24#ifndef MBEDTLS_CONFIG_ADJUST_LEGACY_CRYPTO_H
25#define MBEDTLS_CONFIG_ADJUST_LEGACY_CRYPTO_H
27#if !defined(MBEDTLS_CONFIG_FILES_READ)
28#error "Do not include mbedtls/config_adjust_*.h manually! This can lead to problems, " \
29 "up to and including runtime errors such as buffer overflows. " \
30 "If you're trying to fix a complaint from check_config.h, just remove " \
31 "it from your configuration file: since Mbed TLS 3.0, it is included " \
32 "automatically at the right point."
40#if defined(__MINGW32__) || (defined(_MSC_VER) && _MSC_VER <= 1900)
41#if !defined(MBEDTLS_PLATFORM_SNPRINTF_ALT) && \
42 !defined(MBEDTLS_PLATFORM_SNPRINTF_MACRO)
43#define MBEDTLS_PLATFORM_SNPRINTF_ALT
45#if !defined(MBEDTLS_PLATFORM_VSNPRINTF_ALT) && \
46 !defined(MBEDTLS_PLATFORM_VSNPRINTF_MACRO)
47#define MBEDTLS_PLATFORM_VSNPRINTF_ALT
53#if defined(MBEDTLS_PSA_CRYPTO_C) && \
54 (defined(MBEDTLS_PSA_BUILTIN_ALG_STREAM_CIPHER) || \
55 defined(MBEDTLS_PSA_BUILTIN_ALG_CTR) || \
56 defined(MBEDTLS_PSA_BUILTIN_ALG_CFB) || \
57 defined(MBEDTLS_PSA_BUILTIN_ALG_OFB) || \
58 defined(MBEDTLS_PSA_BUILTIN_ALG_ECB_NO_PADDING) || \
59 defined(MBEDTLS_PSA_BUILTIN_ALG_CBC_NO_PADDING) || \
60 defined(MBEDTLS_PSA_BUILTIN_ALG_CBC_PKCS7) || \
61 defined(MBEDTLS_PSA_BUILTIN_ALG_CCM_STAR_NO_TAG) || \
62 defined(MBEDTLS_PSA_BUILTIN_ALG_CMAC))
63#define MBEDTLS_CIPHER_C
69#if defined(MBEDTLS_MD_C)
70#define MBEDTLS_MD_LIGHT
76#if defined(MBEDTLS_ECJPAKE_C) || \
77 defined(MBEDTLS_PEM_PARSE_C) || \
78 defined(MBEDTLS_ENTROPY_C) || \
79 defined(MBEDTLS_PK_C) || \
80 defined(MBEDTLS_PKCS12_C) || \
81 defined(MBEDTLS_RSA_C) || \
82 defined(MBEDTLS_SSL_TLS_C) || \
83 defined(MBEDTLS_X509_USE_C) || \
84 defined(MBEDTLS_X509_CREATE_C)
85#define MBEDTLS_MD_LIGHT
88#if defined(MBEDTLS_MD_LIGHT)
104#if defined(MBEDTLS_PSA_CRYPTO_C)
106#if defined(MBEDTLS_PSA_ACCEL_ALG_MD5)
107#define MBEDTLS_MD_CAN_MD5
108#define MBEDTLS_MD_MD5_VIA_PSA
109#define MBEDTLS_MD_SOME_PSA
111#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_1)
112#define MBEDTLS_MD_CAN_SHA1
113#define MBEDTLS_MD_SHA1_VIA_PSA
114#define MBEDTLS_MD_SOME_PSA
116#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_224)
117#define MBEDTLS_MD_CAN_SHA224
118#define MBEDTLS_MD_SHA224_VIA_PSA
119#define MBEDTLS_MD_SOME_PSA
121#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_256)
122#define MBEDTLS_MD_CAN_SHA256
123#define MBEDTLS_MD_SHA256_VIA_PSA
124#define MBEDTLS_MD_SOME_PSA
126#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_384)
127#define MBEDTLS_MD_CAN_SHA384
128#define MBEDTLS_MD_SHA384_VIA_PSA
129#define MBEDTLS_MD_SOME_PSA
131#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_512)
132#define MBEDTLS_MD_CAN_SHA512
133#define MBEDTLS_MD_SHA512_VIA_PSA
134#define MBEDTLS_MD_SOME_PSA
136#if defined(MBEDTLS_PSA_ACCEL_ALG_RIPEMD160)
137#define MBEDTLS_MD_CAN_RIPEMD160
