TuyaOS
tuya_tls_security_L1_default_config.h
1
10/*
11 * Copyright The Mbed TLS Contributors
12 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
13 *
14 * This file is provided under the Apache License 2.0, or the
15 * GNU General Public License v2.0 or later.
16 *
17 * **********
18 * Apache License 2.0:
19 *
20 * Licensed under the Apache License, Version 2.0 (the "License"); you may
21 * not use this file except in compliance with the License.
22 * You may obtain a copy of the License at
23 *
24 * http://www.apache.org/licenses/LICENSE-2.0
25 *
26 * Unless required by applicable law or agreed to in writing, software
27 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
28 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
29 * See the License for the specific language governing permissions and
30 * limitations under the License.
31 *
32 * **********
33 *
34 * **********
35 * GNU General Public License v2.0 or later:
36 *
37 * This program is free software; you can redistribute it and/or modify
38 * it under the terms of the GNU General Public License as published by
39 * the Free Software Foundation; either version 2 of the License, or
40 * (at your option) any later version.
41 *
42 * This program is distributed in the hope that it will be useful,
43 * but WITHOUT ANY WARRANTY; without even the implied warranty of
44 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
45 * GNU General Public License for more details.
46 *
47 * You should have received a copy of the GNU General Public License along
48 * with this program; if not, write to the Free Software Foundation, Inc.,
49 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
50 *
51 * **********
52 */
53
54#ifndef MBEDTLS_CONFIG_H_TY
55#define MBEDTLS_CONFIG_H_TY
56
57#define MBEDTLS_SUPPORT_TUYA_PSK
58
59#include "tuya_iot_config.h"
60#include "tuya_cloud_types.h"
61
62#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
63#define _CRT_SECURE_NO_DEPRECATE 1
64#endif
65
91//#define MBEDTLS_HAVE_ASM
92
119//#define MBEDTLS_NO_UDBL_DIVISION
120
141//#define MBEDTLS_NO_64BIT_MULTIPLICATION
142
150//#define MBEDTLS_HAVE_SSE2
151
165#ifdef ENABLE_CUSTOM_CONFIG
166#ifdef ENABLE_MBEDTLS_HAVE_TIME
167#define MBEDTLS_HAVE_TIME
168#else
169#undef MBEDTLS_HAVE_TIME
170#endif
171#else
172//MBEDTLS_HAVE_TIME
173#endif
193#ifdef ENABLE_CUSTOM_CONFIG
194#ifdef ENABLE_MBEDTLS_HAVE_TIME_DATE
195#define MBEDTLS_HAVE_TIME_DATE
196#else
197#undef MBEDTLS_HAVE_TIME_DATE
198#endif
199#else
200//MBEDTLS_HAVE_TIME
201#endif
224#define MBEDTLS_PLATFORM_MEMORY
242//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
243
267//#define MBEDTLS_PLATFORM_EXIT_ALT
268//#define MBEDTLS_PLATFORM_TIME_ALT
269//#define MBEDTLS_PLATFORM_FPRINTF_ALT
270//#define MBEDTLS_PLATFORM_PRINTF_ALT
271//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
272//#define MBEDTLS_PLATFORM_NV_SEED_ALT
273//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
274
288#define MBEDTLS_DEPRECATED_WARNING
289
300//#define MBEDTLS_DEPRECATED_REMOVED
301
352//#define MBEDTLS_CHECK_PARAMS
353
366//#define MBEDTLS_CHECK_PARAMS_ASSERT
367
368/* \} name SECTION: System support */
369
389//#define MBEDTLS_TIMING_ALT
390
416//#define MBEDTLS_AES_ALT
417//#define MBEDTLS_ARC4_ALT
418//#define MBEDTLS_ARIA_ALT
419//#define MBEDTLS_BLOWFISH_ALT
420//#define MBEDTLS_CAMELLIA_ALT
421//#define MBEDTLS_CCM_ALT
422//#define MBEDTLS_CHACHA20_ALT
423//#define MBEDTLS_CHACHAPOLY_ALT
424//#define MBEDTLS_CMAC_ALT
425//#define MBEDTLS_DES_ALT
426//#define MBEDTLS_DHM_ALT
427//#define MBEDTLS_ECJPAKE_ALT
428//#define MBEDTLS_GCM_ALT
429//#define MBEDTLS_NIST_KW_ALT
430//#define MBEDTLS_MD2_ALT
431//#define MBEDTLS_MD4_ALT
432//#define MBEDTLS_MD5_ALT
433//#define MBEDTLS_POLY1305_ALT
434//#define MBEDTLS_RIPEMD160_ALT
435//#define MBEDTLS_RSA_ALT
436//#define MBEDTLS_SHA1_ALT
437//#define MBEDTLS_SHA256_ALT
438//#define MBEDTLS_SHA512_ALT
439//#define MBEDTLS_XTEA_ALT
440
441/*
442 * When replacing the elliptic curve module, pleace consider, that it is
443 * implemented with two .c files:
444 * - ecp.c
445 * - ecp_curves.c
446 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
447 * macros as described above. The only difference is that you have to make sure
448 * that you provide functionality for both .c files.
