
Paul Bakker5121ce52009-01-03 21:22:43 +00001957 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001958#define MBEDTLS_BIGNUM_C
Paul Bakker5121ce52009-01-03 21:22:43 +00001959
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001960/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001961 * \def MBEDTLS_CAMELLIA_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001962 *
1963 * Enable the Camellia block cipher.
1964 *
Paul Bakker38119b12009-01-10 23:31:23 +00001965 * Module: library/camellia.c
Manuel Pégourié-Gonnardfdd43542018-02-28 10:49:02 +01001966 * Caller: library/cipher.c
Paul Bakker38119b12009-01-10 23:31:23 +00001967 *
Paul Bakker645ce3a2012-10-31 12:32:41 +00001968 * This module enables the following ciphersuites (if other requisites are
1969 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001970 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
1971 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
1972 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
1973 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
1974 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
1975 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
1976 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
1977 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
1978 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
1979 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
1980 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
1981 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
1982 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
1983 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
1984 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
1985 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
1986 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
1987 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
1988 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
1989 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
1990 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
1991 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
1992 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384
1993 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
1994 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
1995 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256
1996 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
1997 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
1998 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384
1999 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
2000 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
2001 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256
2002 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
2003 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
2004 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384
2005 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384
2006 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256
2007 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256
2008 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384
2009 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384
2010 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256
2011 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256
Paul Bakker38119b12009-01-10 23:31:23 +00002012 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002013#define MBEDTLS_CAMELLIA_C
Paul Bakker38119b12009-01-10 23:31:23 +00002014
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002015/**
Markku-Juhani O. Saarinen3c0b53b2017-11-30 16:00:34 +00002016 * \def MBEDTLS_ARIA_C
2017 *
Manuel Pégourié-Gonnard525168c2018-02-28 10:47:02 +01002018 * Enable the ARIA block cipher.
Markku-Juhani O. Saarinen3c0b53b2017-11-30 16:00:34 +00002019 *
2020 * Module: library/aria.c
Manuel Pégourié-Gonnard525168c2018-02-28 10:47:02 +01002021 * Caller: library/cipher.c
2022 *
2023 * This module enables the following ciphersuites (if other requisites are
2024 * enabled as well):
2025 *
2026 * MBEDTLS_TLS_RSA_WITH_ARIA_128_CBC_SHA256
2027 * MBEDTLS_TLS_RSA_WITH_ARIA_256_CBC_SHA384
2028 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256
2029 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384
2030 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256
2031 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384
2032 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256
2033 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384
2034 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256
2035 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384
2036 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256
2037 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384
2038 * MBEDTLS_TLS_RSA_WITH_ARIA_128_GCM_SHA256
2039 * MBEDTLS_TLS_RSA_WITH_ARIA_256_GCM_SHA384
2040 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256
2041 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384
2042 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256
2043 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384
2044 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256
2045 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384
2046 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
2047 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
2048 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256
2049 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384
2050 * MBEDTLS_TLS_PSK_WITH_ARIA_128_CBC_SHA256
2051 * MBEDTLS_TLS_PSK_WITH_ARIA_256_CBC_SHA384
2052 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256
2053 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384
2054 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256
2055 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384
2056 * MBEDTLS_TLS_PSK_WITH_ARIA_128_GCM_SHA256
2057 * MBEDTLS_TLS_PSK_WITH_ARIA_256_GCM_SHA384
2058 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256
2059 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384
2060 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256
2061 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384
2062 * MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256
2063 * MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384
Markku-Juhani O. Saarinen3c0b53b2017-11-30 16:00:34 +00002064 */
TRodziewicz85aff9f2021-04-23 10:47:26 +02002065#define MBEDTLS_ARIA_C
Markku-Juhani O. Saarinen3c0b53b2017-11-30 16:00:34 +00002066
2067/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002068 * \def MBEDTLS_CCM_C
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +02002069 *
2070 * Enable the Counter with CBC-MAC (CCM) mode for 128-bit block cipher.
2071 *
2072 * Module: library/ccm.c
2073 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002074 * Requires: MBEDTLS_AES_C or MBEDTLS_CAMELLIA_C
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +02002075 *
2076 * This module enables the AES-CCM ciphersuites, if other requisites are
2077 * enabled as well.
2078 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002079#define MBEDTLS_CCM_C
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +02002080
2081/**
Daniel King34b822c2016-05-15 17:28:08 -03002082 * \def MBEDTLS_CHACHA20_C
2083 *
2084 * Enable the ChaCha20 stream cipher.
2085 *
2086 * Module: library/chacha20.c
2087 */
2088#define MBEDTLS_CHACHA20_C
2089
2090/**
Manuel Pégourié-Gonnarde533b222018-06-04 12:23:19 +02002091 * \def MBEDTLS_CHACHAPOLY_C
2092 *
2093 * Enable the ChaCha20-Poly1305 AEAD algorithm.
2094 *
2095 * Module: library/chachapoly.c
2096 *
2097 * This module requires: MBEDTLS_CHACHA20_C, MBEDTLS_POLY1305_C
2098 */
2099#define MBEDTLS_CHACHAPOLY_C
2100
2101/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002102 * \def MBEDTLS_CIPHER_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002103 *
2104 * Enable the generic cipher layer.
2105 *
Paul Bakker8123e9d2011-01-06 15:37:30 +00002106 * Module: library/cipher.c
Paul Bakker04784f52013-08-19 13:30:57 +02002107 * Caller: library/ssl_tls.c
Paul Bakker8123e9d2011-01-06 15:37:30 +00002108 *
2109 * Uncomment to enable generic cipher wrappers.
2110 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002111#define MBEDTLS_CIPHER_C
Paul Bakker8123e9d2011-01-06 15:37:30 +00002112
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002113/**
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002114 * \def MBEDTLS_CMAC_C
2115 *
Simon Butcher327398a2016-10-05 14:09:11 +01002116 * Enable the CMAC (Cipher-based Message Authentication Code) mode for block
2117 * ciphers.
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002118 *
Steven Cooremanc338cef2021-04-26 11:24:44 +02002119 * \note When #MBEDTLS_CMAC_ALT is active, meaning that the underlying
2120 * implementation of the CMAC algorithm is provided by an alternate
2121 * implementation, that alternate implementation may opt to not support
2122 * AES-192 or 3DES as underlying block ciphers for the CMAC operation.
2123 *
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002124 * Module: library/cmac.c
2125 *
Simon Butcher69283e52016-10-06 12:49:58 +01002126 * Requires: MBEDTLS_AES_C or MBEDTLS_DES_C
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002127 *
2128 */
TRodziewicz85aff9f2021-04-23 10:47:26 +02002129#define MBEDTLS_CMAC_C
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002130
2131/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002132 * \def MBEDTLS_CTR_DRBG_C
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002133 *
Nir Sonnenscheince266e42018-08-29 10:11:46 +03002134 * Enable the CTR_DRBG AES-based random generator.
2135 * The CTR_DRBG generator uses AES-256 by default.
Gilles Peskine1540e5b2019-10-03 14:21:14 +02002136 * To use AES-128 instead, enable \c MBEDTLS_CTR_DRBG_USE_128_BIT_KEY above.
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002137 *
Gilles Peskine7e279362019-10-03 14:21:39 +02002138 * \note To achieve a 256-bit security strength with CTR_DRBG,
2139 * you must use AES-256 *and* use sufficient entropy.
2140 * See ctr_drbg.h for more details.
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002141 *
2142 * Module: library/ctr_drbg.c
2143 * Caller:
2144 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002145 * Requires: MBEDTLS_AES_C
Paul Bakker6083fd22011-12-03 21:45:14 +00002146 *
Nir Sonnenschein521e8a92018-09-03 14:10:52 +03002147 * This module provides the CTR_DRBG AES random number generator.
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002148 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002149#define MBEDTLS_CTR_DRBG_C
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002150
2151/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002152 * \def MBEDTLS_DEBUG_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002153 *
2154 * Enable the debug functions.
2155 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002156 * Module: library/debug.c
2157 * Caller: library/ssl_cli.c
2158 * library/ssl_srv.c
2159 * library/ssl_tls.c
2160 *
2161 * This module provides debugging functions.
