mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-06-03 23:38:26 +00:00
Merge remote-tracking branch 'origin/pr/598' into baremetal
This commit is contained in:
Simon Butcher
commit
f2ef573f2b
|
|
@ -36,6 +36,8 @@ Features
|
||||||
extension. On the client, fail the handshake if the server doesn't
|
extension. On the client, fail the handshake if the server doesn't
|
||||||
consent to the use of the ExtendedMasterSecret extension in its
|
consent to the use of the ExtendedMasterSecret extension in its
|
||||||
ServerHello.
|
ServerHello.
|
||||||
|
* Add new configuration option MBEDTLS_SSL_PROTO_NO_TLS that enables code
|
||||||
|
size savings in configurations where only DTLS is used.
|
||||||
|
|
||||||
API Changes
|
API Changes
|
||||||
* Add a new X.509 API call `mbedtls_x509_parse_der_nocopy()`.
|
* Add a new X.509 API call `mbedtls_x509_parse_der_nocopy()`.
|
||||||
|
|
|
||||||
|
|
@ -74,6 +74,7 @@
|
||||||
#define MBEDTLS_SSL_SESSION_TICKETS
|
#define MBEDTLS_SSL_SESSION_TICKETS
|
||||||
#define MBEDTLS_SSL_COOKIE_C
|
#define MBEDTLS_SSL_COOKIE_C
|
||||||
#define MBEDTLS_SSL_PROTO_DTLS
|
#define MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
#define MBEDTLS_SSL_PROTO_NO_TLS
|
||||||
#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
|
#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
|
||||||
#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
|
#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
|
||||||
#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
|
#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT
|
||||||
|
|
|
||||||
|
|
@ -41,7 +41,6 @@
|
||||||
/* mbed TLS feature support */
|
/* mbed TLS feature support */
|
||||||
#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
|
#define MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
|
||||||
#define MBEDTLS_SSL_PROTO_TLS1_2
|
#define MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
#define MBEDTLS_SSL_PROTO_TLS
|
|
||||||
|
|
||||||
/* mbed TLS modules */
|
/* mbed TLS modules */
|
||||||
#define MBEDTLS_AES_C
|
#define MBEDTLS_AES_C
|
||||||
|
|
|
||||||
|
|
@ -40,7 +40,6 @@
|
||||||
#define MBEDTLS_PKCS1_V15
|
#define MBEDTLS_PKCS1_V15
|
||||||
#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
|
#define MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
|
||||||
#define MBEDTLS_SSL_PROTO_TLS1_1
|
#define MBEDTLS_SSL_PROTO_TLS1_1
|
||||||
#define MBEDTLS_SSL_PROTO_TLS
|
|
||||||
|
|
||||||
/* mbed TLS modules */
|
/* mbed TLS modules */
|
||||||
#define MBEDTLS_AES_C
|
#define MBEDTLS_AES_C
|
||||||
|
|
|
||||||
|
|
@ -47,7 +47,6 @@
|
||||||
#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
|
#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
|
||||||
#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
|
#define MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
|
||||||
#define MBEDTLS_SSL_PROTO_TLS1_2
|
#define MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
#define MBEDTLS_SSL_PROTO_TLS
|
|
||||||
|
|
||||||
/* mbed TLS modules */
|
/* mbed TLS modules */
|
||||||
#define MBEDTLS_AES_C
|
#define MBEDTLS_AES_C
|
||||||
|
|
|
||||||
|
|
@ -49,6 +49,7 @@
|
||||||
#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
#define MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
||||||
#define MBEDTLS_SSL_PROTO_TLS1_2
|
#define MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
#define MBEDTLS_SSL_PROTO_DTLS
|
#define MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
#define MBEDTLS_SSL_PROTO_NO_TLS
|
||||||
#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
|
#define MBEDTLS_SSL_DTLS_ANTI_REPLAY
|
||||||
#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
|
#define MBEDTLS_SSL_DTLS_HELLO_VERIFY
|
||||||
#define MBEDTLS_SSL_EXPORT_KEYS
|
#define MBEDTLS_SSL_EXPORT_KEYS
|
||||||
|
|
|
||||||
|
|
@ -565,8 +565,14 @@
|
||||||
#error "MBEDTLS_SSL_TLS_C defined, but no protocol version is active"
|
#error "MBEDTLS_SSL_TLS_C defined, but no protocol version is active"
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
/* PROTO_TLS is not a documented option so far, but still check for conflicts
|
||||||
|
* involving it, in preparation for making it the documented option later */
|
||||||
|
#if defined(MBEDTLS_SSL_PROTO_TLS) && defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
|
#error "MBEDTLS_SSL_PROTO_TLS and MBEDTLS_SSL_PROTO_NO_TLS both defined"
|
||||||
|
#endif
|
||||||
|
|
||||||
#if defined(MBEDTLS_SSL_TLS_C) && \
|
#if defined(MBEDTLS_SSL_TLS_C) && \
|
||||||
( !defined(MBEDTLS_SSL_PROTO_TLS) && !defined(MBEDTLS_SSL_PROTO_DTLS) )
|
( defined(MBEDTLS_SSL_PROTO_NO_TLS) && !defined(MBEDTLS_SSL_PROTO_DTLS) )
|
||||||
#error "MBEDTLS_SSL_TLS_C defined, but neither TLS or DTLS is active"
|
#error "MBEDTLS_SSL_TLS_C defined, but neither TLS or DTLS is active"
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -1535,7 +1535,7 @@
|
||||||
* Enable this and MBEDTLS_SSL_PROTO_TLS1_2 to enable DTLS 1.2,
|
* Enable this and MBEDTLS_SSL_PROTO_TLS1_2 to enable DTLS 1.2,
|
||||||
* and/or this and MBEDTLS_SSL_PROTO_TLS1_1 to enable DTLS 1.0.
