aboutsummaryrefslogtreecommitdiff
path: root/config
diff options
context:
space:
mode:
authorDavid Hu <david.hu@arm.com>2021-06-25 14:55:35 +0800
committerDavid Hu <david.hu@arm.com>2021-06-28 07:47:55 +0200
commitb3d7d683f0acbf382a252370cfdd0958a173b2b8 (patch)
treeca3a8e60a9c922577fb65f2bbf131504aa5fb9e3 /config
parent95fb876360824456d7685f9c6f3d000c5ce7fab9 (diff)
downloadtrusted-firmware-m-b3d7d683f0acbf382a252370cfdd0958a173b2b8.tar.gz
Crypto: Add a config CRYPTO_KEY_ID_ENCODES_OWNER
Add a config CRYPTO_KEY_ID_ENCODES_OWNER to control whether client ID is encoded into PSA Crypto key ID. This config shall be aligned with underlying crypto library key ID encoding configuration. Change-Id: I3b6073a7c1b440e7de0f5889e8dc32416003e3b7 Signed-off-by: David Hu <david.hu@arm.com>
Diffstat (limited to 'config')
-rw-r--r--config/config_default.cmake3
-rw-r--r--config/profile/profile_small.cmake3
2 files changed, 6 insertions, 0 deletions
diff --git a/config/config_default.cmake b/config/config_default.cmake
index 57a401e233..603e5c503c 100644
--- a/config/config_default.cmake
+++ b/config/config_default.cmake
@@ -128,6 +128,9 @@ set(CRYPTO_ASYM_SIGN_MODULE_DISABLED FALSE CACHE BOOL "Disable PSA
set(CRYPTO_ASYM_ENCRYPT_MODULE_DISABLED FALSE CACHE BOOL "Disable PSA Crypto asymmetric key encryption module")
set(CRYPTO_KEY_DERIVATION_MODULE_DISABLED FALSE CACHE BOOL "Disable PSA Crypto key derivation module")
set(CRYPTO_IOVEC_BUFFER_SIZE 5120 CACHE STRING "Default size of the internal scratch buffer used for PSA FF IOVec allocations")
+# TODO CRYPTO_KEY_ID_ENCODES_OWNER shall be aligned with underlying crypto
+# library key ID encoding configuration
+set(CRYPTO_KEY_ID_ENCODES_OWNER ON CACHE BOOL "Encode client ID into Crypto PSA key ID")
set(TFM_PARTITION_INITIAL_ATTESTATION ON CACHE BOOL "Enable Initial Attestation partition")
set(SYMMETRIC_INITIAL_ATTESTATION OFF CACHE BOOL "Use symmetric crypto for inital attestation")
diff --git a/config/profile/profile_small.cmake b/config/profile/profile_small.cmake
index ab71cc0fad..4ce6f6f472 100644
--- a/config/profile/profile_small.cmake
+++ b/config/profile/profile_small.cmake
@@ -27,6 +27,9 @@ set(CRYPTO_CONC_OPER_NUM 4 CACHE STRING "The max num
set(CRYPTO_ENGINE_BUF_SIZE 0x800 CACHE STRING "Heap size for the crypto backend")
set(CRYPTO_ASYM_SIGN_MODULE_DISABLED ON CACHE BOOL "Disable PSA Crypto asymmetric key signature module")
set(CRYPTO_ASYM_ENCRYPT_MODULE_DISABLED ON CACHE BOOL "Disable PSA Crypto asymmetric key encryption module")
+# TODO CRYPTO_KEY_ID_ENCODES_OWNER shall be aligned with underlying crypto
+# library key ID encoding configuration
+set(CRYPTO_KEY_ID_ENCODES_OWNER OFF CACHE BOOL "Encode client ID into Crypto PSA key ID")
set(SYMMETRIC_INITIAL_ATTESTATION ON CACHE BOOL "Use symmetric crypto for inital attestation")