24 #ifndef MBEDTLS_CONFIG_ADJUST_LEGACY_CRYPTO_H
25 #define MBEDTLS_CONFIG_ADJUST_LEGACY_CRYPTO_H
27 #if !defined(MBEDTLS_CONFIG_FILES_READ)
28 #error "Do not include mbedtls/config_adjust_*.h manually! This can lead to problems, " \
29 "up to and including runtime errors such as buffer overflows. " \
30 "If you're trying to fix a complaint from check_config.h, just remove " \
31 "it from your configuration file: since Mbed TLS 3.0, it is included " \
32 "automatically at the right point."
40 #if defined(__MINGW32__) || (defined(_MSC_VER) && _MSC_VER <= 1900)
41 #if !defined(MBEDTLS_PLATFORM_SNPRINTF_ALT) && \
42 !defined(MBEDTLS_PLATFORM_SNPRINTF_MACRO)
43 #define MBEDTLS_PLATFORM_SNPRINTF_ALT
45 #if !defined(MBEDTLS_PLATFORM_VSNPRINTF_ALT) && \
46 !defined(MBEDTLS_PLATFORM_VSNPRINTF_MACRO)
47 #define MBEDTLS_PLATFORM_VSNPRINTF_ALT
53 #if defined(MBEDTLS_PSA_CRYPTO_C) && \
54 (defined(MBEDTLS_PSA_BUILTIN_ALG_STREAM_CIPHER) || \
55 defined(MBEDTLS_PSA_BUILTIN_ALG_CTR) || \
56 defined(MBEDTLS_PSA_BUILTIN_ALG_CFB) || \
57 defined(MBEDTLS_PSA_BUILTIN_ALG_OFB) || \
58 defined(MBEDTLS_PSA_BUILTIN_ALG_ECB_NO_PADDING) || \
59 defined(MBEDTLS_PSA_BUILTIN_ALG_CBC_NO_PADDING) || \
60 defined(MBEDTLS_PSA_BUILTIN_ALG_CBC_PKCS7) || \
61 defined(MBEDTLS_PSA_BUILTIN_ALG_CCM_STAR_NO_TAG) || \
62 defined(MBEDTLS_PSA_BUILTIN_ALG_CMAC))
63 #define MBEDTLS_CIPHER_C
69 #if defined(MBEDTLS_MD_C)
70 #define MBEDTLS_MD_LIGHT
76 #if defined(MBEDTLS_ECJPAKE_C) || \
77 defined(MBEDTLS_PEM_PARSE_C) || \
78 defined(MBEDTLS_ENTROPY_C) || \
79 defined(MBEDTLS_PK_C) || \
80 defined(MBEDTLS_PKCS12_C) || \
81 defined(MBEDTLS_RSA_C) || \
82 defined(MBEDTLS_SSL_TLS_C) || \
83 defined(MBEDTLS_X509_USE_C) || \
84 defined(MBEDTLS_X509_CREATE_C)
85 #define MBEDTLS_MD_LIGHT
88 #if defined(MBEDTLS_MD_LIGHT)
104 #if defined(MBEDTLS_PSA_CRYPTO_C)
106 #if defined(MBEDTLS_PSA_ACCEL_ALG_MD5)
107 #define MBEDTLS_MD_CAN_MD5
108 #define MBEDTLS_MD_MD5_VIA_PSA
109 #define MBEDTLS_MD_SOME_PSA
111 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_1)
112 #define MBEDTLS_MD_CAN_SHA1
113 #define MBEDTLS_MD_SHA1_VIA_PSA
114 #define MBEDTLS_MD_SOME_PSA
116 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_224)
117 #define MBEDTLS_MD_CAN_SHA224
118 #define MBEDTLS_MD_SHA224_VIA_PSA
119 #define MBEDTLS_MD_SOME_PSA
121 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_256)
122 #define MBEDTLS_MD_CAN_SHA256
123 #define MBEDTLS_MD_SHA256_VIA_PSA
124 #define MBEDTLS_MD_SOME_PSA
126 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_384)
127 #define MBEDTLS_MD_CAN_SHA384
128 #define MBEDTLS_MD_SHA384_VIA_PSA
129 #define MBEDTLS_MD_SOME_PSA
131 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA_512)
132 #define MBEDTLS_MD_CAN_SHA512
133 #define MBEDTLS_MD_SHA512_VIA_PSA
134 #define MBEDTLS_MD_SOME_PSA
136 #if defined(MBEDTLS_PSA_ACCEL_ALG_RIPEMD160)
137 #define MBEDTLS_MD_CAN_RIPEMD160
138 #define MBEDTLS_MD_RIPEMD160_VIA_PSA