449 */
450//#define MBEDTLS_ECP_ALT
451
497//#define MBEDTLS_MD2_PROCESS_ALT
498//#define MBEDTLS_MD4_PROCESS_ALT
499//#define MBEDTLS_MD5_PROCESS_ALT
500//#define MBEDTLS_RIPEMD160_PROCESS_ALT
501//#define MBEDTLS_SHA1_PROCESS_ALT
502//#define MBEDTLS_SHA256_PROCESS_ALT
503//#define MBEDTLS_SHA512_PROCESS_ALT
504//#define MBEDTLS_DES_SETKEY_ALT
505//#define MBEDTLS_DES_CRYPT_ECB_ALT
506//#define MBEDTLS_DES3_CRYPT_ECB_ALT
507//#define MBEDTLS_AES_SETKEY_ENC_ALT
508//#define MBEDTLS_AES_SETKEY_DEC_ALT
509//#define MBEDTLS_AES_ENCRYPT_ALT
510//#define MBEDTLS_AES_DECRYPT_ALT
511//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
512//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
513//#define MBEDTLS_ECDSA_VERIFY_ALT
514//#define MBEDTLS_ECDSA_SIGN_ALT
515//#define MBEDTLS_ECDSA_GENKEY_ALT
516
557/* Required for all the functions in this section */
558//#define MBEDTLS_ECP_INTERNAL_ALT
559/* Support for Weierstrass curves with Jacobi representation */
560//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
561//#define MBEDTLS_ECP_ADD_MIXED_ALT
562//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
563//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
564//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
565/* Support for curves with Montgomery arithmetic */
566//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
567//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
568//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
569
585//#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
586
604//#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
605
621//#define MBEDTLS_TEST_NULL_ENTROPY
622
634//#define MBEDTLS_ENTROPY_HARDWARE_ALT
635
654//#define MBEDTLS_AES_ROM_TABLES
655
676//#define MBEDTLS_AES_FEWER_TABLES
677
685//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
686
692#define MBEDTLS_CIPHER_MODE_CBC
693
699#define MBEDTLS_CIPHER_MODE_CFB
700
706#define MBEDTLS_CIPHER_MODE_CTR
707
713#define MBEDTLS_CIPHER_MODE_OFB
714
720#define MBEDTLS_CIPHER_MODE_XTS
721
753//#define MBEDTLS_CIPHER_NULL_CIPHER
754
766#define MBEDTLS_CIPHER_PADDING_PKCS7
767#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
768#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
769#define MBEDTLS_CIPHER_PADDING_ZEROS
770
776//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
777
794//#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
795
807#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
808
827//#define MBEDTLS_REMOVE_3DES_CIPHERSUITES
828
837#ifdef ENABLE_CUSTOM_CONFIG
838#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192R1_ENABLED
839#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
840#else
841#undef MBEDTLS_ECP_DP_SECP192R1_ENABLED
842#endif
843
844#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224R1_ENABLED
845#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
846#else
847#undef MBEDTLS_ECP_DP_SECP224R1_ENABLED
848#endif
849
850#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256R1_ENABLED
851#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
852#else
853#undef MBEDTLS_ECP_DP_SECP256R1_ENABLED
854#endif
855
856#ifdef ENABLE_MBEDTLS_ECP_DP_SECP384R1_ENABLED
857#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
858#else
859#undef MBEDTLS_ECP_DP_SECP384R1_ENABLED
860#endif
861
862#ifdef ENABLE_MBEDTLS_ECP_DP_SECP521R1_ENABLED
863#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
864#else
865#undef MBEDTLS_ECP_DP_SECP521R1_ENABLED
866#endif
867
868#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192K1_ENABLED
869#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
870#else
871#undef MBEDTLS_ECP_DP_SECP192K1_ENABLED
872#endif
873
874#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224K1_ENABLED
875#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
876#else
877#undef MBEDTLS_ECP_DP_SECP224K1_ENABLED
