core: add support for SM2 using MBed TLS The SM2 algorithms (PKE, KEP and DSA) are currently implemented using LibTomCrypt. They are automatically disabled when MBed TLS is selected as the core crypto library (that is, when CFG_CRYPTOLIB_NAME=mbedtls CFG_CRYPTOLIB_DIR=lib/libmbedtls). This commit removes this restriction by porting the relevant files (core/lib/libtomcrypt/sm2-{dsa,kep,pke}.c) over to the MBed TLS API in lib/libmbedtls/core. Signed-off-by: Jerome Forissier <jerome@forissier.org> Acked-by: Jens Wiklander <jens.wiklander@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org>

commit: c84eee6397bb8ae0745d9aa24b5228a58793378b [log] [tgz]
author: Jerome Forissier <jerome@forissier.org> Wed Jan 27 09:45:26 2021 +0100
committer: Jérôme Forissier <jerome@forissier.org> Thu Feb 04 18:17:08 2021 +0100
tree: ccfa68b909a9204113a2c5333a29897f65814453
parent: 7e35937aae6d65507bab36f10bd46249de6a835c [diff] [blame]
diff --git a/lib/libmbedtls/include/mbedtls_config_kernel.h b/lib/libmbedtls/include/mbedtls_config_kernel.h
index 51a78f3..cd4d975 100644
--- a/lib/libmbedtls/include/mbedtls_config_kernel.h
+++ b/lib/libmbedtls/include/mbedtls_config_kernel.h

@@ -111,6 +111,10 @@
 #define MBEDTLS_ECDSA_C
 #define MBEDTLS_ECDH_C
 #define MBEDTLS_ECDH_LEGACY_CONTEXT
+#if defined(CFG_CRYPTO_DSA) || defined(CFG_CRYPTO_SM2_PKE) || \
+	defined(CFG_CRYPTO_SM2_KEP)
+#define MBEDTLS_ECP_DP_SM2_ENABLED
+#endif
 #endif
 
 #endif /*CFG_CRYPTOLIB_NAME_mbedtls*/
commit	c84eee6397bb8ae0745d9aa24b5228a58793378b	[log] [tgz]
author	Jerome Forissier <jerome@forissier.org>	Wed Jan 27 09:45:26 2021 +0100
committer	Jérôme Forissier <jerome@forissier.org>	Thu Feb 04 18:17:08 2021 +0100
tree	ccfa68b909a9204113a2c5333a29897f65814453
parent	7e35937aae6d65507bab36f10bd46249de6a835c [diff] [blame]