TuyaOS
tuya_tls_security_L3_default_config.h
1
10/*
11 * Copyright The Mbed TLS Contributors
12 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
13 *
14 * This file is provided under the Apache License 2.0, or the
15 * GNU General Public License v2.0 or later.
16 *
17 * **********
18 * Apache License 2.0:
19 *
20 * Licensed under the Apache License, Version 2.0 (the "License"); you may
21 * not use this file except in compliance with the License.
22 * You may obtain a copy of the License at
23 *
24 * http://www.apache.org/licenses/LICENSE-2.0
25 *
26 * Unless required by applicable law or agreed to in writing, software
27 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
28 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
29 * See the License for the specific language governing permissions and
30 * limitations under the License.
31 *
32 * **********
33 *
34 * **********
35 * GNU General Public License v2.0 or later:
36 *
37 * This program is free software; you can redistribute it and/or modify
38 * it under the terms of the GNU General Public License as published by
39 * the Free Software Foundation; either version 2 of the License, or
40 * (at your option) any later version.
41 *
42 * This program is distributed in the hope that it will be useful,
43 * but WITHOUT ANY WARRANTY; without even the implied warranty of
44 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
45 * GNU General Public License for more details.
46 *
47 * You should have received a copy of the GNU General Public License along
48 * with this program; if not, write to the Free Software Foundation, Inc.,
49 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
50 *
51 * **********
52 */
53
54#ifndef MBEDTLS_CONFIG_H_TY
55#define MBEDTLS_CONFIG_H_TY
56
57#define MBEDTLS_SUPPORT_TUYA_PSK
58#define MBEDTLS_SUPPORT_HANDSHAKE_FRAGMENT
59#define TUYA_TLS_DYNAMIC_MEMORY_ALLOCATION 1 //开启TLS动态内存
60#include "tuya_cloud_types.h"
61
62#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
63#define _CRT_SECURE_NO_DEPRECATE 1
64#endif
65
91//#define MBEDTLS_HAVE_ASM
92
119//#define MBEDTLS_NO_UDBL_DIVISION
120
141//#define MBEDTLS_NO_64BIT_MULTIPLICATION
142
150//#define MBEDTLS_HAVE_SSE2
151
165#ifdef ENABLE_MBEDTLS_HAVE_TIME
166#define MBEDTLS_HAVE_TIME
167#else
168#undef MBEDTLS_HAVE_TIME
169#endif
170
190#ifdef ENABLE_MBEDTLS_HAVE_TIME_DATE
191#define MBEDTLS_HAVE_TIME_DATE
192#else
193#undef MBEDTLS_HAVE_TIME_DATE
194#endif
217#define MBEDTLS_PLATFORM_MEMORY
235//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
236
260//#define MBEDTLS_PLATFORM_EXIT_ALT
261//#define MBEDTLS_PLATFORM_TIME_ALT
262//#define MBEDTLS_PLATFORM_FPRINTF_ALT
263//#define MBEDTLS_PLATFORM_PRINTF_ALT
264//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
265//#define MBEDTLS_PLATFORM_NV_SEED_ALT
266//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
267
281#define MBEDTLS_DEPRECATED_WARNING
282
293//#define MBEDTLS_DEPRECATED_REMOVED
294
345//#define MBEDTLS_CHECK_PARAMS
346
359//#define MBEDTLS_CHECK_PARAMS_ASSERT
360
361/* \} name SECTION: System support */
362
382//#define MBEDTLS_TIMING_ALT
383
409//#define MBEDTLS_AES_ALT
410//#define MBEDTLS_ARC4_ALT
411//#define MBEDTLS_ARIA_ALT
412//#define MBEDTLS_BLOWFISH_ALT
413//#define MBEDTLS_CAMELLIA_ALT
414//#define MBEDTLS_CCM_ALT
415//#define MBEDTLS_CHACHA20_ALT
416//#define MBEDTLS_CHACHAPOLY_ALT
417//#define MBEDTLS_CMAC_ALT
418//#define MBEDTLS_DES_ALT
419//#define MBEDTLS_DHM_ALT
420//#define MBEDTLS_ECJPAKE_ALT
421//#define MBEDTLS_GCM_ALT
422//#define MBEDTLS_NIST_KW_ALT
423//#define MBEDTLS_MD2_ALT
424//#define MBEDTLS_MD4_ALT
425//#define MBEDTLS_MD5_ALT
426//#define MBEDTLS_POLY1305_ALT
427//#define MBEDTLS_RIPEMD160_ALT
428//#define MBEDTLS_RSA_ALT
429//#define MBEDTLS_SHA1_ALT
430//#define MBEDTLS_SHA256_ALT
431//#define MBEDTLS_SHA512_ALT
432//#define MBEDTLS_XTEA_ALT
433
434/*
435 * When replacing the elliptic curve module, pleace consider, that it is
436 * implemented with two .c files:
437 * - ecp.c
438 * - ecp_curves.c
439 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
440 * macros as described above. The only difference is that you have to make sure
441 * that you provide functionality for both .c files.