|
* and/or this and MBEDTLS_SSL_PROTO_TLS1_1 to enable DTLS 1.0.
|
||||||
*
|
*
|
||||||
* \see MBEDTLS_SSL_PROTO_TLS
|
* \see MBEDTLS_SSL_PROTO_NO_TLS
|
||||||
*
|
*
|
||||||
* Requires: MBEDTLS_SSL_PROTO_TLS1_1
|
* Requires: MBEDTLS_SSL_PROTO_TLS1_1
|
||||||
* or MBEDTLS_SSL_PROTO_TLS1_2
|
* or MBEDTLS_SSL_PROTO_TLS1_2
|
||||||
|
|
@ -1545,25 +1545,23 @@
|
||||||
#define MBEDTLS_SSL_PROTO_DTLS
|
#define MBEDTLS_SSL_PROTO_DTLS
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* \def MBEDTLS_SSL_PROTO_TLS
|
* \def MBEDTLS_SSL_PROTO_NO_TLS
|
||||||
*
|
*
|
||||||
* Enable support for SSL/TLS (all available versions).
|
* Disable support for SSL/TLS (all available versions) - this doesn't affect
|
||||||
|
* support for DTLS which is controlled by #MBEDTLS_SSL_PROTO_DTLS. This is
|
||||||
|
* useful to reduce code size in configurations where only DTLS is used.
|
||||||
*
|
*
|
||||||
* Enable this and MBEDTLS_SSL_PROTO_TLS1_2 to enable TLS 1.2;
|
* Disable this and enable MBEDTLS_SSL_PROTO_TLS1_2 to enable TLS 1.2;
|
||||||
* enable this and MBEDTLS_SSL_PROTO_TLS1_1 to enable TLS 1.1;
|
* disable this and enable MBEDTLS_SSL_PROTO_TLS1_1 to enable TLS 1.1;
|
||||||
* enable this and MBEDTLS_SSL_PROTO_TLS1 to enable TLS 1.0;
|
* disable this and enable MBEDTLS_SSL_PROTO_TLS1 to enable TLS 1.0;
|
||||||
* and/or this and MBEDTLS_SSL_PROTO_SSL3 to enable SSL 3.0 (deprecated).
|
* disable this and enable MBEDTLS_SSL_PROTO_SSL3 to enable SSL 3.0.
|
||||||
*
|
*
|
||||||
* \see MBEDTLS_SSL_PROTO_DTLS
|
* Requirements: if this macro is disabled, at least one of the above
|
||||||
|
* TLS versions needs to be enabled.
|
||||||
*
|
*
|
||||||
* Requires: MBEDTLS_SSL_PROTO_TLS1_2
|
* Uncomment this macro to disable support for TLS.
|
||||||
* or MBEDTLS_SSL_PROTO_TLS1_1
|
|
||||||
* or MBEDTLS_SSL_PROTO_TLS1
|
|
||||||
* or MBEDTLS_SSL_PROTO_SSL3 (deprecated)
|
|
||||||
*
|
|
||||||
* Comment this macro to disable support for TLS
|
|
||||||
*/
|
*/
|
||||||
#define MBEDTLS_SSL_PROTO_TLS
|
//#define MBEDTLS_SSL_PROTO_NO_TLS
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* \def MBEDTLS_SSL_ALPN
|
* \def MBEDTLS_SSL_ALPN
|
||||||
|
|
|
||||||
|
|
@ -1343,8 +1343,8 @@ void mbedtls_ssl_conf_endpoint( mbedtls_ssl_config *conf, int endpoint );
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* \brief Set the transport type (TLS or DTLS).
|
* \brief Set the transport type (TLS or DTLS).
|
||||||
* Default: TLS if #MBEDTLS_SSL_PROTO_TLS is defined, else
|
* Default: TLS unless #MBEDTLS_SSL_PROTO_NO_TLS is defined,
|
||||||
* DTLS.
|
* else DTLS.
