TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mcuboot / HEAD / . / boot / zephyr / os.c
blob: eaa60b4fa74cc0cfb48b5c4713eed4acc3165e9c [file] [log] [blame]
David Brown5153bd62017-01-06 11:16:53 -0700[diff] [blame]1/*
2 * Licensed to the Apache Software Foundation (ASF) under one
3 * or more contributor license agreements. See the NOTICE file
4 * distributed with this work for additional information
5 * regarding copyright ownership. The ASF licenses this file
6 * to you under the Apache License, Version 2.0 (the
7 * "License"); you may not use this file except in compliance
8 * with the License. You may obtain a copy of the License at
9 *
10 * http://www.apache.org/licenses/LICENSE-2.0
11 *
12 * Unless required by applicable law or agreed to in writing,
13 * software distributed under the License is distributed on an
14 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 * KIND, either express or implied. See the License for the
16 * specific language governing permissions and limitations
17 * under the License.
18 */
19
20#include <zephyr.h>
David Brown5153bd62017-01-06 11:16:53 -0700[diff] [blame]21#include <string.h>
22
23#include "os/os_heap.h"
24
Marti Bolivara4818a52018-04-12 13:02:38 -0400[diff] [blame]25#ifdef CONFIG_BOOT_USE_MBEDTLS
Fabio Utzig28ee5b02017-12-12 08:10:40 -0200[diff] [blame]26
David Brown5153bd62017-01-06 11:16:53 -0700[diff] [blame]27#include <mbedtls/platform.h>
David Brown0bae9652017-10-19 16:45:09 -0600[diff] [blame]28#include <mbedtls/memory_buffer_alloc.h>
David Brown5153bd62017-01-06 11:16:53 -0700[diff] [blame]29
David Brown0bae9652017-10-19 16:45:09 -0600[diff] [blame]30/*
31 * This is the heap for mbed TLS. The value needed depends on the key
Fabio Utzig105b59a2019-05-13 15:08:12 -0700[diff] [blame]32 * size and algorithm used.
33 *
34 * - RSA-2048 signing without encryption is known to work well with 6144 bytes;
35 * - When using RSA-2048-OAEP encryption + RSA-2048 signing, or RSA-3072
36 * signing (no encryption) 10240 bytes seems to be enough.
37 *
38 * NOTE: RSA-3072 signing + RSA-2048-OAEP might require growing the size...
David Brown0bae9652017-10-19 16:45:09 -0600[diff] [blame]39 */
Fabio Utzig105b59a2019-05-13 15:08:12 -0700[diff] [blame]40#if (CONFIG_BOOT_SIGNATURE_TYPE_RSA_LEN == 2048) && !defined(CONFIG_BOOT_ENCRYPT_RSA)
David Brown0bae9652017-10-19 16:45:09 -0600[diff] [blame]41#define CRYPTO_HEAP_SIZE 6144
Fabio Utzig4541b532018-12-17 09:17:15 -0200[diff] [blame]42#else
Fabio Utzig6f4d8f82019-12-12 18:46:06 -0300[diff] [blame]43# if !defined(MBEDTLS_RSA_NO_CRT)
44# define CRYPTO_HEAP_SIZE 10240
45# else
46# define CRYPTO_HEAP_SIZE 16384
47# endif
Fabio Utzig4541b532018-12-17 09:17:15 -0200[diff] [blame]48#endif
David Brown5153bd62017-01-06 11:16:53 -0700[diff] [blame]49
David Brown0bae9652017-10-19 16:45:09 -0600[diff] [blame]50static unsigned char mempool[CRYPTO_HEAP_SIZE];
David Brown5153bd62017-01-06 11:16:53 -0700[diff] [blame]51
52/*
53 * Initialize mbedtls to be able to use the local heap.
54 */
55void os_heap_init(void)
56{
David Brown0bae9652017-10-19 16:45:09 -0600[diff] [blame]57 mbedtls_memory_buffer_alloc_init(mempool, sizeof(mempool));
David Brown5153bd62017-01-06 11:16:53 -0700[diff] [blame]58}
David Browne9771ef2017-11-14 11:38:06 -0700[diff] [blame]59#else
60void os_heap_init(void)
61{
62}
63#endif