mbed TLS v2.16.6
config.h
Go to the documentation of this file.
1 
10 /*
11  * Copyright (C) 2006-2018, ARM Limited, All Rights Reserved
12  * SPDX-License-Identifier: GPL-2.0
13  *
14  * This program is free software; you can redistribute it and/or modify
15  * it under the terms of the GNU General Public License as published by
16  * the Free Software Foundation; either version 2 of the License, or
17  * (at your option) any later version.
18  *
19  * This program is distributed in the hope that it will be useful,
20  * but WITHOUT ANY WARRANTY; without even the implied warranty of
21  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
22  * GNU General Public License for more details.
23  *
24  * You should have received a copy of the GNU General Public License along
25  * with this program; if not, write to the Free Software Foundation, Inc.,
26  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
27  *
28  * This file is part of mbed TLS (https://tls.mbed.org)
29  */
30 
31 #ifndef MBEDTLS_CONFIG_H
32 #define MBEDTLS_CONFIG_H
33 
34 #if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
35 #define _CRT_SECURE_NO_DEPRECATE 1
36 #endif
37 
63 #define MBEDTLS_HAVE_ASM
64 
91 //#define MBEDTLS_NO_UDBL_DIVISION
92 
113 //#define MBEDTLS_NO_64BIT_MULTIPLICATION
114 
122 //#define MBEDTLS_HAVE_SSE2
123 
137 #define MBEDTLS_HAVE_TIME
138 
158 #define MBEDTLS_HAVE_TIME_DATE
159 
182 //#define MBEDTLS_PLATFORM_MEMORY
183 
201 //#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
202 
226 //#define MBEDTLS_PLATFORM_EXIT_ALT
227 //#define MBEDTLS_PLATFORM_TIME_ALT
228 //#define MBEDTLS_PLATFORM_FPRINTF_ALT
229 //#define MBEDTLS_PLATFORM_PRINTF_ALT
230 //#define MBEDTLS_PLATFORM_SNPRINTF_ALT
231 //#define MBEDTLS_PLATFORM_NV_SEED_ALT
232 //#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
233 
247 //#define MBEDTLS_DEPRECATED_WARNING
248 
259 //#define MBEDTLS_DEPRECATED_REMOVED
260 
311 //#define MBEDTLS_CHECK_PARAMS
312 
325 //#define MBEDTLS_CHECK_PARAMS_ASSERT
326 
327 /* \} name SECTION: System support */
328 
348 //#define MBEDTLS_TIMING_ALT
349 
375 //#define MBEDTLS_AES_ALT
376 //#define MBEDTLS_ARC4_ALT
377 //#define MBEDTLS_ARIA_ALT
378 //#define MBEDTLS_BLOWFISH_ALT
379 //#define MBEDTLS_CAMELLIA_ALT
380 //#define MBEDTLS_CCM_ALT
381 //#define MBEDTLS_CHACHA20_ALT
382 //#define MBEDTLS_CHACHAPOLY_ALT
383 //#define MBEDTLS_CMAC_ALT
384 //#define MBEDTLS_DES_ALT
385 //#define MBEDTLS_DHM_ALT
386 //#define MBEDTLS_ECJPAKE_ALT
387 //#define MBEDTLS_GCM_ALT
388 //#define MBEDTLS_NIST_KW_ALT
389 //#define MBEDTLS_MD2_ALT
390 //#define MBEDTLS_MD4_ALT
391 //#define MBEDTLS_MD5_ALT
392 //#define MBEDTLS_POLY1305_ALT
393 //#define MBEDTLS_RIPEMD160_ALT
394 //#define MBEDTLS_RSA_ALT
395 //#define MBEDTLS_SHA1_ALT
396 //#define MBEDTLS_SHA256_ALT
397 //#define MBEDTLS_SHA512_ALT
398 //#define MBEDTLS_XTEA_ALT
399 
400 /*
401  * When replacing the elliptic curve module, pleace consider, that it is
402  * implemented with two .c files:
403  * - ecp.c
404  * - ecp_curves.c
405  * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
406  * macros as described above. The only difference is that you have to make sure
407  * that you provide functionality for both .c files.
