mbedtls

History

Jaeden Amero 7242ea688a config: Remove explicit ciphersuite lists Make maintaining config files easier by removing any explicit ciphersuite lists. These explicit lists are prone to being incomplete as TLS defines more and more ciphersuites. Rather than try to play catch up, let's refer to sets of ciphersuites with declarative language.		2019-04-25 11:46:21 +01:00
..
config-no-entropy.h	config: Remove X.509 options	2019-04-25 11:46:21 +01:00
config-psa-crypto.h	config: Remove explicit ciphersuite lists	2019-04-25 11:46:21 +01:00
config-suite-b.h	config: Remove X.509 options	2019-04-25 11:46:21 +01:00
README.txt	config: Remove TLS and NET options	2019-04-25 11:46:21 +01:00

README.txt

This directory contains example configuration files.

The examples are generally focused on a particular usage case (eg, support for
a restricted number of TLS ciphersuites) and aim at minimizing resource usage
for this target. They can be used as a basis for custom configurations.

These files are complete replacements for the default config.h. To use one of
them, you can pick one of the following methods:

1. Replace the default file include/mbedtls/config.h with the chosen one.
   (Depending on your compiler, you may need to adjust the line with
   #include "mbedtls/check_config.h" then.)

2. Define MBEDTLS_CONFIG_FILE and adjust the include path accordingly.
   For example, using make:

    CFLAGS="-I$PWD/configs -DMBEDTLS_CONFIG_FILE='<foo.h>'" make

   Or, using cmake:

    find . -iname '*cmake*' -not -name CMakeLists.txt -exec rm -rf {} +
    CFLAGS="-I$PWD/configs -DMBEDTLS_CONFIG_FILE='<foo.h>'" cmake .
    make

Note that the second method also works if you want to keep your custom
configuration file outside the mbed TLS tree.