Mbed TLS v3.5.0
check_config.h
Go to the documentation of this file.
1
6/*
7 * Copyright The Mbed TLS Contributors
8 * SPDX-License-Identifier: Apache-2.0
9 *
10 * Licensed under the Apache License, Version 2.0 (the "License"); you may
11 * not use this file except in compliance with the License.
12 * You may obtain a copy of the License at
13 *
14 * http://www.apache.org/licenses/LICENSE-2.0
15 *
16 * Unless required by applicable law or agreed to in writing, software
17 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
18 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
19 * See the License for the specific language governing permissions and
20 * limitations under the License.
21 */
22
23#ifndef MBEDTLS_CHECK_CONFIG_H
24#define MBEDTLS_CHECK_CONFIG_H
25
26/* *INDENT-OFF* */
27/*
28 * We assume CHAR_BIT is 8 in many places. In practice, this is true on our
29 * target platforms, so not an issue, but let's just be extra sure.
30 */
31#include <limits.h>
32#if CHAR_BIT != 8
33#error "Mbed TLS requires a platform with 8-bit chars"
34#endif
35
36#include <stdint.h>
37
38#if defined(__MINGW32__) || (defined(_MSC_VER) && _MSC_VER <= 1900)
39#if !defined(MBEDTLS_PLATFORM_C)
40#error "MBEDTLS_PLATFORM_C is required on Windows"
41#endif
42
43/* Fix the config here. Not convenient to put an #ifdef _WIN32 in mbedtls_config.h as
44 * it would confuse config.py. */
45#if !defined(MBEDTLS_PLATFORM_SNPRINTF_ALT) && \
46 !defined(MBEDTLS_PLATFORM_SNPRINTF_MACRO)
47#define MBEDTLS_PLATFORM_SNPRINTF_ALT
48#endif
49
50#if !defined(MBEDTLS_PLATFORM_VSNPRINTF_ALT) && \
51 !defined(MBEDTLS_PLATFORM_VSNPRINTF_MACRO)
52#define MBEDTLS_PLATFORM_VSNPRINTF_ALT
53#endif
54#endif /* _MINGW32__ || (_MSC_VER && (_MSC_VER <= 1900)) */
55
56#if defined(TARGET_LIKE_MBED) && defined(MBEDTLS_NET_C)
57#error "The NET module is not available for mbed OS - please use the network functions provided by Mbed OS"
58#endif
59
60#if defined(MBEDTLS_DEPRECATED_WARNING) && \
61 !defined(__GNUC__) && !defined(__clang__)
62#error "MBEDTLS_DEPRECATED_WARNING only works with GCC and Clang"
63#endif
64
65#if defined(MBEDTLS_HAVE_TIME_DATE) && !defined(MBEDTLS_HAVE_TIME)
66#error "MBEDTLS_HAVE_TIME_DATE without MBEDTLS_HAVE_TIME does not make sense"
67#endif
68
69/* Check that each MBEDTLS_ECP_DP_xxx symbol has its PSA_WANT_ECC_xxx counterpart
70 * when PSA crypto is enabled. */
71#if defined(MBEDTLS_PSA_CRYPTO_CONFIG) || defined(MBEDTLS_PSA_CRYPTO_C)
72
73#if defined(MBEDTLS_ECP_DP_BP256R1_ENABLED) && !defined(PSA_WANT_ECC_BRAINPOOL_P_R1_256)
74#error "MBEDTLS_ECP_DP_BP256R1_ENABLED defined, but not its PSA counterpart"
75#endif
76
77#if defined(MBEDTLS_ECP_DP_BP384R1_ENABLED) && !defined(PSA_WANT_ECC_BRAINPOOL_P_R1_384)
78#error "MBEDTLS_ECP_DP_BP384R1_ENABLED defined, but not its PSA counterpart"
79#endif
80
81#if defined(MBEDTLS_ECP_DP_BP512R1_ENABLED) && !defined(PSA_WANT_ECC_BRAINPOOL_P_R1_512)
82#error "MBEDTLS_ECP_DP_BP512R1_ENABLED defined, but not its PSA counterpart"
83#endif
84
85#if defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED) && !defined(PSA_WANT_ECC_MONTGOMERY_255)
86#error "MBEDTLS_ECP_DP_CURVE25519_ENABLED defined, but not its PSA counterpart"
87#endif
88
89#if defined(MBEDTLS_ECP_DP_CURVE448_ENABLED) && !defined(PSA_WANT_ECC_MONTGOMERY_448)
90#error "MBEDTLS_ECP_DP_CURVE448_ENABLED defined, but not its PSA counterpart"
91#endif
92
93#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) && !defined(PSA_WANT_ECC_SECP_R1_192)
94#error "MBEDTLS_ECP_DP_SECP192R1_ENABLED defined, but not its PSA counterpart"
95#endif
96
97#if defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) && !defined(PSA_WANT_ECC_SECP_R1_224)
98#error "MBEDTLS_ECP_DP_SECP224R1_ENABLED defined, but not its PSA counterpart"
99#endif
100
101#if defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) && !defined(PSA_WANT_ECC_SECP_R1_256)
102#error "MBEDTLS_ECP_DP_SECP256R1_ENABLED defined, but not its PSA counterpart"
103#endif
104
105#if defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED) && !defined(PSA_WANT_ECC_SECP_R1_384)
106#error "MBEDTLS_ECP_DP_SECP384R1_ENABLED defined, but not its PSA counterpart"
107#endif
108
109#if defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED) && !defined(PSA_WANT_ECC_SECP_R1_521)
110#error "MBEDTLS_ECP_DP_SECP521R1_ENABLED defined, but not its PSA counterpart"
111#endif
112
113#if defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED) && !defined(PSA_WANT_ECC_SECP_K1_192)
114#error "MBEDTLS_ECP_DP_SECP192K1_ENABLED defined, but not its PSA counterpart"
115#endif
116
117/* SECP224K1 is buggy in PSA API so we skip this check */
118#if 0 && defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED) && !defined(PSA_WANT_ECC_SECP_K1_224)
119#error "MBEDTLS_ECP_DP_SECP224K1_ENABLED defined, but not its PSA counterpart"
120#endif
121
122#if defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED) && !defined(PSA_WANT_ECC_SECP_K1_256)
123#error "MBEDTLS_ECP_DP_SECP256K1_ENABLED defined, but not its PSA counterpart"
124#endif
125
126#endif /* MBEDTLS_PSA_CRYPTO_CONFIG || MBEDTLS_PSA_CRYPTO_C */
127
128/* Limitations on ECC key types acceleration: if we have any of `PUBLIC_KEY`,
129 * `KEY_PAIR_BASIC`, `KEY_PAIR_IMPORT`, `KEY_PAIR_EXPORT` then we must have
130 * all 4 of them.
131 */
132#if defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_PUBLIC_KEY) || \
133 defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_BASIC) || \
134 defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_IMPORT) || \
135 defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_EXPORT)
136#if !defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_PUBLIC_KEY) || \
137 !defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_BASIC) || \
138 !defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_IMPORT) || \
139 !defined(MBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR_EXPORT)
140#error "Unsupported partial support for ECC key type acceleration, see docs/driver-only-builds.md"
141#endif /* not all of public, basic, import, export */
142#endif /* one of public, basic, import, export */
143
144/* Limitations on ECC curves acceleration: partial curve acceleration is only
145 * supported with crypto excluding PK, X.509 or TLS.
146 * Note: no need to check X.509 as it depends on PK. */
147#if defined(MBEDTLS_PSA_ACCEL_ECC_BRAINPOOL_P_R1_256) || \
148 defined(MBEDTLS_PSA_ACCEL_ECC_BRAINPOOL_P_R1_384) || \
149 defined(MBEDTLS_PSA_ACCEL_ECC_BRAINPOOL_P_R1_512) || \
150 defined(MBEDTLS_PSA_ACCEL_ECC_MONTGOMERY_255) || \
151 defined(MBEDTLS_PSA_ACCEL_ECC_MONTGOMERY_448) || \
152 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_K1_192) || \
153 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_K1_224) || \
154 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_K1_256) || \
155 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_192) || \
156 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_224) || \
157 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_256) || \
158 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_384) || \
159 defined(MBEDTLS_PSA_ACCEL_ECC_SECP_R1_521)
160#if defined(MBEDTLS_PSA_ECC_ACCEL_INCOMPLETE_CURVES)
161#if defined(MBEDTLS_PK_C) || \
162 defined(MBEDTLS_SSL_TLS_C)
163#error "Unsupported partial support for ECC curves acceleration, see docs/driver-only-builds.md"
164#endif /* modules beyond what's supported */
165#endif /* not all curves accelerated */
166#endif /* some curve accelerated */
167
168#if defined(MBEDTLS_CTR_DRBG_C) && !defined(MBEDTLS_AES_C)
169#error "MBEDTLS_CTR_DRBG_C defined, but not all prerequisites"
170#endif
171
172#if defined(MBEDTLS_DHM_C) && !defined(MBEDTLS_BIGNUM_C)
173#error "MBEDTLS_DHM_C defined, but not all prerequisites"
174#endif
175
176#if defined(MBEDTLS_CMAC_C) && \
177 ( !defined(MBEDTLS_CIPHER_C ) || ( !defined(MBEDTLS_AES_C) && !defined(MBEDTLS_DES_C) ) )
178#error "MBEDTLS_CMAC_C defined, but not all prerequisites"
179#endif
180
181#if defined(MBEDTLS_NIST_KW_C) && \
182 ( !defined(MBEDTLS_AES_C) || !defined(MBEDTLS_CIPHER_C) )
183#error "MBEDTLS_NIST_KW_C defined, but not all prerequisites"
184#endif
185
186#if defined(MBEDTLS_ECDH_C) && !defined(MBEDTLS_ECP_C)
187#error "MBEDTLS_ECDH_C defined, but not all prerequisites"
188#endif
189
190#if defined(MBEDTLS_ECDSA_C) && \
191 ( !defined(MBEDTLS_ECP_C) || \
192 !( defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) || \
193 defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) || \
194 defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) || \
195 defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED) || \
196 defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED) || \
197 defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED) || \
198 defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED) || \
199 defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED) || \
200 defined(MBEDTLS_ECP_DP_BP256R1_ENABLED) || \
201 defined(MBEDTLS_ECP_DP_BP384R1_ENABLED) || \
202 defined(MBEDTLS_ECP_DP_BP512R1_ENABLED) ) || \
203 !defined(MBEDTLS_ASN1_PARSE_C) || \
204 !defined(MBEDTLS_ASN1_WRITE_C) )
205#error "MBEDTLS_ECDSA_C defined, but not all prerequisites"
206#endif
207
208#if defined(MBEDTLS_ECJPAKE_C) && \
209 ( !defined(MBEDTLS_ECP_C) || \
210 !( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_C) ) )
211#error "MBEDTLS_ECJPAKE_C defined, but not all prerequisites"
212#endif
213
214#if defined(MBEDTLS_ECP_RESTARTABLE) && \
215 ( defined(MBEDTLS_ECDH_COMPUTE_SHARED_ALT) || \
216 defined(MBEDTLS_ECDH_GEN_PUBLIC_ALT) || \
217 defined(MBEDTLS_ECDSA_SIGN_ALT) || \
218 defined(MBEDTLS_ECDSA_VERIFY_ALT) || \
219 defined(MBEDTLS_ECDSA_GENKEY_ALT) || \
220 defined(MBEDTLS_ECP_INTERNAL_ALT) || \
221 defined(MBEDTLS_ECP_ALT) )
222#error "MBEDTLS_ECP_RESTARTABLE defined, but it cannot coexist with an alternative ECP implementation"
223#endif
224
225#if defined(MBEDTLS_ECP_RESTARTABLE) && \
226 !defined(MBEDTLS_ECP_C)
227#error "MBEDTLS_ECP_RESTARTABLE defined, but not all prerequisites"
228#endif
229
230#if defined(MBEDTLS_ECDSA_DETERMINISTIC) && !defined(MBEDTLS_HMAC_DRBG_C)
231#error "MBEDTLS_ECDSA_DETERMINISTIC defined, but not all prerequisites"
232#endif
233
234#if defined(MBEDTLS_ECP_C) && ( !defined(MBEDTLS_BIGNUM_C) || ( \
235 !defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) && \
236 !defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) && \
237 !defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) && \
238 !defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED) && \
239 !defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED) && \
240 !defined(MBEDTLS_ECP_DP_BP256R1_ENABLED) && \
241 !defined(MBEDTLS_ECP_DP_BP384R1_ENABLED) && \
242 !defined(MBEDTLS_ECP_DP_BP512R1_ENABLED) && \
243 !defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED) && \
244 !defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED) && \
245 !defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED) && \
246 !defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED) && \
247 !defined(MBEDTLS_ECP_DP_CURVE448_ENABLED) ) )
248#error "MBEDTLS_ECP_C defined, but not all prerequisites"
249#endif
250
251#if defined(MBEDTLS_PK_PARSE_C) && !defined(MBEDTLS_ASN1_PARSE_C)
252#error "MBEDTLS_PK_PARSE_C defined, but not all prerequisites"
253#endif
254
255#if defined(MBEDTLS_PKCS12_C) && !defined(MBEDTLS_CIPHER_C)
256#error "MBEDTLS_PKCS12_C defined, but not all prerequisites"
257#endif
258
259#if defined(MBEDTLS_PKCS5_C) && \
260 !defined(MBEDTLS_CIPHER_C)
261#error "MBEDTLS_PKCS5_C defined, but not all prerequisites"
262#endif
263
264/* Helpers for hash dependencies, will be undefined at the end of the file */
265/* Do SHA-256, 384, 512 to cover Entropy and TLS. */
266#if defined(MBEDTLS_SHA256_C) || \
267 (defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_256))
268#define MBEDTLS_MD_HAVE_SHA256
269#endif
270#if defined(MBEDTLS_SHA384_C) || \
271 (defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_384))
272#define MBEDTLS_MD_HAVE_SHA384
273#endif
274#if defined(MBEDTLS_SHA512_C) || \
275 (defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_512))
276#define MBEDTLS_MD_HAVE_SHA512
277#endif
278
279#if defined(MBEDTLS_ENTROPY_C) && \
280 !(defined(MBEDTLS_MD_HAVE_SHA512) || defined(MBEDTLS_MD_HAVE_SHA256))
281#error "MBEDTLS_ENTROPY_C defined, but not all prerequisites"
282#endif
283#if defined(MBEDTLS_ENTROPY_C) && \
284 defined(MBEDTLS_CTR_DRBG_ENTROPY_LEN) && (MBEDTLS_CTR_DRBG_ENTROPY_LEN > 64)
285#error "MBEDTLS_CTR_DRBG_ENTROPY_LEN value too high"
286#endif
287#if defined(MBEDTLS_ENTROPY_C) && \
288 (defined(MBEDTLS_ENTROPY_FORCE_SHA256) || !defined(MBEDTLS_MD_HAVE_SHA512)) \