878#endif
879
880#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256K1_ENABLED
881#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
882#else
883#undef MBEDTLS_ECP_DP_SECP256K1_ENABLED
884#endif
885
886#ifdef ENABLE_MBEDTLS_ECP_DP_BP256R1_ENABLED
887#define MBEDTLS_ECP_DP_BP256R1_ENABLED
888#else
889#undef MBEDTLS_ECP_DP_BP256R1_ENABLED
890#endif
891
892#ifdef ENABLE_MBEDTLS_ECP_DP_BP384R1_ENABLED
893#define MBEDTLS_ECP_DP_BP384R1_ENABLED
894#else
895#undef MBEDTLS_ECP_DP_BP384R1_ENABLED
896#endif
897
898#ifdef ENABLE_MBEDTLS_ECP_DP_BP512R1_ENABLED
899#define MBEDTLS_ECP_DP_BP512R1_ENABLED
900#else
901#undef MBEDTLS_ECP_DP_BP512R1_ENABLED
902#endif
903
904#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE25519_ENABLED
905#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
906#else
907#undef MBEDTLS_ECP_DP_CURVE25519_ENABLED
908#endif
909
910#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE448_ENABLED
911#define MBEDTLS_ECP_DP_CURVE448_ENABLED
912#else
913#undef MBEDTLS_ECP_DP_CURVE448_ENABLED
914#endif
915#else
916#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
917#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
918#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
919#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
920#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
921#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
922#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
923#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
924#define MBEDTLS_ECP_DP_BP256R1_ENABLED
925#define MBEDTLS_ECP_DP_BP384R1_ENABLED
926#define MBEDTLS_ECP_DP_BP512R1_ENABLED
927#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
928#define MBEDTLS_ECP_DP_CURVE448_ENABLED
929#endif
939#define MBEDTLS_ECP_NIST_OPTIM
940
963#ifdef ENABLE_CUSTOM_CONFIG
964#ifdef ENABLE_MBEDTLS_ECP_RESTARTABLE
965#define MBEDTLS_ECP_RESTARTABLE
966#else
967#undef MBEDTLS_ECP_RESTARTABLE
968#endif
969#endif
970
983//#define MBEDTLS_ECDSA_DETERMINISTIC
984
1005#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
1006
1036#ifdef ENABLE_CUSTOM_CONFIG
1037#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_PSK
1038#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1039#else
1040#undef MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1041#endif
1042#else
1043//#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1044#endif
1045
1064#ifdef ENABLE_CUSTOM_CONFIG
1065#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_PSK
1066#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1067#else
1068#undef MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1069#endif
1070#else
1071#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1072#endif
1073
1097#ifdef ENABLE_CUSTOM_CONFIG
1098#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA_PSK
1099#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1100#else
1101#undef MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1102#endif
1103#else
1104//#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1105#endif
1106
1133#ifdef ENABLE_CUSTOM_CONFIG
1134#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA
1135#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1136#else
1137#undef MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1138#endif
1139#else
1140//#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1141#endif
1142
1174#ifdef ENABLE_CUSTOM_CONFIG
1175#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_RSA
1176#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1177#else
1178#undef MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1179#endif
1180#else
1181//#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1182#endif
1183
1207#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1208
1231#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1232
1255#ifdef ENABLE_CUSTOM_CONFIG
