TuyaOS
tuya_tls_config.h
1
10/*
11 * Copyright The Mbed TLS Contributors
12 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
13 *
14 * This file is provided under the Apache License 2.0, or the
15 * GNU General Public License v2.0 or later.
16 *
17 * **********
18 * Apache License 2.0:
19 *
20 * Licensed under the Apache License, Version 2.0 (the "License"); you may
21 * not use this file except in compliance with the License.
22 * You may obtain a copy of the License at
23 *
24 * http://www.apache.org/licenses/LICENSE-2.0
25 *
26 * Unless required by applicable law or agreed to in writing, software
27 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
28 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
29 * See the License for the specific language governing permissions and
30 * limitations under the License.
31 *
32 * **********
33 *
34 * **********
35 * GNU General Public License v2.0 or later:
36 *
37 * This program is free software; you can redistribute it and/or modify
38 * it under the terms of the GNU General Public License as published by
39 * the Free Software Foundation; either version 2 of the License, or
40 * (at your option) any later version.
41 *
42 * This program is distributed in the hope that it will be useful,
43 * but WITHOUT ANY WARRANTY; without even the implied warranty of
44 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
45 * GNU General Public License for more details.
46 *
47 * You should have received a copy of the GNU General Public License along
48 * with this program; if not, write to the Free Software Foundation, Inc.,
49 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
50 *
51 * **********
52 */
53
54#ifndef MBEDTLS_CONFIG_H_TY
55#define MBEDTLS_CONFIG_H_TY
56
57#define TUYA_TLS_DYNAMIC_MEMORY_ALLOCATION 1 //开启TLS动态内存
58
59#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
60#define _CRT_SECURE_NO_DEPRECATE 1
61#endif
62
88//#define MBEDTLS_HAVE_ASM
89
116//#define MBEDTLS_NO_UDBL_DIVISION
117
138//#define MBEDTLS_NO_64BIT_MULTIPLICATION
139
147//#define MBEDTLS_HAVE_SSE2
148
162#ifdef ENABLE_MBEDTLS_HAVE_TIME
163#define MBEDTLS_HAVE_TIME
164#else
165#undef MBEDTLS_HAVE_TIME
166#endif
167
187#ifdef ENABLE_MBEDTLS_HAVE_TIME_DATE
188#define MBEDTLS_HAVE_TIME_DATE
189#else
190#undef MBEDTLS_HAVE_TIME_DATE
191#endif
214#define MBEDTLS_PLATFORM_MEMORY
232//#define MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
233
257//#define MBEDTLS_PLATFORM_EXIT_ALT
258//#define MBEDTLS_PLATFORM_TIME_ALT
259//#define MBEDTLS_PLATFORM_FPRINTF_ALT
260//#define MBEDTLS_PLATFORM_PRINTF_ALT
261//#define MBEDTLS_PLATFORM_SNPRINTF_ALT
262//#define MBEDTLS_PLATFORM_NV_SEED_ALT
263//#define MBEDTLS_PLATFORM_SETUP_TEARDOWN_ALT
264
278#define MBEDTLS_DEPRECATED_WARNING
279
290//#define MBEDTLS_DEPRECATED_REMOVED
291
342//#define MBEDTLS_CHECK_PARAMS
343
356//#define MBEDTLS_CHECK_PARAMS_ASSERT
357
358/* \} name SECTION: System support */
359
379//#define MBEDTLS_TIMING_ALT
380
406//#define MBEDTLS_AES_ALT
407//#define MBEDTLS_ARC4_ALT
408//#define MBEDTLS_ARIA_ALT
409//#define MBEDTLS_BLOWFISH_ALT
410//#define MBEDTLS_CAMELLIA_ALT
411//#define MBEDTLS_CCM_ALT
412//#define MBEDTLS_CHACHA20_ALT
413//#define MBEDTLS_CHACHAPOLY_ALT
414//#define MBEDTLS_CMAC_ALT
415//#define MBEDTLS_DES_ALT
416//#define MBEDTLS_DHM_ALT
417//#define MBEDTLS_ECJPAKE_ALT
418//#define MBEDTLS_GCM_ALT
419//#define MBEDTLS_NIST_KW_ALT
420//#define MBEDTLS_MD2_ALT
421//#define MBEDTLS_MD4_ALT
422//#define MBEDTLS_MD5_ALT
423//#define MBEDTLS_POLY1305_ALT
424//#define MBEDTLS_RIPEMD160_ALT
425//#define MBEDTLS_RSA_ALT
426//#define MBEDTLS_SHA1_ALT
427//#define MBEDTLS_SHA256_ALT
428//#define MBEDTLS_SHA512_ALT
429//#define MBEDTLS_XTEA_ALT
430
431/*
432 * When replacing the elliptic curve module, pleace consider, that it is
433 * implemented with two .c files:
434 * - ecp.c
435 * - ecp_curves.c
436 * You can replace them very much like all the other MBEDTLS__MODULE_NAME__ALT
437 * macros as described above. The only difference is that you have to make sure
438 * that you provide functionality for both .c files.
