blob: 5212fb3be6f0280e8943ae0c826ee64b4835bbbf [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +00001/**
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +02002 * \file mbedtls_config.h
Paul Bakker5121ce52009-01-03 21:22:43 +00003 *
Paul Bakker37ca75d2011-01-06 12:28:03 +00004 * \brief Configuration options (set of defines)
5 *
Simon Butcher5b331b92016-01-03 16:14:14 +00006 * This set of compile-time options may be used to enable
7 * or disable features selectively, and reduce the global
8 * memory footprint.
Darryl Greena40a1012018-01-05 15:33:17 +00009 */
10/*
Bence Szépkúti1e148272020-08-07 13:07:28 +020011 * Copyright The Mbed TLS Contributors
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +020012 * SPDX-License-Identifier: Apache-2.0
13 *
14 * Licensed under the Apache License, Version 2.0 (the "License"); you may
15 * not use this file except in compliance with the License.
16 * You may obtain a copy of the License at
17 *
18 * http://www.apache.org/licenses/LICENSE-2.0
19 *
20 * Unless required by applicable law or agreed to in writing, software
21 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23 * See the License for the specific language governing permissions and
24 * limitations under the License.
Manuel Pégourié-Gonnarde2b0efe2015-08-11 10:38:37 +020025 */
26
Paul Bakkerf3b86c12011-01-27 15:24:17 +000027/**
Paul Bakker0a62cd12011-01-21 11:00:08 +000028 * \name SECTION: System support
29 *
30 * This section sets system specific settings.
31 * \{
32 */
33
Paul Bakkerf3b86c12011-01-27 15:24:17 +000034/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020035 * \def MBEDTLS_HAVE_ASM
Paul Bakkerf3b86c12011-01-27 15:24:17 +000036 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +020037 * The compiler has support for asm().
Paul Bakker68041ec2009-04-19 21:17:55 +000038 *
39 * Requires support for asm() in compiler.
40 *
41 * Used in:
Manuel Pégourié-Gonnard26b54fa2018-02-27 12:20:20 +010042 * library/aria.c
Chris Jones4c5819c2021-03-03 17:45:34 +000043 * library/bn_mul.h
Paul Bakker68041ec2009-04-19 21:17:55 +000044 *
Manuel Pégourié-Gonnard26b54fa2018-02-27 12:20:20 +010045 * Required by:
46 * MBEDTLS_AESNI_C
47 * MBEDTLS_PADLOCK_C
48 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +020049 * Comment to disable the use of assembly code.
Paul Bakker5121ce52009-01-03 21:22:43 +000050 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020051#define MBEDTLS_HAVE_ASM
Paul Bakker5121ce52009-01-03 21:22:43 +000052
Paul Bakkerf3b86c12011-01-27 15:24:17 +000053/**
Gilles Peskineed942f82017-06-08 15:19:20 +020054 * \def MBEDTLS_NO_UDBL_DIVISION
55 *
56 * The platform lacks support for double-width integer division (64-bit
57 * division on a 32-bit platform, 128-bit division on a 64-bit platform).
58 *
59 * Used in:
60 * include/mbedtls/bignum.h
61 * library/bignum.c
62 *
63 * The bignum code uses double-width division to speed up some operations.
64 * Double-width division is often implemented in software that needs to
65 * be linked with the program. The presence of a double-width integer
66 * type is usually detected automatically through preprocessor macros,
67 * but the automatic detection cannot know whether the code needs to
68 * and can be linked with an implementation of division for that type.
69 * By default division is assumed to be usable if the type is present.
70 * Uncomment this option to prevent the use of double-width division.
71 *
72 * Note that division for the native integer type is always required.
73 * Furthermore, a 64-bit type is always required even on a 32-bit
Andres Amaya Garcia2801d002017-07-21 10:56:22 +010074 * platform, but it need not support multiplication or division. In some
75 * cases it is also desirable to disable some double-width operations. For
76 * example, if double-width division is implemented in software, disabling
77 * it can reduce code size in some embedded targets.
Gilles Peskineed942f82017-06-08 15:19:20 +020078 */
79//#define MBEDTLS_NO_UDBL_DIVISION
80
81/**
Manuel Pégourié-Gonnard2adb3752018-06-07 10:51:44 +020082 * \def MBEDTLS_NO_64BIT_MULTIPLICATION
83 *
84 * The platform lacks support for 32x32 -> 64-bit multiplication.
85 *
86 * Used in:
87 * library/poly1305.c
88 *
89 * Some parts of the library may use multiplication of two unsigned 32-bit
90 * operands with a 64-bit result in order to speed up computations. On some
91 * platforms, this is not available in hardware and has to be implemented in
92 * software, usually in a library provided by the toolchain.
93 *
94 * Sometimes it is not desirable to have to link to that library. This option
95 * removes the dependency of that library on platforms that lack a hardware
96 * 64-bit multiplier by embedding a software implementation in Mbed TLS.
97 *
98 * Note that depending on the compiler, this may decrease performance compared
99 * to using the library function provided by the toolchain.
100 */
101//#define MBEDTLS_NO_64BIT_MULTIPLICATION
102
103/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200104 * \def MBEDTLS_HAVE_SSE2
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000105 *
Paul Bakkere23c3152012-10-01 14:42:47 +0000106 * CPU supports SSE2 instruction set.
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000107 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000108 * Uncomment if the CPU supports SSE2 (IA-32 specific).
Paul Bakker5121ce52009-01-03 21:22:43 +0000109 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200110//#define MBEDTLS_HAVE_SSE2
Paul Bakkerfa9b1002013-07-03 15:31:03 +0200111
112/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200113 * \def MBEDTLS_HAVE_TIME
Paul Bakkerfa9b1002013-07-03 15:31:03 +0200114 *
Manuel Pégourié-Gonnard60c793b2015-06-18 20:52:58 +0200115 * System has time.h and time().
116 * The time does not need to be correct, only time differences are used,
117 * by contrast with MBEDTLS_HAVE_TIME_DATE
Paul Bakkerfa9b1002013-07-03 15:31:03 +0200118 *
Andres Amaya Garcia1e4ec662016-07-20 10:16:25 +0100119 * Defining MBEDTLS_HAVE_TIME allows you to specify MBEDTLS_PLATFORM_TIME_ALT,
120 * MBEDTLS_PLATFORM_TIME_MACRO, MBEDTLS_PLATFORM_TIME_TYPE_MACRO and
121 * MBEDTLS_PLATFORM_STD_TIME.
122 *
Paul Bakkerfa9b1002013-07-03 15:31:03 +0200123 * Comment if your system does not support time functions
124 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200125#define MBEDTLS_HAVE_TIME
Manuel Pégourié-Gonnard10934de2013-12-13 12:54:09 +0100126
127/**
Manuel Pégourié-Gonnard60c793b2015-06-18 20:52:58 +0200128 * \def MBEDTLS_HAVE_TIME_DATE
129 *
Hanno Becker4e67cca2018-09-05 16:18:38 +0100130 * System has time.h, time(), and an implementation for
131 * mbedtls_platform_gmtime_r() (see below).
Antonin Décimo36e89b52019-01-23 15:24:37 +0100132 * The time needs to be correct (not necessarily very accurate, but at least
Manuel Pégourié-Gonnard60c793b2015-06-18 20:52:58 +0200133 * the date should be correct). This is used to verify the validity period of
134 * X.509 certificates.
135 *
136 * Comment if your system does not have a correct clock.
Andres Amaya Garcia97f3ecb2018-08-07 20:39:27 +0100137 *
Hanno Becker6a739782018-09-05 15:06:19 +0100138 * \note mbedtls_platform_gmtime_r() is an abstraction in platform_util.h that
Hanno Beckerc52ef402018-09-05 16:28:59 +0100139 * behaves similarly to the gmtime_r() function from the C standard. Refer to
140 * the documentation for mbedtls_platform_gmtime_r() for more information.
Andres Amaya Garciac99b12b2018-08-21 19:32:44 +0100141 *
142 * \note It is possible to configure an implementation for
Hanno Becker6a739782018-09-05 15:06:19 +0100143 * mbedtls_platform_gmtime_r() at compile-time by using the macro
144 * MBEDTLS_PLATFORM_GMTIME_R_ALT.
Manuel Pégourié-Gonnard60c793b2015-06-18 20:52:58 +0200145 */
146#define MBEDTLS_HAVE_TIME_DATE
147
148/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200149 * \def MBEDTLS_PLATFORM_MEMORY
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100150 *
151 * Enable the memory allocation layer.
152 *
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +0200153 * By default mbed TLS uses the system-provided calloc() and free().
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100154 * This allows different allocators (self-implemented or provided) to be
155 * provided to the platform abstraction layer.
156 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200157 * Enabling MBEDTLS_PLATFORM_MEMORY without the
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +0200158 * MBEDTLS_PLATFORM_{FREE,CALLOC}_MACROs will provide
159 * "mbedtls_platform_set_calloc_free()" allowing you to set an alternative calloc() and
Rich Evans16f8cd82015-02-06 16:14:34 +0000160 * free() function pointer at runtime.
161 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200162 * Enabling MBEDTLS_PLATFORM_MEMORY and specifying
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +0200163 * MBEDTLS_PLATFORM_{CALLOC,FREE}_MACROs will allow you to specify the
Rich Evans16f8cd82015-02-06 16:14:34 +0000164 * alternate function at compile time.
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100165 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200166 * Requires: MBEDTLS_PLATFORM_C
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100167 *
168 * Enable this layer to allow use of alternative memory allocators.
169 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200170//#define MBEDTLS_PLATFORM_MEMORY
Paul Bakkerdefc0ca2014-02-04 17:30:24 +0100171
172/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200173 * \def MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
Paul Bakker088c5c52014-04-25 11:11:10 +0200174 *
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +0200175 * Do not assign standard functions in the platform layer (e.g. calloc() to
176 * MBEDTLS_PLATFORM_STD_CALLOC and printf() to MBEDTLS_PLATFORM_STD_PRINTF)
Paul Bakker088c5c52014-04-25 11:11:10 +0200177 *
178 * This makes sure there are no linking errors on platforms that do not support
179 * these functions. You will HAVE to provide alternatives, either at runtime
180 * via the platform_set_xxx() functions or at compile time by setting
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200181 * the MBEDTLS_PLATFORM_STD_XXX defines, or enabling a
182 * MBEDTLS_PLATFORM_XXX_MACRO.
Paul Bakker088c5c52014-04-25 11:11:10 +0200183 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200184 * Requires: MBEDTLS_PLATFORM_C
Paul Bakker088c5c52014-04-25 11:11:10 +0200185 *
186 * Uncomment to prevent default assignment of standard functions in the
187 * platform layer.
188 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200189//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
Paul Bakker088c5c52014-04-25 11:11:10 +0200190
191/**
Janos Follathc351d182016-03-21 08:43:59 +0000192 * \def MBEDTLS_PLATFORM_EXIT_ALT
Paul Bakker747a83a2014-02-01 22:50:07 +0100193 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100194 * MBEDTLS_PLATFORM_XXX_ALT: Uncomment a macro to let mbed TLS support the
195 * function in the platform abstraction layer.
Paul Bakker747a83a2014-02-01 22:50:07 +0100196 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200197 * Example: In case you uncomment MBEDTLS_PLATFORM_PRINTF_ALT, mbed TLS will
198 * provide a function "mbedtls_platform_set_printf()" that allows you to set an
Paul Bakker747a83a2014-02-01 22:50:07 +0100199 * alternative printf function pointer.
200 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200201 * All these define require MBEDTLS_PLATFORM_C to be defined!
Paul Bakker747a83a2014-02-01 22:50:07 +0100202 *
Manuel Pégourié-Gonnard9db28872015-06-26 10:52:01 +0200203 * \note MBEDTLS_PLATFORM_SNPRINTF_ALT is required on Windows;
204 * it will be enabled automatically by check_config.h
205 *
Manuel Pégourié-Gonnard6c0c8e02015-06-22 10:23:34 +0200206 * \warning MBEDTLS_PLATFORM_XXX_ALT cannot be defined at the same time as
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200207 * MBEDTLS_PLATFORM_XXX_MACRO!
Rich Evans16f8cd82015-02-06 16:14:34 +0000208 *
Andres Amaya Garcia1e4ec662016-07-20 10:16:25 +0100209 * Requires: MBEDTLS_PLATFORM_TIME_ALT requires MBEDTLS_HAVE_TIME
210 *
Paul Bakker747a83a2014-02-01 22:50:07 +0100211 * Uncomment a macro to enable alternate implementation of specific base
212 * platform function
213 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200214//#define MBEDTLS_PLATFORM_EXIT_ALT
SimonBd5800b72016-04-26 07:43:27 +0100215//#define MBEDTLS_PLATFORM_TIME_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200216//#define MBEDTLS_PLATFORM_FPRINTF_ALT
217//#define MBEDTLS_PLATFORM_PRINTF_ALT
218//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
k-stachowiak723f8672018-07-16 14:27:07 +0200219//#define MBEDTLS_PLATFORM_VSNPRINTF_ALT
Paul Bakkercf0a9f92016-06-01 11:25:44 +0100220//#define MBEDTLS_PLATFORM_NV_SEED_ALT
Andres Amaya Garcia59c20262017-07-18 10:23:04 +0100221//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100222
223/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200224 * \def MBEDTLS_DEPRECATED_WARNING
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100225 *
Andres Amaya Garcia09634242018-11-29 09:55:41 +0000226 * Mark deprecated functions and features so that they generate a warning if
227 * used. Functionality deprecated in one version will usually be removed in the
228 * next version. You can enable this to help you prepare the transition to a
229 * new major version by making sure your code is not using this functionality.
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100230 *
231 * This only works with GCC and Clang. With other compilers, you may want to
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200232 * use MBEDTLS_DEPRECATED_REMOVED
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100233 *
Andres Amaya Garcia09634242018-11-29 09:55:41 +0000234 * Uncomment to get warnings on using deprecated functions and features.
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100235 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200236//#define MBEDTLS_DEPRECATED_WARNING
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100237
238/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200239 * \def MBEDTLS_DEPRECATED_REMOVED
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100240 *
Andres Amaya Garcia09634242018-11-29 09:55:41 +0000241 * Remove deprecated functions and features so that they generate an error if
242 * used. Functionality deprecated in one version will usually be removed in the
243 * next version. You can enable this to help you prepare the transition to a
244 * new major version by making sure your code is not using this functionality.
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100245 *
Andres Amaya Garcia09634242018-11-29 09:55:41 +0000246 * Uncomment to get errors on using deprecated functions and features.
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100247 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200248//#define MBEDTLS_DEPRECATED_REMOVED
Manuel Pégourié-Gonnardc70581c2015-03-23 13:58:27 +0100249
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200250/* \} name SECTION: System support */
Paul Bakker0a62cd12011-01-21 11:00:08 +0000251
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000252/**
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +0000253 * \name SECTION: mbed TLS feature support
Paul Bakker0a62cd12011-01-21 11:00:08 +0000254 *
255 * This section sets support for features that are or are not needed
256 * within the modules that are enabled.
257 * \{
258 */
Paul Bakker5121ce52009-01-03 21:22:43 +0000259
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000260/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200261 * \def MBEDTLS_TIMING_ALT
Paul Bakkerf2561b32014-02-06 15:11:55 +0100262 *
TRodziewiczd8540832021-06-10 15:16:50 +0200263 * Uncomment to provide your own alternate implementation for
Manuel Pégourié-Gonnarda63bc942015-05-14 18:22:47 +0200264 * mbedtls_timing_get_timer(), mbedtls_set_alarm(), mbedtls_set/get_delay()
Paul Bakkerf2561b32014-02-06 15:11:55 +0100265 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200266 * Only works if you have MBEDTLS_TIMING_C enabled.
Paul Bakkerf2561b32014-02-06 15:11:55 +0100267 *
268 * You will need to provide a header "timing_alt.h" and an implementation at
269 * compile time.
270 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200271//#define MBEDTLS_TIMING_ALT
Paul Bakkerf2561b32014-02-06 15:11:55 +0100272
273/**
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100274 * \def MBEDTLS_AES_ALT
Paul Bakker90995b52013-06-24 19:20:35 +0200275 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100276 * MBEDTLS__MODULE_NAME__ALT: Uncomment a macro to let mbed TLS use your
Janos Follathb0697532016-08-18 12:38:46 +0100277 * alternate core implementation of a symmetric crypto, an arithmetic or hash
278 * module (e.g. platform specific assembly optimized implementations). Keep
279 * in mind that the function prototypes should remain the same.
Paul Bakker90995b52013-06-24 19:20:35 +0200280 *
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200281 * This replaces the whole module. If you only want to replace one of the
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200282 * functions, use one of the MBEDTLS__FUNCTION_NAME__ALT flags.
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200283 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200284 * Example: In case you uncomment MBEDTLS_AES_ALT, mbed TLS will no longer
Janos Follathee782bc2016-11-07 15:41:26 +0000285 * provide the "struct mbedtls_aes_context" definition and omit the base
286 * function declarations and implementations. "aes_alt.h" will be included from
Paul Bakker90995b52013-06-24 19:20:35 +0200287 * "aes.h" to include the new function definitions.
288 *
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200289 * Uncomment a macro to enable alternate implementation of the corresponding
290 * module.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100291 *
TRodziewicz10e8cf52021-05-31 17:58:57 +0200292 * \warning MD5, DES and SHA-1 are considered weak and their
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100293 * use constitutes a security risk. If possible, we recommend
294 * avoiding dependencies on them, and considering stronger message
295 * digests and ciphers instead.
296 *
Paul Bakker90995b52013-06-24 19:20:35 +0200297 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200298//#define MBEDTLS_AES_ALT
Markku-Juhani O. Saarinen0fb47fe2017-12-01 15:41:38 +0000299//#define MBEDTLS_ARIA_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200300//#define MBEDTLS_CAMELLIA_ALT
Steven Cooreman222e2ff2017-04-04 11:37:15 +0200301//#define MBEDTLS_CCM_ALT
Daniel King34b822c2016-05-15 17:28:08 -0300302//#define MBEDTLS_CHACHA20_ALT
Manuel Pégourié-Gonnarde533b222018-06-04 12:23:19 +0200303//#define MBEDTLS_CHACHAPOLY_ALT
Steven Cooreman63342772017-04-04 11:47:16 +0200304//#define MBEDTLS_CMAC_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200305//#define MBEDTLS_DES_ALT
nirekh01d569ecf2018-01-09 16:43:21 +0000306//#define MBEDTLS_DHM_ALT
Hanno Becker616d1ca2018-01-24 10:25:05 +0000307//#define MBEDTLS_ECJPAKE_ALT
Jaeden Amero15263302017-09-21 12:53:48 +0100308//#define MBEDTLS_GCM_ALT
Ron Eldor466a57f2018-05-03 16:54:28 +0300309//#define MBEDTLS_NIST_KW_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200310//#define MBEDTLS_MD5_ALT
Daniel Kingadc32c02016-05-16 18:25:45 -0300311//#define MBEDTLS_POLY1305_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200312//#define MBEDTLS_RIPEMD160_ALT
Hanno Becker88683b22018-01-04 18:26:54 +0000313//#define MBEDTLS_RSA_ALT
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200314//#define MBEDTLS_SHA1_ALT
315//#define MBEDTLS_SHA256_ALT
316//#define MBEDTLS_SHA512_ALT
Markku-Juhani O. Saarinen0fb47fe2017-12-01 15:41:38 +0000317
Janos Follathb0697532016-08-18 12:38:46 +0100318/*
319 * When replacing the elliptic curve module, pleace consider, that it is
320 * implemented with two .c files:
321 * - ecp.c
322 * - ecp_curves.c
Janos Follathee782bc2016-11-07 15:41:26 +0000323 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
324 * macros as described above. The only difference is that you have to make sure
325 * that you provide functionality for both .c files.
Janos Follathb0697532016-08-18 12:38:46 +0100326 */
327//#define MBEDTLS_ECP_ALT
Paul Bakker90995b52013-06-24 19:20:35 +0200328
329/**
TRodziewicz75628d52021-06-18 12:56:27 +0200330 * \def MBEDTLS_SHA256_PROCESS_ALT
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200331 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100332 * MBEDTLS__FUNCTION_NAME__ALT: Uncomment a macro to let mbed TLS use you
333 * alternate core implementation of symmetric crypto or hash function. Keep in
334 * mind that function prototypes should remain the same.
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200335 *
336 * This replaces only one function. The header file from mbed TLS is still
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200337 * used, in contrast to the MBEDTLS__MODULE_NAME__ALT flags.
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200338 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200339 * Example: In case you uncomment MBEDTLS_SHA256_PROCESS_ALT, mbed TLS will
340 * no longer provide the mbedtls_sha1_process() function, but it will still provide
341 * the other function (using your mbedtls_sha1_process() function) and the definition
342 * of mbedtls_sha1_context, so your implementation of mbedtls_sha1_process must be compatible
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200343 * with this definition.
344 *
Tobias Nießen1e8ca122021-05-10 19:53:15 +0200345 * \note If you use the AES_xxx_ALT macros, then it is recommended to also set
Hanno Beckera5723f42017-06-26 12:46:19 +0100346 * MBEDTLS_AES_ROM_TABLES in order to help the linker garbage-collect the AES
347 * tables.
