mbed TLS v3.3.0
Loading...
Searching...
No Matches
mbedtls_config.h
Go to the documentation of this file.
1
10/*
11 * Copyright The Mbed TLS Contributors
12 * SPDX-License-Identifier: Apache-2.0
13 *
14 * Licensed under the Apache License, Version 2.0 (the "License"); you may
15 * not use this file except in compliance with the License.
16 * You may obtain a copy of the License at
17 *
18 * http://www.apache.org/licenses/LICENSE-2.0
19 *
20 * Unless required by applicable law or agreed to in writing, software
21 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23 * See the License for the specific language governing permissions and
24 * limitations under the License.
25 */
26
34//#define MBEDTLS_CONFIG_VERSION 0x03000000
35
60#define MBEDTLS_HAVE_ASM
61
88//#define MBEDTLS_NO_UDBL_DIVISION
89
110//#define MBEDTLS_NO_64BIT_MULTIPLICATION
111
119//#define MBEDTLS_HAVE_SSE2
120
139#define MBEDTLS_HAVE_TIME
140
160#define MBEDTLS_HAVE_TIME_DATE
161
184//#define MBEDTLS_PLATFORM_MEMORY
185
203//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
204
228//#define MBEDTLS_PLATFORM_SETBUF_ALT
229//#define MBEDTLS_PLATFORM_EXIT_ALT
230//#define MBEDTLS_PLATFORM_TIME_ALT
231//#define MBEDTLS_PLATFORM_FPRINTF_ALT
232//#define MBEDTLS_PLATFORM_PRINTF_ALT
233//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
234//#define MBEDTLS_PLATFORM_VSNPRINTF_ALT
235//#define MBEDTLS_PLATFORM_NV_SEED_ALT
236//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
237
251//#define MBEDTLS_DEPRECATED_WARNING
252
263//#define MBEDTLS_DEPRECATED_REMOVED
264
286//#define MBEDTLS_TIMING_ALT
287
313//#define MBEDTLS_AES_ALT
314//#define MBEDTLS_ARIA_ALT
315//#define MBEDTLS_CAMELLIA_ALT
316//#define MBEDTLS_CCM_ALT
317//#define MBEDTLS_CHACHA20_ALT
318//#define MBEDTLS_CHACHAPOLY_ALT
319//#define MBEDTLS_CMAC_ALT
320//#define MBEDTLS_DES_ALT
321//#define MBEDTLS_DHM_ALT
322//#define MBEDTLS_ECJPAKE_ALT
323//#define MBEDTLS_GCM_ALT
324//#define MBEDTLS_NIST_KW_ALT
325//#define MBEDTLS_MD5_ALT
326//#define MBEDTLS_POLY1305_ALT
327//#define MBEDTLS_RIPEMD160_ALT
328//#define MBEDTLS_RSA_ALT
329//#define MBEDTLS_SHA1_ALT
330//#define MBEDTLS_SHA256_ALT
331//#define MBEDTLS_SHA512_ALT
332
333/*
334 * When replacing the elliptic curve module, please consider, that it is
335 * implemented with two .c files:
336 * - ecp.c
337 * - ecp_curves.c
338 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
339 * macros as described above. The only difference is that you have to make sure
340 * that you provide functionality for both .c files.
341 */
342//#define MBEDTLS_ECP_ALT
343
381//#define MBEDTLS_MD5_PROCESS_ALT
382//#define MBEDTLS_RIPEMD160_PROCESS_ALT
383//#define MBEDTLS_SHA1_PROCESS_ALT
384//#define MBEDTLS_SHA256_PROCESS_ALT
385//#define MBEDTLS_SHA512_PROCESS_ALT
386//#define MBEDTLS_DES_SETKEY_ALT
387//#define MBEDTLS_DES_CRYPT_ECB_ALT
388//#define MBEDTLS_DES3_CRYPT_ECB_ALT
389//#define MBEDTLS_AES_SETKEY_ENC_ALT
390//#define MBEDTLS_AES_SETKEY_DEC_ALT
391//#define MBEDTLS_AES_ENCRYPT_ALT
392//#define MBEDTLS_AES_DECRYPT_ALT
393//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
394//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
395//#define MBEDTLS_ECDSA_VERIFY_ALT
396//#define MBEDTLS_ECDSA_SIGN_ALT
397//#define MBEDTLS_ECDSA_GENKEY_ALT
398
449/* Required for all the functions in this section */
450//#define MBEDTLS_ECP_INTERNAL_ALT
451/* Turn off software fallback for curves not supported in hardware */
452//#define MBEDTLS_ECP_NO_FALLBACK
453/* Support for Weierstrass curves with Jacobi representation */
454//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
455//#define MBEDTLS_ECP_ADD_MIXED_ALT
456//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
457//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
458//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
459/* Support for curves with Montgomery arithmetic */
460//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
461//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
462//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
463
476//#define MBEDTLS_ENTROPY_HARDWARE_ALT
477
496//#define MBEDTLS_AES_ROM_TABLES
497
518//#define MBEDTLS_AES_FEWER_TABLES
519
527//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
528
550//#define MBEDTLS_CHECK_RETURN_WARNING
551
557#define MBEDTLS_CIPHER_MODE_CBC
558
564#define MBEDTLS_CIPHER_MODE_CFB
565
571#define MBEDTLS_CIPHER_MODE_CTR
572
578#define MBEDTLS_CIPHER_MODE_OFB
579
585#define MBEDTLS_CIPHER_MODE_XTS
586
617//#define MBEDTLS_CIPHER_NULL_CIPHER
618
630#define MBEDTLS_CIPHER_PADDING_PKCS7