2162 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002163#define MBEDTLS_DEBUG_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002164
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002165/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002166 * \def MBEDTLS_DES_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002167 *
2168 * Enable the DES block cipher.
2169 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002170 * Module: library/des.c
Paul Bakker6deb37e2013-02-19 13:17:08 +01002171 * Caller: library/pem.c
Manuel Pégourié-Gonnardfdd43542018-02-28 10:49:02 +01002172 * library/cipher.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002173 *
Paul Bakkercff68422013-09-15 20:43:33 +02002174 * PEM_PARSE uses DES/3DES for decrypting encrypted keys.
Hanno Beckerbbca8c52017-09-25 14:53:51 +01002175 *
2176 * \warning DES is considered a weak cipher and its use constitutes a
2177 * security risk. We recommend considering stronger ciphers instead.
Paul Bakker5121ce52009-01-03 21:22:43 +00002178 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002179#define MBEDTLS_DES_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002180
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002181/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002182 * \def MBEDTLS_DHM_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002183 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002184 * Enable the Diffie-Hellman-Merkle module.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002185 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002186 * Module: library/dhm.c
2187 * Caller: library/ssl_cli.c
2188 * library/ssl_srv.c
2189 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002190 * This module is used by the following key exchanges:
2191 * DHE-RSA, DHE-PSK
Hanno Beckera2f6b722017-09-28 10:33:29 +01002192 *
Hanno Beckerf9734b32017-10-03 12:09:22 +01002193 * \warning Using DHE constitutes a security risk as it
2194 * is not possible to validate custom DH parameters.
2195 * If possible, it is recommended users should consider
2196 * preferring other methods of key exchange.
2197 * See dhm.h for more details.
Hanno Beckera2f6b722017-09-28 10:33:29 +01002198 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002199 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002200#define MBEDTLS_DHM_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002201
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002202/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002203 * \def MBEDTLS_ECDH_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002204 *
2205 * Enable the elliptic curve Diffie-Hellman library.
2206 *
2207 * Module: library/ecdh.c
Paul Bakker41c83d32013-03-20 14:39:14 +01002208 * Caller: library/ssl_cli.c
2209 * library/ssl_srv.c
2210 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002211 * This module is used by the following key exchanges:
2212 * ECDHE-ECDSA, ECDHE-RSA, DHE-PSK
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002213 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002214 * Requires: MBEDTLS_ECP_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002215 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002216#define MBEDTLS_ECDH_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002217
2218/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002219 * \def MBEDTLS_ECDSA_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002220 *
2221 * Enable the elliptic curve DSA library.
2222 *
2223 * Module: library/ecdsa.c
2224 * Caller:
2225 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002226 * This module is used by the following key exchanges:
2227 * ECDHE-ECDSA
2228 *
Gilles Peskine799e5762018-09-14 17:34:00 +02002229 * Requires: MBEDTLS_ECP_C, MBEDTLS_ASN1_WRITE_C, MBEDTLS_ASN1_PARSE_C,
2230 * and at least one MBEDTLS_ECP_DP_XXX_ENABLED for a
2231 * short Weierstrass curve.
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002232 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002233#define MBEDTLS_ECDSA_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002234
2235/**
Manuel Pégourié-Gonnard4d8685b2015-08-05 15:44:42 +02002236 * \def MBEDTLS_ECJPAKE_C
2237 *
2238 * Enable the elliptic curve J-PAKE library.
2239 *
Tomasz Rodziewicz532ca932021-05-07 11:01:24 +02002240 * \note EC J-PAKE support is based on the Thread v1.0.0 specification.
2241 * It has not been reviewed for compliance with newer standards such as
Tomasz Rodziewicz1fc7c4c2021-05-07 10:13:31 +02002242 * Thread v1.1 or RFC 8236.
Manuel Pégourié-Gonnard75df9022015-09-16 23:21:01 +02002243 *
Manuel Pégourié-Gonnard4d8685b2015-08-05 15:44:42 +02002244 * Module: library/ecjpake.c
2245 * Caller:
2246 *
2247 * This module is used by the following key exchanges:
2248 * ECJPAKE
2249 *
2250 * Requires: MBEDTLS_ECP_C, MBEDTLS_MD_C
2251 */
Tomasz Rodziewiczb1336052021-04-22 15:14:17 +02002252#define MBEDTLS_ECJPAKE_C
Manuel Pégourié-Gonnard4d8685b2015-08-05 15:44:42 +02002253
2254/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002255 * \def MBEDTLS_ECP_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002256 *
2257 * Enable the elliptic curve over GF(p) library.
2258 *
2259 * Module: library/ecp.c
2260 * Caller: library/ecdh.c
2261 * library/ecdsa.c
Manuel Pégourié-Gonnard4d8685b2015-08-05 15:44:42 +02002262 * library/ecjpake.c
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002263 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002264 * Requires: MBEDTLS_BIGNUM_C and at least one MBEDTLS_ECP_DP_XXX_ENABLED
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002265 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002266#define MBEDTLS_ECP_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002267
2268/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002269 * \def MBEDTLS_ENTROPY_C
Paul Bakker6083fd22011-12-03 21:45:14 +00002270 *
2271 * Enable the platform-specific entropy code.
2272 *
2273 * Module: library/entropy.c
2274 * Caller:
2275 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002276 * Requires: MBEDTLS_SHA512_C or MBEDTLS_SHA256_C
Paul Bakker6083fd22011-12-03 21:45:14 +00002277 *
2278 * This module provides a generic entropy pool
2279 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002280#define MBEDTLS_ENTROPY_C
Paul Bakker6083fd22011-12-03 21:45:14 +00002281
2282/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002283 * \def MBEDTLS_ERROR_C
Paul Bakker9d781402011-05-09 16:17:09 +00002284 *
2285 * Enable error code to error string conversion.
2286 *
2287 * Module: library/error.c
2288 * Caller:
2289 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002290 * This module enables mbedtls_strerror().
Paul Bakker9d781402011-05-09 16:17:09 +00002291 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002292#define MBEDTLS_ERROR_C
Paul Bakker9d781402011-05-09 16:17:09 +00002293
2294/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002295 * \def MBEDTLS_GCM_C
Paul Bakker89e80c92012-03-20 13:50:09 +00002296 *
Jaeden Amero7accf442019-04-10 18:13:57 +01002297 * Enable the Galois/Counter Mode (GCM).
Paul Bakker89e80c92012-03-20 13:50:09 +00002298 *
2299 * Module: library/gcm.c
2300 *
Jaeden Amero651ae682019-04-10 18:19:16 +01002301 * Requires: MBEDTLS_AES_C or MBEDTLS_CAMELLIA_C or MBEDTLS_ARIA_C
Paul Bakker645ce3a2012-10-31 12:32:41 +00002302 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002303 * This module enables the AES-GCM and CAMELLIA-GCM ciphersuites, if other
2304 * requisites are enabled as well.
Paul Bakker89e80c92012-03-20 13:50:09 +00002305 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002306#define MBEDTLS_GCM_C
Paul Bakker89e80c92012-03-20 13:50:09 +00002307
2308/**
Thomas Fossati656864b2016-07-17 08:51:22 +01002309 * \def MBEDTLS_HKDF_C
2310 *
2311 * Enable the HKDF algorithm (RFC 5869).
2312 *
2313 * Module: library/hkdf.c
2314 * Caller:
2315 *
2316 * Requires: MBEDTLS_MD_C
2317 *
2318 * This module adds support for the Hashed Message Authentication Code
2319 * (HMAC)-based key derivation function (HKDF).
2320 */
2321#define MBEDTLS_HKDF_C
2322
2323/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002324 * \def MBEDTLS_HMAC_DRBG_C
Manuel Pégourié-Gonnard490bdf32014-01-27 14:03:10 +01002325 *
2326 * Enable the HMAC_DRBG random generator.
2327 *
2328 * Module: library/hmac_drbg.c
2329 * Caller:
2330 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002331 * Requires: MBEDTLS_MD_C
Manuel Pégourié-Gonnard490bdf32014-01-27 14:03:10 +01002332 *
2333 * Uncomment to enable the HMAC_DRBG random number geerator.
