2018-04-04 21:44:29 +00:00
|
|
|
#!/usr/bin/env perl
|
2016-04-03 13:16:08 +00:00
|
|
|
#
|
|
|
|
# This file is part of mbed TLS (https://tls.mbed.org)
|
|
|
|
#
|
|
|
|
# Copyright (c) 2014-2016, ARM Limited, All Rights Reserved
|
|
|
|
#
|
|
|
|
# Purpose
|
|
|
|
#
|
|
|
|
# Comments and uncomments #define lines in the given header file and optionally
|
2016-06-21 09:09:25 +00:00
|
|
|
# sets their value or can get the value. This is to provide scripting control of
|
|
|
|
# what preprocessor symbols, and therefore what build time configuration flags
|
|
|
|
# are set in the 'config.h' file.
|
2016-04-03 13:16:08 +00:00
|
|
|
#
|
|
|
|
# Usage: config.pl [-f <file> | --file <file>] [-o | --force]
|
2016-06-21 09:09:25 +00:00
|
|
|
# [set <symbol> <value> | unset <symbol> | get <symbol> |
|
|
|
|
# full | realfull]
|
2016-04-03 13:16:08 +00:00
|
|
|
#
|
|
|
|
# Full usage description provided below.
|
|
|
|
#
|
2017-09-28 10:49:46 +00:00
|
|
|
# The following options are disabled instead of enabled with "full".
|
2016-04-03 13:16:08 +00:00
|
|
|
#
|
2016-06-11 01:31:21 +00:00
|
|
|
# MBEDTLS_TEST_NULL_ENTROPY
|
2016-04-03 13:16:08 +00:00
|
|
|
# MBEDTLS_DEPRECATED_REMOVED
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
# MBEDTLS_DEPRECATED_WARNING
|
2016-04-03 13:16:08 +00:00
|
|
|
# MBEDTLS_HAVE_SSE2
|
|
|
|
# MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
|
|
|
|
# MBEDTLS_ECP_DP_M221_ENABLED
|
|
|
|
# MBEDTLS_ECP_DP_M383_ENABLED
|
|
|
|
# MBEDTLS_ECP_DP_M511_ENABLED
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
# MBEDTLS_MEMORY_DEBUG
|
2019-02-26 13:51:00 +00:00
|
|
|
# MBEDTLS_MEMORY_BACKTRACE
|
|
|
|
# MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
2016-04-03 13:16:08 +00:00
|
|
|
# MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
|
|
|
|
# MBEDTLS_NO_PLATFORM_ENTROPY
|
|
|
|
# MBEDTLS_REMOVE_ARC4_CIPHERSUITES
|
2018-10-30 18:21:41 +00:00
|
|
|
# MBEDTLS_REMOVE_3DES_CIPHERSUITES
|
2019-07-17 14:58:56 +00:00
|
|
|
# MBEDTLS_SHA256_NO_SHA224
|
2016-04-03 13:16:08 +00:00
|
|
|
# MBEDTLS_SSL_HW_RECORD_ACCEL
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
# MBEDTLS_SSL_PROTO_NO_TLS
|
2019-07-01 08:07:28 +00:00
|
|
|
# MBEDTLS_SSL_NO_SESSION_CACHE
|
|
|
|
# MBEDTLS_SSL_NO_SESSION_RESUMPTION
|
2017-09-28 10:49:46 +00:00
|
|
|
# MBEDTLS_RSA_NO_CRT
|
2019-08-27 14:45:44 +00:00
|
|
|
# MBEDTLS_USE_TINYCRYPT
|
2016-04-03 13:16:08 +00:00
|
|
|
# MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
|
|
|
|
# MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
|
|
|
# - this could be enabled if the respective tests were adapted
|
