18#ifndef MBEDTLS_CHECK_CONFIG_H
19#define MBEDTLS_CHECK_CONFIG_H
23#if !defined(MBEDTLS_CONFIG_IS_FINALIZED)
24#warning "Do not include mbedtls/check_config.h manually! " \
25 "This may cause spurious errors. " \
26 "It is included automatically at the right point since Mbed TLS 3.0."
35#error "Mbed TLS requires a platform with 8-bit chars"
40#if defined(__MINGW32__) || (defined(_MSC_VER) && _MSC_VER <= 1900)
41#if !defined(MBEDTLS_PLATFORM_C)
42#error "MBEDTLS_PLATFORM_C is required on Windows"
48#if defined(TARGET_LIKE_MBED) && defined(MBEDTLS_NET_C)
49#error "The NET module is not available for mbed OS - please use the network functions provided by Mbed OS"
52#if defined(MBEDTLS_DEPRECATED_WARNING) && \
53 !defined(__GNUC__) && !defined(__clang__)
54#error "MBEDTLS_DEPRECATED_WARNING only works with GCC and Clang"
57#if defined(MBEDTLS_HAVE_TIME_DATE) && !defined(MBEDTLS_HAVE_TIME)
58#error "MBEDTLS_HAVE_TIME_DATE without MBEDTLS_HAVE_TIME does not make sense"
65#if defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_PUBLIC_KEY) || \
66 defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_BASIC) || \
67 defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_IMPORT) || \
68 defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_EXPORT)
69#if !defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_PUBLIC_KEY) || \
70 !defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_BASIC) || \
71 !defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_IMPORT) || \
72 !defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_EXPORT)
73#error "Unsupported partial support for ECC key type acceleration, see docs/driver-only-builds.md"
80#if defined(MBEDTLS_PSA_ACCEL_ECC_BRAINPOOL_P_R1_256) || \
81 defined(MBEDTLS_PSA_ACCEL_ECC_BRAINPOOL_P_R1_384) || \
82 defined(MBEDTLS_PSA_ACCEL_ECC_BRAINPOOL_P_R1_512) || \
83 defined(MBEDTLS_PSA_ACCEL_ECC_MONTGOMERY_255) || \
84 defined(MBEDTLS_PSA_ACCEL_ECC_MONTGOMERY_448) || \
85 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_K1_192) || \
86 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_K1_224) || \
87 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_K1_256) || \
88 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_192) || \
89 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_224) || \
90 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_256) || \
91 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_384) || \
92 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_521)
93#if defined(MBEDTLS_PSA_ECC_ACCEL_INCOMPLETE_CURVES)
94#if defined(MBEDTLS_PK_C) || \
95 defined(MBEDTLS_SSL_TLS_C)
96#error "Unsupported partial support for ECC curves acceleration, see docs/driver-only-builds.md"
101#if defined(MBEDTLS_CTR_DRBG_C) && !(defined(MBEDTLS_AES_C) || \
102 (defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_KEY_TYPE_AES) && \
103 defined(PSA_WANT_ALG_ECB_NO_PADDING)))
104#error "MBEDTLS_CTR_DRBG_C defined, but not all prerequisites"
107#if defined(MBEDTLS_DHM_C) && !defined(MBEDTLS_BIGNUM_C)
108#error "MBEDTLS_DHM_C defined, but not all prerequisites"
111#if defined(MBEDTLS_CMAC_C) && \
112 ( !defined(MBEDTLS_CIPHER_C ) || ( !defined(MBEDTLS_AES_C) && !defined(MBEDTLS_DES_C) ) )
113#error "MBEDTLS_CMAC_C defined, but not all prerequisites"
116#if defined(MBEDTLS_NIST_KW_C) && \
117 ( !defined(MBEDTLS_AES_C) || !defined(MBEDTLS_CIPHER_C) )
118#error "MBEDTLS_NIST_KW_C defined, but not all prerequisites"
121#if defined(MBEDTLS_BLOCK_CIPHER_NO_DECRYPT) && defined(MBEDTLS_PSA_CRYPTO_CONFIG)
122#if defined(PSA_WANT_ALG_CBC_NO_PADDING)
123#error "MBEDTLS_BLOCK_CIPHER_NO_DECRYPT and PSA_WANT_ALG_CBC_NO_PADDING cannot be defined simultaneously"
125#if defined(PSA_WANT_ALG_CBC_PKCS7)
126#error "MBEDTLS_BLOCK_CIPHER_NO_DECRYPT and PSA_WANT_ALG_CBC_PKCS7 cannot be defined simultaneously"
128#if defined(PSA_WANT_ALG_ECB_NO_PADDING)
129#error "MBEDTLS_BLOCK_CIPHER_NO_DECRYPT and PSA_WANT_ALG_ECB_NO_PADDING cannot be defined simultaneously"
131#if defined(PSA_WANT_KEY_TYPE_DES)
132#error "MBEDTLS_BLOCK_CIPHER_NO_DECRYPT and PSA_WANT_KEY_TYPE_DES cannot be defined simultaneously"
136#if defined(MBEDTLS_BLOCK_CIPHER_NO_DECRYPT)
137#if defined(MBEDTLS_CIPHER_MODE_CBC)
138#error "MBEDTLS_BLOCK_CIPHER_NO_DECRYPT and MBEDTLS_CIPHER_MODE_CBC cannot be defined simultaneously"
140#if defined(MBEDTLS_CIPHER_MODE_XTS)
141#error "MBEDTLS_BLOCK_CIPHER_NO_DECRYPT and MBEDTLS_CIPHER_MODE_XTS cannot be defined simultaneously"
143#if defined(MBEDTLS_DES_C)
144#error "MBEDTLS_BLOCK_CIPHER_NO_DECRYPT and MBEDTLS_DES_C cannot be defined simultaneously"
146#if defined(MBEDTLS_NIST_KW_C)
147#error "MBEDTLS_BLOCK_CIPHER_NO_DECRYPT and MBEDTLS_NIST_KW_C cannot be defined simultaneously"
151#if defined(MBEDTLS_ECDH_C) && !defined(MBEDTLS_ECP_C)
152#error "MBEDTLS_ECDH_C defined, but not all prerequisites"
155#if defined(MBEDTLS_ECDSA_C) && \
156 ( !defined(MBEDTLS_ECP_C) || \
157 !( defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) || \
158 defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) || \
159 defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) || \
160 defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED) || \
161 defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED) || \
162 defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED) || \
163 defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED) || \
164 defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED) || \
165 defined(MBEDTLS_ECP_DP_BP256R1_ENABLED) || \