2334 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002335#define MBEDTLS_HMAC_DRBG_C
Manuel Pégourié-Gonnard490bdf32014-01-27 14:03:10 +01002336
2337/**
Ron Eldor466a57f2018-05-03 16:54:28 +03002338 * \def MBEDTLS_NIST_KW_C
2339 *
2340 * Enable the Key Wrapping mode for 128-bit block ciphers,
2341 * as defined in NIST SP 800-38F. Only KW and KWP modes
2342 * are supported. At the moment, only AES is approved by NIST.
2343 *
2344 * Module: library/nist_kw.c
2345 *
2346 * Requires: MBEDTLS_AES_C and MBEDTLS_CIPHER_C
2347 */
TRodziewicz85aff9f2021-04-23 10:47:26 +02002348#define MBEDTLS_NIST_KW_C
Ron Eldor466a57f2018-05-03 16:54:28 +03002349
2350/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002351 * \def MBEDTLS_MD_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002352 *
2353 * Enable the generic message digest layer.
2354 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002355 * Module: library/md.c
Paul Bakker17373852011-01-06 14:20:01 +00002356 * Caller:
2357 *
2358 * Uncomment to enable generic message digest wrappers.
2359 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002360#define MBEDTLS_MD_C
Paul Bakker17373852011-01-06 14:20:01 +00002361
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002362/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002363 * \def MBEDTLS_MD5_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002364 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002365 * Enable the MD5 hash algorithm.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002366 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002367 * Module: library/md5.c
2368 * Caller: library/md.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002369 * library/pem.c
Paul Bakker6deb37e2013-02-19 13:17:08 +01002370 * library/ssl_tls.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002371 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02002372 * This module is required for TLS 1.2 depending on the handshake parameters.
2373 * Further, it is used for checking MD5-signed certificates, and for PBKDF1
2374 * when decrypting PEM-encoded encrypted keys.
Hanno Beckerbbca8c52017-09-25 14:53:51 +01002375 *
2376 * \warning MD5 is considered a weak message digest and its use constitutes a
2377 * security risk. If possible, we recommend avoiding dependencies on
2378 * it, and considering stronger message digests instead.
2379 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002380 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002381#define MBEDTLS_MD5_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002382
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002383/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002384 * \def MBEDTLS_MEMORY_BUFFER_ALLOC_C
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002385 *
2386 * Enable the buffer allocator implementation that makes use of a (stack)
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +02002387 * based buffer to 'allocate' dynamic memory. (replaces calloc() and free()
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002388 * calls)
Paul Bakker6e339b52013-07-03 13:37:05 +02002389 *
2390 * Module: library/memory_buffer_alloc.c
2391 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002392 * Requires: MBEDTLS_PLATFORM_C
2393 * MBEDTLS_PLATFORM_MEMORY (to use it within mbed TLS)
Paul Bakker6e339b52013-07-03 13:37:05 +02002394 *
2395 * Enable this module to enable the buffer memory allocator.
Paul Bakker6e339b52013-07-03 13:37:05 +02002396 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002397//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
Paul Bakker6e339b52013-07-03 13:37:05 +02002398
2399/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002400 * \def MBEDTLS_NET_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002401 *
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002402 * Enable the TCP and UDP over IPv6/IPv4 networking routines.
2403 *
Simon Butcherd567a232016-03-09 20:19:21 +00002404 * \note This module only works on POSIX/Unix (including Linux, BSD and OS X)
2405 * and Windows. For other platforms, you'll want to disable it, and write your
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002406 * own networking callbacks to be passed to \c mbedtls_ssl_set_bio().
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002407 *
Manuel Pégourié-Gonnard02049dc2016-02-22 16:42:51 +00002408 * \note See also our Knowledge Base article about porting to a new
2409 * environment:
2410 * https://tls.mbed.org/kb/how-to/how-do-i-port-mbed-tls-to-a-new-environment-OS
2411 *
Andres AG788aa4a2016-09-14 14:32:09 +01002412 * Module: library/net_sockets.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002413 *
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002414 * This module provides networking routines.
Paul Bakker5121ce52009-01-03 21:22:43 +00002415 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002416#define MBEDTLS_NET_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002417
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002418/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002419 * \def MBEDTLS_OID_C
Paul Bakkerc70b9822013-04-07 22:00:46 +02002420 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002421 * Enable the OID database.
Paul Bakkerc70b9822013-04-07 22:00:46 +02002422 *
2423 * Module: library/oid.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002424 * Caller: library/asn1write.c
2425 * library/pkcs5.c
2426 * library/pkparse.c
2427 * library/pkwrite.c
2428 * library/rsa.c
2429 * library/x509.c
2430 * library/x509_create.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002431 * library/x509_crl.c
2432 * library/x509_crt.c
2433 * library/x509_csr.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002434 * library/x509write_crt.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002435 * library/x509write_csr.c
Paul Bakkerc70b9822013-04-07 22:00:46 +02002436 *
2437 * This modules translates between OIDs and internal values.
2438 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002439#define MBEDTLS_OID_C
Paul Bakkerc70b9822013-04-07 22:00:46 +02002440
2441/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002442 * \def MBEDTLS_PADLOCK_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002443 *
2444 * Enable VIA Padlock support on x86.
2445 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002446 * Module: library/padlock.c
2447 * Caller: library/aes.c
2448 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002449 * Requires: MBEDTLS_HAVE_ASM
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01002450 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002451 * This modules adds support for the VIA PadLock on x86.
2452 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002453#define MBEDTLS_PADLOCK_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002454
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002455/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002456 * \def MBEDTLS_PEM_PARSE_C
Paul Bakker96743fc2011-02-12 14:30:57 +00002457 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002458 * Enable PEM decoding / parsing.
Paul Bakker96743fc2011-02-12 14:30:57 +00002459 *
2460 * Module: library/pem.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002461 * Caller: library/dhm.c
Paul Bakkercff68422013-09-15 20:43:33 +02002462 * library/pkparse.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002463 * library/x509_crl.c
2464 * library/x509_crt.c
2465 * library/x509_csr.c
Paul Bakker96743fc2011-02-12 14:30:57 +00002466 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002467 * Requires: MBEDTLS_BASE64_C
Paul Bakker5690efc2011-05-26 13:16:06 +00002468 *
Paul Bakkercff68422013-09-15 20:43:33 +02002469 * This modules adds support for decoding / parsing PEM files.
Paul Bakker96743fc2011-02-12 14:30:57 +00002470 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002471#define MBEDTLS_PEM_PARSE_C
Paul Bakkercff68422013-09-15 20:43:33 +02002472
2473/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002474 * \def MBEDTLS_PEM_WRITE_C
Paul Bakkercff68422013-09-15 20:43:33 +02002475 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002476 * Enable PEM encoding / writing.
Paul Bakkercff68422013-09-15 20:43:33 +02002477 *
2478 * Module: library/pem.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002479 * Caller: library/pkwrite.c
2480 * library/x509write_crt.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002481 * library/x509write_csr.c
Paul Bakkercff68422013-09-15 20:43:33 +02002482 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002483 * Requires: MBEDTLS_BASE64_C
Paul Bakkercff68422013-09-15 20:43:33 +02002484 *
2485 * This modules adds support for encoding / writing PEM files.
2486 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002487#define MBEDTLS_PEM_WRITE_C
Paul Bakker96743fc2011-02-12 14:30:57 +00002488
2489/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002490 * \def MBEDTLS_PK_C
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +02002491 *
2492 * Enable the generic public (asymetric) key layer.
2493 *
2494 * Module: library/pk.c
Manuel Pégourié-Gonnard1a483832013-09-20 12:29:15 +02002495 * Caller: library/ssl_tls.c
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +02002496 * library/ssl_cli.c
2497 * library/ssl_srv.c
2498 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002499 * Requires: MBEDTLS_RSA_C or MBEDTLS_ECP_C
Manuel Pégourié-Gonnard1a483832013-09-20 12:29:15 +02002500 *
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +02002501 * Uncomment to enable generic public key wrappers.
