diff options
| author | Vadim Bendebury <vbendeb@chromium.org> | 2018-05-30 11:56:18 -0700 |
|---|---|---|
| committer | chrome-bot <chrome-bot@chromium.org> | 2018-06-07 23:33:42 -0700 |
| commit | 71cb7bd6d866114e4c811f049ccb6869e6b39f64 (patch) | |
| tree | af16ed0e565c2c35f2f587d69e1a8cfec5b28676 /board | |
| parent | a730fd6219d53469a8ca0e74a6631912a24877a3 (diff) | |
| download | chrome-ec-71cb7bd6d866114e4c811f049ccb6869e6b39f64.tar.gz | |
cr50: prepare for supporting both x25519 and p256 test keys
The signer script is checking the elf files for presence of test RMA
keys, currently hardcoded to be x25519 keys.
The algorithm (x25519 vs p256) is going to become a compile time
option, the script should be prepared to determine the type of the key
at run time, because the script could be used for signing images from
different branches, compiled with different config options.
The prod p256 key does not yet exist.
BRANCH=none
BUG=b:73296606
TEST=verified that prod signing images including x25519 keys is still
working as expected.
Change-Id: Icf48845279912ecc9ccdecec1764fcb5f85d22bd
Signed-off-by: Vadim Bendebury <vbendeb@chromium.org>
Reviewed-on: https://chromium-review.googlesource.com/1079698
Reviewed-by: Randall Spangler <rspangler@chromium.org>
Reviewed-by: Mary Ruthven <mruthven@chromium.org>
Diffstat (limited to 'board')
| -rw-r--r-- | board/cr50/rma_key_blob.README.md | 7 | ||||
| -rw-r--r-- | board/cr50/rma_key_blob.x25519.prod (renamed from board/cr50/rma_key_blob.prod) | bin | 33 -> 33 bytes | |||
| -rw-r--r-- | board/cr50/rma_key_blob.x25519.test (renamed from board/cr50/rma_key_blob.test) | 0 |
3 files changed, 4 insertions, 3 deletions
diff --git a/board/cr50/rma_key_blob.README.md b/board/cr50/rma_key_blob.README.md index 8270086bfe..66fa0c04da 100644 --- a/board/cr50/rma_key_blob.README.md +++ b/board/cr50/rma_key_blob.README.md @@ -1,6 +1,7 @@ -The rma_key_blob.{prod,test} files in this directory are 33 byte binary blobs -concatenating the 32 byte of respective public key used by prod or test RMA -server and one byte of the key ID. +The rma_key_blob.{p256,x25519}.{prod,test} files in this directory are binary +blobs concatenating the respective public key used by prod or test RMA server +and single byte of the key ID. The key size for p256 is 65 bytes, for x25519 - +32 bytes. The util/bin2h.sh script is used to convert these binary blobs into .h file containing a #define statement which is suitable for use in C. diff --git a/board/cr50/rma_key_blob.prod b/board/cr50/rma_key_blob.x25519.prod Binary files differindex 54e8fd5a1d..54e8fd5a1d 100644 --- a/board/cr50/rma_key_blob.prod +++ b/board/cr50/rma_key_blob.x25519.prod diff --git a/board/cr50/rma_key_blob.test b/board/cr50/rma_key_blob.x25519.test index c8b0062e64..c8b0062e64 100644 --- a/board/cr50/rma_key_blob.test +++ b/board/cr50/rma_key_blob.x25519.test |