442 */
443//#define MBEDTLS_ECP_ALT
444
490//#define MBEDTLS_MD2_PROCESS_ALT
491//#define MBEDTLS_MD4_PROCESS_ALT
492//#define MBEDTLS_MD5_PROCESS_ALT
493//#define MBEDTLS_RIPEMD160_PROCESS_ALT
494//#define MBEDTLS_SHA1_PROCESS_ALT
495//#define MBEDTLS_SHA256_PROCESS_ALT
496//#define MBEDTLS_SHA512_PROCESS_ALT
497//#define MBEDTLS_DES_SETKEY_ALT
498//#define MBEDTLS_DES_CRYPT_ECB_ALT
499//#define MBEDTLS_DES3_CRYPT_ECB_ALT
500//#define MBEDTLS_AES_SETKEY_ENC_ALT
501//#define MBEDTLS_AES_SETKEY_DEC_ALT
502//#define MBEDTLS_AES_ENCRYPT_ALT
503//#define MBEDTLS_AES_DECRYPT_ALT
504//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
505//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
506//#define MBEDTLS_ECDSA_VERIFY_ALT
507//#define MBEDTLS_ECDSA_SIGN_ALT
508//#define MBEDTLS_ECDSA_GENKEY_ALT
509
550/* Required for all the functions in this section */
551//#define MBEDTLS_ECP_INTERNAL_ALT
552/* Support for Weierstrass curves with Jacobi representation */
553//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
554//#define MBEDTLS_ECP_ADD_MIXED_ALT
555//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
556//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
557//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
558/* Support for curves with Montgomery arithmetic */
559//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
560//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
561//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
562
578//#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
579
597//#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
598
614//#define MBEDTLS_TEST_NULL_ENTROPY
615
627//#define MBEDTLS_ENTROPY_HARDWARE_ALT
628
647//#define MBEDTLS_AES_ROM_TABLES
648
669//#define MBEDTLS_AES_FEWER_TABLES
670
678//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
679
685#define MBEDTLS_CIPHER_MODE_CBC
686
692#define MBEDTLS_CIPHER_MODE_CFB
693
699#define MBEDTLS_CIPHER_MODE_CTR
700
706#define MBEDTLS_CIPHER_MODE_OFB
707
713#define MBEDTLS_CIPHER_MODE_XTS
714
746//#define MBEDTLS_CIPHER_NULL_CIPHER
747
759#define MBEDTLS_CIPHER_PADDING_PKCS7
760#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
761#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
762#define MBEDTLS_CIPHER_PADDING_ZEROS
763
769//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
770
787//#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
788
800#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
801
820//#define MBEDTLS_REMOVE_3DES_CIPHERSUITES
821
830#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192R1_ENABLED
831#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
832#else
833#undef MBEDTLS_ECP_DP_SECP192R1_ENABLED
834#endif
835
836#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224R1_ENABLED
837#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
838#else
839#undef MBEDTLS_ECP_DP_SECP224R1_ENABLED
840#endif
841
842#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256R1_ENABLED
843#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
844#else
845#undef MBEDTLS_ECP_DP_SECP256R1_ENABLED
846#endif
847
848#ifdef ENABLE_MBEDTLS_ECP_DP_SECP384R1_ENABLED
849#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
850#else
851#undef MBEDTLS_ECP_DP_SECP384R1_ENABLED
852#endif
853
854#ifdef ENABLE_MBEDTLS_ECP_DP_SECP521R1_ENABLED
855#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
856#else
857#undef MBEDTLS_ECP_DP_SECP521R1_ENABLED
858#endif
859
860#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192K1_ENABLED
861#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
862#else
863#undef MBEDTLS_ECP_DP_SECP192K1_ENABLED
864#endif
865
