From 4c43e3b756d9789de9877d8a0c5940258ecf4eaa Mon Sep 17 00:00:00 2001 From: Valerio Setti Date: Wed, 4 Dec 2024 14:47:19 +0100 Subject: [PATCH] samples: mcumgr: smp_svr: disable "zephyr,entropy" in mcuboot If/when "zephry,entropy" is enabled CONFIG_ENTROPY_GENRATOR is automatically enabled, therefore enabling the corresponding platform entropy driver. On some platform this is a problem because the entropy driver is not used directly as random source, but only to seed the ctr-drbg algorithm provided by Mbed TLS. Unfortunately CONFIG_MBEDTLS_CIPHER_MODE_CTR_ENABLED cannot be directly enabled because CONFIG_MBEDTLS_CFG_FILE used in mcuboot is different from the "config-tls-generic.h" which is required to use Kconfig symbols defined in "zephyr/modules/mbedtls/Kconfig.tls-generic". Moreover entropy and random number generators are not required in mcuboot because signature verification is a deterministic operation. In conclusion this commit disables "zephyr,entropy" in mcuboot DTS overlay file. Signed-off-by: Valerio Setti --- samples/subsys/mgmt/mcumgr/smp_svr/sysbuild/mcuboot.overlay | 5 +++++ 1 file changed, 5 insertions(+) create mode 100644 samples/subsys/mgmt/mcumgr/smp_svr/sysbuild/mcuboot.overlay diff --git a/samples/subsys/mgmt/mcumgr/smp_svr/sysbuild/mcuboot.overlay b/samples/subsys/mgmt/mcumgr/smp_svr/sysbuild/mcuboot.overlay new file mode 100644 index 00000000000..c84e1f86f37 --- /dev/null +++ b/samples/subsys/mgmt/mcumgr/smp_svr/sysbuild/mcuboot.overlay @@ -0,0 +1,5 @@ +/ { + chosen { + /delete-property/ zephyr,entropy; + }; +};