1#------------------------------------------------------------------------------- 2# Copyright (c) 2023, Arm Limited. All rights reserved. 3# 4# SPDX-License-Identifier: BSD-3-Clause 5# 6#------------------------------------------------------------------------------- 7 8# Build 9CONFIG_TFM_PROFILE_LARGE=y 10 11# SPM 12CONFIG_TFM_ISOLATION_LEVEL=3 13CONFIG_CONFIG_TFM_SPM_BACKEND_IPC=y 14 15# Secure partitions 16CONFIG_TFM_PARTITION_CRYPTO=y 17CONFIG_TFM_PARTITION_INTERNAL_TRUSTED_STORAGE=y 18CONFIG_TFM_PARTITION_PLATFORM=y 19CONFIG_TFM_PARTITION_PROTECTED_STORAGE=y 20CONFIG_TFM_PARTITION_INITIAL_ATTESTATION=y 21CONFIG_SYMMETRIC_INITIAL_ATTESTATION=n 22CONFIG_TFM_PARTITION_FIRMWARE_UPDATE=n 23 24# Bootloader 25CONFIG_MCUBOOT_FIH_PROFILE_MEDIUM=y 26 27# Protected Storage 28CONFIG_PS_CRYPTO_AEAD_ALG="PSA_ALG_CCM" 29 30# Mbedcrypto profile 31CONFIG_TFM_MBEDCRYPTO_CONFIG_PATH="${CMAKE_SOURCE_DIR}/lib/ext/mbedcrypto/mbedcrypto_config/tfm_mbedcrypto_config_profile_large.h" 32CONFIG_TFM_MBEDCRYPTO_PSA_CRYPTO_CONFIG_PATH="${CMAKE_SOURCE_DIR}/lib/ext/mbedcrypto/mbedcrypto_config/crypto_config_profile_large.h" 33 34# TF-M component configs 35 36# Secure Partitions component configs 37 38# Platform partition component configs 39CONFIG_PLATFORM_SERVICE_INPUT_BUFFER_SIZE=64 40CONFIG_PLATFORM_SERVICE_OUTPUT_BUFFER_SIZE=64 41CONFIG_PLATFORM_SP_STACK_SIZE=0x500 42CONFIG_PLATFORM_NV_COUNTER_MODULE_DISABLED=n 43 44# Crypto component configs 45CONFIG_CRYPTO_ENGINE_BUF_SIZE=0x2380 46CONFIG_CRYPTO_CONC_OPER_NUM=8 47CONFIG_CRYPTO_RNG_MODULE_ENABLED=y 48CONFIG_CRYPTO_KEY_MODULE_ENABLED=y 49CONFIG_CRYPTO_AEAD_MODULE_ENABLED=y 50CONFIG_CRYPTO_MAC_MODULE_ENABLED=y 51CONFIG_CRYPTO_HASH_MODULE_ENABLED=y 52CONFIG_CRYPTO_CIPHER_MODULE_ENABLED=y 53CONFIG_CRYPTO_ASYM_SIGN_MODULE_ENABLED=y 54CONFIG_CRYPTO_ASYM_ENCRYPT_MODULE_ENABLED=y 55CONFIG_CRYPTO_KEY_DERIVATION_MODULE_ENABLED=y 56CONFIG_CRYPTO_IOVEC_BUFFER_SIZE=5120 57CONFIG_CRYPTO_SINGLE_PART_FUNCS_DISABLED=n 58CONFIG_CRYPTO_STACK_SIZE=0x1B00 59 60# Attestation component configs 61CONFIG_ATTEST_INCLUDE_OPTIONAL_CLAIMS=y 62CONFIG_ATTEST_INCLUDE_COSE_KEY_ID=n 63CONFIG_ATTEST_STACK_SIZE=0x700 64CONFIG_ATTEST_TOKEN_PROFILE_PSA_IOT_1=y 65 66# ITS component configs 67CONFIG_ITS_CREATE_FLASH_LAYOUT=y 68CONFIG_ITS_RAM_FS=n 69CONFIG_ITS_VALIDATE_METADATA_FROM_FLASH=y 70CONFIG_ITS_MAX_ASSET_SIZE=512 71CONFIG_ITS_BUF_SIZE=512 72CONFIG_ITS_NUM_ASSETS=10 73CONFIG_ITS_STACK_SIZE=0x720 74 75# PS component configs 76CONFIG_PS_CREATE_FLASH_LAYOUT=y 77CONFIG_PS_RAM_FS=n 78CONFIG_PS_ROLLBACK_PROTECTION=y 79CONFIG_PS_VALIDATE_METADATA_FROM_FLASH=y 80CONFIG_PS_MAX_ASSET_SIZE=2048 81CONFIG_PS_NUM_ASSETS=10 82CONFIG_PS_STACK_SIZE=0x700 83 84# TF-M SPM component configs 85CONFIG_CONFIG_TFM_CONN_HANDLE_MAX_NUM=8 86CONFIG_CONFIG_TFM_DOORBELL_API=y 87
