TuyaOS
tuya_tls_security_L2_default_config.h
1
10/*
11 * Copyright The Mbed TLS Contributors
12 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
13 *
14 * This file is provided under the Apache License 2.0, or the
15 * GNU General Public License v2.0 or later.
16 *
17 * **********
18 * Apache License 2.0:
19 *
20 * Licensed under the Apache License, Version 2.0 (the "License"); you may
21 * not use this file except in compliance with the License.
22 * You may obtain a copy of the License at
23 *
24 * http://www.apache.org/licenses/LICENSE-2.0
25 *
26 * Unless required by applicable law or agreed to in writing, software
27 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
28 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
29 * See the License for the specific language governing permissions and
30 * limitations under the License.
31 *
32 * **********
33 *
34 * **********
35 * GNU General Public License v2.0 or later:
36 *
37 * This program is free software; you can redistribute it and/or modify
38 * it under the terms of the GNU General Public License as published by
39 * the Free Software Foundation; either version 2 of the License, or
40 * (at your option) any later version.
41 *
42 * This program is distributed in the hope that it will be useful,
43 * but WITHOUT ANY WARRANTY; without even the implied warranty of
44 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
45 * GNU General Public License for more details.
46 *
47 * You should have received a copy of the GNU General Public License along
48 * with this program; if not, write to the Free Software Foundation, Inc.,
49 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
50 *
51 * **********
52 */
53
54#ifndef MBEDTLS_CONFIG_H_TY
55#define MBEDTLS_CONFIG_H_TY
56
57#define MBEDTLS_SUPPORT_TUYA_PSK
58
59#include "tuya_iot_config.h"
60#include "tuya_cloud_types.h"
61
62#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
63#define _CRT_SECURE_NO_DEPRECATE 1
64#endif
65
91//#define MBEDTLS_HAVE_ASM
92
119//#define MBEDTLS_NO_UDBL_DIVISION
120
141//#define MBEDTLS_NO_64BIT_MULTIPLICATION
142
150//#define MBEDTLS_HAVE_SSE2
151
165#ifdef ENABLE_CUSTOM_CONFIG
166#ifdef ENABLE_MBEDTLS_HAVE_TIME
167#define MBEDTLS_HAVE_TIME
168#else
169#undef MBEDTLS_HAVE_TIME
170#endif
171#else
172//MBEDTLS_HAVE_TIME
173#endif
193#ifdef ENABLE_CUSTOM_CONFIG
194#ifdef ENABLE_MBEDTLS_HAVE_TIME_DATE
195#define MBEDTLS_HAVE_TIME_DATE
196#else
197#undef MBEDTLS_HAVE_TIME_DATE
198#endif
199#else
200//MBEDTLS_HAVE_TIME
201#endif
224#define MBEDTLS_PLATFORM_MEMORY
242//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
243
267//#define MBEDTLS_PLATFORM_EXIT_ALT
268//#define MBEDTLS_PLATFORM_TIME_ALT
269//#define MBEDTLS_PLATFORM_FPRINTF_ALT
270//#define MBEDTLS_PLATFORM_PRINTF_ALT
271//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
272//#define MBEDTLS_PLATFORM_NV_SEED_ALT
273//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
274
288#define MBEDTLS_DEPRECATED_WARNING
289
300//#define MBEDTLS_DEPRECATED_REMOVED
301
352//#define MBEDTLS_CHECK_PARAMS
353
366//#define MBEDTLS_CHECK_PARAMS_ASSERT
367
368/* \} name SECTION: System support */
369
389//#define MBEDTLS_TIMING_ALT
390
416//#define MBEDTLS_AES_ALT
417//#define MBEDTLS_ARC4_ALT
418//#define MBEDTLS_ARIA_ALT
419//#define MBEDTLS_BLOWFISH_ALT
420//#define MBEDTLS_CAMELLIA_ALT
421//#define MBEDTLS_CCM_ALT
422//#define MBEDTLS_CHACHA20_ALT
423//#define MBEDTLS_CHACHAPOLY_ALT
424//#define MBEDTLS_CMAC_ALT
425//#define MBEDTLS_DES_ALT
426//#define MBEDTLS_DHM_ALT
427//#define MBEDTLS_ECJPAKE_ALT
428//#define MBEDTLS_GCM_ALT
429//#define MBEDTLS_NIST_KW_ALT
430//#define MBEDTLS_MD2_ALT
431//#define MBEDTLS_MD4_ALT
432//#define MBEDTLS_MD5_ALT
433//#define MBEDTLS_POLY1305_ALT
434//#define MBEDTLS_RIPEMD160_ALT
435//#define MBEDTLS_RSA_ALT
436//#define MBEDTLS_SHA1_ALT
437//#define MBEDTLS_SHA256_ALT
438//#define MBEDTLS_SHA512_ALT
439//#define MBEDTLS_XTEA_ALT
440
441/*
442 * When replacing the elliptic curve module, pleace consider, that it is
443 * implemented with two .c files:
444 * - ecp.c
445 * - ecp_curves.c
446 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
447 * macros as described above. The only difference is that you have to make sure
448 * that you provide functionality for both .c files.