Manuel Pégourié-Gonnard31993f22015-05-12 15:41:08 +0200348 *
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200349 * Uncomment a macro to enable alternate implementation of the corresponding
350 * function.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100351 *
TRodziewicz10e8cf52021-05-31 17:58:57 +0200352 * \warning MD5, DES and SHA-1 are considered weak and their use
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100353 * constitutes a security risk. If possible, we recommend avoiding
354 * dependencies on them, and considering stronger message digests
355 * and ciphers instead.
356 *
Janos Follath1231d212019-01-07 15:01:32 +0000357 * \warning If both MBEDTLS_ECDSA_SIGN_ALT and MBEDTLS_ECDSA_DETERMINISTIC are
358 * enabled, then the deterministic ECDH signature functions pass the
359 * the static HMAC-DRBG as RNG to mbedtls_ecdsa_sign(). Therefore
360 * alternative implementations should use the RNG only for generating
361 * the ephemeral key and nothing else. If this is not possible, then
362 * MBEDTLS_ECDSA_DETERMINISTIC should be disabled and an alternative
TRodziewiczc1c479f2021-05-06 00:53:22 +0200363 * implementation should be provided for mbedtls_ecdsa_sign_det_ext().
Janos Follath1231d212019-01-07 15:01:32 +0000364 *
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200365 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200366//#define MBEDTLS_MD5_PROCESS_ALT
367//#define MBEDTLS_RIPEMD160_PROCESS_ALT
368//#define MBEDTLS_SHA1_PROCESS_ALT
369//#define MBEDTLS_SHA256_PROCESS_ALT
370//#define MBEDTLS_SHA512_PROCESS_ALT
Manuel Pégourié-Gonnard70a50102015-05-12 15:02:45 +0200371//#define MBEDTLS_DES_SETKEY_ALT
372//#define MBEDTLS_DES_CRYPT_ECB_ALT
373//#define MBEDTLS_DES3_CRYPT_ECB_ALT
Manuel Pégourié-Gonnard31993f22015-05-12 15:41:08 +0200374//#define MBEDTLS_AES_SETKEY_ENC_ALT
375//#define MBEDTLS_AES_SETKEY_DEC_ALT
376//#define MBEDTLS_AES_ENCRYPT_ALT
377//#define MBEDTLS_AES_DECRYPT_ALT
Ron Eldora84c1cb2017-10-10 19:04:27 +0300378//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
Ron Eldor3226d362017-10-12 14:17:48 +0300379//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
Ron Eldor314adb62017-10-10 18:28:25 +0300380//#define MBEDTLS_ECDSA_VERIFY_ALT
381//#define MBEDTLS_ECDSA_SIGN_ALT
382//#define MBEDTLS_ECDSA_GENKEY_ALT
Manuel Pégourié-Gonnard427b6722015-03-31 18:32:50 +0200383
384/**
Janos Follathc44ab972016-11-18 16:38:23 +0000385 * \def MBEDTLS_ECP_INTERNAL_ALT
386 *
387 * Expose a part of the internal interface of the Elliptic Curve Point module.
Janos Follathb0697532016-08-18 12:38:46 +0100388 *
389 * MBEDTLS_ECP__FUNCTION_NAME__ALT: Uncomment a macro to let mbed TLS use your
Janos Follath372697b2016-10-28 16:53:11 +0100390 * alternative core implementation of elliptic curve arithmetic. Keep in mind
391 * that function prototypes should remain the same.
Janos Follathb0697532016-08-18 12:38:46 +0100392 *
393 * This partially replaces one function. The header file from mbed TLS is still
394 * used, in contrast to the MBEDTLS_ECP_ALT flag. The original implementation
395 * is still present and it is used for group structures not supported by the
396 * alternative.
397 *
Steven Cooreman97b49842021-01-08 16:32:20 +0100398 * The original implementation can in addition be removed by setting the
Steven Cooreman6226a122021-01-21 13:58:31 +0100399 * MBEDTLS_ECP_NO_FALLBACK option, in which case any function for which the
Steven Cooreman97b49842021-01-08 16:32:20 +0100400 * corresponding MBEDTLS_ECP__FUNCTION_NAME__ALT macro is defined will not be
401 * able to fallback to curves not supported by the alternative implementation.
402 *
Janos Follathc44ab972016-11-18 16:38:23 +0000403 * Any of these options become available by defining MBEDTLS_ECP_INTERNAL_ALT
404 * and implementing the following functions:
405 * unsigned char mbedtls_internal_ecp_grp_capable(
406 * const mbedtls_ecp_group *grp )
407 * int mbedtls_internal_ecp_init( const mbedtls_ecp_group *grp )
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500408 * void mbedtls_internal_ecp_free( const mbedtls_ecp_group *grp )
Janos Follathc44ab972016-11-18 16:38:23 +0000409 * The mbedtls_internal_ecp_grp_capable function should return 1 if the
410 * replacement functions implement arithmetic for the given group and 0
411 * otherwise.
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500412 * The functions mbedtls_internal_ecp_init and mbedtls_internal_ecp_free are
Janos Follathc44ab972016-11-18 16:38:23 +0000413 * called before and after each point operation and provide an opportunity to
414 * implement optimized set up and tear down instructions.
Janos Follathb0697532016-08-18 12:38:46 +0100415 *
Steven Cooreman6226a122021-01-21 13:58:31 +0100416 * Example: In case you set MBEDTLS_ECP_INTERNAL_ALT and
417 * MBEDTLS_ECP_DOUBLE_JAC_ALT, mbed TLS will still provide the ecp_double_jac()
418 * function, but will use your mbedtls_internal_ecp_double_jac() if the group
419 * for the operation is supported by your implementation (i.e. your
420 * mbedtls_internal_ecp_grp_capable() function returns 1 for this group). If the
421 * group is not supported by your implementation, then the original mbed TLS
422 * implementation of ecp_double_jac() is used instead, unless this fallback
423 * behaviour is disabled by setting MBEDTLS_ECP_NO_FALLBACK (in which case
424 * ecp_double_jac() will return MBEDTLS_ERR_ECP_FEATURE_UNAVAILABLE).
425 *
426 * The function prototypes and the definition of mbedtls_ecp_group and
427 * mbedtls_ecp_point will not change based on MBEDTLS_ECP_INTERNAL_ALT, so your
428 * implementation of mbedtls_internal_ecp__function_name__ must be compatible
429 * with their definitions.
Janos Follathb0697532016-08-18 12:38:46 +0100430 *
431 * Uncomment a macro to enable alternate implementation of the corresponding
432 * function.
433 */
434/* Required for all the functions in this section */
Janos Follathc44ab972016-11-18 16:38:23 +0000435//#define MBEDTLS_ECP_INTERNAL_ALT
Steven Cooreman97b49842021-01-08 16:32:20 +0100436/* Turn off software fallback for curves not supported in hardware */
437//#define MBEDTLS_ECP_NO_FALLBACK
Janos Follathb0697532016-08-18 12:38:46 +0100438/* Support for Weierstrass curves with Jacobi representation */
439//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
440//#define MBEDTLS_ECP_ADD_MIXED_ALT
441//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
442//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
443//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
444/* Support for curves with Montgomery arithmetic */
445//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
446//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
447//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
448
449/**
Manuel Pégourié-Gonnard8ba88f02015-06-22 12:14:20 +0200450 * \def MBEDTLS_ENTROPY_HARDWARE_ALT
Manuel Pégourié-Gonnard3f77dfb2015-06-19 10:06:21 +0200451 *
452 * Uncomment this macro to let mbed TLS use your own implementation of a
453 * hardware entropy collector.
454 *
455 * Your function must be called \c mbedtls_hardware_poll(), have the same
Chris Jones3848e312021-03-11 16:17:59 +0000456 * prototype as declared in library/entropy_poll.h, and accept NULL as first
457 * argument.
Manuel Pégourié-Gonnard3f77dfb2015-06-19 10:06:21 +0200458 *
459 * Uncomment to use your own hardware entropy collector.
460 */
461//#define MBEDTLS_ENTROPY_HARDWARE_ALT
462
463/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200464 * \def MBEDTLS_AES_ROM_TABLES
Paul Bakker15566e42011-04-24 21:19:15 +0000465 *
Hanno Becker177d3cf2017-06-07 15:52:48 +0100466 * Use precomputed AES tables stored in ROM.
Paul Bakker15566e42011-04-24 21:19:15 +0000467 *
Hanno Becker177d3cf2017-06-07 15:52:48 +0100468 * Uncomment this macro to use precomputed AES tables stored in ROM.
469 * Comment this macro to generate AES tables in RAM at runtime.
470 *
Hanno Becker4c1dc3c2018-03-27 16:52:03 +0100471 * Tradeoff: Using precomputed ROM tables reduces RAM usage by ~8kb
472 * (or ~2kb if \c MBEDTLS_AES_FEWER_TABLES is used) and reduces the
Hanno Becker6a92ce62018-03-28 11:42:05 +0100473 * initialization time before the first AES operation can be performed.
474 * It comes at the cost of additional ~8kb ROM use (resp. ~2kb if \c
475 * MBEDTLS_AES_FEWER_TABLES below is used), and potentially degraded
476 * performance if ROM access is slower than RAM access.
Hanno Becker177d3cf2017-06-07 15:52:48 +0100477 *
478 * This option is independent of \c MBEDTLS_AES_FEWER_TABLES.
479 *
Paul Bakker15566e42011-04-24 21:19:15 +0000480 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200481//#define MBEDTLS_AES_ROM_TABLES
Paul Bakker15566e42011-04-24 21:19:15 +0000482
483/**
Hanno Becker177d3cf2017-06-07 15:52:48 +0100484 * \def MBEDTLS_AES_FEWER_TABLES
Jussi Kivilinna2fd1bb82015-11-12 16:38:31 +0200485 *
Hanno Becker177d3cf2017-06-07 15:52:48 +0100486 * Use less ROM/RAM for AES tables.
Jussi Kivilinna2fd1bb82015-11-12 16:38:31 +0200487 *
Hanno Becker177d3cf2017-06-07 15:52:48 +0100488 * Uncommenting this macro omits 75% of the AES tables from
489 * ROM / RAM (depending on the value of \c MBEDTLS_AES_ROM_TABLES)
490 * by computing their values on the fly during operations
491 * (the tables are entry-wise rotations of one another).
492 *
493 * Tradeoff: Uncommenting this reduces the RAM / ROM footprint
Hanno Becker08a5c182017-06-19 16:33:58 +0100494 * by ~6kb but at the cost of more arithmetic operations during
Hanno Becker177d3cf2017-06-07 15:52:48 +0100495 * runtime. Specifically, one has to compare 4 accesses within
496 * different tables to 4 accesses with additional arithmetic
497 * operations within the same table. The performance gain/loss
498 * depends on the system and memory details.
499 *
500 * This option is independent of \c MBEDTLS_AES_ROM_TABLES.
501 *
Jussi Kivilinna2fd1bb82015-11-12 16:38:31 +0200502 */
Hanno Becker177d3cf2017-06-07 15:52:48 +0100503//#define MBEDTLS_AES_FEWER_TABLES
Jussi Kivilinna2fd1bb82015-11-12 16:38:31 +0200504
505/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200506 * \def MBEDTLS_CAMELLIA_SMALL_MEMORY
Manuel Pégourié-Gonnard62edcc82015-04-03 16:28:19 +0200507 *
508 * Use less ROM for the Camellia implementation (saves about 768 bytes).
509 *
510 * Uncomment this macro to use less memory for Camellia.
511 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200512//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
Manuel Pégourié-Gonnard62edcc82015-04-03 16:28:19 +0200513
514/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200515 * \def MBEDTLS_CIPHER_MODE_CBC
Manuel Pégourié-Gonnardf7dc3782013-09-13 14:10:44 +0200516 *
517 * Enable Cipher Block Chaining mode (CBC) for symmetric ciphers.
518 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200519#define MBEDTLS_CIPHER_MODE_CBC
Manuel Pégourié-Gonnardf7dc3782013-09-13 14:10:44 +0200520
521/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200522 * \def MBEDTLS_CIPHER_MODE_CFB
Paul Bakkerb6ecaf52011-04-19 14:29:23 +0000523 *
524 * Enable Cipher Feedback mode (CFB) for symmetric ciphers.
525 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200526#define MBEDTLS_CIPHER_MODE_CFB
Paul Bakkerb6ecaf52011-04-19 14:29:23 +0000527
528/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200529 * \def MBEDTLS_CIPHER_MODE_CTR
Paul Bakkerb6ecaf52011-04-19 14:29:23 +0000530 *
531 * Enable Counter Block Cipher mode (CTR) for symmetric ciphers.
532 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200533#define MBEDTLS_CIPHER_MODE_CTR
Paul Bakkerb6ecaf52011-04-19 14:29:23 +0000534
535/**
Jaeden Ameroff2f4932018-06-14 11:38:50 +0100536 * \def MBEDTLS_CIPHER_MODE_OFB
537 *
538 * Enable Output Feedback mode (OFB) for symmetric ciphers.
539 */
540#define MBEDTLS_CIPHER_MODE_OFB
541
542/**
543 * \def MBEDTLS_CIPHER_MODE_XTS
544 *
545 * Enable Xor-encrypt-xor with ciphertext stealing mode (XTS) for AES.
546 */
547#define MBEDTLS_CIPHER_MODE_XTS
548
549/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200550 * \def MBEDTLS_CIPHER_NULL_CIPHER
Paul Bakkerfab5c822012-02-06 16:45:10 +0000551 *
552 * Enable NULL cipher.
553 * Warning: Only do so when you know what you are doing. This allows for
554 * encryption or channels without any security!
555 *
Ronald Croncee42702021-04-26 11:34:44 +0200556 * To enable the following ciphersuites:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200557 * MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA
558 * MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA
559 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA
560 * MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA
561 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384
562 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256
563 * MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA
564 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384
565 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256
566 * MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA
567 * MBEDTLS_TLS_RSA_WITH_NULL_SHA256
568 * MBEDTLS_TLS_RSA_WITH_NULL_SHA
569 * MBEDTLS_TLS_RSA_WITH_NULL_MD5
570 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384
571 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256
572 * MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA
573 * MBEDTLS_TLS_PSK_WITH_NULL_SHA384
574 * MBEDTLS_TLS_PSK_WITH_NULL_SHA256
575 * MBEDTLS_TLS_PSK_WITH_NULL_SHA
Paul Bakkerfab5c822012-02-06 16:45:10 +0000576 *
577 * Uncomment this macro to enable the NULL cipher and ciphersuites
Paul Bakkerfab5c822012-02-06 16:45:10 +0000578 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200579//#define MBEDTLS_CIPHER_NULL_CIPHER
Paul Bakkerfab5c822012-02-06 16:45:10 +0000580
581/**
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100582 * \def MBEDTLS_CIPHER_PADDING_PKCS7
Paul Bakker48e93c82013-08-14 12:21:18 +0200583 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100584 * MBEDTLS_CIPHER_PADDING_XXX: Uncomment or comment macros to add support for
585 * specific padding modes in the cipher layer with cipher modes that support
586 * padding (e.g. CBC)
Paul Bakker48e93c82013-08-14 12:21:18 +0200587 *
588 * If you disable all padding modes, only full blocks can be used with CBC.
589 *
590 * Enable padding modes in the cipher layer.
591 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200592#define MBEDTLS_CIPHER_PADDING_PKCS7
593#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
594#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
595#define MBEDTLS_CIPHER_PADDING_ZEROS
Paul Bakker48e93c82013-08-14 12:21:18 +0200596
Gilles Peskine1540e5b2019-10-03 14:21:14 +0200597/** \def MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
598 *
599 * Uncomment this macro to use a 128-bit key in the CTR_DRBG module.
600 * By default, CTR_DRBG uses a 256-bit key.
601 */
602//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
603
Paul Bakker48e93c82013-08-14 12:21:18 +0200604/**
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100605 * \def MBEDTLS_ECP_DP_SECP192R1_ENABLED
Paul Bakker5dc6b5f2013-06-29 23:26:34 +0200606 *
Manuel Pégourié-Gonnard76da60c2016-01-04 13:51:01 +0100607 * MBEDTLS_ECP_XXXX_ENABLED: Enables specific curves within the Elliptic Curve
608 * module. By default all supported curves are enabled.
Paul Bakker5dc6b5f2013-06-29 23:26:34 +0200609 *
610 * Comment macros to disable the curve and functions for it
611 */
Gilles Peskine799e5762018-09-14 17:34:00 +0200612/* Short Weierstrass curves (supporting ECP, ECDH, ECDSA) */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200613#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
614#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
615#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
616#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
617#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
618#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
619#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
620#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
621#define MBEDTLS_ECP_DP_BP256R1_ENABLED
622#define MBEDTLS_ECP_DP_BP384R1_ENABLED
623#define MBEDTLS_ECP_DP_BP512R1_ENABLED
Gilles Peskine799e5762018-09-14 17:34:00 +0200624/* Montgomery curves (supporting ECP) */
Manuel Pégourié-Gonnard07894332015-06-23 00:18:41 +0200625#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
Nicholas Wilson08f3ef12015-11-10 13:10:01 +0000626#define MBEDTLS_ECP_DP_CURVE448_ENABLED
Paul Bakker5dc6b5f2013-06-29 23:26:34 +0200627
628/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200629 * \def MBEDTLS_ECP_NIST_OPTIM
Manuel Pégourié-Gonnardc04c5302013-10-23 16:11:52 +0200630 *
631 * Enable specific 'modulo p' routines for each NIST prime.
632 * Depending on the prime and architecture, makes operations 4 to 8 times
633 * faster on the corresponding curve.
634 *
635 * Comment this macro to disable NIST curves optimisation.
636 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200637#define MBEDTLS_ECP_NIST_OPTIM
Manuel Pégourié-Gonnardc04c5302013-10-23 16:11:52 +0200638
639/**
Manuel Pégourié-Gonnard4b9c51e2017-04-20 15:50:26 +0200640 * \def MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100641 *
642 * Enable "non-blocking" ECC operations that can return early and be resumed.
643 *
Manuel Pégourié-Gonnardf0bbd7e2018-10-15 13:22:41 +0200644 * This allows various functions to pause by returning
645 * #MBEDTLS_ERR_ECP_IN_PROGRESS (or, for functions in the SSL module,
646 * #MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS) and then be called later again in
647 * order to further progress and eventually complete their operation. This is
648 * controlled through mbedtls_ecp_set_max_ops() which limits the maximum
649 * number of ECC operations a function may perform before pausing; see
650 * mbedtls_ecp_set_max_ops() for more information.
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100651 *
Manuel Pégourié-Gonnard8b7b96b2017-08-23 10:02:51 +0200652 * This is useful in non-threaded environments if you want to avoid blocking
Manuel Pégourié-Gonnardf0bbd7e2018-10-15 13:22:41 +0200653 * for too long on ECC (and, hence, X.509 or SSL/TLS) operations.
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100654 *
Manuel Pégourié-Gonnardc9e16a92017-08-15 14:30:59 +0200655 * Uncomment this macro to enable restartable ECC computations.
Ron Eldor5ed8c1e2018-11-05 14:04:26 +0200656 *
Ron Eldor19779c42018-11-05 16:58:13 +0200657 * \note This option only works with the default software implementation of
658 * elliptic curve functionality. It is incompatible with
Thomas Daubney537e6432021-06-03 15:46:33 +0100659 * MBEDTLS_ECP_ALT, MBEDTLS_ECDH_XXX_ALT, MBEDTLS_ECDSA_XXX_ALT.
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100660 */
Manuel Pégourié-Gonnardc9e16a92017-08-15 14:30:59 +0200661//#define MBEDTLS_ECP_RESTARTABLE
Manuel Pégourié-Gonnardc3a3bc72017-03-22 11:17:51 +0100662
663/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200664 * \def MBEDTLS_ECDSA_DETERMINISTIC
Manuel Pégourié-Gonnard461d4162014-01-06 10:16:28 +0100665 *
666 * Enable deterministic ECDSA (RFC 6979).
667 * Standard ECDSA is "fragile" in the sense that lack of entropy when signing
668 * may result in a compromise of the long-term signing key. This is avoided by
669 * the deterministic variant.
670 *
John Durkop36a82e52020-10-26 09:39:05 -0700671 * Requires: MBEDTLS_HMAC_DRBG_C, MBEDTLS_ECDSA_C
Manuel Pégourié-Gonnard5b1a5732014-01-07 16:46:17 +0100672 *
Manuel Pégourié-Gonnard461d4162014-01-06 10:16:28 +0100673 * Comment this macro to disable deterministic ECDSA.
674 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200675#define MBEDTLS_ECDSA_DETERMINISTIC
Manuel Pégourié-Gonnard461d4162014-01-06 10:16:28 +0100676
677/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200678 * \def MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
Paul Bakkerd4a56ec2013-04-16 18:05:29 +0200679 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200680 * Enable the PSK based ciphersuite modes in SSL / TLS.
Paul Bakkerd4a56ec2013-04-16 18:05:29 +0200681 *
Paul Bakkere07f41d2013-04-19 09:08:57 +0200682 * This enables the following ciphersuites (if other requisites are
683 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200684 * MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384
685 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384
686 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA
687 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384
688 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384
689 * MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256
690 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256
691 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA
692 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256
693 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256
Paul Bakkerd4a56ec2013-04-16 18:05:29 +0200694 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200695#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
Paul Bakkerd4a56ec2013-04-16 18:05:29 +0200696
697/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200698 * \def MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200699 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200700 * Enable the DHE-PSK based ciphersuite modes in SSL / TLS.
