diff options
author | David Hu <david.hu@arm.com> | 2021-06-25 14:55:35 +0800 |
---|---|---|
committer | David Hu <david.hu@arm.com> | 2021-06-28 07:47:55 +0200 |
commit | b3d7d683f0acbf382a252370cfdd0958a173b2b8 (patch) | |
tree | ca3a8e60a9c922577fb65f2bbf131504aa5fb9e3 /config | |
parent | 95fb876360824456d7685f9c6f3d000c5ce7fab9 (diff) | |
download | trusted-firmware-m-b3d7d683f0acbf382a252370cfdd0958a173b2b8.tar.gz |
Crypto: Add a config CRYPTO_KEY_ID_ENCODES_OWNER
Add a config CRYPTO_KEY_ID_ENCODES_OWNER to control whether client ID is
encoded into PSA Crypto key ID. This config shall be aligned with
underlying crypto library key ID encoding configuration.
Change-Id: I3b6073a7c1b440e7de0f5889e8dc32416003e3b7
Signed-off-by: David Hu <david.hu@arm.com>
Diffstat (limited to 'config')
-rw-r--r-- | config/config_default.cmake | 3 | ||||
-rw-r--r-- | config/profile/profile_small.cmake | 3 |
2 files changed, 6 insertions, 0 deletions
diff --git a/config/config_default.cmake b/config/config_default.cmake index 57a401e233..603e5c503c 100644 --- a/config/config_default.cmake +++ b/config/config_default.cmake @@ -128,6 +128,9 @@ set(CRYPTO_ASYM_SIGN_MODULE_DISABLED FALSE CACHE BOOL "Disable PSA set(CRYPTO_ASYM_ENCRYPT_MODULE_DISABLED FALSE CACHE BOOL "Disable PSA Crypto asymmetric key encryption module") set(CRYPTO_KEY_DERIVATION_MODULE_DISABLED FALSE CACHE BOOL "Disable PSA Crypto key derivation module") set(CRYPTO_IOVEC_BUFFER_SIZE 5120 CACHE STRING "Default size of the internal scratch buffer used for PSA FF IOVec allocations") +# TODO CRYPTO_KEY_ID_ENCODES_OWNER shall be aligned with underlying crypto +# library key ID encoding configuration +set(CRYPTO_KEY_ID_ENCODES_OWNER ON CACHE BOOL "Encode client ID into Crypto PSA key ID") set(TFM_PARTITION_INITIAL_ATTESTATION ON CACHE BOOL "Enable Initial Attestation partition") set(SYMMETRIC_INITIAL_ATTESTATION OFF CACHE BOOL "Use symmetric crypto for inital attestation") diff --git a/config/profile/profile_small.cmake b/config/profile/profile_small.cmake index ab71cc0fad..4ce6f6f472 100644 --- a/config/profile/profile_small.cmake +++ b/config/profile/profile_small.cmake @@ -27,6 +27,9 @@ set(CRYPTO_CONC_OPER_NUM 4 CACHE STRING "The max num set(CRYPTO_ENGINE_BUF_SIZE 0x800 CACHE STRING "Heap size for the crypto backend") set(CRYPTO_ASYM_SIGN_MODULE_DISABLED ON CACHE BOOL "Disable PSA Crypto asymmetric key signature module") set(CRYPTO_ASYM_ENCRYPT_MODULE_DISABLED ON CACHE BOOL "Disable PSA Crypto asymmetric key encryption module") +# TODO CRYPTO_KEY_ID_ENCODES_OWNER shall be aligned with underlying crypto +# library key ID encoding configuration +set(CRYPTO_KEY_ID_ENCODES_OWNER OFF CACHE BOOL "Encode client ID into Crypto PSA key ID") set(SYMMETRIC_INITIAL_ATTESTATION ON CACHE BOOL "Use symmetric crypto for inital attestation") |