166 defined(MBEDTLS_ECP_DP_BP384R1_ENABLED) || \
167 defined(MBEDTLS_ECP_DP_BP512R1_ENABLED) ) || \
168 !defined(MBEDTLS_ASN1_PARSE_C) || \
169 !defined(MBEDTLS_ASN1_WRITE_C) )
170#error "MBEDTLS_ECDSA_C defined, but not all prerequisites"
173#if defined(MBEDTLS_PK_C) && defined(MBEDTLS_USE_PSA_CRYPTO)
174#if defined(MBEDTLS_PK_CAN_ECDSA_SIGN) && !defined(MBEDTLS_ASN1_WRITE_C)
175#error "MBEDTLS_PK_C with MBEDTLS_USE_PSA_CRYPTO needs MBEDTLS_ASN1_WRITE_C for ECDSA signature"
177#if defined(MBEDTLS_PK_CAN_ECDSA_VERIFY) && !defined(MBEDTLS_ASN1_PARSE_C)
178#error "MBEDTLS_PK_C with MBEDTLS_USE_PSA_CRYPTO needs MBEDTLS_ASN1_PARSE_C for ECDSA verification"
182#if defined(MBEDTLS_ECJPAKE_C) && \
183 !defined(MBEDTLS_ECP_C)
184#error "MBEDTLS_ECJPAKE_C defined, but not all prerequisites"
187#if defined(MBEDTLS_ECP_RESTARTABLE) && \
188 ( defined(MBEDTLS_ECDH_COMPUTE_SHARED_ALT) || \
189 defined(MBEDTLS_ECDH_GEN_PUBLIC_ALT) || \
190 defined(MBEDTLS_ECDSA_SIGN_ALT) || \
191 defined(MBEDTLS_ECDSA_VERIFY_ALT) || \
192 defined(MBEDTLS_ECDSA_GENKEY_ALT) || \
193 defined(MBEDTLS_ECP_INTERNAL_ALT) || \
194 defined(MBEDTLS_ECP_ALT) )
195#error "MBEDTLS_ECP_RESTARTABLE defined, but it cannot coexist with an alternative ECP implementation"
198#if defined(MBEDTLS_ECP_RESTARTABLE) && \
199 !defined(MBEDTLS_ECP_C)
200#error "MBEDTLS_ECP_RESTARTABLE defined, but not all prerequisites"
203#if defined(MBEDTLS_ECDSA_DETERMINISTIC) && !defined(MBEDTLS_HMAC_DRBG_C)
204#error "MBEDTLS_ECDSA_DETERMINISTIC defined, but not all prerequisites"
207#if defined(MBEDTLS_ECP_LIGHT) && ( !defined(MBEDTLS_BIGNUM_C) || ( \
208 !defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) && \
209 !defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) && \
210 !defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) && \
211 !defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED) && \
212 !defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED) && \
213 !defined(MBEDTLS_ECP_DP_BP256R1_ENABLED) && \
214 !defined(MBEDTLS_ECP_DP_BP384R1_ENABLED) && \
215 !defined(MBEDTLS_ECP_DP_BP512R1_ENABLED) && \
216 !defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED) && \
217 !defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED) && \
218 !defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED) && \
219 !defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED) && \
220 !defined(MBEDTLS_ECP_DP_CURVE448_ENABLED) ) )
221#error "MBEDTLS_ECP_C defined (or a subset enabled), but not all prerequisites"
224#if defined(MBEDTLS_ENTROPY_C) && \
225 !(defined(MBEDTLS_MD_CAN_SHA512) || defined(MBEDTLS_MD_CAN_SHA256))
226#error "MBEDTLS_ENTROPY_C defined, but not all prerequisites"
228#if defined(MBEDTLS_ENTROPY_C) && \
229 defined(MBEDTLS_CTR_DRBG_ENTROPY_LEN) && (MBEDTLS_CTR_DRBG_ENTROPY_LEN > 64)
230#error "MBEDTLS_CTR_DRBG_ENTROPY_LEN value too high"
232#if defined(MBEDTLS_ENTROPY_C) && \
233 (defined(MBEDTLS_ENTROPY_FORCE_SHA256) || !defined(MBEDTLS_MD_CAN_SHA512)) \
234 && defined(MBEDTLS_CTR_DRBG_ENTROPY_LEN) && (MBEDTLS_CTR_DRBG_ENTROPY_LEN > 32)
235#error "MBEDTLS_CTR_DRBG_ENTROPY_LEN value too high"
237#if defined(MBEDTLS_ENTROPY_C) && \
238 defined(MBEDTLS_ENTROPY_FORCE_SHA256) && !defined(MBEDTLS_MD_CAN_SHA256)
239#error "MBEDTLS_ENTROPY_FORCE_SHA256 defined, but not all prerequisites"
242#if defined(__has_feature)
243#if __has_feature(memory_sanitizer)
244#define MBEDTLS_HAS_MEMSAN
247#if defined(MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN) && !defined(MBEDTLS_HAS_MEMSAN)
248#error "MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN requires building with MemorySanitizer"
250#undef MBEDTLS_HAS_MEMSAN
252#if defined(MBEDTLS_CCM_C) && \
253 !(defined(MBEDTLS_CCM_GCM_CAN_AES) || defined(MBEDTLS_CCM_GCM_CAN_ARIA) || \
254 defined(MBEDTLS_CCM_GCM_CAN_CAMELLIA))
255#error "MBEDTLS_CCM_C defined, but not all prerequisites"
258#if defined(MBEDTLS_GCM_C) && \
259 !(defined(MBEDTLS_CCM_GCM_CAN_AES) || defined(MBEDTLS_CCM_GCM_CAN_ARIA) || \
260 defined(MBEDTLS_CCM_GCM_CAN_CAMELLIA))
261#error "MBEDTLS_GCM_C defined, but not all prerequisites"
264#if defined(MBEDTLS_CHACHAPOLY_C) && !defined(MBEDTLS_CHACHA20_C)
265#error "MBEDTLS_CHACHAPOLY_C defined, but not all prerequisites"
268#if defined(MBEDTLS_CHACHAPOLY_C) && !defined(MBEDTLS_POLY1305_C)
269#error "MBEDTLS_CHACHAPOLY_C defined, but not all prerequisites"
272#if defined(MBEDTLS_ECP_RANDOMIZE_JAC_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
273#error "MBEDTLS_ECP_RANDOMIZE_JAC_ALT defined, but not all prerequisites"
276#if defined(MBEDTLS_ECP_ADD_MIXED_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
277#error "MBEDTLS_ECP_ADD_MIXED_ALT defined, but not all prerequisites"
280#if defined(MBEDTLS_ECP_DOUBLE_JAC_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
281#error "MBEDTLS_ECP_DOUBLE_JAC_ALT defined, but not all prerequisites"
284#if defined(MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
285#error "MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT defined, but not all prerequisites"
288#if defined(MBEDTLS_ECP_NORMALIZE_JAC_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
289#error "MBEDTLS_ECP_NORMALIZE_JAC_ALT defined, but not all prerequisites"
292#if defined(MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
293#error "MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT defined, but not all prerequisites"
296#if defined(MBEDTLS_ECP_RANDOMIZE_MXZ_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