139 #define MBEDTLS_MD_SOME_PSA
141 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA3_224)
142 #define MBEDTLS_MD_CAN_SHA3_224
143 #define MBEDTLS_MD_SHA3_224_VIA_PSA
144 #define MBEDTLS_MD_SOME_PSA
146 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA3_256)
147 #define MBEDTLS_MD_CAN_SHA3_256
148 #define MBEDTLS_MD_SHA3_256_VIA_PSA
149 #define MBEDTLS_MD_SOME_PSA
151 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA3_384)
152 #define MBEDTLS_MD_CAN_SHA3_384
153 #define MBEDTLS_MD_SHA3_384_VIA_PSA
154 #define MBEDTLS_MD_SOME_PSA
156 #if defined(MBEDTLS_PSA_ACCEL_ALG_SHA3_512)
157 #define MBEDTLS_MD_CAN_SHA3_512
158 #define MBEDTLS_MD_SHA3_512_VIA_PSA
159 #define MBEDTLS_MD_SOME_PSA
164 #if defined(MBEDTLS_MD5_C)
165 #define MBEDTLS_MD_CAN_MD5
166 #define MBEDTLS_MD_SOME_LEGACY
168 #if defined(MBEDTLS_SHA1_C)
169 #define MBEDTLS_MD_CAN_SHA1
170 #define MBEDTLS_MD_SOME_LEGACY
172 #if defined(MBEDTLS_SHA224_C)
173 #define MBEDTLS_MD_CAN_SHA224
174 #define MBEDTLS_MD_SOME_LEGACY
176 #if defined(MBEDTLS_SHA256_C)
177 #define MBEDTLS_MD_CAN_SHA256
178 #define MBEDTLS_MD_SOME_LEGACY
180 #if defined(MBEDTLS_SHA384_C)
181 #define MBEDTLS_MD_CAN_SHA384
182 #define MBEDTLS_MD_SOME_LEGACY
184 #if defined(MBEDTLS_SHA512_C)
185 #define MBEDTLS_MD_CAN_SHA512
186 #define MBEDTLS_MD_SOME_LEGACY
188 #if defined(MBEDTLS_SHA3_C)
189 #define MBEDTLS_MD_CAN_SHA3_224
190 #define MBEDTLS_MD_CAN_SHA3_256
191 #define MBEDTLS_MD_CAN_SHA3_384
192 #define MBEDTLS_MD_CAN_SHA3_512
193 #define MBEDTLS_MD_SOME_LEGACY
195 #if defined(MBEDTLS_RIPEMD160_C)
196 #define MBEDTLS_MD_CAN_RIPEMD160
197 #define MBEDTLS_MD_SOME_LEGACY
217 #if defined(MBEDTLS_PSA_CRYPTO_C)
218 #if defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_AES)
219 #define MBEDTLS_BLOCK_CIPHER_AES_VIA_PSA
220 #define MBEDTLS_BLOCK_CIPHER_SOME_PSA
222 #if defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ARIA)
223 #define MBEDTLS_BLOCK_CIPHER_ARIA_VIA_PSA
224 #define MBEDTLS_BLOCK_CIPHER_SOME_PSA
226 #if defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_CAMELLIA)
227 #define MBEDTLS_BLOCK_CIPHER_CAMELLIA_VIA_PSA
228 #define MBEDTLS_BLOCK_CIPHER_SOME_PSA
232 #if defined(MBEDTLS_AES_C)
233 #define MBEDTLS_BLOCK_CIPHER_AES_VIA_LEGACY
235 #if defined(MBEDTLS_ARIA_C)
236 #define MBEDTLS_BLOCK_CIPHER_ARIA_VIA_LEGACY
238 #if defined(MBEDTLS_CAMELLIA_C)
239 #define MBEDTLS_BLOCK_CIPHER_CAMELLIA_VIA_LEGACY
244 #if defined(MBEDTLS_BLOCK_CIPHER_AES_VIA_PSA) || \
245 defined(MBEDTLS_BLOCK_CIPHER_AES_VIA_LEGACY)
246 #define MBEDTLS_BLOCK_CIPHER_CAN_AES
248 #if defined(MBEDTLS_BLOCK_CIPHER_ARIA_VIA_PSA) || \
249 defined(MBEDTLS_BLOCK_CIPHER_ARIA_VIA_LEGACY)
250 #define MBEDTLS_BLOCK_CIPHER_CAN_ARIA
252 #if defined(MBEDTLS_BLOCK_CIPHER_CAMELLIA_VIA_PSA) || \
253 defined(MBEDTLS_BLOCK_CIPHER_CAMELLIA_VIA_LEGACY)
254 #define MBEDTLS_BLOCK_CIPHER_CAN_CAMELLIA
263 #if (defined(MBEDTLS_GCM_C) || defined(MBEDTLS_CCM_C)) && \
