1 --- a/include/mbedtls/config.h
2 +++ b/include/mbedtls/config.h
5 * Uncomment to get errors on using deprecated functions.
7 -//#define MBEDTLS_DEPRECATED_REMOVED
8 +#define MBEDTLS_DEPRECATED_REMOVED
10 /* \} name SECTION: System support */
14 * Enable Cipher Feedback mode (CFB) for symmetric ciphers.
16 -#define MBEDTLS_CIPHER_MODE_CFB
17 +//#define MBEDTLS_CIPHER_MODE_CFB
20 * \def MBEDTLS_CIPHER_MODE_CTR
23 * Comment macros to disable the curve and functions for it
25 -#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
26 -#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
27 +//#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
28 +//#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
29 #define MBEDTLS_ECP_DP_SECP256R1_ENABLED
30 #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
31 #define MBEDTLS_ECP_DP_SECP521R1_ENABLED
32 -#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
33 -#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
34 +//#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
35 +//#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
36 #define MBEDTLS_ECP_DP_SECP256K1_ENABLED
37 #define MBEDTLS_ECP_DP_BP256R1_ENABLED
38 #define MBEDTLS_ECP_DP_BP384R1_ENABLED
41 * Comment this macro to disable NIST curves optimisation.
43 -#define MBEDTLS_ECP_NIST_OPTIM
44 +//#define MBEDTLS_ECP_NIST_OPTIM
47 * \def MBEDTLS_ECDSA_DETERMINISTIC
49 * Enable deterministic ECDSA (RFC 6979).
50 * Standard ECDSA is "fragile" in the sense that lack of entropy when signing
51 * may result in a compromise of the long-term signing key. This is avoided by
52 - * the deterministic variant.
53 + DH * the deterministic variant.
55 * Requires: MBEDTLS_HMAC_DRBG_C
58 * MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA
59 * MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA
61 -#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
62 +//#define MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
65 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
67 * MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA
68 * MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA
70 -#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
71 +//#define MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
74 * \def MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
76 * MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
77 * MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
79 -#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
80 +//#define MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
83 * \def MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
85 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
86 * MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
88 -#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
89 +//#define MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
92 * \def MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
94 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
95 * MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
97 -#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
98 +//#define MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
101 * \def MBEDTLS_PK_PARSE_EC_EXTENDED
104 * Comment this macro to disable support for external private RSA keys.
106 -#define MBEDTLS_PK_RSA_ALT_SUPPORT
107 +//#define MBEDTLS_PK_RSA_ALT_SUPPORT
110 * \def MBEDTLS_PKCS1_V15
111 @@ -842,14 +842,14 @@
112 * Uncomment this macro to disable the use of CRT in RSA.
115 -//#define MBEDTLS_RSA_NO_CRT
116 +#define MBEDTLS_RSA_NO_CRT
119 * \def MBEDTLS_SELF_TEST
121 * Enable the checkup functions (*_self_test).
123 -#define MBEDTLS_SELF_TEST
124 +//#define MBEDTLS_SELF_TEST
127 * \def MBEDTLS_SHA256_SMALLER
130 * Uncomment to enable the smaller implementation of SHA256.
132 -//#define MBEDTLS_SHA256_SMALLER
133 +#define MBEDTLS_SHA256_SMALLER
136 * \def MBEDTLS_SSL_AEAD_RANDOM_IV
137 @@ -1038,7 +1038,7 @@
139 * Comment this macro to disable support for SSL 3.0
141 -#define MBEDTLS_SSL_PROTO_SSL3
142 +//#define MBEDTLS_SSL_PROTO_SSL3
145 * \def MBEDTLS_SSL_PROTO_TLS1
146 @@ -1176,7 +1176,7 @@
148 * Comment this macro to disable support for truncated HMAC in SSL
150 -#define MBEDTLS_SSL_TRUNCATED_HMAC
151 +//#define MBEDTLS_SSL_TRUNCATED_HMAC
154 * \def MBEDTLS_THREADING_ALT
155 @@ -1410,7 +1410,7 @@
156 * MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA
157 * MBEDTLS_TLS_PSK_WITH_RC4_128_SHA
159 -#define MBEDTLS_ARC4_C
160 +//#define MBEDTLS_ARC4_C
163 * \def MBEDTLS_ASN1_PARSE_C
164 @@ -1475,7 +1475,7 @@
166 * Module: library/blowfish.c
168 -#define MBEDTLS_BLOWFISH_C
169 +//#define MBEDTLS_BLOWFISH_C
172 * \def MBEDTLS_CAMELLIA_C
173 @@ -1530,7 +1530,7 @@
174 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256
175 * MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256
177 -#define MBEDTLS_CAMELLIA_C
178 +//#define MBEDTLS_CAMELLIA_C
182 @@ -1544,7 +1544,7 @@
183 * This module enables the AES-CCM ciphersuites, if other requisites are
186 -#define MBEDTLS_CCM_C
187 +//#define MBEDTLS_CCM_C
190 * \def MBEDTLS_CERTS_C
191 @@ -1556,7 +1556,7 @@
193 * This module is used for testing (ssl_client/server).
195 -#define MBEDTLS_CERTS_C
196 +//#define MBEDTLS_CERTS_C
199 * \def MBEDTLS_CIPHER_C
200 @@ -1596,7 +1596,7 @@
202 * This module provides debugging functions.
204 -#define MBEDTLS_DEBUG_C
205 +//#define MBEDTLS_DEBUG_C
209 @@ -1636,7 +1636,7 @@
210 * This module is used by the following key exchanges:
213 -#define MBEDTLS_DHM_C
214 +//#define MBEDTLS_DHM_C
217 * \def MBEDTLS_ECDH_C
218 @@ -2026,7 +2026,7 @@
219 * Caller: library/mbedtls_md.c
222 -#define MBEDTLS_RIPEMD160_C
223 +//#define MBEDTLS_RIPEMD160_C
227 @@ -2324,7 +2324,7 @@
228 * Module: library/xtea.c
231 -#define MBEDTLS_XTEA_C
232 +//#define MBEDTLS_XTEA_C
234 /* \} name SECTION: mbed TLS modules */