commit a90abf13b6e2be43a22a1bca41474bb3e032852b
author Moran Peker <moran.peker@arm.com> Tue Nov 20 18:32:25 2018 +0200
committer Moran Peker <moran.peker@arm.com> Wed Nov 21 13:28:09 2018 +0200
tree eb6daab92bc8d643d42bb92f04258ce9bd3d0df7
parent 46119565607fed4149b804588629a80b39e91d8e

add MBEDTLS_PSA_HAS_ITS_IO

update config.h,config-psa-crypto.h, version_features.c and config.pl

configs/config-psa-crypto.h

diff --git a/configs/config-psa-crypto.h b/configs/config-psa-crypto.h
index f3a8b72..c9a8ebd 100644
--- a/configs/config-psa-crypto.h
+++ b/configs/config-psa-crypto.h
@@ -711,6 +711,16 @@
 //#define MBEDTLS_PSA_CRYPTO_SPM
 
 /**
+ * \def MBEDTLS_PSA_HAS_ITS_IO
+ *
+ * Enable the non-volatile secure storage usage.
+ *
+ * This is crucial on systems that do not have a HW TRNG support.
+ *
+ */
+//#define MBEDTLS_PSA_HAS_ITS_IO
+
+/**
  * \def MBEDTLS_RSA_NO_CRT
  *
  * Do not use the Chinese Remainder Theorem for the RSA private operation.

include/mbedtls/config.h

diff --git a/include/mbedtls/config.h b/include/mbedtls/config.h
index b2a9a2e..c47c471 100644
--- a/include/mbedtls/config.h
+++ b/include/mbedtls/config.h
@@ -1174,6 +1174,16 @@
 //#define MBEDTLS_PSA_CRYPTO_SPM
 
 /**
+ * \def MBEDTLS_PSA_HAS_ITS_IO
+ *
+ * Enable the non-volatile secure storage usage.
+ *
+ * This is crucial on systems that do not have a HW TRNG support.
+ *
+ */
+//#define MBEDTLS_PSA_HAS_ITS_IO
+
+/**
  * \def MBEDTLS_RSA_NO_CRT
  *
  * Do not use the Chinese Remainder Theorem

library/version_features.c

diff --git a/library/version_features.c b/library/version_features.c
index 00652f1..af81490 100644
--- a/library/version_features.c
+++ b/library/version_features.c
@@ -420,6 +420,9 @@
 #if defined(MBEDTLS_PSA_CRYPTO_SPM)
     "MBEDTLS_PSA_CRYPTO_SPM",
 #endif /* MBEDTLS_PSA_CRYPTO_SPM */
+#if defined(MBEDTLS_PSA_HAS_ITS_IO)
+    "MBEDTLS_PSA_HAS_ITS_IO",
+#endif /* MBEDTLS_PSA_HAS_ITS_IO */
 #if defined(MBEDTLS_RSA_NO_CRT)
     "MBEDTLS_RSA_NO_CRT",
 #endif /* MBEDTLS_RSA_NO_CRT */

scripts/config.pl

diff --git a/scripts/config.pl b/scripts/config.pl
index 81bb895..6d02ec0 100755
--- a/scripts/config.pl
+++ b/scripts/config.pl
@@ -97,6 +97,8 @@
 MBEDTLS_NO_UDBL_DIVISION
 MBEDTLS_NO_64BIT_MULTIPLICATION
 MBEDTLS_PSA_CRYPTO_SPM
+MBEDTLS_PSA_HAS_ITS_IO
+MBEDTLS_PSA_CRYPTO_STORAGE_ITS_C
 _ALT\s*$
 );
 
@@ -119,6 +121,7 @@
 MBEDTLS_PSA_CRYPTO_STORAGE_C
 MBEDTLS_PSA_CRYPTO_STORAGE_FILE_C
 MBEDTLS_PSA_CRYPTO_STORAGE_ITS_C
+MBEDTLS_PSA_HAS_ITS_IO
 );
 
 # Things that should be enabled in "full" even if they match @excluded