2009-01-03 21:22:43 +00:00
|
|
|
/**
|
|
|
|
* \file config.h
|
|
|
|
*
|
2011-01-06 12:28:03 +00:00
|
|
|
* \brief Configuration options (set of defines)
|
|
|
|
*
|
2012-09-25 21:55:46 +00:00
|
|
|
* Copyright (C) 2006-2012, Brainspark B.V.
|
2010-07-18 20:36:00 +00:00
|
|
|
*
|
|
|
|
* This file is part of PolarSSL (http://www.polarssl.org)
|
2010-07-18 10:13:04 +00:00
|
|
|
* Lead Maintainer: Paul Bakker <polarssl_maintainer at polarssl.org>
|
2010-07-18 20:36:00 +00:00
|
|
|
*
|
2009-07-28 17:23:11 +00:00
|
|
|
* All rights reserved.
|
2009-01-04 16:27:10 +00:00
|
|
|
*
|
|
|
|
* This program is free software; you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
|
|
* (at your option) any later version.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License along
|
|
|
|
* with this program; if not, write to the Free Software Foundation, Inc.,
|
|
|
|
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* This set of compile-time options may be used to enable
|
|
|
|
* or disable features selectively, and reduce the global
|
|
|
|
* memory footprint.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#ifndef POLARSSL_CONFIG_H
|
|
|
|
#define POLARSSL_CONFIG_H
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-11-18 14:26:47 +00:00
|
|
|
#if defined(_MSC_VER) && !defined(_CRT_SECURE_NO_DEPRECATE)
|
2009-01-03 21:22:43 +00:00
|
|
|
#define _CRT_SECURE_NO_DEPRECATE 1
|
|
|
|
#endif
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
2011-01-21 11:00:08 +00:00
|
|
|
* \name SECTION: System support
|
|
|
|
*
|
|
|
|
* This section sets system specific settings.
|
|
|
|
* \{
|
|
|
|
*/
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_HAVE_INT8
|
|
|
|
*
|
|
|
|
* The system uses 8-bit wide native integers.
|
2009-01-03 21:22:43 +00:00
|
|
|
*
|
2011-01-27 15:24:17 +00:00
|
|
|
* Uncomment if native integers are 8-bit wide.
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_HAVE_INT8
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_HAVE_INT16
|
|
|
|
*
|
|
|
|
* The system uses 16-bit wide native integers.
|
2009-01-03 21:22:43 +00:00
|
|
|
*
|
2011-01-27 15:24:17 +00:00
|
|
|
* Uncomment if native integers are 16-bit wide.
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_HAVE_INT16
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
2012-10-02 12:19:31 +00:00
|
|
|
* \def POLARSSL_HAVE_LONGLONG
|
2011-01-27 15:24:17 +00:00
|
|
|
*
|
2012-10-02 12:19:31 +00:00
|
|
|
* The compiler supports the 'long long' type.
|
|
|
|
* (Only used on 32-bit platforms)
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2012-10-02 12:19:31 +00:00
|
|
|
#define POLARSSL_HAVE_LONGLONG
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_HAVE_ASM
|
|
|
|
*
|
|
|
|
* The compiler has support for asm()
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Uncomment to enable the use of assembly code.
|
2009-04-19 21:17:55 +00:00
|
|
|
*
|
|
|
|
* Requires support for asm() in compiler.
|
|
|
|
*
|
|
|
|
* Used in:
|
|
|
|
* library/timing.c
|
|
|
|
* library/padlock.c
|
|
|
|
* include/polarssl/bn_mul.h
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_HAVE_ASM
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_HAVE_SSE2
|
|
|
|
*
|
2012-10-01 14:42:47 +00:00
|
|
|
* CPU supports SSE2 instruction set.
|
2011-01-27 15:24:17 +00:00
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Uncomment if the CPU supports SSE2 (IA-32 specific).
