mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-03-27 13:55:12 +00:00
6ace4657b6
If MBEDTLS_SSL_SINGLE_CIPHERSUITE is enabled, it overwrites the runtime configuration of supported ciphersuites, which includes both the configuration API and the fields which are used to store the configuration. Both are therefore no longer needed and should be removed for the benefit of code-size, memory usage, and API clarity (no accidental hiccup of runtime vs. compile-time configuration possible). The configuration API mbedtls_ssl_conf_ciphersuites() has already been removed in case MBEDTLS_SSL_SINGLE_CIPHERSUITE, and this commit removes the field mbedtls_ssl_config::ciphersuite_list which it updates. |
||
|---|---|---|
| .. | ||
| baremetal.h | ||
| baremetal_test.h | ||
| config-ccm-psk-tls1_2.h | ||
| config-mini-tls1_1.h | ||
| config-no-entropy.h | ||
| config-suite-b.h | ||
| config-thread.h | ||
| README.txt | ||
This directory contains example configuration files.
The examples are generally focused on a particular usage case (eg, support for
a restricted number of ciphersuites) and aim at minimizing resource usage for
this target. They can be used as a basis for custom configurations.
These files are complete replacements for the default config.h. To use one of
them, you can pick one of the following methods:
1. Replace the default file include/mbedtls/config.h with the chosen one.
(Depending on your compiler, you may need to adjust the line with
#include "mbedtls/check_config.h" then.)
2. Define MBEDTLS_CONFIG_FILE and adjust the include path accordingly.
For example, using make:
CFLAGS="-I$PWD/configs -DMBEDTLS_CONFIG_FILE='<foo.h>'" make
Or, using cmake:
find . -iname '*cmake*' -not -name CMakeLists.txt -exec rm -rf {} +
CFLAGS="-I$PWD/configs -DMBEDTLS_CONFIG_FILE='<foo.h>'" cmake .
make
Note that the second method also works if you want to keep your custom
configuration file outside the mbed TLS tree.