Support larger RSA key sizes when using MBEDTLS Previously, TF-A could not support large RSA key sizes as the configuration options passed to MBEDTLS prevented storing and performing calculations with the larger, higher-precision numbers required. With these changes to the arguments passed to MBEDTLS, TF-A now supports using 3072 (3K) and 4096 (4K) keys in certificates. Change-Id: Ib73a6773145d2faa25c28d04f9a42e86f2fd555f Signed-off-by: Justin Chadwell <justin.chadwell@arm.com>

commit: f9b32c18ab11da2f1fbbe677bea391523f079ad1 [log] [tgz]
author: Justin Chadwell <justin.chadwell@arm.com> Mon Jul 29 17:13:10 2019 +0100
committer: Justin Chadwell <justin.chadwell@arm.com> Thu Sep 12 15:27:39 2019 +0100
tree: 01615f4f69293ad2d89108796fc9c8d3f4b2e302
parent: 9180af2a1b568ecc907ced9d25af48074d13ad9b [diff] [blame]
diff --git a/Makefile b/Makefile
index bcfbd65..d1376e8 100644
--- a/Makefile
+++ b/Makefile

@@ -694,6 +694,10 @@
 $(eval $(call assert_numeric,ARM_ARCH_MINOR))
 $(eval $(call assert_numeric,BRANCH_PROTECTION))
 
+ifdef KEY_SIZE
+        $(eval $(call assert_numeric,KEY_SIZE))
+endif
+
 ifeq ($(filter $(SANITIZE_UB), on off trap),)
         $(error "Invalid value for SANITIZE_UB: can be one of on, off, trap")
 endif
commit	f9b32c18ab11da2f1fbbe677bea391523f079ad1	[log] [tgz]
author	Justin Chadwell <justin.chadwell@arm.com>	Mon Jul 29 17:13:10 2019 +0100
committer	Justin Chadwell <justin.chadwell@arm.com>	Thu Sep 12 15:27:39 2019 +0100
tree	01615f4f69293ad2d89108796fc9c8d3f4b2e302
parent	9180af2a1b568ecc907ced9d25af48074d13ad9b [diff] [blame]