Skip to content

rom-2.0.3

Choose a tag to compare

View all tags
@github-actions github-actions released this 18 Jun 18:10
· 681 commits to main since this release
Immutable release. Only release title and notes can be modified.
rom-2.0.3-1
bf9ca63

Caliptra ROM 2.0.3 Release Notes

Release notes for changes introduced since ROM 2.0.2 (473ae255) through c1e3ff2e on the caliptra-2.0 branch.

Features

  • Use SS_STRAP_GENERIC[2] to configure entropy_src single-bit mode during CSRNG initialization.
  • Add CTR_DRBG-AES-256 and MLDSA-87 SigVer KAT coverage.

Fixes

  • Zeroize ROM state before acknowledging SHUTDOWN.
  • Update CSRNG entropy source configuration and health-test behavior.
  • Fix production debug unlock behavior.
  • Bind production debug unlock tokens to the device UDI.
  • Move production debug unlock token public-key hash check from mailbox SRAM to stack.
  • Advertise recovery capabilities and report boot failure reasons.
  • Use configurable OTP status offset for UDS/FE programming.
  • Mark hash-based ECDSA/LMS verify as FIPS non-approved and add ECDSA KAT hashing coverage.

Full Changelog: rom-2.0.2...rom-2.0.3-1

Assets 5
Loading