Searched hist:"014975 cea46261d84a934644be2ad53bbdc0dc79" (Results 1 – 2 of 2) sorted by relevance
| /rk3399_ARM-atf/plat/arm/board/tc/ |
| H A D | plat_tc_mbedtls_config.h | 014975cea46261d84a934644be2ad53bbdc0dc79 Fri Sep 06 09:53:54 UTC 2024 Manish V Badarkhe <Manish.Badarkhe@arm.com> fix(arm): add extra hash config to validate ROTPK
The default mbedTLS configuration enables hash algorithms based on
the HASH_ALG or MBOOT_EL_HASH_ALG selected. However, the Arm ROTPK
is always embedded as a SHA256 hash in BL1 and BL2. In the future,
we may need to adjust this to use the HASH_ALG algorithm for
embedding the ROTPK hash.
As a temporary workaround, a separate mbedTLS configuration has
been created for Arm platforms to explicitly set SHA256 defines,
rather than relying on the default configuration. This adjustment
is reflected in the mbedTLS configuration file for the TC platform
as well as in the PSA Crypto configuration file.
Change-Id: Ib3128ce7b0fb5c0858624ecbc998d456968beddf
Signed-off-by: Manish V Badarkhe <Manish.Badarkhe@arm.com>
|
| /rk3399_ARM-atf/plat/arm/common/ |
| H A D | arm_common.mk | 014975cea46261d84a934644be2ad53bbdc0dc79 Fri Sep 06 09:53:54 UTC 2024 Manish V Badarkhe <Manish.Badarkhe@arm.com> fix(arm): add extra hash config to validate ROTPK
The default mbedTLS configuration enables hash algorithms based on
the HASH_ALG or MBOOT_EL_HASH_ALG selected. However, the Arm ROTPK
is always embedded as a SHA256 hash in BL1 and BL2. In the future,
we may need to adjust this to use the HASH_ALG algorithm for
embedding the ROTPK hash.
As a temporary workaround, a separate mbedTLS configuration has
been created for Arm platforms to explicitly set SHA256 defines,
rather than relying on the default configuration. This adjustment
is reflected in the mbedTLS configuration file for the TC platform
as well as in the PSA Crypto configuration file.
Change-Id: Ib3128ce7b0fb5c0858624ecbc998d456968beddf
Signed-off-by: Manish V Badarkhe <Manish.Badarkhe@arm.com>
|