[nrf fromtree dirty] Crypto: Allow turning off MBEDTLS_MEMORY_BUFFER_ALLOC_C

frkv · rlubos · commit 3a4c9e4f95da · 2026-04-14T09:35:29.000+02:00
This commit disables initialization of Mbed TLS heap in the crypto library when MBEDTLS_MEMORY_BUFFER_ALLOC_C is not enabled. Before this commit Mbed TLS heap was always required. Note that this cherry-pick is not clean as the code is changed from TF-M 2.2 to main (2.3) around logging. This fromlist is taken from a commit to main. Change-Id: Id6f3fc4dee2c2512ba8bcd346b38bac69b890a73 Signed-off-by: Frank Audun Kvamtrø <frank.kvamtro@nordicsemi.no> (cherry picked from commit 3776100)
diff --git a/secure_fw/partitions/crypto/crypto_library.c b/secure_fw/partitions/crypto/crypto_library.c
@@ -56,8 +56,10 @@ static char mbedtls_version_full[18];
  * \brief Static buffer to be used by Mbed Crypto for memory allocations
  *
  */
+#if defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
 #include "config_engine_buf.h"
 static uint8_t mbedtls_mem_buf[CRYPTO_ENGINE_BUF_SIZE] = {0};
+#endif
 
 /* Make sure the library won't print anything through mbedtls_printf */
 static int null_printf(const char *fmt, ...)
@@ -89,12 +91,18 @@ psa_status_t tfm_crypto_core_library_init(void)
     /* Initialise the Mbed Crypto memory allocator to use static memory
      * allocation from the provided buffer instead of using the heap
      */
+#if defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
     mbedtls_memory_buffer_alloc_init(mbedtls_mem_buf,
                                      CRYPTO_ENGINE_BUF_SIZE);
+#endif
 
     mbedtls_platform_set_printf(null_printf);
 
+#if defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
     LOG_DBGFMT("[DBG][Crypto] Internal heap size is %d bytes\r\n", sizeof(mbedtls_mem_buf));
+#else
+    LOG_DBGFMT("[DBG][Crypto] No internal heap\r\n");
+#endif
 
     return PSA_SUCCESS;
 }