|
|
|
|
*
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_HAVE_SSE2
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2011-01-21 11:00:08 +00:00
|
|
|
/* \} name */
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
2011-01-21 11:00:08 +00:00
|
|
|
* \name SECTION: PolarSSL feature support
|
|
|
|
*
|
|
|
|
* This section sets support for features that are or are not needed
|
|
|
|
* within the modules that are enabled.
|
|
|
|
* \{
|
|
|
|
*/
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-04-24 21:19:15 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_AES_ROM_TABLES
|
|
|
|
*
|
|
|
|
* Store the AES tables in ROM.
|
|
|
|
*
|
|
|
|
* Uncomment this macro to store the AES tables in ROM.
|
|
|
|
*
|
|
|
|
#define POLARSSL_AES_ROM_TABLES
|
|
|
|
*/
|
|
|
|
|
2011-04-19 14:29:23 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_CIPHER_MODE_CFB
|
|
|
|
*
|
|
|
|
* Enable Cipher Feedback mode (CFB) for symmetric ciphers.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_CIPHER_MODE_CFB
|
|
|
|
|
|
|
|
/**
|
|
|
|
* \def POLARSSL_CIPHER_MODE_CTR
|
|
|
|
*
|
|
|
|
* Enable Counter Block Cipher mode (CTR) for symmetric ciphers.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_CIPHER_MODE_CTR
|
|
|
|
|
2012-02-06 16:45:10 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_CIPHER_NULL_CIPHER
|
|
|
|
*
|
|
|
|
* Enable NULL cipher.
|
|
|
|
* Warning: Only do so when you know what you are doing. This allows for
|
|
|
|
* encryption or channels without any security!
|
|
|
|
*
|
|
|
|
* Requires POLARSSL_ENABLE_WEAK_CIPHERSUITES as well to enable
|
|
|
|
* the following ciphersuites:
|
2012-10-31 12:32:41 +00:00
|
|
|
* TLS_RSA_WITH_NULL_MD5
|
|
|
|
* TLS_RSA_WITH_NULL_SHA
|
|
|
|
* TLS_RSA_WITH_NULL_SHA256
|
2012-02-06 16:45:10 +00:00
|
|
|
*
|
|
|
|
* Uncomment this macro to enable the NULL cipher and ciphersuites
|
|
|
|
#define POLARSSL_CIPHER_NULL_CIPHER
|
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* \def POLARSSL_ENABLE_WEAK_CIPHERSUITES
|
|
|
|
*
|
2012-10-31 12:32:41 +00:00
|
|
|
* Enable weak ciphersuites in SSL / TLS
|
2012-02-06 16:45:10 +00:00
|
|
|
* Warning: Only do so when you know what you are doing. This allows for
|
2012-11-14 12:39:52 +00:00
|
|
|
* channels with virtually no security at all!
|
2012-02-06 16:45:10 +00:00
|
|
|
*
|
|
|
|
* This enables the following ciphersuites:
|
2012-10-31 12:32:41 +00:00
|
|
|
* TLS_RSA_WITH_DES_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_DES_CBC_SHA
|
2012-02-06 16:45:10 +00:00
|
|
|
*
|
|
|
|
* Uncomment this macro to enable weak ciphersuites
|
|
|
|
#define POLARSSL_ENABLE_WEAK_CIPHERSUITES
|
|
|
|
*/
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
2011-04-24 21:19:15 +00:00
|
|
|
* \def POLARSSL_GENPRIME
|
2011-01-27 15:24:17 +00:00
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires: POLARSSL_BIGNUM_C, POLARSSL_RSA_C
|
|
|
|
*
|
2011-04-24 21:19:15 +00:00
|
|
|
* Enable the RSA prime-number generation code.
