boot: zephyr: Kconfig: Add Zephyr KConfig to build PSA APIs for RSA sigverify#2594
Open
gramshan wants to merge 1 commit intomcu-tools:mainfrom
Open
boot: zephyr: Kconfig: Add Zephyr KConfig to build PSA APIs for RSA sigverify#2594gramshan wants to merge 1 commit intomcu-tools:mainfrom
gramshan wants to merge 1 commit intomcu-tools:mainfrom
Conversation
nordicjm
previously requested changes
Jan 9, 2026
boot/zephyr/Kconfig
Outdated
|
|
||
| config BOOT_RSA_PSA | ||
| bool "RSA signatures with mbedTLS PSA Crypto" | ||
| depends on !ADI_TESA |
Collaborator
There was a problem hiding this comment.
Suggested change
| depends on !ADI_TESA |
no random Kconfigs that do not exist
Author
There was a problem hiding this comment.
Removed, apologies for the oversight
gramshan
force-pushed
the
PSA-support-for-RSA
branch
2 times, most recently
from
bb95968 to
a710b9b
Compare
…igverify Adding a Zephyr Kconfig option that exposes mcuboot's PSA API-based RSA signature verification as a configurable option. Previously, PSA Crypto APIs for RSA signature verification could not be enabled from Zephyr configuration, which prevented building mcuboot with PSA based RSA verification out-of-the-box. Signed-off-by: gramshan <ramshankargowri@gmail.com> Signed-off-by: Gowri-Ramshankar_adi <Gowri.Ramshankar@analog.com>
gramshan
force-pushed
the
PSA-support-for-RSA
branch
from
a710b9b to
3010abe
Compare
d3zd3z
previously requested changes
Jan 12, 2026
Member
d3zd3z
left a comment
d3zd3z
left a comment
There was a problem hiding this comment.
No actual issue, I'm trying to figure out why people are having difficulties addressing earlier negative reviews.
d3zd3z
reviewed
Jan 12, 2026
Member
d3zd3z
left a comment
d3zd3z
left a comment
There was a problem hiding this comment.
Trying to see if this removes my -1.
Member
|
I'm going to try closing and re-opening this, to see if it fixes the broken review state. |
nordicjm
reviewed
Jan 16, 2026
| select MBEDTLS_RSA_C if MBEDTLS_BUILTIN | ||
| select MBEDTLS_PKCS1_V15 if MBEDTLS_BUILTIN | ||
| select MBEDTLS_PKCS1_V21 if MBEDTLS_BUILTIN | ||
| select MBEDTLS_KEY_EXCHANGE_RSA_ENABLED if MBEDTLS_BUILTIN |
Collaborator
There was a problem hiding this comment.
Based on #2598 seems like this should go? @valeriosetti
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adding a Zephyr Kconfig option that exposes mcuboot's PSA API-based RSA signature verification as a configurable option.
Previously, PSA Crypto APIs for RSA signature verification could not be enabled from Zephyr configuration, which prevented building mcuboot with PSA based RSA verification out-of-the-box.