866#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224K1_ENABLED
867#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
868#else
869#undef MBEDTLS_ECP_DP_SECP224K1_ENABLED
870#endif
871
872#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256K1_ENABLED
873#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
874#else
875#undef MBEDTLS_ECP_DP_SECP256K1_ENABLED
876#endif
877
878#ifdef ENABLE_MBEDTLS_ECP_DP_BP256R1_ENABLED
879#define MBEDTLS_ECP_DP_BP256R1_ENABLED
880#else
881#undef MBEDTLS_ECP_DP_BP256R1_ENABLED
882#endif
883
884#ifdef ENABLE_MBEDTLS_ECP_DP_BP384R1_ENABLED
885#define MBEDTLS_ECP_DP_BP384R1_ENABLED
886#else
887#undef MBEDTLS_ECP_DP_BP384R1_ENABLED
888#endif
889
890#ifdef ENABLE_MBEDTLS_ECP_DP_BP512R1_ENABLED
891#define MBEDTLS_ECP_DP_BP512R1_ENABLED
892#else
893#undef MBEDTLS_ECP_DP_BP512R1_ENABLED
894#endif
895
896#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE25519_ENABLED
897#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
898#else
899#undef MBEDTLS_ECP_DP_CURVE25519_ENABLED
900#endif
901
902#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE448_ENABLED
903#define MBEDTLS_ECP_DP_CURVE448_ENABLED
904#else
905#undef MBEDTLS_ECP_DP_CURVE448_ENABLED
906#endif
907
917#ifdef ENABLE_MBEDTLS_ECP_NIST_OPTIM
918#define MBEDTLS_ECP_NIST_OPTIM
919#else
920#undef MBEDTLS_ECP_NIST_OPTIM
921#endif
942//#define MBEDTLS_ECP_NO_INTERNAL_RNG
943
966//#define MBEDTLS_ECP_RESTARTABLE
967
980//#define MBEDTLS_ECDSA_DETERMINISTIC
981
1002#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_PSK
1003#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
1004#else
1005#undef MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
1006#endif
1007
1037#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_PSK
1038#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1039#else
1040#undef MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1041#endif
1042
1061#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_PSK
1062#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1063#else
1064#undef MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1065#endif
1066
1090#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA_PSK
1091#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1092#else
1093#undef MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1094#endif
1095
1122#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA
1123#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1124#else
1125#undef MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1126#endif
1127
1159#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_RSA
1160#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1161#else
1162#undef MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1163#endif
1164
1188#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_RSA
1189#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1190#else
1191#undef MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1192#endif
1193
1216#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
1217#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1218#else
1219#undef MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1220#endif
1221
1244#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA
1245#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1246#else
1247#undef MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1248#endif
1249
1272#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_RSA
1273#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1274#else
1275#undef MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1276#endif
1277
1295//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1296
1309#define MBEDTLS_PK_PARSE_EC_EXTENDED