631#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
632#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
633#define MBEDTLS_CIPHER_PADDING_ZEROS
634
640//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
641
650/* Short Weierstrass curves (supporting ECP, ECDH, ECDSA) */
651#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
652#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
653#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
654#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
655#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
656#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
657#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
658#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
659#define MBEDTLS_ECP_DP_BP256R1_ENABLED
660#define MBEDTLS_ECP_DP_BP384R1_ENABLED
661#define MBEDTLS_ECP_DP_BP512R1_ENABLED
662/* Montgomery curves (supporting ECP) */
663#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
664#define MBEDTLS_ECP_DP_CURVE448_ENABLED
665
675#define MBEDTLS_ECP_NIST_OPTIM
676
699//#define MBEDTLS_ECP_RESTARTABLE
700
713#define MBEDTLS_ECDSA_DETERMINISTIC
714
733#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
734
762#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
763
780#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
781
803#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
804
828#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
829
860#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
861
883#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
884
905#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
906
927#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
928
949#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
950
968//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
969
982#define MBEDTLS_PK_PARSE_EC_EXTENDED
983
997#define MBEDTLS_ERROR_STRERROR_DUMMY
998
1006#define MBEDTLS_GENPRIME
1007
1013#define MBEDTLS_FS_IO
1014
1025//#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1026
1036//#define MBEDTLS_NO_PLATFORM_ENTROPY
1037
1052//#define MBEDTLS_ENTROPY_FORCE_SHA256
1053
1080//#define MBEDTLS_ENTROPY_NV_SEED
1081
1082/* MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER
1083 *
1084 * Enable key identifiers that encode a key owner identifier.
1085 *
1086 * The owner of a key is identified by a value of type ::mbedtls_key_owner_id_t
1087 * which is currently hard-coded to be int32_t.
1088 *
1089 * Note that this option is meant for internal use only and may be removed
1090 * without notice.
1091 */
1092//#define MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER
1093
1105//#define MBEDTLS_MEMORY_DEBUG
1106
1117//#define MBEDTLS_MEMORY_BACKTRACE
1118
1126#define MBEDTLS_PK_RSA_ALT_SUPPORT
1127
1137#define MBEDTLS_PKCS1_V15
1138
1156#define MBEDTLS_PKCS1_V21
1157
1172//#define MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS
1173
1188//#define MBEDTLS_PSA_CRYPTO_CLIENT
1189
1200//#define MBEDTLS_PSA_CRYPTO_DRIVERS
1201
1238//#define MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG
1239
1252//#define MBEDTLS_PSA_CRYPTO_SPM
1253
1265//#define MBEDTLS_PSA_INJECT_ENTROPY
1266
1276//#define MBEDTLS_RSA_NO_CRT
1277
1283#define MBEDTLS_SELF_TEST
1284
1299//#define MBEDTLS_SHA256_SMALLER
1300
1309//#define MBEDTLS_SHA512_SMALLER
1310
1323#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1324
1347#define MBEDTLS_SSL_DTLS_CONNECTION_ID
1348
1349
1370#define MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT 0
1371
1381//#define MBEDTLS_SSL_ASYNC_PRIVATE
1382
1410#define MBEDTLS_SSL_CONTEXT_SERIALIZATION
1411
1426//#define MBEDTLS_SSL_DEBUG_ALL
1427
1442#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1443
1458#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1459
1482#define MBEDTLS_SSL_KEEP_PEER_CERTIFICATE
1483
1504#define MBEDTLS_SSL_RENEGOTIATION
1505
1513#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1514
1531#define MBEDTLS_SSL_PROTO_TLS1_2
1532
1554//#define MBEDTLS_SSL_PROTO_TLS1_3
1555
1576//#define MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1577
1588#define MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
1589
1603#define MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
1604
1617#define MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
1618
1637#define MBEDTLS_SSL_TLS1_3_TICKET_AGE_TOLERANCE 6000
1638
1646#define MBEDTLS_SSL_TLS1_3_TICKET_NONCE_LENGTH 32
1647
1656#define MBEDTLS_SSL_TLS1_3_DEFAULT_NEW_SESSION_TICKETS 1
1657
1674//#define MBEDTLS_SSL_EARLY_DATA
1675
1691#define MBEDTLS_SSL_MAX_EARLY_DATA_SIZE 1024
