net: samples: http_server: Store TLS credentials to PSA storage

Store TLS credentials to PSA storage.

Signed-off-by: Simen S. Røstad <[email protected]>

Author: simensrostad

samples/net/http_server/boards/nrf7002dk_nrf5340_cpuapp_ns.conf

@@ -46,6 +46,9 @@ CONFIG_MBEDTLS_HEAP_SIZE=16384
 # DHCPv4
 CONFIG_NET_DHCPV4=y
 
+# TLS credentials
+CONFIG_TLS_CREDENTIALS_BACKEND_PROTECTED_STORAGE=y
+
 # Shell and Wi-fi Credentials
 CONFIG_SHELL=y
 CONFIG_NET_SHELL=y

samples/net/http_server/src/credentials_provision.c

@@ -25,7 +25,11 @@ int credentials_provision(void)
 				 TLS_CREDENTIAL_CA_CERTIFICATE,
 				 server_certificate,
 				 sizeof(server_certificate));
-	if (ret < 0) {
+
+	if (ret == -EEXIST) {
+		LOG_DBG("CA certificate already exists, sec tag: %d",
+			CONFIG_HTTP_SERVER_SAMPLE_SERVER_CERTIFICATE_SEC_TAG);
+	} else if (ret < 0) {
 		LOG_ERR("Failed to register CA certificate: %d", ret);
 		return ret;
 	}
@@ -34,15 +38,22 @@ int credentials_provision(void)
 				 TLS_CREDENTIAL_SERVER_CERTIFICATE,
 				 server_certificate,
 				 sizeof(server_certificate));
-	if (ret < 0) {
+	if (ret == -EEXIST) {
+		LOG_DBG("Public certificate already exists, sec tag: %d",
+			CONFIG_HTTP_SERVER_SAMPLE_SERVER_CERTIFICATE_SEC_TAG);
+	} else if (ret < 0) {
 		LOG_ERR("Failed to register public certificate: %d", ret);
 		return ret;
 	}
 
 	ret = tls_credential_add(CONFIG_HTTP_SERVER_SAMPLE_SERVER_CERTIFICATE_SEC_TAG,
 				 TLS_CREDENTIAL_PRIVATE_KEY,
 				 server_private_key, sizeof(server_private_key));
-	if (ret < 0) {
+
+	if (ret == -EEXIST) {
+		LOG_DBG("Private key already exists, sec tag: %d",
+			CONFIG_HTTP_SERVER_SAMPLE_SERVER_CERTIFICATE_SEC_TAG);
+	} else if (ret < 0) {
 		LOG_ERR("Failed to register private key: %d", ret);
 		return ret;
 	}