2019-06-12 12:59:14 +00:00
|
|
|
# MBEDTLS_X509_REMOVE_INFO
|
2019-06-25 08:39:21 +00:00
|
|
|
# MBEDTLS_X509_CRT_REMOVE_TIME
|
2019-06-25 09:19:58 +00:00
|
|
|
# MBEDTLS_X509_CRT_REMOVE_SUBJECT_ISSUER_ID
|
2019-08-19 11:48:09 +00:00
|
|
|
# MBEDTLS_X509_REMOVE_HOSTNAME_VERIFICATION
|
2019-07-01 16:36:12 +00:00
|
|
|
# MBEDTLS_X509_REMOVE_VERIFY_CALLBACK
|
2016-04-03 13:16:08 +00:00
|
|
|
# MBEDTLS_ZLIB_SUPPORT
|
|
|
|
# MBEDTLS_PKCS11_C
|
2019-09-09 09:25:05 +00:00
|
|
|
# MBEDTLS_NO_UDBL_DIVISION
|
|
|
|
# MBEDTLS_NO_64BIT_MULTIPLICATION
|
2019-10-16 07:17:48 +00:00
|
|
|
# MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH
|
2019-10-16 10:43:59 +00:00
|
|
|
# MBEDTLS_AES_ONLY_ENCRYPT
|
2019-10-14 12:18:27 +00:00
|
|
|
# MBEDTLS_AES_SCA_COUNTERMEASURES
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
# MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
|
2020-09-17 11:12:06 +00:00
|
|
|
# MBEDTLS_SSL_TRANSFORM_OPTIMIZE_CIPHERS
|
2020-09-19 05:56:06 +00:00
|
|
|
# MBEDTLS_VALIDATE_SSL_KEYS_INTEGRITY
|
2020-10-14 10:24:20 +00:00
|
|
|
# MBEDTLS_OPTIMIZE_TINYCRYPT_ASM
|
2020-11-17 09:33:25 +00:00
|
|
|
# MBEDTLS_AES_128_BIT_MASKED
|
2020-12-07 14:29:48 +00:00
|
|
|
# MBEDTLS_PLATFORM_FAULT_CALLBACKS
|
2020-12-21 13:11:36 +00:00
|
|
|
# MBEDTLS_SSL_DELAYED_SERVER_CERT_VERIFICATION
|
2020-12-07 14:29:48 +00:00
|
|
|
# MBEDTLS_SSL_FREE_SERVER_CERTIFICATE
|
2020-12-21 12:56:57 +00:00
|
|
|
# MBEDTLS_SSL_IMMEDIATE_TRANSMISSION
|
2020-12-21 13:02:59 +00:00
|
|
|
# MBEDTLS_SSL_EARLY_KEY_COMPUTATION
|
2016-04-03 13:16:08 +00:00
|
|
|
# and any symbol beginning _ALT
|
|
|
|
#
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
# The baremetal configuration excludes options that require a library or
|
|
|
|
# operating system feature that is typically not present on bare metal
|
|
|
|
# systems. Features that are excluded from "full" won't be in "baremetal"
|
|
|
|
# either.
|
2014-07-12 01:19:18 +00:00
|
|
|
|
|
|
|
use warnings;
|
|
|
|
use strict;
|
|
|
|
|
2016-04-03 13:16:08 +00:00
|
|
|
my $config_file = "include/mbedtls/config.h";
|
2014-07-12 01:19:18 +00:00
|
|
|
my $usage = <<EOU;
|
2016-04-03 13:16:08 +00:00
|
|
|
$0 [-f <file> | --file <file>] [-o | --force]
|
2016-06-21 09:09:25 +00:00
|
|
|
[set <symbol> <value> | unset <symbol> | get <symbol> |
|
2017-12-21 15:19:53 +00:00
|
|
|
full | realfull | baremetal]
|
2016-04-03 13:16:08 +00:00
|
|
|
|
|
|
|
Commands
|
2016-06-21 09:09:25 +00:00
|
|
|
set <symbol> [<value>] - Uncomments or adds a #define for the <symbol> to
|
2016-04-03 13:16:08 +00:00
|
|
|
the configuration file, and optionally making it
|
|
|
|
of <value>.