289 && defined(MBEDTLS_CTR_DRBG_ENTROPY_LEN) && (MBEDTLS_CTR_DRBG_ENTROPY_LEN > 32)
290#error "MBEDTLS_CTR_DRBG_ENTROPY_LEN value too high"
291#endif
292#if defined(MBEDTLS_ENTROPY_C) && \
293 defined(MBEDTLS_ENTROPY_FORCE_SHA256) && !defined(MBEDTLS_MD_HAVE_SHA256)
294#error "MBEDTLS_ENTROPY_FORCE_SHA256 defined, but not all prerequisites"
295#endif
296
297#if defined(__has_feature)
298#if __has_feature(memory_sanitizer)
299#define MBEDTLS_HAS_MEMSAN
300#endif
301#endif
302#if defined(MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN) && !defined(MBEDTLS_HAS_MEMSAN)
303#error "MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN requires building with MemorySanitizer"
304#endif
305#undef MBEDTLS_HAS_MEMSAN
306
307#if defined(MBEDTLS_CCM_C) && ( \
308 !defined(MBEDTLS_AES_C) && !defined(MBEDTLS_CAMELLIA_C) && !defined(MBEDTLS_ARIA_C) )
309#error "MBEDTLS_CCM_C defined, but not all prerequisites"
310#endif
311
312#if defined(MBEDTLS_CCM_C) && !defined(MBEDTLS_CIPHER_C)
313#error "MBEDTLS_CCM_C defined, but not all prerequisites"
314#endif
315
316#if defined(MBEDTLS_GCM_C) && ( \
317 !defined(MBEDTLS_AES_C) && !defined(MBEDTLS_CAMELLIA_C) && !defined(MBEDTLS_ARIA_C) )
318#error "MBEDTLS_GCM_C defined, but not all prerequisites"
319#endif
320
321#if defined(MBEDTLS_GCM_C) && !defined(MBEDTLS_CIPHER_C)
322#error "MBEDTLS_GCM_C defined, but not all prerequisites"
323#endif
324
325#if defined(MBEDTLS_CHACHAPOLY_C) && !defined(MBEDTLS_CHACHA20_C)
326#error "MBEDTLS_CHACHAPOLY_C defined, but not all prerequisites"
327#endif
328
329#if defined(MBEDTLS_CHACHAPOLY_C) && !defined(MBEDTLS_POLY1305_C)
330#error "MBEDTLS_CHACHAPOLY_C defined, but not all prerequisites"
331#endif
332
333#if defined(MBEDTLS_ECP_RANDOMIZE_JAC_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
334#error "MBEDTLS_ECP_RANDOMIZE_JAC_ALT defined, but not all prerequisites"
335#endif
336
337#if defined(MBEDTLS_ECP_ADD_MIXED_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
338#error "MBEDTLS_ECP_ADD_MIXED_ALT defined, but not all prerequisites"
339#endif
340
341#if defined(MBEDTLS_ECP_DOUBLE_JAC_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
342#error "MBEDTLS_ECP_DOUBLE_JAC_ALT defined, but not all prerequisites"
343#endif
344
345#if defined(MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
346#error "MBEDTLS_ECP_NORMALIZE_JAC_MANY_ALT defined, but not all prerequisites"
347#endif
348
349#if defined(MBEDTLS_ECP_NORMALIZE_JAC_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
350#error "MBEDTLS_ECP_NORMALIZE_JAC_ALT defined, but not all prerequisites"
351#endif
352
353#if defined(MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
354#error "MBEDTLS_ECP_DOUBLE_ADD_MXZ_ALT defined, but not all prerequisites"
355#endif
356
357#if defined(MBEDTLS_ECP_RANDOMIZE_MXZ_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
358#error "MBEDTLS_ECP_RANDOMIZE_MXZ_ALT defined, but not all prerequisites"
359#endif
360
361#if defined(MBEDTLS_ECP_NORMALIZE_MXZ_ALT) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
362#error "MBEDTLS_ECP_NORMALIZE_MXZ_ALT defined, but not all prerequisites"
363#endif
364
365#if defined(MBEDTLS_ECP_NO_FALLBACK) && !defined(MBEDTLS_ECP_INTERNAL_ALT)
366#error "MBEDTLS_ECP_NO_FALLBACK defined, but no alternative implementation enabled"
367#endif
368
369#if defined(MBEDTLS_HKDF_C) && !defined(MBEDTLS_MD_C)
370#error "MBEDTLS_HKDF_C defined, but not all prerequisites"
371#endif
372
373#if defined(MBEDTLS_HMAC_DRBG_C) && !defined(MBEDTLS_MD_C)
374#error "MBEDTLS_HMAC_DRBG_C defined, but not all prerequisites"
375#endif
376
377/* Helper for JPAKE dependencies, will be undefined at the end of the file */
378#if defined(MBEDTLS_USE_PSA_CRYPTO)
379#if defined(PSA_WANT_ALG_JPAKE) && defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_BASIC)
380#define MBEDTLS_PK_HAVE_JPAKE
381#endif
382#else /* MBEDTLS_USE_PSA_CRYPTO */
383#if defined(MBEDTLS_ECJPAKE_C)
384#define MBEDTLS_PK_HAVE_JPAKE
385#endif
386#endif /* MBEDTLS_USE_PSA_CRYPTO */
387
388/* Helper for curve SECP256R1 */
389#if defined(MBEDTLS_USE_PSA_CRYPTO)
390#if defined(PSA_WANT_ECC_SECP_R1_256)
391#define MBEDTLS_PK_HAVE_CURVE_SECP256R1
392#endif
393#else /* MBEDTLS_USE_PSA_CRYPTO */
394#if defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED)
395#define MBEDTLS_PK_HAVE_CURVE_SECP256R1
396#endif
397#endif /* MBEDTLS_USE_PSA_CRYPTO */
398
399#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED) && \
400 ( !defined(MBEDTLS_CAN_ECDH) || \
401 !defined(MBEDTLS_PK_CAN_ECDSA_SIGN) || \
402 !defined(MBEDTLS_X509_CRT_PARSE_C) )
403#error "MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED defined, but not all prerequisites"
404#endif
405
406#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED) && \
407 ( !defined(MBEDTLS_CAN_ECDH) || !defined(MBEDTLS_RSA_C) || \
408 !defined(MBEDTLS_X509_CRT_PARSE_C) )
409#error "MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED defined, but not all prerequisites"
410#endif
411
412#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED) && !defined(MBEDTLS_DHM_C)
413#error "MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED defined, but not all prerequisites"
414#endif
415
416#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED) && \
417 !defined(MBEDTLS_CAN_ECDH)
418#error "MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED defined, but not all prerequisites"
419#endif
420
421#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED) && \
422 ( !defined(MBEDTLS_DHM_C) || !defined(MBEDTLS_RSA_C) || \
423 !defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_PKCS1_V15) )
424#error "MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED defined, but not all prerequisites"
425#endif
426
427#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED) && \
428 ( !defined(MBEDTLS_CAN_ECDH) || !defined(MBEDTLS_RSA_C) || \
429 !defined(MBEDTLS_X509_CRT_PARSE_C) || !defined(MBEDTLS_PKCS1_V15) )
430#error "MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED defined, but not all prerequisites"
431#endif
432
433#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED) && \
434 ( !defined(MBEDTLS_CAN_ECDH) || \
435 !defined(MBEDTLS_PK_CAN_ECDSA_SIGN) || \
436 !defined(MBEDTLS_X509_CRT_PARSE_C) )
437#error "MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED defined, but not all prerequisites"
438#endif
439
440#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED) && \
