| Manish V Badarkhe | 78e14f8 | 2023-09-06 09:08:28 +0100 | [diff] [blame] | 1 | /* |
| Jimmy Brisson | 640d991 | 2024-04-10 10:20:13 -0500 | [diff] [blame] | 2 | * Copyright (c) 2023-2024, Arm Ltd. All rights reserved. |
| Manish V Badarkhe | 78e14f8 | 2023-09-06 09:08:28 +0100 | [diff] [blame] | 3 | * |
| 4 | * SPDX-License-Identifier: BSD-3-Clause |
| 5 | */ |
| 6 | |
| 7 | #ifndef PSA_MBEDTLS_CONFIG_H |
| 8 | #define PSA_MBEDTLS_CONFIG_H |
| 9 | |
| 10 | #include "mbedtls_config-3.h" |
| 11 | |
| 12 | #define MBEDTLS_PSA_CRYPTO_C |
| Jimmy Brisson | 640d991 | 2024-04-10 10:20:13 -0500 | [diff] [blame] | 13 | #define MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS |
| Manish V Badarkhe | 78e14f8 | 2023-09-06 09:08:28 +0100 | [diff] [blame] | 14 | |
| Manish V Badarkhe | f179aa9 | 2023-09-06 11:01:37 +0100 | [diff] [blame] | 15 | /* |
| 16 | * Using PSA crypto API requires an RNG right now. If we don't define the macro |
| 17 | * below then we get build errors. |
| 18 | * |
| 19 | * This is a functionality gap in mbedTLS. The technical limitation is that |
| 20 | * psa_crypto_init() is all-or-nothing, and fixing that would require separate |
| 21 | * initialization of the keystore, the RNG, etc. |
| 22 | * |
| 23 | * By defining MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG, we pretend using an external |
| 24 | * RNG. As a result, the PSA crypto init code does nothing when it comes to |
| 25 | * initializing the RNG, as we are supposed to take care of that ourselves. |
| 26 | */ |
| 27 | #define MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG |
| 28 | |
| Manish V Badarkhe | 78e14f8 | 2023-09-06 09:08:28 +0100 | [diff] [blame] | 29 | #endif /* PSA_MBEDTLS_CONFIG_H */ |