1256#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA
1257#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1258#else
1259#undef MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1260#endif
1261#else
1262//#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1263#endif
1264
1287#ifdef ENABLE_CUSTOM_CONFIG
1288#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_RSA
1289#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1290#else
1291#undef MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1292#endif
1293#else
1294//#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1295#endif
1296
1314//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1315
1328#define MBEDTLS_PK_PARSE_EC_EXTENDED
1329
1343#define MBEDTLS_ERROR_STRERROR_DUMMY
1344
1352#define MBEDTLS_GENPRIME
1353
1359#ifdef ENABLE_CUSTOM_CONFIG
1360#ifdef ENABLE_MBEDTLS_FS_IO
1361#define MBEDTLS_FS_IO
1362#else
1363#undef MBEDTLS_FS_IO
1364#endif
1365#else
1366//#define MBEDTLS_FS_IO
1367#endif
1379//#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1380
1390#define MBEDTLS_NO_PLATFORM_ENTROPY
1405//#define MBEDTLS_ENTROPY_FORCE_SHA256
1406
1433#define MBEDTLS_ENTROPY_NV_SEED
1434
1446//#define MBEDTLS_MEMORY_DEBUG
1447
1458//#define MBEDTLS_MEMORY_BACKTRACE
1459
1467#define MBEDTLS_PK_RSA_ALT_SUPPORT
1468
1478#define MBEDTLS_PKCS1_V15
1479
1489#define MBEDTLS_PKCS1_V21
1490
1500//#define MBEDTLS_RSA_NO_CRT
1501
1507// #define MBEDTLS_SELF_TEST
1508
1523//#define MBEDTLS_SHA256_SMALLER
1524
1537#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1538
1548//#define MBEDTLS_SSL_ASYNC_PRIVATE
1549
1564//#define MBEDTLS_SSL_DEBUG_ALL
1565
1582#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1583
1600#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1601
1617#define MBEDTLS_SSL_FALLBACK_SCSV
1618
1627//#define MBEDTLS_SSL_HW_RECORD_ACCEL
1628
1639//#define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1640
1661//#define MBEDTLS_SSL_RENEGOTIATION
1662
1671//#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1672
1681//#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1682
1690#ifdef ENABLE_CUSTOM_CONFIG
1691#ifdef ENABLE_MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1692#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1693#else
1694#undef MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1695#endif
1696#else
1697#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1698#endif
1709//#define MBEDTLS_SSL_PROTO_SSL3
1710
1721#ifdef ENABLE_CUSTOM_CONFIG
1722#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1
1723#define MBEDTLS_SSL_PROTO_TLS1
1724#else
1725#undef MBEDTLS_SSL_PROTO_TLS1
1726#endif
1727#else
1728//#define MBEDTLS_SSL_PROTO_TLS1
1729#endif
1730
1741#ifdef ENABLE_CUSTOM_CONFIG
1742#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1_1
1743#define MBEDTLS_SSL_PROTO_TLS1_1
1744#else
1745#undef MBEDTLS_SSL_PROTO_TLS1_1
1746#endif
1747#else
1748//#define MBEDTLS_SSL_PROTO_TLS1_1
1749#endif
1750
1761#define MBEDTLS_SSL_PROTO_TLS1_2
1762
1776#ifdef ENABLE_CUSTOM_CONFIG
1777#ifdef ENABLE_MBEDTLS_SSL_PROTO_DTLS
1778#define MBEDTLS_SSL_PROTO_DTLS
1779#else
1780#undef MBEDTLS_SSL_PROTO_DTLS
1781#endif
1782#else
1783//#define MBEDTLS_SSL_PROTO_DTLS
1784#endif
1785
1793//#define MBEDTLS_SSL_ALPN
1794
1808//#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1809
1826#ifdef ENABLE_CUSTOM_CONFIG
1827#ifdef ENABLE_MBEDTLS_SSL_DTLS_HELLO_VERIFY
1828#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1829#else
1830#undef MBEDTLS_SSL_DTLS_HELLO_VERIFY
1831#endif
1832#else
1833//#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1834#endif
1864#ifdef ENABLE_CUSTOM_CONFIG
1865#ifdef ENABLE_MBEDTLS_SSL_DTLS_SRTP
1866#define MBEDTLS_SSL_DTLS_SRTP
1867#else
1868#undef MBEDTLS_SSL_DTLS_SRTP
1869#endif
1870#else
1871//#define MBEDTLS_SSL_DTLS_SRTP
1872#endif
1873
1888//#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1889