408  */
409 //#define MBEDTLS_ECP_ALT
410 
456 //#define MBEDTLS_MD2_PROCESS_ALT
457 //#define MBEDTLS_MD4_PROCESS_ALT
458 //#define MBEDTLS_MD5_PROCESS_ALT
459 //#define MBEDTLS_RIPEMD160_PROCESS_ALT
460 //#define MBEDTLS_SHA1_PROCESS_ALT
461 //#define MBEDTLS_SHA256_PROCESS_ALT
462 //#define MBEDTLS_SHA512_PROCESS_ALT
463 //#define MBEDTLS_DES_SETKEY_ALT
464 //#define MBEDTLS_DES_CRYPT_ECB_ALT
465 //#define MBEDTLS_DES3_CRYPT_ECB_ALT
466 //#define MBEDTLS_AES_SETKEY_ENC_ALT
467 //#define MBEDTLS_AES_SETKEY_DEC_ALT
468 //#define MBEDTLS_AES_ENCRYPT_ALT
469 //#define MBEDTLS_AES_DECRYPT_ALT
470 //#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
471 //#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
472 //#define MBEDTLS_ECDSA_VERIFY_ALT
473 //#define MBEDTLS_ECDSA_SIGN_ALT
474 //#define MBEDTLS_ECDSA_GENKEY_ALT
475 
516 /* Required for all the functions in this section */
517 //#define MBEDTLS_ECP_INTERNAL_ALT
518 /* Support for Weierstrass curves with Jacobi representation */
519 //#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
520 //#define MBEDTLS_ECP_ADD_MIXED_ALT
521 //#define MBEDTLS_ECP_DOUBLE_JAC_ALT
522 //#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
523 //#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
524 /* Support for curves with Montgomery arithmetic */
525 //#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
526 //#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
527 //#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
528 
544 //#define MBEDTLS_TEST_NULL_ENTROPY
545 
557 //#define MBEDTLS_ENTROPY_HARDWARE_ALT
558 
577 //#define MBEDTLS_AES_ROM_TABLES
578 
599 //#define MBEDTLS_AES_FEWER_TABLES
600 
608 //#define MBEDTLS_CAMELLIA_SMALL_MEMORY
609 
615 #define MBEDTLS_CIPHER_MODE_CBC
616 
622 #define MBEDTLS_CIPHER_MODE_CFB
623 
629 #define MBEDTLS_CIPHER_MODE_CTR
630 
636 #define MBEDTLS_CIPHER_MODE_OFB
637 
643 #define MBEDTLS_CIPHER_MODE_XTS
644 
676 //#define MBEDTLS_CIPHER_NULL_CIPHER
677 
689 #define MBEDTLS_CIPHER_PADDING_PKCS7
690 #define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
691 #define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
692 #define MBEDTLS_CIPHER_PADDING_ZEROS
693 
699 //#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
700 
717 //#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
718 
730 #define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
731 
750 #define MBEDTLS_REMOVE_3DES_CIPHERSUITES
751 
760 #define MBEDTLS_ECP_DP_SECP192R1_ENABLED
761 #define MBEDTLS_ECP_DP_SECP224R1_ENABLED
762 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
763 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
764 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED
765 #define MBEDTLS_ECP_DP_SECP192K1_ENABLED
766 #define MBEDTLS_ECP_DP_SECP224K1_ENABLED
767 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED
768 #define MBEDTLS_ECP_DP_BP256R1_ENABLED
769 #define MBEDTLS_ECP_DP_BP384R1_ENABLED
770 #define MBEDTLS_ECP_DP_BP512R1_ENABLED
771 #define MBEDTLS_ECP_DP_CURVE25519_ENABLED
772 #define MBEDTLS_ECP_DP_CURVE448_ENABLED
773 
783 #define MBEDTLS_ECP_NIST_OPTIM
784 
807 //#define MBEDTLS_ECP_RESTARTABLE
808 
821 #define MBEDTLS_ECDSA_DETERMINISTIC
822 
843 #define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
844 
874 #define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
875 
894 #define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
895 
919 #define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
920 
947 #define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
948 
980 #define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
981 
1005 #define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1006 
1029 #define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1030 
1053 #define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1054 
1077 #define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1078 
1096 //#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1097 
1110 #define MBEDTLS_PK_PARSE_EC_EXTENDED
1111 
1125 #define MBEDTLS_ERROR_STRERROR_DUMMY
1126 
1134 #define MBEDTLS_GENPRIME
1135 
1141 #define MBEDTLS_FS_IO
1142 
1154 //#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1155 
1165 //#define MBEDTLS_NO_PLATFORM_ENTROPY
1166 
1181 //#define MBEDTLS_ENTROPY_FORCE_SHA256
1182 
1209 //#define MBEDTLS_ENTROPY_NV_SEED
1210 
1222 //#define MBEDTLS_MEMORY_DEBUG
1223 
1234 //#define MBEDTLS_MEMORY_BACKTRACE
1235 
1243 #define MBEDTLS_PK_RSA_ALT_SUPPORT
1244 
1254 #define MBEDTLS_PKCS1_V15
1255 
1265 #define MBEDTLS_PKCS1_V21
1266 
1276 //#define MBEDTLS_RSA_NO_CRT
1277 
1283 #define MBEDTLS_SELF_TEST
1284 
1299 //#define MBEDTLS_SHA256_SMALLER