2502 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002503#define MBEDTLS_PK_C
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +02002504
2505/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002506 * \def MBEDTLS_PK_PARSE_C
Paul Bakker4606c732013-09-15 17:04:23 +02002507 *
2508 * Enable the generic public (asymetric) key parser.
2509 *
2510 * Module: library/pkparse.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002511 * Caller: library/x509_crt.c
2512 * library/x509_csr.c
Paul Bakker4606c732013-09-15 17:04:23 +02002513 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002514 * Requires: MBEDTLS_PK_C
Paul Bakker4606c732013-09-15 17:04:23 +02002515 *
2516 * Uncomment to enable generic public key parse functions.
2517 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002518#define MBEDTLS_PK_PARSE_C
Paul Bakker4606c732013-09-15 17:04:23 +02002519
2520/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002521 * \def MBEDTLS_PK_WRITE_C
Paul Bakker4606c732013-09-15 17:04:23 +02002522 *
Paul Bakkerf20ba4b2013-09-16 22:46:20 +02002523 * Enable the generic public (asymetric) key writer.
Paul Bakker4606c732013-09-15 17:04:23 +02002524 *
2525 * Module: library/pkwrite.c
2526 * Caller: library/x509write.c
2527 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002528 * Requires: MBEDTLS_PK_C
Paul Bakker4606c732013-09-15 17:04:23 +02002529 *
2530 * Uncomment to enable generic public key write functions.
2531 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002532#define MBEDTLS_PK_WRITE_C
Paul Bakker4606c732013-09-15 17:04:23 +02002533
2534/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002535 * \def MBEDTLS_PKCS5_C
Paul Bakkerb0c19a42013-06-24 19:26:38 +02002536 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002537 * Enable PKCS#5 functions.
Paul Bakkerb0c19a42013-06-24 19:26:38 +02002538 *
2539 * Module: library/pkcs5.c
2540 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002541 * Requires: MBEDTLS_MD_C
Paul Bakkerb0c19a42013-06-24 19:26:38 +02002542 *
2543 * This module adds support for the PKCS#5 functions.
2544 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002545#define MBEDTLS_PKCS5_C
Paul Bakkerb0c19a42013-06-24 19:26:38 +02002546
2547/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002548 * \def MBEDTLS_PKCS12_C
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002549 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002550 * Enable PKCS#12 PBE functions.
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002551 * Adds algorithms for parsing PKCS#8 encrypted private keys
2552 *
2553 * Module: library/pkcs12.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002554 * Caller: library/pkparse.c
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002555 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002556 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_CIPHER_C, MBEDTLS_MD_C
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002557 *
2558 * This module enables PKCS#12 functions.
2559 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002560#define MBEDTLS_PKCS12_C
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002561
2562/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002563 * \def MBEDTLS_PLATFORM_C
Paul Bakker747a83a2014-02-01 22:50:07 +01002564 *
2565 * Enable the platform abstraction layer that allows you to re-assign
Manuel Pégourié-Gonnard6c0c8e02015-06-22 10:23:34 +02002566 * functions like calloc(), free(), snprintf(), printf(), fprintf(), exit().
Paul Bakker747a83a2014-02-01 22:50:07 +01002567 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002568 * Enabling MBEDTLS_PLATFORM_C enables to use of MBEDTLS_PLATFORM_XXX_ALT
2569 * or MBEDTLS_PLATFORM_XXX_MACRO directives, allowing the functions mentioned
Rich Evans16f8cd82015-02-06 16:14:34 +00002570 * above to be specified at runtime or compile time respectively.
Paul Bakker747a83a2014-02-01 22:50:07 +01002571 *
Manuel Pégourié-Gonnard6c0c8e02015-06-22 10:23:34 +02002572 * \note This abstraction layer must be enabled on Windows (including MSYS2)
2573 * as other module rely on it for a fixed snprintf implementation.
2574 *
Paul Bakker747a83a2014-02-01 22:50:07 +01002575 * Module: library/platform.c
2576 * Caller: Most other .c files
2577 *
2578 * This module enables abstraction of common (libc) functions.
2579 */
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +02002580#define MBEDTLS_PLATFORM_C
Paul Bakker747a83a2014-02-01 22:50:07 +01002581
2582/**
Daniel Kingadc32c02016-05-16 18:25:45 -03002583 * \def MBEDTLS_POLY1305_C
2584 *
2585 * Enable the Poly1305 MAC algorithm.
2586 *
2587 * Module: library/poly1305.c
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +02002588 * Caller: library/chachapoly.c
Daniel Kingadc32c02016-05-16 18:25:45 -03002589 */
2590#define MBEDTLS_POLY1305_C
2591
2592/**
Jaeden Amero484ee332018-10-25 17:38:05 +01002593 * \def MBEDTLS_PSA_CRYPTO_C
2594 *
2595 * Enable the Platform Security Architecture cryptography API.
2596 *
Manuel Pégourié-Gonnardde7636e2019-02-01 12:33:29 +01002597 * \warning The PSA Crypto API is still beta status. While you're welcome to
2598 * experiment using it, incompatible API changes are still possible, and some
2599 * parts may not have reached the same quality as the rest of Mbed TLS yet.
Jaeden Amero484ee332018-10-25 17:38:05 +01002600 *
Gilles Peskinee59236f2018-01-27 23:32:46 +01002601 * Module: library/psa_crypto.c
Jaeden Amero484ee332018-10-25 17:38:05 +01002602 *
Gilles Peskinef08b3f82020-11-13 17:36:48 +01002603 * Requires: either MBEDTLS_CTR_DRBG_C and MBEDTLS_ENTROPY_C,
Gilles Peskine82e57d12020-11-13 21:31:17 +01002604 * or MBEDTLS_HMAC_DRBG_C and MBEDTLS_ENTROPY_C,
Gilles Peskinef08b3f82020-11-13 17:36:48 +01002605 * or MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG.
Jaeden Amero484ee332018-10-25 17:38:05 +01002606 *
2607 */
Manuel Pégourié-Gonnardde7636e2019-02-01 12:33:29 +01002608#define MBEDTLS_PSA_CRYPTO_C
Jaeden Amero484ee332018-10-25 17:38:05 +01002609
2610/**
Gilles Peskinea8ade162019-06-26 11:24:49 +02002611 * \def MBEDTLS_PSA_CRYPTO_SE_C
2612 *
2613 * Enable secure element support in the Platform Security Architecture
2614 * cryptography API.
2615 *
Gilles Peskined0e66b02019-07-24 13:52:51 +02002616 * \warning This feature is not yet suitable for production. It is provided
2617 * for API evaluation and testing purposes only.
2618 *
Gilles Peskinea8ade162019-06-26 11:24:49 +02002619 * Module: library/psa_crypto_se.c
2620 *
2621 * Requires: MBEDTLS_PSA_CRYPTO_C, MBEDTLS_PSA_CRYPTO_STORAGE_C
2622 *
2623 */
Gilles Peskined0e66b02019-07-24 13:52:51 +02002624//#define MBEDTLS_PSA_CRYPTO_SE_C
Gilles Peskinea8ade162019-06-26 11:24:49 +02002625
2626/**
Andrzej Kurekc6905232019-02-05 05:23:41 -05002627 * \def MBEDTLS_PSA_CRYPTO_STORAGE_C
2628 *
2629 * Enable the Platform Security Architecture persistent key storage.
2630 *
Darryl Greendb2b8db2018-06-15 13:06:04 +01002631 * Module: library/psa_crypto_storage.c
Andrzej Kurekc6905232019-02-05 05:23:41 -05002632 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00002633 * Requires: MBEDTLS_PSA_CRYPTO_C,
2634 * either MBEDTLS_PSA_ITS_FILE_C or a native implementation of
2635 * the PSA ITS interface
Andrzej Kurekc6905232019-02-05 05:23:41 -05002636 */
Darryl Greendb2b8db2018-06-15 13:06:04 +01002637#define MBEDTLS_PSA_CRYPTO_STORAGE_C
Andrzej Kurekc6905232019-02-05 05:23:41 -05002638
2639/**
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00002640 * \def MBEDTLS_PSA_ITS_FILE_C
Andrzej Kurekc6905232019-02-05 05:23:41 -05002641 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00002642 * Enable the emulation of the Platform Security Architecture
2643 * Internal Trusted Storage (PSA ITS) over files.
