TuyaOS
tuya_tls_security_L1_default_config.h
1
10/*
11 * Copyright The Mbed TLS Contributors
12 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
13 *
14 * This file is provided under the Apache License 2.0, or the
15 * GNU General Public License v2.0 or later.
16 *
17 * **********
18 * Apache License 2.0:
19 *
20 * Licensed under the Apache License, Version 2.0 (the "License"); you may
21 * not use this file except in compliance with the License.
22 * You may obtain a copy of the License at
23 *
24 * http://www.apache.org/licenses/LICENSE-2.0
25 *
26 * Unless required by applicable law or agreed to in writing, software
27 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
28 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
29 * See the License for the specific language governing permissions and
30 * limitations under the License.
31 *
32 * **********
33 *
34 * **********
35 * GNU General Public License v2.0 or later:
36 *
37 * This program is free software; you can redistribute it and/or modify
38 * it under the terms of the GNU General Public License as published by
39 * the Free Software Foundation; either version 2 of the License, or
40 * (at your option) any later version.
41 *
42 * This program is distributed in the hope that it will be useful,
43 * but WITHOUT ANY WARRANTY; without even the implied warranty of
44 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
45 * GNU General Public License for more details.
46 *
47 * You should have received a copy of the GNU General Public License along
48 * with this program; if not, write to the Free Software Foundation, Inc.,
49 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
50 *
51 * **********
52 */
53
54#ifndef MBEDTLS_CONFIG_H_TY
55#define MBEDTLS_CONFIG_H_TY
56
57#define MBEDTLS_SUPPORT_TUYA_PSK
58
59#include "tuya_iot_config.h"
60#include "tuya_cloud_types.h"
61
62#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
63#define _CRT_SECURE_NO_DEPRECATE 1
64#endif
65
91//#define MBEDTLS_HAVE_ASM
92
119//#define MBEDTLS_NO_UDBL_DIVISION
120
141//#define MBEDTLS_NO_64BIT_MULTIPLICATION
142
150//#define MBEDTLS_HAVE_SSE2
151
165#ifdef ENABLE_CUSTOM_CONFIG
166#ifdef ENABLE_MBEDTLS_HAVE_TIME
167#define MBEDTLS_HAVE_TIME
168#else
169#undef MBEDTLS_HAVE_TIME
170#endif
171#else
172//MBEDTLS_HAVE_TIME
173#endif
193#ifdef ENABLE_CUSTOM_CONFIG
194#ifdef ENABLE_MBEDTLS_HAVE_TIME_DATE
195#define MBEDTLS_HAVE_TIME_DATE
196#else
197#undef MBEDTLS_HAVE_TIME_DATE
198#endif
199#else
200//MBEDTLS_HAVE_TIME
201#endif
224#define MBEDTLS_PLATFORM_MEMORY
242//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
243
267//#define MBEDTLS_PLATFORM_EXIT_ALT
268//#define MBEDTLS_PLATFORM_TIME_ALT
269//#define MBEDTLS_PLATFORM_FPRINTF_ALT
270//#define MBEDTLS_PLATFORM_PRINTF_ALT
271//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
272//#define MBEDTLS_PLATFORM_NV_SEED_ALT
273//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
274
288#define MBEDTLS_DEPRECATED_WARNING
289
300//#define MBEDTLS_DEPRECATED_REMOVED
301
352//#define MBEDTLS_CHECK_PARAMS
353
366//#define MBEDTLS_CHECK_PARAMS_ASSERT
367
368/* \} name SECTION: System support */
369
389//#define MBEDTLS_TIMING_ALT
390
416//#define MBEDTLS_AES_ALT
417//#define MBEDTLS_ARC4_ALT
418//#define MBEDTLS_ARIA_ALT
419//#define MBEDTLS_BLOWFISH_ALT
420//#define MBEDTLS_CAMELLIA_ALT
421//#define MBEDTLS_CCM_ALT
422//#define MBEDTLS_CHACHA20_ALT
423//#define MBEDTLS_CHACHAPOLY_ALT
424//#define MBEDTLS_CMAC_ALT
425//#define MBEDTLS_DES_ALT
426//#define MBEDTLS_DHM_ALT
427//#define MBEDTLS_ECJPAKE_ALT
428//#define MBEDTLS_GCM_ALT
429//#define MBEDTLS_NIST_KW_ALT
430//#define MBEDTLS_MD2_ALT
431//#define MBEDTLS_MD4_ALT
432//#define MBEDTLS_MD5_ALT
433//#define MBEDTLS_POLY1305_ALT
434//#define MBEDTLS_RIPEMD160_ALT
435//#define MBEDTLS_RSA_ALT
436//#define MBEDTLS_SHA1_ALT
437//#define MBEDTLS_SHA256_ALT
438//#define MBEDTLS_SHA512_ALT
439//#define MBEDTLS_XTEA_ALT
440
441/*
442 * When replacing the elliptic curve module, pleace consider, that it is
443 * implemented with two .c files:
444 * - ecp.c
445 * - ecp_curves.c
446 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
447 * macros as described above. The only difference is that you have to make sure
448 * that you provide functionality for both .c files.