|
|
|
|
If the symbol isn't present in the file an error
|
|
|
|
is returned.
|
2016-06-21 09:09:25 +00:00
|
|
|
unset <symbol> - Comments out the #define for the given symbol if
|
|
|
|
present in the configuration file.
|
|
|
|
get <symbol> - Finds the #define for the given symbol, returning
|
2017-10-09 14:56:18 +00:00
|
|
|
an exitcode of 0 if the symbol is found, and 1 if
|
2016-06-21 09:09:25 +00:00
|
|
|
not. The value of the symbol is output if one is
|
|
|
|
specified in the configuration file.
|
2016-04-03 13:16:08 +00:00
|
|
|
full - Uncomments all #define's in the configuration file
|
2016-06-21 09:09:25 +00:00
|
|
|
excluding some reserved symbols, until the
|
2016-04-03 13:16:08 +00:00
|
|
|
'Module configuration options' section
|
|
|
|
realfull - Uncomments all #define's with no exclusions
|
2017-12-21 15:19:53 +00:00
|
|
|
baremetal - Sets full configuration suitable for baremetal build.
|
2016-04-03 13:16:08 +00:00
|
|
|
|
|
|
|
Options
|
|
|
|
-f | --file <filename> - The file or file path for the configuration file
|
|
|
|
to edit. When omitted, the following default is
|
|
|
|
used:
|
|
|
|
$config_file
|
|
|
|
-o | --force - If the symbol isn't present in the configuration
|
2016-11-06 12:45:15 +00:00
|
|
|
file when setting its value, a #define is
|
2016-04-03 13:16:08 +00:00
|
|
|
appended to the end of the file.
|
|
|
|
|
2014-07-12 01:19:18 +00:00
|
|
|
EOU
|
|
|
|
|
|
|
|
my @excluded = qw(
|
2016-06-11 01:31:21 +00:00
|
|
|
MBEDTLS_TEST_NULL_ENTROPY
|
2015-04-08 10:49:31 +00:00
|
|
|
MBEDTLS_DEPRECATED_REMOVED
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
MBEDTLS_DEPRECATED_WARNING
|
2015-04-08 10:49:31 +00:00
|
|
|
MBEDTLS_HAVE_SSE2
|
|
|
|
MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
|
|
|
|
MBEDTLS_ECP_DP_M221_ENABLED
|
|
|
|
MBEDTLS_ECP_DP_M383_ENABLED
|
|
|
|
MBEDTLS_ECP_DP_M511_ENABLED
|
2019-06-03 15:33:18 +00:00
|
|
|
MBEDTLS_MEMORY_DEBUG
|
2019-02-26 13:51:00 +00:00
|
|
|
MBEDTLS_MEMORY_BACKTRACE
|
|
|
|
MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
2015-04-08 10:49:31 +00:00
|
|
|
MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES
|
|
|
|
MBEDTLS_NO_PLATFORM_ENTROPY
|
|
|
|
MBEDTLS_REMOVE_ARC4_CIPHERSUITES
|
2018-10-30 18:21:41 +00:00
|
|
|
MBEDTLS_REMOVE_3DES_CIPHERSUITES
|
2019-07-17 14:58:56 +00:00
|
|
|
MBEDTLS_SHA256_NO_SHA224
|
2015-04-08 10:49:31 +00:00
|
|
|
MBEDTLS_SSL_HW_RECORD_ACCEL
|
2019-06-17 13:21:07 +00:00
|
|
|
MBEDTLS_SSL_PROTO_NO_TLS
|
2019-07-01 08:07:28 +00:00
|
|
|
MBEDTLS_SSL_NO_SESSION_CACHE
|
|
|
|
MBEDTLS_SSL_NO_SESSION_RESUMPTION