Andrzej Kurekc6905232019-02-05 05:23:41 -05002644 *
Gilles Peskine6194dc22018-11-16 22:24:15 +01002645 * Module: library/psa_its_file.c
Andrzej Kurekc6905232019-02-05 05:23:41 -05002646 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00002647 * Requires: MBEDTLS_FS_IO
Andrzej Kurekc6905232019-02-05 05:23:41 -05002648 */
Gilles Peskine6194dc22018-11-16 22:24:15 +01002649#define MBEDTLS_PSA_ITS_FILE_C
Andrzej Kurekc6905232019-02-05 05:23:41 -05002650
2651/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002652 * \def MBEDTLS_RIPEMD160_C
Manuel Pégourié-Gonnardcab4a882014-01-17 12:42:35 +01002653 *
2654 * Enable the RIPEMD-160 hash algorithm.
2655 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002656 * Module: library/ripemd160.c
2657 * Caller: library/md.c
Manuel Pégourié-Gonnardcab4a882014-01-17 12:42:35 +01002658 *
2659 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002660#define MBEDTLS_RIPEMD160_C
Manuel Pégourié-Gonnardcab4a882014-01-17 12:42:35 +01002661
2662/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002663 * \def MBEDTLS_RSA_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002664 *
2665 * Enable the RSA public-key cryptosystem.
2666 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002667 * Module: library/rsa.c
Chris Jones3848e312021-03-11 16:17:59 +00002668 * library/rsa_alt_helpers.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002669 * Caller: library/ssl_cli.c
2670 * library/ssl_srv.c
2671 * library/ssl_tls.c
2672 * library/x509.c
2673 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002674 * This module is used by the following key exchanges:
2675 * RSA, DHE-RSA, ECDHE-RSA, RSA-PSK
Paul Bakker5690efc2011-05-26 13:16:06 +00002676 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002677 * Requires: MBEDTLS_BIGNUM_C, MBEDTLS_OID_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002678 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002679#define MBEDTLS_RSA_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002680
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002681/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002682 * \def MBEDTLS_SHA1_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002683 *
2684 * Enable the SHA1 cryptographic hash algorithm.
2685 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002686 * Module: library/sha1.c
2687 * Caller: library/md.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002688 * library/ssl_cli.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002689 * library/ssl_srv.c
2690 * library/ssl_tls.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002691 * library/x509write_crt.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002692 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02002693 * This module is required for TLS 1.2 depending on the handshake parameters,
2694 * and for SHA1-signed certificates.
Hanno Beckerbbca8c52017-09-25 14:53:51 +01002695 *
2696 * \warning SHA-1 is considered a weak message digest and its use constitutes
2697 * a security risk. If possible, we recommend avoiding dependencies
2698 * on it, and considering stronger message digests instead.
2699 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002700 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002701#define MBEDTLS_SHA1_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002702
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002703/**
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002704 * \def MBEDTLS_SHA224_C
2705 *
2706 * Enable the SHA-224 cryptographic hash algorithm.
2707 *
Mateusz Starzyk9d2d6c92021-05-18 15:54:20 +02002708 * Requires: MBEDTLS_SHA256_C. The library does not currently support enabling
Mateusz Starzykc722ebb2021-05-11 10:05:45 +02002709 * SHA-224 without SHA-256.
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002710 *
2711 * Module: library/sha256.c
2712 * Caller: library/md.c
2713 * library/ssl_cookie.c
2714 *
2715 * This module adds support for SHA-224.
2716 */
2717#define MBEDTLS_SHA224_C
2718
2719/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002720 * \def MBEDTLS_SHA256_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002721 *
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002722 * Enable the SHA-256 cryptographic hash algorithm.
2723 *
Mateusz Starzyk9d2d6c92021-05-18 15:54:20 +02002724 * Requires: MBEDTLS_SHA224_C. The library does not currently support enabling
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002725 * SHA-256 without SHA-224.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002726 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002727 * Module: library/sha256.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002728 * Caller: library/entropy.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002729 * library/md.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002730 * library/ssl_cli.c
2731 * library/ssl_srv.c
2732 * library/ssl_tls.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002733 *
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002734 * This module adds support for SHA-256.
Paul Bakker769075d2012-11-24 11:26:46 +01002735 * This module is required for the SSL/TLS 1.2 PRF function.
Paul Bakker5121ce52009-01-03 21:22:43 +00002736 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002737#define MBEDTLS_SHA256_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002738
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002739/**
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002740 * \def MBEDTLS_SHA384_C
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002741 *
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002742 * Enable the SHA-384 cryptographic hash algorithm.
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002743 *
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002744 * Requires: MBEDTLS_SHA512_C
2745 *
2746 * Module: library/sha512.c
2747 * Caller: library/md.c
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002748 * library/ssl_cli.c
2749 * library/ssl_srv.c
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002750 *
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002751 * Comment to disable SHA-384
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002752 */
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002753#define MBEDTLS_SHA384_C
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002754
2755/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002756 * \def MBEDTLS_SHA512_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002757 *
Mateusz Starzyk3352a532021-04-06 14:28:22 +02002758 * Enable SHA-512 cryptographic hash algorithms.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002759 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002760 * Module: library/sha512.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002761 * Caller: library/entropy.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002762 * library/md.c
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002763 * library/ssl_tls.c
2764 * library/ssl_cookie.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002765 *
Mateusz Starzyk3352a532021-04-06 14:28:22 +02002766 * This module adds support for SHA-512.
Paul Bakker5121ce52009-01-03 21:22:43 +00002767 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002768#define MBEDTLS_SHA512_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002769
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002770/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002771 * \def MBEDTLS_SSL_CACHE_C
Paul Bakker0a597072012-09-25 21:55:46 +00002772 *
2773 * Enable simple SSL cache implementation.
2774 *
2775 * Module: library/ssl_cache.c
2776 * Caller:
2777 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002778 * Requires: MBEDTLS_SSL_CACHE_C
Paul Bakker0a597072012-09-25 21:55:46 +00002779 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002780#define MBEDTLS_SSL_CACHE_C
Paul Bakker0a597072012-09-25 21:55:46 +00002781
2782/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002783 * \def MBEDTLS_SSL_COOKIE_C
Manuel Pégourié-Gonnarda64acd42014-07-23 18:30:45 +02002784 *
2785 * Enable basic implementation of DTLS cookies for hello verification.
2786 *
2787 * Module: library/ssl_cookie.c
2788 * Caller:
Manuel Pégourié-Gonnarda64acd42014-07-23 18:30:45 +02002789 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002790#define MBEDTLS_SSL_COOKIE_C
Manuel Pégourié-Gonnarda64acd42014-07-23 18:30:45 +02002791
2792/**
Manuel Pégourié-Gonnardfd6d8972015-05-15 12:09:00 +02002793 * \def MBEDTLS_SSL_TICKET_C
2794 *
2795 * Enable an implementation of TLS server-side callbacks for session tickets.
2796 *
2797 * Module: library/ssl_ticket.c
2798 * Caller:
Manuel Pégourié-Gonnard0c0f11f2015-05-20 09:55:50 +02002799 *
Manuel Pégourié-Gonnard4214e3a2015-05-25 19:34:49 +02002800 * Requires: MBEDTLS_CIPHER_C
Manuel Pégourié-Gonnardfd6d8972015-05-15 12:09:00 +02002801 */
2802#define MBEDTLS_SSL_TICKET_C
2803
2804/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002805 * \def MBEDTLS_SSL_CLI_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002806 *
2807 * Enable the SSL/TLS client code.
2808 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002809 * Module: library/ssl_cli.c
2810 * Caller:
2811 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002812 * Requires: MBEDTLS_SSL_TLS_C
Paul Bakker5690efc2011-05-26 13:16:06 +00002813 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002814 * This module is required for SSL/TLS client support.
2815 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002816#define MBEDTLS_SSL_CLI_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002817
Paul Bakker9a736322012-11-14 12:39:52 +00002818/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002819 * \def MBEDTLS_SSL_SRV_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002820 *
2821 * Enable the SSL/TLS server code.