449 */
450//#define MBEDTLS_ECP_ALT
451
497//#define MBEDTLS_MD2_PROCESS_ALT
498//#define MBEDTLS_MD4_PROCESS_ALT
499//#define MBEDTLS_MD5_PROCESS_ALT
500//#define MBEDTLS_RIPEMD160_PROCESS_ALT
501//#define MBEDTLS_SHA1_PROCESS_ALT
502//#define MBEDTLS_SHA256_PROCESS_ALT
503//#define MBEDTLS_SHA512_PROCESS_ALT
504//#define MBEDTLS_DES_SETKEY_ALT
505//#define MBEDTLS_DES_CRYPT_ECB_ALT
506//#define MBEDTLS_DES3_CRYPT_ECB_ALT
507//#define MBEDTLS_AES_SETKEY_ENC_ALT
508//#define MBEDTLS_AES_SETKEY_DEC_ALT
509//#define MBEDTLS_AES_ENCRYPT_ALT
510//#define MBEDTLS_AES_DECRYPT_ALT
511//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
512//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
513//#define MBEDTLS_ECDSA_VERIFY_ALT
514//#define MBEDTLS_ECDSA_SIGN_ALT
515//#define MBEDTLS_ECDSA_GENKEY_ALT
516
557/* Required for all the functions in this section */
558//#define MBEDTLS_ECP_INTERNAL_ALT
559/* Support for Weierstrass curves with Jacobi representation */
560//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
561//#define MBEDTLS_ECP_ADD_MIXED_ALT
562//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
563//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
564//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
565/* Support for curves with Montgomery arithmetic */
566//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
567//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
568//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
569
585//#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
586
604//#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
605
621//#define MBEDTLS_TEST_NULL_ENTROPY
622
634//#define MBEDTLS_ENTROPY_HARDWARE_ALT
635
654//#define MBEDTLS_AES_ROM_TABLES
655
676//#define MBEDTLS_AES_FEWER_TABLES
677
685//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
686
692#define MBEDTLS_CIPHER_MODE_CBC
693
699#define MBEDTLS_CIPHER_MODE_CFB
700
706#define MBEDTLS_CIPHER_MODE_CTR
707
713#define MBEDTLS_CIPHER_MODE_OFB
714
720#define MBEDTLS_CIPHER_MODE_XTS
721
753//#define MBEDTLS_CIPHER_NULL_CIPHER
754
766#define MBEDTLS_CIPHER_PADDING_PKCS7
767#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
768#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
769#define MBEDTLS_CIPHER_PADDING_ZEROS
770
776//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
777
794//#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
795
807#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
808
827//#define MBEDTLS_REMOVE_3DES_CIPHERSUITES
828
837#ifdef ENABLE_CUSTOM_CONFIG
838#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192R1_ENABLED
839#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
840#else
841#undef MBEDTLS_ECP_DP_SECP192R1_ENABLED
842#endif
843
844#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224R1_ENABLED
845#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
846#else
847#undef MBEDTLS_ECP_DP_SECP224R1_ENABLED
848#endif
849
850#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256R1_ENABLED
851#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
852#else
853#undef MBEDTLS_ECP_DP_SECP256R1_ENABLED
854#endif
855
856#ifdef ENABLE_MBEDTLS_ECP_DP_SECP384R1_ENABLED
857#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
858#else
859#undef MBEDTLS_ECP_DP_SECP384R1_ENABLED
860#endif
861
862#ifdef ENABLE_MBEDTLS_ECP_DP_SECP521R1_ENABLED
863#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
864#else
865#undef MBEDTLS_ECP_DP_SECP521R1_ENABLED
866#endif
867
868#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192K1_ENABLED
869#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
870#else
871#undef MBEDTLS_ECP_DP_SECP192K1_ENABLED
872#endif
873
874#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224K1_ENABLED
875#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
876#else
877#undef MBEDTLS_ECP_DP_SECP224K1_ENABLED
