TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / sandbox / arthur / trustedfirmware-a / ab1794f57659a77ad66defbc7ea5cb8afb920b2f / . / include / drivers / auth / mbedtls / mbedtls_config.h
blob: 22e75742a34a11794f013dc9fa1a9fe722e1009f [file] [log] [blame]
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]1/*
dp-arm66b4c162017-03-07 10:08:42 +0000[diff] [blame]2 * Copyright (c) 2015-2017, ARM Limited and Contributors. All rights reserved.
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]3 *
dp-arm82cb2c12017-05-03 09:38:09 +0100[diff] [blame]4 * SPDX-License-Identifier: BSD-3-Clause
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]5 */
6#ifndef __MBEDTLS_CONFIG_H__
7#define __MBEDTLS_CONFIG_H__
8
9/*
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]10 * Key algorithms currently supported on mbed TLS libraries
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]11 */
David Cunadob1883512017-05-10 16:38:44 +0100[diff] [blame]12#define TF_MBEDTLS_RSA 1
13#define TF_MBEDTLS_ECDSA 2
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]14
15/*
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]16 * Configuration file to build mbed TLS with the required features for
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]17 * Trusted Boot
18 */
19
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]20#define MBEDTLS_PLATFORM_MEMORY
21#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
Antonio Nino Diazab1794f2017-05-19 11:37:22 +0100[diff] [blame^]22/* Prevent mbed TLS from using snprintf so that it can use tf_snprintf. */
23#define MBEDTLS_PLATFORM_SNPRINTF_ALT
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]24
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]25#define MBEDTLS_PKCS1_V15
26#define MBEDTLS_PKCS1_V21
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]27
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]28#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
29#define MBEDTLS_X509_CHECK_KEY_USAGE
30#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]31
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]32#define MBEDTLS_ASN1_PARSE_C
33#define MBEDTLS_ASN1_WRITE_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]34
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]35#define MBEDTLS_BASE64_C
36#define MBEDTLS_BIGNUM_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]37
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]38#define MBEDTLS_ERROR_C
39#define MBEDTLS_MD_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]40
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]41#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
42#define MBEDTLS_OID_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]43
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]44#define MBEDTLS_PK_C
45#define MBEDTLS_PK_PARSE_C
46#define MBEDTLS_PK_WRITE_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]47
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]48#define MBEDTLS_PLATFORM_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]49
David Cunadob1883512017-05-10 16:38:44 +0100[diff] [blame]50#if (TF_MBEDTLS_KEY_ALG_ID == TF_MBEDTLS_ECDSA)
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]51#define MBEDTLS_ECDSA_C
52#define MBEDTLS_ECP_C
53#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
David Cunadob1883512017-05-10 16:38:44 +0100[diff] [blame]54#elif (TF_MBEDTLS_KEY_ALG_ID == TF_MBEDTLS_RSA)
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]55#define MBEDTLS_RSA_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]56#endif
57
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]58#define MBEDTLS_SHA256_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]59
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]60#define MBEDTLS_VERSION_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]61
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]62#define MBEDTLS_X509_USE_C
63#define MBEDTLS_X509_CRT_PARSE_C
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]64
65/* MPI / BIGNUM options */
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]66#define MBEDTLS_MPI_WINDOW_SIZE 2
67#define MBEDTLS_MPI_MAX_SIZE 256
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]68
69/* Memory buffer allocator options */
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]70#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 8
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]71
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]72#include "mbedtls/check_config.h"
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]73
Juan Castillo649dbf62015-11-05 09:24:53 +0000[diff] [blame]74/* System headers required to build mbed TLS with the current configuration */
Juan Castillo7d37aa12015-04-02 15:44:20 +0100[diff] [blame]75#include <stdlib.h>
76
77#endif /* __MBEDTLS_CONFIG_H__ */