TuyaOS
tuya_tls_config_psk_only.h
1
10/*
11 * Copyright (C) 2006-2018, ARM Limited, All Rights Reserved
12 * SPDX-License-Identifier: Apache-2.0
13 *
14 * Licensed under the Apache License, Version 2.0 (the "License"); you may
15 * not use this file except in compliance with the License.
16 * You may obtain a copy of the License at
17 *
18 * http://www.apache.org/licenses/LICENSE-2.0
19 *
20 * Unless required by applicable law or agreed to in writing, software
21 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23 * See the License for the specific language governing permissions and
24 * limitations under the License.
25 *
26 * This file is part of mbed TLS (https://tls.mbed.org)
27 */
28
29#ifndef MBEDTLS_CONFIG_H_TY_PSK_ONLY
30#define MBEDTLS_CONFIG_H_TY_PSK_ONLY
31
32
33#define TUYA_TLS_DYNAMIC_MEMORY_ALLOCATION 1 //开启TLS动态内存
34//#define TLS_SESSION 1 //开启TLS_SESSION
35#define TLS_MEM_DEBUG 0 //开启TLS内存调试
36#define TUYA_TLS_DEBUG_THRDSHOLD 5 //TLS 调试等级
37//#define TUYA_PSK_STRONG 1 //PSK升级版本
38//#define MBEDTLS_DEBUG_C 1
39
40#include "tuya_cloud_types.h"
41
42extern int __tuya_tls_nv_seed_write(unsigned char *buf, size_t buf_len);
43extern int __tuya_tls_nv_seed_read(unsigned char *buf, size_t buf_len);
44
45#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
46#define _CRT_SECURE_NO_DEPRECATE 1
47#endif
48
74//#define MBEDTLS_HAVE_ASM
75
102//#define MBEDTLS_NO_UDBL_DIVISION
103
124//#define MBEDTLS_NO_64BIT_MULTIPLICATION
125
133//#define MBEDTLS_HAVE_SSE2
134
148//#define MBEDTLS_HAVE_TIME
149
169//#define MBEDTLS_HAVE_TIME_DATE
170
193#define MBEDTLS_PLATFORM_MEMORY
211//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
212
236//#define MBEDTLS_PLATFORM_EXIT_ALT
237//#define MBEDTLS_PLATFORM_TIME_ALT
238//#define MBEDTLS_PLATFORM_FPRINTF_ALT
239//#define MBEDTLS_PLATFORM_PRINTF_ALT
240//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
241//#define MBEDTLS_PLATFORM_NV_SEED_ALT
242//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
243
257#define MBEDTLS_DEPRECATED_WARNING
258
269//#define MBEDTLS_DEPRECATED_REMOVED
270
311//#define MBEDTLS_CHECK_PARAMS
312
313/* \} name SECTION: System support */
314
334//#define MBEDTLS_TIMING_ALT
335
362// #define MBEDTLS_AES_ALT
363
364//#define MBEDTLS_ARC4_ALT
365//#define MBEDTLS_ARIA_ALT
366//#define MBEDTLS_BLOWFISH_ALT
367//#define MBEDTLS_CAMELLIA_ALT
368//#define MBEDTLS_CCM_ALT
369//#define MBEDTLS_CHACHA20_ALT
370//#define MBEDTLS_CHACHAPOLY_ALT
371//#define MBEDTLS_CMAC_ALT
372//#define MBEDTLS_DES_ALT
373//#define MBEDTLS_DHM_ALT
374//#define MBEDTLS_ECJPAKE_ALT
375//#define MBEDTLS_GCM_ALT
376//#define MBEDTLS_NIST_KW_ALT
377//#define MBEDTLS_MD2_ALT
378//#define MBEDTLS_MD4_ALT
379//#define MBEDTLS_MD5_ALT
380//#define MBEDTLS_POLY1305_ALT
381//#define MBEDTLS_RIPEMD160_ALT
382//#define MBEDTLS_RSA_ALT
383//#define MBEDTLS_SHA1_ALT
384//#define MBEDTLS_SHA256_ALT
385//#define MBEDTLS_SHA512_ALT
386//#define MBEDTLS_XTEA_ALT
387
388/*
389 * When replacing the elliptic curve module, pleace consider, that it is
390 * implemented with two .c files:
391 * - ecp.c
392 * - ecp_curves.c
393 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
394 * macros as described above. The only difference is that you have to make sure
395 * that you provide functionality for both .c files.
