1CONFIG_THRIFT_SSL_SOCKET=y
2
3# Currenty, in Zephyr's MBedTLS IPPROTO_TLS_1_0 implementation, 2 sockets are
4# needed for every connection.
5#
6# Additionally, upstream Apache Thrift uses socketpair for cancellation rather
7# than eventfd, since the latter is not portable to some operating systems.
8#
9# File Descriptor Usage
10# ---------------------
11# stdin, stdout, stderr: 3
12# tcp socket (accept): 1
13# tls socket (accept): 1
14# tcp sockets (client, server): 2
15# tls sockets (client, server): 2
16# socketpairs for cancellation (accept, client, server): 6
17CONFIG_POSIX_MAX_FDS=15
18
19# TLS configuration
20CONFIG_MBEDTLS=y
21CONFIG_MBEDTLS_PEM_CERTIFICATE_FORMAT=y
22CONFIG_MBEDTLS_ENABLE_HEAP=y
23CONFIG_MBEDTLS_HEAP_SIZE=48000
24CONFIG_MBEDTLS_SSL_MAX_CONTENT_LEN=2048
25CONFIG_NET_SOCKETS_TLS_MAX_CONTEXTS=6
26CONFIG_NET_SOCKETS_SOCKOPT_TLS=y
27