Paul Bakkere07f41d2013-04-19 09:08:57 +0200701 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200702 * Requires: MBEDTLS_DHM_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200703 *
704 * This enables the following ciphersuites (if other requisites are
705 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200706 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384
707 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384
708 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA
709 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384
710 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
711 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
712 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
713 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA
714 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256
715 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
Hanno Beckera2f6b722017-09-28 10:33:29 +0100716 *
Hanno Beckerf9734b32017-10-03 12:09:22 +0100717 * \warning Using DHE constitutes a security risk as it
718 * is not possible to validate custom DH parameters.
719 * If possible, it is recommended users should consider
720 * preferring other methods of key exchange.
721 * See dhm.h for more details.
Hanno Beckera2f6b722017-09-28 10:33:29 +0100722 *
Paul Bakkere07f41d2013-04-19 09:08:57 +0200723 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200724#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200725
726/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200727 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
Manuel Pégourié-Gonnard3ce3bbd2013-10-11 16:53:50 +0200728 *
729 * Enable the ECDHE-PSK based ciphersuite modes in SSL / TLS.
730 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200731 * Requires: MBEDTLS_ECDH_C
Manuel Pégourié-Gonnard3ce3bbd2013-10-11 16:53:50 +0200732 *
733 * This enables the following ciphersuites (if other requisites are
734 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200735 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384
736 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA
737 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
738 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256
739 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA
740 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
Manuel Pégourié-Gonnard3ce3bbd2013-10-11 16:53:50 +0200741 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200742#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
Manuel Pégourié-Gonnard3ce3bbd2013-10-11 16:53:50 +0200743
744/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200745 * \def MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200746 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200747 * Enable the RSA-PSK based ciphersuite modes in SSL / TLS.
Manuel Pégourié-Gonnard0fae60b2013-10-14 17:39:48 +0200748 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200749 * Requires: MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
750 * MBEDTLS_X509_CRT_PARSE_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200751 *
752 * This enables the following ciphersuites (if other requisites are
753 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200754 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384
755 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384
756 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA
757 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384
758 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384
759 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256
760 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256
761 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA
762 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256
763 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256
Paul Bakkere07f41d2013-04-19 09:08:57 +0200764 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200765#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200766
767/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200768 * \def MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200769 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200770 * Enable the RSA-only based ciphersuite modes in SSL / TLS.
Paul Bakkere07f41d2013-04-19 09:08:57 +0200771 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200772 * Requires: MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
773 * MBEDTLS_X509_CRT_PARSE_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200774 *
775 * This enables the following ciphersuites (if other requisites are
776 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200777 * MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384
778 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256
779 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA
780 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384
781 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
782 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
783 * MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256
784 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256
785 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA
786 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256
787 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
788 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
Paul Bakkere07f41d2013-04-19 09:08:57 +0200789 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200790#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200791
792/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200793 * \def MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200794 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200795 * Enable the DHE-RSA based ciphersuite modes in SSL / TLS.
Paul Bakkere07f41d2013-04-19 09:08:57 +0200796 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200797 * Requires: MBEDTLS_DHM_C, MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
798 * MBEDTLS_X509_CRT_PARSE_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200799 *
800 * This enables the following ciphersuites (if other requisites are
801 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200802 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
803 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
804 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
805 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
806 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
807 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
808 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
809 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
810 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
811 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
812 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
813 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
Hanno Beckera2f6b722017-09-28 10:33:29 +0100814 *
Hanno Beckerf9734b32017-10-03 12:09:22 +0100815 * \warning Using DHE constitutes a security risk as it
816 * is not possible to validate custom DH parameters.
817 * If possible, it is recommended users should consider
818 * preferring other methods of key exchange.
819 * See dhm.h for more details.
Hanno Beckera2f6b722017-09-28 10:33:29 +0100820 *
Paul Bakkere07f41d2013-04-19 09:08:57 +0200821 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200822#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200823
824/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200825 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200826 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200827 * Enable the ECDHE-RSA based ciphersuite modes in SSL / TLS.
Paul Bakkere07f41d2013-04-19 09:08:57 +0200828 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200829 * Requires: MBEDTLS_ECDH_C, MBEDTLS_RSA_C, MBEDTLS_PKCS1_V15,
830 * MBEDTLS_X509_CRT_PARSE_C
Paul Bakkere07f41d2013-04-19 09:08:57 +0200831 *
832 * This enables the following ciphersuites (if other requisites are
833 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200834 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
835 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
836 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
837 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
838 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
839 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
840 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
841 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
842 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
843 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
Paul Bakkere07f41d2013-04-19 09:08:57 +0200844 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200845#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Paul Bakkere07f41d2013-04-19 09:08:57 +0200846
847/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200848 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200849 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200850 * Enable the ECDHE-ECDSA based ciphersuite modes in SSL / TLS.
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200851 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200852 * Requires: MBEDTLS_ECDH_C, MBEDTLS_ECDSA_C, MBEDTLS_X509_CRT_PARSE_C,
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200853 *
854 * This enables the following ciphersuites (if other requisites are
855 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200856 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
857 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
858 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
859 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
860 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
861 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
862 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
863 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
864 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
865 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200866 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200867#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard32ea60a2013-08-17 17:39:04 +0200868
869/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200870 * \def MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100871 *
872 * Enable the ECDH-ECDSA based ciphersuite modes in SSL / TLS.
873 *
Gilles Peskine7ab66a62018-09-14 17:47:41 +0200874 * Requires: MBEDTLS_ECDH_C, MBEDTLS_ECDSA_C, MBEDTLS_X509_CRT_PARSE_C
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100875 *
876 * This enables the following ciphersuites (if other requisites are
877 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200878 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
879 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
880 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
881 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
882 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
883 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
884 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
885 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
886 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
887 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100888 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200889#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100890
891/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200892 * \def MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100893 *
894 * Enable the ECDH-RSA based ciphersuite modes in SSL / TLS.
895 *
Gilles Peskine7ab66a62018-09-14 17:47:41 +0200896 * Requires: MBEDTLS_ECDH_C, MBEDTLS_RSA_C, MBEDTLS_X509_CRT_PARSE_C
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100897 *
898 * This enables the following ciphersuites (if other requisites are
899 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200900 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
901 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
902 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
903 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
904 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
905 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
906 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
907 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
908 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
909 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100910 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200911#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
Manuel Pégourié-Gonnard25781b22013-12-11 16:17:10 +0100912
913/**
Manuel Pégourié-Gonnard557535d2015-09-15 17:53:32 +0200914 * \def MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
915 *
916 * Enable the ECJPAKE based ciphersuite modes in SSL / TLS.
917 *
Manuel Pégourié-Gonnard75df9022015-09-16 23:21:01 +0200918 * \warning This is currently experimental. EC J-PAKE support is based on the
919 * Thread v1.0.0 specification; incompatible changes to the specification
920 * might still happen. For this reason, this is disabled by default.
Manuel Pégourié-Gonnard557535d2015-09-15 17:53:32 +0200921 *
922 * Requires: MBEDTLS_ECJPAKE_C
923 * MBEDTLS_SHA256_C
924 * MBEDTLS_ECP_DP_SECP256R1_ENABLED
925 *
926 * This enables the following ciphersuites (if other requisites are
927 * enabled as well):
928 * MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8
929 */
Manuel Pégourié-Gonnardcf828932015-10-20 14:57:00 +0200930//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard557535d2015-09-15 17:53:32 +0200931
932/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200933 * \def MBEDTLS_PK_PARSE_EC_EXTENDED
Manuel Pégourié-Gonnard6fac3512014-03-19 16:39:52 +0100934 *
935 * Enhance support for reading EC keys using variants of SEC1 not allowed by
936 * RFC 5915 and RFC 5480.
937 *
938 * Currently this means parsing the SpecifiedECDomain choice of EC
939 * parameters (only known groups are supported, not arbitrary domains, to
940 * avoid validation issues).
941 *
942 * Disable if you only need to support RFC 5915 + 5480 key formats.
943 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200944#define MBEDTLS_PK_PARSE_EC_EXTENDED
Manuel Pégourié-Gonnard6fac3512014-03-19 16:39:52 +0100945
946/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200947 * \def MBEDTLS_ERROR_STRERROR_DUMMY
Paul Bakker8fe40dc2013-02-02 12:43:08 +0100948 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200949 * Enable a dummy error function to make use of mbedtls_strerror() in
950 * third party libraries easier when MBEDTLS_ERROR_C is disabled
951 * (no effect when MBEDTLS_ERROR_C is enabled).
Manuel Pégourié-Gonnarddc16aa72014-06-25 12:55:12 +0200952 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200953 * You can safely disable this if MBEDTLS_ERROR_C is enabled, or if you're
954 * not using mbedtls_strerror() or error_strerror() in your application.
Paul Bakker8fe40dc2013-02-02 12:43:08 +0100955 *
956 * Disable if you run into name conflicts and want to really remove the
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200957 * mbedtls_strerror()
Paul Bakker8fe40dc2013-02-02 12:43:08 +0100958 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200959#define MBEDTLS_ERROR_STRERROR_DUMMY
Paul Bakker8fe40dc2013-02-02 12:43:08 +0100960
961/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200962 * \def MBEDTLS_GENPRIME
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000963 *
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +0200964 * Enable the prime-number generation code.
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +0200965 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200966 * Requires: MBEDTLS_BIGNUM_C
Paul Bakker5121ce52009-01-03 21:22:43 +0000967 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200968#define MBEDTLS_GENPRIME
Paul Bakker5121ce52009-01-03 21:22:43 +0000969
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000970/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200971 * \def MBEDTLS_FS_IO
Paul Bakker335db3f2011-04-25 15:28:35 +0000972 *
973 * Enable functions that use the filesystem.
974 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200975#define MBEDTLS_FS_IO
Paul Bakker335db3f2011-04-25 15:28:35 +0000976
977/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200978 * \def MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
Paul Bakker43655f42011-12-15 20:11:16 +0000979 *
TRodziewicz15a7b732021-06-16 11:22:53 +0200980 * Do not add default entropy sources in mbedtls_entropy_init().
Paul Bakker43655f42011-12-15 20:11:16 +0000981 *
Shuo Chen95a0d112014-04-04 21:04:40 -0700982 * This is useful to have more control over the added entropy sources in an
Paul Bakker43655f42011-12-15 20:11:16 +0000983 * application.
984 *
985 * Uncomment this macro to prevent loading of default entropy functions.
Paul Bakker43655f42011-12-15 20:11:16 +0000986 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200987//#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
Paul Bakker43655f42011-12-15 20:11:16 +0000988
989/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200990 * \def MBEDTLS_NO_PLATFORM_ENTROPY
Paul Bakker6083fd22011-12-03 21:45:14 +0000991 *
992 * Do not use built-in platform entropy functions.
993 * This is useful if your platform does not support
994 * standards like the /dev/urandom or Windows CryptoAPI.
995 *
996 * Uncomment this macro to disable the built-in platform entropy functions.
Paul Bakker6083fd22011-12-03 21:45:14 +0000997 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200998//#define MBEDTLS_NO_PLATFORM_ENTROPY
Paul Bakker6083fd22011-12-03 21:45:14 +0000999
1000/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001001 * \def MBEDTLS_ENTROPY_FORCE_SHA256
Paul Bakker2ceda572014-02-06 15:55:25 +01001002 *
1003 * Force the entropy accumulator to use a SHA-256 accumulator instead of the
1004 * default SHA-512 based one (if both are available).
1005 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001006 * Requires: MBEDTLS_SHA256_C
Paul Bakker2ceda572014-02-06 15:55:25 +01001007 *
1008 * On 32-bit systems SHA-256 can be much faster than SHA-512. Use this option
1009 * if you have performance concerns.
1010 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001011 * This option is only useful if both MBEDTLS_SHA256_C and
1012 * MBEDTLS_SHA512_C are defined. Otherwise the available hash module is used.
Paul Bakker2ceda572014-02-06 15:55:25 +01001013 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001014//#define MBEDTLS_ENTROPY_FORCE_SHA256
Paul Bakker2ceda572014-02-06 15:55:25 +01001015
1016/**
Paul Bakkercf0a9f92016-06-01 11:25:44 +01001017 * \def MBEDTLS_ENTROPY_NV_SEED
1018 *
1019 * Enable the non-volatile (NV) seed file-based entropy source.
1020 * (Also enables the NV seed read/write functions in the platform layer)
1021 *
1022 * This is crucial (if not required) on systems that do not have a
1023 * cryptographic entropy source (in hardware or kernel) available.
1024 *
1025 * Requires: MBEDTLS_ENTROPY_C, MBEDTLS_PLATFORM_C
1026 *
Paul Bakker71a597a2016-06-07 10:59:03 +01001027 * \note The read/write functions that are used by the entropy source are
1028 * determined in the platform layer, and can be modified at runtime and/or
1029 * compile-time depending on the flags (MBEDTLS_PLATFORM_NV_SEED_*) used.
1030 *
1031 * \note If you use the default implementation functions that read a seedfile
Paul Bakkercf0a9f92016-06-01 11:25:44 +01001032 * with regular fopen(), please make sure you make a seedfile with the
1033 * proper name (defined in MBEDTLS_PLATFORM_STD_NV_SEED_FILE) and at
1034 * least MBEDTLS_ENTROPY_BLOCK_SIZE bytes in size that can be read from
Paul Bakker71a597a2016-06-07 10:59:03 +01001035 * and written to or you will get an entropy source error! The default
1036 * implementation will only use the first MBEDTLS_ENTROPY_BLOCK_SIZE
1037 * bytes from the file.
1038 *
1039 * \note The entropy collector will write to the seed file before entropy is
1040 * given to an external source, to update it.
Paul Bakkercf0a9f92016-06-01 11:25:44 +01001041 */
1042//#define MBEDTLS_ENTROPY_NV_SEED
1043
Ronald Cron71016a92020-08-28 19:01:50 +02001044/* MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001045 *
Ronald Cron71016a92020-08-28 19:01:50 +02001046 * Enable key identifiers that encode a key owner identifier.
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001047 *
Ronald Cron9a2511e2020-09-14 10:02:56 +02001048 * The owner of a key is identified by a value of type ::mbedtls_key_owner_id_t
1049 * which is currently hard-coded to be int32_t.
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001050 *
1051 * Note that this option is meant for internal use only and may be removed
Ronald Cron77c89f52020-11-10 17:45:56 +01001052 * without notice. It is incompatible with MBEDTLS_USE_PSA_CRYPTO.
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001053 */
Ronald Cron71016a92020-08-28 19:01:50 +02001054//#define MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER
Gilles Peskine69d7c8b2019-02-19 14:00:31 +01001055
Paul Bakkercf0a9f92016-06-01 11:25:44 +01001056/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001057 * \def MBEDTLS_MEMORY_DEBUG
Paul Bakker6e339b52013-07-03 13:37:05 +02001058 *
1059 * Enable debugging of buffer allocator memory issues. Automatically prints
1060 * (to stderr) all (fatal) messages on memory allocation issues. Enables
1061 * function for 'debug output' of allocated memory.
1062 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001063 * Requires: MBEDTLS_MEMORY_BUFFER_ALLOC_C
Paul Bakker6e339b52013-07-03 13:37:05 +02001064 *
1065 * Uncomment this macro to let the buffer allocator print out error messages.
Paul Bakkera7ea6a52013-10-15 11:55:10 +02001066 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001067//#define MBEDTLS_MEMORY_DEBUG
Paul Bakker6e339b52013-07-03 13:37:05 +02001068
1069/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001070 * \def MBEDTLS_MEMORY_BACKTRACE
Paul Bakker6e339b52013-07-03 13:37:05 +02001071 *
1072 * Include backtrace information with each allocated block.
1073 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001074 * Requires: MBEDTLS_MEMORY_BUFFER_ALLOC_C
Paul Bakker6e339b52013-07-03 13:37:05 +02001075 * GLIBC-compatible backtrace() an backtrace_symbols() support
1076 *
1077 * Uncomment this macro to include backtrace information
Paul Bakker6e339b52013-07-03 13:37:05 +02001078 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001079//#define MBEDTLS_MEMORY_BACKTRACE
Paul Bakker6e339b52013-07-03 13:37:05 +02001080
1081/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001082 * \def MBEDTLS_PK_RSA_ALT_SUPPORT
Manuel Pégourié-Gonnard348bcb32015-03-31 14:01:33 +02001083 *
1084 * Support external private RSA keys (eg from a HSM) in the PK layer.
1085 *
1086 * Comment this macro to disable support for external private RSA keys.
1087 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001088#define MBEDTLS_PK_RSA_ALT_SUPPORT
Manuel Pégourié-Gonnard348bcb32015-03-31 14:01:33 +02001089
1090/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001091 * \def MBEDTLS_PKCS1_V15
Paul Bakker48377d92013-08-30 12:06:24 +02001092 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001093 * Enable support for PKCS#1 v1.5 encoding.
1094 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001095 * Requires: MBEDTLS_RSA_C
Paul Bakker48377d92013-08-30 12:06:24 +02001096 *
Paul Bakker48377d92013-08-30 12:06:24 +02001097 * This enables support for PKCS#1 v1.5 operations.
1098 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001099#define MBEDTLS_PKCS1_V15
Paul Bakker48377d92013-08-30 12:06:24 +02001100
1101/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001102 * \def MBEDTLS_PKCS1_V21
Paul Bakker9dcc3222011-03-08 14:16:06 +00001103 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001104 * Enable support for PKCS#1 v2.1 encoding.
1105 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001106 * Requires: MBEDTLS_MD_C, MBEDTLS_RSA_C
Paul Bakker5690efc2011-05-26 13:16:06 +00001107 *
Paul Bakker9dcc3222011-03-08 14:16:06 +00001108 * This enables support for RSAES-OAEP and RSASSA-PSS operations.
1109 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001110#define MBEDTLS_PKCS1_V21
Paul Bakker9dcc3222011-03-08 14:16:06 +00001111
Steven Cooreman6801f082021-02-19 17:21:22 +01001112/** \def MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS
1113 *
1114 * Enable support for platform built-in keys. If you enable this feature,
1115 * you must implement the function mbedtls_psa_platform_get_builtin_key().
1116 * See the documentation of that function for more information.
1117 *
1118 * Built-in keys are typically derived from a hardware unique key or
1119 * stored in a secure element.
1120 *
1121 * Requires: MBEDTLS_PSA_CRYPTO_C.
1122 *
1123 * \warning This interface is experimental and may change or be removed
1124 * without notice.
1125 */
1126//#define MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS
1127
Ronald Cron3768ac12021-01-26 16:58:00 +01001128/** \def MBEDTLS_PSA_CRYPTO_CLIENT
1129 *
1130 * Enable support for PSA crypto client.
1131 *
1132 * \note This option allows to include the code necessary for a PSA
1133 * crypto client when the PSA crypto implementation is not included in
1134 * the library (MBEDTLS_PSA_CRYPTO_C disabled). The code included is the
1135 * code to set and get PSA key attributes.
1136 * The development of PSA drivers partially relying on the library to
1137 * fulfill the hardware gaps is another possible usage of this option.
1138 *
1139 * \warning This interface is experimental and may change or be removed
1140 * without notice.
1141 */
1142//#define MBEDTLS_PSA_CRYPTO_CLIENT
1143
Steven Cooreman0d59f7b02020-07-16 20:27:57 +02001144/** \def MBEDTLS_PSA_CRYPTO_DRIVERS
1145 *
1146 * Enable support for the experimental PSA crypto driver interface.
1147 *
John Durkop185764f2020-10-12 21:32:12 -07001148 * Requires: MBEDTLS_PSA_CRYPTO_C
Steven Cooreman0d59f7b02020-07-16 20:27:57 +02001149 *
1150 * \warning This interface is experimental and may change or be removed
1151 * without notice.
1152 */
1153//#define MBEDTLS_PSA_CRYPTO_DRIVERS
1154
Gilles Peskinef08b3f82020-11-13 17:36:48 +01001155/** \def MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG
1156 *
1157 * Make the PSA Crypto module use an external random generator provided
1158 * by a driver, instead of Mbed TLS's entropy and DRBG modules.
1159 *
Gilles Peskineb663a602020-11-18 15:27:37 +01001160 * \note This random generator must deliver random numbers with cryptographic
1161 * quality and high performance. It must supply unpredictable numbers
1162 * with a uniform distribution. The implementation of this function
1163 * is responsible for ensuring that the random generator is seeded
1164 * with sufficient entropy. If you have a hardware TRNG which is slow
1165 * or delivers non-uniform output, declare it as an entropy source
1166 * with mbedtls_entropy_add_source() instead of enabling this option.
1167 *
Gilles Peskineb0a748e2020-11-30 12:01:54 +01001168 * If you enable this option, you must configure the type
Gilles Peskineb8af2282020-11-13 18:00:34 +01001169 * ::mbedtls_psa_external_random_context_t in psa/crypto_platform.h
1170 * and define a function called mbedtls_psa_external_get_random()
1171 * with the following prototype:
Gilles Peskinef08b3f82020-11-13 17:36:48 +01001172 * ```
1173 * psa_status_t mbedtls_psa_external_get_random(
1174 * mbedtls_psa_external_random_context_t *context,
1175 * uint8_t *output, size_t output_size, size_t *output_length);
1176 * );
1177 * ```
1178 * The \c context value is initialized to 0 before the first call.
