TuyaOS
tuya_tls_config_ecc_psk_cat1.h
1
10/*
11 * Copyright (C) 2006-2018, ARM Limited, All Rights Reserved
12 * SPDX-License-Identifier: Apache-2.0
13 *
14 * Licensed under the Apache License, Version 2.0 (the "License"); you may
15 * not use this file except in compliance with the License.
16 * You may obtain a copy of the License at
17 *
18 * http://www.apache.org/licenses/LICENSE-2.0
19 *
20 * Unless required by applicable law or agreed to in writing, software
21 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23 * See the License for the specific language governing permissions and
24 * limitations under the License.
25 *
26 * This file is part of mbed TLS (https://tls.mbed.org)
27 */
28
29#ifndef MBEDTLS_CONFIG_H_CAT1_ONLY
30#define MBEDTLS_CONFIG_H_CAT1_ONLY
31
32
33#define MBEDTLS_SSL_HANDSHAKE_FORCED_QUIT
34#define TUYA_TLS_DEBUG_THRDSHOLD 5 //TLS 调试等级
35
36#include "tuya_cloud_types.h"
37
38extern int __tuya_tls_nv_seed_write(unsigned char *buf, size_t buf_len);
39extern int __tuya_tls_nv_seed_read(unsigned char *buf, size_t buf_len);
40
41#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
42#define _CRT_SECURE_NO_DEPRECATE 1
43#endif
44
70//#define MBEDTLS_HAVE_ASM
71
98//#define MBEDTLS_NO_UDBL_DIVISION
99
120//#define MBEDTLS_NO_64BIT_MULTIPLICATION
121
129//#define MBEDTLS_HAVE_SSE2
130
145//#define MBEDTLS_HAVE_TIME
146
167//#define MBEDTLS_HAVE_TIME_DATE
168
191#define MBEDTLS_PLATFORM_MEMORY
209//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
210
234//#define MBEDTLS_PLATFORM_EXIT_ALT
235//#define MBEDTLS_PLATFORM_TIME_ALT
236//#define MBEDTLS_PLATFORM_FPRINTF_ALT
237//#define MBEDTLS_PLATFORM_PRINTF_ALT
238//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
239//#define MBEDTLS_PLATFORM_NV_SEED_ALT
240//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
241
255// #define MBEDTLS_DEPRECATED_WARNING
266#if !defined(ENABLE_IPC) || (ENABLE_IPC==0)
267//#define MBEDTLS_DEPRECATED_REMOVED
268#endif
309//#define MBEDTLS_CHECK_PARAMS
310
311/* \} name SECTION: System support */
312
332//#define MBEDTLS_TIMING_ALT
333
359// #define MBEDTLS_AES_ALT
360//#define MBEDTLS_ARC4_ALT
361//#define MBEDTLS_ARIA_ALT
362//#define MBEDTLS_BLOWFISH_ALT
363//#define MBEDTLS_CAMELLIA_ALT
364//#define MBEDTLS_CCM_ALT
365//#define MBEDTLS_CHACHA20_ALT
366//#define MBEDTLS_CHACHAPOLY_ALT
367//#define MBEDTLS_CMAC_ALT
368//#define MBEDTLS_DES_ALT
369//#define MBEDTLS_DHM_ALT
370//#define MBEDTLS_ECJPAKE_ALT
371//#define MBEDTLS_GCM_ALT
372//#define MBEDTLS_NIST_KW_ALT
373//#define MBEDTLS_MD2_ALT
374//#define MBEDTLS_MD4_ALT
375//#define MBEDTLS_MD5_ALT
376//#define MBEDTLS_POLY1305_ALT
377//#define MBEDTLS_RIPEMD160_ALT
378//#define MBEDTLS_RSA_ALT
379//#define MBEDTLS_SHA1_ALT
380//#define MBEDTLS_SHA256_ALT
381//#define MBEDTLS_SHA512_ALT
382//#define MBEDTLS_XTEA_ALT
383
384/*
385 * When replacing the elliptic curve module, pleace consider, that it is
386 * implemented with two .c files:
387 * - ecp.c
388 * - ecp_curves.c
389 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
390 * macros as described above. The only difference is that you have to make sure
391 * that you provide functionality for both .c files.