449 */
450//#define MBEDTLS_ECP_ALT
451
497//#define MBEDTLS_MD2_PROCESS_ALT
498//#define MBEDTLS_MD4_PROCESS_ALT
499//#define MBEDTLS_MD5_PROCESS_ALT
500//#define MBEDTLS_RIPEMD160_PROCESS_ALT
501//#define MBEDTLS_SHA1_PROCESS_ALT
502//#define MBEDTLS_SHA256_PROCESS_ALT
503//#define MBEDTLS_SHA512_PROCESS_ALT
504//#define MBEDTLS_DES_SETKEY_ALT
505//#define MBEDTLS_DES_CRYPT_ECB_ALT
506//#define MBEDTLS_DES3_CRYPT_ECB_ALT
507//#define MBEDTLS_AES_SETKEY_ENC_ALT
508//#define MBEDTLS_AES_SETKEY_DEC_ALT
509//#define MBEDTLS_AES_ENCRYPT_ALT
510//#define MBEDTLS_AES_DECRYPT_ALT
511//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
512//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
513//#define MBEDTLS_ECDSA_VERIFY_ALT
514//#define MBEDTLS_ECDSA_SIGN_ALT
515//#define MBEDTLS_ECDSA_GENKEY_ALT
516
557/* Required for all the functions in this section */
558//#define MBEDTLS_ECP_INTERNAL_ALT
559/* Support for Weierstrass curves with Jacobi representation */
560//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
561//#define MBEDTLS_ECP_ADD_MIXED_ALT
562//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
563//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
564//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
565/* Support for curves with Montgomery arithmetic */
566//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
567//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
568//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
569
585//#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
586
604//#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
605
621//#define MBEDTLS_TEST_NULL_ENTROPY
622
634//#define MBEDTLS_ENTROPY_HARDWARE_ALT
635
654//#define MBEDTLS_AES_ROM_TABLES
655
676//#define MBEDTLS_AES_FEWER_TABLES
677
685//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
686
692#define MBEDTLS_CIPHER_MODE_CBC
693
699#define MBEDTLS_CIPHER_MODE_CFB
700
706#define MBEDTLS_CIPHER_MODE_CTR
707
713#define MBEDTLS_CIPHER_MODE_OFB
714
720#define MBEDTLS_CIPHER_MODE_XTS
721
753//#define MBEDTLS_CIPHER_NULL_CIPHER
754
766#define MBEDTLS_CIPHER_PADDING_PKCS7
767#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
768#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
769#define MBEDTLS_CIPHER_PADDING_ZEROS
770
776//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
777
794//#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
795
807#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
808
827//#define MBEDTLS_REMOVE_3DES_CIPHERSUITES
828
837#ifdef ENABLE_CUSTOM_CONFIG
838#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192R1_ENABLED
839#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
840#else
841#undef MBEDTLS_ECP_DP_SECP192R1_ENABLED
842#endif
843
844#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224R1_ENABLED
845#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
846#else
847#undef MBEDTLS_ECP_DP_SECP224R1_ENABLED
848#endif
849
850#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256R1_ENABLED
851#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
852#else
853#undef MBEDTLS_ECP_DP_SECP256R1_ENABLED
854#endif
855
856#ifdef ENABLE_MBEDTLS_ECP_DP_SECP384R1_ENABLED
857#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
858#else
859#undef MBEDTLS_ECP_DP_SECP384R1_ENABLED
860#endif
861
862#ifdef ENABLE_MBEDTLS_ECP_DP_SECP521R1_ENABLED
863#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
864#else
865#undef MBEDTLS_ECP_DP_SECP521R1_ENABLED
866#endif
867
868#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192K1_ENABLED
869#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
870#else
871#undef MBEDTLS_ECP_DP_SECP192K1_ENABLED
872#endif
873
874#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224K1_ENABLED
875#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
876#else
877#undef MBEDTLS_ECP_DP_SECP224K1_ENABLED