2822 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002823 * Module: library/ssl_srv.c
2824 * Caller:
2825 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002826 * Requires: MBEDTLS_SSL_TLS_C
Paul Bakker5690efc2011-05-26 13:16:06 +00002827 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002828 * This module is required for SSL/TLS server support.
2829 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002830#define MBEDTLS_SSL_SRV_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002831
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002832/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002833 * \def MBEDTLS_SSL_TLS_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002834 *
Paul Bakkere29ab062011-05-18 13:26:54 +00002835 * Enable the generic SSL/TLS code.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002836 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002837 * Module: library/ssl_tls.c
2838 * Caller: library/ssl_cli.c
2839 * library/ssl_srv.c
2840 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002841 * Requires: MBEDTLS_CIPHER_C, MBEDTLS_MD_C
2842 * and at least one of the MBEDTLS_SSL_PROTO_XXX defines
Paul Bakker5690efc2011-05-26 13:16:06 +00002843 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002844 * This module is required for SSL/TLS.
2845 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002846#define MBEDTLS_SSL_TLS_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002847
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002848/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002849 * \def MBEDTLS_THREADING_C
Paul Bakker2466d932013-09-28 14:40:38 +02002850 *
2851 * Enable the threading abstraction layer.
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00002852 * By default mbed TLS assumes it is used in a non-threaded environment or that
Paul Bakker2466d932013-09-28 14:40:38 +02002853 * contexts are not shared between threads. If you do intend to use contexts
2854 * between threads, you will need to enable this layer to prevent race
Manuel Pégourié-Gonnard02049dc2016-02-22 16:42:51 +00002855 * conditions. See also our Knowledge Base article about threading:
2856 * https://tls.mbed.org/kb/development/thread-safety-and-multi-threading
Paul Bakker2466d932013-09-28 14:40:38 +02002857 *
2858 * Module: library/threading.c
2859 *
2860 * This allows different threading implementations (self-implemented or
2861 * provided).
2862 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002863 * You will have to enable either MBEDTLS_THREADING_ALT or
2864 * MBEDTLS_THREADING_PTHREAD.
Paul Bakker2466d932013-09-28 14:40:38 +02002865 *
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00002866 * Enable this layer to allow use of mutexes within mbed TLS
Paul Bakker2466d932013-09-28 14:40:38 +02002867 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002868//#define MBEDTLS_THREADING_C
Paul Bakker2466d932013-09-28 14:40:38 +02002869
2870/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002871 * \def MBEDTLS_TIMING_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002872 *
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002873 * Enable the semi-portable timing interface.
2874 *
Simon Butcherd567a232016-03-09 20:19:21 +00002875 * \note The provided implementation only works on POSIX/Unix (including Linux,
2876 * BSD and OS X) and Windows. On other platforms, you can either disable that
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002877 * module and provide your own implementations of the callbacks needed by
2878 * \c mbedtls_ssl_set_timer_cb() for DTLS, or leave it enabled and provide
2879 * your own implementation of the whole module by setting
2880 * \c MBEDTLS_TIMING_ALT in the current file.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002881 *
Manuel Pégourié-Gonnard02049dc2016-02-22 16:42:51 +00002882 * \note See also our Knowledge Base article about porting to a new
2883 * environment:
2884 * https://tls.mbed.org/kb/how-to/how-do-i-port-mbed-tls-to-a-new-environment-OS
2885 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002886 * Module: library/timing.c
Paul Bakkerecd54fb2013-07-03 14:48:29 +02002887 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002888#define MBEDTLS_TIMING_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002889
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002890/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002891 * \def MBEDTLS_VERSION_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002892 *
2893 * Enable run-time version information.
2894 *
Paul Bakker0a62cd12011-01-21 11:00:08 +00002895 * Module: library/version.c
2896 *
2897 * This module provides run-time version information.
2898 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002899#define MBEDTLS_VERSION_C
Paul Bakker0a62cd12011-01-21 11:00:08 +00002900
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002901/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002902 * \def MBEDTLS_X509_USE_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002903 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002904 * Enable X.509 core for using certificates.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002905 *
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002906 * Module: library/x509.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002907 * Caller: library/x509_crl.c
2908 * library/x509_crt.c
2909 * library/x509_csr.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002910 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002911 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_BIGNUM_C, MBEDTLS_OID_C,
2912 * MBEDTLS_PK_PARSE_C
Paul Bakker5690efc2011-05-26 13:16:06 +00002913 *
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002914 * This module is required for the X.509 parsing modules.
Paul Bakker5121ce52009-01-03 21:22:43 +00002915 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002916#define MBEDTLS_X509_USE_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002917
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002918/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002919 * \def MBEDTLS_X509_CRT_PARSE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002920 *
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002921 * Enable X.509 certificate parsing.
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002922 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002923 * Module: library/x509_crt.c
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002924 * Caller: library/ssl_cli.c
2925 * library/ssl_srv.c
2926 * library/ssl_tls.c
2927 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002928 * Requires: MBEDTLS_X509_USE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002929 *
2930 * This module is required for X.509 certificate parsing.
2931 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002932#define MBEDTLS_X509_CRT_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002933
2934/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002935 * \def MBEDTLS_X509_CRL_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002936 *
2937 * Enable X.509 CRL parsing.
2938 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002939 * Module: library/x509_crl.c
2940 * Caller: library/x509_crt.c
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002941 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002942 * Requires: MBEDTLS_X509_USE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002943 *
2944 * This module is required for X.509 CRL parsing.
2945 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002946#define MBEDTLS_X509_CRL_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002947
2948/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002949 * \def MBEDTLS_X509_CSR_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002950 *
2951 * Enable X.509 Certificate Signing Request (CSR) parsing.
2952 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002953 * Module: library/x509_csr.c
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002954 * Caller: library/x509_crt_write.c
2955 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002956 * Requires: MBEDTLS_X509_USE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002957 *
2958 * This module is used for reading X.509 certificate request.
2959 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002960#define MBEDTLS_X509_CSR_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002961
2962/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002963 * \def MBEDTLS_X509_CREATE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002964 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002965 * Enable X.509 core for creating certificates.
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002966 *
2967 * Module: library/x509_create.c
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002968 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002969 * Requires: MBEDTLS_BIGNUM_C, MBEDTLS_OID_C, MBEDTLS_PK_WRITE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002970 *
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002971 * This module is the basis for creating X.509 certificates and CSRs.
2972 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002973#define MBEDTLS_X509_CREATE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002974
2975/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002976 * \def MBEDTLS_X509_CRT_WRITE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002977 *
2978 * Enable creating X.509 certificates.
2979 *
2980 * Module: library/x509_crt_write.c
2981 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002982 * Requires: MBEDTLS_X509_CREATE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002983 *
2984 * This module is required for X.509 certificate creation.
2985 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002986#define MBEDTLS_X509_CRT_WRITE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002987
2988/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002989 * \def MBEDTLS_X509_CSR_WRITE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002990 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002991 * Enable creating X.509 Certificate Signing Requests (CSR).
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002992 *
2993 * Module: library/x509_csr_write.c
2994 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002995 * Requires: MBEDTLS_X509_CREATE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002996 *
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002997 * This module is required for X.509 certificate request writing.
2998 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002999#define MBEDTLS_X509_CSR_WRITE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00003000
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00003001/* \} name SECTION: mbed TLS modules */
Paul Bakker7a7c78f2009-01-04 18:15:48 +00003002
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003003/**
3004 * \name SECTION: Module configuration options
3005 *
3006 * This section allows for the setting of module specific sizes and
3007 * configuration options. The default values are already present in the
3008 * relevant header files and should suffice for the regular use cases.
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003009 *
Paul Bakker088c5c52014-04-25 11:11:10 +02003010 * Our advice is to enable options and change their values here
3011 * only if you have a good reason and know the consequences.
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003012 *
3013 * Please check the respective header file for documentation on these
3014 * parameters (to prevent duplicate documentation).