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2011-04-24 21:19:15 +00:00
|
|
|
#define POLARSSL_GENPRIME
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-04-25 15:28:35 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_FS_IO
|
|
|
|
*
|
|
|
|
* Enable functions that use the filesystem.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_FS_IO
|
|
|
|
|
2011-12-15 20:11:16 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_NO_DEFAULT_ENTROPY_SOURCES
|
|
|
|
*
|
|
|
|
* Do not add default entropy sources. These are the platform specific,
|
|
|
|
* hardclock and HAVEGE based poll functions.
|
|
|
|
*
|
|
|
|
* This is useful to have more control over the added entropy sources in an
|
|
|
|
* application.
|
|
|
|
*
|
|
|
|
* Uncomment this macro to prevent loading of default entropy functions.
|
|
|
|
#define POLARSSL_NO_DEFAULT_ENTROPY_SOURCES
|
|
|
|
*/
|
|
|
|
|
2011-12-03 21:45:14 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_NO_PLATFORM_ENTROPY
|
|
|
|
*
|
|
|
|
* Do not use built-in platform entropy functions.
|
|
|
|
* This is useful if your platform does not support
|
|
|
|
* standards like the /dev/urandom or Windows CryptoAPI.
|
|
|
|
*
|
|
|
|
* Uncomment this macro to disable the built-in platform entropy functions.
|
|
|
|
#define POLARSSL_NO_PLATFORM_ENTROPY
|
|
|
|
*/
|
|
|
|
|
2011-03-08 14:16:06 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_PKCS1_V21
|
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires: POLARSSL_MD_C, POLARSSL_RSA_C
|
|
|
|
*
|
2011-03-08 14:16:06 +00:00
|
|
|
* Enable support for PKCS#1 v2.1 encoding.
|
|
|
|
* This enables support for RSAES-OAEP and RSASSA-PSS operations.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_PKCS1_V21
|
|
|
|
|
2011-03-26 13:40:23 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_RSA_NO_CRT
|
|
|
|
*
|
|
|
|
* Do not use the Chinese Remainder Theorem for the RSA private operation.
|
|
|
|
*
|
|
|
|
* Uncomment this macro to disable the use of CRT in RSA.
|
|
|
|
*
|
|
|
|
#define POLARSSL_RSA_NO_CRT
|
|
|
|
*/
|
2011-04-24 21:19:15 +00:00
|
|
|
|
|
|
|
/**
|
|
|
|
* \def POLARSSL_SELF_TEST
|
|
|
|
*
|
|
|
|
* Enable the checkup functions (*_self_test).
|
|
|
|
*/
|
|
|
|
#define POLARSSL_SELF_TEST
|
2011-07-27 16:51:09 +00:00
|
|
|
|
2012-05-08 09:17:57 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_SSL_HW_RECORD_ACCEL
|
|
|
|
*
|
|
|
|
* Enable hooking functions in SSL module for hardware acceleration of
|
|
|
|
* individual records.
|
|
|
|
*
|
|
|
|
* Uncomment this macro to enable hooking functions.
|
|
|
|
#define POLARSSL_SSL_HW_RECORD_ACCEL
|
|
|
|
*/
|
|
|
|
|
2011-07-27 16:51:09 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
|
|
|
*
|
|
|
|
* If set, the X509 parser will not break-off when parsing an X509 certificate
|
|
|
|
* and encountering an unknown critical extension.
|
|
|
|
*
|
|
|
|
* Uncomment to prevent an error.
|
|
|
|
*
|
|
|
|
#define POLARSSL_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
|
|
|
*/
|
2012-07-03 13:30:23 +00:00
|
|
|
|
|
|
|
/**
|
|
|
|
* \def POLARSSL_ZLIB_SUPPORT
|
|
|
|
*
|
|
|
|
* If set, the SSL/TLS module uses ZLIB to support compression and
|
|
|
|
* decompression of packet data.
|
|
|
|
*
|
|
|
|
* Used in: library/ssl_tls.c
|
|
|
|
* library/ssl_cli.c
|
|
|
|
* library/ssl_srv.c
|
|
|
|
*
|
|
|
|
* This feature requires zlib library and headers to be present.