441 ( !defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
442 !defined(MBEDTLS_PKCS1_V15) )
443#error "MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED defined, but not all prerequisites"
444#endif
445
446#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED) && \
447 ( !defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
448 !defined(MBEDTLS_PKCS1_V15) )
449#error "MBEDTLS_KEY_EXCHANGE_RSA_ENABLED defined, but not all prerequisites"
450#endif
451
452#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED) && \
453 ( !defined(MBEDTLS_PK_HAVE_JPAKE) || \
454 !defined(MBEDTLS_PK_HAVE_CURVE_SECP256R1) )
455#error "MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED defined, but not all prerequisites"
456#endif
457
458/* Use of EC J-PAKE in TLS requires SHA-256. */
459#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED) && \
460 !defined(MBEDTLS_MD_HAVE_SHA256)
461#error "MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED defined, but not all prerequisites"
462#endif
463
464#if defined(MBEDTLS_KEY_EXCHANGE_WITH_CERT_ENABLED) && \
465 !defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE) && \
466 ( !defined(MBEDTLS_SHA256_C) && \
467 !defined(MBEDTLS_SHA512_C) && \
468 !defined(MBEDTLS_SHA1_C) )
469#error "!MBEDTLS_SSL_KEEP_PEER_CERTIFICATE requires MBEDTLS_SHA512_C, MBEDTLS_SHA256_C or MBEDTLS_SHA1_C"
470#endif
471
472#if defined(MBEDTLS_MD_C) && !( \
473 defined(MBEDTLS_MD5_C) || \
474 defined(MBEDTLS_RIPEMD160_C) || \
475 defined(MBEDTLS_SHA1_C) || \
476 defined(MBEDTLS_SHA224_C) || \
477 defined(MBEDTLS_SHA256_C) || \
478 defined(MBEDTLS_SHA384_C) || \
479 defined(MBEDTLS_SHA512_C) || \
480 (defined(MBEDTLS_PSA_CRYPTO_C) && \
481 (defined(PSA_WANT_ALG_MD5) || \
482 defined(PSA_WANT_ALG_RIPEMD160) || \
483 defined(PSA_WANT_ALG_SHA_1) || \
484 defined(PSA_WANT_ALG_SHA_224) || \
485 defined(PSA_WANT_ALG_SHA_256) || \
486 defined(PSA_WANT_ALG_SHA_384) || \
487 defined(PSA_WANT_ALG_SHA_512))))
488#error "MBEDTLS_MD_C defined, but not all prerequisites"
489#endif
490
491#if defined(MBEDTLS_LMS_C) && \
492 ! ( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_256) )
493#error "MBEDTLS_LMS_C requires MBEDTLS_PSA_CRYPTO_C and PSA_WANT_ALG_SHA_256"
494#endif
495
496#if defined(MBEDTLS_LMS_PRIVATE) && \
497 ( !defined(MBEDTLS_LMS_C) )
498#error "MBEDTLS_LMS_PRIVATE requires MBEDTLS_LMS_C"
499#endif
500
501#if defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C) && \
502 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_PLATFORM_MEMORY) )
503#error "MBEDTLS_MEMORY_BUFFER_ALLOC_C defined, but not all prerequisites"
504#endif
505
506#if defined(MBEDTLS_MEMORY_BACKTRACE) && !defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
507#error "MBEDTLS_MEMORY_BACKTRACE defined, but not all prerequisites"
508#endif
509
510#if defined(MBEDTLS_MEMORY_DEBUG) && !defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
511#error "MBEDTLS_MEMORY_DEBUG defined, but not all prerequisites"
512#endif
513
514#if defined(MBEDTLS_PEM_PARSE_C) && !defined(MBEDTLS_BASE64_C)
515#error "MBEDTLS_PEM_PARSE_C defined, but not all prerequisites"
516#endif
517
518#if defined(MBEDTLS_PEM_WRITE_C) && !defined(MBEDTLS_BASE64_C)
519#error "MBEDTLS_PEM_WRITE_C defined, but not all prerequisites"
520#endif
521
522#if defined(MBEDTLS_PK_C) && \
523 !defined(MBEDTLS_RSA_C) && !defined(MBEDTLS_PK_HAVE_ECC_KEYS)
524#error "MBEDTLS_PK_C defined, but not all prerequisites"
525#endif
526
527#if defined(MBEDTLS_PK_PARSE_C) && !defined(MBEDTLS_PK_C)
528#error "MBEDTLS_PK_PARSE_C defined, but not all prerequisites"
529#endif
530
531#if defined(MBEDTLS_PK_WRITE_C) && !defined(MBEDTLS_PK_C)
532#error "MBEDTLS_PK_WRITE_C defined, but not all prerequisites"
533#endif
534
535#if defined(MBEDTLS_PLATFORM_EXIT_ALT) && !defined(MBEDTLS_PLATFORM_C)
536#error "MBEDTLS_PLATFORM_EXIT_ALT defined, but not all prerequisites"
537#endif
538
539#if defined(MBEDTLS_PLATFORM_EXIT_MACRO) && !defined(MBEDTLS_PLATFORM_C)
540#error "MBEDTLS_PLATFORM_EXIT_MACRO defined, but not all prerequisites"
541#endif
542
543#if defined(MBEDTLS_PLATFORM_EXIT_MACRO) &&\
544 ( defined(MBEDTLS_PLATFORM_STD_EXIT) ||\
545 defined(MBEDTLS_PLATFORM_EXIT_ALT) )
546#error "MBEDTLS_PLATFORM_EXIT_MACRO and MBEDTLS_PLATFORM_STD_EXIT/MBEDTLS_PLATFORM_EXIT_ALT cannot be defined simultaneously"
547#endif
548
549#if defined(MBEDTLS_PLATFORM_SETBUF_ALT) && !defined(MBEDTLS_PLATFORM_C)
550#error "MBEDTLS_PLATFORM_SETBUF_ALT defined, but not all prerequisites"
551#endif
552
553#if defined(MBEDTLS_PLATFORM_SETBUF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
554#error "MBEDTLS_PLATFORM_SETBUF_MACRO defined, but not all prerequisites"
555#endif
556
557#if defined(MBEDTLS_PLATFORM_SETBUF_MACRO) &&\
558 ( defined(MBEDTLS_PLATFORM_STD_SETBUF) ||\
559 defined(MBEDTLS_PLATFORM_SETBUF_ALT) )
560#error "MBEDTLS_PLATFORM_SETBUF_MACRO and MBEDTLS_PLATFORM_STD_SETBUF/MBEDTLS_PLATFORM_SETBUF_ALT cannot be defined simultaneously"
561#endif
562
563#if defined(MBEDTLS_PLATFORM_TIME_ALT) &&\
564 ( !defined(MBEDTLS_PLATFORM_C) ||\
565 !defined(MBEDTLS_HAVE_TIME) )
566#error "MBEDTLS_PLATFORM_TIME_ALT defined, but not all prerequisites"
567#endif
568
569#if defined(MBEDTLS_PLATFORM_TIME_MACRO) &&\
570 ( !defined(MBEDTLS_PLATFORM_C) ||\
571 !defined(MBEDTLS_HAVE_TIME) )
572#error "MBEDTLS_PLATFORM_TIME_MACRO defined, but not all prerequisites"
573#endif
574
575#if defined(MBEDTLS_PLATFORM_MS_TIME_TYPE_MACRO) &&\
576 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_HAVE_TIME) )
577#error "MBEDTLS_PLATFORM_MS_TIME_TYPE_MACRO defined, but not all prerequisites"
578#endif
579
580#if defined(MBEDTLS_PLATFORM_MS_TIME_ALT) && \
581 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_HAVE_TIME) )
582#error "MBEDTLS_PLATFORM_MS_TIME_ALT defined, but not all prerequisites"
583#endif
584
585#if defined(MBEDTLS_PLATFORM_TIME_TYPE_MACRO) &&\
586 ( !defined(MBEDTLS_PLATFORM_C) ||\
587 !defined(MBEDTLS_HAVE_TIME) )
588#error "MBEDTLS_PLATFORM_TIME_TYPE_MACRO defined, but not all prerequisites"
589#endif
590
591#if defined(MBEDTLS_PLATFORM_TIME_MACRO) &&\
592 ( defined(MBEDTLS_PLATFORM_STD_TIME) ||\
593 defined(MBEDTLS_PLATFORM_TIME_ALT) )
594#error "MBEDTLS_PLATFORM_TIME_MACRO and MBEDTLS_PLATFORM_STD_TIME/MBEDTLS_PLATFORM_TIME_ALT cannot be defined simultaneously"
595#endif
596
597#if defined(MBEDTLS_PLATFORM_TIME_TYPE_MACRO) &&\
598 ( defined(MBEDTLS_PLATFORM_STD_TIME) ||\
599 defined(MBEDTLS_PLATFORM_TIME_ALT) )
