From: Chia-Wei Wang <chiawei_wang@aspeedtech.com>
To: <trini@konsulko.com>, <sjg@chromium.org>, <bob.wolff68@gmail.com>,
<u-boot@lists.denx.de>
Subject: [PATCH v2 0/4] aspeed: ast2700: Add Caliptra ECDSA driver
Date: Fri, 27 Sep 2024 11:07:22 +0800 [thread overview]
Message-ID: <20240927030726.2211297-1-chiawei_wang@aspeedtech.com> (raw)
Aspeed AST2700 SoCs integrates the Caliptra secure IP, where an ECDSA384
signature verification HW interface is exported for SoC crypto needs.
This patch series firstly extends the FIT image signing/verify common
code to support the ECDSA384 algorithm. For better convenience, the
device tree for ECDSA public key storage is also revised by referring
to RSA implementations.
After the FIT common code revision, the driver is implemented for
AST2700 to leverage the Caliptra ECDSA384 signature verification.
These are verified by signed FIT images with the algorithm "sha384,ecdsa384".
v2 change:
- revise the commit message of padding check removal for better explanation
- remove redundant check in static function
- revise errno and error message as suggested by Simon
- collect Reviewed-by tags
Chia-Wei Wang (4):
lib: ecdsa: Add ECDSA384 support
lib: ecdsa: Create device tree node automatically
image-fit-sig: Remove padding check
drivers/crypto: aspeed: Add Caliptra ECDSA384 support
boot/image-fit-sig.c | 2 +-
drivers/crypto/aspeed/Kconfig | 10 ++
drivers/crypto/aspeed/Makefile | 1 +
drivers/crypto/aspeed/cptra_ecdsa.c | 184 ++++++++++++++++++++++++++++
include/u-boot/ecdsa.h | 1 +
lib/ecdsa/ecdsa-libcrypto.c | 25 ++--
lib/ecdsa/ecdsa-verify.c | 14 ++-
tools/image-sig-host.c | 7 ++
8 files changed, 233 insertions(+), 11 deletions(-)
create mode 100644 drivers/crypto/aspeed/cptra_ecdsa.c
--
2.25.1
next reply other threads:[~2024-09-27 3:07 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-09-27 3:07 Chia-Wei Wang [this message]
2024-09-27 3:07 ` [PATCH v2 1/4] lib: ecdsa: Add ECDSA384 support Chia-Wei Wang
2024-09-27 3:07 ` [PATCH v2 2/4] lib: ecdsa: Create device tree node automatically Chia-Wei Wang
2024-09-27 3:07 ` [PATCH v2 3/4] image-fit-sig: Remove padding check Chia-Wei Wang
2024-09-27 3:07 ` [PATCH v2 4/4] drivers/crypto: aspeed: Add Caliptra ECDSA384 support Chia-Wei Wang
2024-10-11 17:34 ` [PATCH v2 0/4] aspeed: ast2700: Add Caliptra ECDSA driver Tom Rini
2024-10-14 2:07 ` ChiaWei Wang
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20240927030726.2211297-1-chiawei_wang@aspeedtech.com \
--to=chiawei_wang@aspeedtech.com \
--cc=bob.wolff68@gmail.com \
--cc=sjg@chromium.org \
--cc=trini@konsulko.com \
--cc=u-boot@lists.denx.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox