Skip to content

fix up pulling in of Mbed TLS commits from Zephyr#28028

Merged
rlubos merged 5 commits into
nrfconnect:mainfrom
tomi-font:mbedtls_4.0_integration_pull_mbedtls_updates_fixup
Apr 20, 2026
Merged

fix up pulling in of Mbed TLS commits from Zephyr#28028
rlubos merged 5 commits into
nrfconnect:mainfrom
tomi-font:mbedtls_4.0_integration_pull_mbedtls_updates_fixup

Conversation

@tomi-font
Copy link
Copy Markdown
Contributor

@tomi-font tomi-font commented Apr 10, 2026

Fixup PR for #27488.

@tomi-font tomi-font requested review from a team as code owners April 10, 2026 09:01
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 10, 2026

Since quarantine was modified, please make sure you are following the process described in Quarantine Process.

@NordicBuilder NordicBuilder requested a review from a team April 10, 2026 09:01
@NordicBuilder
Copy link
Copy Markdown
Contributor

NordicBuilder commented Apr 10, 2026
edited
Loading

The following west manifest projects have changed revision in this Pull Request:

Name Old Revision New Revision Diff
zephyr nrfconnect/sdk-zephyr@2925b38 nrfconnect/sdk-zephyr@6a91056 (main) nrfconnect/sdk-zephyr@2925b384..6a910567

All manifest checks OK

Note: This message is automatically posted and updated by the Manifest GitHub Action.

@NordicBuilder
Copy link
Copy Markdown
Contributor

NordicBuilder commented Apr 10, 2026
edited
Loading

CI Information

To view the history of this post, click the 'edited' button above
Build number: 6

Inputs:

Sources:

sdk-nrf: PR head: a916a7dfe224e50a0b0427f117d3ea9c0fb87fe5
zephyr: PR head: 6a9105672639c6385f2efb04d9fb2d6b02d0759d

more details

sdk-nrf:

PR head: a916a7dfe224e50a0b0427f117d3ea9c0fb87fe5
merge base: a07bf6d324d87f008e0e0a98d8048fd1c1639cb2
target head (main): 4c4fbf75f6360507c92563b77fb769f8e7d8760d
Diff

zephyr:

PR head: 6a9105672639c6385f2efb04d9fb2d6b02d0759d
merge base: 2925b384098427e7824c6be33445dab598715c43
Diff

Github labels

Enabled Name Description
ci-disabled Disable the ci execution
ci-all-test Run all of ci, no test spec filtering will be done
ci-force-downstream Force execution of downstream even if twister fails
ci-run-twister Force run twister
ci-run-zephyr-twister Force run zephyr twister
List of changed files detected by CI (4) 
scripts
│  │ quarantine_zephyr.yaml
subsys
│  ├── nrf_security
│  │  │ Kconfig.tls
west.yml
zephyr
│  ├── subsys
│  │  ├── secure_storage
│  │  │  │ Kconfig.its_transform

Outputs:

Toolchain

Version: 53ac68dd62
Build docker image: docker-dtr.nordicsemi.no/sw-production/ncs-build:53ac68dd62_5ea73affbf

Test Spec & Results: ✅ Success; ❌ Failure; 🟠 Queued; 🟡 Progress; ◻️ Skipped; ⚠️ Quarantine

  • ◻️ Toolchain - Skipped: existing toolchain is used
  • ✅ Build twister - Skipped: Skipping Build & Test as it succeeded in a previous run: 5
  • ✅ Integration tests
    • ✅ test_ble_nrf_config - Skipped: Job was skipped as it succeeded in a previous run
    • ✅ test-fw-nrfconnect-chip
    • ✅ test-fw-nrfconnect-rs - Skipped: Job was skipped as it succeeded in a previous run
    • ✅ test-fw-nrfconnect-tfm - Skipped: Job was skipped as it succeeded in a previous run
    • ✅ test-sdk-find-my - Skipped: Job was skipped as it succeeded in a previous run
    • ✅ test-sdk-mcuboot - Skipped: Job was skipped as it succeeded in a previous run
    • ✅ test-sdk-dfu - Skipped: Job was skipped as it succeeded in a previous run
    • ⚠️ test-fw-nrfconnect-nrf-iot_cloud
    • ⚠️ test-fw-nrfconnect-nrf_crypto
Disabled integration tests
    • test-fw-nrfconnect-nrf_lrcs_mosh
    • test-fw-nrfconnect-nrf_lrcs_positioning
    • desktop52_verification
    • test-fw-nrfconnect-apps
    • test-fw-nrfconnect-ble_mesh
    • test-fw-nrfconnect-ble_samples
    • test-fw-nrfconnect-fem
    • test-fw-nrfconnect-nfc
    • test-fw-nrfconnect-nrf-iot_libmodem-nrf
    • test-fw-nrfconnect-nrf-iot_lwm2m
    • test-fw-nrfconnect-nrf-iot_samples
    • test-fw-nrfconnect-nrf-iot_thingy91
    • test-fw-nrfconnect-nrf-iot_zephyr_lwm2m
    • test-fw-nrfconnect-ps-main
    • test-fw-nrfconnect-rpc
    • test-fw-nrfconnect-thread-main
    • test-low-level
    • test-sdk-audio
    • test-sdk-wifi
    • test-secdom-samples-public