878#endif
879
880#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256K1_ENABLED
881#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
882#else
883#undef MBEDTLS_ECP_DP_SECP256K1_ENABLED
884#endif
885
886#ifdef ENABLE_MBEDTLS_ECP_DP_BP256R1_ENABLED
887#define MBEDTLS_ECP_DP_BP256R1_ENABLED
888#else
889#undef MBEDTLS_ECP_DP_BP256R1_ENABLED
890#endif
891
892#ifdef ENABLE_MBEDTLS_ECP_DP_BP384R1_ENABLED
893#define MBEDTLS_ECP_DP_BP384R1_ENABLED
894#else
895#undef MBEDTLS_ECP_DP_BP384R1_ENABLED
896#endif
897
898#ifdef ENABLE_MBEDTLS_ECP_DP_BP512R1_ENABLED
899#define MBEDTLS_ECP_DP_BP512R1_ENABLED
900#else
901#undef MBEDTLS_ECP_DP_BP512R1_ENABLED
902#endif
903
904#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE25519_ENABLED
905#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
906#else
907#undef MBEDTLS_ECP_DP_CURVE25519_ENABLED
908#endif
909
910#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE448_ENABLED
911#define MBEDTLS_ECP_DP_CURVE448_ENABLED
912#else
913#undef MBEDTLS_ECP_DP_CURVE448_ENABLED
914#endif
915#else
916#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
917#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
918#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
919#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
920#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
921#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
922#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
923#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
924#define MBEDTLS_ECP_DP_BP256R1_ENABLED
925#define MBEDTLS_ECP_DP_BP384R1_ENABLED
926#define MBEDTLS_ECP_DP_BP512R1_ENABLED
927#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
928#define MBEDTLS_ECP_DP_CURVE448_ENABLED
929#endif
939#define MBEDTLS_ECP_NIST_OPTIM
940
963#ifdef ENABLE_CUSTOM_CONFIG
964#ifdef ENABLE_MBEDTLS_ECP_RESTARTABLE
965#define MBEDTLS_ECP_RESTARTABLE
966#else
967#undef MBEDTLS_ECP_RESTARTABLE
968#endif
969#endif
970
983//#define MBEDTLS_ECDSA_DETERMINISTIC
984
1005#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
1006
1036#ifdef ENABLE_CUSTOM_CONFIG
1037#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_PSK
1038#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1039#else
1040#undef MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1041#endif
1042#else
1043//#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1044#endif
1045
1064#ifdef ENABLE_CUSTOM_CONFIG
1065#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_PSK
1066#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1067#else
1068#undef MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1069#endif
1070#else
1071#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1072#endif
1073
1097#ifdef ENABLE_CUSTOM_CONFIG
1098#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA_PSK
1099#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1100#else
1101#undef MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1102#endif
1103#else
1104//#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1105#endif
1106
1133#ifdef ENABLE_CUSTOM_CONFIG
1134#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA
1135#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1136#else
1137#undef MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1138#endif
1139#else
1140//#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1141#endif
1142
1174#ifdef ENABLE_CUSTOM_CONFIG
1175#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_RSA
1176#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1177#else
1178#undef MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1179#endif
1180#else
1181//#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1182#endif
1183
1207#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1208
1231#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1232
1255#ifdef ENABLE_CUSTOM_CONFIG
1256#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA
1257#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1258#else
1259#undef MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1260#endif
1261#else
1262//#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1263#endif
1264
1287#ifdef ENABLE_CUSTOM_CONFIG
1288#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_RSA
1289#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1290#else
1291#undef MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1292#endif
1293#else
1294//#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1295#endif
1296
1314//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1315
1328#define MBEDTLS_PK_PARSE_EC_EXTENDED
1329
1343#define MBEDTLS_ERROR_STRERROR_DUMMY
1344
1352#define MBEDTLS_GENPRIME
1353
1359#ifdef ENABLE_CUSTOM_CONFIG
1360#ifdef ENABLE_MBEDTLS_FS_IO
1361#define MBEDTLS_FS_IO
1362#else
1363#undef MBEDTLS_FS_IO
1364#endif
1365#else
1366//#define MBEDTLS_FS_IO
1367#endif
1379//#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1380
1390#define MBEDTLS_NO_PLATFORM_ENTROPY
1405//#define MBEDTLS_ENTROPY_FORCE_SHA256
1406
1433#define MBEDTLS_ENTROPY_NV_SEED
1434
1446//#define MBEDTLS_MEMORY_DEBUG
1447
1458//#define MBEDTLS_MEMORY_BACKTRACE
1459
1467#define MBEDTLS_PK_RSA_ALT_SUPPORT
1468
1478#define MBEDTLS_PKCS1_V15
1479
1489#define MBEDTLS_PKCS1_V21
1490
1500//#define MBEDTLS_RSA_NO_CRT
1501
1507// #define MBEDTLS_SELF_TEST
1508
1523//#define MBEDTLS_SHA256_SMALLER
1524
1537#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1538
1548//#define MBEDTLS_SSL_ASYNC_PRIVATE
1549
1564//#define MBEDTLS_SSL_DEBUG_ALL
1565
1582#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1583
1600#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1601
1617#define MBEDTLS_SSL_FALLBACK_SCSV
1618
1627//#define MBEDTLS_SSL_HW_RECORD_ACCEL
1628
1639//#define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1640
1661//#define MBEDTLS_SSL_RENEGOTIATION
1662
1671//#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1672
1681//#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1682
1690#ifdef ENABLE_CUSTOM_CONFIG
1691#ifdef ENABLE_MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1692#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1693#else
1694#undef MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1695#endif
1696#else
1697#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1698#endif
1709//#define MBEDTLS_SSL_PROTO_SSL3
1710
1721#ifdef ENABLE_CUSTOM_CONFIG
1722#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1
1723#define MBEDTLS_SSL_PROTO_TLS1
1724#else
1725#undef MBEDTLS_SSL_PROTO_TLS1
1726#endif
1727#else
1728//#define MBEDTLS_SSL_PROTO_TLS1
1729#endif
1730
1741#ifdef ENABLE_CUSTOM_CONFIG
1742#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1_1
1743#define MBEDTLS_SSL_PROTO_TLS1_1
1744#else
1745#undef MBEDTLS_SSL_PROTO_TLS1_1
1746#endif
1747#else
1748//#define MBEDTLS_SSL_PROTO_TLS1_1
1749#endif
1750
1761#define MBEDTLS_SSL_PROTO_TLS1_2
1762
1776#ifdef ENABLE_CUSTOM_CONFIG
1777#ifdef ENABLE_MBEDTLS_SSL_PROTO_DTLS
1778#define MBEDTLS_SSL_PROTO_DTLS
1779#else
1780#undef MBEDTLS_SSL_PROTO_DTLS
1781#endif
1782#else
1783//#define MBEDTLS_SSL_PROTO_DTLS
1784#endif
1785
1793//#define MBEDTLS_SSL_ALPN
1794
1808//#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1809
1826#ifdef ENABLE_CUSTOM_CONFIG
1827#ifdef ENABLE_MBEDTLS_SSL_DTLS_HELLO_VERIFY
1828#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1829#else
1830#undef MBEDTLS_SSL_DTLS_HELLO_VERIFY
1831#endif
1832#else
1833//#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1834#endif
1864#ifdef ENABLE_CUSTOM_CONFIG
1865#ifdef ENABLE_MBEDTLS_SSL_DTLS_SRTP
1866#define MBEDTLS_SSL_DTLS_SRTP
1867#else
1868#undef MBEDTLS_SSL_DTLS_SRTP
1869#endif
1870#else
1871//#define MBEDTLS_SSL_DTLS_SRTP
1872#endif
1873