138#define MBEDTLS_MD_RIPEMD160_VIA_PSA
139#define MBEDTLS_MD_SOME_PSA
141#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA3_224)
142#define MBEDTLS_MD_CAN_SHA3_224
143#define MBEDTLS_MD_SHA3_224_VIA_PSA
144#define MBEDTLS_MD_SOME_PSA
146#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA3_256)
147#define MBEDTLS_MD_CAN_SHA3_256
148#define MBEDTLS_MD_SHA3_256_VIA_PSA
149#define MBEDTLS_MD_SOME_PSA
151#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA3_384)
152#define MBEDTLS_MD_CAN_SHA3_384
153#define MBEDTLS_MD_SHA3_384_VIA_PSA
154#define MBEDTLS_MD_SOME_PSA
156#if defined(MBEDTLS_PSA_ACCEL_ALG_SHA3_512)
157#define MBEDTLS_MD_CAN_SHA3_512
158#define MBEDTLS_MD_SHA3_512_VIA_PSA
159#define MBEDTLS_MD_SOME_PSA
164#if defined(MBEDTLS_MD5_C)
165#define MBEDTLS_MD_CAN_MD5
166#define MBEDTLS_MD_SOME_LEGACY
168#if defined(MBEDTLS_SHA1_C)
169#define MBEDTLS_MD_CAN_SHA1
170#define MBEDTLS_MD_SOME_LEGACY
172#if defined(MBEDTLS_SHA224_C)
173#define MBEDTLS_MD_CAN_SHA224
174#define MBEDTLS_MD_SOME_LEGACY
176#if defined(MBEDTLS_SHA256_C)
177#define MBEDTLS_MD_CAN_SHA256
178#define MBEDTLS_MD_SOME_LEGACY
180#if defined(MBEDTLS_SHA384_C)
181#define MBEDTLS_MD_CAN_SHA384
182#define MBEDTLS_MD_SOME_LEGACY
184#if defined(MBEDTLS_SHA512_C)
185#define MBEDTLS_MD_CAN_SHA512
186#define MBEDTLS_MD_SOME_LEGACY
188#if defined(MBEDTLS_SHA3_C)
189#define MBEDTLS_MD_CAN_SHA3_224
190#define MBEDTLS_MD_CAN_SHA3_256
191#define MBEDTLS_MD_CAN_SHA3_384
192#define MBEDTLS_MD_CAN_SHA3_512
193#define MBEDTLS_MD_SOME_LEGACY
195#if defined(MBEDTLS_RIPEMD160_C)
196#define MBEDTLS_MD_CAN_RIPEMD160
197#define MBEDTLS_MD_SOME_LEGACY
217#if defined(MBEDTLS_PSA_CRYPTO_C)
218#if defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_AES)
219#define MBEDTLS_BLOCK_CIPHER_AES_VIA_PSA
220#define MBEDTLS_BLOCK_CIPHER_SOME_PSA
222#if defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ARIA)
223#define MBEDTLS_BLOCK_CIPHER_ARIA_VIA_PSA
224#define MBEDTLS_BLOCK_CIPHER_SOME_PSA
226#if defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_CAMELLIA)
227#define MBEDTLS_BLOCK_CIPHER_CAMELLIA_VIA_PSA
228#define MBEDTLS_BLOCK_CIPHER_SOME_PSA
232#if defined(MBEDTLS_AES_C)
233#define MBEDTLS_BLOCK_CIPHER_AES_VIA_LEGACY
235#if defined(MBEDTLS_ARIA_C)
236#define MBEDTLS_BLOCK_CIPHER_ARIA_VIA_LEGACY
238#if defined(MBEDTLS_CAMELLIA_C)
239#define MBEDTLS_BLOCK_CIPHER_CAMELLIA_VIA_LEGACY
244#if defined(MBEDTLS_BLOCK_CIPHER_AES_VIA_PSA) || \
245 defined(MBEDTLS_BLOCK_CIPHER_AES_VIA_LEGACY)
246#define MBEDTLS_BLOCK_CIPHER_CAN_AES
248#if defined(MBEDTLS_BLOCK_CIPHER_ARIA_VIA_PSA) || \
249 defined(MBEDTLS_BLOCK_CIPHER_ARIA_VIA_LEGACY)
250#define MBEDTLS_BLOCK_CIPHER_CAN_ARIA
252#if defined(MBEDTLS_BLOCK_CIPHER_CAMELLIA_VIA_PSA) || \
253 defined(MBEDTLS_BLOCK_CIPHER_CAMELLIA_VIA_LEGACY)
254#define MBEDTLS_BLOCK_CIPHER_CAN_CAMELLIA
263#if (defined(MBEDTLS_GCM_C) || defined(MBEDTLS_CCM_C)) && \
