11 Oct
2024
11 Oct
'24
7:34 p.m.
On Fri, Sep 27, 2024 at 11:07:22AM +0800, Chia-Wei Wang wrote:
Aspeed AST2700 SoCs integrates the Caliptra secure IP, where an ECDSA384 signature verification HW interface is exported for SoC crypto needs.
This patch series firstly extends the FIT image signing/verify common code to support the ECDSA384 algorithm. For better convenience, the device tree for ECDSA public key storage is also revised by referring to RSA implementations.
After the FIT common code revision, the driver is implemented for AST2700 to leverage the Caliptra ECDSA384 signature verification.
These are verified by signed FIT images with the algorithm "sha384,ecdsa384".
v2 change:
- revise the commit message of padding check removal for better explanation
- remove redundant check in static function
- revise errno and error message as suggested by Simon
- collect Reviewed-by tags
Please rebase on top of current master, thanks.
--
Tom