1888//#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1889
1899//#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1900
1913#ifdef ENABLE_CUSTOM_CONFIG
1914#ifdef ENABLE_MBEDTLS_CLIENT_SSL_SESSION_TICKETS
1915#define MBEDTLS_SSL_SESSION_TICKETS
1916#else
1917#undef MBEDTLS_SSL_SESSION_TICKETS
1918#endif
1919#else
1920#define MBEDTLS_SSL_SESSION_TICKETS
1921#endif
1930//#define MBEDTLS_SSL_EXPORT_KEYS
1931
1941#define MBEDTLS_SSL_SERVER_NAME_INDICATION
1942
1951#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
1952#define MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
1953#define MBEDTLS_SUPPORT_HANDSHAKE_FRAGMENT
1954#endif
1955
1963//#define MBEDTLS_SSL_TRUNCATED_HMAC
1964
1987//#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1988
2004//#define MBEDTLS_TEST_HOOKS
2005
2015#define MBEDTLS_THREADING_ALT
2016
2026//#define MBEDTLS_THREADING_PTHREAD
2027
2039#define MBEDTLS_VERSION_FEATURES
2040
2049//#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
2050
2061//#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
2062
2075#define MBEDTLS_X509_CHECK_KEY_USAGE
2076
2088#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
2089
2098#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
2099
2123//#define MBEDTLS_ZLIB_SUPPORT
2124/* \} name SECTION: mbed TLS feature support */
2125
2145//#define MBEDTLS_AESNI_C
2146
2220#define MBEDTLS_AES_C
2221
2248#ifdef ENABLE_CUSTOM_CONFIG
2249#ifdef ENABLE_MBEDTLS_ARC4_C
2250#define MBEDTLS_ARC4_C
2251#else
2252#undef MBEDTLS_ARC4_C
2253#endif
2254#else
2255//#define MBEDTLS_ARC4_C
2256#endif
2257
2270#define MBEDTLS_ASN1_PARSE_C
2271
2284#define MBEDTLS_ASN1_WRITE_C
2285
2296#define MBEDTLS_BASE64_C
2297
2313#define MBEDTLS_BIGNUM_C
2314
2322#ifdef ENABLE_CUSTOM_CONFIG
2323#ifdef ENABLE_MBEDTLS_BLOWFISH_C
2324#define MBEDTLS_BLOWFISH_C
2325#else
2326#undef MBEDTLS_BLOWFISH_C
2327#endif
2328#else
2329//#define MBEDTLS_BLOWFISH_C
2330#endif
2331
2385#ifdef ENABLE_CUSTOM_CONFIG
2386#ifdef ENABLE_MBEDTLS_CAMELLIA_C
2387#define MBEDTLS_CAMELLIA_C
2388#else
2389#undef MBEDTLS_CAMELLIA_C
2390#endif
2391#else
2392//#define MBEDTLS_CAMELLIA_C
2393#endif
2394
2445//#define MBEDTLS_ARIA_C
2446
2459#define MBEDTLS_CCM_C
2460
2471//#define MBEDTLS_CERTS_C
2472
2480#ifdef ENABLE_CUSTOM_CONFIG
2481#ifdef ENABLE_MBEDTLS_CHACHA20_C
2482#define MBEDTLS_CHACHA20_C
2483#else
2484#undef MBEDTLS_CHACHA20_C
2485#endif
2486#else
2487//#define MBEDTLS_CHACHA20_C
2488#endif
2489
2499#ifdef ENABLE_CUSTOM_CONFIG
2500#ifdef ENABLE_MBEDTLS_CHACHAPOLY_C
2501#define MBEDTLS_CHACHAPOLY_C
2502#else
2503#undef MBEDTLS_CHACHAPOLY_C
2504#endif
2505#else
2506//#define MBEDTLS_CHACHAPOLY_C
2507#endif
2508
2519#define MBEDTLS_CIPHER_C
2520
2532#ifdef ENABLE_CUSTOM_CONFIG
2533#ifdef ENABLE_MBEDTLS_CMAC_C
2534#define MBEDTLS_CMAC_C
2535#else
2536#undef MBEDTLS_CMAC_C
2537#endif
2538#else
2539//#define MBEDTLS_CMAC_C
2540#endif
2559#define MBEDTLS_CTR_DRBG_C
2560
2573#ifdef ENABLE_MBEDTLS_DEBUG
2574#define MBEDTLS_DEBUG_C
2575#else
2576#undef MBEDTLS_DEBUG_C
2577#endif
2578
2606#ifdef ENABLE_CUSTOM_CONFIG
2607#ifdef ENABLE_MBEDTLS_DES_C
2608#define MBEDTLS_DES_C
2609#else
2610#undef MBEDTLS_DES_C
2611#endif
2612#else
2613//#define MBEDTLS_DES_C
2614#endif
2615
2635#ifdef ENABLE_CUSTOM_CONFIG
2636#ifdef ENABLE_MBEDTLS_DHM_C
2637#define MBEDTLS_DHM_C
2638#else
2639#undef MBEDTLS_DHM_C
2640#endif
2641#else
2642//#define MBEDTLS_DHM_C
2643#endif
2658#define MBEDTLS_ECDH_C
2659
2673#define MBEDTLS_ECDSA_C
2674
2692//#define MBEDTLS_ECJPAKE_C
2693
2706#define MBEDTLS_ECP_C
2707
2720#define MBEDTLS_ENTROPY_C
2721
2732#define MBEDTLS_ERROR_C
2733
2746#define MBEDTLS_GCM_C
2747//
2769#ifdef ENABLE_CUSTOM_CONFIG
2770#ifdef ENABLE_MBEDTLS_HAVEGE_C
2771#define MBEDTLS_HAVEGE_C
2772#else
2773#undef MBEDTLS_HAVEGE_C
2774#endif
2775#else
2776//#define MBEDTLS_HAVEGE_C
2777#endif
2778
2792#define MBEDTLS_HKDF_C