1310
1324#define MBEDTLS_ERROR_STRERROR_DUMMY
1325
1333#ifdef ENABLE_MBEDTLS_GENPRIME
1334#define MBEDTLS_GENPRIME
1335#else
1336#undef MBEDTLS_GENPRIME
1337#endif
1338
1344#ifdef ENABLE_MBEDTLS_FS_IO
1345#define MBEDTLS_FS_IO
1346#else
1347#undef MBEDTLS_FS_IO
1348#endif
1360//#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1361
1371#define MBEDTLS_NO_PLATFORM_ENTROPY
1386//#define MBEDTLS_ENTROPY_FORCE_SHA256
1387
1414#define MBEDTLS_ENTROPY_NV_SEED
1415
1427//#define MBEDTLS_MEMORY_DEBUG
1428
1439//#define MBEDTLS_MEMORY_BACKTRACE
1440
1448// #define MBEDTLS_PK_RSA_ALT_SUPPORT
1449
1459#ifdef ENABLE_MBEDTLS_RSA_C
1460#define MBEDTLS_PKCS1_V15
1461#else
1462#undef MBEDTLS_PKCS1_V15
1463#endif
1473#ifdef ENABLE_MBEDTLS_RSA_C
1474#define MBEDTLS_PKCS1_V21
1475#else
1476#undef MBEDTLS_PKCS1_V21
1477#endif
1487//#define MBEDTLS_RSA_NO_CRT
1488
1494// #define MBEDTLS_SELF_TEST
1495
1510//#define MBEDTLS_SHA256_SMALLER
1511
1524#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1525
1535//#define MBEDTLS_SSL_ASYNC_PRIVATE
1536
1551//#define MBEDTLS_SSL_DEBUG_ALL
1552
1569#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1570
1587#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1588
1604//#define MBEDTLS_SSL_FALLBACK_SCSV
1605
1614//#define MBEDTLS_SSL_HW_RECORD_ACCEL
1615
1626//#define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1627
1648//#define MBEDTLS_SSL_RENEGOTIATION
1649
1658//#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1659
1668//#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1669
1677#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1678
1689//#define MBEDTLS_SSL_PROTO_SSL3
1690
1701#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1
1702#define MBEDTLS_SSL_PROTO_TLS1
1703#else
1704#undef MBEDTLS_SSL_PROTO_TLS1
1705#endif
1706
1717#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1_1
1718#define MBEDTLS_SSL_PROTO_TLS1_1
1719#else
1720#undef MBEDTLS_SSL_PROTO_TLS1_1
1721#endif
1722
1733#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1_2
1734#define MBEDTLS_SSL_PROTO_TLS1_2
1735#else
1736#undef MBEDTLS_SSL_PROTO_TLS1_2
1737#endif
1751//#define MBEDTLS_SSL_PROTO_DTLS
1752
1760//#define MBEDTLS_SSL_ALPN
1761
1775//#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1776
1793//#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1794
1809//#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1810
1820//#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1821
1834#ifdef ENABLE_MBEDTLS_CLIENT_SSL_SESSION_TICKETS
1835#define MBEDTLS_SSL_SESSION_TICKETS
1836#else
1837#undef MBEDTLS_SSL_SESSION_TICKETS
1838#endif
1839
1848//#define MBEDTLS_SSL_EXPORT_KEYS
1849
1859//#define MBEDTLS_SSL_SERVER_NAME_INDICATION
1860
1868//#define MBEDTLS_SSL_TRUNCATED_HMAC
1869
1892//#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1893
1909//#define MBEDTLS_TEST_HOOKS
1910
1920#define MBEDTLS_THREADING_ALT
1921
1931//#define MBEDTLS_THREADING_PTHREAD
1932
1944#define MBEDTLS_VERSION_FEATURES
1945
1954//#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1955
1966//#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1967
1980#ifdef ENABLE_MBEDTLS_X509_CRT
1981#define MBEDTLS_X509_CHECK_KEY_USAGE
1982#else
1983#undef MBEDTLS_X509_CHECK_KEY_USAGE
1984#endif
1985
1997#ifdef ENABLE_MBEDTLS_X509_CRT
1998#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1999#else
2000#undef MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
2001#endif
2010#ifdef ENABLE_MBEDTLS_X509_CRT
2011#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
2012#else
2013#undef MBEDTLS_X509_RSASSA_PSS_SUPPORT
2014#endif
2038//#define MBEDTLS_ZLIB_SUPPORT