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
MBEDTLS_RSA_NO_CRT
|
2019-08-27 14:45:44 +00:00
|
|
|
MBEDTLS_USE_TINYCRYPT
|
2015-04-08 10:49:31 +00:00
|
|
|
MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
|
|
|
|
MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
2019-06-12 12:59:14 +00:00
|
|
|
MBEDTLS_X509_REMOVE_INFO
|
2019-06-25 08:39:21 +00:00
|
|
|
MBEDTLS_X509_CRT_REMOVE_TIME
|
2019-06-25 09:19:58 +00:00
|
|
|
MBEDTLS_X509_CRT_REMOVE_SUBJECT_ISSUER_ID
|
2019-08-19 11:48:09 +00:00
|
|
|
MBEDTLS_X509_REMOVE_HOSTNAME_VERIFICATION
|
2019-07-01 16:36:12 +00:00
|
|
|
MBEDTLS_X509_REMOVE_VERIFY_CALLBACK
|
2015-04-08 10:49:31 +00:00
|
|
|
MBEDTLS_ZLIB_SUPPORT
|
|
|
|
MBEDTLS_PKCS11_C
|
2017-12-21 15:22:37 +00:00
|
|
|
MBEDTLS_NO_UDBL_DIVISION
|
2018-06-07 08:51:44 +00:00
|
|
|
MBEDTLS_NO_64BIT_MULTIPLICATION
|
2019-10-16 07:17:48 +00:00
|
|
|
MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH
|
2019-10-16 10:43:59 +00:00
|
|
|
MBEDTLS_AES_ONLY_ENCRYPT
|
2019-10-14 12:18:27 +00:00
|
|
|
MBEDTLS_AES_SCA_COUNTERMEASURES
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
|
2020-09-17 11:12:06 +00:00
|
|
|
MBEDTLS_SSL_TRANSFORM_OPTIMIZE_CIPHERS
|
2020-09-19 05:56:06 +00:00
|
|
|
MBEDTLS_VALIDATE_SSL_KEYS_INTEGRITY
|
2020-10-14 10:24:20 +00:00
|
|
|
MBEDTLS_OPTIMIZE_TINYCRYPT_ASM
|
2020-11-17 09:33:25 +00:00
|
|
|
MBEDTLS_AES_128_BIT_MASKED
|
2020-11-17 13:22:39 +00:00
|
|
|
MBEDTLS_PLATFORM_FAULT_CALLBACKS
|
2020-12-21 13:11:36 +00:00
|
|
|
MBEDTLS_SSL_DELAYED_SERVER_CERT_VERIFICATION
|
2020-12-07 14:29:48 +00:00
|
|
|
MBEDTLS_SSL_FREE_SERVER_CERTIFICATE
|
2020-12-21 12:56:57 +00:00
|
|
|
MBEDTLS_SSL_IMMEDIATE_TRANSMISSION
|
2020-12-21 13:02:59 +00:00
|
|
|
MBEDTLS_SSL_EARLY_KEY_COMPUTATION
|
2014-07-12 01:19:18 +00:00
|
|
|
_ALT\s*$
|
|
|
|
);
|
|
|
|
|
2017-12-21 09:28:39 +00:00
|
|
|
# Things that should be disabled in "baremetal"
|
|
|
|
my @excluded_baremetal = qw(
|
|
|
|
MBEDTLS_ENTROPY_NV_SEED
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
MBEDTLS_FS_IO
|
|
|
|
MBEDTLS_HAVEGE_C
|
2017-12-21 09:28:39 +00:00
|
|
|
MBEDTLS_HAVE_TIME
|
|
|
|
MBEDTLS_HAVE_TIME_DATE
|
|
|
|
MBEDTLS_MEMORY_BACKTRACE
|
|
|
|
MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
MBEDTLS_NET_C
|
2017-12-21 09:28:39 +00:00
|
|
|
MBEDTLS_PLATFORM_FPRINTF_ALT
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
MBEDTLS_PLATFORM_NV_SEED_ALT
|
|
|
|
MBEDTLS_PLATFORM_TIME_ALT
|
|
|
|
MBEDTLS_THREADING_C
|
|
|
|
MBEDTLS_THREADING_PTHREAD
|
|
|
|
MBEDTLS_TIMING_C
|
2017-12-21 09:28:39 +00:00
|
|
|
);