600#error "MBEDTLS_PLATFORM_TIME_TYPE_MACRO and MBEDTLS_PLATFORM_STD_TIME/MBEDTLS_PLATFORM_TIME_ALT cannot be defined simultaneously"
601#endif
602
603#if defined(MBEDTLS_PLATFORM_FPRINTF_ALT) && !defined(MBEDTLS_PLATFORM_C)
604#error "MBEDTLS_PLATFORM_FPRINTF_ALT defined, but not all prerequisites"
605#endif
606
607#if defined(MBEDTLS_PLATFORM_FPRINTF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
608#error "MBEDTLS_PLATFORM_FPRINTF_MACRO defined, but not all prerequisites"
609#endif
610
611#if defined(MBEDTLS_PLATFORM_FPRINTF_MACRO) &&\
612 ( defined(MBEDTLS_PLATFORM_STD_FPRINTF) ||\
613 defined(MBEDTLS_PLATFORM_FPRINTF_ALT) )
614#error "MBEDTLS_PLATFORM_FPRINTF_MACRO and MBEDTLS_PLATFORM_STD_FPRINTF/MBEDTLS_PLATFORM_FPRINTF_ALT cannot be defined simultaneously"
615#endif
616
617#if defined(MBEDTLS_PLATFORM_FREE_MACRO) &&\
618 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_PLATFORM_MEMORY) )
619#error "MBEDTLS_PLATFORM_FREE_MACRO defined, but not all prerequisites"
620#endif
621
622#if defined(MBEDTLS_PLATFORM_FREE_MACRO) &&\
623 defined(MBEDTLS_PLATFORM_STD_FREE)
624#error "MBEDTLS_PLATFORM_FREE_MACRO and MBEDTLS_PLATFORM_STD_FREE cannot be defined simultaneously"
625#endif
626
627#if defined(MBEDTLS_PLATFORM_FREE_MACRO) && !defined(MBEDTLS_PLATFORM_CALLOC_MACRO)
628#error "MBEDTLS_PLATFORM_CALLOC_MACRO must be defined if MBEDTLS_PLATFORM_FREE_MACRO is"
629#endif
630
631#if defined(MBEDTLS_PLATFORM_CALLOC_MACRO) &&\
632 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_PLATFORM_MEMORY) )
633#error "MBEDTLS_PLATFORM_CALLOC_MACRO defined, but not all prerequisites"
634#endif
635
636#if defined(MBEDTLS_PLATFORM_CALLOC_MACRO) &&\
637 defined(MBEDTLS_PLATFORM_STD_CALLOC)
638#error "MBEDTLS_PLATFORM_CALLOC_MACRO and MBEDTLS_PLATFORM_STD_CALLOC cannot be defined simultaneously"
639#endif
640
641#if defined(MBEDTLS_PLATFORM_CALLOC_MACRO) && !defined(MBEDTLS_PLATFORM_FREE_MACRO)
642#error "MBEDTLS_PLATFORM_FREE_MACRO must be defined if MBEDTLS_PLATFORM_CALLOC_MACRO is"
643#endif
644
645#if defined(MBEDTLS_PLATFORM_MEMORY) && !defined(MBEDTLS_PLATFORM_C)
646#error "MBEDTLS_PLATFORM_MEMORY defined, but not all prerequisites"
647#endif
648
649#if defined(MBEDTLS_PLATFORM_PRINTF_ALT) && !defined(MBEDTLS_PLATFORM_C)
650#error "MBEDTLS_PLATFORM_PRINTF_ALT defined, but not all prerequisites"
651#endif
652
653#if defined(MBEDTLS_PLATFORM_PRINTF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
654#error "MBEDTLS_PLATFORM_PRINTF_MACRO defined, but not all prerequisites"
655#endif
656
657#if defined(MBEDTLS_PLATFORM_PRINTF_MACRO) &&\
658 ( defined(MBEDTLS_PLATFORM_STD_PRINTF) ||\
659 defined(MBEDTLS_PLATFORM_PRINTF_ALT) )
660#error "MBEDTLS_PLATFORM_PRINTF_MACRO and MBEDTLS_PLATFORM_STD_PRINTF/MBEDTLS_PLATFORM_PRINTF_ALT cannot be defined simultaneously"
661#endif
662
663#if defined(MBEDTLS_PLATFORM_SNPRINTF_ALT) && !defined(MBEDTLS_PLATFORM_C)
664#error "MBEDTLS_PLATFORM_SNPRINTF_ALT defined, but not all prerequisites"
665#endif
666
667#if defined(MBEDTLS_PLATFORM_SNPRINTF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
668#error "MBEDTLS_PLATFORM_SNPRINTF_MACRO defined, but not all prerequisites"
669#endif
670
671#if defined(MBEDTLS_PLATFORM_SNPRINTF_MACRO) &&\
672 ( defined(MBEDTLS_PLATFORM_STD_SNPRINTF) ||\
673 defined(MBEDTLS_PLATFORM_SNPRINTF_ALT) )
674#error "MBEDTLS_PLATFORM_SNPRINTF_MACRO and MBEDTLS_PLATFORM_STD_SNPRINTF/MBEDTLS_PLATFORM_SNPRINTF_ALT cannot be defined simultaneously"
675#endif
676
677#if defined(MBEDTLS_PLATFORM_VSNPRINTF_ALT) && !defined(MBEDTLS_PLATFORM_C)
678#error "MBEDTLS_PLATFORM_VSNPRINTF_ALT defined, but not all prerequisites"
679#endif
680
681#if defined(MBEDTLS_PLATFORM_VSNPRINTF_MACRO) && !defined(MBEDTLS_PLATFORM_C)
682#error "MBEDTLS_PLATFORM_VSNPRINTF_MACRO defined, but not all prerequisites"
683#endif
684
685#if defined(MBEDTLS_PLATFORM_VSNPRINTF_MACRO) &&\
686 ( defined(MBEDTLS_PLATFORM_STD_VSNPRINTF) ||\
687 defined(MBEDTLS_PLATFORM_VSNPRINTF_ALT) )
688#error "MBEDTLS_PLATFORM_VSNPRINTF_MACRO and MBEDTLS_PLATFORM_STD_VSNPRINTF/MBEDTLS_PLATFORM_VSNPRINTF_ALT cannot be defined simultaneously"
689#endif
690
691#if defined(MBEDTLS_PLATFORM_STD_MEM_HDR) &&\
692 !defined(MBEDTLS_PLATFORM_NO_STD_FUNCTIONS)
693#error "MBEDTLS_PLATFORM_STD_MEM_HDR defined, but not all prerequisites"
694#endif
695
696#if defined(MBEDTLS_PLATFORM_STD_CALLOC) && !defined(MBEDTLS_PLATFORM_MEMORY)
697#error "MBEDTLS_PLATFORM_STD_CALLOC defined, but not all prerequisites"
698#endif
699
700#if defined(MBEDTLS_PLATFORM_STD_FREE) && !defined(MBEDTLS_PLATFORM_MEMORY)
701#error "MBEDTLS_PLATFORM_STD_FREE defined, but not all prerequisites"
702#endif
703
704#if defined(MBEDTLS_PLATFORM_STD_EXIT) &&\
705 !defined(MBEDTLS_PLATFORM_EXIT_ALT)
706#error "MBEDTLS_PLATFORM_STD_EXIT defined, but not all prerequisites"
707#endif
708
709#if defined(MBEDTLS_PLATFORM_STD_TIME) &&\
710 ( !defined(MBEDTLS_PLATFORM_TIME_ALT) ||\
711 !defined(MBEDTLS_HAVE_TIME) )
712#error "MBEDTLS_PLATFORM_STD_TIME defined, but not all prerequisites"
713#endif
714
715#if defined(MBEDTLS_PLATFORM_STD_FPRINTF) &&\
716 !defined(MBEDTLS_PLATFORM_FPRINTF_ALT)
717#error "MBEDTLS_PLATFORM_STD_FPRINTF defined, but not all prerequisites"
718#endif
719
720#if defined(MBEDTLS_PLATFORM_STD_PRINTF) &&\
721 !defined(MBEDTLS_PLATFORM_PRINTF_ALT)
722#error "MBEDTLS_PLATFORM_STD_PRINTF defined, but not all prerequisites"
723#endif
724
725#if defined(MBEDTLS_PLATFORM_STD_SNPRINTF) &&\
726 !defined(MBEDTLS_PLATFORM_SNPRINTF_ALT)
727#error "MBEDTLS_PLATFORM_STD_SNPRINTF defined, but not all prerequisites"
728#endif
729
730#if defined(MBEDTLS_ENTROPY_NV_SEED) &&\
731 ( !defined(MBEDTLS_PLATFORM_C) || !defined(MBEDTLS_ENTROPY_C) )
732#error "MBEDTLS_ENTROPY_NV_SEED defined, but not all prerequisites"
733#endif
734
735#if defined(MBEDTLS_PLATFORM_NV_SEED_ALT) &&\
736 !defined(MBEDTLS_ENTROPY_NV_SEED)
737#error "MBEDTLS_PLATFORM_NV_SEED_ALT defined, but not all prerequisites"
738#endif
739
740#if defined(MBEDTLS_PLATFORM_STD_NV_SEED_READ) &&\
741 !defined(MBEDTLS_PLATFORM_NV_SEED_ALT)
742#error "MBEDTLS_PLATFORM_STD_NV_SEED_READ defined, but not all prerequisites"
743#endif
744
745#if defined(MBEDTLS_PLATFORM_STD_NV_SEED_WRITE) &&\
746 !defined(MBEDTLS_PLATFORM_NV_SEED_ALT)
747#error "MBEDTLS_PLATFORM_STD_NV_SEED_WRITE defined, but not all prerequisites"
748#endif
749
750#if defined(MBEDTLS_PLATFORM_NV_SEED_READ_MACRO) &&\
751 ( defined(MBEDTLS_PLATFORM_STD_NV_SEED_READ) ||\