297#error "MBEDTLS_ECP_RANDOMIZE_MXZ_ALT defined, but not all prerequisites"
300#if defined(MBEDTLS_ECP_NORMALIZE_MXZ_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
301#error "MBEDTLS_ECP_NORMALIZE_MXZ_ALT defined, but not all prerequisites"
304#if defined(MBEDTLS_ECP_NO_FALLBACK) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
305#error "MBEDTLS_ECP_NO_FALLBACK defined, but no alternative implementation enabled"
308#if defined(MBEDTLS_HKDF_C) && !defined(MBEDTLS_MD_C)
309#error "MBEDTLS_HKDF_C defined, but not all prerequisites"
312#if defined(MBEDTLS_HMAC_DRBG_C) && !defined(MBEDTLS_MD_C)
313#error "MBEDTLS_HMAC_DRBG_C defined, but not all prerequisites"
316#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED) && \
317 ( !defined(MBEDTLS_CAN_ECDH) || \
318 !defined(MBEDTLS_PK_CAN_ECDSA_SIGN) || \
319 !defined(MBEDTLS_X509_CRT_PARSE_C) )
320#error "MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED defined, but not all prerequisites"
323#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED) && \
324 ( !defined(MBEDTLS_CAN_ECDH) || !defined(MBEDTLS_RSA_C) || \
325 !defined(MBEDTLS_X509_CRT_PARSE_C) )
326#error "MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED defined, but not all prerequisites"
329#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED) && !defined(MBEDTLS_DHM_C)
330#error "MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED defined, but not all prerequisites"
333#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED) && \
334 !defined(MBEDTLS_CAN_ECDH)
335#error "MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED defined, but not all prerequisites"
338#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED) && \
339 ( !defined(MBEDTLS_DHM_C) || !defined(MBEDTLS_RSA_C) || \
340 !defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_PKCS1_V15) )
341#error "MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED defined, but not all prerequisites"
344#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED) && \
345 ( !defined(MBEDTLS_CAN_ECDH) || !defined(MBEDTLS_RSA_C) || \
346 !defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_PKCS1_V15) )
347#error "MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED defined, but not all prerequisites"
350#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED) && \
351 ( !defined(MBEDTLS_CAN_ECDH) || \
352 !defined(MBEDTLS_PK_CAN_ECDSA_SIGN) || \
353 !defined(MBEDTLS_X509_CRT_PARSE_C) )
354#error "MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED defined, but not all prerequisites"
357#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED) && \
358 ( !defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
359 !defined(MBEDTLS_PKCS1_V15) )
360#error "MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED defined, but not all prerequisites"
363#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED) && \
364 ( !defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
365 !defined(MBEDTLS_PKCS1_V15) )
366#error "MBEDTLS_KEY_EXCHANGE_RSA_ENABLED defined, but not all prerequisites"
369#if defined(MBEDTLS_USE_PSA_CRYPTO)
370#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED) && \
371 ( !defined(PSA_WANT_ALG_JPAKE) || \
372 !defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_BASIC) || \
373 !defined(PSA_WANT_ECC_SECP_R1_256) )
374#error "MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED defined, but not all prerequisites"
377#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED) && \
378 ( !defined(MBEDTLS_ECJPAKE_C) || \
379 !defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) )
380#error "MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED defined, but not all prerequisites"
385#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED) && \
386 !defined(MBEDTLS_MD_CAN_SHA256)
387#error "MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED defined, but not all prerequisites"
390#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
391 !defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE) && \
392 !defined(MBEDTLS_MD_CAN_SHA256) && \
393 !defined(MBEDTLS_MD_CAN_SHA512) && \
394 !defined(MBEDTLS_MD_CAN_SHA1)
395#error "!MBEDTLS_SSL_KEEP_PEER_CERTIFICATE requires SHA-512, SHA-256 or SHA-1".
398#if defined(MBEDTLS_MD_C) && \
399 !defined(MBEDTLS_MD_CAN_MD5) && \
400 !defined(MBEDTLS_MD_CAN_RIPEMD160) && \
401 !defined(MBEDTLS_MD_CAN_SHA1) && \
402 !defined(MBEDTLS_MD_CAN_SHA224) && \
403 !defined(MBEDTLS_MD_CAN_SHA256) && \
404 !defined(MBEDTLS_MD_CAN_SHA384) && \
405 !defined(MBEDTLS_MD_CAN_SHA512) && \
406 !defined(MBEDTLS_MD_CAN_SHA3_224) && \
407 !defined(MBEDTLS_MD_CAN_SHA3_256) && \
408 !defined(MBEDTLS_MD_CAN_SHA3_384) && \
409 !defined(MBEDTLS_MD_CAN_SHA3_512)
410#error "MBEDTLS_MD_C defined, but no hash algorithm"
413#if defined(MBEDTLS_LMS_C) && \
414 ! ( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_256) )
415#error "MBEDTLS_LMS_C requires MBEDTLS_PSA_CRYPTO_C and PSA_WANT_ALG_SHA_256"
418#if defined(MBEDTLS_LMS_PRIVATE) && \
419 ( !defined(MBEDTLS_LMS_C) )
420#error "MBEDTLS_LMS_PRIVATE requires MBEDTLS_LMS_C"
423#if defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C) && \
424 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_PLATFORM_MEMORY) )
425#error "MBEDTLS_MEMORY_BUFFER_ALLOC_C defined, but not all prerequisites"
428#if defined(MBEDTLS_MEMORY_BACKTRACE) && !defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
429#error "MBEDTLS_MEMORY_BACKTRACE defined, but not all prerequisites"
432#if defined(MBEDTLS_MEMORY_DEBUG) && !defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