2039/* \} name SECTION: mbed TLS feature support */
2040
2060//#define MBEDTLS_AESNI_C
2061
2135#ifdef ENABLE_MBEDTLS_AES_C
2136#define MBEDTLS_AES_C
2137#else
2138#undef MBEDTLS_AES_C
2139#endif
2140
2167#ifdef ENABLE_MBEDTLS_RC4_ENABLED
2168#define MBEDTLS_ARC4_C
2169#undef MBEDTLS_REMOVE_ARC4_CIPHERSUITES
2170#elif defined ENABLE_MBEDTLS_RC4_ENABLED_NO_DEFAULT
2171#define MBEDTLS_ARC4_C
2172#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
2173#else
2174#undef MBEDTLS_ARC4_C
2175#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
2176#endif
2177
2190#define MBEDTLS_ASN1_PARSE_C
2191
2204#define MBEDTLS_ASN1_WRITE_C
2205
2216#define MBEDTLS_BASE64_C
2217
2233#define MBEDTLS_BIGNUM_C
2234
2242#ifdef ENABLE_MBEDTLS_BLOWFISH_C
2243#define MBEDTLS_BLOWFISH_C
2244#else
2245#undef MBEDTLS_BLOWFISH_C
2246#endif
2247
2301#ifdef ENABLE_MBEDTLS_CAMELLIA_C
2302#define MBEDTLS_CAMELLIA_C
2303#else
2304#undef MBEDTLS_CAMELLIA_C
2305#endif
2306
2357//#define MBEDTLS_ARIA_C
2358
2371#ifdef ENABLE_MBEDTLS_CCM_C
2372#define MBEDTLS_CCM_C
2373#else
2374#undef MBEDTLS_CCM_C
2375#endif
2376
2387//#define MBEDTLS_CERTS_C
2388
2396#ifdef ENABLE_MBEDTLS_CHACHA20_C
2397#define MBEDTLS_CHACHA20_C
2398#else
2399#undef MBEDTLS_CHACHA20_C
2400#endif
2401
2411#ifdef ENABLE_MBEDTLS_CHACHAPOLY_C
2412#define MBEDTLS_CHACHAPOLY_C
2413#else
2414#undef MBEDTLS_CHACHAPOLY_C
2415#endif
2416
2427#define MBEDTLS_CIPHER_C
2428
2440#ifdef ENABLE_MBEDTLS_CMAC_C
2441#define MBEDTLS_CMAC_C
2442#else
2443#undef MBEDTLS_CMAC_C
2444#endif
2463#define MBEDTLS_CTR_DRBG_C
2464
2477#ifdef ENABLE_MBEDTLS_DEBUG
2478#define MBEDTLS_DEBUG_C
2479#else
2480#undef MBEDTLS_DEBUG_C
2481#endif
2482
2510#ifdef ENABLE_MBEDTLS_DES_C
2511#define MBEDTLS_DES_C
2512#else
2513#undef MBEDTLS_DES_C
2514#endif
2515
2535#ifdef ENABLE_MBEDTLS_DHM_C
2536#define MBEDTLS_DHM_C
2537#else
2538#undef MBEDTLS_DHM_C
2539#endif
2540
2555#ifdef ENABLE_MBEDTLS_ECDH_C
2556#define MBEDTLS_ECDH_C
2557#else
2558#undef MBEDTLS_ECDH_C
2559#endif
2560
2574#ifdef ENABLE_MBEDTLS_ECDSA_C
2575#define MBEDTLS_ECDSA_C
2576#else
2577#undef MBEDTLS_ECDSA_C
2578#endif
2579
2597//#define MBEDTLS_ECJPAKE_C
2598
2611#ifdef ENABLE_MBEDTLS_ECP_C
2612#define MBEDTLS_ECP_C
2613#else
2614#undef MBEDTLS_ECP_C
2615#endif
2616
2629#define MBEDTLS_ENTROPY_C
2630
2641#define MBEDTLS_ERROR_C
2642
2655#ifdef ENABLE_MBEDTLS_GCM_C
2656#define MBEDTLS_GCM_C
2657#else
2658#undef MBEDTLS_GCM_C
2659#endif
2681//#define MBEDTLS_HAVEGE_C
2682
2696#define MBEDTLS_HKDF_C
2697
2710#ifdef ENABLE_MBEDTLS_HMAC_DRBG_C
2711#define MBEDTLS_HMAC_DRBG_C
2712#else
2713#undef MBEDTLS_HMAC_DRBG_C
2714#endif
2726//#define MBEDTLS_NIST_KW_C
2727
2738#define MBEDTLS_MD_C
2739
2755//#define MBEDTLS_MD2_C
2756
2772//#define MBEDTLS_MD4_C
2773
2794#define MBEDTLS_MD5_C
2795
2810//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2811
2829#ifdef ENABLE_MBEDTLS_NET_C
2830#define MBEDTLS_NET_C
2831#else
2832#undef MBEDTLS_NET_C
2833#endif
2834
2856#define MBEDTLS_OID_C
2857
2870//#define MBEDTLS_PADLOCK_C
2871
2888#ifdef ENABLE_MBEDTLS_PEM_PARSE_C
2889#define MBEDTLS_PEM_PARSE_C
2890#else
2891#undef MBEDTLS_PEM_PARSE_C
2892#endif
2893
2908#ifdef ENABLE_MBEDTLS_PEM_WRITE_C
2909#define MBEDTLS_PEM_WRITE_C
2910#else
2911#undef MBEDTLS_PEM_WRITE_C
2912#endif
2913
2928#ifdef ENABLE_MBEDTLS_PK_C
2929#define MBEDTLS_PK_C
2930#else
2931#undef MBEDTLS_PK_C
2932#endif
2946#ifdef ENABLE_MBEDTLS_PK_C
2947#define MBEDTLS_PK_PARSE_C
2948#else
2949#undef MBEDTLS_PK_PARSE_C
2950#endif
2951
2964#ifdef ENABLE_MBEDTLS_PK_C
2965#define MBEDTLS_PK_WRITE_C
2966#else
2967#undef MBEDTLS_PK_WRITE_C
2968#endif
2980#define MBEDTLS_PKCS5_C
2981
2995//#define MBEDTLS_PKCS11_C
