mbedtls/configs/config-no-entropy.h

93 lines
2.6 KiB
C
Raw Normal View History

/**
* \file config-no-entropy.h
*
* \brief Minimal configuration of features that do not require an entropy source
*/
/*
* Copyright (C) 2016, ARM Limited, All Rights Reserved
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License"); you may
* not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
* This file is part of mbed TLS (https://tls.mbed.org)
*/
/*
* Minimal configuration of features that do not require an entropy source
* Distinguishing reatures:
* - no entropy module
* - no TLS protocol implementation available due to absence of an entropy
* source
*
* See README.txt for usage instructions.
*/
#ifndef MBEDTLS_CONFIG_H
#define MBEDTLS_CONFIG_H
/* System support */
#define MBEDTLS_HAVE_ASM
#define MBEDTLS_HAVE_TIME
/* mbed TLS feature support */
#define MBEDTLS_CIPHER_MODE_CBC
#define MBEDTLS_CIPHER_PADDING_PKCS7
Revert "config: Remove TLS and NET options" This reverts commit 1c66e48670b64b2ac598576cc08df3a715f3957b. Conflicts: * include/mbedtls/check_config.h: * MBEDTLS_SSL_PROTO_SSL3: there has been an addition (of MBEDTLS_SHA512_NO_SHA384) at the place where it was removed. Re-add it after (alphabetical order). * MBEDTLS_ENABLE_WEAK_CIPHERSUITES: there has been an addition (of MBEDTLS_CTR_DRBG_USE_128_BIT_KEY) at the place where it was removed. Re-add it after (alphabetical order). * MBEDTLS_SSL_ALL_ALERT_MESSAGES: there has been an addition (of MBEDTLS_SHA512_SMALLER) at the place where it was removed. Re-add it after (alphabetical order). * include/mbedtls/config.h: * MBEDTLS_ENABLE_WEAK_CIPHERSUITES: there has been an addition (of MBEDTLS_CTR_DRBG_USE_128_BIT_KEY) at the place where it was removed. Re-add it after (alphabetical order). * MBEDTLS_SSL_ALL_ALERT_MESSAGES: there has been an addition (of MBEDTLS_SHA512_SMALLER) at the place where it was removed. Re-add it after (alphabetical order). * library/version_features.c: re-generate by running scripts/generate_features.pl. * programs/test/query_config.c: re-generate by running scripts/generate_query_config.pl. * scripts/config.pl: this file has been replaced by config.py. Port the reversed changes to config.py: * Revert removing three symbols from the list of symbols to exclude from full. * Revert removing one symbol (MBEDTLS_NET_C) from the list of symbols to exclude from baremetal. * scripts/footprint.sh: * Re-add the line to unset MBEDTLS_NET_C, but with config.py instead of config.pl. * tests/scripts/all.sh: * component_test_no_platform: re-add the line to unset MBEDTLS_NET_C, but with config.py instead of config.pl. * component_build_arm_none_eabi_gcc, component_build_arm_none_eabi_gcc_no_udbl_division, component_build_arm_none_eabi_gcc_no_64bit_multiplication, component_build_armcc: these components now use the baremetal configuration, so they do not need to turn off MBEDTLS_NET_C explicitly.
2020-02-26 17:56:08 +00:00
#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
#define MBEDTLS_ECP_NIST_OPTIM
#define MBEDTLS_ECDSA_DETERMINISTIC
#define MBEDTLS_PK_RSA_ALT_SUPPORT
#define MBEDTLS_PKCS1_V15
#define MBEDTLS_PKCS1_V21
#define MBEDTLS_SELF_TEST
#define MBEDTLS_VERSION_FEATURES
#define MBEDTLS_X509_CHECK_KEY_USAGE
#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
/* mbed TLS modules */
#define MBEDTLS_AES_C
#define MBEDTLS_ASN1_PARSE_C
#define MBEDTLS_ASN1_WRITE_C
#define MBEDTLS_BASE64_C
#define MBEDTLS_BIGNUM_C
#define MBEDTLS_CCM_C
#define MBEDTLS_CIPHER_C
#define MBEDTLS_ECDSA_C
#define MBEDTLS_ECP_C
#define MBEDTLS_ERROR_C
#define MBEDTLS_GCM_C
#define MBEDTLS_HMAC_DRBG_C
#define MBEDTLS_MD_C
#define MBEDTLS_OID_C
#define MBEDTLS_PEM_PARSE_C
#define MBEDTLS_PK_C
#define MBEDTLS_PK_PARSE_C
#define MBEDTLS_PK_WRITE_C
#define MBEDTLS_PLATFORM_C
#define MBEDTLS_RSA_C
#define MBEDTLS_SHA256_C
#define MBEDTLS_SHA512_C
#define MBEDTLS_VERSION_C
#define MBEDTLS_X509_USE_C
#define MBEDTLS_X509_CRT_PARSE_C
#define MBEDTLS_X509_CRL_PARSE_C
//#define MBEDTLS_CMAC_C
/* Miscellaneous options */
#define MBEDTLS_AES_ROM_TABLES
#include "mbedtls/check_config.h"
#endif /* MBEDTLS_CONFIG_H */