1179 * The function must fill the \c output buffer with \p output_size bytes
1180 * of random data and set \c *output_length to \p output_size.
1181 *
1182 * Requires: MBEDTLS_PSA_CRYPTO_C
1183 *
1184 * \warning If you enable this option, code that uses the PSA cryptography
1185 * interface will not use any of the entropy sources set up for
1186 * the entropy module, nor the NV seed that MBEDTLS_ENTROPY_NV_SEED
1187 * enables.
1188 *
1189 * \note This option is experimental and may be removed without notice.
1190 */
1191//#define MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG
1192
Paul Bakker9dcc3222011-03-08 14:16:06 +00001193/**
Andrzej Kurekc6905232019-02-05 05:23:41 -05001194 * \def MBEDTLS_PSA_CRYPTO_SPM
1195 *
1196 * When MBEDTLS_PSA_CRYPTO_SPM is defined, the code is built for SPM (Secure
1197 * Partition Manager) integration which separates the code into two parts: a
1198 * NSPE (Non-Secure Process Environment) and an SPE (Secure Process
1199 * Environment).
1200 *
1201 * Module: library/psa_crypto.c
1202 * Requires: MBEDTLS_PSA_CRYPTO_C
1203 *
1204 */
1205//#define MBEDTLS_PSA_CRYPTO_SPM
1206
1207/**
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00001208 * \def MBEDTLS_PSA_INJECT_ENTROPY
Andrzej Kurekc6905232019-02-05 05:23:41 -05001209 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00001210 * Enable support for entropy injection at first boot. This feature is
1211 * required on systems that do not have a built-in entropy source (TRNG).
1212 * This feature is currently not supported on systems that have a built-in
1213 * entropy source.
Andrzej Kurekc6905232019-02-05 05:23:41 -05001214 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00001215 * Requires: MBEDTLS_PSA_CRYPTO_STORAGE_C, MBEDTLS_ENTROPY_NV_SEED
Andrzej Kurekc6905232019-02-05 05:23:41 -05001216 *
1217 */
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00001218//#define MBEDTLS_PSA_INJECT_ENTROPY
Andrzej Kurekc6905232019-02-05 05:23:41 -05001219
1220/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001221 * \def MBEDTLS_RSA_NO_CRT
Paul Bakker0216cc12011-03-26 13:40:23 +00001222 *
Hanno Becker88ec2382017-05-03 13:51:16 +01001223 * Do not use the Chinese Remainder Theorem
1224 * for the RSA private operation.
Paul Bakker0216cc12011-03-26 13:40:23 +00001225 *
1226 * Uncomment this macro to disable the use of CRT in RSA.
1227 *
Paul Bakker0216cc12011-03-26 13:40:23 +00001228 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001229//#define MBEDTLS_RSA_NO_CRT
Paul Bakker15566e42011-04-24 21:19:15 +00001230
1231/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001232 * \def MBEDTLS_SELF_TEST
Paul Bakker15566e42011-04-24 21:19:15 +00001233 *
1234 * Enable the checkup functions (*_self_test).
1235 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001236#define MBEDTLS_SELF_TEST
Paul Bakker5c721f92011-07-27 16:51:09 +00001237
1238/**
Manuel Pégourié-Gonnardeb0d8702015-05-28 12:54:04 +02001239 * \def MBEDTLS_SHA256_SMALLER
1240 *
1241 * Enable an implementation of SHA-256 that has lower ROM footprint but also
1242 * lower performance.
1243 *
1244 * The default implementation is meant to be a reasonnable compromise between
1245 * performance and size. This version optimizes more aggressively for size at
1246 * the expense of performance. Eg on Cortex-M4 it reduces the size of
1247 * mbedtls_sha256_process() from ~2KB to ~0.5KB for a performance hit of about
1248 * 30%.
1249 *
1250 * Uncomment to enable the smaller implementation of SHA256.
1251 */
1252//#define MBEDTLS_SHA256_SMALLER
1253
1254/**
Manuel Pégourié-Gonnard2306d152019-07-17 12:36:53 +02001255 * \def MBEDTLS_SHA512_SMALLER
1256 *
1257 * Enable an implementation of SHA-512 that has lower ROM footprint but also
1258 * lower performance.
1259 *
1260 * Uncomment to enable the smaller implementation of SHA512.
1261 */
1262//#define MBEDTLS_SHA512_SMALLER
1263
1264/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001265 * \def MBEDTLS_SSL_ALL_ALERT_MESSAGES
Paul Bakker40865c82013-01-31 17:13:13 +01001266 *
1267 * Enable sending of alert messages in case of encountered errors as per RFC.
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00001268 * If you choose not to send the alert messages, mbed TLS can still communicate
Paul Bakker40865c82013-01-31 17:13:13 +01001269 * with other servers, only debugging of failures is harder.
1270 *
1271 * The advantage of not sending alert messages, is that no information is given
1272 * about reasons for failures thus preventing adversaries of gaining intel.
1273 *
1274 * Enable sending of all alert messages
1275 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001276#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
Paul Bakker40865c82013-01-31 17:13:13 +01001277
1278/**
Gilles Peskined3d02902020-03-04 21:35:27 +01001279 * \def MBEDTLS_SSL_DTLS_CONNECTION_ID
1280 *
1281 * Enable support for the DTLS Connection ID extension
1282 * (version draft-ietf-tls-dtls-connection-id-05,
1283 * https://tools.ietf.org/html/draft-ietf-tls-dtls-connection-id-05)
1284 * which allows to identify DTLS connections across changes
1285 * in the underlying transport.
1286 *
1287 * Setting this option enables the SSL APIs `mbedtls_ssl_set_cid()`,
1288 * `mbedtls_ssl_get_peer_cid()` and `mbedtls_ssl_conf_cid()`.
1289 * See the corresponding documentation for more information.
1290 *
1291 * \warning The Connection ID extension is still in draft state.
1292 * We make no stability promises for the availability
1293 * or the shape of the API controlled by this option.
1294 *
1295 * The maximum lengths of outgoing and incoming CIDs can be configured
1296 * through the options
1297 * - MBEDTLS_SSL_CID_OUT_LEN_MAX
1298 * - MBEDTLS_SSL_CID_IN_LEN_MAX.
1299 *
1300 * Requires: MBEDTLS_SSL_PROTO_DTLS
1301 *
1302 * Uncomment to enable the Connection ID extension.
1303 */
1304//#define MBEDTLS_SSL_DTLS_CONNECTION_ID
1305
1306/**
Gilles Peskineb74a1c72018-04-24 13:09:22 +02001307 * \def MBEDTLS_SSL_ASYNC_PRIVATE
1308 *
1309 * Enable asynchronous external private key operations in SSL. This allows
1310 * you to configure an SSL connection to call an external cryptographic
1311 * module to perform private key operations instead of performing the
1312 * operation inside the library.
1313 *
1314 */
Jaeden Amerod9c71da2018-06-15 20:31:26 +01001315//#define MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskineb74a1c72018-04-24 13:09:22 +02001316
1317/**
Gilles Peskined3d02902020-03-04 21:35:27 +01001318 * \def MBEDTLS_SSL_CONTEXT_SERIALIZATION
1319 *
1320 * Enable serialization of the TLS context structures, through use of the
1321 * functions mbedtls_ssl_context_save() and mbedtls_ssl_context_load().
1322 *
1323 * This pair of functions allows one side of a connection to serialize the
1324 * context associated with the connection, then free or re-use that context
1325 * while the serialized state is persisted elsewhere, and finally deserialize
1326 * that state to a live context for resuming read/write operations on the
1327 * connection. From a protocol perspective, the state of the connection is
1328 * unaffected, in particular this is entirely transparent to the peer.
1329 *
1330 * Note: this is distinct from TLS session resumption, which is part of the
1331 * protocol and fully visible by the peer. TLS session resumption enables
1332 * establishing new connections associated to a saved session with shorter,
1333 * lighter handshakes, while context serialization is a local optimization in
1334 * handling a single, potentially long-lived connection.
1335 *
1336 * Enabling these APIs makes some SSL structures larger, as 64 extra bytes are
1337 * saved after the handshake to allow for more efficient serialization, so if
1338 * you don't need this feature you'll save RAM by disabling it.
1339 *
1340 * Comment to disable the context serialization APIs.
1341 */
1342#define MBEDTLS_SSL_CONTEXT_SERIALIZATION
1343
1344/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001345 * \def MBEDTLS_SSL_DEBUG_ALL
Paul Bakkerd66f0702013-01-31 16:57:45 +01001346 *
1347 * Enable the debug messages in SSL module for all issues.
1348 * Debug messages have been disabled in some places to prevent timing
1349 * attacks due to (unbalanced) debugging function calls.
1350 *
1351 * If you need all error reporting you should enable this during debugging,
1352 * but remove this for production servers that should log as well.
1353 *
1354 * Uncomment this macro to report all debug messages on errors introducing
1355 * a timing side-channel.
1356 *
Paul Bakkerd66f0702013-01-31 16:57:45 +01001357 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001358//#define MBEDTLS_SSL_DEBUG_ALL
Paul Bakkerd66f0702013-01-31 16:57:45 +01001359
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001360/** \def MBEDTLS_SSL_ENCRYPT_THEN_MAC
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +01001361 *
1362 * Enable support for Encrypt-then-MAC, RFC 7366.
1363 *
1364 * This allows peers that both support it to use a more robust protection for
1365 * ciphersuites using CBC, providing deep resistance against timing attacks
1366 * on the padding or underlying cipher.
1367 *
1368 * This only affects CBC ciphersuites, and is useless if none is defined.
1369 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02001370 * Requires: MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +01001371 *
1372 * Comment this macro to disable support for Encrypt-then-MAC
1373 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001374#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +01001375
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001376/** \def MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +02001377 *
Manuel Pégourié-Gonnardbca8aa02020-03-24 12:11:49 +01001378 * Enable support for RFC 7627: Session Hash and Extended Master Secret
1379 * Extension.
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +02001380 *
1381 * This was introduced as "the proper fix" to the Triple Handshake familiy of
1382 * attacks, but it is recommended to always use it (even if you disable
1383 * renegotiation), since it actually fixes a more fundamental issue in the
1384 * original SSL/TLS design, and has implications beyond Triple Handshake.
1385 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02001386 * Requires: MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard769c6b62014-10-28 14:13:55 +01001387 *
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +02001388 * Comment this macro to disable support for Extended Master Secret.
1389 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001390#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +02001391
Paul Bakkerd66f0702013-01-31 16:57:45 +01001392/**
Hanno Beckerbb278f52019-02-05 17:04:00 +00001393 * \def MBEDTLS_SSL_KEEP_PEER_CERTIFICATE
1394 *
Hanno Beckerfd7f2982019-02-25 10:13:33 +00001395 * This option controls the availability of the API mbedtls_ssl_get_peer_cert()
Hanno Beckerbb278f52019-02-05 17:04:00 +00001396 * giving access to the peer's certificate after completion of the handshake.
1397 *
1398 * Unless you need mbedtls_ssl_peer_cert() in your application, it is
1399 * recommended to disable this option for reduced RAM usage.
1400 *
1401 * \note If this option is disabled, mbedtls_ssl_get_peer_cert() is still
1402 * defined, but always returns \c NULL.
1403 *
1404 * \note This option has no influence on the protection against the
1405 * triple handshake attack. Even if it is disabled, Mbed TLS will
1406 * still ensure that certificates do not change during renegotiation,
1407 * for exaple by keeping a hash of the peer's certificate.
1408 *
1409 * Comment this macro to disable storing the peer's certificate
1410 * after the handshake.
1411 */
1412#define MBEDTLS_SSL_KEEP_PEER_CERTIFICATE
1413
1414/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001415 * \def MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard615e6772014-11-03 08:23:14 +01001416 *
Hanno Becker0eb8fb82018-10-26 09:53:16 +01001417 * Enable support for TLS renegotiation.
Manuel Pégourié-Gonnard615e6772014-11-03 08:23:14 +01001418 *
1419 * The two main uses of renegotiation are (1) refresh keys on long-lived
1420 * connections and (2) client authentication after the initial handshake.
1421 * If you don't need renegotiation, it's probably better to disable it, since
1422 * it has been associated with security issues in the past and is easy to
1423 * misuse/misunderstand.
Manuel Pégourié-Gonnard03717042014-11-04 19:52:10 +01001424 *
Manuel Pégourié-Gonnard55f968b2015-03-09 16:23:15 +00001425 * Comment this to disable support for renegotiation.
Hanno Becker6851b102017-10-12 14:57:48 +01001426 *
1427 * \note Even if this option is disabled, both client and server are aware
1428 * of the Renegotiation Indication Extension (RFC 5746) used to
1429 * prevent the SSL renegotiation attack (see RFC 5746 Sect. 1).
1430 * (See \c mbedtls_ssl_conf_legacy_renegotiation for the
1431 * configuration of this extension).
1432 *
Manuel Pégourié-Gonnard615e6772014-11-03 08:23:14 +01001433 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001434#define MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard615e6772014-11-03 08:23:14 +01001435
1436/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001437 * \def MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Paul Bakker05decb22013-08-15 13:33:48 +02001438 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001439 * Enable support for RFC 6066 max_fragment_length extension in SSL.
Paul Bakker05decb22013-08-15 13:33:48 +02001440 *
1441 * Comment this macro to disable support for the max_fragment_length extension
1442 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001443#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Paul Bakker05decb22013-08-15 13:33:48 +02001444
1445/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001446 * \def MBEDTLS_SSL_PROTO_TLS1_2
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001447 *
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001448 * Enable support for TLS 1.2 (and DTLS 1.2 if DTLS is enabled).
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001449 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001450 * Requires: MBEDTLS_SHA1_C or MBEDTLS_SHA256_C or MBEDTLS_SHA512_C
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001451 * (Depends on ciphersuites)
1452 *
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001453 * Comment this macro to disable support for TLS 1.2 / DTLS 1.2
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001454 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001455#define MBEDTLS_SSL_PROTO_TLS1_2
Paul Bakkerd2f068e2013-08-27 21:19:20 +02001456
1457/**
Hanno Becker9fc15ea2020-05-04 12:00:47 +01001458 * \def MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
1459 *
Hanno Becker3c358d42020-05-20 13:54:41 +01001460 * This macro is used to selectively enable experimental parts
1461 * of the code that contribute to the ongoing development of
1462 * the prototype TLS 1.3 and DTLS 1.3 implementation, and provide
1463 * no other purpose.
Hanno Becker9fc15ea2020-05-04 12:00:47 +01001464 *
Hanno Becker3c358d42020-05-20 13:54:41 +01001465 * \warning TLS 1.3 and DTLS 1.3 aren't yet supported in Mbed TLS,
1466 * and no feature exposed through this macro is part of the
1467 * public API. In particular, features under the control
1468 * of this macro are experimental and don't come with any
1469 * stability guarantees.
Hanno Becker9fc15ea2020-05-04 12:00:47 +01001470 *
1471 * Uncomment this macro to enable experimental and partial
1472 * functionality specific to TLS 1.3.
1473 */
Hanno Beckere4160602020-05-07 15:11:45 +01001474//#define MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
Hanno Becker9fc15ea2020-05-04 12:00:47 +01001475
1476/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001477 * \def MBEDTLS_SSL_PROTO_DTLS
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001478 *
1479 * Enable support for DTLS (all available versions).
1480 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02001481 * Enable this and MBEDTLS_SSL_PROTO_TLS1_2 to enable DTLS 1.2.
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001482 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02001483 * Requires: MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001484 *
1485 * Comment this macro to disable support for DTLS
1486 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001487#define MBEDTLS_SSL_PROTO_DTLS
Manuel Pégourié-Gonnard0b1ff292014-02-06 13:04:16 +01001488
1489/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001490 * \def MBEDTLS_SSL_ALPN
Manuel Pégourié-Gonnard7e250d42014-04-04 16:08:41 +02001491 *
Manuel Pégourié-Gonnard6b298e62014-11-20 18:28:50 +01001492 * Enable support for RFC 7301 Application Layer Protocol Negotiation.
Manuel Pégourié-Gonnard7e250d42014-04-04 16:08:41 +02001493 *
Paul Bakker27e36d32014-04-08 12:33:37 +02001494 * Comment this macro to disable support for ALPN.
Manuel Pégourié-Gonnard7e250d42014-04-04 16:08:41 +02001495 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001496#define MBEDTLS_SSL_ALPN
Manuel Pégourié-Gonnard7e250d42014-04-04 16:08:41 +02001497
1498/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001499 * \def MBEDTLS_SSL_DTLS_ANTI_REPLAY
Manuel Pégourié-Gonnard8464a462014-09-24 14:05:32 +02001500 *
1501 * Enable support for the anti-replay mechanism in DTLS.
1502 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001503 * Requires: MBEDTLS_SSL_TLS_C
1504 * MBEDTLS_SSL_PROTO_DTLS
Manuel Pégourié-Gonnard8464a462014-09-24 14:05:32 +02001505 *
Manuel Pégourié-Gonnarda6fcffe2014-10-13 18:15:52 +02001506 * \warning Disabling this is often a security risk!
Manuel Pégourié-Gonnard6729e792015-05-11 09:50:24 +02001507 * See mbedtls_ssl_conf_dtls_anti_replay() for details.
Manuel Pégourié-Gonnarda6fcffe2014-10-13 18:15:52 +02001508 *
Manuel Pégourié-Gonnard8464a462014-09-24 14:05:32 +02001509 * Comment this to disable anti-replay in DTLS.
1510 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001511#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
Manuel Pégourié-Gonnard8464a462014-09-24 14:05:32 +02001512
1513/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001514 * \def MBEDTLS_SSL_DTLS_HELLO_VERIFY
Manuel Pégourié-Gonnard82202f02014-07-23 00:28:58 +02001515 *
1516 * Enable support for HelloVerifyRequest on DTLS servers.
1517 *
1518 * This feature is highly recommended to prevent DTLS servers being used as
1519 * amplifiers in DoS attacks against other hosts. It should always be enabled
1520 * unless you know for sure amplification cannot be a problem in the
1521 * environment in which your server operates.
1522 *
Manuel Pégourié-Gonnarda6fcffe2014-10-13 18:15:52 +02001523 * \warning Disabling this can ba a security risk! (see above)
1524 *
Manuel Pégourié-Gonnarde057d3b2015-05-20 10:59:43 +02001525 * Requires: MBEDTLS_SSL_PROTO_DTLS
Manuel Pégourié-Gonnard82202f02014-07-23 00:28:58 +02001526 *
1527 * Comment this to disable support for HelloVerifyRequest.
1528 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001529#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
Manuel Pégourié-Gonnard82202f02014-07-23 00:28:58 +02001530
1531/**
Johan Pascalb62bb512015-12-03 21:56:45 +01001532 * \def MBEDTLS_SSL_DTLS_SRTP
1533 *
Tobias Nießen1e8ca122021-05-10 19:53:15 +02001534 * Enable support for negotiation of DTLS-SRTP (RFC 5764)
Johan Pascal842d6712020-09-23 13:34:40 +02001535 * through the use_srtp extension.
1536 *
1537 * \note This feature provides the minimum functionality required
1538 * to negotiate the use of DTLS-SRTP and to allow the derivation of
1539 * the associated SRTP packet protection key material.
1540 * In particular, the SRTP packet protection itself, as well as the
1541 * demultiplexing of RTP and DTLS packets at the datagram layer
1542 * (see Section 5 of RFC 5764), are not handled by this feature.
1543 * Instead, after successful completion of a handshake negotiating
1544 * the use of DTLS-SRTP, the extended key exporter API
Hanno Becker2d6e6f82021-05-24 10:58:31 +01001545 * mbedtls_ssl_conf_export_keys_cb() should be used to implement
Johan Pascal842d6712020-09-23 13:34:40 +02001546 * the key exporter described in Section 4.2 of RFC 5764 and RFC 5705
1547 * (this is implemented in the SSL example programs).
1548 * The resulting key should then be passed to an SRTP stack.
1549 *
1550 * Setting this option enables the runtime API
1551 * mbedtls_ssl_conf_dtls_srtp_protection_profiles()
1552 * through which the supported DTLS-SRTP protection
1553 * profiles can be configured. You must call this API at
1554 * runtime if you wish to negotiate the use of DTLS-SRTP.
Johan Pascalb62bb512015-12-03 21:56:45 +01001555 *
1556 * Requires: MBEDTLS_SSL_PROTO_DTLS
1557 *
Ron Eldor9cfb5eb2018-12-10 15:30:14 +02001558 * Uncomment this to enable support for use_srtp extension.
Johan Pascalb62bb512015-12-03 21:56:45 +01001559 */
Ron Eldor9cfb5eb2018-12-10 15:30:14 +02001560//#define MBEDTLS_SSL_DTLS_SRTP
Johan Pascalb62bb512015-12-03 21:56:45 +01001561
1562/**
Manuel Pégourié-Gonnard26d227d2015-09-04 10:53:25 +02001563 * \def MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1564 *
1565 * Enable server-side support for clients that reconnect from the same port.
