Topic: Minimal configuration for cryptography and PKI
I want to build the library without any SSL/TLS protocol,
I neither need the CyaSSL Client, nor the CyaSSL Server,
The only parts of the embedded SSL library I want to make use of are cryptography and PKI.
The functionality I want to use is:
- load CA cert
- load and validate clients certs
- use RSA and SHA to encrypt/decrypt sign/verify data buffers
Is it possible to remove CyaSSL Server, CyaSSL Client, SSL/TLS protocols
and still have library that provides the functionality listed above?
I was searching the documentation and have found the following flags:
NO_TLS, NO_CYASSL_SERVER, NO_CYASSL_CLIENT
Can these flags be used together?
Assuming that the above combination of build flags is correct,
will this affect somehow the functionality of cryptographic functions?
i.e. will I still be able to encrypt/decrypt sign/verify the buffers of data?
will this have any impact on public key infrastructure functionality?
i.e. will I still be able to load and verify the x509 certificates stored in memory buffers?