|
|
|
|
*
|
|
|
|
* Uncomment to enable use of ZLIB
|
|
|
|
#define POLARSSL_ZLIB_SUPPORT
|
|
|
|
*/
|
2011-01-21 11:00:08 +00:00
|
|
|
/* \} name */
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
2011-01-21 11:00:08 +00:00
|
|
|
* \name SECTION: PolarSSL modules
|
|
|
|
*
|
|
|
|
* This section enables or disables entire modules in PolarSSL
|
|
|
|
* \{
|
|
|
|
*/
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_AES_C
|
|
|
|
*
|
|
|
|
* Enable the AES block cipher.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/aes.c
|
|
|
|
* Caller: library/ssl_tls.c
|
2011-02-12 14:30:57 +00:00
|
|
|
* library/pem.c
|
2011-12-03 21:45:14 +00:00
|
|
|
* library/ctr_drbg.c
|
2009-01-03 21:22:43 +00:00
|
|
|
*
|
2012-10-31 12:32:41 +00:00
|
|
|
* This module enables the following ciphersuites (if other requisites are
|
|
|
|
* enabled as well):
|
|
|
|
* TLS_RSA_WITH_AES_128_CBC_SHA
|
|
|
|
* TLS_RSA_WITH_AES_256_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA
|
|
|
|
* TLS_RSA_WITH_AES_128_CBC_SHA256
|
|
|
|
* TLS_RSA_WITH_AES_256_CBC_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
|
|
|
|
* TLS_RSA_WITH_AES_128_GCM_SHA256
|
|
|
|
* TLS_RSA_WITH_AES_256_GCM_SHA384
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_AES_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_ARC4_C
|
|
|
|
*
|
|
|
|
* Enable the ARCFOUR stream cipher.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/arc4.c
|
|
|
|
* Caller: library/ssl_tls.c
|
|
|
|
*
|
|
|
|
* This module enables the following ciphersuites:
|
2012-10-31 12:32:41 +00:00
|
|
|
* TLS_RSA_WITH_RC4_128_MD5
|
|
|
|
* TLS_RSA_WITH_RC4_128_SHA
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_ARC4_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-11-10 14:43:23 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_ASN1_PARSE_C
|
|
|
|
*
|
|
|
|
* Enable the generic ASN1 parser.
|
|
|
|
*
|
|
|
|
* Module: library/asn1.c
|
|
|
|
* Caller: library/x509parse.c
|
|
|
|
*/
|
|
|
|
#define POLARSSL_ASN1_PARSE_C
|
|
|
|
|
2012-02-13 23:11:30 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_ASN1_WRITE_C
|
|
|
|
*
|
|
|
|
* Enable the generic ASN1 writer.
|
|
|
|
*
|
|
|
|
* Module: library/asn1write.c
|
|
|
|
*/
|
|
|
|
#define POLARSSL_ASN1_WRITE_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_BASE64_C
|
|
|
|
*
|
|
|
|
* Enable the Base64 module.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/base64.c
|
2011-05-26 13:16:06 +00:00
|
|
|
* Caller: library/pem.c
|
2009-01-03 21:22:43 +00:00
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* This module is required for PEM support (required by X.509).
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_BASE64_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_BIGNUM_C
|
|
|
|
*
|
2012-11-14 12:39:52 +00:00
|
|
|
* Enable the multi-precision integer library.
|
2011-01-27 15:24:17 +00:00
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/bignum.c
|
|
|
|
* Caller: library/dhm.c
|
|
|
|
* library/rsa.c
|
|
|
|
* library/ssl_tls.c
|
|
|
|
* library/x509parse.c
|
|
|
|
*
|
|
|
|
* This module is required for RSA and DHM support.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_BIGNUM_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2012-07-04 11:02:11 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_BLOWFISH_C
|
|
|
|
*
|
|
|
|
* Enable the Blowfish block cipher.
|
|
|
|
*
|
|
|
|
* Module: library/blowfish.c
|
|
|
|
*/
|
|
|
|
#define POLARSSL_BLOWFISH_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_CAMELLIA_C
|
|
|
|
*
|
|
|
|
* Enable the Camellia block cipher.