878#endif
879
880#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256K1_ENABLED
881#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
882#else
883#undef MBEDTLS_ECP_DP_SECP256K1_ENABLED
884#endif
885
886#ifdef ENABLE_MBEDTLS_ECP_DP_BP256R1_ENABLED
887#define MBEDTLS_ECP_DP_BP256R1_ENABLED
888#else
889#undef MBEDTLS_ECP_DP_BP256R1_ENABLED
890#endif
891
892#ifdef ENABLE_MBEDTLS_ECP_DP_BP384R1_ENABLED
893#define MBEDTLS_ECP_DP_BP384R1_ENABLED
894#else
895#undef MBEDTLS_ECP_DP_BP384R1_ENABLED
896#endif
897
898#ifdef ENABLE_MBEDTLS_ECP_DP_BP512R1_ENABLED
899#define MBEDTLS_ECP_DP_BP512R1_ENABLED
900#else
901#undef MBEDTLS_ECP_DP_BP512R1_ENABLED
902#endif
903
904#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE25519_ENABLED
905#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
906#else
907#undef MBEDTLS_ECP_DP_CURVE25519_ENABLED
908#endif
909
910#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE448_ENABLED
911#define MBEDTLS_ECP_DP_CURVE448_ENABLED
912#else
913#undef MBEDTLS_ECP_DP_CURVE448_ENABLED
914#endif
915#else
916#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
917#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
918#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
919#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
920#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
921#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
922#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
923#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
924#define MBEDTLS_ECP_DP_BP256R1_ENABLED
925#define MBEDTLS_ECP_DP_BP384R1_ENABLED
926#define MBEDTLS_ECP_DP_BP512R1_ENABLED
927#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
928#define MBEDTLS_ECP_DP_CURVE448_ENABLED
929#endif
939#define MBEDTLS_ECP_NIST_OPTIM
940
963//#define MBEDTLS_ECP_RESTARTABLE
964
977//#define MBEDTLS_ECDSA_DETERMINISTIC
978
999#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
1000
1030#ifdef ENABLE_CUSTOM_CONFIG
1031#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_PSK
1032#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1033#else
1034#undef MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1035#endif
1036#else
1037//#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1038#endif
1039
1058#ifdef ENABLE_CUSTOM_CONFIG
1059#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_PSK
1060#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1061#else
1062#undef MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1063#endif
1064#else
1065#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1066#endif
1067
1091#ifdef ENABLE_CUSTOM_CONFIG
1092#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA_PSK
1093#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1094#else
1095#undef MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1096#endif
1097#else
1098//#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1099#endif
1100
1127#ifdef ENABLE_CUSTOM_CONFIG
1128#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA
1129#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1130#else
1131#undef MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1132#endif
1133#else
1134//#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1135#endif
1136
1168#ifdef ENABLE_CUSTOM_CONFIG
1169#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_RSA
1170#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1171#else
1172#undef MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1173#endif
1174#else
1175//#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1176#endif
1177
1201#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1202
1225#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1226
1249#ifdef ENABLE_CUSTOM_CONFIG
1250#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA
1251#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1252#else