433#error "MBEDTLS_MEMORY_DEBUG defined, but not all prerequisites"
436#if defined(MBEDTLS_PEM_PARSE_C) && !defined(MBEDTLS_BASE64_C)
437#error "MBEDTLS_PEM_PARSE_C defined, but not all prerequisites"
440#if defined(MBEDTLS_PEM_WRITE_C) && !defined(MBEDTLS_BASE64_C)
441#error "MBEDTLS_PEM_WRITE_C defined, but not all prerequisites"
444#if defined(MBEDTLS_PK_C) && \
445 !defined(MBEDTLS_RSA_C) && !defined(MBEDTLS_PK_HAVE_ECC_KEYS)
446#error "MBEDTLS_PK_C defined, but not all prerequisites"
449#if defined(MBEDTLS_PK_PARSE_C) && \
450 (!defined(MBEDTLS_ASN1_PARSE_C) || \
451 !defined(MBEDTLS_OID_C) || \
452 !defined(MBEDTLS_PK_C))
453#error "MBEDTLS_PK_PARSE_C defined, but not all prerequisites"
456#if defined(MBEDTLS_PK_WRITE_C) && \
457 (!defined(MBEDTLS_ASN1_WRITE_C) || \
458 !defined(MBEDTLS_OID_C) || \
459 !defined(MBEDTLS_PK_C))
460#error "MBEDTLS_PK_WRITE_C defined, but not all prerequisites"
463#if defined(MBEDTLS_PLATFORM_EXIT_ALT) && !defined(MBEDTLS_PLATFORM_C)
464#error "MBEDTLS_PLATFORM_EXIT_ALT defined, but not all prerequisites"
467#if defined(MBEDTLS_PLATFORM_EXIT_MACRO) && !defined(MBEDTLS_PLATFORM_C)
468#error "MBEDTLS_PLATFORM_EXIT_MACRO defined, but not all prerequisites"
471#if defined(MBEDTLS_PLATFORM_EXIT_MACRO) &&\
472 ( defined(MBEDTLS_PLATFORM_STD_EXIT) ||\
473 defined(MBEDTLS_PLATFORM_EXIT_ALT) )
474#error "MBEDTLS_PLATFORM_EXIT_MACRO and MBEDTLS_PLATFORM_STD_EXIT/MBEDTLS_PLATFORM_EXIT_ALT cannot be defined simultaneously"
477#if defined(MBEDTLS_PLATFORM_SETBUF_ALT) && !defined(MBEDTLS_PLATFORM_C)
478#error "MBEDTLS_PLATFORM_SETBUF_ALT defined, but not all prerequisites"
481#if defined(MBEDTLS_PLATFORM_SETBUF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
482#error "MBEDTLS_PLATFORM_SETBUF_MACRO defined, but not all prerequisites"
485#if defined(MBEDTLS_PLATFORM_SETBUF_MACRO) &&\
486 ( defined(MBEDTLS_PLATFORM_STD_SETBUF) ||\
487 defined(MBEDTLS_PLATFORM_SETBUF_ALT) )
488#error "MBEDTLS_PLATFORM_SETBUF_MACRO and MBEDTLS_PLATFORM_STD_SETBUF/MBEDTLS_PLATFORM_SETBUF_ALT cannot be defined simultaneously"
491#if defined(MBEDTLS_PLATFORM_TIME_ALT) &&\
492 ( !defined(MBEDTLS_PLATFORM_C) ||\
493 !defined(MBEDTLS_HAVE_TIME) )
494#error "MBEDTLS_PLATFORM_TIME_ALT defined, but not all prerequisites"
497#if defined(MBEDTLS_PLATFORM_TIME_MACRO) &&\
498 ( !defined(MBEDTLS_PLATFORM_C) ||\
499 !defined(MBEDTLS_HAVE_TIME) )
500#error "MBEDTLS_PLATFORM_TIME_MACRO defined, but not all prerequisites"
503#if defined(MBEDTLS_PLATFORM_MS_TIME_TYPE_MACRO) &&\
504 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_HAVE_TIME) )
505#error "MBEDTLS_PLATFORM_MS_TIME_TYPE_MACRO defined, but not all prerequisites"
508#if defined(MBEDTLS_PLATFORM_MS_TIME_ALT) && \
509 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_HAVE_TIME) )
510#error "MBEDTLS_PLATFORM_MS_TIME_ALT defined, but not all prerequisites"
513#if defined(MBEDTLS_PLATFORM_TIME_TYPE_MACRO) &&\
514 ( !defined(MBEDTLS_PLATFORM_C) ||\
515 !defined(MBEDTLS_HAVE_TIME) )
516#error "MBEDTLS_PLATFORM_TIME_TYPE_MACRO defined, but not all prerequisites"
519#if defined(MBEDTLS_PLATFORM_TIME_MACRO) &&\
520 ( defined(MBEDTLS_PLATFORM_STD_TIME) ||\
521 defined(MBEDTLS_PLATFORM_TIME_ALT) )
522#error "MBEDTLS_PLATFORM_TIME_MACRO and MBEDTLS_PLATFORM_STD_TIME/MBEDTLS_PLATFORM_TIME_ALT cannot be defined simultaneously"
525#if defined(MBEDTLS_PLATFORM_TIME_TYPE_MACRO) &&\
526 ( defined(MBEDTLS_PLATFORM_STD_TIME) ||\
527 defined(MBEDTLS_PLATFORM_TIME_ALT) )
528#error "MBEDTLS_PLATFORM_TIME_TYPE_MACRO and MBEDTLS_PLATFORM_STD_TIME/MBEDTLS_PLATFORM_TIME_ALT cannot be defined simultaneously"
531#if defined(MBEDTLS_PLATFORM_FPRINTF_ALT) && !defined(MBEDTLS_PLATFORM_C)
532#error "MBEDTLS_PLATFORM_FPRINTF_ALT defined, but not all prerequisites"
535#if defined(MBEDTLS_PLATFORM_FPRINTF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
536#error "MBEDTLS_PLATFORM_FPRINTF_MACRO defined, but not all prerequisites"
539#if defined(MBEDTLS_PLATFORM_FPRINTF_MACRO) &&\
540 ( defined(MBEDTLS_PLATFORM_STD_FPRINTF) ||\
541 defined(MBEDTLS_PLATFORM_FPRINTF_ALT) )
542#error "MBEDTLS_PLATFORM_FPRINTF_MACRO and MBEDTLS_PLATFORM_STD_FPRINTF/MBEDTLS_PLATFORM_FPRINTF_ALT cannot be defined simultaneously"
545#if defined(MBEDTLS_PLATFORM_FREE_MACRO) &&\
546 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_PLATFORM_MEMORY) )
547#error "MBEDTLS_PLATFORM_FREE_MACRO defined, but not all prerequisites"
550#if defined(MBEDTLS_PLATFORM_FREE_MACRO) &&\
551 defined(MBEDTLS_PLATFORM_STD_FREE)
552#error "MBEDTLS_PLATFORM_FREE_MACRO and MBEDTLS_PLATFORM_STD_FREE cannot be defined simultaneously"
555#if defined(MBEDTLS_PLATFORM_FREE_MACRO) && !defined(MBEDTLS_PLATFORM_CALLOC_MACRO)
556#error "MBEDTLS_PLATFORM_CALLOC_MACRO must be defined if MBEDTLS_PLATFORM_FREE_MACRO is"
559#if defined(MBEDTLS_PLATFORM_CALLOC_MACRO) &&\
560 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_PLATFORM_MEMORY) )
561#error "MBEDTLS_PLATFORM_CALLOC_MACRO defined, but not all prerequisites"
564#if defined(MBEDTLS_PLATFORM_CALLOC_MACRO) &&\
565 defined(MBEDTLS_PLATFORM_STD_CALLOC)
566#error "MBEDTLS_PLATFORM_CALLOC_MACRO and MBEDTLS_PLATFORM_STD_CALLOC cannot be defined simultaneously"
569#if defined(MBEDTLS_PLATFORM_CALLOC_MACRO) && !defined(MBEDTLS_PLATFORM_FREE_MACRO)
570#error "MBEDTLS_PLATFORM_FREE_MACRO must be defined if MBEDTLS_PLATFORM_CALLOC_MACRO is"
573#if defined(MBEDTLS_PLATFORM_MEMORY) && !defined(MBEDTLS_PLATFORM_C)
574#error "MBEDTLS_PLATFORM_MEMORY defined, but not all prerequisites"
