Allow compile-time configuration of legacy renegotiation Introduces MBEDTLS_SSL_CONF_ALLOW_LEGACY_RENEGOTIATION allowing to configure enforcing secure renegotiation at compile-time. Impact on code-size: | | GCC | ARMC5 | ARMC6 | | --- | --- | --- | --- | | `libmbedtls.a` after | 23379 | 23929 | 27727 | | `libmbedtls.a` before | 23307 | 23865 | 27615 | | gain in Bytes | 72 | 64 | 112 |

commit: b0b2b675681d94d70d0afe2ebb030df74be92c90 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Wed Jun 12 16:58:10 2019 +0100
committer: Hanno Becker <hanno.becker@arm.com> Tue Jul 02 16:41:34 2019 +0100
tree: 9c0057d62e35e03ec3dad14b744917069b75a9be
parent: acd4fc0ac941db79a9ba6e50f8f6f58d02865d4c [diff] [blame]
diff --git a/include/mbedtls/config.h b/include/mbedtls/config.h
index 3381b79..d45d887 100644
--- a/include/mbedtls/config.h
+++ b/include/mbedtls/config.h

@@ -3450,6 +3450,8 @@
  * \{
  */
 
+//#define MBEDTLS_SSL_CONF_ALLOW_LEGACY_RENEGOTIATION MBEDTLS_SSL_LEGACY_NO_RENEGOTIATION
+
 //#define MBEDTLS_SSL_CONF_AUTHMODE MBEDTLS_SSL_VERIFY_REQUIRED
 
 /* DTLS-specific settings */
commit	b0b2b675681d94d70d0afe2ebb030df74be92c90	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Wed Jun 12 16:58:10 2019 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Tue Jul 02 16:41:34 2019 +0100
tree	9c0057d62e35e03ec3dad14b744917069b75a9be
parent	acd4fc0ac941db79a9ba6e50f8f6f58d02865d4c [diff] [blame]