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003015 * \{
3016 */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003017
Paul Bakker088c5c52014-04-25 11:11:10 +02003018/* MPI / BIGNUM options */
Daniel Otte4374dc42020-09-07 13:06:40 +02003019//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003020//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003021
Paul Bakker088c5c52014-04-25 11:11:10 +02003022/* CTR_DRBG options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003023//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3024//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3025//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3026//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3027//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003028
Paul Bakker088c5c52014-04-25 11:11:10 +02003029/* HMAC_DRBG options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003030//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3031//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3032//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3033//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003034
Paul Bakker088c5c52014-04-25 11:11:10 +02003035/* ECP options */
Gilles Peskine5752e592021-06-02 13:27:03 +02003036//#define MBEDTLS_ECP_WINDOW_SIZE 4 /**< Maximum window size used */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003037//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
Manuel Pégourié-Gonnard0520b602014-01-30 19:43:46 +01003038
Paul Bakker088c5c52014-04-25 11:11:10 +02003039/* Entropy options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003040//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3041//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
Andres AG7abc9742016-09-23 17:58:49 +01003042//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
Paul Bakkere1b665e2013-12-11 16:02:58 +01003043
Paul Bakker088c5c52014-04-25 11:11:10 +02003044/* Memory buffer allocator options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003045//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003046
Paul Bakker088c5c52014-04-25 11:11:10 +02003047/* Platform options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003048//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +02003049//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003050//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3051//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
Andres Amaya Garcia1e4ec662016-07-20 10:16:25 +01003052//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003053//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3054//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
Antonin Décimo36e89b52019-01-23 15:24:37 +01003055/* Note: your snprintf must correctly zero-terminate the buffer! */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003056//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
Janos Follath91947442016-03-18 13:49:27 +00003057//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3058//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
Paul Bakkercf0a9f92016-06-01 11:25:44 +01003059//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3060//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3061//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
Paul Bakker6e339b52013-07-03 13:37:05 +02003062
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003063/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3064/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +02003065//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003066//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3067//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
Andres Amaya Garcia1e4ec662016-07-20 10:16:25 +01003068//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3069//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003070//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3071//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
Antonin Décimo36e89b52019-01-23 15:24:37 +01003072/* Note: your snprintf must correctly zero-terminate the buffer! */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003073//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
k-stachowiak723f8672018-07-16 14:27:07 +02003074//#define MBEDTLS_PLATFORM_VSNPRINTF_MACRO vsnprintf /**< Default vsnprintf macro to use, can be undefined */
Paul Bakkercf0a9f92016-06-01 11:25:44 +01003075//#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3076//#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003077
Gilles Peskineed038902020-11-13 21:33:21 +01003078/* PSA options */
Gilles Peskine14c332b2020-11-14 12:26:53 +01003079/**
Gilles Peskineed038902020-11-13 21:33:21 +01003080 * Use HMAC_DRBG with the specified hash algorithm for HMAC_DRBG for the
3081 * PSA crypto subsystem.
3082 *
3083 * If this option is unset:
3084 * - If CTR_DRBG is available, the PSA subsystem uses it rather than HMAC_DRBG.
Gilles Peskineb0a748e2020-11-30 12:01:54 +01003085 * - Otherwise, the PSA subsystem uses HMAC_DRBG with either
Gilles Peskineed038902020-11-13 21:33:21 +01003086 * #MBEDTLS_MD_SHA512 or #MBEDTLS_MD_SHA256 based on availability and
3087 * on unspecified heuristics.
3088 */
3089//#define MBEDTLS_PSA_HMAC_DRBG_MD_TYPE MBEDTLS_MD_SHA256
3090
Steven Cooreman863470a2021-02-15 14:03:19 +01003091/** \def MBEDTLS_PSA_KEY_SLOT_COUNT
Steven Cooreman1f968fd2021-02-15 14:00:24 +01003092 * Restrict the PSA library to supporting a maximum amount of simultaneously
3093 * loaded keys. A loaded key is a key stored by the PSA Crypto core as a
3094 * volatile key, or a persistent key which is loaded temporarily by the
3095 * library as part of a crypto operation in flight.
3096 *
3097 * If this option is unset, the library will fall back to a default value of
3098 * 32 keys.
3099 */
Steven Cooreman863470a2021-02-15 14:03:19 +01003100//#define MBEDTLS_PSA_KEY_SLOT_COUNT 32
Steven Cooreman1f968fd2021-02-15 14:00:24 +01003101
Paul Bakker088c5c52014-04-25 11:11:10 +02003102/* SSL Cache options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003103//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3104//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003105
Paul Bakker088c5c52014-04-25 11:11:10 +02003106/* SSL options */
Angus Grattond8213d02016-05-25 20:56:48 +10003107
Angus Grattond8213d02016-05-25 20:56:48 +10003108/** \def MBEDTLS_SSL_IN_CONTENT_LEN
3109 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003110 * Maximum length (in bytes) of incoming plaintext fragments.
Angus Grattond8213d02016-05-25 20:56:48 +10003111 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003112 * This determines the size of the incoming TLS I/O buffer in such a way
3113 * that it is capable of holding the specified amount of plaintext data,
3114 * regardless of the protection mechanism used.
3115 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003116 * \note When using a value less than the default of 16KB on the client, it is
3117 * recommended to use the Maximum Fragment Length (MFL) extension to
3118 * inform the server about this limitation. On the server, there
3119 * is no supported, standardized way of informing the client about
3120 * restriction on the maximum size of incoming messages, and unless
3121 * the limitation has been communicated by other means, it is recommended
3122 * to only change the outgoing buffer size #MBEDTLS_SSL_OUT_CONTENT_LEN
3123 * while keeping the default value of 16KB for the incoming buffer.
3124 *
David Horstmann95d516f2021-05-04 18:36:56 +01003125 * Uncomment to set the maximum plaintext size of the incoming I/O buffer.
Angus Grattond8213d02016-05-25 20:56:48 +10003126 */
3127//#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3128
Gilles Peskined3d02902020-03-04 21:35:27 +01003129/** \def MBEDTLS_SSL_CID_IN_LEN_MAX
3130 *
3131 * The maximum length of CIDs used for incoming DTLS messages.
3132 *
3133 */
3134//#define MBEDTLS_SSL_CID_IN_LEN_MAX 32
3135
3136/** \def MBEDTLS_SSL_CID_OUT_LEN_MAX
3137 *
3138 * The maximum length of CIDs used for outgoing DTLS messages.
3139 *
3140 */
3141//#define MBEDTLS_SSL_CID_OUT_LEN_MAX 32
3142
TRodziewicze8dd7092021-05-12 14:19:11 +02003143/** \def MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY
Gilles Peskined3d02902020-03-04 21:35:27 +01003144 *
3145 * This option controls the use of record plaintext padding
TRodziewicz1e660ed2021-05-26 17:08:54 +02003146 * in TLS 1.3 and when using the Connection ID extension in DTLS 1.2.
Hanno Becker13996922020-05-28 16:15:19 +01003147 *
3148 * The padding will always be chosen so that the length of the
3149 * padded plaintext is a multiple of the value of this option.
3150 *
3151 * Note: A value of \c 1 means that no padding will be used
3152 * for outgoing records.
3153 *
3154 * Note: On systems lacking division instructions,
3155 * a power of two should be preferred.
3156 */
TRodziewicze8dd7092021-05-12 14:19:11 +02003157//#define MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY 16
Hanno Becker13996922020-05-28 16:15:19 +01003158
Angus Grattond8213d02016-05-25 20:56:48 +10003159/** \def MBEDTLS_SSL_OUT_CONTENT_LEN
3160 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003161 * Maximum length (in bytes) of outgoing plaintext fragments.
Angus Grattond8213d02016-05-25 20:56:48 +10003162 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003163 * This determines the size of the outgoing TLS I/O buffer in such a way
3164 * that it is capable of holding the specified amount of plaintext data,
3165 * regardless of the protection mechanism used.
3166 *
Angus Grattond8213d02016-05-25 20:56:48 +10003167 * It is possible to save RAM by setting a smaller outward buffer, while keeping
3168 * the default inward 16384 byte buffer to conform to the TLS specification.
3169 *
3170 * The minimum required outward buffer size is determined by the handshake
3171 * protocol's usage. Handshaking will fail if the outward buffer is too small.
3172 * The specific size requirement depends on the configured ciphers and any
3173 * certificate data which is sent during the handshake.