|
|
|
|
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
# Things that should be enabled in "full" even if they match @excluded.
|
|
|
|
# Platform ALTs enable global variables that allow configuring the behavior
|
|
|
|
# but default to the default behavior, except for PLATFORM_SETUP_TEARDOWN_ALT
|
|
|
|
# which requires the application to provide relevant functions like
|
|
|
|
# non-platform ALTs.
|
2015-06-03 08:59:06 +00:00
|
|
|
my @non_excluded = qw(
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 15:47:25 +00:00
|
|
|
PLATFORM_(?!SETUP_TEARDOWN_)[A-Z_0-9]+_ALT
|
2015-06-03 08:59:06 +00:00
|
|
|
);
|
|
|
|
|
2017-12-21 09:28:39 +00:00
|
|
|
# Things that should be enabled in "baremetal"
|
|
|
|
my @non_excluded_baremetal = qw(
|
|
|
|
MBEDTLS_NO_PLATFORM_ENTROPY
|
|
|
|
);
|
|
|
|
|
2016-04-03 13:16:08 +00:00
|
|
|
# Process the command line arguments
|
2014-07-12 01:19:18 +00:00
|
|
|
|
2016-04-03 13:16:08 +00:00
|
|
|
my $force_option = 0;
|
|
|
|
|
|
|
|
my ($arg, $name, $value, $action);
|
|
|
|
|
2016-04-04 12:49:10 +00:00
|
|
|
while ($arg = shift) {
|
2016-04-03 13:16:08 +00:00
|
|
|
|
|
|
|
# Check if the argument is an option
|
2016-04-04 12:49:10 +00:00
|
|
|
if ($arg eq "-f" || $arg eq "--file") {
|
2016-04-03 13:16:08 +00:00
|
|
|
$config_file = shift;
|
|
|
|
|
|
|
|
-f $config_file or die "No such file: $config_file\n";
|
|
|
|
|
|
|
|
}
|
2016-04-04 12:49:10 +00:00
|
|
|
elsif ($arg eq "-o" || $arg eq "--force") {
|
2016-04-03 13:16:08 +00:00
|
|
|
$force_option = 1;
|
2014-07-12 01:19:18 +00:00
|
|
|
|
2016-04-03 13:16:08 +00:00
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
# ...else assume it's a command
|
|
|
|
$action = $arg;
|
|
|
|
|
2017-12-21 09:28:39 +00:00
|
|
|
if ($action eq "full" || $action eq "realfull" || $action eq "baremetal" ) {
|
2016-04-03 13:16:08 +00:00
|
|
|
# No additional parameters
|
|
|
|
die $usage if @ARGV;
|
|
|
|
|
|
|
|
}
|
2016-06-21 09:09:25 +00:00
|
|
|
elsif ($action eq "unset" || $action eq "get") {
|
2016-04-03 13:16:08 +00:00
|
|
|
die $usage unless @ARGV;
|
|
|
|
$name = shift;
|
|
|
|
|
|
|
|
}
|
|
|
|
elsif ($action eq "set") {
|
|
|
|
die $usage unless @ARGV;
|
|
|
|
$name = shift;
|
|
|
|
$value = shift if @ARGV;
|
|
|
|
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
die "Command '$action' not recognised.\n\n".$usage;
|
|
|
|
}
|
2014-07-12 01:19:18 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-06-23 20:57:06 +00:00