1566 *
1567 * Some clients unexpectedly close the connection and try to reconnect using the
1568 * same source port. This needs special support from the server to handle the
Simon Butcher4f6882a2015-09-11 17:12:46 +01001569 * new connection securely, as described in section 4.2.8 of RFC 6347. This
Manuel Pégourié-Gonnard26d227d2015-09-04 10:53:25 +02001570 * flag enables that support.
1571 *
Manuel Pégourié-Gonnard62c74bb2015-09-08 17:50:29 +02001572 * Requires: MBEDTLS_SSL_DTLS_HELLO_VERIFY
Manuel Pégourié-Gonnard62c74bb2015-09-08 17:50:29 +02001573 *
Manuel Pégourié-Gonnard26d227d2015-09-04 10:53:25 +02001574 * Comment this to disable support for clients reusing the source port.
1575 */
1576#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1577
1578/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001579 * \def MBEDTLS_SSL_SESSION_TICKETS
Paul Bakkera503a632013-08-14 13:48:06 +02001580 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001581 * Enable support for RFC 5077 session tickets in SSL.
Antonin Décimo36e89b52019-01-23 15:24:37 +01001582 * Client-side, provides full support for session tickets (maintenance of a
Manuel Pégourié-Gonnard0c0f11f2015-05-20 09:55:50 +02001583 * session store remains the responsibility of the application, though).
1584 * Server-side, you also need to provide callbacks for writing and parsing
1585 * tickets, including authenticated encryption and key management. Example
1586 * callbacks are provided by MBEDTLS_SSL_TICKET_C.
Paul Bakkera503a632013-08-14 13:48:06 +02001587 *
1588 * Comment this macro to disable support for SSL session tickets
1589 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001590#define MBEDTLS_SSL_SESSION_TICKETS
Paul Bakkera503a632013-08-14 13:48:06 +02001591
1592/**
Robert Cragie4feb7ae2015-10-02 13:33:37 +01001593 * \def MBEDTLS_SSL_EXPORT_KEYS
1594 *
Manuel Pégourié-Gonnard024b6df2015-10-19 13:52:53 +02001595 * Enable support for exporting key block and master secret.
Robert Cragie4feb7ae2015-10-02 13:33:37 +01001596 * This is required for certain users of TLS, e.g. EAP-TLS.
1597 *
1598 * Comment this macro to disable support for key export
1599 */
1600#define MBEDTLS_SSL_EXPORT_KEYS
1601
1602/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001603 * \def MBEDTLS_SSL_SERVER_NAME_INDICATION
Paul Bakker0be444a2013-08-27 21:55:01 +02001604 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02001605 * Enable support for RFC 6066 server name indication (SNI) in SSL.
Paul Bakker0be444a2013-08-27 21:55:01 +02001606 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001607 * Requires: MBEDTLS_X509_CRT_PARSE_C
Manuel Pégourié-Gonnardbbbb3cf2015-01-28 16:44:37 +00001608 *
Paul Bakker0be444a2013-08-27 21:55:01 +02001609 * Comment this macro to disable support for server name indication in SSL
1610 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001611#define MBEDTLS_SSL_SERVER_NAME_INDICATION
Paul Bakker0be444a2013-08-27 21:55:01 +02001612
1613/**
Gilles Peskinef03bd812020-03-23 18:13:58 +01001614 * \def MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1615 *
Andrzej Kurek2a54a6f2021-01-07 08:13:49 -05001616 * When this option is enabled, the SSL buffer will be resized automatically
1617 * based on the negotiated maximum fragment length in each direction.
Andrzej Kurek557289b2020-10-21 15:12:39 +02001618 *
1619 * Requires: MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Gilles Peskinef03bd812020-03-23 18:13:58 +01001620 */
1621//#define MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1622
1623/**
Manuel Pégourié-Gonnard6240def2020-07-10 09:35:54 +02001624 * \def MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
1625 *
1626 * Enable testing of the constant-flow nature of some sensitive functions with
1627 * clang's MemorySanitizer. This causes some existing tests to also test
Manuel Pégourié-Gonnarddd00bfc2020-08-24 12:58:36 +02001628 * this non-functional property of the code under test.
Manuel Pégourié-Gonnard6240def2020-07-10 09:35:54 +02001629 *
Manuel Pégourié-Gonnarddd00bfc2020-08-24 12:58:36 +02001630 * This setting requires compiling with clang -fsanitize=memory. The test
1631 * suites can then be run normally.
Manuel Pégourié-Gonnard6240def2020-07-10 09:35:54 +02001632 *
Manuel Pégourié-Gonnard8ff863b2020-07-31 12:59:34 +02001633 * \warning This macro is only used for extended testing; it is not considered
1634 * part of the library's API, so it may change or disappear at any time.
1635 *
Manuel Pégourié-Gonnard390fb4f2020-07-24 11:08:40 +02001636 * Uncomment to enable testing of the constant-flow nature of selected code.
Manuel Pégourié-Gonnard6240def2020-07-10 09:35:54 +02001637 */
1638//#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
1639
1640/**
Manuel Pégourié-Gonnard73afa372020-08-19 10:27:38 +02001641 * \def MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
1642 *
1643 * Enable testing of the constant-flow nature of some sensitive functions with
1644 * valgrind's memcheck tool. This causes some existing tests to also test
Manuel Pégourié-Gonnarddd00bfc2020-08-24 12:58:36 +02001645 * this non-functional property of the code under test.
Manuel Pégourié-Gonnard73afa372020-08-19 10:27:38 +02001646 *
1647 * This setting requires valgrind headers for building, and is only useful for
Manuel Pégourié-Gonnarddd00bfc2020-08-24 12:58:36 +02001648 * testing if the tests suites are run with valgrind's memcheck. This can be
1649 * done for an individual test suite with 'valgrind ./test_suite_xxx', or when
1650 * using CMake, this can be done for all test suites with 'make memcheck'.
Manuel Pégourié-Gonnard73afa372020-08-19 10:27:38 +02001651 *
1652 * \warning This macro is only used for extended testing; it is not considered
1653 * part of the library's API, so it may change or disappear at any time.
1654 *
1655 * Uncomment to enable testing of the constant-flow nature of selected code.
1656 */
1657//#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
1658
1659/**
Gilles Peskinefea6eaf2019-09-11 13:27:48 +02001660 * \def MBEDTLS_TEST_HOOKS
1661 *
1662 * Enable features for invasive testing such as introspection functions and
1663 * hooks for fault injection. This enables additional unit tests.
1664 *
1665 * Merely enabling this feature should not change the behavior of the product.
1666 * It only adds new code, and new branching points where the default behavior
1667 * is the same as when this feature is disabled.
1668 * However, this feature increases the attack surface: there is an added
1669 * risk of vulnerabilities, and more gadgets that can make exploits easier.
1670 * Therefore this feature must never be enabled in production.
1671 *
1672 * See `docs/architecture/testing/mbed-crypto-invasive-testing.md` for more
1673 * information.
1674 *
1675 * Uncomment to enable invasive tests.
1676 */
1677//#define MBEDTLS_TEST_HOOKS
1678
1679/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001680 * \def MBEDTLS_THREADING_ALT
Paul Bakker2466d932013-09-28 14:40:38 +02001681 *
1682 * Provide your own alternate threading implementation.
1683 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001684 * Requires: MBEDTLS_THREADING_C
Paul Bakker2466d932013-09-28 14:40:38 +02001685 *
1686 * Uncomment this to allow your own alternate threading implementation.
Paul Bakker2466d932013-09-28 14:40:38 +02001687 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001688//#define MBEDTLS_THREADING_ALT
Paul Bakker2466d932013-09-28 14:40:38 +02001689
1690/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001691 * \def MBEDTLS_THREADING_PTHREAD
Paul Bakker2466d932013-09-28 14:40:38 +02001692 *
1693 * Enable the pthread wrapper layer for the threading layer.
1694 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001695 * Requires: MBEDTLS_THREADING_C
Paul Bakker2466d932013-09-28 14:40:38 +02001696 *
1697 * Uncomment this to enable pthread mutexes.
Paul Bakker2466d932013-09-28 14:40:38 +02001698 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001699//#define MBEDTLS_THREADING_PTHREAD
Paul Bakker2466d932013-09-28 14:40:38 +02001700
1701/**
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001702 * \def MBEDTLS_USE_PSA_CRYPTO
1703 *
Manuel Pégourié-Gonnard971dea32019-02-01 12:38:40 +01001704 * Make the X.509 and TLS library use PSA for cryptographic operations, and
1705 * enable new APIs for using keys handled by PSA Crypto.
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001706 *
Jaeden Amero8dd16902019-07-22 16:39:49 +01001707 * \note Development of this option is currently in progress, and parts of Mbed
1708 * TLS's X.509 and TLS modules are not ported to PSA yet. However, these parts
Andrzej Kurekd65b11d2019-04-16 04:20:24 -04001709 * will still continue to work as usual, so enabling this option should not
1710 * break backwards compatibility.
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001711 *
Gilles Peskined3d02902020-03-04 21:35:27 +01001712 * \warning The PSA Crypto API is in beta stage. While you're welcome to
1713 * experiment using it, incompatible API changes are still possible, and some
1714 * parts may not have reached the same quality as the rest of Mbed TLS yet.
Manuel Pégourié-Gonnard971dea32019-02-01 12:38:40 +01001715 *
1716 * \warning This option enables new Mbed TLS APIs that are dependent on the
1717 * PSA Crypto API, so can't come with the same stability guarantees as the
1718 * rest of the Mbed TLS APIs. You're welcome to experiment with them, but for
Andrzej Kurekd3deb1d2019-04-16 04:14:48 -04001719 * now, access to these APIs is opt-in (via enabling the present option), in
Manuel Pégourié-Gonnard971dea32019-02-01 12:38:40 +01001720 * order to clearly differentiate them from the stable Mbed TLS APIs.
Hanno Becker51560b62018-11-19 09:46:26 +00001721 *
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001722 * Requires: MBEDTLS_PSA_CRYPTO_C.
Manuel Pégourié-Gonnard971dea32019-02-01 12:38:40 +01001723 *
Andrzej Kurekd3deb1d2019-04-16 04:14:48 -04001724 * Uncomment this to enable internal use of PSA Crypto and new associated APIs.
Manuel Pégourié-Gonnardaeefa492018-10-22 12:14:52 +02001725 */
1726//#define MBEDTLS_USE_PSA_CRYPTO
1727
1728/**
John Durkop6e33dbe2020-09-17 21:15:13 -07001729 * \def MBEDTLS_PSA_CRYPTO_CONFIG
1730 *
John Durkop185764f2020-10-12 21:32:12 -07001731 * This setting allows support for cryptographic mechanisms through the PSA
1732 * API to be configured separately from support through the mbedtls API.
John Durkop6e33dbe2020-09-17 21:15:13 -07001733 *
John Durkop185764f2020-10-12 21:32:12 -07001734 * Uncomment this to enable use of PSA Crypto configuration settings which
Gilles Peskine58858b72020-11-09 15:26:09 +01001735 * can be found in include/psa/crypto_config.h.
1736 *
1737 * If you enable this option and write your own configuration file, you must
1738 * include mbedtls/config_psa.h in your configuration file. The default
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +02001739 * provided mbedtls/mbedtls_config.h contains the necessary inclusion.
John Durkop185764f2020-10-12 21:32:12 -07001740 *
1741 * This feature is still experimental and is not ready for production since
1742 * it is not completed.
John Durkop6e33dbe2020-09-17 21:15:13 -07001743 */
1744//#define MBEDTLS_PSA_CRYPTO_CONFIG
1745
1746/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001747 * \def MBEDTLS_VERSION_FEATURES
Paul Bakker0f90d7d2014-04-30 11:49:44 +02001748 *
1749 * Allow run-time checking of compile-time enabled features. Thus allowing users
1750 * to check at run-time if the library is for instance compiled with threading
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001751 * support via mbedtls_version_check_feature().
Paul Bakker0f90d7d2014-04-30 11:49:44 +02001752 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001753 * Requires: MBEDTLS_VERSION_C
Paul Bakker0f90d7d2014-04-30 11:49:44 +02001754 *
1755 * Comment this to disable run-time checking and save ROM space
1756 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001757#define MBEDTLS_VERSION_FEATURES
Paul Bakker0f90d7d2014-04-30 11:49:44 +02001758
1759/**
Hanno Becker288dedc2019-03-27 11:00:53 +00001760 * \def MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
1761 *
Jarno Lamsaf49fedc2019-04-01 14:58:30 +03001762 * If set, this enables the X.509 API `mbedtls_x509_crt_verify_with_ca_cb()`
Hanno Becker288dedc2019-03-27 11:00:53 +00001763 * and the SSL API `mbedtls_ssl_conf_ca_cb()` which allow users to configure
1764 * the set of trusted certificates through a callback instead of a linked
1765 * list.
1766 *
1767 * This is useful for example in environments where a large number of trusted
1768 * certificates is present and storing them in a linked list isn't efficient
1769 * enough, or when the set of trusted certificates changes frequently.
1770 *
Jarno Lamsaf49fedc2019-04-01 14:58:30 +03001771 * See the documentation of `mbedtls_x509_crt_verify_with_ca_cb()` and
Hanno Becker288dedc2019-03-27 11:00:53 +00001772 * `mbedtls_ssl_conf_ca_cb()` for more information.
1773 *
1774 * Uncomment to enable trusted certificate callbacks.
1775 */
1776//#define MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
1777
1778/**
Hanno Becker612a2f12020-10-09 09:19:39 +01001779 * \def MBEDTLS_X509_REMOVE_INFO
Peter Kolbus9a969b62018-12-11 13:55:56 -06001780 *
Chris Jones2c745862020-12-16 11:41:06 +00001781 * Disable mbedtls_x509_*_info() and related APIs.
Peter Kolbus9a969b62018-12-11 13:55:56 -06001782 *
Chris Jones2c745862020-12-16 11:41:06 +00001783 * Uncomment to omit mbedtls_x509_*_info(), as well as mbedtls_debug_print_crt()
Peter Kolbus9a969b62018-12-11 13:55:56 -06001784 * and other functions/constants only used by these functions, thus reducing
1785 * the code footprint by several KB.
1786 */
Chris Jones2c745862020-12-16 11:41:06 +00001787//#define MBEDTLS_X509_REMOVE_INFO
Peter Kolbus9a969b62018-12-11 13:55:56 -06001788
1789/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001790 * \def MBEDTLS_X509_RSASSA_PSS_SUPPORT
Manuel Pégourié-Gonnardd1539b12014-06-06 16:42:37 +02001791 *
1792 * Enable parsing and verification of X.509 certificates, CRLs and CSRS
1793 * signed with RSASSA-PSS (aka PKCS#1 v2.1).
1794 *
1795 * Comment this macro to disallow using RSASSA-PSS in certificates.
1796 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001797#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00001798/* \} name SECTION: mbed TLS feature support */
Paul Bakker0a62cd12011-01-21 11:00:08 +00001799
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001800/**
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00001801 * \name SECTION: mbed TLS modules
Paul Bakker0a62cd12011-01-21 11:00:08 +00001802 *
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00001803 * This section enables or disables entire modules in mbed TLS
Paul Bakker0a62cd12011-01-21 11:00:08 +00001804 * \{
1805 */
Paul Bakker5121ce52009-01-03 21:22:43 +00001806
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001807/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001808 * \def MBEDTLS_AESNI_C
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01001809 *
1810 * Enable AES-NI support on x86-64.
1811 *
1812 * Module: library/aesni.c
1813 * Caller: library/aes.c
1814 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001815 * Requires: MBEDTLS_HAVE_ASM
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01001816 *
1817 * This modules adds support for the AES-NI instructions on x86-64
1818 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001819#define MBEDTLS_AESNI_C
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01001820
1821/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001822 * \def MBEDTLS_AES_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001823 *
1824 * Enable the AES block cipher.
1825 *
Paul Bakker5121ce52009-01-03 21:22:43 +00001826 * Module: library/aes.c
Manuel Pégourié-Gonnardfdd43542018-02-28 10:49:02 +01001827 * Caller: library/cipher.c
Paul Bakker96743fc2011-02-12 14:30:57 +00001828 * library/pem.c
Paul Bakker6083fd22011-12-03 21:45:14 +00001829 * library/ctr_drbg.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001830 *
Paul Bakker645ce3a2012-10-31 12:32:41 +00001831 * This module enables the following ciphersuites (if other requisites are
1832 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001833 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
1834 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
1835 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
1836 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
1837 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
1838 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
1839 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
1840 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
1841 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
1842 * MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
1843 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
1844 * MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
1845 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
1846 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
1847 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
1848 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
1849 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
1850 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
1851 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
1852 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
1853 * MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
1854 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
1855 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
1856 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
1857 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
1858 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
1859 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
1860 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
1861 * MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
1862 * MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
1863 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384
1864 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384
1865 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384
1866 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA
1867 * MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA
1868 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
1869 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256
1870 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
1871 * MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA
1872 * MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA
1873 * MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384
1874 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256
1875 * MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA
1876 * MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256
1877 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256
1878 * MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA
1879 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384
1880 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384
1881 * MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA
1882 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256
1883 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256
1884 * MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA
1885 * MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384
1886 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384
1887 * MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA
1888 * MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256
1889 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256
1890 * MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA
Paul Bakker6deb37e2013-02-19 13:17:08 +01001891 *
Paul Bakkercff68422013-09-15 20:43:33 +02001892 * PEM_PARSE uses AES for decrypting encrypted keys.
Paul Bakker5121ce52009-01-03 21:22:43 +00001893 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001894#define MBEDTLS_AES_C
Paul Bakker5121ce52009-01-03 21:22:43 +00001895
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001896/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001897 * \def MBEDTLS_ASN1_PARSE_C
Paul Bakkerefc30292011-11-10 14:43:23 +00001898 *
1899 * Enable the generic ASN1 parser.
1900 *
1901 * Module: library/asn1.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02001902 * Caller: library/x509.c
1903 * library/dhm.c
1904 * library/pkcs12.c
1905 * library/pkcs5.c
1906 * library/pkparse.c
Paul Bakkerefc30292011-11-10 14:43:23 +00001907 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001908#define MBEDTLS_ASN1_PARSE_C
Paul Bakkerefc30292011-11-10 14:43:23 +00001909
1910/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001911 * \def MBEDTLS_ASN1_WRITE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00001912 *
1913 * Enable the generic ASN1 writer.
1914 *
1915 * Module: library/asn1write.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02001916 * Caller: library/ecdsa.c
1917 * library/pkwrite.c
1918 * library/x509_create.c
1919 * library/x509write_crt.c
Simon Butcher2cb47392016-11-04 12:23:11 +00001920 * library/x509write_csr.c
Paul Bakkerbdb912d2012-02-13 23:11:30 +00001921 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001922#define MBEDTLS_ASN1_WRITE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00001923
1924/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001925 * \def MBEDTLS_BASE64_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001926 *
1927 * Enable the Base64 module.
1928 *
Paul Bakker5121ce52009-01-03 21:22:43 +00001929 * Module: library/base64.c
Paul Bakker5690efc2011-05-26 13:16:06 +00001930 * Caller: library/pem.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001931 *
Paul Bakker5690efc2011-05-26 13:16:06 +00001932 * This module is required for PEM support (required by X.509).
Paul Bakker5121ce52009-01-03 21:22:43 +00001933 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001934#define MBEDTLS_BASE64_C
Paul Bakker5121ce52009-01-03 21:22:43 +00001935
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001936/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001937 * \def MBEDTLS_BIGNUM_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001938 *
Paul Bakker9a736322012-11-14 12:39:52 +00001939 * Enable the multi-precision integer library.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001940 *
Paul Bakker5121ce52009-01-03 21:22:43 +00001941 * Module: library/bignum.c
1942 * Caller: library/dhm.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02001943 * library/ecp.c
Manuel Pégourié-Gonnardbf319772014-06-25 13:00:17 +02001944 * library/ecdsa.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001945 * library/rsa.c
Chris Jones3848e312021-03-11 16:17:59 +00001946 * library/rsa_alt_helpers.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001947 * library/ssl_tls.c
Paul Bakker5121ce52009-01-03 21:22:43 +00001948 *
Manuel Pégourié-Gonnardbf319772014-06-25 13:00:17 +02001949 * This module is required for RSA, DHM and ECC (ECDH, ECDSA) support.
Paul Bakker5121ce52009-01-03 21:22:43 +00001950 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001951#define MBEDTLS_BIGNUM_C
Paul Bakker5121ce52009-01-03 21:22:43 +00001952
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001953/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001954 * \def MBEDTLS_CAMELLIA_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00001955 *
1956 * Enable the Camellia block cipher.
