sysbuild NCS 2.7 #error "One crypto backend must be defined: either MBED_TLS or TINYCRYPT"

Hi,

Is this issue reproducible on nrf5340-dk board? If yes, please provide all necessary steps for reproducing the problem.

Best regards,
Dejan

Sure, this is with nrf5340dk board.

That I have is this:

-- Zephyr version: 3.6.99 (C:/D/dev/nordicsemi/v2.7.0/zephyr), build: v3.6.99-ncs2
[152/201] Building C object CMakeFiles/app.dir/C_/D/dev/nordicsemi/v2.7.0/bootloader/mcuboot/boot/bootutil/src/image_validate.c.obj
FAILED: CMakeFiles/app.dir/C_/D/dev/nordicsemi/v2.7.0/bootloader/mcuboot/boot/bootutil/src/image_validate.c.obj

In file included from C:/D/dev/nordicsemi/v2.7.0/bootloader/mcuboot/boot/bootutil/include/bootutil/enc_key.h:33,
                 from C:/D/dev/nordicsemi/v2.7.0/bootloader/mcuboot/boot/bootutil/src/image_validate.c:44:
C:/D/dev/nordicsemi/v2.7.0/bootloader/mcuboot/boot/bootutil/include/bootutil/crypto/aes_ctr.h:19:6: error: #error "One crypto backend must be defined: either MBED_TLS or TINYCRYPT"
   19 |     #error "One crypto backend must be defined: either MBED_TLS or TINYCRYPT"
      |      ^~~~~
C:/D/dev/nordicsemi/v2.7.0/bootloader/mcuboot/boot/bootutil/include/bootutil/enc_key.h:45:5: error: unknown type name 'bootutil_aes_ctr_context'
   45 |     bootutil_aes_ctr_context aes_ctr;
      |     ^~~~~~~~~~~~~~~~~~~~~~~~

aaaaaaa

sysbuild.conf

prj.conf

sysbuild/mcuboot.conf

main.c

I have autogen-enckey.c & autogen-pubkey.c at build/mcuboot/zephyr

I also have zephyr.bin, zephyr.hex, zephyr.signed.bin, zephyr.signed.hex, zephyr.signed.encrypted.hex & zephyr.signed.encrypted.bin at build/myapp/zephyr

Tested on Boards: nrf5340dk/nrf5340/cpuapp & nrf5340dk/nrf5340/cpuapp/ns

Choosing: Use sysbuild.

Running nrf connect SDK 2.7.0 and toolchain 2.7.0, VSC 1.93.1, nRF Connect for VS Code v2024.9.87,nRF Connect for VS Code Extension Pack v2024.9.5

Hi Dejan, I try to encrypt the images in order to be upgraded by OTA DFU

I used the keys that  u can see in the prev messages TYPE_ECDSA_P256

Yes I make them by myself with imgtool and are the same we are using with our released product and working for more than 50000 users with SDK 2.3.

I've put them in a folder in the SSD , same unit as the project

Bets,

JMA

Hi JMA,

You could try to comment out 2 lines in sysbuild.conf

# Enable MCUboot per default for this sample.
#SB_CONFIG_BOOTLOADER_MCUBOOT=y

#first key is automatically added, adding future ones
#SB_CONFIG_SECURE_BOOT_PUBLIC_KEY_FILES="../key15_3_ecdsa-p256.pem,../key15_4_ecdsa-p256.pem"

Are you kidding me?, can u explain to me why I need to ask those silly questions like where I put hte keys', IT IS OBVIOUS that I need to put them in a file, not sure what's your goal but mine is not to waste too much time with silly stuff so can you answer, are u able to reproduce this ERROR for nrf5340dk or not?, if YES please try to make your own tests, I'm really busy, so if you don't want to help just please give the chance to someone interested about this.

Hi,

JMA said:

are u able to reproduce this ERROR for nrf5340dk or not?, if YES please try to make your own tests, I'm really busy, so if you don't want to help just please give the chance to someone interested about this.

I understand that you are very busy, and I am sorry for any inconvenience you might have had.
I was able to reproduce your error and provided you with a suggestion in my previous reply. Have you tried it out?

Best regards,
Dejan

Of course I tried, not working, is it working for you?

NOT WORKING!!!

Of course I tried, not working, is it working for you?

NOT WORKING!!!