439 */
440//#define MBEDTLS_ECP_ALT
441
487//#define MBEDTLS_MD2_PROCESS_ALT
488//#define MBEDTLS_MD4_PROCESS_ALT
489//#define MBEDTLS_MD5_PROCESS_ALT
490//#define MBEDTLS_RIPEMD160_PROCESS_ALT
491//#define MBEDTLS_SHA1_PROCESS_ALT
492//#define MBEDTLS_SHA256_PROCESS_ALT
493//#define MBEDTLS_SHA512_PROCESS_ALT
494//#define MBEDTLS_DES_SETKEY_ALT
495//#define MBEDTLS_DES_CRYPT_ECB_ALT
496//#define MBEDTLS_DES3_CRYPT_ECB_ALT
497//#define MBEDTLS_AES_SETKEY_ENC_ALT
498//#define MBEDTLS_AES_SETKEY_DEC_ALT
499//#define MBEDTLS_AES_ENCRYPT_ALT
500//#define MBEDTLS_AES_DECRYPT_ALT
501//#define MBEDTLS_ECDH_GEN_PUBLIC_ALT
502//#define MBEDTLS_ECDH_COMPUTE_SHARED_ALT
503//#define MBEDTLS_ECDSA_VERIFY_ALT
504//#define MBEDTLS_ECDSA_SIGN_ALT
505//#define MBEDTLS_ECDSA_GENKEY_ALT
506
547/* Required for all the functions in this section */
548//#define MBEDTLS_ECP_INTERNAL_ALT
549/* Support for Weierstrass curves with Jacobi representation */
550//#define MBEDTLS_ECP_RANDOMIZE_JAC_ALT
551//#define MBEDTLS_ECP_ADD_MIXED_ALT
552//#define MBEDTLS_ECP_DOUBLE_JAC_ALT
553//#define MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT
554//#define MBEDTLS_ECP_NORMALIZE_JAC_ALT
555/* Support for curves with Montgomery arithmetic */
556//#define MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT
557//#define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
558//#define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
559
575//#define MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
576
594//#define MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
595
611//#define MBEDTLS_TEST_NULL_ENTROPY
612
624//#define MBEDTLS_ENTROPY_HARDWARE_ALT
625
644//#define MBEDTLS_AES_ROM_TABLES
645
666//#define MBEDTLS_AES_FEWER_TABLES
667
675//#define MBEDTLS_CAMELLIA_SMALL_MEMORY
676
682#define MBEDTLS_CIPHER_MODE_CBC
683
689#define MBEDTLS_CIPHER_MODE_CFB
690
696#define MBEDTLS_CIPHER_MODE_CTR
697
703#define MBEDTLS_CIPHER_MODE_OFB
704
710#define MBEDTLS_CIPHER_MODE_XTS
711
743//#define MBEDTLS_CIPHER_NULL_CIPHER
744
756#define MBEDTLS_CIPHER_PADDING_PKCS7
757#define MBEDTLS_CIPHER_PADDING_ONE_AND_ZEROS
758#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
759#define MBEDTLS_CIPHER_PADDING_ZEROS
760
766//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
767
784//#define MBEDTLS_ENABLE_WEAK_CIPHERSUITES
785
797#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
798
817//#define MBEDTLS_REMOVE_3DES_CIPHERSUITES
818
827#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192R1_ENABLED
828#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
829#else
830#undef MBEDTLS_ECP_DP_SECP192R1_ENABLED
831#endif
832
833#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224R1_ENABLED
834#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
835#else
836#undef MBEDTLS_ECP_DP_SECP224R1_ENABLED
837#endif
838
839#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256R1_ENABLED
840#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
841#else
842#undef MBEDTLS_ECP_DP_SECP256R1_ENABLED
843#endif
844
845#ifdef ENABLE_MBEDTLS_ECP_DP_SECP384R1_ENABLED
846#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
847#else
848#undef MBEDTLS_ECP_DP_SECP384R1_ENABLED
849#endif
850
851#ifdef ENABLE_MBEDTLS_ECP_DP_SECP521R1_ENABLED
852#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
853#else
854#undef MBEDTLS_ECP_DP_SECP521R1_ENABLED
