Gitiles
Code Review Sign In
192.168.1.100 / T108 / 41f65e67393adc65e024efffac65f99a369de4e1 / . / package / libs / mbedtls / Config.in
blob: 0a760ed2cb80d6876798f2042967bcf42487b567 [file] [log] [blame]
b.liue9582032025-04-17 19:18:16 +0800[diff] [blame]1if PACKAGE_libmbedtls
2
3comment "Option details in source code: include/mbedtls/mbedtls_config.h"
4
5comment "Ciphers - unselect old or less-used ciphers to reduce binary size"
6
7config MBEDTLS_AES_C
8 bool "MBEDTLS_AES_C"
9 default y
10
11config MBEDTLS_ARIA_C
12 bool "MBEDTLS_ARIA_C"
13 default n
14
15config MBEDTLS_CAMELLIA_C
16 bool "MBEDTLS_CAMELLIA_C"
17 default n
18
19config MBEDTLS_CCM_C
20 bool "MBEDTLS_CCM_C"
21 default n
22
23config MBEDTLS_CMAC_C
24 bool "MBEDTLS_CMAC_C (old but used by hostapd)"
25 default y
26
27config MBEDTLS_DES_C
28 bool "MBEDTLS_DES_C (old but used by hostapd)"
29 default y
30
31config MBEDTLS_GCM_C
32 bool "MBEDTLS_GCM_C"
33 default y
34
35config MBEDTLS_NIST_KW_C
36 bool "MBEDTLS_NIST_KW_C (old but used by hostapd)"
37 default y
38
39config MBEDTLS_RIPEMD160_C
40 bool "MBEDTLS_RIPEMD160_C"
41 default n
42
43config MBEDTLS_RSA_NO_CRT
44 bool "MBEDTLS_RSA_NO_CRT"
45 default y
46
47config MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
48 bool "MBEDTLS_KEY_EXCHANGE_PSK_ENABLED"
49 default y
50
51config MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED
52 bool "MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED"
53 default n
54
55config MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
56 bool "MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED"
57 default y
58
59config MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED
60 bool "MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED"
61 default n
62
63config MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
64 bool "MBEDTLS_KEY_EXCHANGE_RSA_ENABLED"
65 default n
66
67config MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED
68 bool "MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED"
69 default n
70
71config MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
72 bool "MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED"
73 default y
74
75config MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
76 bool "MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED"
77 default y
78
79config MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
80 bool "MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED"
81 default n
82
83config MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
84 bool "MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED"
85 default n
86
87comment "Curves - unselect old or less-used curves to reduce binary size"
88
89config MBEDTLS_ECP_DP_SECP192R1_ENABLED
90 bool "MBEDTLS_ECP_DP_SECP192R1_ENABLED"
91 default n
92
93config MBEDTLS_ECP_DP_SECP224R1_ENABLED
94 bool "MBEDTLS_ECP_DP_SECP224R1_ENABLED"
95 default n
96
97config MBEDTLS_ECP_DP_SECP256R1_ENABLED
98 bool "MBEDTLS_ECP_DP_SECP256R1_ENABLED"
99 default y
100
101config MBEDTLS_ECP_DP_SECP384R1_ENABLED
102 bool "MBEDTLS_ECP_DP_SECP384R1_ENABLED"
103 default y
104
105config MBEDTLS_ECP_DP_SECP521R1_ENABLED