2996
3011#ifdef ENABLE_MBEDTLS_PK_C
3012#define MBEDTLS_PKCS12_C
3013#else
3014#undef MBEDTLS_PKCS12_C
3015#endif
3034#define MBEDTLS_PLATFORM_C
3035
3044#ifdef ENABLE_MBEDTLS_POLY1305_C
3045#define MBEDTLS_POLY1305_C
3046#else
3047#undef MBEDTLS_POLY1305_C
3048#endif
3049
3059#ifdef ENABLE_MBEDTLS_RIPEMD160_C
3060#define MBEDTLS_RIPEMD160_C
3061#else
3062#undef MBEDTLS_RIPEMD160_C
3063#endif
3064
3082#ifdef ENABLE_MBEDTLS_RSA_C
3083#define MBEDTLS_RSA_C
3084#else
3085#undef MBEDTLS_RSA_C
3086#endif
3087
3108#define MBEDTLS_SHA1_C
3109
3125#define MBEDTLS_SHA256_C
3126
3140#define MBEDTLS_SHA384_C
3141#define MBEDTLS_SHA512_C
3142
3153//#define MBEDTLS_SSL_CACHE_C
3154
3163//#define MBEDTLS_SSL_COOKIE_C
3164
3175//#define MBEDTLS_SSL_TICKET_C
3176
3189#ifdef ENABLE_MBEDTLS_SSL_CLI_C
3190#define MBEDTLS_SSL_CLI_C
3191#else
3192#undef MBEDTLS_SSL_CLI_C
3193#endif
3194
3207#ifdef ENABLE_MBEDTLS_SSL_SRV_C
3208#define MBEDTLS_SSL_SRV_C
3209#else
3210#undef MBEDTLS_SSL_SRV_C
3211#endif
3212
3227#define MBEDTLS_SSL_TLS_C
3228
3249#define MBEDTLS_THREADING_C
3250
3272//#define MBEDTLS_TIMING_C
3273
3283#define MBEDTLS_VERSION_C
3284
3300#ifdef ENABLE_MBEDTLS_X509_CRT
3301#define MBEDTLS_X509_USE_C
3302#else
3303#undef MBEDTLS_X509_USE_C
3304#endif
3305
3320#ifdef ENABLE_MBEDTLS_X509_CRT
3321#define MBEDTLS_X509_CRT_PARSE_C
3322#else
3323#undef MBEDTLS_X509_CRT_PARSE_C
3324#endif
3337#ifdef ENABLE_MBEDTLS_X509_CRL_PARSE_C
3338#define MBEDTLS_X509_CRL_PARSE_C
3339#else
3340#undef MBEDTLS_X509_CRL_PARSE_C
3341#endif
3342
3355#ifdef ENABLE_MBEDTLS_X509_CSR_PARSE_C
3356#define MBEDTLS_X509_CSR_PARSE_C
3357#else
3358#undef MBEDTLS_X509_CSR_PARSE_C
3359#endif
3360
3372#ifdef ENABLE_MBEDTLS_X509_CRT
3373#define MBEDTLS_X509_CREATE_C
3374#else
3375#undef MBEDTLS_X509_CREATE_C
3376#endif
3388#ifdef ENABLE_MBEDTLS_X509_CRT
3389#define MBEDTLS_X509_CRT_WRITE_C
3390#else
3391#undef MBEDTLS_X509_CRT_WRITE_C
3392#endif
3393
3405#ifdef ENABLE_MBEDTLS_X509_CSR_WRITE_C
3406#define MBEDTLS_X509_CSR_WRITE_C
3407#else
3408#undef MBEDTLS_X509_CSR_WRITE_C
3409#endif
3410
3419#ifdef ENABLE_MBEDTLS_XTEA_C
3420#define MBEDTLS_XTEA_C
3421#else
3422#undef MBEDTLS_XTEA_C
3423#endif
3424
3425/* \} name SECTION: mbed TLS modules */
3426
3442/* MPI / BIGNUM options */
3443//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */
3444//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3445
3446/* CTR_DRBG options */
3447//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3448//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3449//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3450//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3451//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3452
3453/* HMAC_DRBG options */
3454//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3455//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3456//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3457//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3458
3459/* ECP options */
3460//#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3461//#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3462//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3463
3464/* Entropy options */
3465//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3466//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3467//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3468
3469/* Memory buffer allocator options */
3470//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3471
3472/* Platform options */
