CONFIG_TFM_KEY_FILE_S

Path to private key used to sign secure firmware images.

Type: string

Help

The path and filename for the .pem file containing the private key
that should be used by the BL2 bootloader when signing secure
firmware images.

Direct dependencies

BUILD_WITH_TFM && BUILD_WITH_TFM && 0

(Includes any dependencies from ifs and menus.)

Default

• “${ZEPHYR_TRUSTED_FIRMWARE_M_MODULE_DIR}/bl2/ext/mcuboot/root-RSA-3072.pem”

Kconfig definition

At <External Modules>/trusted-firmware-m/Kconfig.tfm:54

Included via Kconfig:8 → Kconfig.zephyr:33 → <External Modules>/Kconfig:80 → <External Modules>/trusted-firmware-m/Kconfig:7

Menu path: (Top) → Modules → Build with TF-M as the Secure Execution Environment

config TFM_KEY_FILE_S
    string "Path to private key used to sign secure firmware images."
    default "${ZEPHYR_TRUSTED_FIRMWARE_M_MODULE_DIR}/bl2/ext/mcuboot/root-RSA-3072.pem"
    depends on BUILD_WITH_TFM && BUILD_WITH_TFM && 0
    help
      The path and filename for the .pem file containing the private key
      that should be used by the BL2 bootloader when signing secure
      firmware images.

(The ‘depends on’ condition includes propagated dependencies from ifs and menus.)