855#endif
856
857#ifdef ENABLE_MBEDTLS_ECP_DP_SECP192K1_ENABLED
858#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
859#else
860#undef MBEDTLS_ECP_DP_SECP192K1_ENABLED
861#endif
862
863#ifdef ENABLE_MBEDTLS_ECP_DP_SECP224K1_ENABLED
864#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
865#else
866#undef MBEDTLS_ECP_DP_SECP224K1_ENABLED
867#endif
868
869#ifdef ENABLE_MBEDTLS_ECP_DP_SECP256K1_ENABLED
870#define MBEDTLS_ECP_DP_SECP256K1_ENABLED
871#else
872#undef MBEDTLS_ECP_DP_SECP256K1_ENABLED
873#endif
874
875#ifdef ENABLE_MBEDTLS_ECP_DP_BP256R1_ENABLED
876#define MBEDTLS_ECP_DP_BP256R1_ENABLED
877#else
878#undef MBEDTLS_ECP_DP_BP256R1_ENABLED
879#endif
880
881#ifdef ENABLE_MBEDTLS_ECP_DP_BP384R1_ENABLED
882#define MBEDTLS_ECP_DP_BP384R1_ENABLED
883#else
884#undef MBEDTLS_ECP_DP_BP384R1_ENABLED
885#endif
886
887#ifdef ENABLE_MBEDTLS_ECP_DP_BP512R1_ENABLED
888#define MBEDTLS_ECP_DP_BP512R1_ENABLED
889#else
890#undef MBEDTLS_ECP_DP_BP512R1_ENABLED
891#endif
892
893#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE25519_ENABLED
894#define MBEDTLS_ECP_DP_CURVE25519_ENABLED
895#else
896#undef MBEDTLS_ECP_DP_CURVE25519_ENABLED
897#endif
898
899#ifdef ENABLE_MBEDTLS_ECP_DP_CURVE448_ENABLED
900#define MBEDTLS_ECP_DP_CURVE448_ENABLED
901#else
902#undef MBEDTLS_ECP_DP_CURVE448_ENABLED
903#endif
904
914#ifdef ENABLE_MBEDTLS_ECP_NIST_OPTIM
915#define MBEDTLS_ECP_NIST_OPTIM
916#else
917#undef MBEDTLS_ECP_NIST_OPTIM
918#endif
939//#define MBEDTLS_ECP_NO_INTERNAL_RNG
940
963//#define MBEDTLS_ECP_RESTARTABLE
964
977//#define MBEDTLS_ECDSA_DETERMINISTIC
978
999#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_PSK
1000#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
1001#else
1002#undef MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
1003#endif
1004
1034#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_PSK
1035#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1036#else
1037#undef MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
1038#endif
1039
1058#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_PSK
1059#define MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1060#else
1061#undef MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1062#endif
1063
1087#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA_PSK
1088#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1089#else
1090#undef MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
1091#endif
1092
1119#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_RSA
1120#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1121#else
1122#undef MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
1123#endif
1124
1156#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_DHE_RSA
1157#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1158#else
1159#undef MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
1160#endif
1161
1185#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_RSA
1186#define MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1187#else
1188#undef MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
1189#endif
1190
1213#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA
1214#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1215#else
1216#undef MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
1217#endif
1218
1241#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA
1242#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1243#else
1244#undef MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
1245#endif
1246
1269#ifdef ENABLE_MBEDTLS_KEY_EXCHANGE_ECDH_RSA
1270#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1271#else
1272#undef MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
1273#endif
1274
1292//#define MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
1293
1306#define MBEDTLS_PK_PARSE_EC_EXTENDED
1307
1321#define MBEDTLS_ERROR_STRERROR_DUMMY
1322
1330#ifdef ENABLE_MBEDTLS_GENPRIME
1331#define MBEDTLS_GENPRIME
1332#else
1333#undef MBEDTLS_GENPRIME
1334#endif
1335
1341#ifdef ENABLE_MBEDTLS_FS_IO
1342#define MBEDTLS_FS_IO
1343#else
1344#undef MBEDTLS_FS_IO
1345#endif
1357//#define MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
1358
1368#define MBEDTLS_NO_PLATFORM_ENTROPY
1383//#define MBEDTLS_ENTROPY_FORCE_SHA256
1384
1411#define MBEDTLS_ENTROPY_NV_SEED
1412
1424//#define MBEDTLS_MEMORY_DEBUG
1425
1436//#define MBEDTLS_MEMORY_BACKTRACE
1437
1445// #define MBEDTLS_PK_RSA_ALT_SUPPORT
1446
1456#ifdef ENABLE_MBEDTLS_RSA_C
1457#define MBEDTLS_PKCS1_V15
1458#else
1459#undef MBEDTLS_PKCS1_V15
1460#endif
1470#ifdef ENABLE_MBEDTLS_RSA_C
1471#define MBEDTLS_PKCS1_V21
1472#else
1473#undef MBEDTLS_PKCS1_V21
1474#endif
1484//#define MBEDTLS_RSA_NO_CRT
1485
1491// #define MBEDTLS_SELF_TEST
1492
1507//#define MBEDTLS_SHA256_SMALLER
1508
1521#define MBEDTLS_SSL_ALL_ALERT_MESSAGES
1522
1532//#define MBEDTLS_SSL_ASYNC_PRIVATE
1533
1548//#define MBEDTLS_SSL_DEBUG_ALL
1549
1566#define MBEDTLS_SSL_ENCRYPT_THEN_MAC
1567
1584#define MBEDTLS_SSL_EXTENDED_MASTER_SECRET
1585
1601//#define MBEDTLS_SSL_FALLBACK_SCSV
1602
1611//#define MBEDTLS_SSL_HW_RECORD_ACCEL
1612
1623//#define MBEDTLS_SSL_CBC_RECORD_SPLITTING
1624
1645//#define MBEDTLS_SSL_RENEGOTIATION
1646
1655//#define MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO
1656
1665//#define MBEDTLS_SSL_SRV_RESPECT_CLIENT_PREFERENCE
1666
1674#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
1675
1686//#define MBEDTLS_SSL_PROTO_SSL3
1687
1698#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1
1699#define MBEDTLS_SSL_PROTO_TLS1
1700#else
1701#undef MBEDTLS_SSL_PROTO_TLS1
1702#endif
1703
1714#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1_1
1715#define MBEDTLS_SSL_PROTO_TLS1_1
1716#else
1717#undef MBEDTLS_SSL_PROTO_TLS1_1
1718#endif
1719
1730#ifdef ENABLE_MBEDTLS_SSL_PROTO_TLS1_2
1731#define MBEDTLS_SSL_PROTO_TLS1_2
1732#else
1733#undef MBEDTLS_SSL_PROTO_TLS1_2
1734#endif
1748//#define MBEDTLS_SSL_PROTO_DTLS
1749
1757//#define MBEDTLS_SSL_ALPN
1758
1772//#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
1773
1790//#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
1791
1806//#define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE
1807
1817//#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
1818
1831#ifdef ENABLE_MBEDTLS_CLIENT_SSL_SESSION_TICKETS
1832#define MBEDTLS_SSL_SESSION_TICKETS
1833#else
1834#undef MBEDTLS_SSL_SESSION_TICKETS
1835#endif
1836
1845//#define MBEDTLS_SSL_EXPORT_KEYS
1846
1856//#define MBEDTLS_SSL_SERVER_NAME_INDICATION
1857
1865//#define MBEDTLS_SSL_TRUNCATED_HMAC
1866
1889//#define MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT
1890
1906//#define MBEDTLS_TEST_HOOKS
1907
1917#define MBEDTLS_THREADING_ALT
1918
1928//#define MBEDTLS_THREADING_PTHREAD
1929