2793
2806#ifdef ENABLE_CUSTOM_CONFIG
2807#ifdef ENABLE_MBEDTLS_HMAC_DRBG_C
2808#define MBEDTLS_HMAC_DRBG_C
2809#else
2810#undef MBEDTLS_HMAC_DRBG_C
2811#endif
2812#else
2813//#define MBEDTLS_HMAC_DRBG_C
2814#endif
2826//#define MBEDTLS_NIST_KW_C
2827
2838#define MBEDTLS_MD_C
2839
2855//#define MBEDTLS_MD2_C
2856
2872//#define MBEDTLS_MD4_C
2873
2894#define MBEDTLS_MD5_C
2895
2910//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2911
2929#ifdef ENABLE_CUSTOM_CONFIG
2930#ifdef ENABLE_MBEDTLS_NET_C
2931#define MBEDTLS_NET_C
2932#else
2933#undef MBEDTLS_NET_C
2934#endif
2935#else
2936//#define MBEDTLS_NET_C
2937#endif
2959#define MBEDTLS_OID_C
2960
2973//#define MBEDTLS_PADLOCK_C
2974
2991#define MBEDTLS_PEM_PARSE_C
2992
3007#define MBEDTLS_PEM_WRITE_C
3008
3023#define MBEDTLS_PK_C
3024
3038#define MBEDTLS_PK_PARSE_C
3039
3052#define MBEDTLS_PK_WRITE_C
3053
3065#define MBEDTLS_PKCS5_C
3066
3080//#define MBEDTLS_PKCS11_C
3081
3096#define MBEDTLS_PKCS12_C
3097
3116#define MBEDTLS_PLATFORM_C
3117
3126#ifdef ENABLE_CUSTOM_CONFIG
3127#ifdef ENABLE_MBEDTLS_POLY1305_C
3128#define MBEDTLS_POLY1305_C
3129#else
3130#undef MBEDTLS_POLY1305_C
3131#endif
3132#else
3133//#define MBEDTLS_POLY1305_C
3134#endif
3135
3145#ifdef ENABLE_CUSTOM_CONFIG
3146#ifdef ENABLE_MBEDTLS_RIPEMD160_C
3147#define MBEDTLS_RIPEMD160_C
3148#else
3149#undef MBEDTLS_RIPEMD160_C
3150#endif
3151#else
3152//#define MBEDTLS_RIPEMD160_C
3153#endif
3154
3172#define MBEDTLS_RSA_C
3173
3194#define MBEDTLS_SHA1_C
3195
3211#define MBEDTLS_SHA256_C
3212#define MBEDTLS_SHA224_C
3213
3227#define MBEDTLS_SHA384_C
3228#define MBEDTLS_SHA512_C
3229
3240//#define MBEDTLS_SSL_CACHE_C
3241
3250//#define MBEDTLS_SSL_COOKIE_C
3251
3262//#define MBEDTLS_SSL_TICKET_C
3263
3276#define MBEDTLS_SSL_CLI_C
3277
3290#ifdef ENABLE_CUSTOM_CONFIG
3291#ifdef ENABLE_MBEDTLS_SSL_SRV_C
3292#define MBEDTLS_SSL_SRV_C
3293#else
3294#undef MBEDTLS_SSL_SRV_C
3295#endif
3296#else
3297//#define MBEDTLS_SSL_SRV_C
3298#endif
3313#define MBEDTLS_SSL_TLS_C
3314
3335#define MBEDTLS_THREADING_C
3336
3358#ifdef ENABLE_CUSTOM_CONFIG
3359#ifdef ENABLE_MBEDTLS_TIMING_C
3360#define MBEDTLS_TIMING_C
3361#else
3362#undef MBEDTLS_TIMING_C
3363#endif
3364#else
3365//#define MBEDTLS_TIMING_C
3366#endif
3367
3377#define MBEDTLS_VERSION_C
3378
3394#define MBEDTLS_X509_USE_C
3395
3410#define MBEDTLS_X509_CRT_PARSE_C
3411
3425#define MBEDTLS_X509_CRL_PARSE_C
3426
3427
3440#define MBEDTLS_X509_CSR_PARSE_C
3441
3453#define MBEDTLS_X509_CREATE_C
3454
3466#define MBEDTLS_X509_CRT_WRITE_C
3467
3479#define MBEDTLS_X509_CSR_WRITE_C
3480
3489#ifdef ENABLE_CUSTOM_CONFIG
3490#ifdef ENABLE_MBEDTLS_XTEA_C
3491#define MBEDTLS_XTEA_C
3492#else
3493#undef MBEDTLS_XTEA_C
3494#endif
3495#else
3496//#define MBEDTLS_XTEA_C
3497#endif
3498
3499/* \} name SECTION: mbed TLS modules */
3500
3516/* MPI / BIGNUM options */
3517//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */
3518//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3519
3520/* CTR_DRBG options */
3521//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3522//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3523//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3524//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3525//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3526
3527/* HMAC_DRBG options */
3528//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3529//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3530//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3531//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3532
3533/* ECP options */
3534//#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3535//#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3536//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3537
3538/* Entropy options */
