Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[ownership] Manual cherry-pick of #24643 #26052

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

[ownership] Manual cherry-pick of #24643 #26052

wants to merge 3 commits into from

Conversation

cfrantz
Copy link
Contributor

@cfrantz cfrantz commented Jan 28, 2025

Manual cherry-pick of #24643 (by way of #24994).

Note, this PR yields a "dangerously close-to-full ROM_EXT" at 64332 bytes.
Current master prior to this PR is 63024 bytes (also very full).

@cfrantz cfrantz requested review from a team as code owners January 28, 2025 23:50
@cfrantz cfrantz removed request for a team January 28, 2025 23:51
@cfrantz
[rom_ext,ownership] Allow DEV chips to erase the owner
cecb926 
In order to facilitate debuging and manual test flows for ownerhsip transfer,
we allow the owner pages to be erased if and only if the chip is in the DEV
lifecycle state AND the ROM_EXT was specifically built to allow owner erase.

Signed-off-by: Chris Frantz <[email protected]>
(cherry picked from commit a14571e)
(cherry picked from commit 129451b)
@cfrantz
[rom_ext,ownership] Migrate FPGA and sival users to ECDSA
acceedd 
1. Generate owner and application keys for the `SiVal` user in the
   CloudKMS instance.  Export the public components of those keys to the
   codebase (see
   `sw/device/silicon_creator/rom_ext/sival/keys/README.md`).
2. Add the keys to the appropriate exec_envs.
3. Add a config setting `//signing:owner_key_type` for selecting between
   RSA and ECDSA keys (RSA keys are for the currently released ROM_EXT
   0.4).

Signed-off-by: Chris Frantz <[email protected]>
(cherry picked from commit b3af7c1)
(cherry picked from commit 35ed76c)
@cfrantz
[ownership] Create dummy ECDSA keys
fc0db39 
1. Create `dummy` ECDSA application keys for ownership transfer tests.
2. Delete `dummy` RSA application keys.

Signed-off-by: Chris Frantz <[email protected]>
(cherry picked from commit 2a8092f)
(cherry picked from commit 440db25)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@timothytrippel timothytrippel timothytrippel approved these changes

@moidx moidx moidx approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@cfrantz @moidx @timothytrippel