803886d307057a945476aceaf009a98a26af0f51 - TF-M/trusted-firmware-m.git

commit	803886d307057a945476aceaf009a98a26af0f51	[log] [tgz]
author	Soby Mathew <soby.mathew@arm.com>	Mon Aug 10 12:18:03 2020 +0100
committer	Soby Mathew <soby.mathew@arm.com>	Tue Sep 08 12:16:54 2020 +0100
tree	ae480c33ad850f252cbd49a2594024cfdd26abb9
parent	7329d7e9991db8e0389b9d829c2411f428c2ffa1 [diff]

Crypto: Highlight unsafe NULL entropy more explicitly

The MBEDTLS_TEST_NULL_ENTROPY is only to used for test purposes and
production platforms must use a hardware entropy source for stronger
cryptographic security. Although there is a build warning message
from MbedCrypto regarding this, this patch makes this more explicit
by adding a runtime message and clarifying the integration guide.

Signed-off-by: Soby Mathew <soby.mathew@arm.com>
Change-Id: I773a3c509dafdd5ffcd46ae5227acbc84aa81129

docs/reference/services/tfm_crypto_integration_guide.rst[diff]
secure_fw/partitions/crypto/crypto_init.c[diff]

2 files changed

tree: ae480c33ad850f252cbd49a2594024cfdd26abb9

bl2/
cmake/
configs/
docs/
doxygen/
interface/
lib/
platform/
secure_fw/
tools/
.gitignore
.gitreview
BuildMbedCrypto.cmake
CMakeLists.txt
CommonConfig.cmake
dco.txt
license.rst
readme.rst