752 defined(MBEDTLS_PLATFORM_NV_SEED_ALT) )
753#error "MBEDTLS_PLATFORM_NV_SEED_READ_MACRO and MBEDTLS_PLATFORM_STD_NV_SEED_READ cannot be defined simultaneously"
754#endif
755
756#if defined(MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO) &&\
757 ( defined(MBEDTLS_PLATFORM_STD_NV_SEED_WRITE) ||\
758 defined(MBEDTLS_PLATFORM_NV_SEED_ALT) )
759#error "MBEDTLS_PLATFORM_NV_SEED_WRITE_MACRO and MBEDTLS_PLATFORM_STD_NV_SEED_WRITE cannot be defined simultaneously"
760#endif
761
762#if defined(MBEDTLS_PSA_CRYPTO_C) && \
763 !( ( ( defined(MBEDTLS_CTR_DRBG_C) || defined(MBEDTLS_HMAC_DRBG_C) ) && \
764 defined(MBEDTLS_ENTROPY_C) ) || \
765 defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG) )
766#error "MBEDTLS_PSA_CRYPTO_C defined, but not all prerequisites (missing RNG)"
767#endif
768
769#if defined(MBEDTLS_PSA_CRYPTO_C) && !defined(MBEDTLS_CIPHER_C )
770#error "MBEDTLS_PSA_CRYPTO_C defined, but not all prerequisites"
771#endif
772
773#if defined(MBEDTLS_PSA_CRYPTO_SPM) && !defined(MBEDTLS_PSA_CRYPTO_C)
774#error "MBEDTLS_PSA_CRYPTO_SPM defined, but not all prerequisites"
775#endif
776
777#if defined(MBEDTLS_PSA_CRYPTO_SE_C) && \
778 ! ( defined(MBEDTLS_PSA_CRYPTO_C) && \
779 defined(MBEDTLS_PSA_CRYPTO_STORAGE_C) )
780#error "MBEDTLS_PSA_CRYPTO_SE_C defined, but not all prerequisites"
781#endif
782
783#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
784#if defined(MBEDTLS_DEPRECATED_REMOVED)
785#error "MBEDTLS_PSA_CRYPTO_SE_C is deprecated and will be removed in a future version of Mbed TLS"
786#elif defined(MBEDTLS_DEPRECATED_WARNING)
787#warning "MBEDTLS_PSA_CRYPTO_SE_C is deprecated and will be removed in a future version of Mbed TLS"
788#endif
789#endif /* MBEDTLS_PSA_CRYPTO_SE_C */
790
791#if defined(MBEDTLS_PSA_CRYPTO_STORAGE_C) && \
792 ! defined(MBEDTLS_PSA_CRYPTO_C)
793#error "MBEDTLS_PSA_CRYPTO_STORAGE_C defined, but not all prerequisites"
794#endif
795
796#if defined(MBEDTLS_PSA_INJECT_ENTROPY) && \
797 !( defined(MBEDTLS_PSA_CRYPTO_STORAGE_C) && \
798 defined(MBEDTLS_ENTROPY_NV_SEED) )
799#error "MBEDTLS_PSA_INJECT_ENTROPY defined, but not all prerequisites"
800#endif
801
802#if defined(MBEDTLS_PSA_INJECT_ENTROPY) && \
803 !defined(MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES)
804#error "MBEDTLS_PSA_INJECT_ENTROPY is not compatible with actual entropy sources"
805#endif
806
807#if defined(MBEDTLS_PSA_INJECT_ENTROPY) && \
808 defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG)
809#error "MBEDTLS_PSA_INJECT_ENTROPY is not compatible with MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG"
810#endif
811
812#if defined(MBEDTLS_PSA_ITS_FILE_C) && \
813 !defined(MBEDTLS_FS_IO)
814#error "MBEDTLS_PSA_ITS_FILE_C defined, but not all prerequisites"
815#endif
816
817#if defined(MBEDTLS_RSA_C) && ( !defined(MBEDTLS_BIGNUM_C) || \
818 !defined(MBEDTLS_OID_C) )
819#error "MBEDTLS_RSA_C defined, but not all prerequisites"
820#endif
821
822#if defined(MBEDTLS_RSA_C) && ( !defined(MBEDTLS_PKCS1_V21) && \
823 !defined(MBEDTLS_PKCS1_V15) )
824#error "MBEDTLS_RSA_C defined, but none of the PKCS1 versions enabled"
825#endif
826
827#if defined(MBEDTLS_X509_RSASSA_PSS_SUPPORT) && \
828 ( !defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_PKCS1_V21) )
829#error "MBEDTLS_X509_RSASSA_PSS_SUPPORT defined, but not all prerequisites"
830#endif
831
832#if defined(MBEDTLS_SHA512_USE_A64_CRYPTO_IF_PRESENT) && \
833 defined(MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY)
834#error "Must only define one of MBEDTLS_SHA512_USE_A64_CRYPTO_*"
835#endif
836
837#if defined(MBEDTLS_SHA512_USE_A64_CRYPTO_IF_PRESENT) || \
838 defined(MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY)
839#if !defined(MBEDTLS_SHA512_C)
840#error "MBEDTLS_SHA512_USE_A64_CRYPTO_* defined without MBEDTLS_SHA512_C"
841#endif
842#if defined(MBEDTLS_SHA512_ALT) || defined(MBEDTLS_SHA512_PROCESS_ALT)
843#error "MBEDTLS_SHA512_*ALT can't be used with MBEDTLS_SHA512_USE_A64_CRYPTO_*"
844#endif
845
846#endif /* MBEDTLS_SHA512_USE_A64_CRYPTO_IF_PRESENT || MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY */
847
848#if defined(MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY) && !defined(__aarch64__)
849#error "MBEDTLS_SHA512_USE_A64_CRYPTO_ONLY defined on non-Aarch64 system"
850#endif
851
852#if defined(MBEDTLS_SHA256_USE_A64_CRYPTO_IF_PRESENT) && \
853 defined(MBEDTLS_SHA256_USE_A64_CRYPTO_ONLY)
854#error "Must only define one of MBEDTLS_SHA256_USE_A64_CRYPTO_*"
855#endif
856
857#if defined(MBEDTLS_SHA256_USE_A64_CRYPTO_IF_PRESENT) || \
858 defined(MBEDTLS_SHA256_USE_A64_CRYPTO_ONLY)
859#if !defined(MBEDTLS_SHA256_C)
860#error "MBEDTLS_SHA256_USE_A64_CRYPTO_* defined without MBEDTLS_SHA256_C"
861#endif
862#if defined(MBEDTLS_SHA256_ALT) || defined(MBEDTLS_SHA256_PROCESS_ALT)
863#error "MBEDTLS_SHA256_*ALT can't be used with MBEDTLS_SHA256_USE_A64_CRYPTO_*"
864#endif
865
866#endif
867
868#if defined(MBEDTLS_SHA256_USE_A64_CRYPTO_ONLY) && \
869 !defined(__aarch64__) && !defined(_M_ARM64)
870#error "MBEDTLS_SHA256_USE_A64_CRYPTO_ONLY defined on non-Aarch64 system"
871#endif
872
873/* TLS 1.3 requires separate HKDF parts from PSA,
874 * and at least one ciphersuite, so at least SHA-256 or SHA-384
875 * from PSA to use with HKDF.
876 *
877 * Note: for dependencies common with TLS 1.2 (running handshake hash),
878 * see MBEDTLS_SSL_TLS_C. */
879#if defined(MBEDTLS_SSL_PROTO_TLS1_3) && \
880 !(defined(MBEDTLS_PSA_CRYPTO_C) && \
881 defined(PSA_WANT_ALG_HKDF_EXTRACT) && \
882 defined(PSA_WANT_ALG_HKDF_EXPAND) && \
883 (defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA_384)))
884#error "MBEDTLS_SSL_PROTO_TLS1_3 defined, but not all prerequisites"
885#endif
886
887#if defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED)
888#if !( (defined(PSA_WANT_ALG_ECDH) || defined(PSA_WANT_ALG_FFDH)) && \
889 defined(MBEDTLS_X509_CRT_PARSE_C) && \
890 ( defined(MBEDTLS_PK_CAN_ECDSA_SIGN) || defined(MBEDTLS_PKCS1_V21) ) )
891#error "MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED defined, but not all prerequisites"
892#endif
893#endif
894
895#if defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED)
896#if !( defined(PSA_WANT_ALG_ECDH) || defined(PSA_WANT_ALG_FFDH) )
897#error "MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED defined, but not all prerequisites"
898#endif
899#endif
900
901/*
902 * The current implementation of TLS 1.3 requires MBEDTLS_SSL_KEEP_PEER_CERTIFICATE.