1941#define MBEDTLS_VERSION_FEATURES
1942
1951//#define MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
1952
1963//#define MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
1964
1977#ifdef ENABLE_MBEDTLS_X509_CRT
1978#define MBEDTLS_X509_CHECK_KEY_USAGE
1979#else
1980#undef MBEDTLS_X509_CHECK_KEY_USAGE
1981#endif
1982
1994#ifdef ENABLE_MBEDTLS_X509_CRT
1995#define MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1996#else
1997#undef MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE
1998#endif
2007#ifdef ENABLE_MBEDTLS_X509_CRT
2008#define MBEDTLS_X509_RSASSA_PSS_SUPPORT
2009#else
2010#undef MBEDTLS_X509_RSASSA_PSS_SUPPORT
2011#endif
2035//#define MBEDTLS_ZLIB_SUPPORT
2036/* \} name SECTION: mbed TLS feature support */
2037
2057//#define MBEDTLS_AESNI_C
2058
2132#ifdef ENABLE_MBEDTLS_AES_C
2133#define MBEDTLS_AES_C
2134#else
2135#undef MBEDTLS_AES_C
2136#endif
2137
2164#ifdef ENABLE_MBEDTLS_RC4_ENABLED
2165#define MBEDTLS_ARC4_C
2166#undef MBEDTLS_REMOVE_ARC4_CIPHERSUITES
2167#elif defined ENABLE_MBEDTLS_RC4_ENABLED_NO_DEFAULT
2168#define MBEDTLS_ARC4_C
2169#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
2170#else
2171#undef MBEDTLS_ARC4_C
2172#define MBEDTLS_REMOVE_ARC4_CIPHERSUITES
2173#endif
2174
2187#define MBEDTLS_ASN1_PARSE_C
2188
2201#define MBEDTLS_ASN1_WRITE_C
2202
2213#define MBEDTLS_BASE64_C
2214
2230#define MBEDTLS_BIGNUM_C
2231
2239#ifdef ENABLE_MBEDTLS_BLOWFISH_C
2240#define MBEDTLS_BLOWFISH_C
2241#else
2242#undef MBEDTLS_BLOWFISH_C
2243#endif
2244
2298#ifdef ENABLE_MBEDTLS_CAMELLIA_C
2299#define MBEDTLS_CAMELLIA_C
2300#else
2301#undef MBEDTLS_CAMELLIA_C
2302#endif
2303
2354//#define MBEDTLS_ARIA_C
2355
2368#ifdef ENABLE_MBEDTLS_CCM_C
2369#define MBEDTLS_CCM_C
2370#else
2371#undef MBEDTLS_CCM_C
2372#endif
2373
2384//#define MBEDTLS_CERTS_C
2385
2393#ifdef ENABLE_MBEDTLS_CHACHA20_C
2394#define MBEDTLS_CHACHA20_C
2395#else
2396#undef MBEDTLS_CHACHA20_C
2397#endif
2398
2408#ifdef ENABLE_MBEDTLS_CHACHAPOLY_C
2409#define MBEDTLS_CHACHAPOLY_C
2410#else
2411#undef MBEDTLS_CHACHAPOLY_C
2412#endif
2413
2424#define MBEDTLS_CIPHER_C
2425
2437#ifdef ENABLE_MBEDTLS_CMAC_C
2438#define MBEDTLS_CMAC_C
2439#else
2440#undef MBEDTLS_CMAC_C
2441#endif
2460#define MBEDTLS_CTR_DRBG_C
2461
2474#if ENABLE_MBEDTLS_DEBUG
2475#define MBEDTLS_DEBUG_C
2476#else
2477#undef MBEDTLS_DEBUG_C
2478#endif
2479
2507#ifdef ENABLE_MBEDTLS_DES_C
2508#define MBEDTLS_DES_C
2509#else
2510#undef MBEDTLS_DES_C
2511#endif
2512
2532#ifdef ENABLE_MBEDTLS_DHM_C
2533#define MBEDTLS_DHM_C
2534#else
2535#undef MBEDTLS_DHM_C
2536#endif
2537
2552#ifdef ENABLE_MBEDTLS_ECDH_C
2553#define MBEDTLS_ECDH_C
2554#else
2555#undef MBEDTLS_ECDH_C
2556#endif
2557
2571#ifdef ENABLE_MBEDTLS_ECDSA_C
2572#define MBEDTLS_ECDSA_C
2573#else
2574#undef MBEDTLS_ECDSA_C
2575#endif
2576
2594//#define MBEDTLS_ECJPAKE_C
2595
2608#ifdef ENABLE_MBEDTLS_ECP_C
2609#define MBEDTLS_ECP_C
2610#else
2611#undef MBEDTLS_ECP_C
2612#endif
2613
2626#define MBEDTLS_ENTROPY_C
2627
2638#define MBEDTLS_ERROR_C
2639
2652#ifdef ENABLE_MBEDTLS_GCM_C
2653#define MBEDTLS_GCM_C
2654#else
2655#undef MBEDTLS_GCM_C
2656#endif
2678//#define MBEDTLS_HAVEGE_C
2679
2693#define MBEDTLS_HKDF_C
2694
2707#ifdef ENABLE_MBEDTLS_HMAC_DRBG_C
2708#define MBEDTLS_HMAC_DRBG_C
2709#else
2710#undef MBEDTLS_HMAC_DRBG_C
2711#endif
2723//#define MBEDTLS_NIST_KW_C
2724
2735#define MBEDTLS_MD_C
2736
