Move MBEDTLS_CTR_DRBG_USE_128_BIT_KEY to the correct section
It's an on/off feature, so it should be listed in version_features.
This commit is contained in:
parent
d0c64c856d
commit
1540e5bd04
3 changed files with 19 additions and 10 deletions
|
@ -671,6 +671,13 @@
|
||||||
#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
|
#define MBEDTLS_CIPHER_PADDING_ZEROS_AND_LEN
|
||||||
#define MBEDTLS_CIPHER_PADDING_ZEROS
|
#define MBEDTLS_CIPHER_PADDING_ZEROS
|
||||||
|
|
||||||
|
/** \def MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
|
||||||
|
*
|
||||||
|
* Uncomment this macro to use a 128-bit key in the CTR_DRBG module.
|
||||||
|
* By default, CTR_DRBG uses a 256-bit key.
|
||||||
|
*/
|
||||||
|
//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* \def MBEDTLS_ECP_DP_SECP192R1_ENABLED
|
* \def MBEDTLS_ECP_DP_SECP192R1_ENABLED
|
||||||
*
|
*
|
||||||
|
@ -1295,7 +1302,7 @@
|
||||||
*
|
*
|
||||||
* Enable the CTR_DRBG AES-based random generator.
|
* Enable the CTR_DRBG AES-based random generator.
|
||||||
* The CTR_DRBG generator uses AES-256 by default.
|
* The CTR_DRBG generator uses AES-256 by default.
|
||||||
* To use AES-128 instead, enable MBEDTLS_CTR_DRBG_USE_128_BIT_KEY below.
|
* To use AES-128 instead, enable \c MBEDTLS_CTR_DRBG_USE_128_BIT_KEY above.
|
||||||
*
|
*
|
||||||
* Module: library/ctr_drbg.c
|
* Module: library/ctr_drbg.c
|
||||||
* Caller:
|
* Caller:
|
||||||
|
@ -1971,7 +1978,6 @@
|
||||||
//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
|
//#define MBEDTLS_CTR_DRBG_MAX_INPUT 256 /**< Maximum number of additional input bytes */
|
||||||
//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
|
//#define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024 /**< Maximum number of requested bytes per call */
|
||||||
//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
|
//#define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384 /**< Maximum size of (re)seed buffer */
|
||||||
//#define MBEDTLS_CTR_DRBG_USE_128_BIT_KEY /**< Use 128-bit key for CTR_DRBG - may reduce security (see ctr_drbg.h) */
|
|
||||||
|
|
||||||
/* HMAC_DRBG options */
|
/* HMAC_DRBG options */
|
||||||
//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
|
//#define MBEDTLS_HMAC_DRBG_RESEED_INTERVAL 10000 /**< Interval before reseed is performed by default */
|
||||||
|
|
|
@ -300,6 +300,9 @@ static const char * const features[] = {
|
||||||
#if defined(MBEDTLS_CIPHER_PADDING_ZEROS)
|
#if defined(MBEDTLS_CIPHER_PADDING_ZEROS)
|
||||||
"MBEDTLS_CIPHER_PADDING_ZEROS",
|
"MBEDTLS_CIPHER_PADDING_ZEROS",
|
||||||
#endif /* MBEDTLS_CIPHER_PADDING_ZEROS */
|
#endif /* MBEDTLS_CIPHER_PADDING_ZEROS */
|
||||||
|
#if defined(MBEDTLS_CTR_DRBG_USE_128_BIT_KEY)
|
||||||
|
"MBEDTLS_CTR_DRBG_USE_128_BIT_KEY",
|
||||||
|
#endif /* MBEDTLS_CTR_DRBG_USE_128_BIT_KEY */
|
||||||
#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED)
|
#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED)
|
||||||
"MBEDTLS_ECP_DP_SECP192R1_ENABLED",
|
"MBEDTLS_ECP_DP_SECP192R1_ENABLED",
|
||||||
#endif /* MBEDTLS_ECP_DP_SECP192R1_ENABLED */
|
#endif /* MBEDTLS_ECP_DP_SECP192R1_ENABLED */
|
||||||
|
|
|
@ -828,6 +828,14 @@ int query_config( const char *config )
|
||||||
}
|
}
|
||||||
#endif /* MBEDTLS_CIPHER_PADDING_ZEROS */
|
#endif /* MBEDTLS_CIPHER_PADDING_ZEROS */
|
||||||
|
|
||||||
|
#if defined(MBEDTLS_CTR_DRBG_USE_128_BIT_KEY)
|
||||||
|
if( strcmp( "MBEDTLS_CTR_DRBG_USE_128_BIT_KEY", config ) == 0 )
|
||||||
|
{
|
||||||
|
MACRO_EXPANSION_TO_STR( MBEDTLS_CTR_DRBG_USE_128_BIT_KEY );
|
||||||
|
return( 0 );
|
||||||
|
}
|
||||||
|
#endif /* MBEDTLS_CTR_DRBG_USE_128_BIT_KEY */
|
||||||
|
|
||||||
#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED)
|
#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED)
|
||||||
if( strcmp( "MBEDTLS_ECP_DP_SECP192R1_ENABLED", config ) == 0 )
|
if( strcmp( "MBEDTLS_ECP_DP_SECP192R1_ENABLED", config ) == 0 )
|
||||||
{
|
{
|
||||||
|
@ -1676,14 +1684,6 @@ int query_config( const char *config )
|
||||||
}
|
}
|
||||||
#endif /* MBEDTLS_CTR_DRBG_MAX_SEED_INPUT */
|
#endif /* MBEDTLS_CTR_DRBG_MAX_SEED_INPUT */
|
||||||
|
|
||||||
#if defined(MBEDTLS_CTR_DRBG_USE_128_BIT_KEY)
|
|
||||||
if( strcmp( "MBEDTLS_CTR_DRBG_USE_128_BIT_KEY", config ) == 0 )
|
|
||||||
{
|
|
||||||
MACRO_EXPANSION_TO_STR( MBEDTLS_CTR_DRBG_USE_128_BIT_KEY );
|
|
||||||
return( 0 );
|
|
||||||
}
|
|
||||||
#endif /* MBEDTLS_CTR_DRBG_USE_128_BIT_KEY */
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_HMAC_DRBG_RESEED_INTERVAL)
|
#if defined(MBEDTLS_HMAC_DRBG_RESEED_INTERVAL)
|
||||||
if( strcmp( "MBEDTLS_HMAC_DRBG_RESEED_INTERVAL", config ) == 0 )
|
if( strcmp( "MBEDTLS_HMAC_DRBG_RESEED_INTERVAL", config ) == 0 )
|
||||||
{
|
{
|
||||||
|
|
Loading…
Reference in a new issue