1692
1704#define MBEDTLS_SSL_PROTO_DTLS
1705
1713#define MBEDTLS_SSL_ALPN
1714
1728#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1729
1746#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1747
1777//#define MBEDTLS_SSL_DTLS_SRTP
1778
1793#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1794
1807#define MBEDTLS_SSL_SESSION_TICKETS
1808
1818#define MBEDTLS_SSL_SERVER_NAME_INDICATION
1819
1828//#define MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1829
1845//#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
1846
1864//#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
1865
1884//#define MBEDTLS_TEST_HOOKS
1885
1895//#define MBEDTLS_THREADING_ALT
1896
1906//#define MBEDTLS_THREADING_PTHREAD
1907
1930//#define MBEDTLS_USE_PSA_CRYPTO
1931
1955//#define MBEDTLS_PSA_CRYPTO_CONFIG
1956
1968#define MBEDTLS_VERSION_FEATURES
1969
1987//#define MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
1988
1998//#define MBEDTLS_X509_REMOVE_INFO
1999
2008#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
2030#define MBEDTLS_AESNI_C
2031
2105#define MBEDTLS_AES_C
2106
2119#define MBEDTLS_ASN1_PARSE_C
2120
2133#define MBEDTLS_ASN1_WRITE_C
2134
2145#define MBEDTLS_BASE64_C
2146
2165#define MBEDTLS_BIGNUM_C
2166
2220#define MBEDTLS_CAMELLIA_C
2221
2272#define MBEDTLS_ARIA_C
2273
2287#define MBEDTLS_CCM_C
2288
2296#define MBEDTLS_CHACHA20_C
2297
2307#define MBEDTLS_CHACHAPOLY_C
2308
2329#define MBEDTLS_CIPHER_C
2330
2347#define MBEDTLS_CMAC_C
2348
2367#define MBEDTLS_CTR_DRBG_C
2368
2382#define MBEDTLS_DEBUG_C
2383
2398#define MBEDTLS_DES_C
2399
2420#define MBEDTLS_DHM_C
2421
2438#define MBEDTLS_ECDH_C
2439
2455#define MBEDTLS_ECDSA_C
2456
2482#define MBEDTLS_ECJPAKE_C
2483
2496#define MBEDTLS_ECP_C
2497
2510#define MBEDTLS_ENTROPY_C
2511
2522#define MBEDTLS_ERROR_C
2523
2537#define MBEDTLS_GCM_C
2538
2552#define MBEDTLS_HKDF_C
2553
2566#define MBEDTLS_HMAC_DRBG_C
2567
2580#define MBEDTLS_LMS_C
2581
2592//#define MBEDTLS_LMS_PRIVATE
2593
2605#define MBEDTLS_NIST_KW_C
2606
2637#define MBEDTLS_MD_C
2638
2658#define MBEDTLS_MD5_C
2659
2674//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2675
2693#define MBEDTLS_NET_C
2694
2716#define MBEDTLS_OID_C
2717
2730#define MBEDTLS_PADLOCK_C
2731
2748#define MBEDTLS_PEM_PARSE_C
2749
2764#define MBEDTLS_PEM_WRITE_C
2765
2782#define MBEDTLS_PK_C
2783
2797#define MBEDTLS_PK_PARSE_C
2798
2811#define MBEDTLS_PK_WRITE_C
2812
2832#define MBEDTLS_PKCS5_C
2833
2852//#define MBEDTLS_PKCS7_C
2853
2876#define MBEDTLS_PKCS12_C
2877
2896#define MBEDTLS_PLATFORM_C
2897
2906#define MBEDTLS_POLY1305_C
2907
2921#define MBEDTLS_PSA_CRYPTO_C
2922
2937//#define MBEDTLS_PSA_CRYPTO_SE_C
2938
2950#define MBEDTLS_PSA_CRYPTO_STORAGE_C
2951
2962#define MBEDTLS_PSA_ITS_FILE_C
2963
2973#define MBEDTLS_RIPEMD160_C
2974
2993#define MBEDTLS_RSA_C
2994
3012#define MBEDTLS_SHA1_C
3013
3028#define MBEDTLS_SHA224_C
3029
3048#define MBEDTLS_SHA256_C
3049
3073//#define MBEDTLS_SHA256_USE_A64_CRYPTO_IF_PRESENT
3074
3098//#define MBEDTLS_SHA256_USE_A64_CRYPTO_ONLY
3099
3116#define MBEDTLS_SHA384_C
3117
3131#define MBEDTLS_SHA512_C
3132
3158//#define MBEDTLS_SHA512_USE_A64_CRYPTO_IF_PRESENT
3159
3185//#define MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY
3186
3197#define MBEDTLS_SSL_CACHE_C
3198
3207#define MBEDTLS_SSL_COOKIE_C
3208
3220#define MBEDTLS_SSL_TICKET_C
3221
3234#define MBEDTLS_SSL_CLI_C
3235
3248#define MBEDTLS_SSL_SRV_C
3249
3264#define MBEDTLS_SSL_TLS_C
3265
3286//#define MBEDTLS_THREADING_C
3287
3310#define MBEDTLS_TIMING_C
3311
3321#define MBEDTLS_VERSION_C
3322
3341#define MBEDTLS_X509_USE_C
3342
3357#define MBEDTLS_X509_CRT_PARSE_C
3358
3371#define MBEDTLS_X509_CRL_PARSE_C
3372
3385#define MBEDTLS_X509_CSR_PARSE_C
3386
3402#define MBEDTLS_X509_CREATE_C
3403
3415#define MBEDTLS_X509_CRT_WRITE_C
3416
3428#define MBEDTLS_X509_CSR_WRITE_C
3429
3458//#define MBEDTLS_CONFIG_FILE "mbedtls/mbedtls_config.h"
3459
3475//#define MBEDTLS_USER_CONFIG_FILE "/dev/null"
3476
3493//#define MBEDTLS_PSA_CRYPTO_CONFIG_FILE "psa/crypto_config.h"
3494
3510//#define MBEDTLS_PSA_CRYPTO_USER_CONFIG_FILE "/dev/null"
3511
3525/* The Doxygen documentation here is used when a user comments out a
3526 * setting and runs doxygen themselves. On the other hand, when we typeset
3527 * the full documentation including disabled settings, the documentation
3528 * in specific modules' header files is used if present. When editing this
3529 * file, make sure that each option is documented in exactly one place,
3530 * plus optionally a same-line Doxygen comment here if there is a Doxygen