2752//#define MBEDTLS_MD2_C
2753
2769//#define MBEDTLS_MD4_C
2770
2791#define MBEDTLS_MD5_C
2792
2807//#define MBEDTLS_MEMORY_BUFFER_ALLOC_C
2808
2826#ifdef ENABLE_MBEDTLS_NET_C
2827#define MBEDTLS_NET_C
2828#else
2829#undef MBEDTLS_NET_C
2830#endif
2831
2853#define MBEDTLS_OID_C
2854
2867//#define MBEDTLS_PADLOCK_C
2868
2885#ifdef ENABLE_MBEDTLS_PEM_PARSE_C
2886#define MBEDTLS_PEM_PARSE_C
2887#else
2888#undef MBEDTLS_PEM_PARSE_C
2889#endif
2890
2905#ifdef ENABLE_MBEDTLS_PEM_WRITE_C
2906#define MBEDTLS_PEM_WRITE_C
2907#else
2908#undef MBEDTLS_PEM_WRITE_C
2909#endif
2910
2925#ifdef ENABLE_MBEDTLS_PK_C
2926#define MBEDTLS_PK_C
2927#else
2928#undef MBEDTLS_PK_C
2929#endif
2943#ifdef ENABLE_MBEDTLS_PK_C
2944#define MBEDTLS_PK_PARSE_C
2945#else
2946#undef MBEDTLS_PK_PARSE_C
2947#endif
2948
2961#ifdef ENABLE_MBEDTLS_PK_C
2962#define MBEDTLS_PK_WRITE_C
2963#else
2964#undef MBEDTLS_PK_WRITE_C
2965#endif
2977#define MBEDTLS_PKCS5_C
2978
2992//#define MBEDTLS_PKCS11_C
2993
3008#ifdef ENABLE_MBEDTLS_PK_C
3009#define MBEDTLS_PKCS12_C
3010#else
3011#undef MBEDTLS_PKCS12_C
3012#endif
3031#define MBEDTLS_PLATFORM_C
3032
3041#ifdef ENABLE_MBEDTLS_POLY1305_C
3042#define MBEDTLS_POLY1305_C
3043#else
3044#undef MBEDTLS_POLY1305_C
3045#endif
3046
3056#ifdef ENABLE_MBEDTLS_RIPEMD160_C
3057#define MBEDTLS_RIPEMD160_C
3058#else
3059#undef MBEDTLS_RIPEMD160_C
3060#endif
3061
3079#ifdef ENABLE_MBEDTLS_RSA_C
3080#define MBEDTLS_RSA_C
3081#else
3082#undef MBEDTLS_RSA_C
3083#endif
3084
3105#define MBEDTLS_SHA1_C
3106
3122#define MBEDTLS_SHA256_C
3123
3137#define MBEDTLS_SHA512_C
3138
3149//#define MBEDTLS_SSL_CACHE_C
3150
3159//#define MBEDTLS_SSL_COOKIE_C
3160
3171//#define MBEDTLS_SSL_TICKET_C
3172
3185#ifdef ENABLE_MBEDTLS_SSL_CLI_C
3186#define MBEDTLS_SSL_CLI_C
3187#else
3188#undef MBEDTLS_SSL_CLI_C
3189#endif
3190
3203#ifdef ENABLE_MBEDTLS_SSL_SRV_C
3204#define MBEDTLS_SSL_SRV_C
3205#else
3206#undef MBEDTLS_SSL_SRV_C
3207#endif
3208
3223#define MBEDTLS_SSL_TLS_C
3224
3245#define MBEDTLS_THREADING_C
3246
3268//#define MBEDTLS_TIMING_C
3269
3279#define MBEDTLS_VERSION_C
3280
3296#ifdef ENABLE_MBEDTLS_X509_CRT
3297#define MBEDTLS_X509_USE_C
3298#else
3299#undef MBEDTLS_X509_USE_C
3300#endif
3301
3316#ifdef ENABLE_MBEDTLS_X509_CRT
3317#define MBEDTLS_X509_CRT_PARSE_C
3318#else
3319#undef MBEDTLS_X509_CRT_PARSE_C
3320#endif
3333#ifdef ENABLE_MBEDTLS_X509_CRL_PARSE_C
3334#define MBEDTLS_X509_CRL_PARSE_C
3335#else
3336#undef MBEDTLS_X509_CRL_PARSE_C
3337#endif
3338
3351#ifdef ENABLE_MBEDTLS_X509_CSR_PARSE_C
3352#define MBEDTLS_X509_CSR_PARSE_C
3353#else
3354#undef MBEDTLS_X509_CSR_PARSE_C
3355#endif
3356
3368#ifdef ENABLE_MBEDTLS_X509_CRT
3369#define MBEDTLS_X509_CREATE_C
3370#else
3371#undef MBEDTLS_X509_CREATE_C
3372#endif
3384#ifdef ENABLE_MBEDTLS_X509_CRT
3385#define MBEDTLS_X509_CRT_WRITE_C
3386#else
3387#undef MBEDTLS_X509_CRT_WRITE_C
3388#endif
3389
3401#ifdef ENABLE_MBEDTLS_X509_CSR_WRITE_C
3402#define MBEDTLS_X509_CSR_WRITE_C
3403#else
3404#undef MBEDTLS_X509_CSR_WRITE_C
3405#endif
3406
3415#ifdef ENABLE_MBEDTLS_XTEA_C
3416#define MBEDTLS_XTEA_C
3417#else
3418#undef MBEDTLS_XTEA_C
3419#endif
3420
3421/* \} name SECTION: mbed TLS modules */
3422
3438/* MPI / BIGNUM options */
3439//#define MBEDTLS_MPI_WINDOW_SIZE 6 /**< Maximum window size used. */
3440//#define MBEDTLS_MPI_MAX_SIZE 1024 /**< Maximum number of bytes for usable MPIs. */