264 (!defined(MBEDTLS_CIPHER_C) || defined(MBEDTLS_BLOCK_CIPHER_SOME_PSA))
265#define MBEDTLS_BLOCK_CIPHER_C
269#if (defined(MBEDTLS_CIPHER_C) && defined(MBEDTLS_AES_C)) || \
270 (defined(MBEDTLS_BLOCK_CIPHER_C) && defined(MBEDTLS_BLOCK_CIPHER_CAN_AES))
271#define MBEDTLS_CCM_GCM_CAN_AES
274#if (defined(MBEDTLS_CIPHER_C) && defined(MBEDTLS_ARIA_C)) || \
275 (defined(MBEDTLS_BLOCK_CIPHER_C) && defined(MBEDTLS_BLOCK_CIPHER_CAN_ARIA))
276#define MBEDTLS_CCM_GCM_CAN_ARIA
279#if (defined(MBEDTLS_CIPHER_C) && defined(MBEDTLS_CAMELLIA_C)) || \
280 (defined(MBEDTLS_BLOCK_CIPHER_C) && defined(MBEDTLS_BLOCK_CIPHER_CAN_CAMELLIA))
281#define MBEDTLS_CCM_GCM_CAN_CAMELLIA
300#if defined(MBEDTLS_ECP_C) || \
301 defined(MBEDTLS_PK_PARSE_EC_EXTENDED) || \
302 defined(MBEDTLS_PK_PARSE_EC_COMPRESSED) || \
303 defined(MBEDTLS_PSA_BUILTIN_KEY_TYPE_ECC_KEY_PAIR_DERIVE)
304#define MBEDTLS_ECP_LIGHT
310#if defined(MBEDTLS_RSA_C)
311#define MBEDTLS_ASN1_PARSE_C
312#define MBEDTLS_ASN1_WRITE_C
320#if defined(MBEDTLS_PK_PARSE_C) && defined(MBEDTLS_ECP_C)
321#define MBEDTLS_PK_PARSE_EC_COMPRESSED
326#if (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_ECDH)) || \
327 (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_ECDH_C))
328#define MBEDTLS_CAN_ECDH
335#if !defined(MBEDTLS_USE_PSA_CRYPTO)
336#if defined(MBEDTLS_ECDSA_C)
337#define MBEDTLS_PK_CAN_ECDSA_SIGN
338#define MBEDTLS_PK_CAN_ECDSA_VERIFY
341#if defined(PSA_WANT_ALG_ECDSA)
342#if defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_BASIC)
343#define MBEDTLS_PK_CAN_ECDSA_SIGN
345#if defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY)
346#define MBEDTLS_PK_CAN_ECDSA_VERIFY
351#if defined(MBEDTLS_PK_CAN_ECDSA_VERIFY) || defined(MBEDTLS_PK_CAN_ECDSA_SIGN)
352#define MBEDTLS_PK_CAN_ECDSA_SOME
358#if defined(MBEDTLS_PSA_CRYPTO_C)
359#define MBEDTLS_PSA_CRYPTO_CLIENT
363#if defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_521)
364#define MBEDTLS_ECP_HAVE_SECP521R1
366#if defined(MBEDTLS_ECP_DP_BP512R1_ENABLED) || defined(PSA_WANT_ECC_BRAINPOOL_P_R1_512)
367#define MBEDTLS_ECP_HAVE_BP512R1
369#if defined(MBEDTLS_ECP_DP_CURVE448_ENABLED) || defined(PSA_WANT_ECC_MONTGOMERY_448)
370#define MBEDTLS_ECP_HAVE_CURVE448
372#if defined(MBEDTLS_ECP_DP_BP384R1_ENABLED) || defined(PSA_WANT_ECC_BRAINPOOL_P_R1_384)
373#define MBEDTLS_ECP_HAVE_BP384R1
375#if defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_384)
376#define MBEDTLS_ECP_HAVE_SECP384R1
378#if defined(MBEDTLS_ECP_DP_BP256R1_ENABLED) || defined(PSA_WANT_ECC_BRAINPOOL_P_R1_256)
379#define MBEDTLS_ECP_HAVE_BP256R1
381#if defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED) || defined(PSA_WANT_ECC_SECP_K1_256)
382#define MBEDTLS_ECP_HAVE_SECP256K1
384#if defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_256)
385#define MBEDTLS_ECP_HAVE_SECP256R1
