xref: /rk3399_ARM-atf/drivers/auth/mbedtls/mbedtls_crypto.mk (revision ff2743e544f0f82381ebb9dff8f14eacb837d2e0) 
1#
2# Copyright (c) 2015-2017, ARM Limited and Contributors. All rights reserved.
3#
4# SPDX-License-Identifier: BSD-3-Clause
5#
6
7include drivers/auth/mbedtls/mbedtls_common.mk
8
9# The platform may define the variable 'TF_MBEDTLS_KEY_ALG' to select the key
10# algorithm to use. If the variable is not defined, select it based on algorithm
11# used for key generation `KEY_ALG`. If `KEY_ALG` is not defined or is
12# defined to `rsa`/`rsa_1_5`, then set the variable to `rsa`.
13ifeq (${TF_MBEDTLS_KEY_ALG},)
14    ifeq (${KEY_ALG}, ecdsa)
15        TF_MBEDTLS_KEY_ALG		:=	ecdsa
16    else
17        TF_MBEDTLS_KEY_ALG		:=	rsa
18    endif
19endif
20
21# If MBEDTLS_KEY_ALG build flag is defined use it to set TF_MBEDTLS_KEY_ALG for
22# backward compatibility
23ifdef MBEDTLS_KEY_ALG
24    ifeq (${ERROR_DEPRECATED},1)
25        $(error "MBEDTLS_KEY_ALG is deprecated. Please use the new build flag TF_MBEDTLS_KEY_ALG")
26    endif
27    $(warning "MBEDTLS_KEY_ALG is deprecated. Please use the new build flag TF_MBEDTLS_KEY_ALG")
28    TF_MBEDTLS_KEY_ALG	:= ${MBEDTLS_KEY_ALG}
29endif
30
31MBEDTLS_CRYPTO_SOURCES		:=	drivers/auth/mbedtls/mbedtls_crypto.c	\
32					$(addprefix ${MBEDTLS_DIR}/library/,	\
33					bignum.c				\
34					md.c					\
35					md_wrap.c				\
36					pk.c 					\
37					pk_wrap.c 				\
38					pkparse.c 				\
39					pkwrite.c 				\
40					)
41
42ifeq (${HASH_ALG}, sha384)
43    MBEDTLS_CRYPTO_SOURCES  += \
44					$(addprefix ${MBEDTLS_DIR}/library/,	\
45						sha256.c            \
46						sha512.c            \
47					)
48    TF_MBEDTLS_HASH_ALG_ID	:=	TF_MBEDTLS_SHA384
49else ifeq (${HASH_ALG}, sha512)
50    MBEDTLS_CRYPTO_SOURCES  += \
51					$(addprefix ${MBEDTLS_DIR}/library/,	\
52						sha256.c            \
53						sha512.c            \
54					)
55    TF_MBEDTLS_HASH_ALG_ID	:=	TF_MBEDTLS_SHA512
56else
57    MBEDTLS_CRYPTO_SOURCES  += \
58					$(addprefix ${MBEDTLS_DIR}/library/,	\
59						sha256.c            \
60					)
61    TF_MBEDTLS_HASH_ALG_ID	:=	TF_MBEDTLS_SHA256
62endif
63
64# Key algorithm specific files
65MBEDTLS_ECDSA_CRYPTO_SOURCES	+=	$(addprefix ${MBEDTLS_DIR}/library/,	\
66					ecdsa.c					\
67					ecp_curves.c				\
68					ecp.c					\
69					)
70
71MBEDTLS_RSA_CRYPTO_SOURCES	+=	$(addprefix ${MBEDTLS_DIR}/library/,	\
72					rsa.c					\
73					)
74
75ifeq (${TF_MBEDTLS_KEY_ALG},ecdsa)
76    MBEDTLS_CRYPTO_SOURCES	+=	$(MBEDTLS_ECDSA_CRYPTO_SOURCES)
77    TF_MBEDTLS_KEY_ALG_ID	:=	TF_MBEDTLS_ECDSA
78else ifeq (${TF_MBEDTLS_KEY_ALG},rsa)
79    MBEDTLS_CRYPTO_SOURCES	+=	$(MBEDTLS_RSA_CRYPTO_SOURCES)
80    TF_MBEDTLS_KEY_ALG_ID	:=	TF_MBEDTLS_RSA
81else ifeq (${TF_MBEDTLS_KEY_ALG},rsa+ecdsa)
82    MBEDTLS_CRYPTO_SOURCES	+=	$(MBEDTLS_ECDSA_CRYPTO_SOURCES)
83    MBEDTLS_CRYPTO_SOURCES	+=	$(MBEDTLS_RSA_CRYPTO_SOURCES)
84    TF_MBEDTLS_KEY_ALG_ID	:=	TF_MBEDTLS_RSA_AND_ECDSA
85else
86    $(error "TF_MBEDTLS_KEY_ALG=${TF_MBEDTLS_KEY_ALG} not supported on mbed TLS")
87endif
88
89# Needs to be set to drive mbed TLS configuration correctly
90$(eval $(call add_define,TF_MBEDTLS_KEY_ALG_ID))
91$(eval $(call add_define,TF_MBEDTLS_HASH_ALG_ID))
92