|
||||||
*
|
*
|
||||||
* \note For DTLS, you must either provide a recv callback that
|
* \note For DTLS, you must either provide a recv callback that
|
||||||
* doesn't block, or one that handles timeouts, see
|
* doesn't block, or one that handles timeouts, see
|
||||||
|
|
|
||||||
|
|
@ -58,6 +58,12 @@
|
||||||
#define inline __inline
|
#define inline __inline
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
/* The public option is negative for backwards compatibility,
|
||||||
|
* but internally a poisitive option is more convenient. */
|
||||||
|
#if !defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
|
#define MBEDTLS_SSL_PROTO_TLS
|
||||||
|
#endif
|
||||||
|
|
||||||
/* Determine minimum supported version */
|
/* Determine minimum supported version */
|
||||||
#define MBEDTLS_SSL_MIN_MAJOR_VERSION MBEDTLS_SSL_MAJOR_VERSION_3
|
#define MBEDTLS_SSL_MIN_MAJOR_VERSION MBEDTLS_SSL_MAJOR_VERSION_3
|
||||||
|
|
||||||
|
|
@ -963,8 +969,11 @@ static inline size_t mbedtls_ssl_hs_hdr_len( const mbedtls_ssl_context *ssl )
|
||||||
#if defined(MBEDTLS_SSL_PROTO_DTLS)
|
#if defined(MBEDTLS_SSL_PROTO_DTLS)
|
||||||
if( MBEDTLS_SSL_TRANSPORT_IS_DTLS( ssl->conf->transport ) )
|
if( MBEDTLS_SSL_TRANSPORT_IS_DTLS( ssl->conf->transport ) )
|
||||||
return( 12 );
|
return( 12 );
|
||||||
|
MBEDTLS_SSL_TRANSPORT_ELSE
|
||||||
|
#endif
|
||||||
|
#if defined(MBEDTLS_SSL_PROTO_TLS)
|
||||||
|
return( 4 );
|
||||||
#endif
|
#endif
|
||||||
return( 4 );
|
|
||||||
}
|
}
|
||||||
|
|
||||||
#if defined(MBEDTLS_SSL_PROTO_DTLS)
|
#if defined(MBEDTLS_SSL_PROTO_DTLS)
|
||||||
|
|
|
||||||
|
|
@ -1164,7 +1164,11 @@ int mbedtls_pk_parse_key( mbedtls_pk_context *pk,
|
||||||
const unsigned char *key, size_t keylen,
|
const unsigned char *key, size_t keylen,
|
||||||
const unsigned char *pwd, size_t pwdlen )
|
const unsigned char *pwd, size_t pwdlen )
|
||||||
{
|
{
|
||||||
|
#if defined(MBEDTLS_PKCS12_C) || \
|
||||||
|
defined(MBEDTLS_PKCS5_C) || \
|
||||||
|
defined(MBEDTLS_PEM_PARSE_C)
|
||||||
int ret;
|
int ret;
|
||||||
|
#endif
|
||||||
const mbedtls_pk_info_t *pk_info;
|
const mbedtls_pk_info_t *pk_info;
|
||||||
#if defined(MBEDTLS_PEM_PARSE_C)
|
#if defined(MBEDTLS_PEM_PARSE_C)
|
||||||
size_t len;
|
size_t len;
|
||||||
|
|
@ -1327,7 +1331,7 @@ int mbedtls_pk_parse_key( mbedtls_pk_context *pk,
|
||||||
}
|
}
|
||||||
#endif /* MBEDTLS_PKCS12_C || MBEDTLS_PKCS5_C */
|
#endif /* MBEDTLS_PKCS12_C || MBEDTLS_PKCS5_C */
|
||||||
|
|
||||||
if( ( ret = pk_parse_key_pkcs8_unencrypted_der( pk, key, keylen ) ) == 0 )
|
if( pk_parse_key_pkcs8_unencrypted_der( pk, key, keylen ) == 0 )
|
||||||
return( 0 );
|
return( 0 );
|
||||||
|
|
||||||
mbedtls_pk_free( pk );
|
mbedtls_pk_free( pk );
|
||||||
|
|
|
||||||
|
|
@ -68,8 +68,11 @@ static inline size_t ssl_ep_len( const mbedtls_ssl_context *ssl )
|
||||||
#if defined(MBEDTLS_SSL_PROTO_DTLS)
|
#if defined(MBEDTLS_SSL_PROTO_DTLS)
|
||||||
if( MBEDTLS_SSL_TRANSPORT_IS_DTLS( ssl->conf->transport ) )
|
if( MBEDTLS_SSL_TRANSPORT_IS_DTLS( ssl->conf->transport ) )
|
||||||
return( 2 );
|
return( 2 );
|
||||||
|
MBEDTLS_SSL_TRANSPORT_ELSE
|
||||||
#endif
|
#endif
|
||||||
|
#if defined(MBEDTLS_SSL_PROTO_TLS)
|
||||||
return( 0 );
|
return( 0 );
|
||||||
|
#endif
|
||||||
}
|
}
|
||||||
|
|
||||||
/*
|
/*
|
||||||
|
|
@ -8647,25 +8650,29 @@ const char *mbedtls_ssl_get_version( const mbedtls_ssl_context *ssl )
|
||||||
return( "unknown (DTLS)" );
|
return( "unknown (DTLS)" );
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
#endif
|
MBEDTLS_SSL_TRANSPORT_ELSE
|
||||||
|
#endif /* MBEDTLS_SSL_PROTO_DTLS */
|
||||||
switch( ssl->minor_ver )
|
#if defined(MBEDTLS_SSL_PROTO_TLS)
|
||||||
{
|
{
|
||||||
case MBEDTLS_SSL_MINOR_VERSION_0:
|
switch( ssl->minor_ver )
|
||||||
return( "SSLv3.0" );
|
{
|
||||||
|
case MBEDTLS_SSL_MINOR_VERSION_0:
|
||||||
|
return( "SSLv3.0" );
|
||||||
|
|
||||||
case MBEDTLS_SSL_MINOR_VERSION_1:
|
case MBEDTLS_SSL_MINOR_VERSION_1:
|
||||||
return( "TLSv1.0" );
|
return( "TLSv1.0" );
|
||||||
|
|
||||||