392 */
393//#define MBEDTLS_ECP_ALT
394
430//#define MBEDTLS_MD2_PROCESS_ALT
431//#define MBEDTLS_MD4_PROCESS_ALT
432//#define MBEDTLS_MD5_PROCESS_ALT
433//#define MBEDTLS_RIPEMD160_PROCESS_ALT
434//#define MBEDTLS_SHA1_PROCESS_ALT
435//#define MBEDTLS_SHA256_PROCESS_ALT
436//#define MBEDTLS_SHA512_PROCESS_ALT
437//#define MBEDTLS_DES_SETKEY_ALT
438//#define MBEDTLS_DES_CRYPT_ECB_ALT
439//#define MBEDTLS_DES3_CRYPT_ECB_ALT
440//#define MBEDTLS_AES_SETKEY_ENC_ALT
441//#define MBEDTLS_AES_SETKEY_DEC_ALT
442//#define MBEDTLS_AES_ENCRYPT_ALT
443//#define MBEDTLS_AES_DECRYPT_ALT
444//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
445//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
446//#define MBEDTLS_ECDSA_VERIFY_ALT
447//#define MBEDTLS_ECDSA_SIGN_ALT
448//#define MBEDTLS_ECDSA_GENKEY_ALT
449
490/* Required for all the functions in this section */
491//#define MBEDTLS_ECP_INTERNAL_ALT
492/* Support for Weierstrass curves with Jacobi representation */
493//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
494//#define MBEDTLS_ECP_ADD_MIXED_ALT
495//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
496//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
497//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
498/* Support for curves with Montgomery arithmetic */
499//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
500//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
501//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
502
518//#define MBEDTLS_TEST_NULL_ENTROPY
519
531//#define MBEDTLS_ENTROPY_HARDWARE_ALT
532
551#define MBEDTLS_AES_ROM_TABLES
552
573#define MBEDTLS_AES_FEWER_TABLES
574
582#define MBEDTLS_CAMELLIA_SMALL_MEMORY
583
589#define MBEDTLS_CIPHER_MODE_CBC
590
596//#define MBEDTLS_CIPHER_MODE_CFB
597
603#define MBEDTLS_CIPHER_MODE_CTR
604
610//#define MBEDTLS_CIPHER_MODE_OFB
611
617//#define MBEDTLS_CIPHER_MODE_XTS
618
650//#define MBEDTLS_CIPHER_NULL_CIPHER
651
663#define MBEDTLS_CIPHER_PADDING_PKCS7
664#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
665#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
666#define MBEDTLS_CIPHER_PADDING_ZEROS
667
684//#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
685
697#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
698
717//#define MBEDTLS_REMOVE_3DES_CIPHERSUITES
718
727#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
728#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
729#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
730#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
731#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
732#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
733#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
734#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
735#define MBEDTLS_ECP_DP_BP256R1_ENABLED
736#define MBEDTLS_ECP_DP_BP384R1_ENABLED
737#define MBEDTLS_ECP_DP_BP512R1_ENABLED
738#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
739#define MBEDTLS_ECP_DP_CURVE448_ENABLED
740
750#define MBEDTLS_ECP_NIST_OPTIM
751
774//#define MBEDTLS_ECP_RESTARTABLE
775
788//#define MBEDTLS_ECDSA_DETERMINISTIC
789
810#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
811
841//#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
842
861//#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
862
886//#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
887
914//#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
915
947//#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
948
972#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
973
996//#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
997
1020//#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1021
1044//#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1045
1063//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1064
1077#define MBEDTLS_PK_PARSE_EC_EXTENDED
1078
1092//#define MBEDTLS_ERROR_STRERROR_DUMMY
1093
1101#define MBEDTLS_GENPRIME
1102
1108//#define MBEDTLS_FS_IO
1109
1121// #define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1122
1132#define MBEDTLS_NO_PLATFORM_ENTROPY
1147//#define MBEDTLS_ENTROPY_FORCE_SHA256
1148
1175#define MBEDTLS_ENTROPY_NV_SEED
1176
1188//#define MBEDTLS_MEMORY_DEBUG
1199//#define MBEDTLS_MEMORY_BACKTRACE
1200
1208#define MBEDTLS_PK_RSA_ALT_SUPPORT
1209
1219#define MBEDTLS_PKCS1_V15
1220
1230#define MBEDTLS_PKCS1_V21
1231
1241//#define MBEDTLS_RSA_NO_CRT
1242
1248//#define MBEDTLS_SELF_TEST
1263//#define MBEDTLS_SHA256_SMALLER
1264
1277#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1278
1288//#define MBEDTLS_SSL_ASYNC_PRIVATE
1289
1304//#define MBEDTLS_SSL_DEBUG_ALL
1305
1322#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1323
1340#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1341