|
|
|
|
*
|
2009-01-10 23:31:23 +00:00
|
|
|
* Module: library/camellia.c
|
2009-07-28 07:18:38 +00:00
|
|
|
* Caller: library/ssl_tls.c
|
2009-01-10 23:31:23 +00:00
|
|
|
*
|
2012-10-31 12:32:41 +00:00
|
|
|
* This module enables the following ciphersuites (if other requisites are
|
|
|
|
* enabled as well):
|
|
|
|
* TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
|
|
|
|
* TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
|
|
|
|
* TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
|
|
|
|
* TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
|
2009-01-10 23:31:23 +00:00
|
|
|
*/
|
|
|
|
#define POLARSSL_CAMELLIA_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_CERTS_C
|
|
|
|
*
|
|
|
|
* Enable the test certificates.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/certs.c
|
|
|
|
* Caller:
|
|
|
|
*
|
|
|
|
* This module is used for testing (ssl_client/server).
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_CERTS_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_CIPHER_C
|
|
|
|
*
|
|
|
|
* Enable the generic cipher layer.
|
|
|
|
*
|
2011-01-06 15:37:30 +00:00
|
|
|
* Module: library/cipher.c
|
|
|
|
* Caller:
|
|
|
|
*
|
|
|
|
* Uncomment to enable generic cipher wrappers.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_CIPHER_C
|
|
|
|
|
2011-11-27 14:46:59 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_CTR_DRBG_C
|
|
|
|
*
|
|
|
|
* Enable the CTR_DRBG AES-256-based random generator
|
|
|
|
*
|
|
|
|
* Module: library/ctr_drbg.c
|
|
|
|
* Caller:
|
|
|
|
*
|
2011-12-03 21:45:14 +00:00
|
|
|
* Requires: POLARSSL_AES_C
|
|
|
|
*
|
2011-11-27 14:46:59 +00:00
|
|
|
* This module provides the CTR_DRBG AES-256 random number generator.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_CTR_DRBG_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_DEBUG_C
|
|
|
|
*
|
|
|
|
* Enable the debug functions.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/debug.c
|
|
|
|
* Caller: library/ssl_cli.c
|
|
|
|
* library/ssl_srv.c
|
|
|
|
* library/ssl_tls.c
|
|
|
|
*
|
|
|
|
* This module provides debugging functions.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_DEBUG_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_DES_C
|
|
|
|
*
|
|
|
|
* Enable the DES block cipher.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/des.c
|
|
|
|
* Caller: library/ssl_tls.c
|
|
|
|
*
|
2012-10-31 12:32:41 +00:00
|
|
|
* This module enables the following ciphersuites (if other requisites are
|
|
|
|
* enabled as well):
|
|
|
|
* TLS_RSA_WITH_3DES_EDE_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_DES_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_DHM_C
|
|
|
|
*
|
|
|
|
* Enable the Diffie-Hellman-Merkle key exchange.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/dhm.c
|
|
|
|
* Caller: library/ssl_cli.c
|
|
|
|
* library/ssl_srv.c
|
|
|
|
*
|
2012-10-31 12:32:41 +00:00
|
|
|
* This module enables the following ciphersuites (if other requisites are
|
|
|
|
* enabled as well):
|
|
|
|
* TLS_DHE_RSA_WITH_DES_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
|
|
|
|
* TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
|
|
|
|
* TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_DHM_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-12-03 21:45:14 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_ENTROPY_C
|
|
|
|
*
|
|
|
|
* Enable the platform-specific entropy code.
|
|
|
|
*
|
|
|
|
* Module: library/entropy.c
|
|
|
|
* Caller:
|
|
|
|
*
|
|
|
|
* Requires: POLARSSL_SHA4_C
|
|
|
|
*
|
|
|
|
* This module provides a generic entropy pool
|
|
|
|
*/
|
|
|
|
#define POLARSSL_ENTROPY_C
|
|
|
|
|
2011-05-09 16:17:09 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_ERROR_C
|
|
|
|
*
|
|
|
|
* Enable error code to error string conversion.
|
|
|
|
*
|
|
|
|
* Module: library/error.c
|
|
|
|
* Caller:
|
|
|
|
*
|
|
|
|
* This module enables err_strerror().