case MBEDTLS_SSL_MINOR_VERSION_2:
|
case MBEDTLS_SSL_MINOR_VERSION_2:
|
||||||
return( "TLSv1.1" );
|
return( "TLSv1.1" );
|
||||||
|
|
||||||
case MBEDTLS_SSL_MINOR_VERSION_3:
|
case MBEDTLS_SSL_MINOR_VERSION_3:
|
||||||
return( "TLSv1.2" );
|
return( "TLSv1.2" );
|
||||||
|
|
||||||
default:
|
default:
|
||||||
return( "unknown" );
|
return( "unknown" );
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
#endif /* MBEDTLS_SSL_PROTO_TLS */
|
||||||
}
|
}
|
||||||
|
|
||||||
int mbedtls_ssl_get_record_expansion( const mbedtls_ssl_context *ssl )
|
int mbedtls_ssl_get_record_expansion( const mbedtls_ssl_context *ssl )
|
||||||
|
|
@ -9659,8 +9666,13 @@ int mbedtls_ssl_read( mbedtls_ssl_context *ssl, unsigned char *buf, size_t len )
|
||||||
{
|
{
|
||||||
continue;
|
continue;
|
||||||
}
|
}
|
||||||
|
MBEDTLS_SSL_TRANSPORT_ELSE
|
||||||
|
#endif
|
||||||
|
#if defined(MBEDTLS_SSL_PROTO_TLS)
|
||||||
|
{
|
||||||
|
return( MBEDTLS_ERR_SSL_UNEXPECTED_MESSAGE );
|
||||||
|
}
|
||||||
#endif
|
#endif
|
||||||
return( MBEDTLS_ERR_SSL_UNEXPECTED_MESSAGE );
|
|
||||||
}
|
}
|
||||||
#endif /* MBEDTLS_SSL_CLI_C */
|
#endif /* MBEDTLS_SSL_CLI_C */
|
||||||
|
|
||||||
|
|
@ -9676,8 +9688,13 @@ int mbedtls_ssl_read( mbedtls_ssl_context *ssl, unsigned char *buf, size_t len )
|
||||||
{
|
{
|
||||||
continue;
|
continue;
|
||||||
}
|
}
|
||||||
|
MBEDTLS_SSL_TRANSPORT_ELSE
|
||||||
|
#endif
|
||||||
|
#if defined(MBEDTLS_SSL_PROTO_TLS)
|
||||||
|
{
|
||||||
|
return( MBEDTLS_ERR_SSL_UNEXPECTED_MESSAGE );
|
||||||
|
}
|
||||||
#endif
|
#endif
|
||||||
return( MBEDTLS_ERR_SSL_UNEXPECTED_MESSAGE );
|
|
||||||
}
|
}
|
||||||
#endif /* MBEDTLS_SSL_SRV_C */
|
#endif /* MBEDTLS_SSL_SRV_C */
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -489,9 +489,9 @@ static const char *features[] = {
|
||||||
#if defined(MBEDTLS_SSL_PROTO_DTLS)
|
#if defined(MBEDTLS_SSL_PROTO_DTLS)
|
||||||
"MBEDTLS_SSL_PROTO_DTLS",
|
"MBEDTLS_SSL_PROTO_DTLS",
|
||||||
#endif /* MBEDTLS_SSL_PROTO_DTLS */
|
#endif /* MBEDTLS_SSL_PROTO_DTLS */
|
||||||
#if defined(MBEDTLS_SSL_PROTO_TLS)
|
#if defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
"MBEDTLS_SSL_PROTO_TLS",
|
"MBEDTLS_SSL_PROTO_NO_TLS",
|
||||||
#endif /* MBEDTLS_SSL_PROTO_TLS */
|
#endif /* MBEDTLS_SSL_PROTO_NO_TLS */
|
||||||
#if defined(MBEDTLS_SSL_ALPN)
|
#if defined(MBEDTLS_SSL_ALPN)
|
||||||
"MBEDTLS_SSL_ALPN",
|
"MBEDTLS_SSL_ALPN",
|
||||||
#endif /* MBEDTLS_SSL_ALPN */
|
#endif /* MBEDTLS_SSL_ALPN */
|
||||||
|
|
|
||||||
|
|
@ -1346,13 +1346,13 @@ int query_config( const char *config )
|
||||||
}
|
}
|
||||||
#endif /* MBEDTLS_SSL_PROTO_DTLS */
|
#endif /* MBEDTLS_SSL_PROTO_DTLS */
|
||||||
|
|
||||||
#if defined(MBEDTLS_SSL_PROTO_TLS)
|
#if defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
if( strcmp( "MBEDTLS_SSL_PROTO_TLS", config ) == 0 )
|
if( strcmp( "MBEDTLS_SSL_PROTO_NO_TLS", config ) == 0 )
|
||||||
{
|
{
|
||||||
MACRO_EXPANSION_TO_STR( MBEDTLS_SSL_PROTO_TLS );
|
MACRO_EXPANSION_TO_STR( MBEDTLS_SSL_PROTO_NO_TLS );
|
||||||
return( 0 );
|
return( 0 );
|
||||||
}
|
}
|
||||||
#endif /* MBEDTLS_SSL_PROTO_TLS */
|
#endif /* MBEDTLS_SSL_PROTO_NO_TLS */
|
||||||
|
|
||||||
#if defined(MBEDTLS_SSL_ALPN)
|
#if defined(MBEDTLS_SSL_ALPN)
|
||||||
if( strcmp( "MBEDTLS_SSL_ALPN", config ) == 0 )
|
if( strcmp( "MBEDTLS_SSL_ALPN", config ) == 0 )
|
||||||
|
|
|
||||||
|
|
@ -44,14 +44,14 @@
|
||||||
!defined(MBEDTLS_NET_C) || !defined(MBEDTLS_RSA_C) || \
|
!defined(MBEDTLS_NET_C) || !defined(MBEDTLS_RSA_C) || \
|
||||||
!defined(MBEDTLS_CERTS_C) || !defined(MBEDTLS_PEM_PARSE_C) || \
|
!defined(MBEDTLS_CERTS_C) || !defined(MBEDTLS_PEM_PARSE_C) || \
|
||||||
!defined(MBEDTLS_CTR_DRBG_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
|
!defined(MBEDTLS_CTR_DRBG_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
|
||||||
!defined(MBEDTLS_SSL_PROTO_TLS)
|
defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
int main( void )
|
int main( void )
|
||||||
{
|
{
|
||||||
mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_ENTROPY_C and/or "
|
mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_ENTROPY_C and/or "
|
||||||
"MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_CLI_C and/or "
|
"MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_CLI_C and/or "
|
||||||
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
||||||
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C and/or"
|
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C and/or"
|
||||||
"MBEDTLS_SSL_PROTO_TLS not defined.\n");
|
"not defined, and/or MBEDTLS_SSL_PROTO_NO_TLS defined.\n");
|
||||||
return( 0 );
|
return( 0 );
|
||||||
}
|
}
|
||||||
#else
|
#else
|
||||||
|
|
|
||||||
|
|
@ -44,7 +44,7 @@
|
||||||
!defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_CTR_DRBG_C) || \
|
!defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_CTR_DRBG_C) || \
|
||||||
!defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_TIMING_C) || \
|
!defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_TIMING_C) || \
|
||||||
!defined(MBEDTLS_FS_IO) || !defined(MBEDTLS_PEM_PARSE_C) || \
|
!defined(MBEDTLS_FS_IO) || !defined(MBEDTLS_PEM_PARSE_C) || \
|
||||||
!defined(MBEDTLS_SSL_PROTO_TLS)
|
defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
int main( int argc, char *argv[] )
|
int main( int argc, char *argv[] )
|
||||||
{
|
{
|
||||||
((void) argc);
|
((void) argc);
|
||||||
|
|
@ -54,8 +54,8 @@ int main( int argc, char *argv[] )
|
||||||
"and/or MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_SRV_C and/or "
|
"and/or MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_SRV_C and/or "
|
||||||
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
||||||
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C and/or "
|
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C and/or "
|
||||||
"MBEDTLS_TIMING_C and/or MBEDTLS_PEM_PARSE_C and/or "
|
"MBEDTLS_TIMING_C and/or MBEDTLS_PEM_PARSE_C not defined, and/or "
|
||||||
"MBEDTLS_SSL_PROTO_TLS not defined.\n");
|
"MBEDTLS_SSL_PROTO_NO_TLS defined.\n");
|
||||||
return( 0 );
|
return( 0 );
|
||||||
}
|
}
|
||||||
#elif defined(_WIN32)
|
#elif defined(_WIN32)
|
||||||
|
|
|
||||||
|
|
@ -48,14 +48,14 @@
|
||||||
!defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_CLI_C) || \
|
!defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_CLI_C) || \
|
||||||
!defined(MBEDTLS_NET_C) || !defined(MBEDTLS_RSA_C) || \
|
!defined(MBEDTLS_NET_C) || !defined(MBEDTLS_RSA_C) || \
|
||||||
!defined(MBEDTLS_CTR_DRBG_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
|
!defined(MBEDTLS_CTR_DRBG_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
|
||||||
!defined(MBEDTLS_FS_IO) || !defined(MBEDTLS_SSL_PROTO_TLS)
|
!defined(MBEDTLS_FS_IO) || defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
int main( void )
|
int main( void )
|
||||||
{
|
{
|
||||||
mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_ENTROPY_C and/or "
|
mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_ENTROPY_C and/or "
|
||||||
"MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_CLI_C and/or "
|
"MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_CLI_C and/or "
|
||||||
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
||||||
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C and/or "
|
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C "
|
||||||
"MBEDTLS_SSL_PROTO_TLS not defined.\n");
|
"not defined, and/or MBEDTLS_SSL_PROTO_NO_TLS defined.\n");
|
||||||
return( 0 );
|
return( 0 );
|
||||||
}
|
}
|
||||||
#else
|
#else
|
||||||
|
|
|
||||||
|
|
@ -45,7 +45,7 @@
|
||||||
!defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_CTR_DRBG_C) || \
|
!defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_CTR_DRBG_C) || \
|
||||||
!defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_FS_IO) || \
|
!defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_FS_IO) || \
|
||||||
!defined(MBEDTLS_THREADING_C) || !defined(MBEDTLS_THREADING_PTHREAD) || \
|
!defined(MBEDTLS_THREADING_C) || !defined(MBEDTLS_THREADING_PTHREAD) || \
|
||||||
!defined(MBEDTLS_PEM_PARSE_C) || !defined(MBEDTLS_SSL_PROTO_TLS)