1253#undef MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1254#endif
1255#else
1256//#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1257#endif
1258
1281#ifdef ENABLE_CUSTOM_CONFIG
1282#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_RSA
1283#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1284#else
1285#undef MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1286#endif
1287#else
1288//#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1289#endif
1290
1308//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1309
1322#define MBEDTLS_PK_PARSE_EC_EXTENDED
1323
1337#define MBEDTLS_ERROR_STRERROR_DUMMY
1338
1346#define MBEDTLS_GENPRIME
1347
1353#ifdef ENABLE_CUSTOM_CONFIG
1354#ifdef ENABLE_MBEDTLS_FS_IO
1355#define MBEDTLS_FS_IO
1356#else
1357#undef MBEDTLS_FS_IO
1358#endif
1359#else
1360//#define MBEDTLS_FS_IO
1361#endif
1373//#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1374
1384#define MBEDTLS_NO_PLATFORM_ENTROPY
1399//#define MBEDTLS_ENTROPY_FORCE_SHA256
1400
1427#define MBEDTLS_ENTROPY_NV_SEED
1428
1440//#define MBEDTLS_MEMORY_DEBUG
1441
1452//#define MBEDTLS_MEMORY_BACKTRACE
1453
1461#define MBEDTLS_PK_RSA_ALT_SUPPORT
1462
1472#define MBEDTLS_PKCS1_V15
1473
1483#define MBEDTLS_PKCS1_V21
1484
1494//#define MBEDTLS_RSA_NO_CRT
1495
1501// #define MBEDTLS_SELF_TEST
1502
1517//#define MBEDTLS_SHA256_SMALLER
1518
1531#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1532
1542//#define MBEDTLS_SSL_ASYNC_PRIVATE
1543
1558//#define MBEDTLS_SSL_DEBUG_ALL
1559
1576#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1577
1594#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1595
1611#define MBEDTLS_SSL_FALLBACK_SCSV
1612
1621//#define MBEDTLS_SSL_HW_RECORD_ACCEL
1622
1633//#define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1634
1655//#define MBEDTLS_SSL_RENEGOTIATION
1656
1665//#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1666
1675//#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1676
1684#ifdef ENABLE_CUSTOM_CONFIG
1685#ifdef ENABLE_MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1686#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1687#else
1688#undef MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1689#endif
1690#else
1691#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1692#endif
1703//#define MBEDTLS_SSL_PROTO_SSL3
1704
1715#ifdef ENABLE_CUSTOM_CONFIG
1716#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1
1717#define MBEDTLS_SSL_PROTO_TLS1
1718#else
1719#undef MBEDTLS_SSL_PROTO_TLS1
1720#endif
1721#else
1722//#define MBEDTLS_SSL_PROTO_TLS1
1723#endif
1724
1735#ifdef ENABLE_CUSTOM_CONFIG
1736#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1_1
1737#define MBEDTLS_SSL_PROTO_TLS1_1
1738#else
1739#undef MBEDTLS_SSL_PROTO_TLS1_1
1740#endif
1741#else
1742//#define MBEDTLS_SSL_PROTO_TLS1_1
1743#endif
1744
1755#define MBEDTLS_SSL_PROTO_TLS1_2
1756
1770#ifdef ENABLE_CUSTOM_CONFIG
1771#ifdef ENABLE_MBEDTLS_SSL_PROTO_DTLS
1772#define MBEDTLS_SSL_PROTO_DTLS
1773#else
1774#undef MBEDTLS_SSL_PROTO_DTLS
1775#endif
1776#else
1777//#define MBEDTLS_SSL_PROTO_DTLS
1778#endif
1779
1787//#define MBEDTLS_SSL_ALPN
1788
1802//#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1803
1820#ifdef ENABLE_CUSTOM_CONFIG
1821#ifdef ENABLE_MBEDTLS_SSL_DTLS_HELLO_VERIFY
1822#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1823#else
1824#undef MBEDTLS_SSL_DTLS_HELLO_VERIFY
1825#endif
1826#else
1827//#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1828#endif
1858#ifdef ENABLE_CUSTOM_CONFIG
1859#ifdef ENABLE_MBEDTLS_SSL_DTLS_SRTP
1860#define MBEDTLS_SSL_DTLS_SRTP
1861#else
1862#undef MBEDTLS_SSL_DTLS_SRTP
1863#endif
1864#else
1865//#define MBEDTLS_SSL_DTLS_SRTP
1866#endif
1881//#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1882
1892//#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1893