|
|
|
|
*/
|
|
|
|
#define POLARSSL_ERROR_C
|
|
|
|
|
2012-03-20 13:50:09 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_GCM_C
|
|
|
|
*
|
|
|
|
* Enable the Galois/Counter Mode (GCM) for AES
|
|
|
|
*
|
|
|
|
* Module: library/gcm.c
|
|
|
|
*
|
|
|
|
* Requires: POLARSSL_AES_C
|
2012-10-31 12:32:41 +00:00
|
|
|
*
|
|
|
|
* This module enables the following ciphersuites (if other requisites are
|
|
|
|
* enabled as well):
|
|
|
|
* TLS_RSA_WITH_AES_128_GCM_SHA256
|
|
|
|
* TLS_RSA_WITH_AES_256_GCM_SHA384
|
2012-03-20 13:50:09 +00:00
|
|
|
*/
|
|
|
|
#define POLARSSL_GCM_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_HAVEGE_C
|
|
|
|
*
|
|
|
|
* Enable the HAVEGE random generator.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/havege.c
|
|
|
|
* Caller:
|
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires: POLARSSL_TIMING_C
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* This module enables the HAVEGE random number generator.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_HAVEGE_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_MD_C
|
|
|
|
*
|
|
|
|
* Enable the generic message digest layer.
|
|
|
|
*
|
2011-01-06 14:20:01 +00:00
|
|
|
* Module: library/md.c
|
|
|
|
* Caller:
|
|
|
|
*
|
|
|
|
* Uncomment to enable generic message digest wrappers.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_MD_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_MD2_C
|
|
|
|
*
|
|
|
|
* Enable the MD2 hash algorithm
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/md2.c
|
|
|
|
* Caller: library/x509parse.c
|
|
|
|
*
|
|
|
|
* Uncomment to enable support for (rare) MD2-signed X.509 certs.
|
|
|
|
*
|
2009-07-28 07:18:38 +00:00
|
|
|
#define POLARSSL_MD2_C
|
2009-07-28 20:52:02 +00:00
|
|
|
*/
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_MD4_C
|
|
|
|
*
|
|
|
|
* Enable the MD4 hash algorithm
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/md4.c
|
|
|
|
* Caller: library/x509parse.c
|
|
|
|
*
|
|
|
|
* Uncomment to enable support for (rare) MD4-signed X.509 certs.
|
|
|
|
*
|
2009-07-28 07:18:38 +00:00
|
|
|
#define POLARSSL_MD4_C
|
2009-07-28 20:52:02 +00:00
|
|
|
*/
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_MD5_C
|
|
|
|
*
|
|
|
|
* Enable the MD5 hash algorithm
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/md5.c
|
|
|
|
* Caller: library/ssl_tls.c
|
|
|
|
* library/x509parse.c
|
|
|
|
*
|
|
|
|
* This module is required for SSL/TLS and X.509.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_MD5_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_NET_C
|
|
|
|
*
|
|
|
|
* Enable the TCP/IP networking routines.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/net.c
|
|
|
|
* Caller:
|
|
|
|
*
|
|
|
|
* This module provides TCP/IP networking routines.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_NET_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_PADLOCK_C
|
|
|
|
*
|
|
|
|
* Enable VIA Padlock support on x86.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/padlock.c
|
|
|
|
* Caller: library/aes.c
|
|
|
|
*
|
|
|
|
* This modules adds support for the VIA PadLock on x86.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_PADLOCK_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2012-08-23 13:03:18 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_PBKDF2_C
|
|
|
|
*
|
|
|
|
* Enable PKCS#5 PBKDF2 key derivation function
|
|
|
|
*
|
|
|
|
* Module: library/pbkdf2.c
|
|
|
|
*
|
|
|
|
* Requires: POLARSSL_MD_C
|
|
|
|
*
|
|
|
|
* This module adds support for the PKCS#5 PBKDF2 key derivation function.