1899//#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1900
1913#ifdef ENABLE_CUSTOM_CONFIG
1914#ifdef ENABLE_MBEDTLS_CLIENT_SSL_SESSION_TICKETS
1915#define MBEDTLS_SSL_SESSION_TICKETS
1916#else
1917#undef MBEDTLS_SSL_SESSION_TICKETS
1918#endif
1919#else
1920#define MBEDTLS_SSL_SESSION_TICKETS
1921#endif
1930//#define MBEDTLS_SSL_EXPORT_KEYS
1931
1941#define MBEDTLS_SSL_SERVER_NAME_INDICATION
1942
1951#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
1952#define MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1953#define MBEDTLS_SUPPORT_HANDSHAKE_FRAGMENT
1954#define MBEDTLS_SUPPORT_DYNAMIC_MEMORY
1955#endif
1956
1964//#define MBEDTLS_SSL_TRUNCATED_HMAC
1965
1988//#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1989
2005//#define MBEDTLS_TEST_HOOKS
2006
2016#define MBEDTLS_THREADING_ALT
2017
2027//#define MBEDTLS_THREADING_PTHREAD
2028
2040#define MBEDTLS_VERSION_FEATURES
2041
2050//#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
2051
2062//#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
2063
2076#define MBEDTLS_X509_CHECK_KEY_USAGE
2077
2089#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
2090
2099#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
2100
2124//#define MBEDTLS_ZLIB_SUPPORT
2125/* \} name SECTION: mbed TLS feature support */
2126
2146//#define MBEDTLS_AESNI_C
2147
2221#define MBEDTLS_AES_C
2222
2249#ifdef ENABLE_CUSTOM_CONFIG
2250#ifdef ENABLE_MBEDTLS_ARC4_C
2251#define MBEDTLS_ARC4_C
2252#else
2253#undef MBEDTLS_ARC4_C
2254#endif
2255#else
2256//#define MBEDTLS_ARC4_C
2257#endif
2258
2271#define MBEDTLS_ASN1_PARSE_C
2272
2285#define MBEDTLS_ASN1_WRITE_C
2286
2297#define MBEDTLS_BASE64_C
2298
2314#define MBEDTLS_BIGNUM_C
2315
2323#ifdef ENABLE_CUSTOM_CONFIG
2324#ifdef ENABLE_MBEDTLS_BLOWFISH_C
2325#define MBEDTLS_BLOWFISH_C
2326#else
2327#undef MBEDTLS_BLOWFISH_C
2328#endif
2329#else
2330//#define MBEDTLS_BLOWFISH_C
2331#endif
2332
2386#ifdef ENABLE_CUSTOM_CONFIG
2387#ifdef ENABLE_MBEDTLS_CAMELLIA_C
2388#define MBEDTLS_CAMELLIA_C
2389#else
2390#undef MBEDTLS_CAMELLIA_C
2391#endif
2392#else
2393//#define MBEDTLS_CAMELLIA_C
2394#endif
2395
2446//#define MBEDTLS_ARIA_C
2447
2460#define MBEDTLS_CCM_C
2461
2472//#define MBEDTLS_CERTS_C
2473
2481#ifdef ENABLE_CUSTOM_CONFIG
2482#ifdef ENABLE_MBEDTLS_CHACHA20_C
2483#define MBEDTLS_CHACHA20_C
2484#else
2485#undef MBEDTLS_CHACHA20_C
2486#endif
2487#else
2488//#define MBEDTLS_CHACHA20_C
2489#endif
2490
2500#ifdef ENABLE_CUSTOM_CONFIG
2501#ifdef ENABLE_MBEDTLS_CHACHAPOLY_C
2502#define MBEDTLS_CHACHAPOLY_C
2503#else
2504#undef MBEDTLS_CHACHAPOLY_C
2505#endif
2506#else
2507//#define MBEDTLS_CHACHAPOLY_C
2508#endif
2509
2520#define MBEDTLS_CIPHER_C
2521
2533#ifdef ENABLE_CUSTOM_CONFIG
2534#ifdef ENABLE_MBEDTLS_CMAC_C
2535#define MBEDTLS_CMAC_C
2536#else
2537#undef MBEDTLS_CMAC_C
2538#endif
2539#else
2540//#define MBEDTLS_CMAC_C
2541#endif
2560#define MBEDTLS_CTR_DRBG_C
2561
2574#if ENABLE_MBEDTLS_DEBUG
2575#define MBEDTLS_DEBUG_C
2576#else
2577#undef MBEDTLS_DEBUG_C
2578#endif
2579
2607#ifdef ENABLE_CUSTOM_CONFIG
2608#ifdef ENABLE_MBEDTLS_DES_C
2609#define MBEDTLS_DES_C
2610#else
2611#undef MBEDTLS_DES_C
2612#endif
2613#else
2614//#define MBEDTLS_DES_C
2615#endif
2616
2636#ifdef ENABLE_CUSTOM_CONFIG
2637#ifdef ENABLE_MBEDTLS_DHM_C
2638#define MBEDTLS_DHM_C
2639#else
2640#undef MBEDTLS_DHM_C
2641#endif
2642#else
2643//#define MBEDTLS_DHM_C
2644#endif
2659#define MBEDTLS_ECDH_C
2660
2674#define MBEDTLS_ECDSA_C
2675
2693//#define MBEDTLS_ECJPAKE_C
2694
2707#define MBEDTLS_ECP_C
2708
2721#define MBEDTLS_ENTROPY_C
2722
2733#define MBEDTLS_ERROR_C
2734
2747#define MBEDTLS_GCM_C
2748//
2770#ifdef ENABLE_CUSTOM_CONFIG
2771#ifdef ENABLE_MBEDTLS_HAVEGE_C
2772#define MBEDTLS_HAVEGE_C
2773#else
2774#undef MBEDTLS_HAVEGE_C
2775#endif
2776#else
2777//#define MBEDTLS_HAVEGE_C
2778#endif
2779