|
!defined(MBEDTLS_PEM_PARSE_C) || defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
int main( void )
|
int main( void )
|
||||||
{
|
{
|
||||||
mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_CERTS_C and/or MBEDTLS_ENTROPY_C "
|
mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_CERTS_C and/or MBEDTLS_ENTROPY_C "
|
||||||
|
|
@ -53,8 +53,8 @@ int main( void )
|
||||||
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
||||||
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C and/or "
|
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C and/or "
|
||||||
"MBEDTLS_THREADING_C and/or MBEDTLS_THREADING_PTHREAD "
|
"MBEDTLS_THREADING_C and/or MBEDTLS_THREADING_PTHREAD "
|
||||||
"and/or MBEDTLS_PEM_PARSE_C and/or "
|
"and/or MBEDTLS_PEM_PARSE_C not defined, and/or "
|
||||||
"MBEDTLS_SSL_PROTO_TLS not defined.\n");
|
"MBEDTLS_SSL_PROTO_NO_TLS defined.\n");
|
||||||
return( 0 );
|
return( 0 );
|
||||||
}
|
}
|
||||||
#else
|
#else
|
||||||
|
|
|
||||||
|
|
@ -44,15 +44,15 @@
|
||||||
!defined(MBEDTLS_SSL_SRV_C) || !defined(MBEDTLS_NET_C) || \
|
!defined(MBEDTLS_SSL_SRV_C) || !defined(MBEDTLS_NET_C) || \
|
||||||
!defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_CTR_DRBG_C) || \
|
!defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_CTR_DRBG_C) || \
|
||||||
!defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_FS_IO) || \
|
!defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_FS_IO) || \
|
||||||
!defined(MBEDTLS_PEM_PARSE_C) || !defined(MBEDTLS_SSL_PROTO_TLS)
|
!defined(MBEDTLS_PEM_PARSE_C) || defined(MBEDTLS_SSL_PROTO_NO_TLS)
|
||||||
int main( void )
|
int main( void )
|
||||||
{
|
{
|
||||||
mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_CERTS_C and/or MBEDTLS_ENTROPY_C "
|
mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_CERTS_C and/or MBEDTLS_ENTROPY_C "
|
||||||
"and/or MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_SRV_C and/or "
|
"and/or MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_SRV_C and/or "
|
||||||
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
"MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
|
||||||
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C "
|
"MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C "
|
||||||
"and/or MBEDTLS_PEM_PARSE_C and/or "
|
"and/or MBEDTLS_PEM_PARSE_C not defined, and/or "
|
||||||
"MBEDTLS_SSL_PROTO_TLS not defined.\n");
|
"MBEDTLS_SSL_PROTO_NO_TLS defined.\n");
|
||||||
return( 0 );
|
return( 0 );
|
||||||
}
|
}
|
||||||
#else
|
#else
|
||||||
|
|
|
||||||
|
|
@ -75,15 +75,20 @@ baremetal_build_gcc()
|
||||||
echo "Create 32-bit library-only baremetal build (GCC, config: $BAREMETAL_CONFIG)"
|
echo "Create 32-bit library-only baremetal build (GCC, config: $BAREMETAL_CONFIG)"
|
||||||
gcc_ver=$($GCC_CC --version | head -n 1 | sed -n 's/^.*\([0-9]\.[0-9]\.[0-9]\).*$/\1/p')
|
gcc_ver=$($GCC_CC --version | head -n 1 | sed -n 's/^.*\([0-9]\.[0-9]\.[0-9]\).*$/\1/p')
|
||||||
|
|
||||||
CFLAGS_BAREMETAL="-Os -mthumb -mcpu=cortex-m0plus"
|
CFLAGS_BAREMETAL="-Os -mthumb -mcpu=cortex-m0plus --std=c99"
|
||||||
|
if [ $check -ne 0 ]; then
|
||||||
|
CFLAGS_BAREMETAL="$CFLAGS_BAREMETAL -Werror"
|
||||||
|
fi
|
||||||
CFLAGS="$CFLAGS_BAREMETAL $CFLAGS_CONFIG"
|
CFLAGS="$CFLAGS_BAREMETAL $CFLAGS_CONFIG"
|
||||||
|
|
||||||
$GCC_CC --version
|
|
||||||
|
|
||||||
echo "GCC version: $gcc_ver"
|
echo "GCC version: $gcc_ver"
|
||||||
echo "Flags: $CFLAGS_BAREMETAL"
|
echo "Flags: $CFLAGS_BAREMETAL"
|
||||||
make CC=$GCC_CC AR=$GCC_AR CFLAGS="$CFLAGS" lib -j > /dev/null
|
make CC=$GCC_CC AR=$GCC_AR CFLAGS="$CFLAGS" lib -j > /dev/null
|
||||||
|
|
||||||
|
if [ $check -ne 0 ]; then
|
||||||
|
return
|
||||||
|
fi
|
||||||
|
|
||||||
ROM_OUT_FILE="rom_files__${date}__${NAME}__gcc_${gcc_ver}"
|
ROM_OUT_FILE="rom_files__${date}__${NAME}__gcc_${gcc_ver}"
|
||||||
ROM_OUT_SYMS="rom_syms__${date}__${NAME}__gcc_${gcc_ver}"
|
ROM_OUT_SYMS="rom_syms__${date}__${NAME}__gcc_${gcc_ver}"
|
||||||
echo "Generate file statistics..."
