Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Do Not Review: Upmerge TF-M v2.1.0 and Mbed TLS v3.6.0 #1462

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Do Not Review: Upmerge TF-M v2.1.0 and Mbed TLS v3.6.0 #1462

wants to merge 2 commits into from

Conversation

frkv
Copy link
Contributor

@frkv frkv commented Sep 9, 2024

This adds improved threading support for CryptoCell enabled devices

The change is necessary due to Mbed TLS v3.6.0 adding support for thread safety for the PSA core.

Note: This is not synchronized with the current expected checkout in sdk-nrf

@frkv frkv requested a review from tejlmand as a code owner September 9, 2024 08:21
@NordicBuilder NordicBuilder mentioned this pull request Sep 9, 2024
Open
@frkv frkv added the DNM Do not merge label Sep 9, 2024
@frkv frkv changed the title Upmerge TF-M v2.1.0 and Mbed TLS v3.6.0 [DNM] Upmerge TF-M v2.1.0 and Mbed TLS v3.6.0 Sep 9, 2024
@NordicBuilder NordicBuilder mentioned this pull request Sep 9, 2024
Open
@frkv frkv force-pushed the upmerge-TF-M-2.1-mbedtls-3.6 branch from 15e8d26 to d826e24 Compare September 10, 2024 05:38
@frkv
crypto: nrf_cc3xx: Update mutex support for Mbed TLS 3.6.0
d125dd6 
-This adds support for the 3 new mutexes that is required when building
 with Mbed TLS 3.6.0 with PSA crypto:
 - mbedtls_threading_key_slot_mutex
 - mbedtls_threading_psa_globaldata_mutex
 - mbedtls_threading_psa_rngdata_mutex
-Fixed typo

Note: There is a counterpart to this for devices that doesn't enable
CC3XX_BACKEND (Legacy crypto features) present in nrf_security to
allow thread-safe PSA core in all types of build in NCS.

Signed-off-by: Frank Audun Kvamtrø <[email protected]>
@frkv
crypto: Adjust Mbed TLS legacy for Mbed TLS v3.6.1 support
985a7a6 
-This removes setting of MBEDTLS_ECP_MAX_BITS as this would
 result in a build-issue when trying to resolve the largest enabled
 curve size.

 This needs to be followed up with a cleanup of MBEDTLS_ECP_LIGHT
 which is still dependent on BIGNUM and BUILTIN types to be enabled

Signed-off-by: Frank Audun Kvamtrø <[email protected]>
@frkv frkv force-pushed the upmerge-TF-M-2.1-mbedtls-3.6 branch from ad5af2e to 985a7a6 Compare September 12, 2024 06:02
@frkv frkv changed the title [DNM] Upmerge TF-M v2.1.0 and Mbed TLS v3.6.0 Do Not Review: Upmerge TF-M v2.1.0 and Mbed TLS v3.6.0 Sep 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tejlmand tejlmand Awaiting requested review from tejlmand tejlmand is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
DNM Do not merge
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@frkv