1957 *
Paul Bakker38119b12009-01-10 23:31:23 +00001958 * Module: library/camellia.c
Manuel Pégourié-Gonnardfdd43542018-02-28 10:49:02 +01001959 * Caller: library/cipher.c
Paul Bakker38119b12009-01-10 23:31:23 +00001960 *
Paul Bakker645ce3a2012-10-31 12:32:41 +00001961 * This module enables the following ciphersuites (if other requisites are
1962 * enabled as well):
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001963 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
1964 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
1965 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
1966 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
1967 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
1968 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
1969 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
1970 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
1971 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
1972 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
1973 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
1974 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
1975 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
1976 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
1977 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
1978 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
1979 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
1980 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
1981 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
1982 * MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
1983 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
1984 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
1985 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384
1986 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
1987 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
1988 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256
1989 * MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
1990 * MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
1991 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384
1992 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
1993 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
1994 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256
1995 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
1996 * MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
1997 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384
1998 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384
1999 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256
2000 * MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256
2001 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384
2002 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384
2003 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256
2004 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256
Paul Bakker38119b12009-01-10 23:31:23 +00002005 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002006#define MBEDTLS_CAMELLIA_C
Paul Bakker38119b12009-01-10 23:31:23 +00002007
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002008/**
Markku-Juhani O. Saarinen3c0b53b2017-11-30 16:00:34 +00002009 * \def MBEDTLS_ARIA_C
2010 *
Manuel Pégourié-Gonnard525168c2018-02-28 10:47:02 +01002011 * Enable the ARIA block cipher.
Markku-Juhani O. Saarinen3c0b53b2017-11-30 16:00:34 +00002012 *
2013 * Module: library/aria.c
Manuel Pégourié-Gonnard525168c2018-02-28 10:47:02 +01002014 * Caller: library/cipher.c
2015 *
2016 * This module enables the following ciphersuites (if other requisites are
2017 * enabled as well):
2018 *
2019 * MBEDTLS_TLS_RSA_WITH_ARIA_128_CBC_SHA256
2020 * MBEDTLS_TLS_RSA_WITH_ARIA_256_CBC_SHA384
2021 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256
2022 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384
2023 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256
2024 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384
2025 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256
2026 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384
2027 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256
2028 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384
2029 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256
2030 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384
2031 * MBEDTLS_TLS_RSA_WITH_ARIA_128_GCM_SHA256
2032 * MBEDTLS_TLS_RSA_WITH_ARIA_256_GCM_SHA384
2033 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256
2034 * MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384
2035 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256
2036 * MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384
2037 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256
2038 * MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384
2039 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
2040 * MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
2041 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256
2042 * MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384
2043 * MBEDTLS_TLS_PSK_WITH_ARIA_128_CBC_SHA256
2044 * MBEDTLS_TLS_PSK_WITH_ARIA_256_CBC_SHA384
2045 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256
2046 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384
2047 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256
2048 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384
2049 * MBEDTLS_TLS_PSK_WITH_ARIA_128_GCM_SHA256
2050 * MBEDTLS_TLS_PSK_WITH_ARIA_256_GCM_SHA384
2051 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256
2052 * MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384
2053 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256
2054 * MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384
2055 * MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256
2056 * MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384
Markku-Juhani O. Saarinen3c0b53b2017-11-30 16:00:34 +00002057 */
TRodziewicz85aff9f2021-04-23 10:47:26 +02002058#define MBEDTLS_ARIA_C
Markku-Juhani O. Saarinen3c0b53b2017-11-30 16:00:34 +00002059
2060/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002061 * \def MBEDTLS_CCM_C
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +02002062 *
2063 * Enable the Counter with CBC-MAC (CCM) mode for 128-bit block cipher.
2064 *
2065 * Module: library/ccm.c
2066 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002067 * Requires: MBEDTLS_AES_C or MBEDTLS_CAMELLIA_C
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +02002068 *
2069 * This module enables the AES-CCM ciphersuites, if other requisites are
2070 * enabled as well.
2071 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002072#define MBEDTLS_CCM_C
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +02002073
2074/**
Daniel King34b822c2016-05-15 17:28:08 -03002075 * \def MBEDTLS_CHACHA20_C
2076 *
2077 * Enable the ChaCha20 stream cipher.
2078 *
2079 * Module: library/chacha20.c
2080 */
2081#define MBEDTLS_CHACHA20_C
2082
2083/**
Manuel Pégourié-Gonnarde533b222018-06-04 12:23:19 +02002084 * \def MBEDTLS_CHACHAPOLY_C
2085 *
2086 * Enable the ChaCha20-Poly1305 AEAD algorithm.
2087 *
2088 * Module: library/chachapoly.c
2089 *
2090 * This module requires: MBEDTLS_CHACHA20_C, MBEDTLS_POLY1305_C
2091 */
2092#define MBEDTLS_CHACHAPOLY_C
2093
2094/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002095 * \def MBEDTLS_CIPHER_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002096 *
2097 * Enable the generic cipher layer.
2098 *
Paul Bakker8123e9d2011-01-06 15:37:30 +00002099 * Module: library/cipher.c
Paul Bakker04784f52013-08-19 13:30:57 +02002100 * Caller: library/ssl_tls.c
Paul Bakker8123e9d2011-01-06 15:37:30 +00002101 *
2102 * Uncomment to enable generic cipher wrappers.
2103 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002104#define MBEDTLS_CIPHER_C
Paul Bakker8123e9d2011-01-06 15:37:30 +00002105
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002106/**
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002107 * \def MBEDTLS_CMAC_C
2108 *
Simon Butcher327398a2016-10-05 14:09:11 +01002109 * Enable the CMAC (Cipher-based Message Authentication Code) mode for block
2110 * ciphers.
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002111 *
Steven Cooremanc338cef2021-04-26 11:24:44 +02002112 * \note When #MBEDTLS_CMAC_ALT is active, meaning that the underlying
2113 * implementation of the CMAC algorithm is provided by an alternate
2114 * implementation, that alternate implementation may opt to not support
2115 * AES-192 or 3DES as underlying block ciphers for the CMAC operation.
2116 *
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002117 * Module: library/cmac.c
2118 *
Simon Butcher69283e52016-10-06 12:49:58 +01002119 * Requires: MBEDTLS_AES_C or MBEDTLS_DES_C
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002120 *
2121 */
TRodziewicz85aff9f2021-04-23 10:47:26 +02002122#define MBEDTLS_CMAC_C
Robert Cragiedc5c7b92015-12-11 15:49:45 +00002123
2124/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002125 * \def MBEDTLS_CTR_DRBG_C
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002126 *
Nir Sonnenscheince266e42018-08-29 10:11:46 +03002127 * Enable the CTR_DRBG AES-based random generator.
2128 * The CTR_DRBG generator uses AES-256 by default.
Gilles Peskine1540e5b2019-10-03 14:21:14 +02002129 * To use AES-128 instead, enable \c MBEDTLS_CTR_DRBG_USE_128_BIT_KEY above.
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002130 *
Gilles Peskine7e279362019-10-03 14:21:39 +02002131 * \note To achieve a 256-bit security strength with CTR_DRBG,
2132 * you must use AES-256 *and* use sufficient entropy.
2133 * See ctr_drbg.h for more details.
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002134 *
2135 * Module: library/ctr_drbg.c
2136 * Caller:
2137 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002138 * Requires: MBEDTLS_AES_C
Paul Bakker6083fd22011-12-03 21:45:14 +00002139 *
Nir Sonnenschein521e8a92018-09-03 14:10:52 +03002140 * This module provides the CTR_DRBG AES random number generator.
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002141 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002142#define MBEDTLS_CTR_DRBG_C
Paul Bakker0e04d0e2011-11-27 14:46:59 +00002143
2144/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002145 * \def MBEDTLS_DEBUG_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002146 *
2147 * Enable the debug functions.
2148 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002149 * Module: library/debug.c
2150 * Caller: library/ssl_cli.c
2151 * library/ssl_srv.c
2152 * library/ssl_tls.c
2153 *
2154 * This module provides debugging functions.
2155 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002156#define MBEDTLS_DEBUG_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002157
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002158/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002159 * \def MBEDTLS_DES_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002160 *
2161 * Enable the DES block cipher.
2162 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002163 * Module: library/des.c
Paul Bakker6deb37e2013-02-19 13:17:08 +01002164 * Caller: library/pem.c
Manuel Pégourié-Gonnardfdd43542018-02-28 10:49:02 +01002165 * library/cipher.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002166 *
Paul Bakkercff68422013-09-15 20:43:33 +02002167 * PEM_PARSE uses DES/3DES for decrypting encrypted keys.
Hanno Beckerbbca8c52017-09-25 14:53:51 +01002168 *
2169 * \warning DES is considered a weak cipher and its use constitutes a
2170 * security risk. We recommend considering stronger ciphers instead.
Paul Bakker5121ce52009-01-03 21:22:43 +00002171 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002172#define MBEDTLS_DES_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002173
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002174/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002175 * \def MBEDTLS_DHM_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002176 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002177 * Enable the Diffie-Hellman-Merkle module.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002178 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002179 * Module: library/dhm.c
2180 * Caller: library/ssl_cli.c
2181 * library/ssl_srv.c
2182 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002183 * This module is used by the following key exchanges:
2184 * DHE-RSA, DHE-PSK
Hanno Beckera2f6b722017-09-28 10:33:29 +01002185 *
Hanno Beckerf9734b32017-10-03 12:09:22 +01002186 * \warning Using DHE constitutes a security risk as it
2187 * is not possible to validate custom DH parameters.
2188 * If possible, it is recommended users should consider
2189 * preferring other methods of key exchange.
2190 * See dhm.h for more details.
Hanno Beckera2f6b722017-09-28 10:33:29 +01002191 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002192 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002193#define MBEDTLS_DHM_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002194
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002195/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002196 * \def MBEDTLS_ECDH_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002197 *
2198 * Enable the elliptic curve Diffie-Hellman library.
2199 *
2200 * Module: library/ecdh.c
Paul Bakker41c83d32013-03-20 14:39:14 +01002201 * Caller: library/ssl_cli.c
2202 * library/ssl_srv.c
2203 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002204 * This module is used by the following key exchanges:
2205 * ECDHE-ECDSA, ECDHE-RSA, DHE-PSK
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002206 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002207 * Requires: MBEDTLS_ECP_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002208 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002209#define MBEDTLS_ECDH_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002210
2211/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002212 * \def MBEDTLS_ECDSA_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002213 *
2214 * Enable the elliptic curve DSA library.
2215 *
2216 * Module: library/ecdsa.c
2217 * Caller:
2218 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002219 * This module is used by the following key exchanges:
2220 * ECDHE-ECDSA
2221 *
Gilles Peskine799e5762018-09-14 17:34:00 +02002222 * Requires: MBEDTLS_ECP_C, MBEDTLS_ASN1_WRITE_C, MBEDTLS_ASN1_PARSE_C,
2223 * and at least one MBEDTLS_ECP_DP_XXX_ENABLED for a
2224 * short Weierstrass curve.
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002225 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002226#define MBEDTLS_ECDSA_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002227
2228/**
Manuel Pégourié-Gonnard4d8685b2015-08-05 15:44:42 +02002229 * \def MBEDTLS_ECJPAKE_C
2230 *
2231 * Enable the elliptic curve J-PAKE library.
2232 *
Tomasz Rodziewicz532ca932021-05-07 11:01:24 +02002233 * \note EC J-PAKE support is based on the Thread v1.0.0 specification.
2234 * It has not been reviewed for compliance with newer standards such as
Tomasz Rodziewicz1fc7c4c2021-05-07 10:13:31 +02002235 * Thread v1.1 or RFC 8236.
Manuel Pégourié-Gonnard75df9022015-09-16 23:21:01 +02002236 *
Manuel Pégourié-Gonnard4d8685b2015-08-05 15:44:42 +02002237 * Module: library/ecjpake.c
2238 * Caller:
2239 *
2240 * This module is used by the following key exchanges:
2241 * ECJPAKE
2242 *
2243 * Requires: MBEDTLS_ECP_C, MBEDTLS_MD_C
2244 */
Tomasz Rodziewiczb1336052021-04-22 15:14:17 +02002245#define MBEDTLS_ECJPAKE_C
Manuel Pégourié-Gonnard4d8685b2015-08-05 15:44:42 +02002246
2247/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002248 * \def MBEDTLS_ECP_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002249 *
2250 * Enable the elliptic curve over GF(p) library.
2251 *
2252 * Module: library/ecp.c
2253 * Caller: library/ecdh.c
2254 * library/ecdsa.c
Manuel Pégourié-Gonnard4d8685b2015-08-05 15:44:42 +02002255 * library/ecjpake.c
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002256 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002257 * Requires: MBEDTLS_BIGNUM_C and at least one MBEDTLS_ECP_DP_XXX_ENABLED
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002258 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002259#define MBEDTLS_ECP_C
Paul Bakkerd589a0d2013-03-13 16:30:17 +01002260
2261/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002262 * \def MBEDTLS_ENTROPY_C
Paul Bakker6083fd22011-12-03 21:45:14 +00002263 *
2264 * Enable the platform-specific entropy code.
2265 *
2266 * Module: library/entropy.c
2267 * Caller:
2268 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002269 * Requires: MBEDTLS_SHA512_C or MBEDTLS_SHA256_C
Paul Bakker6083fd22011-12-03 21:45:14 +00002270 *
2271 * This module provides a generic entropy pool
2272 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002273#define MBEDTLS_ENTROPY_C
Paul Bakker6083fd22011-12-03 21:45:14 +00002274
2275/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002276 * \def MBEDTLS_ERROR_C
Paul Bakker9d781402011-05-09 16:17:09 +00002277 *
2278 * Enable error code to error string conversion.
2279 *
2280 * Module: library/error.c
2281 * Caller:
2282 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002283 * This module enables mbedtls_strerror().
Paul Bakker9d781402011-05-09 16:17:09 +00002284 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002285#define MBEDTLS_ERROR_C
Paul Bakker9d781402011-05-09 16:17:09 +00002286
2287/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002288 * \def MBEDTLS_GCM_C
Paul Bakker89e80c92012-03-20 13:50:09 +00002289 *
Jaeden Amero7accf442019-04-10 18:13:57 +01002290 * Enable the Galois/Counter Mode (GCM).
Paul Bakker89e80c92012-03-20 13:50:09 +00002291 *
2292 * Module: library/gcm.c
2293 *
Jaeden Amero651ae682019-04-10 18:19:16 +01002294 * Requires: MBEDTLS_AES_C or MBEDTLS_CAMELLIA_C or MBEDTLS_ARIA_C
Paul Bakker645ce3a2012-10-31 12:32:41 +00002295 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002296 * This module enables the AES-GCM and CAMELLIA-GCM ciphersuites, if other
2297 * requisites are enabled as well.
Paul Bakker89e80c92012-03-20 13:50:09 +00002298 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002299#define MBEDTLS_GCM_C
Paul Bakker89e80c92012-03-20 13:50:09 +00002300
2301/**
Thomas Fossati656864b2016-07-17 08:51:22 +01002302 * \def MBEDTLS_HKDF_C
2303 *
2304 * Enable the HKDF algorithm (RFC 5869).
2305 *
2306 * Module: library/hkdf.c
2307 * Caller:
2308 *
2309 * Requires: MBEDTLS_MD_C
2310 *
2311 * This module adds support for the Hashed Message Authentication Code
2312 * (HMAC)-based key derivation function (HKDF).
2313 */
2314#define MBEDTLS_HKDF_C
2315
2316/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002317 * \def MBEDTLS_HMAC_DRBG_C
Manuel Pégourié-Gonnard490bdf32014-01-27 14:03:10 +01002318 *
2319 * Enable the HMAC_DRBG random generator.
2320 *
2321 * Module: library/hmac_drbg.c
2322 * Caller:
2323 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002324 * Requires: MBEDTLS_MD_C
Manuel Pégourié-Gonnard490bdf32014-01-27 14:03:10 +01002325 *
2326 * Uncomment to enable the HMAC_DRBG random number geerator.
2327 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002328#define MBEDTLS_HMAC_DRBG_C
Manuel Pégourié-Gonnard490bdf32014-01-27 14:03:10 +01002329
2330/**
Ron Eldor466a57f2018-05-03 16:54:28 +03002331 * \def MBEDTLS_NIST_KW_C
2332 *
2333 * Enable the Key Wrapping mode for 128-bit block ciphers,
2334 * as defined in NIST SP 800-38F. Only KW and KWP modes
2335 * are supported. At the moment, only AES is approved by NIST.
2336 *
2337 * Module: library/nist_kw.c
2338 *
2339 * Requires: MBEDTLS_AES_C and MBEDTLS_CIPHER_C
2340 */
TRodziewicz85aff9f2021-04-23 10:47:26 +02002341#define MBEDTLS_NIST_KW_C
Ron Eldor466a57f2018-05-03 16:54:28 +03002342
2343/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002344 * \def MBEDTLS_MD_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002345 *
2346 * Enable the generic message digest layer.
2347 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002348 * Module: library/md.c
Paul Bakker17373852011-01-06 14:20:01 +00002349 * Caller:
2350 *
2351 * Uncomment to enable generic message digest wrappers.
2352 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002353#define MBEDTLS_MD_C
Paul Bakker17373852011-01-06 14:20:01 +00002354
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002355/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002356 * \def MBEDTLS_MD5_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002357 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002358 * Enable the MD5 hash algorithm.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002359 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002360 * Module: library/md5.c
2361 * Caller: library/md.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002362 * library/pem.c
Paul Bakker6deb37e2013-02-19 13:17:08 +01002363 * library/ssl_tls.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002364 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02002365 * This module is required for TLS 1.2 depending on the handshake parameters.
2366 * Further, it is used for checking MD5-signed certificates, and for PBKDF1
2367 * when decrypting PEM-encoded encrypted keys.
Hanno Beckerbbca8c52017-09-25 14:53:51 +01002368 *
2369 * \warning MD5 is considered a weak message digest and its use constitutes a
2370 * security risk. If possible, we recommend avoiding dependencies on
2371 * it, and considering stronger message digests instead.
2372 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002373 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002374#define MBEDTLS_MD5_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002375
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002376/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002377 * \def MBEDTLS_MEMORY_BUFFER_ALLOC_C
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002378 *
2379 * Enable the buffer allocator implementation that makes use of a (stack)
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +02002380 * based buffer to 'allocate' dynamic memory. (replaces calloc() and free()
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002381 * calls)
Paul Bakker6e339b52013-07-03 13:37:05 +02002382 *
2383 * Module: library/memory_buffer_alloc.c
2384 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002385 * Requires: MBEDTLS_PLATFORM_C
2386 * MBEDTLS_PLATFORM_MEMORY (to use it within mbed TLS)
Paul Bakker6e339b52013-07-03 13:37:05 +02002387 *
2388 * Enable this module to enable the buffer memory allocator.
Paul Bakker6e339b52013-07-03 13:37:05 +02002389 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002390//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
Paul Bakker6e339b52013-07-03 13:37:05 +02002391
2392/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002393 * \def MBEDTLS_NET_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002394 *
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002395 * Enable the TCP and UDP over IPv6/IPv4 networking routines.
2396 *
Simon Butcherd567a232016-03-09 20:19:21 +00002397 * \note This module only works on POSIX/Unix (including Linux, BSD and OS X)
2398 * and Windows. For other platforms, you'll want to disable it, and write your
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002399 * own networking callbacks to be passed to \c mbedtls_ssl_set_bio().
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002400 *
Manuel Pégourié-Gonnard02049dc2016-02-22 16:42:51 +00002401 * \note See also our Knowledge Base article about porting to a new
2402 * environment:
2403 * https://tls.mbed.org/kb/how-to/how-do-i-port-mbed-tls-to-a-new-environment-OS
2404 *
Andres AG788aa4a2016-09-14 14:32:09 +01002405 * Module: library/net_sockets.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002406 *
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002407 * This module provides networking routines.
Paul Bakker5121ce52009-01-03 21:22:43 +00002408 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002409#define MBEDTLS_NET_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002410
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002411/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002412 * \def MBEDTLS_OID_C
Paul Bakkerc70b9822013-04-07 22:00:46 +02002413 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002414 * Enable the OID database.
Paul Bakkerc70b9822013-04-07 22:00:46 +02002415 *
2416 * Module: library/oid.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002417 * Caller: library/asn1write.c
2418 * library/pkcs5.c
2419 * library/pkparse.c
2420 * library/pkwrite.c
2421 * library/rsa.c
2422 * library/x509.c
2423 * library/x509_create.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002424 * library/x509_crl.c
2425 * library/x509_crt.c
2426 * library/x509_csr.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002427 * library/x509write_crt.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002428 * library/x509write_csr.c
Paul Bakkerc70b9822013-04-07 22:00:46 +02002429 *
2430 * This modules translates between OIDs and internal values.
2431 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002432#define MBEDTLS_OID_C
Paul Bakkerc70b9822013-04-07 22:00:46 +02002433
2434/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002435 * \def MBEDTLS_PADLOCK_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002436 *
2437 * Enable VIA Padlock support on x86.
2438 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002439 * Module: library/padlock.c
2440 * Caller: library/aes.c
2441 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002442 * Requires: MBEDTLS_HAVE_ASM
Manuel Pégourié-Gonnard92ac76f2013-12-16 17:12:53 +01002443 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002444 * This modules adds support for the VIA PadLock on x86.
2445 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002446#define MBEDTLS_PADLOCK_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002447
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002448/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002449 * \def MBEDTLS_PEM_PARSE_C
Paul Bakker96743fc2011-02-12 14:30:57 +00002450 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002451 * Enable PEM decoding / parsing.