3441
3442/* CTR_DRBG options */
3443//#define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48 /**< Amount of entropy used per seed by default (48 with SHA-512, 32 with SHA-256) */
3444//#define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3445//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3446//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3447//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3448
3449/* HMAC_DRBG options */
3450//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
3451//#define MBEDTLS_HMAC_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
3452//#define MBEDTLS_HMAC_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
3453//#define MBEDTLS_HMAC_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
3454
3455/* ECP options */
3456//#define MBEDTLS_ECP_MAX_BITS 521 /**< Maximum bit size of groups */
3457//#define MBEDTLS_ECP_WINDOW_SIZE 6 /**< Maximum window size used */
3458//#define MBEDTLS_ECP_FIXED_POINT_OPTIM 1 /**< Enable fixed-point speed-up */
3459
3460/* Entropy options */
3461//#define MBEDTLS_ENTROPY_MAX_SOURCES 20 /**< Maximum number of sources supported */
3462//#define MBEDTLS_ENTROPY_MAX_GATHER 128 /**< Maximum amount requested from entropy sources */
3463//#define MBEDTLS_ENTROPY_MIN_HARDWARE 32 /**< Default minimum number of bytes required for the hardware entropy source mbedtls_hardware_poll() before entropy is released */
3464
3465/* Memory buffer allocator options */
3466//#define MBEDTLS_MEMORY_ALIGN_MULTIPLE 4 /**< Align on multiples of this value */
3467
3468/* Platform options */
3469//#define MBEDTLS_PLATFORM_STD_MEM_HDR <stdlib.h> /**< Header to include if MBEDTLS_PLATFORM_NO_STD_FUNCTIONS is defined. Don't define if no header is needed. */
3470//#define MBEDTLS_PLATFORM_STD_CALLOC calloc /**< Default allocator to use, can be undefined */
3471//#define MBEDTLS_PLATFORM_STD_FREE free /**< Default free to use, can be undefined */
3472//#define MBEDTLS_PLATFORM_STD_EXIT exit /**< Default exit to use, can be undefined */
3473//#define MBEDTLS_PLATFORM_STD_TIME time /**< Default time to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3474//#define MBEDTLS_PLATFORM_STD_FPRINTF fprintf /**< Default fprintf to use, can be undefined */
3475//#define MBEDTLS_PLATFORM_STD_PRINTF printf /**< Default printf to use, can be undefined */
3476/* Note: your snprintf must correctly zero-terminate the buffer! */
3477//#define MBEDTLS_PLATFORM_STD_SNPRINTF snprintf /**< Default snprintf to use, can be undefined */
3478//#define MBEDTLS_PLATFORM_STD_EXIT_SUCCESS 0 /**< Default exit value to use, can be undefined */
3479//#define MBEDTLS_PLATFORM_STD_EXIT_FAILURE 1 /**< Default exit value to use, can be undefined */
3480//#define MBEDTLS_PLATFORM_STD_NV_SEED_READ mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3481//#define MBEDTLS_PLATFORM_STD_NV_SEED_WRITE mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3482//#define MBEDTLS_PLATFORM_STD_NV_SEED_FILE "seedfile" /**< Seed file to read/write with default implementation */
3483
3484/* To Use Function Macros MBEDTLS_PLATFORM_C must be enabled */
3485/* MBEDTLS_PLATFORM_XXX_MACRO and MBEDTLS_PLATFORM_XXX_ALT cannot both be defined */
3486//#define MBEDTLS_PLATFORM_CALLOC_MACRO calloc /**< Default allocator macro to use, can be undefined */
3487//#define MBEDTLS_PLATFORM_FREE_MACRO free /**< Default free macro to use, can be undefined */