903 */
904#if defined(MBEDTLS_SSL_PROTO_TLS1_3) && !defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE)
905#error "MBEDTLS_SSL_PROTO_TLS1_3 defined without MBEDTLS_SSL_KEEP_PEER_CERTIFICATE"
906#endif
907
908#if defined(MBEDTLS_SSL_PROTO_TLS1_2) && \
909 !(defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED) || \
910 defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED) || \
911 defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED) || \
912 defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED) || \
913 defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED) || \
914 defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED) || \
915 defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED) || \
916 defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED) || \
917 defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED) || \
918 defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED) || \
919 defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED) )
920#error "One or more versions of the TLS protocol are enabled " \
921 "but no key exchange methods defined with MBEDTLS_KEY_EXCHANGE_xxxx"
922#endif
923
924#if defined(MBEDTLS_SSL_EARLY_DATA) && \
925 ( !defined(MBEDTLS_SSL_SESSION_TICKETS) || \
926 ( !defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED) && \
927 !defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED) ) )
928#error "MBEDTLS_SSL_EARLY_DATA defined, but not all prerequisites"
929#endif
930
931#if defined(MBEDTLS_SSL_EARLY_DATA) && defined(MBEDTLS_SSL_SRV_C) && \
932 defined(MBEDTLS_SSL_MAX_EARLY_DATA_SIZE) && \
933 ((MBEDTLS_SSL_MAX_EARLY_DATA_SIZE < 0) || \
934 (MBEDTLS_SSL_MAX_EARLY_DATA_SIZE > UINT32_MAX))
935#error "MBEDTLS_SSL_MAX_EARLY_DATA_SIZE must be in the range(0..UINT32_MAX)"
936#endif
937
938#if defined(MBEDTLS_SSL_PROTO_DTLS) && \
939 !defined(MBEDTLS_SSL_PROTO_TLS1_2)
940#error "MBEDTLS_SSL_PROTO_DTLS defined, but not all prerequisites"
941#endif
942
943#if defined(MBEDTLS_SSL_CLI_C) && !defined(MBEDTLS_SSL_TLS_C)
944#error "MBEDTLS_SSL_CLI_C defined, but not all prerequisites"
945#endif
946
947#if defined(MBEDTLS_SSL_ASYNC_PRIVATE) && !defined(MBEDTLS_X509_CRT_PARSE_C)
948#error "MBEDTLS_SSL_ASYNC_PRIVATE defined, but not all prerequisites"
949#endif
950
951#if defined(MBEDTLS_SSL_TLS_C) && !defined(MBEDTLS_CIPHER_C)
952#error "MBEDTLS_SSL_TLS_C defined, but not all prerequisites"
953#endif
954
955/* TLS 1.2 and 1.3 require SHA-256 or SHA-384 (running handshake hash) */
956#if defined(MBEDTLS_SSL_TLS_C)
957#if defined(MBEDTLS_USE_PSA_CRYPTO)
958#if !(defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA_384))
959#error "MBEDTLS_SSL_TLS_C defined, but not all prerequisites"
960#endif
961#else /* MBEDTLS_USE_PSA_CRYPTO */
962#if !defined(MBEDTLS_MD_C) || \
963 !(defined(MBEDTLS_MD_HAVE_SHA256) || defined(MBEDTLS_MD_HAVE_SHA384))
964#error "MBEDTLS_SSL_TLS_C defined, but not all prerequisites"
965#endif
966#endif /* MBEDTLS_USE_PSA_CRYPTO */
967#endif /* MBEDTLS_SSL_TLS_C */
968
969#if defined(MBEDTLS_SSL_SRV_C) && !defined(MBEDTLS_SSL_TLS_C)
970#error "MBEDTLS_SSL_SRV_C defined, but not all prerequisites"
971#endif
972
973#if defined(MBEDTLS_SSL_TLS_C) && \
974 !( defined(MBEDTLS_SSL_PROTO_TLS1_2) || defined(MBEDTLS_SSL_PROTO_TLS1_3) )
975#error "MBEDTLS_SSL_TLS_C defined, but no protocols are active"
976#endif
977
978#if defined(MBEDTLS_SSL_DTLS_HELLO_VERIFY) && !defined(MBEDTLS_SSL_PROTO_DTLS)
979#error "MBEDTLS_SSL_DTLS_HELLO_VERIFY defined, but not all prerequisites"
980#endif
981
982#if defined(MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE) && \
983 !defined(MBEDTLS_SSL_DTLS_HELLO_VERIFY)
984#error "MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE defined, but not all prerequisites"
985#endif
986
987#if defined(MBEDTLS_SSL_DTLS_ANTI_REPLAY) && \
988 ( !defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_PROTO_DTLS) )
989#error "MBEDTLS_SSL_DTLS_ANTI_REPLAY defined, but not all prerequisites"
990#endif
991
992#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID) && \
993 ( !defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_PROTO_DTLS) )
994#error "MBEDTLS_SSL_DTLS_CONNECTION_ID defined, but not all prerequisites"
995#endif
996
997#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID) && \
998 defined(MBEDTLS_SSL_CID_IN_LEN_MAX) && \
999 MBEDTLS_SSL_CID_IN_LEN_MAX > 255
1000#error "MBEDTLS_SSL_CID_IN_LEN_MAX too large (max 255)"
1001#endif
1002
1003#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID) && \
1004 defined(MBEDTLS_SSL_CID_OUT_LEN_MAX) && \
1005 MBEDTLS_SSL_CID_OUT_LEN_MAX > 255
1006#error "MBEDTLS_SSL_CID_OUT_LEN_MAX too large (max 255)"
1007#endif
1008
1009#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT) && \
1010 !defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
1011#error "MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT defined, but not all prerequisites"
1012#endif
1013
1014#if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT) && MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT != 0
1015#if defined(MBEDTLS_DEPRECATED_REMOVED)
1016#error "MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT is deprecated and will be removed in a future version of Mbed TLS"
1017#elif defined(MBEDTLS_DEPRECATED_WARNING)
1018#warning "MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT is deprecated and will be removed in a future version of Mbed TLS"
1019#endif
1020#endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT && MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT != 0 */
1021
1022#if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC) && \
1023 !defined(MBEDTLS_SSL_PROTO_TLS1_2)
1024#error "MBEDTLS_SSL_ENCRYPT_THEN_MAC defined, but not all prerequisites"
1025#endif
1026
1027#if defined(MBEDTLS_SSL_EXTENDED_MASTER_SECRET) && \
1028 !defined(MBEDTLS_SSL_PROTO_TLS1_2)
1029#error "MBEDTLS_SSL_EXTENDED_MASTER_SECRET defined, but not all prerequisites"
1030#endif
1031
1032#if defined(MBEDTLS_SSL_RENEGOTIATION) && \
1033 !defined(MBEDTLS_SSL_PROTO_TLS1_2)
1034#error "MBEDTLS_SSL_RENEGOTIATION defined, but not all prerequisites"
1035#endif
1036
1037#if defined(MBEDTLS_SSL_TICKET_C) && ( !defined(MBEDTLS_CIPHER_C) && \
1038 !defined(MBEDTLS_USE_PSA_CRYPTO) )
1039#error "MBEDTLS_SSL_TICKET_C defined, but not all prerequisites"
1040#endif
1041
1042#if defined(MBEDTLS_SSL_TICKET_C) && \
1043 !( defined(MBEDTLS_GCM_C) || defined(MBEDTLS_CCM_C) || defined(MBEDTLS_CHACHAPOLY_C) )
1044#error "MBEDTLS_SSL_TICKET_C defined, but not all prerequisites"
1045#endif
1046
1047#if defined(MBEDTLS_SSL_TLS1_3_TICKET_NONCE_LENGTH) && \
1048 MBEDTLS_SSL_TLS1_3_TICKET_NONCE_LENGTH >= 256
1049#error "MBEDTLS_SSL_TLS1_3_TICKET_NONCE_LENGTH must be less than 256"
1050#endif
1051
1052#if defined(MBEDTLS_SSL_SERVER_NAME_INDICATION) && \
1053 !defined(MBEDTLS_X509_CRT_PARSE_C)
1054#error "MBEDTLS_SSL_SERVER_NAME_INDICATION defined, but not all prerequisites"
1055#endif
1056
1057#if defined(MBEDTLS_THREADING_PTHREAD)
1058#if !defined(MBEDTLS_THREADING_C) || defined(MBEDTLS_THREADING_IMPL)
1059#error "MBEDTLS_THREADING_PTHREAD defined, but not all prerequisites"
1060#endif
1061#define MBEDTLS_THREADING_IMPL
1062#endif
