Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Reconstruct IDevId cert at runtime #709

Merged
merged 3 commits into from
Sep 1, 2023
Merged

Reconstruct IDevId cert at runtime #709

merged 3 commits into from
Sep 1, 2023

Conversation

ArthurHeymans
Copy link
Contributor

This adds 2 mailbox commands:

  1. GET_IDEV_INFO which outputs the IDevId public key
  2. GET_IDEV_CSR which appends the signature from the IdevId cert attr fuses

Closes #294

@ArthurHeymans
Copy link
Contributor Author

I'm not sure how to properly write tests for this other than some minimal validations like size. The fuses contain 0 in this setup.

jhand2
jhand2 reviewed Aug 30, 2023
View reviewed changes
common/src/mailbox_api.rs Show resolved Hide resolved
common/src/mailbox_api.rs Outdated Show resolved Hide resolved
common/src/mailbox_api.rs Outdated Show resolved Hide resolved
runtime/src/info.rs Outdated Show resolved Hide resolved
runtime/src/info.rs Outdated Show resolved Hide resolved
@ArthurHeymans ArthurHeymans force-pushed the ArhurHeymans/idevid branch 3 times, most recently from a0c9794 to bdb957b Compare August 31, 2023 19:34
@ArthurHeymans
Copy link
Contributor Author

Changed the mailbox as requested to have the signature as input.

jhand2
jhand2 previously approved these changes Sep 1, 2023
View reviewed changes
@jhand2 jhand2 force-pushed the ArhurHeymans/idevid branch from bdb957b to bc685a8 Compare September 1, 2023 04:28
@jhand2 jhand2 enabled auto-merge (rebase) September 1, 2023 04:29
@jhand2
Copy link
Collaborator

jhand2 commented Sep 1, 2023

PR looks good, there's just a CI failure after rebasing. I'll merge once that is fixed.

@ArthurHeymans
runtime/mailbox: Implement getting IDevId public key
f9ad74b 
Signed-off-by: Arthur Heymans <arthur@aheymans.xyz>
@ArthurHeymans
runtime/mailbox: Add mailbox command to reconstruct IDevId cert
d6b64fe 
Retrieve the IDevId cert signature from fuses and append it to the
mailbox input data.

Signed-off-by: Arthur Heymans <arthur@aheymans.xyz>
@ArthurHeymans
runtime/README.md: Update documentation for IDevId commands
00c5deb 
This adds documentation for the GET_IDEV_CERT and GET_IDEV_INFO
commands.

Signed-off-by: Arthur Heymans <arthur@aheymans.xyz>
auto-merge was automatically disabled September 1, 2023 13:03

Head branch was pushed to by a user without write access

@ArthurHeymans
Copy link
Contributor Author

PR looks good, there's just a CI failure after rebasing. I'll merge once that is fixed.

Done.

@jhand2 jhand2 merged commit 78d9a04 into chipsalliance:main Sep 1, 2023
6 checks passed
@jameszhang-nvidia jameszhang-nvidia mentioned this pull request Sep 1, 2023
Closed
@ArthurHeymans ArthurHeymans deleted the ArhurHeymans/idevid branch July 30, 2024 16:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jhand2 jhand2 jhand2 approved these changes

@fdamato fdamato Awaiting requested review from fdamato fdamato is a code owner

@rusty1968 rusty1968 Awaiting requested review from rusty1968 rusty1968 is a code owner

@bluegate010 bluegate010 Awaiting requested review from bluegate010 bluegate010 is a code owner

@mhatrevi mhatrevi Awaiting requested review from mhatrevi mhatrevi is a code owner

@ajisaxena ajisaxena Awaiting requested review from ajisaxena ajisaxena is a code owner

@vsonims vsonims Awaiting requested review from vsonims vsonims is a code owner

@korran korran Awaiting requested review from korran

@jlmahowa-amd jlmahowa-amd Awaiting requested review from jlmahowa-amd jlmahowa-amd is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Consider reconstructing IDevID cert in Runtime
2 participants
@ArthurHeymans @jhand2