2793#define MBEDTLS_HKDF_C
2794
2807#ifdef ENABLE_CUSTOM_CONFIG
2808#ifdef ENABLE_MBEDTLS_HMAC_DRBG_C
2809#define MBEDTLS_HMAC_DRBG_C
2810#else
2811#undef MBEDTLS_HMAC_DRBG_C
2812#endif
2813#else
2814//#define MBEDTLS_HMAC_DRBG_C
2815#endif
2827//#define MBEDTLS_NIST_KW_C
2828
2839#define MBEDTLS_MD_C
2840
2856//#define MBEDTLS_MD2_C
2857
2873//#define MBEDTLS_MD4_C
2874
2895#define MBEDTLS_MD5_C
2896
2911//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2912
2930#ifdef ENABLE_CUSTOM_CONFIG
2931#ifdef ENABLE_MBEDTLS_NET_C
2932#define MBEDTLS_NET_C
2933#else
2934#undef MBEDTLS_NET_C
2935#endif
2936#else
2937//#define MBEDTLS_NET_C
2938#endif
2960#define MBEDTLS_OID_C
2961
2974//#define MBEDTLS_PADLOCK_C
2975
2992#define MBEDTLS_PEM_PARSE_C
2993
3008#define MBEDTLS_PEM_WRITE_C
3009
3024#define MBEDTLS_PK_C
3025
3039#define MBEDTLS_PK_PARSE_C
3040
3053#define MBEDTLS_PK_WRITE_C
3054
3066#define MBEDTLS_PKCS5_C
3067
3081//#define MBEDTLS_PKCS11_C
3082
3097#define MBEDTLS_PKCS12_C
3098
3117#define MBEDTLS_PLATFORM_C
3118
3127#ifdef ENABLE_CUSTOM_CONFIG
3128#ifdef ENABLE_MBEDTLS_POLY1305_C
3129#define MBEDTLS_POLY1305_C
3130#else
3131#undef MBEDTLS_POLY1305_C
3132#endif
3133#else
3134//#define MBEDTLS_POLY1305_C
3135#endif
3136
3146#ifdef ENABLE_CUSTOM_CONFIG
3147#ifdef ENABLE_MBEDTLS_RIPEMD160_C
3148#define MBEDTLS_RIPEMD160_C
3149#else
3150#undef MBEDTLS_RIPEMD160_C
3151#endif
3152#else
3153//#define MBEDTLS_RIPEMD160_C
3154#endif
3155
3173#define MBEDTLS_RSA_C
3174
3195#define MBEDTLS_SHA1_C
3196
3212#define MBEDTLS_SHA256_C
3213#define MBEDTLS_SHA224_C
3214
3228#define MBEDTLS_SHA384_C
3229#define MBEDTLS_SHA512_C
3230
3241//#define MBEDTLS_SSL_CACHE_C
3242
3251//#define MBEDTLS_SSL_COOKIE_C
3252
3263//#define MBEDTLS_SSL_TICKET_C
3264
3277#define MBEDTLS_SSL_CLI_C
3278
3291#ifdef ENABLE_CUSTOM_CONFIG
3292#ifdef ENABLE_MBEDTLS_SSL_SRV_C
3293#define MBEDTLS_SSL_SRV_C
3294#else
3295#undef MBEDTLS_SSL_SRV_C
3296#endif
3297#else
3298//#define MBEDTLS_SSL_SRV_C
3299#endif
3314#define MBEDTLS_SSL_TLS_C
3315
3336#define MBEDTLS_THREADING_C
3337
3359#ifdef ENABLE_CUSTOM_CONFIG
3360#ifdef ENABLE_MBEDTLS_TIMING_C
3361#define MBEDTLS_TIMING_C
3362#else
3363#undef MBEDTLS_TIMING_C
3364#endif
3365#else
3366//#define MBEDTLS_TIMING_C
3367#endif
3368
3378#define MBEDTLS_VERSION_C
3379
3395#define MBEDTLS_X509_USE_C
3396
3411#define MBEDTLS_X509_CRT_PARSE_C
3412
3426#define MBEDTLS_X509_CRL_PARSE_C
3427
3428
3441#define MBEDTLS_X509_CSR_PARSE_C
3442
3454#define MBEDTLS_X509_CREATE_C
3455
3467#define MBEDTLS_X509_CRT_WRITE_C
3468
3480#define MBEDTLS_X509_CSR_WRITE_C
3481
3490#ifdef ENABLE_CUSTOM_CONFIG
3491#ifdef ENABLE_MBEDTLS_XTEA_C
3492#define MBEDTLS_XTEA_C
3493#else
3494#undef MBEDTLS_XTEA_C
3495#endif
3496#else
3497//#define MBEDTLS_XTEA_C
3498#endif
3499
3500/* \} name SECTION: mbed TLS modules */
3501
3517/* MPI / BIGNUM options */
3518//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */
3519//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3520
3521/* CTR_DRBG options */
3522//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3523//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3524//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3525//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3526//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3527
3528/* HMAC_DRBG options */
3529//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3530//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3531//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3532//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3533
3534/* ECP options */
3535//#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3536//#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3537//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3538
3539/* Entropy options */