1063
1064#if defined(MBEDTLS_THREADING_ALT)
1065#if !defined(MBEDTLS_THREADING_C) || defined(MBEDTLS_THREADING_IMPL)
1066#error "MBEDTLS_THREADING_ALT defined, but not all prerequisites"
1067#endif
1068#define MBEDTLS_THREADING_IMPL
1069#endif
1070
1071#if defined(MBEDTLS_THREADING_C) && !defined(MBEDTLS_THREADING_IMPL)
1072#error "MBEDTLS_THREADING_C defined, single threading implementation required"
1073#endif
1074#undef MBEDTLS_THREADING_IMPL
1075
1076#if defined(MBEDTLS_USE_PSA_CRYPTO) && !defined(MBEDTLS_PSA_CRYPTO_C)
1077#error "MBEDTLS_USE_PSA_CRYPTO defined, but not all prerequisites"
1078#endif
1079
1080#if defined(MBEDTLS_VERSION_FEATURES) && !defined(MBEDTLS_VERSION_C)
1081#error "MBEDTLS_VERSION_FEATURES defined, but not all prerequisites"
1082#endif
1083
1084#if defined(MBEDTLS_X509_USE_C) && \
1085 (!defined(MBEDTLS_OID_C) || !defined(MBEDTLS_ASN1_PARSE_C) || \
1086 !defined(MBEDTLS_PK_PARSE_C) || \
1087 ( !defined(MBEDTLS_MD_C) && !defined(MBEDTLS_USE_PSA_CRYPTO) ) )
1088#error "MBEDTLS_X509_USE_C defined, but not all prerequisites"
1089#endif
1090
1091#if defined(MBEDTLS_X509_CREATE_C) && \
1092 (!defined(MBEDTLS_OID_C) || !defined(MBEDTLS_ASN1_WRITE_C) || \
1093 !defined(MBEDTLS_PK_PARSE_C) || \
1094 ( !defined(MBEDTLS_MD_C) && !defined(MBEDTLS_USE_PSA_CRYPTO) ) )
1095#error "MBEDTLS_X509_CREATE_C defined, but not all prerequisites"
1096#endif
1097
1098#if defined(MBEDTLS_X509_CRT_PARSE_C) && ( !defined(MBEDTLS_X509_USE_C) )
1099#error "MBEDTLS_X509_CRT_PARSE_C defined, but not all prerequisites"
1100#endif
1101
1102#if defined(MBEDTLS_X509_CRL_PARSE_C) && ( !defined(MBEDTLS_X509_USE_C) )
1103#error "MBEDTLS_X509_CRL_PARSE_C defined, but not all prerequisites"
1104#endif
1105
1106#if defined(MBEDTLS_X509_CSR_PARSE_C) && ( !defined(MBEDTLS_X509_USE_C) )
1107#error "MBEDTLS_X509_CSR_PARSE_C defined, but not all prerequisites"
1108#endif
1109
1110#if defined(MBEDTLS_X509_CRT_WRITE_C) && ( !defined(MBEDTLS_X509_CREATE_C) )
1111#error "MBEDTLS_X509_CRT_WRITE_C defined, but not all prerequisites"
1112#endif
1113
1114#if defined(MBEDTLS_X509_CSR_WRITE_C) && ( !defined(MBEDTLS_X509_CREATE_C) )
1115#error "MBEDTLS_X509_CSR_WRITE_C defined, but not all prerequisites"
1116#endif
1117
1118#if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK) && \
1119 ( !defined(MBEDTLS_X509_CRT_PARSE_C) )
1120#error "MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK defined, but not all prerequisites"
1121#endif
1122
1123#if defined(MBEDTLS_HAVE_INT32) && defined(MBEDTLS_HAVE_INT64)
1124#error "MBEDTLS_HAVE_INT32 and MBEDTLS_HAVE_INT64 cannot be defined simultaneously"
1125#endif /* MBEDTLS_HAVE_INT32 && MBEDTLS_HAVE_INT64 */
1126
1127#if ( defined(MBEDTLS_HAVE_INT32) || defined(MBEDTLS_HAVE_INT64) ) && \
1128 defined(MBEDTLS_HAVE_ASM)
1129#error "MBEDTLS_HAVE_INT32/MBEDTLS_HAVE_INT64 and MBEDTLS_HAVE_ASM cannot be defined simultaneously"
1130#endif /* (MBEDTLS_HAVE_INT32 || MBEDTLS_HAVE_INT64) && MBEDTLS_HAVE_ASM */
1131
1132#if defined(MBEDTLS_SSL_DTLS_SRTP) && ( !defined(MBEDTLS_SSL_PROTO_DTLS) )
1133#error "MBEDTLS_SSL_DTLS_SRTP defined, but not all prerequisites"
1134#endif
1135
1136#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH) && ( !defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH) )
1137#error "MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH defined, but not all prerequisites"
1138#endif
1139
1140#if defined(MBEDTLS_SSL_RECORD_SIZE_LIMIT) && ( !defined(MBEDTLS_SSL_PROTO_TLS1_3) )
1141#error "MBEDTLS_SSL_RECORD_SIZE_LIMIT defined, but not all prerequisites"
1142#endif
1143
1144#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION) && !( defined(MBEDTLS_GCM_C) || defined(MBEDTLS_CCM_C) || defined(MBEDTLS_CHACHAPOLY_C) )
1145#error "MBEDTLS_SSL_CONTEXT_SERIALIZATION defined, but not all prerequisites"
1146#endif
1147
1148/* Reject attempts to enable options that have been removed and that could
1149 * cause a build to succeed but with features removed. */
1150
1151#if defined(MBEDTLS_HAVEGE_C) //no-check-names
1152#error "MBEDTLS_HAVEGE_C was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/2599"
1153#endif
1154
1155#if defined(MBEDTLS_SSL_HW_RECORD_ACCEL) //no-check-names
1156#error "MBEDTLS_SSL_HW_RECORD_ACCEL was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1157#endif
1158
1159#if defined(MBEDTLS_SSL_PROTO_SSL3) //no-check-names
1160#error "MBEDTLS_SSL_PROTO_SSL3 (SSL v3.0 support) was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1161#endif
1162
1163#if defined(MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO) //no-check-names
1164#error "MBEDTLS_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO (SSL v2 ClientHello support) was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1165#endif
1166
1167#if defined(MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT) //no-check-names
1168#error "MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT (compatibility with the buggy implementation of truncated HMAC in Mbed TLS up to 2.7) was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1169#endif
1170
1171#if defined(MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES) //no-check-names
1172#error "MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES was removed in Mbed TLS 3.0. See the ChangeLog entry if you really need SHA-1-signed certificates."
1173#endif
1174
1175#if defined(MBEDTLS_ZLIB_SUPPORT) //no-check-names
1176#error "MBEDTLS_ZLIB_SUPPORT was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4031"
1177#endif
1178
1179#if defined(MBEDTLS_CHECK_PARAMS) //no-check-names
1180#error "MBEDTLS_CHECK_PARAMS was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4313"
1181#endif
1182
1183#if defined(MBEDTLS_SSL_CID_PADDING_GRANULARITY) //no-check-names
1184#error "MBEDTLS_SSL_CID_PADDING_GRANULARITY was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4335"
1185#endif
1186
1187#if defined(MBEDTLS_SSL_TLS1_3_PADDING_GRANULARITY) //no-check-names
1188#error "MBEDTLS_SSL_TLS1_3_PADDING_GRANULARITY was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4335"
1189#endif
1190
1191#if defined(MBEDTLS_SSL_TRUNCATED_HMAC) //no-check-names
1192#error "MBEDTLS_SSL_TRUNCATED_HMAC was removed in Mbed TLS 3.0. See https://github.com/Mbed-TLS/mbedtls/issues/4341"
1193#endif
1194
1195#if defined(MBEDTLS_PKCS7_C) && ( ( !defined(MBEDTLS_ASN1_PARSE_C) ) || \
1196 ( !defined(MBEDTLS_OID_C) ) || ( !defined(MBEDTLS_PK_PARSE_C) ) || \
1197 ( !defined(MBEDTLS_X509_CRT_PARSE_C) ) || \
1198 ( !defined(MBEDTLS_X509_CRL_PARSE_C) ) || \
1199 ( !defined(MBEDTLS_MD_C) ) )
1200#error "MBEDTLS_PKCS7_C is defined, but not all prerequisites"
1201#endif
1202
1203/* Undefine helper symbols */
1204#undef MBEDTLS_PK_HAVE_JPAKE
1205#undef MBEDTLS_MD_HAVE_SHA256
1206#undef MBEDTLS_MD_HAVE_SHA384
1207#undef MBEDTLS_MD_HAVE_SHA512
1208#undef MBEDTLS_PK_HAVE_CURVE_SECP256R1
1209
1210/*
1211 * Avoid warning from -pedantic. This is a convenient place for this
1212 * workaround since this is included by every single file before the
1213 * #if defined(MBEDTLS_xxx_C) that results in empty translation units.
1214 */
1216
1217/* *INDENT-ON* */
1218#endif /* MBEDTLS_CHECK_CONFIG_H */
int mbedtls_iso_c_forbids_empty_translation_units