1300 
1313 #define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1314 
1324 //#define MBEDTLS_SSL_ASYNC_PRIVATE
1325 
1340 //#define MBEDTLS_SSL_DEBUG_ALL
1341 
1358 #define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1359 
1376 #define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1377 
1393 #define MBEDTLS_SSL_FALLBACK_SCSV
1394 
1403 //#define MBEDTLS_SSL_HW_RECORD_ACCEL
1404 
1415 #define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1416 
1437 #define MBEDTLS_SSL_RENEGOTIATION
1438 
1447 //#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1448 
1457 //#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1458 
1466 #define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1467 
1478 //#define MBEDTLS_SSL_PROTO_SSL3
1479 
1490 #define MBEDTLS_SSL_PROTO_TLS1
1491 
1502 #define MBEDTLS_SSL_PROTO_TLS1_1
1503 
1514 #define MBEDTLS_SSL_PROTO_TLS1_2
1515 
1529 #define MBEDTLS_SSL_PROTO_DTLS
1530 
1538 #define MBEDTLS_SSL_ALPN
1539 
1553 #define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1554 
1571 #define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1572 
1587 #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1588 
1598 #define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1599 
1612 #define MBEDTLS_SSL_SESSION_TICKETS
1613 
1622 #define MBEDTLS_SSL_EXPORT_KEYS
1623 
1633 #define MBEDTLS_SSL_SERVER_NAME_INDICATION
1634 
1642 #define MBEDTLS_SSL_TRUNCATED_HMAC
1643 
1666 //#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1667 
1677 //#define MBEDTLS_THREADING_ALT
1678 
1688 //#define MBEDTLS_THREADING_PTHREAD
1689 
1701 #define MBEDTLS_VERSION_FEATURES
1702 
1711 //#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1712 
1723 //#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1724 
1737 #define MBEDTLS_X509_CHECK_KEY_USAGE
1738 
1750 #define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1751 
1760 #define MBEDTLS_X509_RSASSA_PSS_SUPPORT
1761 
1785 //#define MBEDTLS_ZLIB_SUPPORT
1786 /* \} name SECTION: mbed TLS feature support */
1787 
1807 #define MBEDTLS_AESNI_C
1808 
1882 #define MBEDTLS_AES_C
1883 
1910 #define MBEDTLS_ARC4_C
1911 
1924 #define MBEDTLS_ASN1_PARSE_C
1925 
1938 #define MBEDTLS_ASN1_WRITE_C
1939 
1950 #define MBEDTLS_BASE64_C
1951 
1967 #define MBEDTLS_BIGNUM_C
1968 
1976 #define MBEDTLS_BLOWFISH_C
1977 
2031 #define MBEDTLS_CAMELLIA_C
2032 
2083 //#define MBEDTLS_ARIA_C
2084 
2097 #define MBEDTLS_CCM_C
2098 
2109 #define MBEDTLS_CERTS_C
2110 
2118 #define MBEDTLS_CHACHA20_C
2119 
2129 #define MBEDTLS_CHACHAPOLY_C
2130 
2141 #define MBEDTLS_CIPHER_C
2142 
2154 //#define MBEDTLS_CMAC_C
2155 
2174 #define MBEDTLS_CTR_DRBG_C
2175 
2188 #define MBEDTLS_DEBUG_C
2189 
2217 #define MBEDTLS_DES_C
2218 
2238 #define MBEDTLS_DHM_C
2239 
2254 #define MBEDTLS_ECDH_C
2255 
2269 #define MBEDTLS_ECDSA_C
2270 
2288 //#define MBEDTLS_ECJPAKE_C
2289 
2302 #define MBEDTLS_ECP_C
2303 
2316 #define MBEDTLS_ENTROPY_C
2317 
2328 #define MBEDTLS_ERROR_C
2329 
2342 #define MBEDTLS_GCM_C
2343 
2365 //#define MBEDTLS_HAVEGE_C
2366 
2380 #define MBEDTLS_HKDF_C
2381 
2394 #define MBEDTLS_HMAC_DRBG_C
2395 
2407 //#define MBEDTLS_NIST_KW_C
2408 
2419 #define MBEDTLS_MD_C
2420 
2436 //#define MBEDTLS_MD2_C
2437 
2453 //#define MBEDTLS_MD4_C
2454 
2475 #define MBEDTLS_MD5_C
2476 
2491 //#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2492 
2510 #define MBEDTLS_NET_C
2511 
2533 #define MBEDTLS_OID_C
2534 
2547 #define MBEDTLS_PADLOCK_C
2548 
2565 #define MBEDTLS_PEM_PARSE_C
2566 
2581 #define MBEDTLS_PEM_WRITE_C
2582 
2597 #define MBEDTLS_PK_C
2598 
2612 #define MBEDTLS_PK_PARSE_C
2613 
2626 #define MBEDTLS_PK_WRITE_C
2627 
2639 #define MBEDTLS_PKCS5_C
2640 
2654 //#define MBEDTLS_PKCS11_C
2655 
2670 #define MBEDTLS_PKCS12_C
2671 
2690 #define MBEDTLS_PLATFORM_C
2691 
2700 #define MBEDTLS_POLY1305_C
2701 
2711 #define MBEDTLS_RIPEMD160_C
2712 
2730 #define MBEDTLS_RSA_C
2731 
2752 #define MBEDTLS_SHA1_C
2753 
2769 #define MBEDTLS_SHA256_C
2770 
2784 #define MBEDTLS_SHA512_C
2785 
2796 #define MBEDTLS_SSL_CACHE_C
2797 
2806 #define MBEDTLS_SSL_COOKIE_C
2807 
2818 #define MBEDTLS_SSL_TICKET_C
2819 
2832 #define MBEDTLS_SSL_CLI_C
2833 
2846 #define MBEDTLS_SSL_SRV_C
2847 
2862 #define MBEDTLS_SSL_TLS_C
2863 
2884 //#define MBEDTLS_THREADING_C
2885 
2907 #define MBEDTLS_TIMING_C
2908 
2918 #define MBEDTLS_VERSION_C
2919 
2935 #define MBEDTLS_X509_USE_C
2936 
2951 #define MBEDTLS_X509_CRT_PARSE_C
2952 
2965 #define MBEDTLS_X509_CRL_PARSE_C
2966 
2979 #define MBEDTLS_X509_CSR_PARSE_C
2980 
2992 #define MBEDTLS_X509_CREATE_C
2993 
3005 #define MBEDTLS_X509_CRT_WRITE_C
3006 
3018 #define MBEDTLS_X509_CSR_WRITE_C
3019 
3028 #define MBEDTLS_XTEA_C
3029 
