Update certs for cases where support for DES cipher is not available #93096
Conversation
github-actions
bot
added
area: Samples
github-actions
bot
requested review from
57300,
jeremybettis,
jukkar,
kartben,
krish2718,
MaochenWang1,
nashif,
nordicjm,
rlubos and
tejlmand
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| @@ -0,0 +1,30 @@ | |||
| -----BEGIN ENCRYPTED PRIVATE KEY----- | |||
Check failure
Code scanning / SonarCloud
Cryptographic private keys should not be disclosed High test
| @@ -0,0 +1,30 @@ | |||
| -----BEGIN ENCRYPTED PRIVATE KEY----- | |||
Check failure
Code scanning / SonarCloud
Cryptographic private keys should not be disclosed High test
| @@ -0,0 +1,30 @@ | |||
| -----BEGIN ENCRYPTED PRIVATE KEY----- | |||
Check failure
Code scanning / SonarCloud
Cryptographic private keys should not be disclosed High test
snippets/wifi-enterprise/snippet.yml
Outdated
| boards: | ||
| /.*/nrf.*/cpuapp/: | ||
| append: | ||
| EXTRA_CONF_FILE: wifi-enterprise_nrf.conf |
With NRF security, higher heap requirement is seen for operating with RSA-3072 based certificates. Add a NRF SoC specific conf in snippets to handle this. Signed-off-by: Ravi Dondaputi <ravi.dondaputi@nordicsemi.no>
Add AES-only cipher certificates. Useful for systems which have only AES support and DES is not enabled. Signed-off-by: Ravi Dondaputi <ravi.dondaputi@nordicsemi.no>
Add config options required for storing certificates in protected storage, and to free up space of ROM to accommodate the additional features that are enabled for TFM. Signed-off-by: Ravi Dondaputi <ravi.dondaputi@nordicsemi.no>
|
| @@ -0,0 +1,8 @@ | |||
| # For TLS and X.509 processing MbedTLS needs large heap size and using separate heap | |||
| # for MbedTLS gives us more control over the heap size. | |||
| CONFIG_MBEDTLS_HEAP_SIZE=75000 | |||
There was a problem hiding this comment.
CONFIG_MBEDTLS_ENABLE_HEAP isn't needed?
No description provided.