|
|
|
# If no command was specified, exit...
|
|
|
|
if ( not defined($action) ){ die $usage; }
|
|
|
|
|
2016-04-03 13:16:08 +00:00
|
|
|
# Check the config file is present
|
|
|
|
if (! -f $config_file) {
|
|
|
|
|
2019-11-25 13:22:42 +00:00
|
|
|
if ( -d 'importer' && -d 'inc' && -d 'src') {
|
|
|
|
$config_file = "inc/mbedtls/config.h";
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
chdir '..' or die;
|
|
|
|
# Confirm this is the project root directory and try again
|
|
|
|
if ( !(-d 'scripts' && -d 'include' && -d 'library' && -f $config_file) ) {
|
|
|
|
die "If no file specified, must be run from the project root or scripts directory.\n";
|
|
|
|
}
|
2016-04-03 13:16:08 +00:00
|
|
|
}
|
2014-07-12 01:19:18 +00:00
|
|
|
}
|
2016-04-03 13:16:08 +00:00
|
|
|
|
|
|
|
|
|
|
|
# Now read the file and process the contents
|
2014-07-12 01:19:18 +00:00
|
|
|
|
|
|
|
open my $config_read, '<', $config_file or die "read $config_file: $!\n";
|
|
|
|
my @config_lines = <$config_read>;
|
|
|
|
close $config_read;
|
|
|
|
|
2017-12-21 09:28:39 +00:00
|
|
|
# Add required baremetal symbols to the list that is included.
|
|
|
|
if ( $action eq "baremetal" ) {
|
|
|
|
@non_excluded = ( @non_excluded, @non_excluded_baremetal );
|
|
|
|
}
|
|
|
|
|
|
|
|
my ($exclude_re, $no_exclude_re, $exclude_baremetal_re);
|
2016-01-04 11:57:32 +00:00
|
|
|
if ($action eq "realfull") {
|
|
|
|
$exclude_re = qr/^$/;
|
|
|
|
$no_exclude_re = qr/./;
|
|
|
|
} else {
|
|
|
|
$exclude_re = join '|', @excluded;
|
|
|
|
$no_exclude_re = join '|', @non_excluded;
|
|
|
|
}
|
2017-12-21 09:28:39 +00:00
|
|
|
if ( $action eq "baremetal" ) {
|
|
|
|
$exclude_baremetal_re = join '|', @excluded_baremetal;
|
|
|
|
}
|
2014-07-12 01:19:18 +00:00
|
|
|
|
2017-10-09 14:54:28 +00:00
|
|
|
my $config_write = undef;
|
|
|
|
if ($action ne "get") {
|
|
|
|
open $config_write, '>', $config_file or die "write $config_file: $!\n";
|
|
|
|
}
|
2014-07-12 01:19:18 +00:00
|
|
|
|
|
|
|
my $done;
|
|
|
|
for my $line (@config_lines) {
|
2017-12-21 09:28:39 +00:00
|
|
|
if ($action eq "full" || $action eq "realfull" || $action eq "baremetal" ) {
|
2014-07-12 01:19:18 +00:00
|
|
|
if ($line =~ /name SECTION: Module configuration options/) {
|
|
|
|
$done = 1;
|
|
|
|
}
|
|
|
|
|
2015-06-03 08:59:06 +00:00
|
|
|
if (!$done && $line =~ m!^//\s?#define! &&
|
2017-12-21 09:28:39 +00:00
|
|
|
( $line !~ /$exclude_re/ || $line =~ /$no_exclude_re/ ) &&
|
|
|
|
( $action ne "baremetal" || ( $line !~ /$exclude_baremetal_re/ ) ) ) {
|
2015-03-24 08:50:15 +00:00
|
|
|
$line =~ s!^//\s?!!;
|
|
|
|
}
|
2015-06-03 09:33:55 +00:00
|
|
|
if (!$done && $line =~ m!^\s?#define! &&
|
2017-12-21 09:28:39 +00:00
|
|
|
! ( ( $line !~ /$exclude_re/ || $line =~ /$no_exclude_re/ ) &&
|
|
|
|
