Merge branch 'fix/mbedtls_remove_invalid_menuconfig_options' into 'master'

Fix/mbedtls remove invalid menuconfig options

Closes IDF-950

See merge request espressif/esp-idf!13955

components/mbedtls/Kconfig

@@ -231,6 +231,7 @@ menu "mbedTLS"
     config MBEDTLS_CMAC_C
         bool "Enable CMAC mode for block ciphers"
         default n
+        depends on MBEDTLS_AES_C || MBEDTLS_DES_C
         help
             Enable the CMAC (Cipher-based Message Authentication Code) mode for
             block ciphers.

components/wpa_supplicant/Kconfig

@@ -3,6 +3,11 @@ menu "Supplicant"
     config WPA_MBEDTLS_CRYPTO
         bool "Use MbedTLS crypto APIs"
         default y
+        select MBEDTLS_AES_C
+        select MBEDTLS_ECP_C
+        select MBEDTLS_ECDH_C
+        select MBEDTLS_ECDSA_C
+        select MBEDTLS_TLS_ENABLED
         help
             Select this option to use MbedTLS crypto APIs which utilize hardware acceleration.
 

examples/protocols/https_request/sdkconfig.ci.mbedtls_config

@@ -0,0 +1,98 @@
+# This is a test sdkconfig file for only build purpose. It is not intended to be used for the example.
+# This disables most of the mbedtls configurations by default.
+# If any component using mbedtls does not select respective configurations,
+# then this should fail at build stage.
+
+# Few example dependancies need to be enabled by default for the build to succeed
+##############
+CONFIG_MBEDTLS_SSL_PROTO_TLS1_2=y
+CONFIG_MBEDTLS_KEY_EXCHANGE_RSA=y
+CONFIG_MBEDTLS_ECP_DP_SECP256R1_ENABLED=y
+##############
+
+CONFIG_MBEDTLS_HARDWARE_AES=n
+CONFIG_MBEDTLS_HARDWARE_MPI=n
+CONFIG_MBEDTLS_HARDWARE_SHA=n
+CONFIG_MBEDTLS_ROM_MD5=n
+CONFIG_MBEDTLS_HAVE_TIME=n
+CONFIG_MBEDTLS_ECDSA_DETERMINISTIC=n
+CONFIG_MBEDTLS_SHA512_C=n
+
+CONFIG_MBEDTLS_TLS_SERVER_AND_CLIENT=n
+CONFIG_MBEDTLS_TLS_SERVER=n
+CONFIG_MBEDTLS_TLS_CLIENT=n
+CONFIG_MBEDTLS_TLS_ENABLED=n
+
+#
+# TLS Key Exchange Methods
+#
+CONFIG_MBEDTLS_PSK_MODES=n
+
+CONFIG_MBEDTLS_KEY_EXCHANGE_DHE_RSA=n
+CONFIG_MBEDTLS_KEY_EXCHANGE_ELLIPTIC_CURVE=n
+CONFIG_MBEDTLS_KEY_EXCHANGE_ECDHE_RSA=n
+CONFIG_MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA=n
+CONFIG_MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA=n
+CONFIG_MBEDTLS_KEY_EXCHANGE_ECDH_RSA=n
+# end of TLS Key Exchange Methods
+
+CONFIG_MBEDTLS_SSL_RENEGOTIATION=n
+CONFIG_MBEDTLS_SSL_PROTO_SSL3=n
+CONFIG_MBEDTLS_SSL_PROTO_DTLS=n
+CONFIG_MBEDTLS_SSL_PROTO_TLS1=n
+CONFIG_MBEDTLS_SSL_PROTO_TLS1_1=n
+
+CONFIG_MBEDTLS_SSL_ALPN=n
+CONFIG_MBEDTLS_CLIENT_SSL_SESSION_TICKETS=n
+CONFIG_MBEDTLS_SERVER_SSL_SESSION_TICKETS=n
+
+#
+# Symmetric Ciphers
+#
+CONFIG_MBEDTLS_AES_C=n
+CONFIG_MBEDTLS_CAMELLIA_C=n
+CONFIG_MBEDTLS_DES_C=n
+CONFIG_MBEDTLS_RC4_DISABLED=n
+CONFIG_MBEDTLS_RC4_ENABLED_NO_DEFAULT=n
+CONFIG_MBEDTLS_RC4_ENABLED=n
+CONFIG_MBEDTLS_BLOWFISH_C=n
+CONFIG_MBEDTLS_XTEA_C=n
+CONFIG_MBEDTLS_CCM_C=n
+CONFIG_MBEDTLS_GCM_C=n
+CONFIG_MBEDTLS_NIST_KW_C=n
+# end of Symmetric Ciphers
+
+CONFIG_MBEDTLS_RIPEMD160_C=n
+
+#
+# Certificates
+#
+CONFIG_MBEDTLS_PEM_PARSE_C=n
+CONFIG_MBEDTLS_PEM_WRITE_C=n
+CONFIG_MBEDTLS_X509_CRL_PARSE_C=n
+CONFIG_MBEDTLS_X509_CSR_PARSE_C=n
+# end of Certificates
+
+CONFIG_MBEDTLS_ECP_C=n
+CONFIG_MBEDTLS_ECDH_C=n
+CONFIG_MBEDTLS_ECDSA_C=n
+CONFIG_MBEDTLS_ECJPAKE_C=n
+CONFIG_MBEDTLS_ECP_DP_SECP192R1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_SECP224R1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_SECP384R1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_SECP521R1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_SECP192K1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_SECP224K1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_SECP256K1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_BP256R1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_BP384R1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_BP512R1_ENABLED=n
+CONFIG_MBEDTLS_ECP_DP_CURVE25519_ENABLED=n
+CONFIG_MBEDTLS_ECP_NIST_OPTIM=n
+CONFIG_MBEDTLS_POLY1305_C=n
+CONFIG_MBEDTLS_CHACHA20_C=n
+CONFIG_MBEDTLS_HKDF_C=n
+CONFIG_MBEDTLS_THREADING_C=n
+CONFIG_MBEDTLS_LARGE_KEY_SOFTWARE_MPI=n
+CONFIG_MBEDTLS_SECURITY_RISKS=n
+# end of mbedTLS