mirror of
https://github.com/jart/cosmopolitan.git
synced 2025-04-09 17:28:44 +00:00
d0ac995dc0
This change configures Mbed TLS to support the fewest number of things possible required to run an HTTPS server that caters to the sweet spot of being legacy enough to support the vast majority of user agents but modern enough that Chrome and Firefox remain happy. That should entail - TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 - TLS_RSA_WITH_AES_128_CBC_SHA Even though other suites still get included so what usually happens in practice is ECDHE-RSA-AES256-GCM-SHA384 under TLS 1.2 will be selected and the binary footprint is reasonable, and should cost us about 200kb
52 lines
2 KiB
C
52 lines
2 KiB
C
/* clang-format off */
|
|
|
|
/**
|
|
* \file psa/crypto_driver_common.h
|
|
* \brief Definitions for all PSA crypto drivers
|
|
*
|
|
* This file contains common definitions shared by all PSA crypto drivers.
|
|
* Do not include it directly: instead, include the header file(s) for
|
|
* the type(s) of driver that you are implementing. For example, if
|
|
* you are writing a dynamically registered driver for a secure element,
|
|
* include `psa/crypto_se_driver.h`.
|
|
*
|
|
* This file is part of the PSA Crypto Driver Model, containing functions for
|
|
* driver developers to implement to enable hardware to be called in a
|
|
* standardized way by a PSA Cryptographic API implementation. The functions
|
|
* comprising the driver model, which driver authors implement, are not
|
|
* intended to be called by application developers.
|
|
*/
|
|
|
|
/*
|
|
* Copyright The Mbed TLS Contributors
|
|
* SPDX-License-Identifier: Apache-2.0
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
* not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
#ifndef PSA_CRYPTO_DRIVER_COMMON_H
|
|
#define PSA_CRYPTO_DRIVER_COMMON_H
|
|
|
|
/* Include type definitions (psa_status_t, psa_algorithm_t,
|
|
* psa_key_type_t, etc.) and macros to build and analyze values
|
|
* of these types. */
|
|
#include "third_party/mbedtls/include/psa/crypto_types.h"
|
|
#include "third_party/mbedtls/include/psa/crypto_values.h"
|
|
|
|
/** For encrypt-decrypt functions, whether the operation is an encryption
|
|
* or a decryption. */
|
|
typedef enum {
|
|
PSA_CRYPTO_DRIVER_DECRYPT,
|
|
PSA_CRYPTO_DRIVER_ENCRYPT
|
|
} psa_encrypt_or_decrypt_t;
|
|
|
|
#endif /* PSA_CRYPTO_DRIVER_COMMON_H */
|