264 (!defined(MBEDTLS_CIPHER_C) || defined(MBEDTLS_BLOCK_CIPHER_SOME_PSA))
265 #define MBEDTLS_BLOCK_CIPHER_C
269 #if (defined(MBEDTLS_CIPHER_C) && defined(MBEDTLS_AES_C)) || \
270 (defined(MBEDTLS_BLOCK_CIPHER_C) && defined(MBEDTLS_BLOCK_CIPHER_CAN_AES))
271 #define MBEDTLS_CCM_GCM_CAN_AES
274 #if (defined(MBEDTLS_CIPHER_C) && defined(MBEDTLS_ARIA_C)) || \
275 (defined(MBEDTLS_BLOCK_CIPHER_C) && defined(MBEDTLS_BLOCK_CIPHER_CAN_ARIA))
276 #define MBEDTLS_CCM_GCM_CAN_ARIA
279 #if (defined(MBEDTLS_CIPHER_C) && defined(MBEDTLS_CAMELLIA_C)) || \
280 (defined(MBEDTLS_BLOCK_CIPHER_C) && defined(MBEDTLS_BLOCK_CIPHER_CAN_CAMELLIA))
281 #define MBEDTLS_CCM_GCM_CAN_CAMELLIA
300 #if defined(MBEDTLS_ECP_C) || \
301 defined(MBEDTLS_PK_PARSE_EC_EXTENDED) || \
302 defined(MBEDTLS_PK_PARSE_EC_COMPRESSED) || \
303 defined(MBEDTLS_PSA_BUILTIN_KEY_TYPE_ECC_KEY_PAIR_DERIVE)
304 #define MBEDTLS_ECP_LIGHT
310 #if defined(MBEDTLS_RSA_C)
311 #define MBEDTLS_ASN1_PARSE_C
312 #define MBEDTLS_ASN1_WRITE_C
320 #if defined(MBEDTLS_PK_PARSE_C) && defined(MBEDTLS_ECP_C)
321 #define MBEDTLS_PK_PARSE_EC_COMPRESSED
326 #if (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_ECDH)) || \
327 (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_ECDH_C))
328 #define MBEDTLS_CAN_ECDH
335 #if !defined(MBEDTLS_USE_PSA_CRYPTO)
336 #if defined(MBEDTLS_ECDSA_C)
337 #define MBEDTLS_PK_CAN_ECDSA_SIGN
338 #define MBEDTLS_PK_CAN_ECDSA_VERIFY
341 #if defined(PSA_WANT_ALG_ECDSA)
342 #if defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_BASIC)
343 #define MBEDTLS_PK_CAN_ECDSA_SIGN
345 #if defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY)
346 #define MBEDTLS_PK_CAN_ECDSA_VERIFY
351 #if defined(MBEDTLS_PK_CAN_ECDSA_VERIFY) || defined(MBEDTLS_PK_CAN_ECDSA_SIGN)
352 #define MBEDTLS_PK_CAN_ECDSA_SOME
358 #if defined(MBEDTLS_PSA_CRYPTO_C)
359 #define MBEDTLS_PSA_CRYPTO_CLIENT
363 #if defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_521)
364 #define MBEDTLS_ECP_HAVE_SECP521R1
366 #if defined(MBEDTLS_ECP_DP_BP512R1_ENABLED) || defined(PSA_WANT_ECC_BRAINPOOL_P_R1_512)
367 #define MBEDTLS_ECP_HAVE_BP512R1
369 #if defined(MBEDTLS_ECP_DP_CURVE448_ENABLED) || defined(PSA_WANT_ECC_MONTGOMERY_448)
370 #define MBEDTLS_ECP_HAVE_CURVE448
372 #if defined(MBEDTLS_ECP_DP_BP384R1_ENABLED) || defined(PSA_WANT_ECC_BRAINPOOL_P_R1_384)
373 #define MBEDTLS_ECP_HAVE_BP384R1
375 #if defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_384)
376 #define MBEDTLS_ECP_HAVE_SECP384R1
378 #if defined(MBEDTLS_ECP_DP_BP256R1_ENABLED) || defined(PSA_WANT_ECC_BRAINPOOL_P_R1_256)
379 #define MBEDTLS_ECP_HAVE_BP256R1
381 #if defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED) || defined(PSA_WANT_ECC_SECP_K1_256)
382 #define MBEDTLS_ECP_HAVE_SECP256K1
384 #if defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_256)
385 #define MBEDTLS_ECP_HAVE_SECP256R1