Paul Bakker96743fc2011-02-12 14:30:57 +00002452 *
2453 * Module: library/pem.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002454 * Caller: library/dhm.c
Paul Bakkercff68422013-09-15 20:43:33 +02002455 * library/pkparse.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002456 * library/x509_crl.c
2457 * library/x509_crt.c
2458 * library/x509_csr.c
Paul Bakker96743fc2011-02-12 14:30:57 +00002459 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002460 * Requires: MBEDTLS_BASE64_C
Paul Bakker5690efc2011-05-26 13:16:06 +00002461 *
Paul Bakkercff68422013-09-15 20:43:33 +02002462 * This modules adds support for decoding / parsing PEM files.
Paul Bakker96743fc2011-02-12 14:30:57 +00002463 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002464#define MBEDTLS_PEM_PARSE_C
Paul Bakkercff68422013-09-15 20:43:33 +02002465
2466/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002467 * \def MBEDTLS_PEM_WRITE_C
Paul Bakkercff68422013-09-15 20:43:33 +02002468 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002469 * Enable PEM encoding / writing.
Paul Bakkercff68422013-09-15 20:43:33 +02002470 *
2471 * Module: library/pem.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002472 * Caller: library/pkwrite.c
2473 * library/x509write_crt.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002474 * library/x509write_csr.c
Paul Bakkercff68422013-09-15 20:43:33 +02002475 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002476 * Requires: MBEDTLS_BASE64_C
Paul Bakkercff68422013-09-15 20:43:33 +02002477 *
2478 * This modules adds support for encoding / writing PEM files.
2479 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002480#define MBEDTLS_PEM_WRITE_C
Paul Bakker96743fc2011-02-12 14:30:57 +00002481
2482/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002483 * \def MBEDTLS_PK_C
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +02002484 *
2485 * Enable the generic public (asymetric) key layer.
2486 *
2487 * Module: library/pk.c
Manuel Pégourié-Gonnard1a483832013-09-20 12:29:15 +02002488 * Caller: library/ssl_tls.c
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +02002489 * library/ssl_cli.c
2490 * library/ssl_srv.c
2491 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002492 * Requires: MBEDTLS_RSA_C or MBEDTLS_ECP_C
Manuel Pégourié-Gonnard1a483832013-09-20 12:29:15 +02002493 *
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +02002494 * Uncomment to enable generic public key wrappers.
2495 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002496#define MBEDTLS_PK_C
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +02002497
2498/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002499 * \def MBEDTLS_PK_PARSE_C
Paul Bakker4606c732013-09-15 17:04:23 +02002500 *
2501 * Enable the generic public (asymetric) key parser.
2502 *
2503 * Module: library/pkparse.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002504 * Caller: library/x509_crt.c
2505 * library/x509_csr.c
Paul Bakker4606c732013-09-15 17:04:23 +02002506 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002507 * Requires: MBEDTLS_PK_C
Paul Bakker4606c732013-09-15 17:04:23 +02002508 *
2509 * Uncomment to enable generic public key parse functions.
2510 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002511#define MBEDTLS_PK_PARSE_C
Paul Bakker4606c732013-09-15 17:04:23 +02002512
2513/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002514 * \def MBEDTLS_PK_WRITE_C
Paul Bakker4606c732013-09-15 17:04:23 +02002515 *
Paul Bakkerf20ba4b2013-09-16 22:46:20 +02002516 * Enable the generic public (asymetric) key writer.
Paul Bakker4606c732013-09-15 17:04:23 +02002517 *
2518 * Module: library/pkwrite.c
2519 * Caller: library/x509write.c
2520 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002521 * Requires: MBEDTLS_PK_C
Paul Bakker4606c732013-09-15 17:04:23 +02002522 *
2523 * Uncomment to enable generic public key write functions.
2524 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002525#define MBEDTLS_PK_WRITE_C
Paul Bakker4606c732013-09-15 17:04:23 +02002526
2527/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002528 * \def MBEDTLS_PKCS5_C
Paul Bakkerb0c19a42013-06-24 19:26:38 +02002529 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002530 * Enable PKCS#5 functions.
Paul Bakkerb0c19a42013-06-24 19:26:38 +02002531 *
2532 * Module: library/pkcs5.c
2533 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002534 * Requires: MBEDTLS_MD_C
Paul Bakkerb0c19a42013-06-24 19:26:38 +02002535 *
2536 * This module adds support for the PKCS#5 functions.
2537 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002538#define MBEDTLS_PKCS5_C
Paul Bakkerb0c19a42013-06-24 19:26:38 +02002539
2540/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002541 * \def MBEDTLS_PKCS12_C
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002542 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002543 * Enable PKCS#12 PBE functions.
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002544 * Adds algorithms for parsing PKCS#8 encrypted private keys
2545 *
2546 * Module: library/pkcs12.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002547 * Caller: library/pkparse.c
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002548 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002549 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_CIPHER_C, MBEDTLS_MD_C
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002550 *
2551 * This module enables PKCS#12 functions.
2552 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002553#define MBEDTLS_PKCS12_C
Paul Bakkerf1f21fe2013-06-24 19:17:19 +02002554
2555/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002556 * \def MBEDTLS_PLATFORM_C
Paul Bakker747a83a2014-02-01 22:50:07 +01002557 *
2558 * Enable the platform abstraction layer that allows you to re-assign
Manuel Pégourié-Gonnard6c0c8e02015-06-22 10:23:34 +02002559 * functions like calloc(), free(), snprintf(), printf(), fprintf(), exit().
Paul Bakker747a83a2014-02-01 22:50:07 +01002560 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002561 * Enabling MBEDTLS_PLATFORM_C enables to use of MBEDTLS_PLATFORM_XXX_ALT
2562 * or MBEDTLS_PLATFORM_XXX_MACRO directives, allowing the functions mentioned
Rich Evans16f8cd82015-02-06 16:14:34 +00002563 * above to be specified at runtime or compile time respectively.
Paul Bakker747a83a2014-02-01 22:50:07 +01002564 *
Manuel Pégourié-Gonnard6c0c8e02015-06-22 10:23:34 +02002565 * \note This abstraction layer must be enabled on Windows (including MSYS2)
2566 * as other module rely on it for a fixed snprintf implementation.
2567 *
Paul Bakker747a83a2014-02-01 22:50:07 +01002568 * Module: library/platform.c
2569 * Caller: Most other .c files
2570 *
2571 * This module enables abstraction of common (libc) functions.
2572 */
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +02002573#define MBEDTLS_PLATFORM_C
Paul Bakker747a83a2014-02-01 22:50:07 +01002574
2575/**
Daniel Kingadc32c02016-05-16 18:25:45 -03002576 * \def MBEDTLS_POLY1305_C
2577 *
2578 * Enable the Poly1305 MAC algorithm.
2579 *
2580 * Module: library/poly1305.c
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +02002581 * Caller: library/chachapoly.c
Daniel Kingadc32c02016-05-16 18:25:45 -03002582 */
2583#define MBEDTLS_POLY1305_C
2584
2585/**
Jaeden Amero484ee332018-10-25 17:38:05 +01002586 * \def MBEDTLS_PSA_CRYPTO_C
2587 *
2588 * Enable the Platform Security Architecture cryptography API.
2589 *
Manuel Pégourié-Gonnardde7636e2019-02-01 12:33:29 +01002590 * \warning The PSA Crypto API is still beta status. While you're welcome to
2591 * experiment using it, incompatible API changes are still possible, and some
2592 * parts may not have reached the same quality as the rest of Mbed TLS yet.
Jaeden Amero484ee332018-10-25 17:38:05 +01002593 *
Gilles Peskinee59236f2018-01-27 23:32:46 +01002594 * Module: library/psa_crypto.c
Jaeden Amero484ee332018-10-25 17:38:05 +01002595 *
Gilles Peskinef08b3f82020-11-13 17:36:48 +01002596 * Requires: either MBEDTLS_CTR_DRBG_C and MBEDTLS_ENTROPY_C,
Gilles Peskine82e57d12020-11-13 21:31:17 +01002597 * or MBEDTLS_HMAC_DRBG_C and MBEDTLS_ENTROPY_C,
Gilles Peskinef08b3f82020-11-13 17:36:48 +01002598 * or MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG.
Jaeden Amero484ee332018-10-25 17:38:05 +01002599 *
2600 */
Manuel Pégourié-Gonnardde7636e2019-02-01 12:33:29 +01002601#define MBEDTLS_PSA_CRYPTO_C
Jaeden Amero484ee332018-10-25 17:38:05 +01002602
2603/**
Gilles Peskinea8ade162019-06-26 11:24:49 +02002604 * \def MBEDTLS_PSA_CRYPTO_SE_C
2605 *
2606 * Enable secure element support in the Platform Security Architecture
2607 * cryptography API.
2608 *
Gilles Peskined0e66b02019-07-24 13:52:51 +02002609 * \warning This feature is not yet suitable for production. It is provided
2610 * for API evaluation and testing purposes only.
2611 *
Gilles Peskinea8ade162019-06-26 11:24:49 +02002612 * Module: library/psa_crypto_se.c
2613 *
2614 * Requires: MBEDTLS_PSA_CRYPTO_C, MBEDTLS_PSA_CRYPTO_STORAGE_C
2615 *
2616 */
Gilles Peskined0e66b02019-07-24 13:52:51 +02002617//#define MBEDTLS_PSA_CRYPTO_SE_C
Gilles Peskinea8ade162019-06-26 11:24:49 +02002618
2619/**
Andrzej Kurekc6905232019-02-05 05:23:41 -05002620 * \def MBEDTLS_PSA_CRYPTO_STORAGE_C
2621 *
2622 * Enable the Platform Security Architecture persistent key storage.
2623 *
Darryl Greendb2b8db2018-06-15 13:06:04 +01002624 * Module: library/psa_crypto_storage.c
Andrzej Kurekc6905232019-02-05 05:23:41 -05002625 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00002626 * Requires: MBEDTLS_PSA_CRYPTO_C,
2627 * either MBEDTLS_PSA_ITS_FILE_C or a native implementation of
2628 * the PSA ITS interface
Andrzej Kurekc6905232019-02-05 05:23:41 -05002629 */
Darryl Greendb2b8db2018-06-15 13:06:04 +01002630#define MBEDTLS_PSA_CRYPTO_STORAGE_C
Andrzej Kurekc6905232019-02-05 05:23:41 -05002631
2632/**
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00002633 * \def MBEDTLS_PSA_ITS_FILE_C
Andrzej Kurekc6905232019-02-05 05:23:41 -05002634 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00002635 * Enable the emulation of the Platform Security Architecture
2636 * Internal Trusted Storage (PSA ITS) over files.
Andrzej Kurekc6905232019-02-05 05:23:41 -05002637 *
Gilles Peskine6194dc22018-11-16 22:24:15 +01002638 * Module: library/psa_its_file.c
Andrzej Kurekc6905232019-02-05 05:23:41 -05002639 *
Jaeden Amero57f4d9e2019-03-15 16:14:19 +00002640 * Requires: MBEDTLS_FS_IO
Andrzej Kurekc6905232019-02-05 05:23:41 -05002641 */
Gilles Peskine6194dc22018-11-16 22:24:15 +01002642#define MBEDTLS_PSA_ITS_FILE_C
Andrzej Kurekc6905232019-02-05 05:23:41 -05002643
2644/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002645 * \def MBEDTLS_RIPEMD160_C
Manuel Pégourié-Gonnardcab4a882014-01-17 12:42:35 +01002646 *
2647 * Enable the RIPEMD-160 hash algorithm.
2648 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002649 * Module: library/ripemd160.c
2650 * Caller: library/md.c
Manuel Pégourié-Gonnardcab4a882014-01-17 12:42:35 +01002651 *
2652 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002653#define MBEDTLS_RIPEMD160_C
Manuel Pégourié-Gonnardcab4a882014-01-17 12:42:35 +01002654
2655/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002656 * \def MBEDTLS_RSA_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002657 *
2658 * Enable the RSA public-key cryptosystem.
2659 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002660 * Module: library/rsa.c
Chris Jones3848e312021-03-11 16:17:59 +00002661 * library/rsa_alt_helpers.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002662 * Caller: library/ssl_cli.c
2663 * library/ssl_srv.c
2664 * library/ssl_tls.c
2665 * library/x509.c
2666 *
Manuel Pégourié-Gonnard9d703732013-10-25 18:01:50 +02002667 * This module is used by the following key exchanges:
2668 * RSA, DHE-RSA, ECDHE-RSA, RSA-PSK
Paul Bakker5690efc2011-05-26 13:16:06 +00002669 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002670 * Requires: MBEDTLS_BIGNUM_C, MBEDTLS_OID_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002671 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002672#define MBEDTLS_RSA_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002673
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002674/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002675 * \def MBEDTLS_SHA1_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002676 *
2677 * Enable the SHA1 cryptographic hash algorithm.
2678 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002679 * Module: library/sha1.c
2680 * Caller: library/md.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002681 * library/ssl_cli.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002682 * library/ssl_srv.c
2683 * library/ssl_tls.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002684 * library/x509write_crt.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002685 *
TRodziewicz0f82ec62021-05-12 17:49:18 +02002686 * This module is required for TLS 1.2 depending on the handshake parameters,
2687 * and for SHA1-signed certificates.
Hanno Beckerbbca8c52017-09-25 14:53:51 +01002688 *
2689 * \warning SHA-1 is considered a weak message digest and its use constitutes
2690 * a security risk. If possible, we recommend avoiding dependencies
2691 * on it, and considering stronger message digests instead.
2692 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002693 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002694#define MBEDTLS_SHA1_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002695
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002696/**
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002697 * \def MBEDTLS_SHA224_C
2698 *
2699 * Enable the SHA-224 cryptographic hash algorithm.
2700 *
Mateusz Starzyk9d2d6c92021-05-18 15:54:20 +02002701 * Requires: MBEDTLS_SHA256_C. The library does not currently support enabling
Mateusz Starzykc722ebb2021-05-11 10:05:45 +02002702 * SHA-224 without SHA-256.
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002703 *
2704 * Module: library/sha256.c
2705 * Caller: library/md.c
2706 * library/ssl_cookie.c
2707 *
2708 * This module adds support for SHA-224.
2709 */
2710#define MBEDTLS_SHA224_C
2711
2712/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002713 * \def MBEDTLS_SHA256_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002714 *
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002715 * Enable the SHA-256 cryptographic hash algorithm.
2716 *
Mateusz Starzyk9d2d6c92021-05-18 15:54:20 +02002717 * Requires: MBEDTLS_SHA224_C. The library does not currently support enabling
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002718 * SHA-256 without SHA-224.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002719 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002720 * Module: library/sha256.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002721 * Caller: library/entropy.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002722 * library/md.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002723 * library/ssl_cli.c
2724 * library/ssl_srv.c
2725 * library/ssl_tls.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002726 *
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002727 * This module adds support for SHA-256.
Paul Bakker769075d2012-11-24 11:26:46 +01002728 * This module is required for the SSL/TLS 1.2 PRF function.
Paul Bakker5121ce52009-01-03 21:22:43 +00002729 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002730#define MBEDTLS_SHA256_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002731
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002732/**
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002733 * \def MBEDTLS_SHA384_C
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002734 *
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002735 * Enable the SHA-384 cryptographic hash algorithm.
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002736 *
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002737 * Requires: MBEDTLS_SHA512_C
2738 *
2739 * Module: library/sha512.c
2740 * Caller: library/md.c
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002741 * library/ssl_cli.c
2742 * library/ssl_srv.c
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002743 *
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002744 * Comment to disable SHA-384
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002745 */
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002746#define MBEDTLS_SHA384_C
Mateusz Starzyke3c48b42021-04-19 16:46:28 +02002747
2748/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002749 * \def MBEDTLS_SHA512_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002750 *
Mateusz Starzyk3352a532021-04-06 14:28:22 +02002751 * Enable SHA-512 cryptographic hash algorithms.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002752 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002753 * Module: library/sha512.c
Manuel Pégourié-Gonnardfe286462013-09-20 14:10:14 +02002754 * Caller: library/entropy.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002755 * library/md.c
Mateusz Starzyk6326a8d2021-05-10 13:51:53 +02002756 * library/ssl_tls.c
2757 * library/ssl_cookie.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002758 *
Mateusz Starzyk3352a532021-04-06 14:28:22 +02002759 * This module adds support for SHA-512.
Paul Bakker5121ce52009-01-03 21:22:43 +00002760 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002761#define MBEDTLS_SHA512_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002762
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002763/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002764 * \def MBEDTLS_SSL_CACHE_C
Paul Bakker0a597072012-09-25 21:55:46 +00002765 *
2766 * Enable simple SSL cache implementation.
2767 *
2768 * Module: library/ssl_cache.c
2769 * Caller:
2770 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002771 * Requires: MBEDTLS_SSL_CACHE_C
Paul Bakker0a597072012-09-25 21:55:46 +00002772 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002773#define MBEDTLS_SSL_CACHE_C
Paul Bakker0a597072012-09-25 21:55:46 +00002774
2775/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002776 * \def MBEDTLS_SSL_COOKIE_C
Manuel Pégourié-Gonnarda64acd42014-07-23 18:30:45 +02002777 *
2778 * Enable basic implementation of DTLS cookies for hello verification.
2779 *
2780 * Module: library/ssl_cookie.c
2781 * Caller:
Manuel Pégourié-Gonnarda64acd42014-07-23 18:30:45 +02002782 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002783#define MBEDTLS_SSL_COOKIE_C
Manuel Pégourié-Gonnarda64acd42014-07-23 18:30:45 +02002784
2785/**
Manuel Pégourié-Gonnardfd6d8972015-05-15 12:09:00 +02002786 * \def MBEDTLS_SSL_TICKET_C
2787 *
2788 * Enable an implementation of TLS server-side callbacks for session tickets.
2789 *
2790 * Module: library/ssl_ticket.c
2791 * Caller:
Manuel Pégourié-Gonnard0c0f11f2015-05-20 09:55:50 +02002792 *
Manuel Pégourié-Gonnard4214e3a2015-05-25 19:34:49 +02002793 * Requires: MBEDTLS_CIPHER_C
Manuel Pégourié-Gonnardfd6d8972015-05-15 12:09:00 +02002794 */
2795#define MBEDTLS_SSL_TICKET_C
2796
2797/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002798 * \def MBEDTLS_SSL_CLI_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002799 *
2800 * Enable the SSL/TLS client code.
2801 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002802 * Module: library/ssl_cli.c
2803 * Caller:
2804 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002805 * Requires: MBEDTLS_SSL_TLS_C
Paul Bakker5690efc2011-05-26 13:16:06 +00002806 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002807 * This module is required for SSL/TLS client support.
2808 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002809#define MBEDTLS_SSL_CLI_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002810
Paul Bakker9a736322012-11-14 12:39:52 +00002811/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002812 * \def MBEDTLS_SSL_SRV_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002813 *
2814 * Enable the SSL/TLS server code.
2815 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002816 * Module: library/ssl_srv.c
2817 * Caller:
2818 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002819 * Requires: MBEDTLS_SSL_TLS_C
Paul Bakker5690efc2011-05-26 13:16:06 +00002820 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002821 * This module is required for SSL/TLS server support.
2822 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002823#define MBEDTLS_SSL_SRV_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002824
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002825/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002826 * \def MBEDTLS_SSL_TLS_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002827 *
Paul Bakkere29ab062011-05-18 13:26:54 +00002828 * Enable the generic SSL/TLS code.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002829 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002830 * Module: library/ssl_tls.c
2831 * Caller: library/ssl_cli.c
2832 * library/ssl_srv.c
2833 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002834 * Requires: MBEDTLS_CIPHER_C, MBEDTLS_MD_C
2835 * and at least one of the MBEDTLS_SSL_PROTO_XXX defines
Paul Bakker5690efc2011-05-26 13:16:06 +00002836 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002837 * This module is required for SSL/TLS.
2838 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002839#define MBEDTLS_SSL_TLS_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002840
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002841/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002842 * \def MBEDTLS_THREADING_C
Paul Bakker2466d932013-09-28 14:40:38 +02002843 *
2844 * Enable the threading abstraction layer.
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00002845 * By default mbed TLS assumes it is used in a non-threaded environment or that
Paul Bakker2466d932013-09-28 14:40:38 +02002846 * contexts are not shared between threads. If you do intend to use contexts
2847 * between threads, you will need to enable this layer to prevent race
Manuel Pégourié-Gonnard02049dc2016-02-22 16:42:51 +00002848 * conditions. See also our Knowledge Base article about threading:
2849 * https://tls.mbed.org/kb/development/thread-safety-and-multi-threading
Paul Bakker2466d932013-09-28 14:40:38 +02002850 *
2851 * Module: library/threading.c
2852 *
2853 * This allows different threading implementations (self-implemented or
2854 * provided).
2855 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002856 * You will have to enable either MBEDTLS_THREADING_ALT or
2857 * MBEDTLS_THREADING_PTHREAD.
Paul Bakker2466d932013-09-28 14:40:38 +02002858 *
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00002859 * Enable this layer to allow use of mutexes within mbed TLS
Paul Bakker2466d932013-09-28 14:40:38 +02002860 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002861//#define MBEDTLS_THREADING_C
Paul Bakker2466d932013-09-28 14:40:38 +02002862
2863/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002864 * \def MBEDTLS_TIMING_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002865 *
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002866 * Enable the semi-portable timing interface.