3473//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3474//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3475//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3476//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3477//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3478//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3479//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3480/* Note: your snprintf must correctly zero-terminate the buffer! */
3481//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3482//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3483//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3484//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3485//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3486//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3487
3488/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3489/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3490//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3491//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3492//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3493//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3494//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3495//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3496//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3497/* Note: your snprintf must correctly zero-terminate the buffer! */
3498//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3499
3500#ifdef ENABLE_MBEDTLS_PLATFORM_NV_SEED
3501extern int __tuya_tls_nv_seed_write(unsigned char *buf, size_t buf_len);
3502extern int __tuya_tls_nv_seed_read(unsigned char *buf, size_t buf_len);
3503#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO __tuya_tls_nv_seed_read
3504#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO __tuya_tls_nv_seed_write
3505#endif
3506//#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3507//#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3508
3543//#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3544
3545/* SSL Cache options */
3546//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3547//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3548
3549/* SSL options */
3550
3575#ifdef ENABLE_MBEDTLS_SSL_MAX_CONTENT_LEN
3576#define MBEDTLS_SSL_MAX_CONTENT_LEN ENABLE_MBEDTLS_SSL_MAX_CONTENT_LEN
3577#endif
3578
3602//#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3603#if defined(TUYA_TLS_DYNAMIC_MEMORY_ALLOCATION)
3604#define MBEDTLS_SSL_IN_CONTENT_LEN (ssl->in_content_len)
3605#define MBEDTLS_SSL_OUT_CONTENT_LEN (ssl->out_content_len)
3606#endif
3607
3630//#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3631
3647//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3648
3649//#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3650//#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3651//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3652
3665//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3666
3667/* X509 options */
3668//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3669//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3670
3683// #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3684
3700//#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3701
3720//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3721
3739//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3740
3741/* \} name SECTION: Customisation configuration options */
3742
3743/* Target and application specific configurations
3744 *
3745 * Allow user to override any previous default.
3746 *
3747 */
3748#if defined(MBEDTLS_USER_CONFIG_FILE)
3749#include MBEDTLS_USER_CONFIG_FILE
3750#endif
3751
3752//#include "check_config.h"
3753
3754#endif /* MBEDTLS_CONFIG_H_TY */