577#if defined(MBEDTLS_PLATFORM_PRINTF_ALT) && !defined(MBEDTLS_PLATFORM_C)
578#error "MBEDTLS_PLATFORM_PRINTF_ALT defined, but not all prerequisites"
581#if defined(MBEDTLS_PLATFORM_PRINTF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
582#error "MBEDTLS_PLATFORM_PRINTF_MACRO defined, but not all prerequisites"
585#if defined(MBEDTLS_PLATFORM_PRINTF_MACRO) &&\
586 ( defined(MBEDTLS_PLATFORM_STD_PRINTF) ||\
587 defined(MBEDTLS_PLATFORM_PRINTF_ALT) )
588#error "MBEDTLS_PLATFORM_PRINTF_MACRO and MBEDTLS_PLATFORM_STD_PRINTF/MBEDTLS_PLATFORM_PRINTF_ALT cannot be defined simultaneously"
591#if defined(MBEDTLS_PLATFORM_SNPRINTF_ALT) && !defined(MBEDTLS_PLATFORM_C)
592#error "MBEDTLS_PLATFORM_SNPRINTF_ALT defined, but not all prerequisites"
595#if defined(MBEDTLS_PLATFORM_SNPRINTF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
596#error "MBEDTLS_PLATFORM_SNPRINTF_MACRO defined, but not all prerequisites"
599#if defined(MBEDTLS_PLATFORM_SNPRINTF_MACRO) &&\
600 ( defined(MBEDTLS_PLATFORM_STD_SNPRINTF) ||\
601 defined(MBEDTLS_PLATFORM_SNPRINTF_ALT) )
602#error "MBEDTLS_PLATFORM_SNPRINTF_MACRO and MBEDTLS_PLATFORM_STD_SNPRINTF/MBEDTLS_PLATFORM_SNPRINTF_ALT cannot be defined simultaneously"
605#if defined(MBEDTLS_PLATFORM_VSNPRINTF_ALT) && !defined(MBEDTLS_PLATFORM_C)
606#error "MBEDTLS_PLATFORM_VSNPRINTF_ALT defined, but not all prerequisites"
609#if defined(MBEDTLS_PLATFORM_VSNPRINTF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
610#error "MBEDTLS_PLATFORM_VSNPRINTF_MACRO defined, but not all prerequisites"
613#if defined(MBEDTLS_PLATFORM_VSNPRINTF_MACRO) &&\
614 ( defined(MBEDTLS_PLATFORM_STD_VSNPRINTF) ||\
615 defined(MBEDTLS_PLATFORM_VSNPRINTF_ALT) )
616#error "MBEDTLS_PLATFORM_VSNPRINTF_MACRO and MBEDTLS_PLATFORM_STD_VSNPRINTF/MBEDTLS_PLATFORM_VSNPRINTF_ALT cannot be defined simultaneously"
619#if defined(MBEDTLS_PLATFORM_STD_MEM_HDR) &&\
620 !defined(MBEDTLS_PLATFORM_NO_STD_FUNCTIONS)
621#error "MBEDTLS_PLATFORM_STD_MEM_HDR defined, but not all prerequisites"
624#if defined(MBEDTLS_PLATFORM_STD_CALLOC) && !defined(MBEDTLS_PLATFORM_MEMORY)
625#error "MBEDTLS_PLATFORM_STD_CALLOC defined, but not all prerequisites"
628#if defined(MBEDTLS_PLATFORM_STD_FREE) && !defined(MBEDTLS_PLATFORM_MEMORY)
629#error "MBEDTLS_PLATFORM_STD_FREE defined, but not all prerequisites"
632#if defined(MBEDTLS_PLATFORM_STD_EXIT) &&\
633 !defined(MBEDTLS_PLATFORM_EXIT_ALT)
634#error "MBEDTLS_PLATFORM_STD_EXIT defined, but not all prerequisites"
637#if defined(MBEDTLS_PLATFORM_STD_TIME) &&\
638 ( !defined(MBEDTLS_PLATFORM_TIME_ALT) ||\
639 !defined(MBEDTLS_HAVE_TIME) )
640#error "MBEDTLS_PLATFORM_STD_TIME defined, but not all prerequisites"
643#if defined(MBEDTLS_PLATFORM_STD_FPRINTF) &&\
644 !defined(MBEDTLS_PLATFORM_FPRINTF_ALT)
645#error "MBEDTLS_PLATFORM_STD_FPRINTF defined, but not all prerequisites"
648#if defined(MBEDTLS_PLATFORM_STD_PRINTF) &&\
649 !defined(MBEDTLS_PLATFORM_PRINTF_ALT)
650#error "MBEDTLS_PLATFORM_STD_PRINTF defined, but not all prerequisites"
653#if defined(MBEDTLS_PLATFORM_STD_SNPRINTF) &&\
654 !defined(MBEDTLS_PLATFORM_SNPRINTF_ALT)
655#error "MBEDTLS_PLATFORM_STD_SNPRINTF defined, but not all prerequisites"
658#if defined(MBEDTLS_ENTROPY_NV_SEED) &&\
659 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_ENTROPY_C) )
660#error "MBEDTLS_ENTROPY_NV_SEED defined, but not all prerequisites"
663#if defined(MBEDTLS_PLATFORM_NV_SEED_ALT) &&\
664 !defined(MBEDTLS_ENTROPY_NV_SEED)
665#error "MBEDTLS_PLATFORM_NV_SEED_ALT defined, but not all prerequisites"
668#if defined(MBEDTLS_PLATFORM_STD_NV_SEED_READ) &&\
669 !defined(MBEDTLS_PLATFORM_NV_SEED_ALT)
670#error "MBEDTLS_PLATFORM_STD_NV_SEED_READ defined, but not all prerequisites"
673#if defined(MBEDTLS_PLATFORM_STD_NV_SEED_WRITE) &&\
674 !defined(MBEDTLS_PLATFORM_NV_SEED_ALT)
675#error "MBEDTLS_PLATFORM_STD_NV_SEED_WRITE defined, but not all prerequisites"
678#if defined(MBEDTLS_PLATFORM_NV_SEED_READ_MACRO) &&\
679 ( defined(MBEDTLS_PLATFORM_STD_NV_SEED_READ) ||\
680 defined(MBEDTLS_PLATFORM_NV_SEED_ALT) )
681#error "MBEDTLS_PLATFORM_NV_SEED_READ_MACRO and MBEDTLS_PLATFORM_STD_NV_SEED_READ cannot be defined simultaneously"
684#if defined(MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO) &&\
685 ( defined(MBEDTLS_PLATFORM_STD_NV_SEED_WRITE) ||\
686 defined(MBEDTLS_PLATFORM_NV_SEED_ALT) )
687#error "MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO and MBEDTLS_PLATFORM_STD_NV_SEED_WRITE cannot be defined simultaneously"
690#if defined(MBEDTLS_PSA_CRYPTO_C) && \
691 !( ( ( defined(MBEDTLS_CTR_DRBG_C) || defined(MBEDTLS_HMAC_DRBG_C) ) && \
692 defined(MBEDTLS_ENTROPY_C) ) || \
693 defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG) )
694#error "MBEDTLS_PSA_CRYPTO_C defined, but not all prerequisites (missing RNG)"
697#if defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_HAVE_SOFT_BLOCK_MODE) && \
698 defined(PSA_HAVE_SOFT_BLOCK_CIPHER) && !defined(MBEDTLS_CIPHER_C)
699#error "MBEDTLS_PSA_CRYPTO_C defined, but not all prerequisites"
702#if defined(MBEDTLS_PSA_CRYPTO_SPM) && !defined(MBEDTLS_PSA_CRYPTO_C)
703#error "MBEDTLS_PSA_CRYPTO_SPM defined, but not all prerequisites"
706#if defined(MBEDTLS_PSA_CRYPTO_SE_C) && \
707 ! ( defined(MBEDTLS_PSA_CRYPTO_C) && \
708 defined(MBEDTLS_PSA_CRYPTO_STORAGE_C) )
709#error "MBEDTLS_PSA_CRYPTO_SE_C defined, but not all prerequisites"
712#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
713#if defined(MBEDTLS_DEPRECATED_REMOVED)
714#error "MBEDTLS_PSA_CRYPTO_SE_C is deprecated and will be removed in a future version of Mbed TLS"
