AES 256 bit support for RT1062?

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

AES 256 bit support for RT1062?

Jump to solution
1,950 Views
Robert123
Contributor III

When I am trying to connect and perform a SSL handshake to a HTTPS server, the function "mbedtls_ssl_handshake" return the following error: -0x0023 MBEDTLS_ERR_AES_FEATURE_UNAVAILABLE.

I am able to use the SDK example "eaimxrt1062_lwip_httpscli_mbedTLS_freertos" to create a HTTPS client and connect to the test server which sends a 128 bit AES key. The server I am trying to connect to sends a 256 bit AES key and the function "mbedtls_aes_setkey_enc" in ksdk_mbedtls.c is the origin of the error message:

 

#ifdef MBEDTLS_AES_ALT_NO_256
    if (keybits == 256u)
    {
        return (MBEDTLS_ERR_AES_FEATURE_UNAVAILABLE);
    }
#endif

 

 

Is there any support for AES-256?

I am using a Embedded Artists imx-rt1062-developers-kit with the following 2.9.3 version of the SDK.

 

Labels (1)
0 Kudos
Reply
1 Solution
1,934 Views
mjbcswitzerland
Specialist V

Hi

The mbedtls library includes AES256 as SW implementation in the file aes.c so you should not be missing the support itself.

What happens if you remove the define

MBEDTLS_AES_ALT_NO_256

from the configuration file or the pre-processor defines?

Regards

Mark

 

View solution in original post

0 Kudos
Reply
2 Replies
1,935 Views
mjbcswitzerland
Specialist V

Hi

The mbedtls library includes AES256 as SW implementation in the file aes.c so you should not be missing the support itself.

What happens if you remove the define

MBEDTLS_AES_ALT_NO_256

from the configuration file or the pre-processor defines?

Regards

Mark

 

0 Kudos
Reply
1,920 Views
Robert123
Contributor III

Thanks, I removed the hardware acceleration code in the folder /port and increased the SSL frame buffer (MBEDTLS_SSL_MAX_CONTENT_LEN) in the mbedtls_config_client.h

0 Kudos
Reply