( $action ne "baremetal" || ( $line !~ /$exclude_baremetal_re/ ) ) ) ) {
|
2015-03-24 08:50:15 +00:00
|
|
|
$line =~ s!^!//!;
|
2014-07-12 01:19:18 +00:00
|
|
|
}
|
|
|
|
} elsif ($action eq "unset") {
|
2015-06-23 15:42:51 +00:00
|
|
|
if (!$done && $line =~ /^\s*#define\s*$name\b/) {
|
2014-07-12 01:19:18 +00:00
|
|
|
$line = '//' . $line;
|
|
|
|
$done = 1;
|
|
|
|
}
|
|
|
|
} elsif (!$done && $action eq "set") {
|
2015-06-23 15:42:51 +00:00
|
|
|
if ($line =~ m!^(?://)?\s*#define\s*$name\b!) {
|
2014-07-12 01:19:18 +00:00
|
|
|
$line = "#define $name";
|
|
|
|
$line .= " $value" if defined $value && $value ne "";
|
|
|
|
$line .= "\n";
|
|
|
|
$done = 1;
|
|
|
|
}
|
2016-06-21 09:09:25 +00:00
|
|
|
} elsif (!$done && $action eq "get") {
|
2017-10-09 14:51:24 +00:00
|
|
|
if ($line =~ /^\s*#define\s*$name(?:\s+(.*?))\s*(?:$|\/\*|\/\/)/) {
|
2016-06-21 09:09:25 +00:00
|
|
|
$value = $1;
|
|
|
|
$done = 1;
|
|
|
|
}
|
2014-07-12 01:19:18 +00:00
|
|
|
}
|
|
|
|
|
2017-10-09 14:54:28 +00:00
|
|
|
if (defined $config_write) {
|
2017-10-10 09:26:45 +00:00
|
|
|
print $config_write $line or die "write $config_file: $!\n";
|
2017-10-09 14:54:28 +00:00
|
|
|
}
|
2014-07-12 01:19:18 +00:00
|
|
|
}
|
|
|
|
|
2016-04-03 13:16:08 +00:00
|
|
|
# Did the set command work?
|
2017-10-09 14:56:18 +00:00
|
|
|
if ($action eq "set" && $force_option && !$done) {
|
2016-04-03 13:16:08 +00:00
|
|
|
|
|
|
|
# If the force option was set, append the symbol to the end of the file
|
|
|
|
my $line = "#define $name";
|
|
|
|
$line .= " $value" if defined $value && $value ne "";
|
|
|
|
$line .= "\n";
|
|
|
|
$done = 1;
|
|
|
|
|
2017-10-09 14:54:28 +00:00
|
|
|
print $config_write $line or die "write $config_file: $!\n";
|
2016-04-03 13:16:08 +00:00
|
|
|
}
|
|
|
|
|
2017-10-09 14:54:28 +00:00
|
|
|
if (defined $config_write) {
|
|
|
|
close $config_write or die "close $config_file: $!\n";
|
|
|
|
}
|
2014-07-12 01:19:18 +00:00
|
|
|
|
2016-06-21 14:12:00 +00:00
|
|
|
if ($action eq "get") {
|
2017-10-09 14:56:18 +00:00
|
|
|
if ($done) {
|
2016-06-21 14:12:00 +00:00
|
|
|
if ($value ne '') {
|
2017-10-09 14:56:18 +00:00
|
|
|
print "$value\n";
|
2016-06-21 14:12:00 +00:00
|
|
|
}
|
|
|
|
exit 0;
|
|
|
|
} else {
|
|
|
|
# If the symbol was not found, return an error
|
2017-10-09 14:56:18 +00:00
|
|
|
exit 1;
|
2016-06-21 09:09:25 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-04-03 13:16:08 +00:00
|
|
|
if ($action eq "full" && !$done) {
|
|
|
|
die "Configuration section was not found in $config_file\n";
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($action ne "full" && $action ne "unset" && !$done) {
|
|
|
|
die "A #define for the symbol $name was not found in $config_file\n";
|
|
|
|
}
|
2014-07-12 01:19:18 +00:00
|
|
|
|
|
|
|
__END__
|