715#elif defined(MBEDTLS_DEPRECATED_WARNING)
716#warning "MBEDTLS_PSA_CRYPTO_SE_C is deprecated and will be removed in a future version of Mbed TLS"
720#if defined(MBEDTLS_PSA_CRYPTO_STORAGE_C) && \
721 ! defined(MBEDTLS_PSA_CRYPTO_C)
722#error "MBEDTLS_PSA_CRYPTO_STORAGE_C defined, but not all prerequisites"
725#if defined(MBEDTLS_PSA_INJECT_ENTROPY) && \
726 !( defined(MBEDTLS_PSA_CRYPTO_STORAGE_C) && \
727 defined(MBEDTLS_ENTROPY_NV_SEED) )
728#error "MBEDTLS_PSA_INJECT_ENTROPY defined, but not all prerequisites"
731#if defined(MBEDTLS_PSA_INJECT_ENTROPY) && \
732 !defined(MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES)
733#error "MBEDTLS_PSA_INJECT_ENTROPY is not compatible with actual entropy sources"
736#if defined(MBEDTLS_PSA_INJECT_ENTROPY) && \
737 defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG)
738#error "MBEDTLS_PSA_INJECT_ENTROPY is not compatible with MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG"
741#if defined(MBEDTLS_PSA_ITS_FILE_C) && \
742 !defined(MBEDTLS_FS_IO)
743#error "MBEDTLS_PSA_ITS_FILE_C defined, but not all prerequisites"
746#if defined(MBEDTLS_RSA_C) && ( !defined(MBEDTLS_BIGNUM_C) || \
747 !defined(MBEDTLS_OID_C) )
748#error "MBEDTLS_RSA_C defined, but not all prerequisites"
751#if defined(MBEDTLS_RSA_C) && ( !defined(MBEDTLS_PKCS1_V21) && \
752 !defined(MBEDTLS_PKCS1_V15) )
753#error "MBEDTLS_RSA_C defined, but none of the PKCS1 versions enabled"
756#if defined(MBEDTLS_X509_RSASSA_PSS_SUPPORT) && \
757 ( !defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_PKCS1_V21) )
758#error "MBEDTLS_X509_RSASSA_PSS_SUPPORT defined, but not all prerequisites"
761#if defined(MBEDTLS_SHA512_USE_A64_CRYPTO_IF_PRESENT) && \
762 defined(MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY)
763#error "Must only define one of MBEDTLS_SHA512_USE_A64_CRYPTO_*"
766#if defined(MBEDTLS_SHA512_USE_A64_CRYPTO_IF_PRESENT) || \
767 defined(MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY)
768#if !defined(MBEDTLS_SHA512_C)
769#error "MBEDTLS_SHA512_USE_A64_CRYPTO_* defined without MBEDTLS_SHA512_C"
771#if defined(MBEDTLS_SHA512_ALT) || defined(MBEDTLS_SHA512_PROCESS_ALT)
772#error "MBEDTLS_SHA512_*ALT can't be used with MBEDTLS_SHA512_USE_A64_CRYPTO_*"
777#if defined(MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY) && !defined(__aarch64__)
778#error "MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY defined on non-Aarch64 system"
781#if defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_IF_PRESENT) && \
782 defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_ONLY)
783#error "Must only define one of MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_*"
786#if defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_IF_PRESENT) || \
787 defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_ONLY)
788#if !defined(MBEDTLS_SHA256_C)
789#error "MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_* defined without MBEDTLS_SHA256_C"
791#if defined(MBEDTLS_SHA256_ALT) || defined(MBEDTLS_SHA256_PROCESS_ALT)
792#error "MBEDTLS_SHA256_*ALT can't be used with MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_*"
797#if defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_ONLY) && !defined(MBEDTLS_ARCH_IS_ARMV8_A)
798#error "MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_ONLY defined on non-Armv8-A system"
807#if defined(MBEDTLS_SSL_PROTO_TLS1_3) && \
808 !(defined(MBEDTLS_PSA_CRYPTO_CLIENT) && \
809 defined(PSA_WANT_ALG_HKDF_EXTRACT) && \
810 defined(PSA_WANT_ALG_HKDF_EXPAND) && \
811 (defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA_384)))
812#error "MBEDTLS_SSL_PROTO_TLS1_3 defined, but not all prerequisites"
815#if defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED)
816#if !( (defined(PSA_WANT_ALG_ECDH) || defined(PSA_WANT_ALG_FFDH)) && \
817 defined(MBEDTLS_X509_CRT_PARSE_C) && \
818 ( defined(MBEDTLS_PK_CAN_ECDSA_SIGN) || defined(MBEDTLS_PKCS1_V21) ) )
819#error "MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED defined, but not all prerequisites"
823#if defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED)
824#if !( defined(PSA_WANT_ALG_ECDH) || defined(PSA_WANT_ALG_FFDH) )
825#error "MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED defined, but not all prerequisites"
832#if defined(MBEDTLS_SSL_PROTO_TLS1_3) && !defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE)
833#error "MBEDTLS_SSL_PROTO_TLS1_3 defined without MBEDTLS_SSL_KEEP_PEER_CERTIFICATE"
836#if defined(MBEDTLS_SSL_PROTO_TLS1_2) && \
837 !(defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED) || \
838 defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED) || \
839 defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED) || \
840 defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED) || \
841 defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED) || \
842 defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED) || \
843 defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED) || \
844 defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED) || \
845 defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED) || \
846 defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED) || \
847 defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED) )
848#error "One or more versions of the TLS protocol are enabled " \
849 "but no key exchange methods defined with MBEDTLS_KEY_EXCHANGE_xxxx"
852#if defined(MBEDTLS_SSL_EARLY_DATA) && \
