1#------------------------------------------------------------------------------- 2# Copyright (c) 2023, Arm Limited. All rights reserved. 3# 4# SPDX-License-Identifier: BSD-3-Clause 5# 6#------------------------------------------------------------------------------- 7 8# Build 9CONFIG_TFM_PROFILE_MEDIUM=y 10 11# SPM 12CONFIG_TFM_ISOLATION_LEVEL=2 13CONFIG_CONFIG_TFM_SPM_BACKEND_IPC=y 14 15# Secure partitions 16CONFIG_TFM_PARTITION_CRYPTO=y 17CONFIG_TFM_PARTITION_INTERNAL_TRUSTED_STORAGE=y 18CONFIG_TFM_PARTITION_PLATFORM=y 19CONFIG_TFM_PARTITION_PROTECTED_STORAGE=y 20CONFIG_TFM_PARTITION_INITIAL_ATTESTATION=y 21CONFIG_SYMMETRIC_INITIAL_ATTESTATION=n 22CONFIG_TFM_PARTITION_FIRMWARE_UPDATE=n 23 24# Protected Storage 25CONFIG_PS_CRYPTO_AEAD_ALG="PSA_ALG_CCM" 26 27# Mbedcrypto profile 28CONFIG_TFM_MBEDCRYPTO_CONFIG_PATH="${CMAKE_SOURCE_DIR}/lib/ext/mbedcrypto/mbedcrypto_config/tfm_mbedcrypto_config_profile_medium.h" 29CONFIG_TFM_MBEDCRYPTO_PSA_CRYPTO_CONFIG_PATH="${CMAKE_SOURCE_DIR}/lib/ext/mbedcrypto/mbedcrypto_config/crypto_config_profile_medium.h" 30 31# TF-M component configs 32 33# Secure Partitions component configs 34 35# Platform partition component configs 36CONFIG_PLATFORM_SERVICE_INPUT_BUFFER_SIZE=64 37CONFIG_PLATFORM_SERVICE_OUTPUT_BUFFER_SIZE=64 38CONFIG_PLATFORM_SP_STACK_SIZE=0x500 39CONFIG_PLATFORM_NV_COUNTER_MODULE_DISABLED=n 40 41# Crypto component configs 42CONFIG_CRYPTO_ENGINE_BUF_SIZE=0x2080 43CONFIG_CRYPTO_CONC_OPER_NUM=8 44CONFIG_CRYPTO_RNG_MODULE_ENABLED=y 45CONFIG_CRYPTO_KEY_MODULE_ENABLED=y 46CONFIG_CRYPTO_AEAD_MODULE_ENABLED=y 47CONFIG_CRYPTO_MAC_MODULE_ENABLED=y 48CONFIG_CRYPTO_HASH_MODULE_ENABLED=y 49CONFIG_CRYPTO_CIPHER_MODULE_ENABLED=y 50CONFIG_CRYPTO_ASYM_SIGN_MODULE_ENABLED=y 51CONFIG_CRYPTO_ASYM_ENCRYPT_MODULE_ENABLED=n 52CONFIG_CRYPTO_KEY_DERIVATION_MODULE_ENABLED=y 53CONFIG_CRYPTO_IOVEC_BUFFER_SIZE=5120 54CONFIG_CRYPTO_SINGLE_PART_FUNCS_DISABLED=n 55CONFIG_CRYPTO_STACK_SIZE=0x1B00 56 57# Attestation component configs 58CONFIG_ATTEST_INCLUDE_OPTIONAL_CLAIMS=y 59CONFIG_ATTEST_INCLUDE_COSE_KEY_ID=n 60CONFIG_ATTEST_STACK_SIZE=0x700 61CONFIG_ATTEST_TOKEN_PROFILE_PSA_IOT_1=y 62 63# ITS component configs 64CONFIG_ITS_CREATE_FLASH_LAYOUT=y 65CONFIG_ITS_RAM_FS=n 66CONFIG_ITS_VALIDATE_METADATA_FROM_FLASH=y 67CONFIG_ITS_MAX_ASSET_SIZE=512 68CONFIG_ITS_BUF_SIZE=32 69CONFIG_ITS_NUM_ASSETS=10 70CONFIG_ITS_STACK_SIZE=0x720 71 72# PS component configs 73CONFIG_PS_CREATE_FLASH_LAYOUT=y 74CONFIG_PS_RAM_FS=n 75CONFIG_PS_ROLLBACK_PROTECTION=y 76CONFIG_PS_VALIDATE_METADATA_FROM_FLASH=y 77CONFIG_PS_MAX_ASSET_SIZE=2048 78CONFIG_PS_NUM_ASSETS=10 79CONFIG_PS_STACK_SIZE=0x700 80 81# TF-M SPM component configs 82CONFIG_CONFIG_TFM_CONN_HANDLE_MAX_NUM=8 83CONFIG_CONFIG_TFM_DOORBELL_API=y 84
