Skip to content

fw-2.0.2

Choose a tag to compare

View all tags
@github-actions github-actions released this 22 Jun 18:10
· 681 commits to main since this release
Immutable release. Only release title and notes can be modified.
fw-2.0.2
2707081

This is a combined runtime and FMC release.

Caliptra FW 2.0.2 Release Notes

Release notes for changes introduced since FW 2.0.1.

Features

  • DPE Upgrades:
    • DPE core upgrades including support for SVN in DeriveContext, a new Crypto API, and unified environment creation (99c1d64a)
    • Support DPE ML-DSA hybrid mode (#3622)
    • Add a new command to chunk DPE certificates (CertifyKeyChunksReq) (#3765)
  • Attested CSR:
    • Add Attested CSR support for Runtime Alias key (#3406) and FMC Alias key (#3405)
    • Add GET_ATTESTED_ECC384_CSR and GET_ATTESTED_MLDSA87_CSR mailbox commands (#3339)
  • Cryptographic & Drivers:
    • Add ML-DSA pairwise consistency test (PCT) (#3547)
    • Add ECDH pairwise consistency test (PCT) (#3546)
    • Add MLDSA-87 SigVer KAT and CTR_DRBG-AES-256 KAT coverage (#3795, #3706)
    • Add hashing step to ECDSA KAT (#3821)
  • Runtime & Firmware Capabilities:
    • Add more information about how firmware was verified to fw_info (#3638)
    • Modify AuthorizeAndStash command to not skip stash by default (#3402)
  • Optimizations:
    • Skip Runtime journey PCR extension when booting the same firmware version (#3055)

Fixes

  • Security & Debug Unlock:
    • Fix some logic around production debug unlock (#3694, #3766, #3628, #3636)
    • Fix TAP mailbox availability after debug unlock (#3848)
    • Fix WDT stop after production debug unlock (#3675, #3676)
    • Re-derive dummy FMC key pairs on warm reset in debug unlocked mode as a workaround for key vault reset (143b72ec)
  • Boot & Recovery:
    • Populate Runtime recovery reason on boot failures and synchronize recovery codes (852d1e25)
    • Advertise recovery capabilities (PROT_CAP_2) and clean up recovery reason mapping (25eed8c5)
  • Robustness & Bug Fixes:
    • Bound authority manifest metadata lookup by entry_count (#3732)
    • Implement address-based authorize-and-stash measurement (#3688)
    • Fix AES-GCM streaming GHASH save/restore bug in drivers (#3790)
    • Fix mailbox packet handling to validate packet length (dlen) against mailbox SRAM size (#3414, #3571)
    • Handle mailbox FSM error state and unexpected DataReady in drivers (#3393, #3516)
    • Mark hash-based ECDSA/LMS verification as FIPS non-approved (#3803)
    • Add missing DICE EKU extension to Runtime alias certificates (#3202)
    • Use configurable OTP status offset for UDS/FE programming (#3723)
    • Fix runtime FIPS shutdown zeroization (#3908)
Assets 5
Loading