853 ( !defined(MBEDTLS_SSL_SESSION_TICKETS) || \
854 ( !defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED) && \
855 !defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED) ) )
856#error "MBEDTLS_SSL_EARLY_DATA defined, but not all prerequisites"
859#if defined(MBEDTLS_SSL_EARLY_DATA) && defined(MBEDTLS_SSL_SRV_C) && \
860 defined(MBEDTLS_SSL_MAX_EARLY_DATA_SIZE) && \
861 ((MBEDTLS_SSL_MAX_EARLY_DATA_SIZE < 0) || \
862 (MBEDTLS_SSL_MAX_EARLY_DATA_SIZE > UINT32_MAX))
863#error "MBEDTLS_SSL_MAX_EARLY_DATA_SIZE must be in the range(0..UINT32_MAX)"
866#if defined(MBEDTLS_SSL_PROTO_DTLS) && \
867 !defined(MBEDTLS_SSL_PROTO_TLS1_2)
868#error "MBEDTLS_SSL_PROTO_DTLS defined, but not all prerequisites"
871#if defined(MBEDTLS_SSL_CLI_C) && !defined(MBEDTLS_SSL_TLS_C)
872#error "MBEDTLS_SSL_CLI_C defined, but not all prerequisites"
875#if defined(MBEDTLS_SSL_ASYNC_PRIVATE) && !defined(MBEDTLS_X509_CRT_PARSE_C)
876#error "MBEDTLS_SSL_ASYNC_PRIVATE defined, but not all prerequisites"
879#if defined(MBEDTLS_SSL_TLS_C) && !(defined(MBEDTLS_CIPHER_C) || \
880 defined(MBEDTLS_USE_PSA_CRYPTO))
881#error "MBEDTLS_SSL_TLS_C defined, but not all prerequisites"
885#if defined(MBEDTLS_SSL_TLS_C)
886#if defined(MBEDTLS_USE_PSA_CRYPTO)
887#if !(defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA_384))
888#error "MBEDTLS_SSL_TLS_C defined, but not all prerequisites"
891#if !defined(MBEDTLS_MD_C) || \
892 !(defined(MBEDTLS_MD_CAN_SHA256) || defined(MBEDTLS_MD_CAN_SHA384))
893#error "MBEDTLS_SSL_TLS_C defined, but not all prerequisites"
898#if defined(MBEDTLS_SSL_SRV_C) && !defined(MBEDTLS_SSL_TLS_C)
899#error "MBEDTLS_SSL_SRV_C defined, but not all prerequisites"
902#if defined(MBEDTLS_SSL_TLS_C) && \
903 !( defined(MBEDTLS_SSL_PROTO_TLS1_2) || defined(MBEDTLS_SSL_PROTO_TLS1_3) )
904#error "MBEDTLS_SSL_TLS_C defined, but no protocols are active"
907#if defined(MBEDTLS_SSL_DTLS_HELLO_VERIFY) && !defined(MBEDTLS_SSL_PROTO_DTLS)
908#error "MBEDTLS_SSL_DTLS_HELLO_VERIFY defined, but not all prerequisites"
911#if defined(MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE) && \
912 !defined(MBEDTLS_SSL_DTLS_HELLO_VERIFY)
913#error "MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE defined, but not all prerequisites"
916#if defined(MBEDTLS_SSL_DTLS_ANTI_REPLAY) && \
917 ( !defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_PROTO_DTLS) )
918#error "MBEDTLS_SSL_DTLS_ANTI_REPLAY defined, but not all prerequisites"
921#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID) && \
922 ( !defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_PROTO_DTLS) )
923#error "MBEDTLS_SSL_DTLS_CONNECTION_ID defined, but not all prerequisites"
926#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID) && \
927 defined(MBEDTLS_SSL_CID_IN_LEN_MAX) && \
928 MBEDTLS_SSL_CID_IN_LEN_MAX > 255
929#error "MBEDTLS_SSL_CID_IN_LEN_MAX too large (max 255)"
932#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID) && \
933 defined(MBEDTLS_SSL_CID_OUT_LEN_MAX) && \
934 MBEDTLS_SSL_CID_OUT_LEN_MAX > 255
935#error "MBEDTLS_SSL_CID_OUT_LEN_MAX too large (max 255)"
938#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT) && \
939 !defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
940#error "MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT defined, but not all prerequisites"
943#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT) && MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT != 0
944#if defined(MBEDTLS_DEPRECATED_REMOVED)
945#error "MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT is deprecated and will be removed in a future version of Mbed TLS"
946#elif defined(MBEDTLS_DEPRECATED_WARNING)
947#warning "MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT is deprecated and will be removed in a future version of Mbed TLS"
951#if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC) && \
952 !defined(MBEDTLS_SSL_PROTO_TLS1_2)
953#error "MBEDTLS_SSL_ENCRYPT_THEN_MAC defined, but not all prerequisites"
956#if defined(MBEDTLS_SSL_EXTENDED_MASTER_SECRET) && \
957 !defined(MBEDTLS_SSL_PROTO_TLS1_2)
958#error "MBEDTLS_SSL_EXTENDED_MASTER_SECRET defined, but not all prerequisites"
961#if defined(MBEDTLS_SSL_RENEGOTIATION) && \
962 !defined(MBEDTLS_SSL_PROTO_TLS1_2)
963#error "MBEDTLS_SSL_RENEGOTIATION defined, but not all prerequisites"
966#if defined(MBEDTLS_SSL_TICKET_C) && ( !defined(MBEDTLS_CIPHER_C) && \
967 !defined(MBEDTLS_USE_PSA_CRYPTO) )
968#error "MBEDTLS_SSL_TICKET_C defined, but not all prerequisites"
971#if defined(MBEDTLS_SSL_TICKET_C) && \
972 !( defined(MBEDTLS_SSL_HAVE_CCM) || defined(MBEDTLS_SSL_HAVE_GCM) || \
973 defined(MBEDTLS_SSL_HAVE_CHACHAPOLY) )
974#error "MBEDTLS_SSL_TICKET_C defined, but not all prerequisites"
977#if defined(MBEDTLS_SSL_TLS1_3_TICKET_NONCE_LENGTH) && \
978 MBEDTLS_SSL_TLS1_3_TICKET_NONCE_LENGTH >= 256
979#error "MBEDTLS_SSL_TLS1_3_TICKET_NONCE_LENGTH must be less than 256"
982#if defined(MBEDTLS_SSL_SERVER_NAME_INDICATION) && \
983 !defined(MBEDTLS_X509_CRT_PARSE_C)
984#error "MBEDTLS_SSL_SERVER_NAME_INDICATION defined, but not all prerequisites"
987#if defined(MBEDTLS_THREADING_PTHREAD)
988#if !defined(MBEDTLS_THREADING_C) || defined(MBEDTLS_THREADING_IMPL)
989#error "MBEDTLS_THREADING_PTHREAD defined, but not all prerequisites"
991#define MBEDTLS_THREADING_IMPL
993#if defined(MBEDTLS_THREADING_ALT)
994#if !defined(MBEDTLS_THREADING_C) || defined(MBEDTLS_THREADING_IMPL)
995#error "MBEDTLS_THREADING_ALT defined, but not all prerequisites"
997#define MBEDTLS_THREADING_IMPL