387 #if defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED) || defined(PSA_WANT_ECC_MONTGOMERY_255)
388 #define MBEDTLS_ECP_HAVE_CURVE25519
390 #if defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED) || defined(PSA_WANT_ECC_SECP_K1_224)
391 #define MBEDTLS_ECP_HAVE_SECP224K1
393 #if defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_224)
394 #define MBEDTLS_ECP_HAVE_SECP224R1
396 #if defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED) || defined(PSA_WANT_ECC_SECP_K1_192)
397 #define MBEDTLS_ECP_HAVE_SECP192K1
399 #if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) || defined(PSA_WANT_ECC_SECP_R1_192)
400 #define MBEDTLS_ECP_HAVE_SECP192R1
406 #if defined(MBEDTLS_ECP_C) || \
407 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY))
408 #define MBEDTLS_PK_HAVE_ECC_KEYS
415 #if defined(MBEDTLS_PK_PARSE_C) && defined(MBEDTLS_PKCS5_C) && defined(MBEDTLS_CIPHER_MODE_CBC)
416 #define MBEDTLS_CIPHER_PADDING_PKCS7
421 #if defined(MBEDTLS_SHA256_USE_A64_CRYPTO_IF_PRESENT) && \
422 !defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_IF_PRESENT)
423 #define MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_IF_PRESENT
425 #if defined(MBEDTLS_SHA256_USE_A64_CRYPTO_ONLY) && !defined(MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_ONLY)
426 #define MBEDTLS_SHA256_USE_ARMV8_A_CRYPTO_ONLY
431 #if (defined(MBEDTLS_PSA_CRYPTO_CLIENT) && \
432 (defined(PSA_WANT_ALG_ECDSA) || defined(PSA_WANT_ALG_DETERMINISTIC_ECDSA)))
433 #define MBEDTLS_PSA_UTIL_HAVE_ECDSA
437 #if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_AES_C)) || \
438 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_KEY_TYPE_AES))
439 #define MBEDTLS_SSL_HAVE_AES
441 #if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_ARIA_C)) || \
442 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_KEY_TYPE_ARIA))
443 #define MBEDTLS_SSL_HAVE_ARIA
445 #if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_CAMELLIA_C)) || \
446 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_KEY_TYPE_CAMELLIA))
447 #define MBEDTLS_SSL_HAVE_CAMELLIA
451 #if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_CIPHER_MODE_CBC)) || \
452 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_CBC_NO_PADDING))
453 #define MBEDTLS_SSL_HAVE_CBC
456 #if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_GCM_C)) || \
457 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_GCM))
458 #define MBEDTLS_SSL_HAVE_GCM
461 #if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_CCM_C)) || \
462 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_CCM))
463 #define MBEDTLS_SSL_HAVE_CCM
466 #if (!defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_CHACHAPOLY_C)) || \
467 (defined(MBEDTLS_USE_PSA_CRYPTO) && defined(PSA_WANT_ALG_CHACHA20_POLY1305))
468 #define MBEDTLS_SSL_HAVE_CHACHAPOLY
471 #if defined(MBEDTLS_SSL_HAVE_GCM) || defined(MBEDTLS_SSL_HAVE_CCM) || \
472 defined(MBEDTLS_SSL_HAVE_CHACHAPOLY)
473 #define MBEDTLS_SSL_HAVE_AEAD