1# Enable PKCS#11 TA's C_DigestKey support 2CFG_PKCS11_TA_ALLOW_DIGEST_KEY ?= y 3 4# Enable PKCS#11 TA's TEE Identity based authentication support 5CFG_PKCS11_TA_AUTH_TEE_IDENTITY ?= y 6 7# PKCS#11 TA heap size can be customized if 32kB is not enough 8CFG_PKCS11_TA_HEAP_SIZE ?= (32 * 1024) 9 10# Defines the number of PKCS11 token implemented by the PKCS11 TA 11CFG_PKCS11_TA_TOKEN_COUNT ?= 3 12 13# When enabled, embed support for object checksum value computation 14CFG_PKCS11_TA_CHECK_VALUE_ATTRIBUTE ?= y 15 16# When enabled, embed support for CKM_RSA_X_509 (a.k.a. Raw RSA) ciphering 17# and authentication. The feature can be needed for some TLS v1.2 connections. 18# Raw RSA can be unsafe if client uses a weak clear data padding scheme. 19CFG_PKCS11_TA_RSA_X_509 ?= y 20 21global-incdirs-y += include 22global-incdirs-y += src 23subdirs-y += src 24