1357#define MBEDTLS_SSL_FALLBACK_SCSV
1358
1367//#define MBEDTLS_SSL_HW_RECORD_ACCEL
1368
1379//#define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1380
1401#define MBEDTLS_SSL_RENEGOTIATION
1402
1411//#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1412
1421//#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1422
1430#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1431
1442//#define MBEDTLS_SSL_PROTO_SSL3
1443
1454//#define MBEDTLS_SSL_PROTO_TLS1
1455
1466//#define MBEDTLS_SSL_PROTO_TLS1_1
1467
1478#define MBEDTLS_SSL_PROTO_TLS1_2
1479
1493//#define MBEDTLS_SSL_PROTO_DTLS
1494
1502//#define MBEDTLS_SSL_ALPN
1503
1517//#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1518
1535//#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1536
1551//#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1552
1562//#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1563
1576#define MBEDTLS_SSL_SESSION_TICKETS
1577
1586//#define MBEDTLS_SSL_EXPORT_KEYS
1587
1597#define MBEDTLS_SSL_SERVER_NAME_INDICATION
1598
1606//#define MBEDTLS_SSL_TRUNCATED_HMAC
1607
1630//#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1631
1641#define MBEDTLS_THREADING_ALT
1642
1652//#define MBEDTLS_THREADING_PTHREAD
1653
1665//#define MBEDTLS_VERSION_FEATURES
1666
1675//#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1676
1687//#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1688
1701#define MBEDTLS_X509_CHECK_KEY_USAGE
1702
1714#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1715
1724#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
1725
1749//#define MBEDTLS_ZLIB_SUPPORT
1750/* \} name SECTION: mbed TLS feature support */
1751
1771//#define MBEDTLS_AESNI_C
1772
1846#define MBEDTLS_AES_C
1847
1874#define MBEDTLS_ARC4_C
1875
1888#define MBEDTLS_ASN1_PARSE_C
1889
1902#define MBEDTLS_ASN1_WRITE_C
1903
1914#define MBEDTLS_BASE64_C
1915
1931#define MBEDTLS_BIGNUM_C
1932
1940//#define MBEDTLS_BLOWFISH_C
1941
1995//#define MBEDTLS_CAMELLIA_C
1996
2047//#define MBEDTLS_ARIA_C
2048
2061//#define MBEDTLS_CCM_C
2062
2073//#define MBEDTLS_CERTS_C
2074
2082//#define MBEDTLS_CHACHA20_C
2083
2093//#define MBEDTLS_CHACHAPOLY_C
2094
2105#define MBEDTLS_CIPHER_C
2106
2118//#define MBEDTLS_CMAC_C
2119
2135#define MBEDTLS_CTR_DRBG_C
2149// #define MBEDTLS_DEBUG_C
2177//#define MBEDTLS_DES_C
2178
2198//#define MBEDTLS_DHM_C
2199
2214#define MBEDTLS_ECDH_C
2215
2229#define MBEDTLS_ECDSA_C
2230
2248//#define MBEDTLS_ECJPAKE_C
2249
2262#define MBEDTLS_ECP_C
2263
2276#define MBEDTLS_ENTROPY_C
2287#define MBEDTLS_ERROR_C
2300#define MBEDTLS_GCM_C
2301//
2323//#define MBEDTLS_HAVEGE_C
2324
2338#define MBEDTLS_HKDF_C
2339
2352//#define MBEDTLS_HMAC_DRBG_C
2353
2365//#define MBEDTLS_NIST_KW_C
2366
2377#define MBEDTLS_MD_C
2378
2394//#define MBEDTLS_MD2_C
2395
2411//#define MBEDTLS_MD4_C
2412
2433#define MBEDTLS_MD5_C
2434
2449//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2467#define MBEDTLS_NET_C
2489#define MBEDTLS_OID_C
2490
2503//#define MBEDTLS_PADLOCK_C
2504
2521#define MBEDTLS_PEM_PARSE_C
2522
2537//#define MBEDTLS_PEM_WRITE_C
2538
2553#define MBEDTLS_PK_C
2554
2568#define MBEDTLS_PK_PARSE_C
2569
2582#define MBEDTLS_PK_WRITE_C
2583
2595#define MBEDTLS_PKCS5_C
2596
2610//#define MBEDTLS_PKCS11_C
2611
2626#define MBEDTLS_PKCS12_C
2627
2646#define MBEDTLS_PLATFORM_C
2647
2656//#define MBEDTLS_POLY1305_C
2657
2667//#define MBEDTLS_RIPEMD160_C
2668
2686#define MBEDTLS_RSA_C
2687
2708#if 1//((ENABLE_ECHO_SHOW ==1) || (ENABLE_CHROMECAST==1) || (TUYA_OPERATOR_TYPE == TUYA_OPERATOR_CMCC_ANDLINK) )
2709#define MBEDTLS_SHA1_C
2710#endif
2711
2712
2728#define MBEDTLS_SHA256_C
2729
2743#define MBEDTLS_SHA512_C
2744
2755//#define MBEDTLS_SSL_CACHE_C
2756
2765//#define MBEDTLS_SSL_COOKIE_C
2766
2777//#define MBEDTLS_SSL_TICKET_C
2778
2791#define MBEDTLS_SSL_CLI_C
2792
2805//#define MBEDTLS_SSL_SRV_C
2820#define MBEDTLS_SSL_TLS_C
2821
2842#define MBEDTLS_THREADING_C
2843
2866#define MBEDTLS_TIMING_C
2876#define MBEDTLS_VERSION_C
2877
2893#define MBEDTLS_X509_USE_C
2894
2909#define MBEDTLS_X509_CRT_PARSE_C
2910
2923//#define MBEDTLS_X509_CRL_PARSE_C
2924
2937#define MBEDTLS_X509_CSR_PARSE_C
2938
2950//#define MBEDTLS_X509_CREATE_C
2951
2963//#define MBEDTLS_X509_CRT_WRITE_C
2964
2976//#define MBEDTLS_X509_CSR_WRITE_C
2977
2986//#define MBEDTLS_XTEA_C
2987
2988/* \} name SECTION: mbed TLS modules */
2989
3005/* MPI / BIGNUM options */
3006//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
3007//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3008
3009/* CTR_DRBG options */