2867 *
Simon Butcherd567a232016-03-09 20:19:21 +00002868 * \note The provided implementation only works on POSIX/Unix (including Linux,
2869 * BSD and OS X) and Windows. On other platforms, you can either disable that
Manuel Pégourié-Gonnard325ce092016-02-22 10:33:34 +01002870 * module and provide your own implementations of the callbacks needed by
2871 * \c mbedtls_ssl_set_timer_cb() for DTLS, or leave it enabled and provide
2872 * your own implementation of the whole module by setting
2873 * \c MBEDTLS_TIMING_ALT in the current file.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002874 *
Manuel Pégourié-Gonnard02049dc2016-02-22 16:42:51 +00002875 * \note See also our Knowledge Base article about porting to a new
2876 * environment:
2877 * https://tls.mbed.org/kb/how-to/how-do-i-port-mbed-tls-to-a-new-environment-OS
2878 *
Paul Bakker5121ce52009-01-03 21:22:43 +00002879 * Module: library/timing.c
Paul Bakkerecd54fb2013-07-03 14:48:29 +02002880 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002881#define MBEDTLS_TIMING_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002882
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002883/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002884 * \def MBEDTLS_VERSION_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002885 *
2886 * Enable run-time version information.
2887 *
Paul Bakker0a62cd12011-01-21 11:00:08 +00002888 * Module: library/version.c
2889 *
2890 * This module provides run-time version information.
2891 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002892#define MBEDTLS_VERSION_C
Paul Bakker0a62cd12011-01-21 11:00:08 +00002893
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002894/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002895 * \def MBEDTLS_X509_USE_C
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002896 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002897 * Enable X.509 core for using certificates.
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002898 *
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002899 * Module: library/x509.c
Simon Butcher2cb47392016-11-04 12:23:11 +00002900 * Caller: library/x509_crl.c
2901 * library/x509_crt.c
2902 * library/x509_csr.c
Paul Bakker5121ce52009-01-03 21:22:43 +00002903 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002904 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_BIGNUM_C, MBEDTLS_OID_C,
2905 * MBEDTLS_PK_PARSE_C
Paul Bakker5690efc2011-05-26 13:16:06 +00002906 *
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002907 * This module is required for the X.509 parsing modules.
Paul Bakker5121ce52009-01-03 21:22:43 +00002908 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002909#define MBEDTLS_X509_USE_C
Paul Bakker5121ce52009-01-03 21:22:43 +00002910
Paul Bakkerf3b86c12011-01-27 15:24:17 +00002911/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002912 * \def MBEDTLS_X509_CRT_PARSE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002913 *
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002914 * Enable X.509 certificate parsing.
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002915 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002916 * Module: library/x509_crt.c
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002917 * Caller: library/ssl_cli.c
2918 * library/ssl_srv.c
2919 * library/ssl_tls.c
2920 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002921 * Requires: MBEDTLS_X509_USE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002922 *
2923 * This module is required for X.509 certificate parsing.
2924 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002925#define MBEDTLS_X509_CRT_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002926
2927/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002928 * \def MBEDTLS_X509_CRL_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002929 *
2930 * Enable X.509 CRL parsing.
2931 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002932 * Module: library/x509_crl.c
2933 * Caller: library/x509_crt.c
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002934 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002935 * Requires: MBEDTLS_X509_USE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002936 *
2937 * This module is required for X.509 CRL parsing.
2938 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002939#define MBEDTLS_X509_CRL_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002940
2941/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002942 * \def MBEDTLS_X509_CSR_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002943 *
2944 * Enable X.509 Certificate Signing Request (CSR) parsing.
2945 *
Simon Butcher2cb47392016-11-04 12:23:11 +00002946 * Module: library/x509_csr.c
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002947 * Caller: library/x509_crt_write.c
2948 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002949 * Requires: MBEDTLS_X509_USE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002950 *
2951 * This module is used for reading X.509 certificate request.
2952 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002953#define MBEDTLS_X509_CSR_PARSE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002954
2955/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002956 * \def MBEDTLS_X509_CREATE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002957 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002958 * Enable X.509 core for creating certificates.
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002959 *
2960 * Module: library/x509_create.c
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002961 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002962 * Requires: MBEDTLS_BIGNUM_C, MBEDTLS_OID_C, MBEDTLS_PK_WRITE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002963 *
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002964 * This module is the basis for creating X.509 certificates and CSRs.
2965 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002966#define MBEDTLS_X509_CREATE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002967
2968/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002969 * \def MBEDTLS_X509_CRT_WRITE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002970 *
2971 * Enable creating X.509 certificates.
2972 *
2973 * Module: library/x509_crt_write.c
2974 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002975 * Requires: MBEDTLS_X509_CREATE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002976 *
2977 * This module is required for X.509 certificate creation.
2978 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002979#define MBEDTLS_X509_CRT_WRITE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002980
2981/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002982 * \def MBEDTLS_X509_CSR_WRITE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002983 *
Manuel Pégourié-Gonnard09fff7e2013-09-20 13:45:36 +02002984 * Enable creating X.509 Certificate Signing Requests (CSR).
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002985 *
2986 * Module: library/x509_csr_write.c
2987 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002988 * Requires: MBEDTLS_X509_CREATE_C
Paul Bakker7c6b2c32013-09-16 13:49:26 +02002989 *
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002990 * This module is required for X.509 certificate request writing.
2991 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002992#define MBEDTLS_X509_CSR_WRITE_C
Paul Bakkerbdb912d2012-02-13 23:11:30 +00002993
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +00002994/* \} name SECTION: mbed TLS modules */
Paul Bakker7a7c78f2009-01-04 18:15:48 +00002995
Paul Bakker9bcf16c2013-06-24 19:31:17 +02002996/**
2997 * \name SECTION: Module configuration options
2998 *
2999 * This section allows for the setting of module specific sizes and
3000 * configuration options. The default values are already present in the
3001 * relevant header files and should suffice for the regular use cases.
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003002 *
Paul Bakker088c5c52014-04-25 11:11:10 +02003003 * Our advice is to enable options and change their values here
3004 * only if you have a good reason and know the consequences.
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003005 *
3006 * Please check the respective header file for documentation on these
3007 * parameters (to prevent duplicate documentation).
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003008 * \{
3009 */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003010
Paul Bakker088c5c52014-04-25 11:11:10 +02003011/* MPI / BIGNUM options */
Daniel Otte4374dc42020-09-07 13:06:40 +02003012//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003013//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003014
Paul Bakker088c5c52014-04-25 11:11:10 +02003015/* CTR_DRBG options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003016//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3017//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3018//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3019//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3020//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003021
Paul Bakker088c5c52014-04-25 11:11:10 +02003022/* HMAC_DRBG options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003023//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3024//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3025//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3026//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003027
Paul Bakker088c5c52014-04-25 11:11:10 +02003028/* ECP options */
Gilles Peskine5752e592021-06-02 13:27:03 +02003029//#define MBEDTLS_ECP_WINDOW_SIZE 4 /**< Maximum window size used */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003030//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
Manuel Pégourié-Gonnard0520b602014-01-30 19:43:46 +01003031
Paul Bakker088c5c52014-04-25 11:11:10 +02003032/* Entropy options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003033//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3034//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
Andres AG7abc9742016-09-23 17:58:49 +01003035//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
Paul Bakkere1b665e2013-12-11 16:02:58 +01003036
Paul Bakker088c5c52014-04-25 11:11:10 +02003037/* Memory buffer allocator options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003038//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003039
Paul Bakker088c5c52014-04-25 11:11:10 +02003040/* Platform options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003041//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +02003042//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003043//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3044//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
Andres Amaya Garcia1e4ec662016-07-20 10:16:25 +01003045//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003046//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3047//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
Antonin Décimo36e89b52019-01-23 15:24:37 +01003048/* Note: your snprintf must correctly zero-terminate the buffer! */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003049//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
Janos Follath91947442016-03-18 13:49:27 +00003050//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3051//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
Paul Bakkercf0a9f92016-06-01 11:25:44 +01003052//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3053//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3054//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
Paul Bakker6e339b52013-07-03 13:37:05 +02003055
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003056/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3057/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
Manuel Pégourié-Gonnardb9ef1182015-05-26 16:15:20 +02003058//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003059//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3060//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
Andres Amaya Garcia1e4ec662016-07-20 10:16:25 +01003061//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3062//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003063//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3064//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
Antonin Décimo36e89b52019-01-23 15:24:37 +01003065/* Note: your snprintf must correctly zero-terminate the buffer! */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003066//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
k-stachowiak723f8672018-07-16 14:27:07 +02003067//#define MBEDTLS_PLATFORM_VSNPRINTF_MACRO vsnprintf /**< Default vsnprintf macro to use, can be undefined */
Paul Bakkercf0a9f92016-06-01 11:25:44 +01003068//#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3069//#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003070
Gilles Peskineed038902020-11-13 21:33:21 +01003071/* PSA options */
Gilles Peskine14c332b2020-11-14 12:26:53 +01003072/**
Gilles Peskineed038902020-11-13 21:33:21 +01003073 * Use HMAC_DRBG with the specified hash algorithm for HMAC_DRBG for the
3074 * PSA crypto subsystem.
3075 *
3076 * If this option is unset:
3077 * - If CTR_DRBG is available, the PSA subsystem uses it rather than HMAC_DRBG.
Gilles Peskineb0a748e2020-11-30 12:01:54 +01003078 * - Otherwise, the PSA subsystem uses HMAC_DRBG with either
Gilles Peskineed038902020-11-13 21:33:21 +01003079 * #MBEDTLS_MD_SHA512 or #MBEDTLS_MD_SHA256 based on availability and
3080 * on unspecified heuristics.
3081 */
3082//#define MBEDTLS_PSA_HMAC_DRBG_MD_TYPE MBEDTLS_MD_SHA256
3083
Steven Cooreman863470a2021-02-15 14:03:19 +01003084/** \def MBEDTLS_PSA_KEY_SLOT_COUNT
Steven Cooreman1f968fd2021-02-15 14:00:24 +01003085 * Restrict the PSA library to supporting a maximum amount of simultaneously
3086 * loaded keys. A loaded key is a key stored by the PSA Crypto core as a
3087 * volatile key, or a persistent key which is loaded temporarily by the
3088 * library as part of a crypto operation in flight.
3089 *
3090 * If this option is unset, the library will fall back to a default value of
3091 * 32 keys.
3092 */
Steven Cooreman863470a2021-02-15 14:03:19 +01003093//#define MBEDTLS_PSA_KEY_SLOT_COUNT 32
Steven Cooreman1f968fd2021-02-15 14:00:24 +01003094
Paul Bakker088c5c52014-04-25 11:11:10 +02003095/* SSL Cache options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003096//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3097//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003098
Paul Bakker088c5c52014-04-25 11:11:10 +02003099/* SSL options */
Angus Grattond8213d02016-05-25 20:56:48 +10003100
Angus Grattond8213d02016-05-25 20:56:48 +10003101/** \def MBEDTLS_SSL_IN_CONTENT_LEN
3102 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003103 * Maximum length (in bytes) of incoming plaintext fragments.
Angus Grattond8213d02016-05-25 20:56:48 +10003104 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003105 * This determines the size of the incoming TLS I/O buffer in such a way
3106 * that it is capable of holding the specified amount of plaintext data,
3107 * regardless of the protection mechanism used.
3108 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003109 * \note When using a value less than the default of 16KB on the client, it is
3110 * recommended to use the Maximum Fragment Length (MFL) extension to
3111 * inform the server about this limitation. On the server, there
3112 * is no supported, standardized way of informing the client about
3113 * restriction on the maximum size of incoming messages, and unless
3114 * the limitation has been communicated by other means, it is recommended
3115 * to only change the outgoing buffer size #MBEDTLS_SSL_OUT_CONTENT_LEN
3116 * while keeping the default value of 16KB for the incoming buffer.
3117 *
David Horstmann95d516f2021-05-04 18:36:56 +01003118 * Uncomment to set the maximum plaintext size of the incoming I/O buffer.
Angus Grattond8213d02016-05-25 20:56:48 +10003119 */
3120//#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3121
Gilles Peskined3d02902020-03-04 21:35:27 +01003122/** \def MBEDTLS_SSL_CID_IN_LEN_MAX
3123 *
3124 * The maximum length of CIDs used for incoming DTLS messages.
3125 *
3126 */
3127//#define MBEDTLS_SSL_CID_IN_LEN_MAX 32
3128
3129/** \def MBEDTLS_SSL_CID_OUT_LEN_MAX
3130 *
3131 * The maximum length of CIDs used for outgoing DTLS messages.
3132 *
3133 */
3134//#define MBEDTLS_SSL_CID_OUT_LEN_MAX 32
3135
TRodziewicze8dd7092021-05-12 14:19:11 +02003136/** \def MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY
Gilles Peskined3d02902020-03-04 21:35:27 +01003137 *
3138 * This option controls the use of record plaintext padding
TRodziewicz1e660ed2021-05-26 17:08:54 +02003139 * in TLS 1.3 and when using the Connection ID extension in DTLS 1.2.
Hanno Becker13996922020-05-28 16:15:19 +01003140 *
3141 * The padding will always be chosen so that the length of the
3142 * padded plaintext is a multiple of the value of this option.
3143 *
3144 * Note: A value of \c 1 means that no padding will be used
3145 * for outgoing records.
3146 *
3147 * Note: On systems lacking division instructions,
3148 * a power of two should be preferred.
3149 */
TRodziewicze8dd7092021-05-12 14:19:11 +02003150//#define MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY 16
Hanno Becker13996922020-05-28 16:15:19 +01003151
Angus Grattond8213d02016-05-25 20:56:48 +10003152/** \def MBEDTLS_SSL_OUT_CONTENT_LEN
3153 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003154 * Maximum length (in bytes) of outgoing plaintext fragments.
Angus Grattond8213d02016-05-25 20:56:48 +10003155 *
Andrzej Kurekc470b6b2019-01-31 08:20:20 -05003156 * This determines the size of the outgoing TLS I/O buffer in such a way
3157 * that it is capable of holding the specified amount of plaintext data,
3158 * regardless of the protection mechanism used.
3159 *
Angus Grattond8213d02016-05-25 20:56:48 +10003160 * It is possible to save RAM by setting a smaller outward buffer, while keeping
3161 * the default inward 16384 byte buffer to conform to the TLS specification.
3162 *
3163 * The minimum required outward buffer size is determined by the handshake
3164 * protocol's usage. Handshaking will fail if the outward buffer is too small.
3165 * The specific size requirement depends on the configured ciphers and any
3166 * certificate data which is sent during the handshake.
3167 *
David Horstmann95d516f2021-05-04 18:36:56 +01003168 * Uncomment to set the maximum plaintext size of the outgoing I/O buffer.
Angus Grattond8213d02016-05-25 20:56:48 +10003169 */
3170//#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3171
Hanno Beckere0b150f2018-08-21 15:51:03 +01003172/** \def MBEDTLS_SSL_DTLS_MAX_BUFFERING
3173 *
3174 * Maximum number of heap-allocated bytes for the purpose of
3175 * DTLS handshake message reassembly and future message buffering.
3176 *
Hanno Becker97a1c132018-08-28 14:42:15 +01003177 * This should be at least 9/8 * MBEDTLSSL_IN_CONTENT_LEN
Hanno Becker28007512018-08-28 09:46:44 +01003178 * to account for a reassembled handshake message of maximum size,
3179 * together with its reassembly bitmap.
3180 *
Hanno Becker97a1c132018-08-28 14:42:15 +01003181 * A value of 2 * MBEDTLS_SSL_IN_CONTENT_LEN (32768 by default)
Hanno Becker28007512018-08-28 09:46:44 +01003182 * should be sufficient for all practical situations as it allows
3183 * to reassembly a large handshake message (such as a certificate)
3184 * while buffering multiple smaller handshake messages.
3185 *
Hanno Beckere0b150f2018-08-21 15:51:03 +01003186 */
Hanno Becker159a37f2018-08-24 15:07:29 +01003187//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
Hanno Beckere0b150f2018-08-21 15:51:03 +01003188
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003189//#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3190//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
Paul Bakker9bcf16c2013-06-24 19:31:17 +02003191
Manuel Pégourié-Gonnarddfc7df02014-06-30 17:59:55 +02003192/**
3193 * Complete list of ciphersuites to use, in order of preference.
3194 *
3195 * \warning No dependency checking is done on that field! This option can only
3196 * be used to restrict the set of available ciphersuites. It is your
3197 * responsibility to make sure the needed modules are active.
3198 *
3199 * Use this to save a few hundred bytes of ROM (default ordering of all
3200 * available ciphersuites) and a few to a few hundred bytes of RAM.
3201 *
3202 * The value below is only an example, not the default.
3203 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003204//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
Manuel Pégourié-Gonnarddfc7df02014-06-30 17:59:55 +02003205
Manuel Pégourié-Gonnardfd6c85c2014-11-20 16:34:20 +01003206/* X509 options */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02003207//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
Andres AGf9113192016-09-02 14:06:04 +01003208//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
Manuel Pégourié-Gonnardfd6c85c2014-11-20 16:34:20 +01003209
Gilles Peskine5e79cb32017-05-04 16:17:21 +02003210/**
Andres Amaya Garciab1262a32017-10-25 09:51:14 +01003211 * Uncomment the macro to let mbed TLS use your alternate implementation of
Andres Amaya Garciac58787f2018-04-17 10:21:45 -05003212 * mbedtls_platform_zeroize(). This replaces the default implementation in
3213 * platform_util.c.
Andres Amaya Garcia6606d5c2018-03-08 20:25:29 +00003214 *
Andres Amaya Garciac58787f2018-04-17 10:21:45 -05003215 * mbedtls_platform_zeroize() is a widely used function across the library to
3216 * zero a block of memory. The implementation is expected to be secure in the
3217 * sense that it has been written to prevent the compiler from removing calls
3218 * to mbedtls_platform_zeroize() as part of redundant code elimination
3219 * optimizations. However, it is difficult to guarantee that calls to
3220 * mbedtls_platform_zeroize() will not be optimized by the compiler as older
3221 * versions of the C language standards do not provide a secure implementation
3222 * of memset(). Therefore, MBEDTLS_PLATFORM_ZEROIZE_ALT enables users to
3223 * configure their own implementation of mbedtls_platform_zeroize(), for
Andres Amaya Garciad0ef4682018-04-24 08:31:34 -05003224 * example by using directives specific to their compiler, features from newer
3225 * C standards (e.g using memset_s() in C11) or calling a secure memset() from
Andres Amaya Garciac58787f2018-04-17 10:21:45 -05003226 * their system (e.g explicit_bzero() in BSD).
Andres Amaya Garciab1262a32017-10-25 09:51:14 +01003227 */
Andres Amaya Garciac58787f2018-04-17 10:21:45 -05003228//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
Andres Amaya Garciab1262a32017-10-25 09:51:14 +01003229
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003230/**
3231 * Uncomment the macro to let Mbed TLS use your alternate implementation of
Hanno Becker6a739782018-09-05 15:06:19 +01003232 * mbedtls_platform_gmtime_r(). This replaces the default implementation in
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003233 * platform_util.c.
3234 *
Hanno Becker921b76d2018-09-05 16:21:36 +01003235 * gmtime() is not a thread-safe function as defined in the C standard. The
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003236 * library will try to use safer implementations of this function, such as
3237 * gmtime_r() when available. However, if Mbed TLS cannot identify the target
Hanno Becker6a739782018-09-05 15:06:19 +01003238 * system, the implementation of mbedtls_platform_gmtime_r() will default to
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003239 * using the standard gmtime(). In this case, calls from the library to
3240 * gmtime() will be guarded by the global mutex mbedtls_threading_gmtime_mutex
Hanno Becker9fbbf1c2018-09-05 16:23:02 +01003241 * if MBEDTLS_THREADING_C is enabled. We recommend that calls from outside the
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003242 * library are also guarded with this mutex to avoid race conditions. However,
Hanno Becker6a739782018-09-05 15:06:19 +01003243 * if the macro MBEDTLS_PLATFORM_GMTIME_R_ALT is defined, Mbed TLS will
3244 * unconditionally use the implementation for mbedtls_platform_gmtime_r()
3245 * supplied at compile time.
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003246 */
Hanno Becker6a739782018-09-05 15:06:19 +01003247//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
Andres Amaya Garcia1abb3682018-08-16 21:42:09 +01003248
Christoph M. Wintersteigere50b9702018-12-14 11:03:02 +00003249/**
Christoph M. Wintersteiger50d9f092019-02-15 12:49:27 +00003250 * Enable the verified implementations of ECDH primitives from Project Everest
3251 * (currently only Curve25519). This feature changes the layout of ECDH
3252 * contexts and therefore is a compatibility break for applications that access
3253 * fields of a mbedtls_ecdh_context structure directly. See also
3254 * MBEDTLS_ECDH_LEGACY_CONTEXT in include/mbedtls/ecdh.h.
Christoph M. Wintersteiger02b80482018-10-25 12:41:04 +01003255 */
Christoph M. Wintersteiger6cddd302019-01-17 12:17:54 +00003256//#define MBEDTLS_ECDH_VARIANT_EVEREST_ENABLED
Christoph M. Wintersteiger02b80482018-10-25 12:41:04 +01003257
Simon Butcher30b5f972016-06-08 19:00:23 +01003258/* \} name SECTION: Customisation configuration options */