3540//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3541//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3542//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3543
3544/* Memory buffer allocator options */
3545//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3546
3547/* Platform options */
3548//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3549//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3550//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3551//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3552//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3553//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3554//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3555/* Note: your snprintf must correctly zero-terminate the buffer! */
3556//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3557//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3558//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3559//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3560//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3561//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3562
3563/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3564/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3565//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3566//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3567//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3568//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3569//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3570//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3571//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3572/* Note: your snprintf must correctly zero-terminate the buffer! */
3573//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3574extern int __tuya_tls_nv_seed_write(unsigned char *buf, size_t buf_len);
3575extern int __tuya_tls_nv_seed_read(unsigned char *buf, size_t buf_len);
3576#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO __tuya_tls_nv_seed_read
3577#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO __tuya_tls_nv_seed_write
3613//#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3614
3615/* SSL Cache options */
3616//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3617//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3618
3619/* SSL options */
3620
3645#ifdef ENABLE_CUSTOM_CONFIG
3646#define MBEDTLS_SSL_MAX_CONTENT_LEN ENABLE_MBEDTLS_SSL_MAX_CONTENT_LEN
3647#else
3648#if OPERATING_SYSTEM <= SYSTEM_SMALL_MEMORY_END
3649#define MBEDTLS_SSL_MAX_CONTENT_LEN 1024
3650#else
3651#define MBEDTLS_SSL_MAX_CONTENT_LEN 1024
3652#endif
3653#endif
3654
3655
3656
3680#define MBEDTLS_SSL_IN_CONTENT_LEN MBEDTLS_SSL_MAX_CONTENT_LEN
3681
3704#define MBEDTLS_SSL_OUT_CONTENT_LEN MBEDTLS_SSL_MAX_CONTENT_LEN
3705
3721//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3722
3723//#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3724#define MBEDTLS_PSK_MAX_LEN 64
3725//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3726
3739//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3740
3741/* X509 options */
3742//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3743//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3744
3757// #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3758
3774#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3775
3794//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3795
3813//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3814
3815/* \} name SECTION: Customisation configuration options */
3816
3817/* Target and application specific configurations
3818 *
3819 * Allow user to override any previous default.
3820 *
3821 */
3822#if defined(MBEDTLS_USER_CONFIG_FILE)
3823#include MBEDTLS_USER_CONFIG_FILE
3824#endif
3825
3826//#include "check_config.h"
3827
3828#endif /* MBEDTLS_CONFIG_H_TY */
制作者 doxygen 1.9.4