|
echo "Generate file statistics..."
|
||||||
|
|
@ -113,10 +118,18 @@ baremetal_build_armc5()
|
||||||
CFLAGS="$CFLAGS_BAREMETAL $CFLAGS_CONFIG"
|
CFLAGS="$CFLAGS_BAREMETAL $CFLAGS_CONFIG"
|
||||||
WARNING_CFLAGS="--strict --c99"
|
WARNING_CFLAGS="--strict --c99"
|
||||||
|
|
||||||
|
if [ $check -ne 0 ]; then
|
||||||
|
WARNING_CFLAGS="$WARNING_CFLAGS --diag_error=warning"
|
||||||
|
fi
|
||||||
|
|
||||||
echo "ARMC5 version: $armc5_ver"
|
echo "ARMC5 version: $armc5_ver"
|
||||||
echo "Flags: $WARNING_CFLAGS $CFLAGS_BAREMETAL"
|
echo "Flags: $WARNING_CFLAGS $CFLAGS_BAREMETAL"
|
||||||
make WARNING_CFLAGS="$WARNING_CFLAGS" CC=$ARMC5_CC AR=$ARMC5_AR CFLAGS="$CFLAGS" lib -j > /dev/null
|
make WARNING_CFLAGS="$WARNING_CFLAGS" CC=$ARMC5_CC AR=$ARMC5_AR CFLAGS="$CFLAGS" lib -j > /dev/null
|
||||||
|
|
||||||
|
if [ $check -ne 0 ]; then
|
||||||
|
return
|
||||||
|
fi
|
||||||
|
|
||||||
ROM_OUT_FILE="rom_files__${date}__${NAME}__armc5_${armc5_ver}"
|
ROM_OUT_FILE="rom_files__${date}__${NAME}__armc5_${armc5_ver}"
|
||||||
ROM_OUT_SYMS="rom_syms__${date}__${NAME}__armc5_${armc5_ver}"
|
ROM_OUT_SYMS="rom_syms__${date}__${NAME}__armc5_${armc5_ver}"
|
||||||
echo "Generate file statistics..."
|
echo "Generate file statistics..."
|
||||||
|
|
@ -142,13 +155,19 @@ baremetal_build_armc6()
|
||||||
echo "Create 32-bit library-only baremetal build (ARMC6, Config: $BAREMETAL_CONFIG)"
|
echo "Create 32-bit library-only baremetal build (ARMC6, Config: $BAREMETAL_CONFIG)"
|
||||||
armc6_ver=$($ARMC6_CC --version | sed -n 's/.*ARM Compiler \([^ ]*\)$/\1/p')
|
armc6_ver=$($ARMC6_CC --version | sed -n 's/.*ARM Compiler \([^ ]*\)$/\1/p')
|
||||||
|
|
||||||
CFLAGS_BAREMETAL="-Os --target=arm-arm-none-eabi -mthumb -mcpu=cortex-m0plus"
|
CFLAGS_BAREMETAL="-Os --target=arm-arm-none-eabi -mthumb -mcpu=cortex-m0plus -xc --std=c99"
|
||||||
|
if [ $check -ne 0 ]; then
|
||||||
|
CFLAGS_BAREMETAL="$CFLAGS_BAREMETAL -Werror"
|
||||||
|
fi
|
||||||
CFLAGS="$CFLAGS_BAREMETAL $CFLAGS_CONFIG"
|
CFLAGS="$CFLAGS_BAREMETAL $CFLAGS_CONFIG"
|
||||||
WARNING_CFLAGS="-xc -std=c99"
|
|
||||||
|
|
||||||
echo "ARMC6 version: $armc6_ver"
|
echo "ARMC6 version: $armc6_ver"
|
||||||
echo "Flags: $WARNING_CFLAGS $CFLAGS_BAREMETAL"
|
echo "Flags: $CFLAGS_BAREMETAL"
|
||||||
make WARNING_CFLAGS="$WARNING_CFLAGS" CC=$ARMC6_CC AR=$ARMC6_AR CFLAGS="$CFLAGS" lib -j > /dev/null
|
make CC=$ARMC6_CC AR=$ARMC6_AR CFLAGS="$CFLAGS" lib -j > /dev/null
|
||||||
|
|
||||||
|
if [ $check -ne 0 ]; then
|
||||||
|
return
|
||||||
|
fi
|
||||||
|
|
||||||
ROM_OUT_FILE="rom_files__${date}__${NAME}__armc6_${armc6_ver}"
|
ROM_OUT_FILE="rom_files__${date}__${NAME}__armc6_${armc6_ver}"
|
||||||
ROM_OUT_SYMS="rom_syms__${date}__${NAME}__armc6_${armc6_ver}"
|
ROM_OUT_SYMS="rom_syms__${date}__${NAME}__armc6_${armc6_ver}"
|
||||||
|
|
@ -299,7 +318,7 @@ baremetal_ram_stack() {
|
||||||
}
|
}
|
||||||
|
|
||||||
show_usage() {
|
show_usage() {
|
||||||