3174 *
David Horstmann95d516f2021-05-04 18:36:56 +01003175 * Uncomment to set the maximum plaintext size of the outgoing I/O buffer.
Angus Grattond8213d02016-05-25 20:56:48 +10003176 */
3177//#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3178
Hanno Beckere0b150f2018-08-21 15:51:03 +01003179/** \def MBEDTLS_SSL_DTLS_MAX_BUFFERING
3180 *
3181 * Maximum number of heap-allocated bytes for the purpose of
3182 * DTLS handshake message reassembly and future message buffering.
3183 *
Hanno Becker97a1c132018-08-28 14:42:15 +01003184 * This should be at least 9/8 * MBEDTLSSL_IN_CONTENT_LEN
Hanno Becker28007512018-08-28 09:46:44 +01003185 * to account for a reassembled handshake message of maximum size,
3186 * together with its reassembly bitmap.
3187 *
Hanno Becker97a1c132018-08-28 14:42:15 +01003188 * A value of 2 * MBEDTLS_SSL_IN_CONTENT_LEN (32768 by default)
Hanno Becker28007512018-08-28 09:46:44 +01003189 * should be sufficient for all practical situations as it allows
3190 * to reassembly a large handshake message (such as a certificate)
3191 * while buffering multiple smaller handshake messages.
3192 *
Hanno Beckere0b150f2018-08-21 15:51:03 +01003193 */
Hanno Becker159a37f2018-08-24 15:07:29 +01003194//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
Hanno Beckere0b150f2018-08-21 15:51:03 +01003195
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003196//#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3197//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003198
Manuel Pégourié-Gonnarddfc7df02014-06-30 17:59:55 +02003199/**
3200 * Complete list of ciphersuites to use, in order of preference.
3201 *
3202 * \warning No dependency checking is done on that field! This option can only
3203 * be used to restrict the set of available ciphersuites. It is your
3204 * responsibility to make sure the needed modules are active.
3205 *
3206 * Use this to save a few hundred bytes of ROM (default ordering of all
3207 * available ciphersuites) and a few to a few hundred bytes of RAM.
3208 *
3209 * The value below is only an example, not the default.
3210 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003211//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
Manuel Pégourié-Gonnarddfc7df02014-06-30 17:59:55 +02003212
Manuel Pégourié-Gonnardfd6c85c2014-11-20 16:34:20 +01003213/* X509 options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003214//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
Andres AGf9113192016-09-02 14:06:04 +01003215//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
Manuel Pégourié-Gonnardfd6c85c2014-11-20 16:34:20 +01003216
Gilles Peskine5e79cb32017-05-04 16:17:21 +02003217/**
Andres Amaya Garciab1262a32017-10-25 09:51:14 +01003218 * Uncomment the macro to let mbed TLS use your alternate implementation of
Andres Amaya Garciac58787f2018-04-17 10:21:45 -05003219 * mbedtls_platform_zeroize(). This replaces the default implementation in
3220 * platform_util.c.
Andres Amaya Garcia6606d5c2018-03-08 20:25:29 +00003221 *
Andres Amaya Garciac58787f2018-04-17 10:21:45 -05003222 * mbedtls_platform_zeroize() is a widely used function across the library to
3223 * zero a block of memory. The implementation is expected to be secure in the
3224 * sense that it has been written to prevent the compiler from removing calls
3225 * to mbedtls_platform_zeroize() as part of redundant code elimination
3226 * optimizations. However, it is difficult to guarantee that calls to
3227 * mbedtls_platform_zeroize() will not be optimized by the compiler as older
3228 * versions of the C language standards do not provide a secure implementation
3229 * of memset(). Therefore, MBEDTLS_PLATFORM_ZEROIZE_ALT enables users to
3230 * configure their own implementation of mbedtls_platform_zeroize(), for
Andres Amaya Garciad0ef4682018-04-24 08:31:34 -05003231 * example by using directives specific to their compiler, features from newer
3232 * C standards (e.g using memset_s() in C11) or calling a secure memset() from
Andres Amaya Garciac58787f2018-04-17 10:21:45 -05003233 * their system (e.g explicit_bzero() in BSD).
Andres Amaya Garciab1262a32017-10-25 09:51:14 +01003234 */
Andres Amaya Garciac58787f2018-04-17 10:21:45 -05003235//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
Andres Amaya Garciab1262a32017-10-25 09:51:14 +01003236
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003237/**
3238 * Uncomment the macro to let Mbed TLS use your alternate implementation of
Hanno Becker6a739782018-09-05 15:06:19 +01003239 * mbedtls_platform_gmtime_r(). This replaces the default implementation in
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003240 * platform_util.c.
3241 *
Hanno Becker921b76d2018-09-05 16:21:36 +01003242 * gmtime() is not a thread-safe function as defined in the C standard. The
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003243 * library will try to use safer implementations of this function, such as
3244 * gmtime_r() when available. However, if Mbed TLS cannot identify the target
Hanno Becker6a739782018-09-05 15:06:19 +01003245 * system, the implementation of mbedtls_platform_gmtime_r() will default to
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003246 * using the standard gmtime(). In this case, calls from the library to
3247 * gmtime() will be guarded by the global mutex mbedtls_threading_gmtime_mutex
Hanno Becker9fbbf1c2018-09-05 16:23:02 +01003248 * if MBEDTLS_THREADING_C is enabled. We recommend that calls from outside the
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003249 * library are also guarded with this mutex to avoid race conditions. However,
Hanno Becker6a739782018-09-05 15:06:19 +01003250 * if the macro MBEDTLS_PLATFORM_GMTIME_R_ALT is defined, Mbed TLS will
3251 * unconditionally use the implementation for mbedtls_platform_gmtime_r()
3252 * supplied at compile time.
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003253 */
Hanno Becker6a739782018-09-05 15:06:19 +01003254//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003255
Christoph M. Wintersteigere50b9702018-12-14 11:03:02 +00003256/**
Christoph M. Wintersteiger50d9f092019-02-15 12:49:27 +00003257 * Enable the verified implementations of ECDH primitives from Project Everest
3258 * (currently only Curve25519). This feature changes the layout of ECDH
3259 * contexts and therefore is a compatibility break for applications that access
3260 * fields of a mbedtls_ecdh_context structure directly. See also
3261 * MBEDTLS_ECDH_LEGACY_CONTEXT in include/mbedtls/ecdh.h.
Christoph M. Wintersteiger02b80482018-10-25 12:41:04 +01003262 */
Christoph M. Wintersteiger6cddd302019-01-17 12:17:54 +00003263//#define MBEDTLS_ECDH_VARIANT_EVEREST_ENABLED
Christoph M. Wintersteiger02b80482018-10-25 12:41:04 +01003264
Simon Butcher30b5f972016-06-08 19:00:23 +01003265/* \} name SECTION: Customisation configuration options */
Manuel Pégourié-Gonnard43569a92015-07-31 15:37:29 +02003266
Simon Butcher3ad2efd2018-05-02 14:49:38 +01003267/* Target and application specific configurations
3268 *
Manuel Pégourié-Gonnard32da9f62015-07-31 15:52:30 +02003269 * Allow user to override any previous default.
3270 *
Manuel Pégourié-Gonnard32da9f62015-07-31 15:52:30 +02003271 */
Simon Butcher3ad2efd2018-05-02 14:49:38 +01003272#if defined(MBEDTLS_USER_CONFIG_FILE)
Manuel Pégourié-Gonnard32da9f62015-07-31 15:52:30 +02003273#include MBEDTLS_USER_CONFIG_FILE
3274#endif
3275
Gilles Peskinea26b3e52020-11-09 15:19:32 +01003276#if defined(MBEDTLS_PSA_CRYPTO_CONFIG)
John Durkop6e33dbe2020-09-17 21:15:13 -07003277#include "mbedtls/config_psa.h"
Gilles Peskinea26b3e52020-11-09 15:19:32 +01003278#endif
John Durkop6e33dbe2020-09-17 21:15:13 -07003279
Jaeden Amero6609aef2019-07-04 20:01:14 +01003280#include "mbedtls/check_config.h"
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01003281
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003282#endif /* MBEDTLS_CONFIG_H */