Note: This message is automatically posted and updated by the CI

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 10, 2026

You can find the documentation preview for this PR here.

@NordicBuilder
Copy link
Copy Markdown
Contributor

NordicBuilder commented Apr 10, 2026
edited
Loading

Memory footprint analysis revealed the following potential issues

applications.hpf.gpio.icmsg[nrf54l15dk/nrf54l15/cpuflpr]: High RAM usage: 9386[B] - link (cc: @nrfconnect/ncs-ll-ursus)
applications.hpf.gpio.icmsg[nrf54l15dk/nrf54l15/cpuflpr]: High ROM usage: 6134[B] - link (cc: @nrfconnect/ncs-ll-ursus)
applications.hpf.gpio.icbmsg[nrf54l15dk/nrf54l15/cpuflpr]: High RAM usage: 13010[B] - link (cc: @nrfconnect/ncs-ll-ursus)
applications.hpf.gpio.icbmsg[nrf54l15dk/nrf54l15/cpuflpr]: High ROM usage: 9750[B] - link (cc: @nrfconnect/ncs-ll-ursus)

Note: This message is automatically posted and updated by the CI (latest/sdk-nrf/PR-28028/5)

@tomi-font tomi-font force-pushed the mbedtls_4.0_integration_pull_mbedtls_updates_fixup branch from 78932fc to 8bb42a3 Compare April 13, 2026 06:50
@tomi-font
manifest: zephyr: pull secure_storage fix
efaae14 
Which enables CONFIG_PSA_CRYPTO when needed.

Signed-off-by: Tomi Fontanilles <tomi.fontanilles@nordicsemi.no>
@tomi-font
nrf_security: allow CBC_NO_PADDING as CBC cipher suite requirement
f00ef2f 
It's a valid option for the CBC mode.

Signed-off-by: Tomi Fontanilles <tomi.fontanilles@nordicsemi.no>
@tomi-font
nrf_security: make RSA cipher suites enable legacy RSA
ab65ae0 
Zephyr has introduced convenience Kconfig options for various cipher
suites, some of which use RSA.
With Mbed TLS 3.6 we still need to rely on legacy RSA in TLS.
So make these cipher suite Kconfig options enable it.

Signed-off-by: Tomi Fontanilles <tomi.fontanilles@nordicsemi.no>
@tomi-font
Revert "scripts: quarantine_zephyr: extend quarnantine for http_clien…
b8f41be 
…t.tls"

This reverts commit 6dce116.

Signed-off-by: Tomi Fontanilles <tomi.fontanilles@nordicsemi.no>
@tomi-font
Revert "scripts: quarantine_zephyr: quarantine mbedtls"
a916a7d 
This reverts commit 61d5ca2.

Signed-off-by: Tomi Fontanilles <tomi.fontanilles@nordicsemi.no>
@tomi-font tomi-font force-pushed the mbedtls_4.0_integration_pull_mbedtls_updates_fixup branch from 8bb42a3 to a916a7d Compare April 20, 2026 09:48
@NordicBuilder NordicBuilder removed the DNM label Apr 20, 2026
@rlubos rlubos merged commit efb1767 into nrfconnect:main Apr 20, 2026
25 of 26 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rlubos rlubos rlubos approved these changes

@nordicjm nordicjm nordicjm approved these changes

@nordic-piks nordic-piks nordic-piks approved these changes

Assignees

No one assigned

Labels

manifest manifest-zephyr no-changelog upmerge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@tomi-font @NordicBuilder @rlubos @nordicjm @nordic-piks