106 bool "MBEDTLS_ECP_DP_SECP521R1_ENABLED"
107 default y
108
109config MBEDTLS_ECP_DP_SECP192K1_ENABLED
110 bool "MBEDTLS_ECP_DP_SECP192K1_ENABLED"
111 default n
112
113config MBEDTLS_ECP_DP_SECP224K1_ENABLED
114 bool "MBEDTLS_ECP_DP_SECP224K1_ENABLED"
115 default n
116
117config MBEDTLS_ECP_DP_SECP256K1_ENABLED
118 bool "MBEDTLS_ECP_DP_SECP256K1_ENABLED"
119 default y
120
121config MBEDTLS_ECP_DP_BP256R1_ENABLED
122 bool "MBEDTLS_ECP_DP_BP256R1_ENABLED"
123 default n
124
125config MBEDTLS_ECP_DP_BP384R1_ENABLED
126 bool "MBEDTLS_ECP_DP_BP384R1_ENABLED"
127 default n
128
129config MBEDTLS_ECP_DP_BP512R1_ENABLED
130 bool "MBEDTLS_ECP_DP_BP512R1_ENABLED"
131 default n
132
133config MBEDTLS_ECP_DP_CURVE25519_ENABLED
134 bool "MBEDTLS_ECP_DP_CURVE25519_ENABLED"
135 default y
136
137config MBEDTLS_ECP_DP_CURVE448_ENABLED
138 bool "MBEDTLS_ECP_DP_CURVE448_ENABLED"
139 default n
140
141comment "Build Options - unselect features to reduce binary size"
142
143config MBEDTLS_CIPHER_MODE_OFB
144 bool "MBEDTLS_CIPHER_MODE_OFB"
145 default n
146
147config MBEDTLS_CIPHER_MODE_XTS
148 bool "MBEDTLS_CIPHER_MODE_XTS"
149 default n
150
151config MBEDTLS_DEBUG_C
152 bool "MBEDTLS_DEBUG_C"
153 default n
154
155config MBEDTLS_HKDF_C
156 bool "MBEDTLS_HKDF_C"
157 default n
158
159config MBEDTLS_PLATFORM_C
160 bool "MBEDTLS_PLATFORM_C"
161 default n
162
163config MBEDTLS_SELF_TEST
164 bool "MBEDTLS_SELF_TEST"
165 default n
166
167config MBEDTLS_THREADING_C
168 bool "MBEDTLS_THREADING_C"
169 default y
170
171config MBEDTLS_THREADING_PTHREAD
172 def_bool MBEDTLS_THREADING_C
173
174config MBEDTLS_VERSION_C
175 bool "MBEDTLS_VERSION_C"
176 default n
177
178config MBEDTLS_VERSION_FEATURES
179 bool "MBEDTLS_VERSION_FEATURES"
180 default n
181
182config MBEDTLS_PSA_CRYPTO_CLIENT
183 bool "MBEDTLS_PSA_CRYPTO_CLIENT"
184
185config MBEDTLS_DEPRECATED_WARNING
186 bool "MBEDTLS_DEPRECATED_WARNING"
187 default n
188
189config MBEDTLS_SSL_PROTO_TLS1_2
190 bool "MBEDTLS_SSL_PROTO_TLS1_2"
191 default y
192
193config MBEDTLS_SSL_PROTO_TLS1_3
194 bool "MBEDTLS_SSL_PROTO_TLS1_3"
195 select MBEDTLS_PSA_CRYPTO_CLIENT
196 select MBEDTLS_HKDF_C
197 default y
198
199config MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
200 bool "MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE"
201 depends on MBEDTLS_SSL_PROTO_TLS1_3
202 default y
203
204config MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
205 bool "MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED"
206 depends on MBEDTLS_SSL_PROTO_TLS1_3
207 default y
208
209config MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
210 bool "MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED"
211 depends on MBEDTLS_SSL_PROTO_TLS1_3
212 default y
213
214config MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
215 bool "MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED"
216 depends on MBEDTLS_SSL_PROTO_TLS1_3
217 default y
218
219comment "Build Options"
220
221config MBEDTLS_ENTROPY_FORCE_SHA256
222 bool "MBEDTLS_ENTROPY_FORCE_SHA256"
223 default y
224
225config MBEDTLS_SSL_RENEGOTIATION
226 bool "MBEDTLS_SSL_RENEGOTIATION"
227 depends on MBEDTLS_SSL_PROTO_TLS1_2
228 default n
229
230endif