diff options
author | Vadim Bendebury <vbendeb@chromium.org> | 2017-01-23 08:13:32 -0800 |
---|---|---|
committer | chrome-bot <chrome-bot@chromium.org> | 2017-01-25 22:12:28 -0800 |
commit | 7a8d505ce34173c7b12b921b67a53586ada00c4c (patch) | |
tree | e0784fd57ac3074cb2fe499b715be665f86c3fcc /driver | |
parent | 7d2e4fbf5ba0c27f5d84bfa321bd857dbd7c33ff (diff) | |
download | chrome-ec-7a8d505ce34173c7b12b921b67a53586ada00c4c.tar.gz |
nvmem: encrypt contents using crypto api
This patch makes incompatible changes to the nvmem layout: the header
is increased to accommodate a 16 byte sha ans a 16 byte padding for
future extensions.
The layout version field is also introduced to make it easier to track
changes in the future. When calculating SHA the entire partition above
the SHA field is processed. Encryption covers everything above the
header.
Introducing encryption makes it impossible to use flash contents
directly for read and compare operations.
The nvmem_setup function is modified to use the nvnem_save() instead
of writing into the flash directly.
BRANCH=none
BUG=chrome-os-partner:62260
TEST=ran the following tests, all succeeded
make buildall -j
TEST_LIST_HOST=nvmem make runtests
tcg test suite
corp enroll on reef, reboot a few times, verify that enrollment sticks
Change-Id: I50b148ac0dc6bc924f4d65c67bc6610100d9dfc0
Reviewed-on: https://chromium-review.googlesource.com/428691
Commit-Ready: Vadim Bendebury <vbendeb@chromium.org>
Tested-by: Vadim Bendebury <vbendeb@chromium.org>
Reviewed-by: Randall Spangler <rspangler@chromium.org>
Diffstat (limited to 'driver')
0 files changed, 0 insertions, 0 deletions