396 */
397//#define MBEDTLS_ECP_ALT
398
434//#define MBEDTLS_MD2_PROCESS_ALT
435//#define MBEDTLS_MD4_PROCESS_ALT
436//#define MBEDTLS_MD5_PROCESS_ALT
437//#define MBEDTLS_RIPEMD160_PROCESS_ALT
438//#define MBEDTLS_SHA1_PROCESS_ALT
439//#define MBEDTLS_SHA256_PROCESS_ALT
440//#define MBEDTLS_SHA512_PROCESS_ALT
441//#define MBEDTLS_DES_SETKEY_ALT
442//#define MBEDTLS_DES_CRYPT_ECB_ALT
443//#define MBEDTLS_DES3_CRYPT_ECB_ALT
444//#define MBEDTLS_AES_SETKEY_ENC_ALT
445//#define MBEDTLS_AES_SETKEY_DEC_ALT
446//#define MBEDTLS_AES_ENCRYPT_ALT
447//#define MBEDTLS_AES_DECRYPT_ALT
448//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
449//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
450//#define MBEDTLS_ECDSA_VERIFY_ALT
451//#define MBEDTLS_ECDSA_SIGN_ALT
452//#define MBEDTLS_ECDSA_GENKEY_ALT
453
494/* Required for all the functions in this section */
495//#define MBEDTLS_ECP_INTERNAL_ALT
496/* Support for Weierstrass curves with Jacobi representation */
497//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
498//#define MBEDTLS_ECP_ADD_MIXED_ALT
499//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
500//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
501//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
502/* Support for curves with Montgomery arithmetic */
503//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
504//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
505//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
506
522//#define MBEDTLS_TEST_NULL_ENTROPY
523
535//#define MBEDTLS_ENTROPY_HARDWARE_ALT
536
555//#define MBEDTLS_AES_ROM_TABLES
556
577#define MBEDTLS_AES_FEWER_TABLES
578
586//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
587
593#define MBEDTLS_CIPHER_MODE_CBC
594
600//#define MBEDTLS_CIPHER_MODE_CFB
601
607#define MBEDTLS_CIPHER_MODE_CTR
608
614//#define MBEDTLS_CIPHER_MODE_OFB
615
621//#define MBEDTLS_CIPHER_MODE_XTS
622
654//#define MBEDTLS_CIPHER_NULL_CIPHER
655
667#define MBEDTLS_CIPHER_PADDING_PKCS7
668#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
669#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
670#define MBEDTLS_CIPHER_PADDING_ZEROS
671
688//#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
689
701#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
702
721//#define MBEDTLS_REMOVE_3DES_CIPHERSUITES
722
731//#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
732//#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
733#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
734//#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
735//#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
736//#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
737//#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
738//#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
739//#define MBEDTLS_ECP_DP_BP256R1_ENABLED
740//#define MBEDTLS_ECP_DP_BP384R1_ENABLED
741//#define MBEDTLS_ECP_DP_BP512R1_ENABLED
742//#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
743//#define MBEDTLS_ECP_DP_CURVE448_ENABLED
744
754#define MBEDTLS_ECP_NIST_OPTIM
755
778//#define MBEDTLS_ECP_RESTARTABLE
779
792//#define MBEDTLS_ECDSA_DETERMINISTIC
793
814#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
815
845//#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
846
865//#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
866
890//#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
891
918//#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
919
951//#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
952
976//#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
977
1000//#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1001
1024//#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1025
1048//#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1049
1067//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1068
1081//#define MBEDTLS_PK_PARSE_EC_EXTENDED
1082
1096//#define MBEDTLS_ERROR_STRERROR_DUMMY
1097
1105//#define MBEDTLS_GENPRIME
1106
1112//#define MBEDTLS_FS_IO
1113
1125// #define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1126
1136#define MBEDTLS_NO_PLATFORM_ENTROPY
1151//#define MBEDTLS_ENTROPY_FORCE_SHA256
1152
1179#define MBEDTLS_ENTROPY_NV_SEED
1180
1192//#define MBEDTLS_MEMORY_DEBUG
1193
1204//#define MBEDTLS_MEMORY_BACKTRACE
1205
1213//#define MBEDTLS_PK_RSA_ALT_SUPPORT
1214
1224//#define MBEDTLS_PKCS1_V15
1225
1235//#define MBEDTLS_PKCS1_V21
1236
1246//#define MBEDTLS_RSA_NO_CRT
1247
1253//#define MBEDTLS_SELF_TEST
1254
1269//#define MBEDTLS_SHA256_SMALLER
1270
1283#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1284
1294//#define MBEDTLS_SSL_ASYNC_PRIVATE
1295
1310//#define MBEDTLS_SSL_DEBUG_ALL
1311
1328#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1329
1346#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1347
1363//#define MBEDTLS_SSL_FALLBACK_SCSV
1364
