mbedtls: port previous config

This commit is contained in:
Philippe Teuwen 2021-05-14 11:01:57 +02:00
commit 463d19773b

View file

@ -56,7 +56,7 @@
*
* Comment to disable the use of assembly code.
*/
#define MBEDTLS_HAVE_ASM
//#define MBEDTLS_HAVE_ASM
/**
* \def MBEDTLS_NO_UDBL_DIVISION
@ -130,7 +130,7 @@
*
* Comment if your system does not support time functions
*/
#define MBEDTLS_HAVE_TIME
//#define MBEDTLS_HAVE_TIME
/**
* \def MBEDTLS_HAVE_TIME_DATE
@ -151,7 +151,7 @@
* mbedtls_platform_gmtime_r() at compile-time by using the macro
* MBEDTLS_PLATFORM_GMTIME_R_ALT.
*/
#define MBEDTLS_HAVE_TIME_DATE
//#define MBEDTLS_HAVE_TIME_DATE
/**
* \def MBEDTLS_PLATFORM_MEMORY
@ -583,7 +583,7 @@
* This option is independent of \c MBEDTLS_AES_FEWER_TABLES.
*
*/
//#define MBEDTLS_AES_ROM_TABLES
#define MBEDTLS_AES_ROM_TABLES
/**
* \def MBEDTLS_AES_FEWER_TABLES
@ -605,7 +605,7 @@
* This option is independent of \c MBEDTLS_AES_ROM_TABLES.
*
*/
//#define MBEDTLS_AES_FEWER_TABLES
#define MBEDTLS_AES_FEWER_TABLES
/**
* \def MBEDTLS_CAMELLIA_SMALL_MEMORY
@ -880,7 +880,7 @@
*
* Comment this macro to disable deterministic ECDSA.
*/
#define MBEDTLS_ECDSA_DETERMINISTIC
//#define MBEDTLS_ECDSA_DETERMINISTIC
/**
* \def MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
@ -933,7 +933,7 @@
* See dhm.h for more details.
*
*/
#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
//#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
/**
* \def MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
@ -1039,7 +1039,7 @@
* See dhm.h for more details.
*
*/
#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
//#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
/**
* \def MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
@ -1858,7 +1858,7 @@
*
* Comment this to disable anti-replay in DTLS.
*/
#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
//#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
/**
* \def MBEDTLS_SSL_DTLS_HELLO_VERIFY
@ -1934,7 +1934,7 @@
*
* Requires: MBEDTLS_SSL_PROTO_DTLS
*/
#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
//#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
/**
* \def MBEDTLS_SSL_SESSION_TICKETS
@ -2273,7 +2273,7 @@
*
* This modules adds support for the AES-NI instructions on x86-64
*/
#define MBEDTLS_AESNI_C
//#define MBEDTLS_AESNI_C
/**
* \def MBEDTLS_AES_C
@ -2563,7 +2563,7 @@
* This module enables the AES-CCM ciphersuites, if other requisites are
* enabled as well.
*/
#define MBEDTLS_CCM_C
//#define MBEDTLS_CCM_C
/**
* \def MBEDTLS_CERTS_C
@ -2584,7 +2584,7 @@
*
* Module: library/chacha20.c
*/
#define MBEDTLS_CHACHA20_C
//#define MBEDTLS_CHACHA20_C
/**
* \def MBEDTLS_CHACHAPOLY_C
@ -2595,7 +2595,7 @@
*
* This module requires: MBEDTLS_CHACHA20_C, MBEDTLS_POLY1305_C
*/
#define MBEDTLS_CHACHAPOLY_C
//#define MBEDTLS_CHACHAPOLY_C
/**
* \def MBEDTLS_CIPHER_C
@ -2620,7 +2620,7 @@
* Requires: MBEDTLS_AES_C or MBEDTLS_DES_C
*
*/
//#define MBEDTLS_CMAC_C
#define MBEDTLS_CMAC_C
/**
* \def MBEDTLS_CTR_DRBG_C
@ -2704,7 +2704,7 @@
* See dhm.h for more details.
*
*/
#define MBEDTLS_DHM_C
//#define MBEDTLS_DHM_C
/**
* \def MBEDTLS_ECDH_C
@ -2810,7 +2810,7 @@
* This module enables the AES-GCM and CAMELLIA-GCM ciphersuites, if other
* requisites are enabled as well.
*/
#define MBEDTLS_GCM_C
//#define MBEDTLS_GCM_C
/**
* \def MBEDTLS_HAVEGE_C
@ -2848,7 +2848,7 @@
* This module adds support for the Hashed Message Authentication Code
* (HMAC)-based key derivation function (HKDF).
*/
#define MBEDTLS_HKDF_C
//#define MBEDTLS_HKDF_C
/**
* \def MBEDTLS_HMAC_DRBG_C
@ -2862,7 +2862,7 @@
*
* Uncomment to enable the HMAC_DRBG random number geerator.
*/
#define MBEDTLS_HMAC_DRBG_C
//#define MBEDTLS_HMAC_DRBG_C
/**
* \def MBEDTLS_NIST_KW_C
@ -2978,7 +2978,7 @@
*
* This module provides networking routines.
*/
#define MBEDTLS_NET_C
//#define MBEDTLS_NET_C
/**
* \def MBEDTLS_OID_C
@ -3015,7 +3015,7 @@
*
* This modules adds support for the VIA PadLock on x86.
*/
#define MBEDTLS_PADLOCK_C
//#define MBEDTLS_PADLOCK_C
/**
* \def MBEDTLS_PEM_PARSE_C
@ -3171,7 +3171,7 @@
* Module: library/poly1305.c
* Caller: library/chachapoly.c
*/
#define MBEDTLS_POLY1305_C
//#define MBEDTLS_POLY1305_C
/**
* \def MBEDTLS_PSA_CRYPTO_C
@ -3241,7 +3241,7 @@
* Caller: library/md.c
*
*/
#define MBEDTLS_RIPEMD160_C
//#define MBEDTLS_RIPEMD160_C
/**
* \def MBEDTLS_RSA_C
@ -3362,7 +3362,7 @@
*
* This module is required for SSL/TLS client support.
*/
#define MBEDTLS_SSL_CLI_C
//#define MBEDTLS_SSL_CLI_C
/**
* \def MBEDTLS_SSL_SRV_C
@ -3376,7 +3376,7 @@
*
* This module is required for SSL/TLS server support.
*/
#define MBEDTLS_SSL_SRV_C
//#define MBEDTLS_SSL_SRV_C
/**
* \def MBEDTLS_SSL_TLS_C
@ -3392,7 +3392,7 @@
*
* This module is required for SSL/TLS.
*/
#define MBEDTLS_SSL_TLS_C
//#define MBEDTLS_SSL_TLS_C
/**
* \def MBEDTLS_THREADING_C
@ -3558,7 +3558,7 @@
* Module: library/xtea.c
* Caller:
*/
#define MBEDTLS_XTEA_C
//#define MBEDTLS_XTEA_C
/* \} name SECTION: mbed TLS modules */
@ -3877,7 +3877,7 @@
* on it, and considering stronger message digests instead.
*
*/
//#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
/**
* Allow SHA-1 in the default TLS configuration for TLS 1.2 handshake