3531 * comment in the specific module. */
3532
3533/* MPI / BIGNUM options */
3534//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */
3535//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3536
3537/* CTR_DRBG options */
3538//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3539//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3540//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3541//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3542//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3543
3544/* HMAC_DRBG options */
3545//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3546//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3547//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3548//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3549
3550/* ECP options */
3551//#define MBEDTLS_ECP_WINDOW_SIZE 4 /**< Maximum window size used */
3552//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3553
3554/* Entropy options */
3555//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3556//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3557//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3558
3559/* Memory buffer allocator options */
3560//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3561
3562/* Platform options */
3563//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3564//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3565//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3566//#define MBEDTLS_PLATFORM_STD_SETBUF setbuf /**< Default setbuf to use, can be undefined */
3567//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3568//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3569//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3570//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3571/* Note: your snprintf must correctly zero-terminate the buffer! */
3572//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3573//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3574//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3575//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3576//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3577//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3578
3579/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3580/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3581//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3582//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3583//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3584//#define MBEDTLS_PLATFORM_SETBUF_MACRO setbuf /**< Default setbuf macro to use, can be undefined */
3585//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3586//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3587//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3588//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3589/* Note: your snprintf must correctly zero-terminate the buffer! */
3590//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3591//#define MBEDTLS_PLATFORM_VSNPRINTF_MACRO vsnprintf /**< Default vsnprintf macro to use, can be undefined */
3592//#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3593//#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3594
3608//#define MBEDTLS_CHECK_RETURN __attribute__((__warn_unused_result__))
3609
3616//#define MBEDTLS_IGNORE_RETURN( result ) ((void) !(result))
3617
3618/* PSA options */
3629//#define MBEDTLS_PSA_HMAC_DRBG_MD_TYPE MBEDTLS_MD_SHA256
3630
3640//#define MBEDTLS_PSA_KEY_SLOT_COUNT 32
3641
3642/* SSL Cache options */
3643//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3644//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3645
3646/* SSL options */
3647
3667//#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3668
3674//#define MBEDTLS_SSL_CID_IN_LEN_MAX 32
3675
3681//#define MBEDTLS_SSL_CID_OUT_LEN_MAX 32
3682
3697//#define MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY 16
3698
3717//#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3718
3734//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3735
3736//#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3737//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3738
3751//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3752
3753/* X509 options */
3754//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3755//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3756
3775//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3776
3794//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3795
3803//#define MBEDTLS_ECDH_VARIANT_EVEREST_ENABLED
3804