1373//#define MBEDTLS_SSL_HW_RECORD_ACCEL
1374
1385//#define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1386
1407//#define MBEDTLS_SSL_RENEGOTIATION
1408
1417//#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1418
1427//#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1428
1436#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1437
1448//#define MBEDTLS_SSL_PROTO_SSL3
1449
1460//#define MBEDTLS_SSL_PROTO_TLS1
1461
1472//#define MBEDTLS_SSL_PROTO_TLS1_1
1473
1484#define MBEDTLS_SSL_PROTO_TLS1_2
1485
1499//#define MBEDTLS_SSL_PROTO_DTLS
1500
1508//#define MBEDTLS_SSL_ALPN
1509
1523//#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1524
1541//#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1542
1557//#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1558
1568//#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1569
1582#if defined(TLS_SESSION) && (TLS_SESSION == 1)
1583#define MBEDTLS_SSL_SESSION_TICKETS
1584#endif
1585
1594//#define MBEDTLS_SSL_EXPORT_KEYS
1595
1605//#define MBEDTLS_SSL_SERVER_NAME_INDICATION
1606
1614//#define MBEDTLS_SSL_TRUNCATED_HMAC
1615
1638//#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1639
1649#define MBEDTLS_THREADING_ALT
1650
1660//#define MBEDTLS_THREADING_PTHREAD
1661
1673//#define MBEDTLS_VERSION_FEATURES
1674
1683//#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1684
1695//#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1696
1709//#define MBEDTLS_X509_CHECK_KEY_USAGE
1710
1722//#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1723
1732//#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
1733
1757//#define MBEDTLS_ZLIB_SUPPORT
1758/* \} name SECTION: mbed TLS feature support */
1759
1779//#define MBEDTLS_AESNI_C
1780
1854#define MBEDTLS_AES_C
1855
1882//#define MBEDTLS_ARC4_C
1883
1896//#define MBEDTLS_ASN1_PARSE_C
1897
1910//#define MBEDTLS_ASN1_WRITE_C
1911
1922#define MBEDTLS_BASE64_C
1923
1939#define MBEDTLS_BIGNUM_C
1940
1948//#define MBEDTLS_BLOWFISH_C
1949
2003//#define MBEDTLS_CAMELLIA_C
2004
2055//#define MBEDTLS_ARIA_C
2056
2069#define MBEDTLS_CCM_C
2070
2081//#define MBEDTLS_CERTS_C
2082
2090//#define MBEDTLS_CHACHA20_C
2091
2101//#define MBEDTLS_CHACHAPOLY_C
2102
2113#define MBEDTLS_CIPHER_C
2114
2126//#define MBEDTLS_CMAC_C
2127
2143#define MBEDTLS_CTR_DRBG_C
2144
2157//#define MBEDTLS_DEBUG_C
2158
2186//#define MBEDTLS_DES_C
2187
2207//#define MBEDTLS_DHM_C
2208
2224#define MBEDTLS_ECDH_C
2225
2239//#define MBEDTLS_ECDSA_C
2240
2258//#define MBEDTLS_ECJPAKE_C
2259
2272#define MBEDTLS_ECP_C
2273
2286#define MBEDTLS_ENTROPY_C
2297//#define MBEDTLS_ERROR_C
2298
2311#define MBEDTLS_GCM_C
2312
2334//#define MBEDTLS_HAVEGE_C
2335
2349#define MBEDTLS_HKDF_C
2350
2363//#define MBEDTLS_HMAC_DRBG_C
2364
2376//#define MBEDTLS_NIST_KW_C
2377
2388#define MBEDTLS_MD_C
2389
2405//#define MBEDTLS_MD2_C
2406
2422//#define MBEDTLS_MD4_C
2423
2444#define MBEDTLS_MD5_C
2445
2460//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2461
2479//#define MBEDTLS_NET_C
2501//#define MBEDTLS_OID_C
2502
2515//#define MBEDTLS_PADLOCK_C
2516
2533//#define MBEDTLS_PEM_PARSE_C
2534
2549//#define MBEDTLS_PEM_WRITE_C
2550
2565//#define MBEDTLS_PK_C
2566
2580//#define MBEDTLS_PK_PARSE_C
2581
2594//#define MBEDTLS_PK_WRITE_C
2595
2607#define MBEDTLS_PKCS5_C
2608
2622//#define MBEDTLS_PKCS11_C
2623
2638//#define MBEDTLS_PKCS12_C
2639
2658#define MBEDTLS_PLATFORM_C
2659
2668//#define MBEDTLS_POLY1305_C
2669
2679//#define MBEDTLS_RIPEMD160_C
2680
2698//#define MBEDTLS_RSA_C
2699
2720#define MBEDTLS_SHA1_C
2721
2737#define MBEDTLS_SHA256_C
2738
2752//#define MBEDTLS_SHA512_C
2753
2764//#define MBEDTLS_SSL_CACHE_C
2765
2774//#define MBEDTLS_SSL_COOKIE_C
2775
2786//#define MBEDTLS_SSL_TICKET_C
2787
2800#define MBEDTLS_SSL_CLI_C
2801
2814//#define MBEDTLS_SSL_SRV_C
2829#define MBEDTLS_SSL_TLS_C
2830
2851#define MBEDTLS_THREADING_C
2852
2874//#define MBEDTLS_TIMING_C
2875
2885//#define MBEDTLS_VERSION_C
2886
2902//#define MBEDTLS_X509_USE_C
2903
2918//#define MBEDTLS_X509_CRT_PARSE_C
2919
2932//#define MBEDTLS_X509_CRL_PARSE_C
2933
2946//#define MBEDTLS_X509_CSR_PARSE_C
2947
2959//#define MBEDTLS_X509_CREATE_C
2960
2972//#define MBEDTLS_X509_CRT_WRITE_C
2973
2985//#define MBEDTLS_X509_CSR_WRITE_C
2986
2995//#define MBEDTLS_XTEA_C
2996
2997/* \} name SECTION: mbed TLS modules */
2998
3014/* MPI / BIGNUM options */
3015//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum windows size used. */
3016//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3017
3018/* CTR_DRBG options */
3019//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3020//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3021//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3022//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3023//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3024//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY /**< Use 128-bit key for CTR_DRBG - may reduce security (see ctr_drbg.h) */