3539//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3540//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3541//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3542
3543/* Memory buffer allocator options */
3544//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3545
3546/* Platform options */
3547//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3548//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3549//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3550//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3551//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3552//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3553//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3554/* Note: your snprintf must correctly zero-terminate the buffer! */
3555//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3556//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3557//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3558//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3559//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3560//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3561
3562/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3563/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3564//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3565//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3566//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3567//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3568//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3569//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3570//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3571/* Note: your snprintf must correctly zero-terminate the buffer! */
3572//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3573extern int __tuya_tls_nv_seed_write(unsigned char *buf, size_t buf_len);
3574extern int __tuya_tls_nv_seed_read(unsigned char *buf, size_t buf_len);
3575#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO __tuya_tls_nv_seed_read
3576#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO __tuya_tls_nv_seed_write
3612//#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3613
3614/* SSL Cache options */
3615//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3616//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3617
3618/* SSL options */
3619
3644#ifdef ENABLE_CUSTOM_CONFIG
3645#define MBEDTLS_SSL_MAX_CONTENT_LEN ENABLE_MBEDTLS_SSL_MAX_CONTENT_LEN
3646#else
3647#if OPERATING_SYSTEM <= SYSTEM_SMALL_MEMORY_END
3648#define MBEDTLS_SSL_MAX_CONTENT_LEN 1024
3649#else
3650#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384
3651#endif
3652#endif
3653
3654
3655
3679#define MBEDTLS_SSL_IN_CONTENT_LEN MBEDTLS_SSL_MAX_CONTENT_LEN
3680
3703#define MBEDTLS_SSL_OUT_CONTENT_LEN MBEDTLS_SSL_MAX_CONTENT_LEN
3704
3720//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3721
3722//#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3723#define MBEDTLS_PSK_MAX_LEN 64
3724//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3725
3738//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3739
3740/* X509 options */
3741//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3742//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3743
3756// #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3757
3773#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3774
3793//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3794
3812//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3813
3814/* \} name SECTION: Customisation configuration options */
3815
3816/* Target and application specific configurations
3817 *
3818 * Allow user to override any previous default.
3819 *
3820 */
3821#if defined(MBEDTLS_USER_CONFIG_FILE)
3822#include MBEDTLS_USER_CONFIG_FILE
3823#endif
3824
3825//#include "check_config.h"
3826
3827#endif /* MBEDTLS_CONFIG_H_TY */