|
|
|
|
#define POLARSSL_PBKDF2_C
|
|
|
|
*/
|
|
|
|
|
2011-02-12 14:30:57 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_PEM_C
|
|
|
|
*
|
|
|
|
* Enable PEM decoding
|
|
|
|
*
|
|
|
|
* Module: library/pem.c
|
|
|
|
* Caller: library/x509parse.c
|
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires: POLARSSL_BASE64_C
|
|
|
|
*
|
2011-02-12 14:30:57 +00:00
|
|
|
* This modules adds support for decoding PEM files.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_PEM_C
|
|
|
|
|
2011-05-26 13:16:06 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_PKCS11_C
|
|
|
|
*
|
2012-09-27 19:15:01 +00:00
|
|
|
* Enable wrapper for PKCS#11 smartcard support.
|
2011-05-26 13:16:06 +00:00
|
|
|
*
|
|
|
|
* Module: library/ssl_srv.c
|
|
|
|
* Caller: library/ssl_cli.c
|
|
|
|
* library/ssl_srv.c
|
|
|
|
*
|
|
|
|
* Requires: POLARSSL_SSL_TLS_C
|
|
|
|
*
|
2012-09-27 19:15:01 +00:00
|
|
|
* This module enables SSL/TLS PKCS #11 smartcard support.
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires the presence of the PKCS#11 helper library (libpkcs11-helper)
|
|
|
|
#define POLARSSL_PKCS11_C
|
|
|
|
*/
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_RSA_C
|
|
|
|
*
|
|
|
|
* Enable the RSA public-key cryptosystem.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/rsa.c
|
|
|
|
* Caller: library/ssl_cli.c
|
|
|
|
* library/ssl_srv.c
|
|
|
|
* library/ssl_tls.c
|
|
|
|
* library/x509.c
|
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires: POLARSSL_BIGNUM_C
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* This module is required for SSL/TLS and MD5-signed certificates.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_RSA_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_SHA1_C
|
|
|
|
*
|
|
|
|
* Enable the SHA1 cryptographic hash algorithm.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/sha1.c
|
|
|
|
* Caller: library/ssl_cli.c
|
|
|
|
* library/ssl_srv.c
|
|
|
|
* library/ssl_tls.c
|
|
|
|
* library/x509parse.c
|
|
|
|
*
|
|
|
|
* This module is required for SSL/TLS and SHA1-signed certificates.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_SHA1_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_SHA2_C
|
|
|
|
*
|
|
|
|
* Enable the SHA-224 and SHA-256 cryptographic hash algorithms.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/sha2.c
|
2011-01-27 15:24:17 +00:00
|
|
|
* Caller: library/md_wrap.c
|
|
|
|
* library/x509parse.c
|
2009-01-03 21:22:43 +00:00
|
|
|
*
|
|
|
|
* This module adds support for SHA-224 and SHA-256.
|
2012-11-24 10:26:46 +00:00
|
|
|
* This module is required for the SSL/TLS 1.2 PRF function.
|
2009-01-03 21:22:43 +00:00
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_SHA2_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_SHA4_C
|
|
|
|
*
|
|
|
|
* Enable the SHA-384 and SHA-512 cryptographic hash algorithms.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/sha4.c
|
2011-01-27 15:24:17 +00:00
|
|
|
* Caller: library/md_wrap.c
|
|
|
|
* library/x509parse.c
|
2009-01-03 21:22:43 +00:00
|
|
|
*
|
|
|
|
* This module adds support for SHA-384 and SHA-512.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_SHA4_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2012-09-25 21:55:46 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_SSL_CACHE_C
|
|
|
|
*
|
|
|
|
* Enable simple SSL cache implementation.