3025
3026/* HMAC_DRBG options */
3027//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3028//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3029//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3030//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3031
3032/* ECP options */
3033//#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3034//#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3035//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3036
3037/* Entropy options */
3038//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3039//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3040//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3041
3042/* Memory buffer allocator options */
3043//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3044
3045/* Platform options */
3046//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3047//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3048//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3049//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3050//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3051//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3052//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3053/* Note: your snprintf must correclty zero-terminate the buffer! */
3054//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3055//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3056//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3057//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3058//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3059//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3060
3061/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3062/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3063//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3064//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3065//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3066//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3067//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3068//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3069//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3070/* Note: your snprintf must correclty zero-terminate the buffer! */
3071//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3072#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO __tuya_tls_nv_seed_read
3073#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO __tuya_tls_nv_seed_write
3103//#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3104
3105/* SSL Cache options */
3106//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3107//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3108
3109/* SSL options */
3110
3135#if OPERATING_SYSTEM <= SYSTEM_SMALL_MEMORY_END
3136#define MBEDTLS_SSL_MAX_CONTENT_LEN 1024
3137#else
3138#define MBEDTLS_SSL_MAX_CONTENT_LEN 16384
3139#endif
3163//#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3164#if defined(TUYA_TLS_DYNAMIC_MEMORY_ALLOCATION)
3165#define MBEDTLS_SSL_IN_CONTENT_LEN (ssl->in_content_len)
3166#define MBEDTLS_SSL_OUT_CONTENT_LEN (ssl->out_content_len)
3167#endif
3168
3191//#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3192
3208//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3209
3210//#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3211//#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3212//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3213
3226//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3227
3228/* X509 options */
3229//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3230//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3231
3244// #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3245
3261//#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3262
3281//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3282
3300//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3301
3302/* \} name SECTION: Customisation configuration options */
3303
3304/* Target and application specific configurations */
3305//#define YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE "mbedtls/target_config.h"
3306
3307#if defined(TARGET_LIKE_MBED) && defined(YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE)
3308#include YOTTA_CFG_MBEDTLS_TARGET_CONFIG_FILE
3309#endif
3310
3311/*
3312 * Allow user to override any previous default.
3313 *
3314 * Use two macro names for that, as:
3315 * - with yotta the prefix YOTTA_CFG_ is forced
3316 * - without yotta is looks weird to have a YOTTA prefix.
3317 */
3318#if defined(YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE)
3319#include YOTTA_CFG_MBEDTLS_USER_CONFIG_FILE
3320#elif defined(MBEDTLS_USER_CONFIG_FILE)
3321#include MBEDTLS_USER_CONFIG_FILE
3322#endif
3323
3324#endif /* MBEDTLS_CONFIG_H_TY_PSK_ONLY */