zephyr: Add support for AES256 (268968f8) · Commits · Wenxi XU / Mcuboot

boot/zephyr/Kconfig

+16 −0

Original line number	Diff line number	Diff line
		@@ -691,6 +691,22 @@ config BOOT_ENCRYPT_X25519
		help
		Hidden option selecting x25519 encryption.

		if BOOT_ENCRYPT_IMAGE

		choice BOOT_ENCRYPT_ALG
		prompt "Algorithm used for image encryption"
		default BOOT_ENCRYPT_ALG_AES_128

		config BOOT_ENCRYPT_ALG_AES_128
		bool "Use AES-128 for image encryption"

		config BOOT_ENCRYPT_ALG_AES_256
		bool "Use AES-256 for image encryption"

		endchoice # BOOT_ENCRYPT_ALG

		endif # BOOT_ENCRYPT_IMAGE

		if BOOT_ENCRYPT_X25519 && BOOT_USE_PSA_CRYPTO

		choice BOOT_HMAC_SHA

+8 −0

Original line number	Diff line number	Diff line
		@@ -165,6 +165,14 @@
		#define MCUBOOT_ENCRYPT_X25519
		#endif

		#ifdef CONFIG_BOOT_ENCRYPT_ALG_AES_128
		#define MCUBOOT_AES_128
		#endif

		#ifdef CONFIG_BOOT_ENCRYPT_ALG_AES_256
		#define MCUBOOT_AES_256
		#endif

		/* Support for HMAC/HKDF using SHA512; this is used in key exchange where
		* HKDF is used for key expansion and HMAC is used for key verification.
		*/