"cd0d1dd6b2328065f95a4744185093f3520dc8db" (history) in projects: optee_os

Project(s)

Full Search
Definition
Symbol
File Path
History
Type

Searched hist:cd0d1dd6b2328065f95a4744185093f3520dc8db (Results 1 – 3 of 3) sorted by relevance

/optee_os/core/drivers/
H A D	versal_huk.c	cd0d1dd6b2328065f95a4744185093f3520dc8db Tue Jan 03 16:11:17 UTC 2023 Jorge Ramirez-Ortiz <jorge@foundries.io> drivers: versal: hardware unique key The hardware unique key is calculated as the AS-GCM encrypted value of the SoC DNA unique identifier. The key source used for encryption is selectable at build time using the CFG_VERSAL_HUK_KEY configuration flag. The following sources are supported VERSAL_AES_EFUSE_USER_KEY_0 (CFG_VERSAL_HUK_KEY = 6) VERSAL_AES_EFUSE_USER_KEY_1 (CFG_VERSAL_HUK_KEY = 7) VERSAL_AES_PUF_KEY (CFG_VERSAL_HUK_KEY = 11) VERSAL_AES_USER_KEY_0 (CFG_VERSAL_HUK_KEY = 12 (default)) The default configuration does not generate a secret HUK since the key is hardcoded in the driver - it however validates the algorithm; but security-wise it is not different than not enabling CFG_VERSAL_HUK and therefore using the OP-TEE provided HUK stub. Signed-off-by: Jorge Ramirez-Ortiz <jorge@foundries.io> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org>
H A D	sub.mk	cd0d1dd6b2328065f95a4744185093f3520dc8db Tue Jan 03 16:11:17 UTC 2023 Jorge Ramirez-Ortiz <jorge@foundries.io> drivers: versal: hardware unique key The hardware unique key is calculated as the AS-GCM encrypted value of the SoC DNA unique identifier. The key source used for encryption is selectable at build time using the CFG_VERSAL_HUK_KEY configuration flag. The following sources are supported VERSAL_AES_EFUSE_USER_KEY_0 (CFG_VERSAL_HUK_KEY = 6) VERSAL_AES_EFUSE_USER_KEY_1 (CFG_VERSAL_HUK_KEY = 7) VERSAL_AES_PUF_KEY (CFG_VERSAL_HUK_KEY = 11) VERSAL_AES_USER_KEY_0 (CFG_VERSAL_HUK_KEY = 12 (default)) The default configuration does not generate a secret HUK since the key is hardcoded in the driver - it however validates the algorithm; but security-wise it is not different than not enabling CFG_VERSAL_HUK and therefore using the OP-TEE provided HUK stub. Signed-off-by: Jorge Ramirez-Ortiz <jorge@foundries.io> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org>
/optee_os/core/arch/arm/plat-versal/
H A D	conf.mk	cd0d1dd6b2328065f95a4744185093f3520dc8db Tue Jan 03 16:11:17 UTC 2023 Jorge Ramirez-Ortiz <jorge@foundries.io> drivers: versal: hardware unique key The hardware unique key is calculated as the AS-GCM encrypted value of the SoC DNA unique identifier. The key source used for encryption is selectable at build time using the CFG_VERSAL_HUK_KEY configuration flag. The following sources are supported VERSAL_AES_EFUSE_USER_KEY_0 (CFG_VERSAL_HUK_KEY = 6) VERSAL_AES_EFUSE_USER_KEY_1 (CFG_VERSAL_HUK_KEY = 7) VERSAL_AES_PUF_KEY (CFG_VERSAL_HUK_KEY = 11) VERSAL_AES_USER_KEY_0 (CFG_VERSAL_HUK_KEY = 12 (default)) The default configuration does not generate a secret HUK since the key is hardcoded in the driver - it however validates the algorithm; but security-wise it is not different than not enabling CFG_VERSAL_HUK and therefore using the OP-TEE provided HUK stub. Signed-off-by: Jorge Ramirez-Ortiz <jorge@foundries.io> Acked-by: Jerome Forissier <jerome.forissier@linaro.org> Acked-by: Etienne Carriere <etienne.carriere@linaro.org>