Chapter 2. API Reference
• No (disabled)
CONFIG_MBEDTLS_ECDSA_DETERMINISTIC
Enable deterministic ECDSA
Found in:
Component config
Standard ECDSA is"fragile" in the sense that lack of entropy when signing may result in a compromise
of the long-term signing key.
Default value:
• Yes (enabled)
CONFIG_MBEDTLS_SHA512_C
Enable the SHA-384 and SHA-512 cryptographic hash algorithms
Found in:
Component config
Enable MBEDTLS_SHA512_C adds support for SHA-384 and SHA-512.
Default value:
• Yes (enabled)
CONFIG_MBEDTLS_TLS_MODE
TLS Protocol Role
Found in:
Component config
mbedTLS can be compiled with protocol support for the TLS server, TLS client, or both server and
client.
Reducing the number of TLS roles supported saves code size.
Available options:
• Server & Client (MBEDTLS_TLS_SERVER_AND_CLIENT)
• Server (MBEDTLS_TLS_SERVER_ONLY)
• Client (MBEDTLS_TLS_CLIENT_ONLY)
• None (MBEDTLS_TLS_DISABLED)
TLS Key Exchange Methods
•
CONFIG_MBEDTLS_KEY_EXCHANGE_DHE_RSA
•
CONFIG_MBEDTLS_KEY_EXCHANGE_ECJPAKE
•
CONFIG_MBEDTLS_PSK_MODES
•
CONFIG_MBEDTLS_KEY_EXCHANGE_RSA
•
CONFIG_MBEDTLS_KEY_EXCHANGE_ELLIPTIC_CURVE
CONFIG_MBEDTLS_PSK_MODES
Enable pre-shared-key ciphersuites
Found in:
Component config
Enable to show configuration for different types of pre-shared-key TLS authentatication methods.
Leaving this options disabled will save code size if they are not used.
Default value:
• No (disabled)
Espressif Systems
>
mbedTLS
>
mbedTLS
>
mbedTLS
Contains:
>
mbedTLS
>
TLS Key Exchange Methods
1191
Submit Document Feedback
Release v4.4
Need help?
Do you have a question about the ESP32-S2 and is the answer not in the manual?