1906#ifdef ENABLE_CUSTOM_CONFIG
1907#ifdef ENABLE_MBEDTLS_CLIENT_SSL_SESSION_TICKETS
1908#define MBEDTLS_SSL_SESSION_TICKETS
1909#else
1910#undef MBEDTLS_SSL_SESSION_TICKETS
1911#endif
1912#else
1913#define MBEDTLS_SSL_SESSION_TICKETS
1914#endif
1923//#define MBEDTLS_SSL_EXPORT_KEYS
1924
1934#define MBEDTLS_SSL_SERVER_NAME_INDICATION
1935
1944#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
1945#define MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1946#define MBEDTLS_SUPPORT_HANDSHAKE_FRAGMENT
1947#define MBEDTLS_SUPPORT_DYNAMIC_MEMORY
1948#endif
1949
1957//#define MBEDTLS_SSL_TRUNCATED_HMAC
1958
1981//#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1982
1998//#define MBEDTLS_TEST_HOOKS
1999
2009#define MBEDTLS_THREADING_ALT
2010
2020//#define MBEDTLS_THREADING_PTHREAD
2021
2033#define MBEDTLS_VERSION_FEATURES
2034
2043//#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
2044
2055//#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
2056
2069#define MBEDTLS_X509_CHECK_KEY_USAGE
2070
2082#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
2083
2092#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
2093
2117//#define MBEDTLS_ZLIB_SUPPORT
2118/* \} name SECTION: mbed TLS feature support */
2119
2139//#define MBEDTLS_AESNI_C
2140
2214#define MBEDTLS_AES_C
2215
2242#ifdef ENABLE_CUSTOM_CONFIG
2243#ifdef ENABLE_MBEDTLS_ARC4_C
2244#define MBEDTLS_ARC4_C
2245#else
2246#undef MBEDTLS_ARC4_C
2247#endif
2248#else
2249//#define MBEDTLS_ARC4_C
2250#endif
2251
2264#define MBEDTLS_ASN1_PARSE_C
2265
2278#define MBEDTLS_ASN1_WRITE_C
2279
2290#define MBEDTLS_BASE64_C
2291
2307#define MBEDTLS_BIGNUM_C
2308
2316#ifdef ENABLE_CUSTOM_CONFIG
2317#ifdef ENABLE_MBEDTLS_BLOWFISH_C
2318#define MBEDTLS_BLOWFISH_C
2319#else
2320#undef MBEDTLS_BLOWFISH_C
2321#endif
2322#else
2323//#define MBEDTLS_BLOWFISH_C
2324#endif
2325
2379#ifdef ENABLE_CUSTOM_CONFIG
2380#ifdef ENABLE_MBEDTLS_CAMELLIA_C
2381#define MBEDTLS_CAMELLIA_C
2382#else
2383#undef MBEDTLS_CAMELLIA_C
2384#endif
2385#else
2386//#define MBEDTLS_CAMELLIA_C
2387#endif
2388
2439//#define MBEDTLS_ARIA_C
2440
2453#define MBEDTLS_CCM_C
2454
2465//#define MBEDTLS_CERTS_C
2466
2474#ifdef ENABLE_CUSTOM_CONFIG
2475#ifdef ENABLE_MBEDTLS_CHACHA20_C
2476#define MBEDTLS_CHACHA20_C
2477#else
2478#undef MBEDTLS_CHACHA20_C
2479#endif
2480#else
2481//#define MBEDTLS_CHACHA20_C
2482#endif
2483
2493#ifdef ENABLE_CUSTOM_CONFIG
2494#ifdef ENABLE_MBEDTLS_CHACHAPOLY_C
2495#define MBEDTLS_CHACHAPOLY_C
2496#else
2497#undef MBEDTLS_CHACHAPOLY_C
2498#endif
2499#else
2500//#define MBEDTLS_CHACHAPOLY_C
2501#endif
2502
2513#define MBEDTLS_CIPHER_C
2514
2526#ifdef ENABLE_CUSTOM_CONFIG
2527#ifdef ENABLE_MBEDTLS_CMAC_C
2528#define MBEDTLS_CMAC_C
2529#else
2530#undef MBEDTLS_CMAC_C
2531#endif
2532#else
2533//#define MBEDTLS_CMAC_C
2534#endif
2553#define MBEDTLS_CTR_DRBG_C
2554
2567#if ENABLE_MBEDTLS_DEBUG
2568#define MBEDTLS_DEBUG_C
2569#else
2570#undef MBEDTLS_DEBUG_C
2571#endif
2572
2600#ifdef ENABLE_CUSTOM_CONFIG
2601#ifdef ENABLE_MBEDTLS_DES_C
2602#define MBEDTLS_DES_C
2603#else
2604#undef MBEDTLS_DES_C
2605#endif
2606#else
2607//#define MBEDTLS_DES_C
2608#endif
2609
2629#ifdef ENABLE_CUSTOM_CONFIG
2630#ifdef ENABLE_MBEDTLS_DHM_C
2631#define MBEDTLS_DHM_C
2632#else
2633#undef MBEDTLS_DHM_C
2634#endif
2635#else
2636//#define MBEDTLS_DHM_C
2637#endif
2652#define MBEDTLS_ECDH_C
2653
2667#define MBEDTLS_ECDSA_C
2668
2686//#define MBEDTLS_ECJPAKE_C
2687
2700#define MBEDTLS_ECP_C
2701
2714#define MBEDTLS_ENTROPY_C
2715
2726#define MBEDTLS_ERROR_C
2727
2740#define MBEDTLS_GCM_C
2741//
2763#ifdef ENABLE_CUSTOM_CONFIG
2764#ifdef ENABLE_MBEDTLS_HAVEGE_C
2765#define MBEDTLS_HAVEGE_C
2766#else
2767#undef MBEDTLS_HAVEGE_C
2768#endif
2769#else
2770//#define MBEDTLS_HAVEGE_C
2771#endif
2772
2786#define MBEDTLS_HKDF_C
2787