3010//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3011//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3012//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3013//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3014//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3015//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY /**< Use 128-bit key for CTR_DRBG - may reduce security (see ctr_drbg.h) */
3016
3017/* HMAC_DRBG options */
3018//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3019//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3020//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3021//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3022
3023/* ECP options */
3024//#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3025//#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3026//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3027
3028/* Entropy options */
3029//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3030//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3031//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3032
3033/* Memory buffer allocator options */
3034//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3035
3036/* Platform options */
3037//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3038//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3039//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3040//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3041//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3042//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3043//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3044/* Note: your snprintf must correclty zero-terminate the buffer! */
3045//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3046//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3047//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3048//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3049//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3050//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3051
3052/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3053/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3054//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3055//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3056//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3057//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3058//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3059//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3060//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3061/* Note: your snprintf must correclty zero-terminate the buffer! */
3062//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3063#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO __tuya_tls_nv_seed_read
3064#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO __tuya_tls_nv_seed_write
3094//#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3095
3096/* SSL Cache options */
3097//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3098//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3099
3100/* SSL options */
3101
3126#if OPERATING_SYSTEM <= SYSTEM_SMALL_MEMORY_END
3127#define MBEDTLS_SSL_MAX_CONTENT_LEN 5200
3128#else
3129#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384
3130#endif
3154//#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3155
3178//#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3179
3195//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3196
3197//#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3198//#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3199//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3200
3213//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3214
3215/* X509 options */
3216//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3217//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3218
3231// #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3232
3248#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3249
3250/* \} name SECTION: Customisation configuration options */
3251
3252/* Target and application specific configurations */
3253//#define YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE "mbedtls/target_config.h"
3254
3255#if defined(TARGET_LIKE_MBED) && defined(YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE)
3256#include YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE
3257#endif
3258
3259/*
3260 * Allow user to override any previous default.
3261 *
3262 * Use two macro names for that, as:
3263 * - with yotta the prefix YOTTA_CFG_ is forced
3264 * - without yotta is looks weird to have a YOTTA prefix.
3265 */
3266#if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE)
3267#include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE
3268#elif defined(MBEDTLS_USER_CONFIG_FILE)
3269#include MBEDTLS_USER_CONFIG_FILE
3270#endif
3271
3272#endif /* MBEDTLS_CONFIG_H_TY_ECC_PSK */