387#if defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED) || defined(PSA_WANT_ECC_MONTGOMERY_255)
388#define MBEDTLS_ECP_HAVE_CURVE25519
390#if defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED) || defined(PSA_WANT_ECC_SECP_K1_224)
391#define MBEDTLS_ECP_HAVE_SECP224K1
393#if defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_224)
394#define MBEDTLS_ECP_HAVE_SECP224R1
396#if defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED) || defined(PSA_WANT_ECC_SECP_K1_192)
397#define MBEDTLS_ECP_HAVE_SECP192K1
399#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_192)
400#define MBEDTLS_ECP_HAVE_SECP192R1
406#if defined(MBEDTLS_ECP_C) || \
407 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY))
408#define MBEDTLS_PK_HAVE_ECC_KEYS
415#if defined(MBEDTLS_PK_PARSE_C) && defined(MBEDTLS_PKCS5_C) && defined(MBEDTLS_CIPHER_MODE_CBC)
416#define MBEDTLS_CIPHER_PADDING_PKCS7
421#if defined(MBEDTLS_SHA256_USE_A64_CRYPTO_IF_PRESENT) && \
422 !defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_IF_PRESENT)
423#define MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_IF_PRESENT
425#if defined(MBEDTLS_SHA256_USE_A64_CRYPTO_ONLY) && !defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_ONLY)
426#define MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_ONLY
431#if (defined(MBEDTLS_PSA_CRYPTO_CLIENT) && \
432 (defined(PSA_WANT_ALG_ECDSA) || defined(PSA_WANT_ALG_DETERMINISTIC_ECDSA)))
433#define MBEDTLS_PSA_UTIL_HAVE_ECDSA
437#if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_AES_C)) || \
438 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_KEY_TYPE_AES))
439#define MBEDTLS_SSL_HAVE_AES
441#if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_ARIA_C)) || \
442 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_KEY_TYPE_ARIA))
443#define MBEDTLS_SSL_HAVE_ARIA
445#if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_CAMELLIA_C)) || \
446 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_KEY_TYPE_CAMELLIA))
447#define MBEDTLS_SSL_HAVE_CAMELLIA
451#if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_CIPHER_MODE_CBC)) || \
452 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_CBC_NO_PADDING))
453#define MBEDTLS_SSL_HAVE_CBC
456#if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_GCM_C)) || \
457 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_GCM))
458#define MBEDTLS_SSL_HAVE_GCM
461#if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_CCM_C)) || \
462 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_CCM))
463#define MBEDTLS_SSL_HAVE_CCM
466#if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_CHACHAPOLY_C)) || \
467 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_CHACHA20_POLY1305))
468#define MBEDTLS_SSL_HAVE_CHACHAPOLY
471#if defined(MBEDTLS_SSL_HAVE_GCM) || defined(MBEDTLS_SSL_HAVE_CCM) || \
472 defined(MBEDTLS_SSL_HAVE_CHACHAPOLY)
473#define MBEDTLS_SSL_HAVE_AEAD