echo "Usage: $0 [--rom [--gcc] [--armc5] [--armc6]|--ram [--stack] [--heap]]"
|
echo "Usage: $0 [--rom [--check] [--gcc] [--armc5] [--armc6]|--ram [--stack] [--heap]]"
|
||||||
}
|
}
|
||||||
|
|
||||||
test_build=0
|
test_build=0
|
||||||
|
|
@ -312,6 +331,8 @@ build_armc6=0
|
||||||
measure_heap=0
|
measure_heap=0
|
||||||
measure_stack=0
|
measure_stack=0
|
||||||
|
|
||||||
|
check=0
|
||||||
|
|
||||||
while [ $# -gt 0 ]; do
|
while [ $# -gt 0 ]; do
|
||||||
case "$1" in
|
case "$1" in
|
||||||
--gcc) build_gcc=1;;
|
--gcc) build_gcc=1;;
|
||||||
|
|
@ -321,6 +342,7 @@ while [ $# -gt 0 ]; do
|
||||||
--rom) raw_build=1;;
|
--rom) raw_build=1;;
|
||||||
--heap) measure_heap=1;;
|
--heap) measure_heap=1;;
|
||||||
--stack) measure_stack=1;;
|
--stack) measure_stack=1;;
|
||||||
|
--check) check=1;;
|
||||||
-*)
|
-*)
|
||||||
echo >&2 "Unknown option: $1"
|
echo >&2 "Unknown option: $1"
|
||||||
show_usage
|
show_usage
|
||||||
|
|
|
||||||
|
|
@ -31,6 +31,7 @@
|
||||||
# MBEDTLS_REMOVE_ARC4_CIPHERSUITES
|
# MBEDTLS_REMOVE_ARC4_CIPHERSUITES
|
||||||
# MBEDTLS_REMOVE_3DES_CIPHERSUITES
|
# MBEDTLS_REMOVE_3DES_CIPHERSUITES
|
||||||
# MBEDTLS_SSL_HW_RECORD_ACCEL
|
# MBEDTLS_SSL_HW_RECORD_ACCEL
|
||||||
|
# MBEDTLS_SSL_PROTO_NO_DTLS
|
||||||
# MBEDTLS_RSA_NO_CRT
|
# MBEDTLS_RSA_NO_CRT
|
||||||
# MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
|
# MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
|
||||||
# MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
# MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
||||||
|
|
@ -92,6 +93,7 @@ MBEDTLS_RSA_NO_CRT
|
||||||
MBEDTLS_REMOVE_ARC4_CIPHERSUITES
|
MBEDTLS_REMOVE_ARC4_CIPHERSUITES
|
||||||
MBEDTLS_REMOVE_3DES_CIPHERSUITES
|
MBEDTLS_REMOVE_3DES_CIPHERSUITES
|
||||||
MBEDTLS_SSL_HW_RECORD_ACCEL
|
MBEDTLS_SSL_HW_RECORD_ACCEL
|
||||||
|
MBEDTLS_SSL_PROTO_NO_TLS
|
||||||
MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
|
MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3
|
||||||
MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION
|
||||||
MBEDTLS_ZLIB_SUPPORT
|
MBEDTLS_ZLIB_SUPPORT
|
||||||
|
|
|
||||||
|
|
@ -1169,6 +1169,12 @@ component_build_armcc () {
|
||||||
armc6_build_test "--target=aarch64-arm-none-eabi -march=armv8.2-a"
|
armc6_build_test "--target=aarch64-arm-none-eabi -march=armv8.2-a"
|
||||||
}
|
}
|
||||||
|
|
||||||
|
# need _armcc in the name for pre_check_tools()
|
||||||
|
component_build_baremetal_script_gcc_armcc () {
|
||||||
|
msg "build: scripts/baremetal.sh gcc/armc5/armc6"
|
||||||
|
scripts/baremetal.sh --rom --gcc --armc5 --armc6 --check
|
||||||
|
}
|
||||||
|
|
||||||
component_build_armcc_tinycrypt_baremetal () {
|
component_build_armcc_tinycrypt_baremetal () {
|
||||||
msg "build: ARM Compiler 5, make with tinycrypt and baremetal"
|
msg "build: ARM Compiler 5, make with tinycrypt and baremetal"
|
||||||
scripts/config.pl baremetal
|
scripts/config.pl baremetal
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue