Skip to content

[rom_ext] Refactor signature verificaion functions #26558

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
cfrantz merged 3 commits into from
Mar 11, 2025
Merged

[rom_ext] Refactor signature verificaion functions #26558

cfrantz merged 3 commits into from
Mar 11, 2025

Conversation

@cfrantz
Copy link
Contributor

@cfrantz cfrantz commented Mar 7, 2025

Refactor the ROM_EXT signature verification functions into a verify
function that can be used both for validating application payloads and
ownership operations.

@cfrantz cfrantz requested review from moidx and timothytrippel March 7, 2025 16:17
@cfrantz cfrantz requested a review from a team as a code owner March 7, 2025 16:17
@cfrantz cfrantz removed the request for review from a team March 7, 2025 16:17
cfrantz added 3 commits March 10, 2025 07:11
@cfrantz
[ownership] Consolidate key data into owner_keydata_t
c2e42db 
1. Consolidate public key data into `owner_keydata_t`.
2. Eliminate RSA as a supported algorithm.

Signed-off-by: Chris Frantz <cfrantz@google.com>
@cfrantz
[rom_ext] Refactor signature verificaion functions
44ca4e3 
Refactor the ROM_EXT signature verification functions into a verify
function that can be used both for validating application payloads and
ownership operations.

Signed-off-by: Chris Frantz <cfrantz@google.com>
@cfrantz
[rom_ext] Remove the rom_ext:sigverify_keys target
8e64336 
This target is a left-over from pre-ownership RSA verification and is no
longer needed.

Signed-off-by: Chris Frantz <cfrantz@google.com>
moidx
moidx approved these changes Mar 11, 2025
View reviewed changes
sw/device/silicon_creator/lib/ownership/owner_verify.c
// A version of spx_verify that is tailored to ROM_EXT use cases.
// In particular:
// - We don't care about the OTP setting for SPX+ in the ROM_EXT.
// - We don't care about flash_exec in the ROM_EXT.
Copy link
Contributor

@moidx moidx Mar 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As discussed offline, lets think about adding a magic constant so that we can add redundant checks. This can be done in a follow up PR.

Copy link
Contributor Author

@cfrantz cfrantz Mar 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd like to take care of the magic constant for redundancy in a stand-alone PR so that it can be reviewed in isolation (without a bunch of other code moving and refactoring).

@cfrantz cfrantz merged commit 81f7aac into lowRISC:earlgrey_1.0.0 Mar 11, 2025
33 checks passed
@pamaury pamaury mentioned this pull request Dec 23, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@moidx moidx moidx approved these changes

@timothytrippel timothytrippel Awaiting requested review from timothytrippel

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cfrantz @moidx