2800#ifdef ENABLE_CUSTOM_CONFIG
2801#ifdef ENABLE_MBEDTLS_HMAC_DRBG_C
2802#define MBEDTLS_HMAC_DRBG_C
2803#else
2804#undef MBEDTLS_HMAC_DRBG_C
2805#endif
2806#else
2807//#define MBEDTLS_HMAC_DRBG_C
2808#endif
2820//#define MBEDTLS_NIST_KW_C
2821
2832#define MBEDTLS_MD_C
2833
2849//#define MBEDTLS_MD2_C
2850
2866//#define MBEDTLS_MD4_C
2867
2888#define MBEDTLS_MD5_C
2889
2904//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2905
2923#ifdef ENABLE_CUSTOM_CONFIG
2924#ifdef ENABLE_MBEDTLS_NET_C
2925#define MBEDTLS_NET_C
2926#else
2927#undef MBEDTLS_NET_C
2928#endif
2929#else
2930//#define MBEDTLS_NET_C
2931#endif
2953#define MBEDTLS_OID_C
2954
2967//#define MBEDTLS_PADLOCK_C
2968
2985#define MBEDTLS_PEM_PARSE_C
2986
3001#define MBEDTLS_PEM_WRITE_C
3002
3017#define MBEDTLS_PK_C
3018
3032#define MBEDTLS_PK_PARSE_C
3033
3046#define MBEDTLS_PK_WRITE_C
3047
3059#define MBEDTLS_PKCS5_C
3060
3074//#define MBEDTLS_PKCS11_C
3075
3090#define MBEDTLS_PKCS12_C
3091
3110#define MBEDTLS_PLATFORM_C
3111
3120#ifdef ENABLE_CUSTOM_CONFIG
3121#ifdef ENABLE_MBEDTLS_POLY1305_C
3122#define MBEDTLS_POLY1305_C
3123#else
3124#undef MBEDTLS_POLY1305_C
3125#endif
3126#else
3127//#define MBEDTLS_POLY1305_C
3128#endif
3129
3139#ifdef ENABLE_CUSTOM_CONFIG
3140#ifdef ENABLE_MBEDTLS_RIPEMD160_C
3141#define MBEDTLS_RIPEMD160_C
3142#else
3143#undef MBEDTLS_RIPEMD160_C
3144#endif
3145#else
3146//#define MBEDTLS_RIPEMD160_C
3147#endif
3148
3166#define MBEDTLS_RSA_C
3167
3188#define MBEDTLS_SHA1_C
3189
3205#define MBEDTLS_SHA256_C
3206#define MBEDTLS_SHA224_C
3207
3221#define MBEDTLS_SHA384_C
3222#define MBEDTLS_SHA512_C
3223
3234//#define MBEDTLS_SSL_CACHE_C
3235
3244//#define MBEDTLS_SSL_COOKIE_C
3245
3256//#define MBEDTLS_SSL_TICKET_C
3257
3270#define MBEDTLS_SSL_CLI_C
3271
3284#ifdef ENABLE_CUSTOM_CONFIG
3285#ifdef ENABLE_MBEDTLS_SSL_SRV_C
3286#define MBEDTLS_SSL_SRV_C
3287#else
3288#undef MBEDTLS_SSL_SRV_C
3289#endif
3290#else
3291//#define MBEDTLS_SSL_SRV_C
3292#endif
3307#define MBEDTLS_SSL_TLS_C
3308
3329#define MBEDTLS_THREADING_C
3330
3352#ifdef ENABLE_CUSTOM_CONFIG
3353#ifdef ENABLE_MBEDTLS_TIMING_C
3354#define MBEDTLS_TIMING_C
3355#else
3356#undef MBEDTLS_TIMING_C
3357#endif
3358#else
3359//#define MBEDTLS_TIMING_C
3360#endif
3361
3371#define MBEDTLS_VERSION_C
3372
3388#define MBEDTLS_X509_USE_C
3389
3404#define MBEDTLS_X509_CRT_PARSE_C
3405
3419#define MBEDTLS_X509_CRL_PARSE_C
3420
3421
3434#define MBEDTLS_X509_CSR_PARSE_C
3435
3447#define MBEDTLS_X509_CREATE_C
3448
3460#define MBEDTLS_X509_CRT_WRITE_C
3461
3473#define MBEDTLS_X509_CSR_WRITE_C
3474
3483#ifdef ENABLE_CUSTOM_CONFIG
3484#ifdef ENABLE_MBEDTLS_XTEA_C
3485#define MBEDTLS_XTEA_C
3486#else
3487#undef MBEDTLS_XTEA_C
3488#endif
3489#else
3490//#define MBEDTLS_XTEA_C
3491#endif
3492
3493/* \} name SECTION: mbed TLS modules */
3494
3510/* MPI / BIGNUM options */
3511//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */
3512//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3513
3514/* CTR_DRBG options */
3515//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3516//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3517//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3518//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3519//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3520
3521/* HMAC_DRBG options */
3522//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3523//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3524//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3525//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3526
3527/* ECP options */
3528//#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3529//#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3530//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3531
3532/* Entropy options */