|
|
|
|
*
|
|
|
|
* Module: library/ssl_cache.c
|
|
|
|
* Caller:
|
|
|
|
*
|
|
|
|
* Requires: POLARSSL_SSL_CACHE_C
|
|
|
|
*/
|
|
|
|
#define POLARSSL_SSL_CACHE_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_SSL_CLI_C
|
|
|
|
*
|
|
|
|
* Enable the SSL/TLS client code.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/ssl_cli.c
|
|
|
|
* Caller:
|
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires: POLARSSL_SSL_TLS_C
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* This module is required for SSL/TLS client support.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_SSL_CLI_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2012-11-14 12:39:52 +00:00
|
|
|
/**
|
2011-01-27 15:24:17 +00:00
|
|
|
* \def POLARSSL_SSL_SRV_C
|
|
|
|
*
|
|
|
|
* Enable the SSL/TLS server code.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/ssl_srv.c
|
|
|
|
* Caller:
|
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires: POLARSSL_SSL_TLS_C
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* This module is required for SSL/TLS server support.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_SSL_SRV_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_SSL_TLS_C
|
|
|
|
*
|
2011-05-18 13:26:54 +00:00
|
|
|
* Enable the generic SSL/TLS code.
|
2011-01-27 15:24:17 +00:00
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/ssl_tls.c
|
|
|
|
* Caller: library/ssl_cli.c
|
|
|
|
* library/ssl_srv.c
|
|
|
|
*
|
2011-05-26 13:16:06 +00:00
|
|
|
* Requires: POLARSSL_MD5_C, POLARSSL_SHA1_C, POLARSSL_X509_PARSE_C
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* This module is required for SSL/TLS.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_SSL_TLS_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_TIMING_C
|
|
|
|
*
|
|
|
|
* Enable the portable timing interface.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/timing.c
|
|
|
|
* Caller: library/havege.c
|
|
|
|
*
|
|
|
|
* This module is used by the HAVEGE random number generator.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_TIMING_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_VERSION_C
|
|
|
|
*
|
|
|
|
* Enable run-time version information.
|
|
|
|
*
|
2011-01-21 11:00:08 +00:00
|
|
|
* Module: library/version.c
|
|
|
|
*
|
|
|
|
* This module provides run-time version information.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_VERSION_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_X509_PARSE_C
|
|
|
|
*
|
|
|
|
* Enable X.509 certificate parsing.
|
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* Module: library/x509parse.c
|
|
|
|
* Caller: library/ssl_cli.c
|
|
|
|
* library/ssl_srv.c
|
|
|
|
* library/ssl_tls.c
|
|
|
|
*
|
2011-11-10 14:43:23 +00:00
|
|
|
* Requires: POLARSSL_ASN1_PARSE_C, POLARSSL_BIGNUM_C, POLARSSL_RSA_C
|
2011-05-26 13:16:06 +00:00
|
|
|
*
|
2009-01-03 21:22:43 +00:00
|
|
|
* This module is required for X.509 certificate parsing.
|
|
|
|
*/
|
2009-01-03 21:51:57 +00:00
|
|
|
#define POLARSSL_X509_PARSE_C
|
2009-01-03 21:22:43 +00:00
|
|
|
|
2012-02-13 23:11:30 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_X509_WRITE_C
|
|
|
|
*
|
|
|
|
* Enable X.509 buffer writing.
|
|
|
|
*
|
|
|
|
* Module: library/x509write.c
|
|
|
|
*
|
|
|
|
* Requires: POLARSSL_BIGNUM_C, POLARSSL_RSA_C
|
|
|
|
*
|
|
|
|
* This module is required for X.509 certificate request writing.
|
|
|
|
*/
|
|
|
|
#define POLARSSL_X509_WRITE_C
|
|
|
|
|
2011-01-27 15:24:17 +00:00
|
|
|
/**
|
|
|
|
* \def POLARSSL_XTEA_C
|
|
|
|
*
|
|
|
|
* Enable the XTEA block cipher.
|
2009-01-03 21:22:43 +00:00
|
|
|
*
|
2009-01-04 18:15:48 +00:00
|
|
|
* Module: library/xtea.c
|
|
|
|
* Caller:
|
|
|
|
*/
|
|
|
|
#define POLARSSL_XTEA_C
|
2011-01-21 11:00:08 +00:00
|
|
|
/* \} name */
|
2009-01-04 18:15:48 +00:00
|
|
|
|
2009-01-03 21:22:43 +00:00
|
|
|
#endif /* config.h */
|