Roadmap for bumping Mbed TLS 3.6 to Mbed TLS 4.0/TF-PSA-Crypto 1.0 #102005
Description
Summary
This is the roadmap to prepare the ground for bumping Mbed TLS version from the current 3.6 revision to 4.0. See corresponding RFC.
1. Remove remaining usage of legacy crypto
In the following I will list all the dependencies on legacy Mbed TLS crypto that need to be transitioned to PSA Crypto API in order to allow this bump to happen smoothly. The list only includes dependencies in Zephyr repo, modules are not checked.
I ran the following command on the main branch at 9334ced in order to find all legacy dependencies:
rg -g '!modules/mbedtls/*' -g '!doc/releases/*' -ie 'mbedtls_(ecp|rsa|cipher|ecdh|ecdsa|aes|gcm|ccm|mpi|des|dhm|sha|entropy|ctr_drbg|hmac_drbg|hmac|hkdf|cmac)_' | grep -v _ROM_TABLES | cut -d: -f1 | sort -u
and I got:
- drivers/bluetooth/hci/Kconfig.esp32
- drivers/wifi/esp32/Kconfig.esp32
- modules/hostap/Kconfig [1]
- modules/openthread/Kconfig modules: openthread: use PSA Crypto API as default choice for crypto #98088
- samples/net/lwm2m_client/overlay-dtls-cert.conf Replace usage of legacy Mbed TLS crypto Kconfigs with PSA Crypto API #101419
- samples/net/wifi/shell/nxp/* samples: net: wifi: shell: remove legacy Mbed TLS crypto #102716
- subsys/net/lib/http/http_server_ws.c subsys: net: lib: websocket: remove usage of legacy Mbed TLS crypto #102037
- subsys/net/lib/sockets/Kconfig Replace usage of legacy Mbed TLS crypto Kconfigs with PSA Crypto API #101419
- subsys/net/lib/websocket/* subsys: net: lib: websocket: remove usage of legacy Mbed TLS crypto #102037
- subsys/random/* random: ctr-drbg: Use PSA crypto instead of MBED TLS #100048
- subsys/storage/flash_map/* subsys: storage: flash_map: remove usage of legacy Mbed TLS crypto #102022
- tests/benchmarks/mbedtls/prj.conf tests: benchmark: mbedtls: remove legacy crypto Kconfig #102042
- tests/net/socket/tls_configurations/prj.conf Replace usage of legacy Mbed TLS crypto Kconfigs with PSA Crypto API #101419
2. Following steps
- Remove Kconfigs related to legacy crypto features
- Start integrating Mbed TLS 4.0 modules: mbedtls: bump to 4.0 #104031
Describe the solution you'd like
Ideally all the above usages of legacy Mbed TLS crypto should be transitioned to PSA Crypto API.
[1] For the specific case of HostAP we know it relies on some legacy modules (ex: bignum) to implement some algorithm that's not yet supported by PSA Crypto API (ex: WPA3). This lack of support from PSA API means that some sort of support for legacy crypto mechanisms need to stay.
Ideally one could claim that the approach might apply to all other legacy dependencies mentioned above. However it should be noted that all legacy crypto modules are now internal to Mbed TLS so they are not granted to have stable interfaces over minor releases. HostAP is an exception and once the PSA Crypto API will implement all the algorithms that HostAP requires, HostAP will need to drop usage of legacy Mbed TLS APIs and move to PSA API.