3533//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3534//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3535//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3536
3537/* Memory buffer allocator options */
3538//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3539
3540/* Platform options */
3541//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3542//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3543//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3544//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3545//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3546//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3547//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3548/* Note: your snprintf must correctly zero-terminate the buffer! */
3549//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3550//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3551//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3552//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3553//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3554//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3555
3556/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3557/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3558//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3559//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3560//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3561//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3562//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3563//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3564//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3565/* Note: your snprintf must correctly zero-terminate the buffer! */
3566//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3567extern int __tuya_tls_nv_seed_write(unsigned char *buf, size_t buf_len);
3568extern int __tuya_tls_nv_seed_read(unsigned char *buf, size_t buf_len);
3569#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO __tuya_tls_nv_seed_read
3570#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO __tuya_tls_nv_seed_write
3606//#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3607
3608/* SSL Cache options */
3609//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3610//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3611
3612/* SSL options */
3613
3638#ifdef ENABLE_CUSTOM_CONFIG
3639#define MBEDTLS_SSL_MAX_CONTENT_LEN ENABLE_MBEDTLS_SSL_MAX_CONTENT_LEN
3640#else
3641#if OPERATING_SYSTEM <= SYSTEM_SMALL_MEMORY_END
3642#define MBEDTLS_SSL_MAX_CONTENT_LEN 1024
3643#else
3644#define MBEDTLS_SSL_MAX_CONTENT_LEN 1024
3645#endif
3646#endif
3647
3648
3649
3673#define MBEDTLS_SSL_IN_CONTENT_LEN MBEDTLS_SSL_MAX_CONTENT_LEN
3674
3697#define MBEDTLS_SSL_OUT_CONTENT_LEN MBEDTLS_SSL_MAX_CONTENT_LEN
3698
3714//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3715
3716//#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3717#define MBEDTLS_PSK_MAX_LEN 64
3718//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3719
3732//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3733
3734/* X509 options */
3735//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3736//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3737
3750// #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3751
3767#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3768
3787//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3788
3806//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3807
3808/* \} name SECTION: Customisation configuration options */
3809
3810/* Target and application specific configurations
3811 *
3812 * Allow user to override any previous default.
3813 *
3814 */
3815#if defined(MBEDTLS_USER_CONFIG_FILE)
3816#include MBEDTLS_USER_CONFIG_FILE
3817#endif
3818
3819//#include "check_config.h"
3820
3821#endif /* MBEDTLS_CONFIG_H_TY */
制作者 doxygen 1.9.4