3030 /* \} name SECTION: mbed TLS modules */
3031 
3047 /* MPI / BIGNUM options */
3048 //#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
3049 //#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3050 
3051 /* CTR_DRBG options */
3052 //#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3053 //#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3054 //#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3055 //#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3056 //#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3057 
3058 /* HMAC_DRBG options */
3059 //#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3060 //#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3061 //#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3062 //#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3063 
3064 /* ECP options */
3065 //#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3066 //#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3067 //#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3068 
3069 /* Entropy options */
3070 //#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3071 //#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3072 //#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3073 
3074 /* Memory buffer allocator options */
3075 //#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3076 
3077 /* Platform options */
3078 //#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3079 //#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3080 //#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3081 //#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3082 //#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3083 //#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3084 //#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3085 /* Note: your snprintf must correctly zero-terminate the buffer! */
3086 //#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3087 //#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3088 //#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3089 //#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3090 //#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3091 //#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3092 
3093 /* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3094 /* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3095 //#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3096 //#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3097 //#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3098 //#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3099 //#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3100 //#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3101 //#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3102 /* Note: your snprintf must correctly zero-terminate the buffer! */
3103 //#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3104 //#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3105 //#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3106 
3141 //#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3142 
3143 /* SSL Cache options */
3144 //#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3145 //#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3146 
3147 /* SSL options */
3148 
3173 //#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384
3174 
3198 //#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3199 
3222 //#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3223 
3239 //#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3240 
3241 //#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3242 //#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3243 //#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3244 
3257 //#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3258 
3259 /* X509 options */
3260 //#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3261 //#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3262 
3275 // #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3276 
3292 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3293 
3312 //#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3313 
3331 //#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3332 
3333 /* \} name SECTION: Customisation configuration options */
3334 
3335 /* Target and application specific configurations
3336  *
3337  * Allow user to override any previous default.
3338  *
3339  */
3340 #if defined(MBEDTLS_USER_CONFIG_FILE)
3341 #include MBEDTLS_USER_CONFIG_FILE
3342 #endif
3343 
3344 #include "check_config.h"
3345 
3346 #endif /* MBEDTLS_CONFIG_H */
Consistency checks for configuration options.