3488//#define MBEDTLS_PLATFORM_EXIT_MACRO exit /**< Default exit macro to use, can be undefined */
3489//#define MBEDTLS_PLATFORM_TIME_MACRO time /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3490//#define MBEDTLS_PLATFORM_TIME_TYPE_MACRO time_t /**< Default time macro to use, can be undefined. MBEDTLS_HAVE_TIME must be enabled */
3491//#define MBEDTLS_PLATFORM_FPRINTF_MACRO fprintf /**< Default fprintf macro to use, can be undefined */
3492//#define MBEDTLS_PLATFORM_PRINTF_MACRO printf /**< Default printf macro to use, can be undefined */
3493/* Note: your snprintf must correctly zero-terminate the buffer! */
3494//#define MBEDTLS_PLATFORM_SNPRINTF_MACRO snprintf /**< Default snprintf macro to use, can be undefined */
3495
3496#ifdef ENABLE_MBEDTLS_PLATFORM_NV_SEED
3497#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO __tuya_tls_nv_seed_read
3498#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO __tuya_tls_nv_seed_write
3499#endif
3500//#define MBEDTLS_PLATFORM_NV_SEED_READ_MACRO mbedtls_platform_std_nv_seed_read /**< Default nv_seed_read function to use, can be undefined */
3501//#define MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO mbedtls_platform_std_nv_seed_write /**< Default nv_seed_write function to use, can be undefined */
3502
3537//#define MBEDTLS_PARAM_FAILED( cond ) assert( cond )
3538
3539/* SSL Cache options */
3540//#define MBEDTLS_SSL_CACHE_DEFAULT_TIMEOUT 86400 /**< 1 day */
3541//#define MBEDTLS_SSL_CACHE_DEFAULT_MAX_ENTRIES 50 /**< Maximum entries in cache */
3542
3543/* SSL options */
3544
3569#ifdef ENABLE_MBEDTLS_SSL_MAX_CONTENT_LEN
3570#define MBEDTLS_SSL_MAX_CONTENT_LEN ENABLE_MBEDTLS_SSL_MAX_CONTENT_LEN
3571#endif
3572
3596//#define MBEDTLS_SSL_IN_CONTENT_LEN 16384
3597#if defined(TUYA_TLS_DYNAMIC_MEMORY_ALLOCATION)
3598#define MBEDTLS_SSL_IN_CONTENT_LEN (ssl->in_content_len)
3599#define MBEDTLS_SSL_OUT_CONTENT_LEN (ssl->out_content_len)
3600#endif
3601
3624//#define MBEDTLS_SSL_OUT_CONTENT_LEN 16384
3625
3641//#define MBEDTLS_SSL_DTLS_MAX_BUFFERING 32768
3642
3643//#define MBEDTLS_SSL_DEFAULT_TICKET_LIFETIME 86400 /**< Lifetime of session tickets (if enabled) */
3644//#define MBEDTLS_PSK_MAX_LEN 32 /**< Max size of TLS pre-shared keys, in bytes (default 256 bits) */
3645//#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
3646
3659//#define MBEDTLS_SSL_CIPHERSUITES MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
3660
3661/* X509 options */
3662//#define MBEDTLS_X509_MAX_INTERMEDIATE_CA 8 /**< Maximum number of intermediate CAs in a verification chain. */
3663//#define MBEDTLS_X509_MAX_FILE_PATH_LEN 512 /**< Maximum length of a path/filename string in bytes including the null terminator character ('\0'). */
3664
3677// #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES
3678
3694//#define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
3695
3714//#define MBEDTLS_PLATFORM_ZEROIZE_ALT
3715
3733//#define MBEDTLS_PLATFORM_GMTIME_R_ALT
3734
3735/* \} name SECTION: Customisation configuration options */
3736
3737/* Target and application specific configurations
3738 *
3739 * Allow user to override any previous default.
3740 *
3741 */
3742#if defined(MBEDTLS_USER_CONFIG_FILE)
3743#include MBEDTLS_USER_CONFIG_FILE
3744#endif
3745
3746//#include "check_config.h"
3747
3748#endif /* MBEDTLS_CONFIG_H_TY */