999#if defined(MBEDTLS_THREADING_C) && !defined(MBEDTLS_THREADING_IMPL)
1000#error "MBEDTLS_THREADING_C defined, single threading implementation required"
1002#undef MBEDTLS_THREADING_IMPL
1004#if defined(MBEDTLS_USE_PSA_CRYPTO) && !defined(MBEDTLS_PSA_CRYPTO_CLIENT)
1005#error "MBEDTLS_USE_PSA_CRYPTO defined, but not all prerequisites"
1008#if defined(MBEDTLS_VERSION_FEATURES) && !defined(MBEDTLS_VERSION_C)
1009#error "MBEDTLS_VERSION_FEATURES defined, but not all prerequisites"
1012#if defined(MBEDTLS_X509_USE_C) && \
1013 (!defined(MBEDTLS_OID_C) || !defined(MBEDTLS_ASN1_PARSE_C) || \
1014 !defined(MBEDTLS_PK_PARSE_C) || \
1015 ( !defined(MBEDTLS_MD_C) && !defined(MBEDTLS_USE_PSA_CRYPTO) ) )
1016#error "MBEDTLS_X509_USE_C defined, but not all prerequisites"
1019#if defined(MBEDTLS_X509_CREATE_C) && \
1020 (!defined(MBEDTLS_OID_C) || !defined(MBEDTLS_ASN1_WRITE_C) || \
1021 !defined(MBEDTLS_PK_PARSE_C) || \
1022 ( !defined(MBEDTLS_MD_C) && !defined(MBEDTLS_USE_PSA_CRYPTO) ) )
1023#error "MBEDTLS_X509_CREATE_C defined, but not all prerequisites"
1026#if defined(MBEDTLS_X509_CRT_PARSE_C) && ( !defined(MBEDTLS_X509_USE_C) )
1027#error "MBEDTLS_X509_CRT_PARSE_C defined, but not all prerequisites"
1030#if defined(MBEDTLS_X509_CRL_PARSE_C) && ( !defined(MBEDTLS_X509_USE_C) )
1031#error "MBEDTLS_X509_CRL_PARSE_C defined, but not all prerequisites"
1034#if defined(MBEDTLS_X509_CSR_PARSE_C) && ( !defined(MBEDTLS_X509_USE_C) )
1035#error "MBEDTLS_X509_CSR_PARSE_C defined, but not all prerequisites"
1038#if defined(MBEDTLS_X509_CRT_WRITE_C) && ( !defined(MBEDTLS_X509_CREATE_C) )
1039#error "MBEDTLS_X509_CRT_WRITE_C defined, but not all prerequisites"
1042#if defined(MBEDTLS_X509_CSR_WRITE_C) && ( !defined(MBEDTLS_X509_CREATE_C) )
1043#error "MBEDTLS_X509_CSR_WRITE_C defined, but not all prerequisites"
1046#if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK) && \
1047 ( !defined(MBEDTLS_X509_CRT_PARSE_C) )
1048#error "MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK defined, but not all prerequisites"
1051#if defined(MBEDTLS_HAVE_INT32) && defined(MBEDTLS_HAVE_INT64)
1052#error "MBEDTLS_HAVE_INT32 and MBEDTLS_HAVE_INT64 cannot be defined simultaneously"
1055#if ( defined(MBEDTLS_HAVE_INT32) || defined(MBEDTLS_HAVE_INT64) ) && \
1056 defined(MBEDTLS_HAVE_ASM)
1057#error "MBEDTLS_HAVE_INT32/MBEDTLS_HAVE_INT64 and MBEDTLS_HAVE_ASM cannot be defined simultaneously"
1060#if defined(MBEDTLS_SSL_DTLS_SRTP) && ( !defined(MBEDTLS_SSL_PROTO_DTLS) )
1061#error "MBEDTLS_SSL_DTLS_SRTP defined, but not all prerequisites"
1064#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH) && ( !defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH) )
1065#error "MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH defined, but not all prerequisites"
1068#if defined(MBEDTLS_SSL_RECORD_SIZE_LIMIT) && ( !defined(MBEDTLS_SSL_PROTO_TLS1_3) )
1069#error "MBEDTLS_SSL_RECORD_SIZE_LIMIT defined, but not all prerequisites"
1072#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION) && \
1073 !( defined(MBEDTLS_SSL_HAVE_CCM) || defined(MBEDTLS_SSL_HAVE_GCM) || \
1074 defined(MBEDTLS_SSL_HAVE_CHACHAPOLY) )
1075#error "MBEDTLS_SSL_CONTEXT_SERIALIZATION defined, but not all prerequisites"
1081#if defined(MBEDTLS_HAVEGE_C)
1082#error "MBEDTLS_HAVEGE_C was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/2599"
1085#if defined(MBEDTLS_SSL_HW_RECORD_ACCEL)
1086#error "MBEDTLS_SSL_HW_RECORD_ACCEL was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1089#if defined(MBEDTLS_SSL_PROTO_SSL3)
1090#error "MBEDTLS_SSL_PROTO_SSL3 (SSL v3.0 support) was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1093#if defined(MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO)
1094#error "MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO (SSL v2 ClientHello support) was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1097#if defined(MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT)
1098#error "MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT (compatibility with the buggy implementation of truncated HMAC in Mbed TLS up to 2.7) was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1101#if defined(MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES)
1102#error "MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES was removed in Mbed TLS 3.0. See the ChangeLog entry if you really need SHA-1-signed certificates."
1105#if defined(MBEDTLS_ZLIB_SUPPORT)
1106#error "MBEDTLS_ZLIB_SUPPORT was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1109#if defined(MBEDTLS_CHECK_PARAMS)
1110#error "MBEDTLS_CHECK_PARAMS was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4313"
1113#if defined(MBEDTLS_SSL_CID_PADDING_GRANULARITY)
1114#error "MBEDTLS_SSL_CID_PADDING_GRANULARITY was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4335"
1117#if defined(MBEDTLS_SSL_TLS1_3_PADDING_GRANULARITY)
1118#error "MBEDTLS_SSL_TLS1_3_PADDING_GRANULARITY was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4335"
1121#if defined(MBEDTLS_SSL_TRUNCATED_HMAC)
1122#error "MBEDTLS_SSL_TRUNCATED_HMAC was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4341"
1125#if defined(MBEDTLS_PKCS7_C) && ( ( !defined(MBEDTLS_ASN1_PARSE_C) ) || \
1126 ( !defined(MBEDTLS_OID_C) ) || ( !defined(MBEDTLS_PK_PARSE_C) ) || \
1127 ( !defined(MBEDTLS_X509_CRT_PARSE_C) ) || \
1128 ( !defined(MBEDTLS_X509_CRL_PARSE_C) ) || \
1129 ( !defined(MBEDTLS_MD_C) ) )
1130#error "MBEDTLS_PKCS7_C is defined, but not all prerequisites"
int mbedtls_iso_c_forbids_empty_translation_units