[pa] update proto to support Earlgrey A1 provisioning flow #4
Assignees
Labels
enhancement
New feature or request
Comments
timothytrippel
added a commit
to timothytrippel/opentitan-provisioning
that referenced
this issue
Sep 20, 2024
This adds protos and a function stub for the `GenLcToken` RPC call which the PA must implement to support OpenTitan A1 provisioning flows. This RPC function will generate test unlock/exit LC tokens and RMA tokens to inject into an OpenTitan device during provisioning. This partially addresses lowRISC#4. Signed-off-by: Tim Trippel <[email protected]>
timothytrippel
added a commit
to timothytrippel/opentitan-provisioning
that referenced
this issue
Sep 23, 2024
This adds protos and a function stub for the `GenLcToken` RPC call which the PA must implement to support OpenTitan A1 provisioning flows. This RPC function will generate test unlock/exit LC tokens and RMA tokens to inject into an OpenTitan device during provisioning. This partially addresses lowRISC#4. Signed-off-by: Tim Trippel <[email protected]>
timothytrippel
added a commit
to timothytrippel/opentitan-provisioning
that referenced
this issue
Sep 23, 2024
This adds protos and a function stub for the `GenWaferAuthSecret` RPC which the PA must implement to support OpenTitan A1 provisioning flows. This RPC function will generate a 256-bit wafer authentication secret that will be injected into an OpenTitan device during CP provisioning. This partially addresses lowRISC#4. Signed-off-by: Tim Trippel <[email protected]>
timothytrippel
added a commit
to timothytrippel/opentitan-provisioning
that referenced
this issue
Sep 26, 2024
This adds protos and a function stub for the `DeriveSymmetricKey` RPC call which the PA must implement to support OpenTitan A1 provisioning flows. This RPC will support: - OpenTitan lifecycle token generation (in raw and hashed form) - OpenTitan wafer authentication secret generation. This partially addresses lowRISC#4. Signed-off-by: Tim Trippel <[email protected]>
timothytrippel
added a commit
to timothytrippel/opentitan-provisioning
that referenced
this issue
Sep 27, 2024
This adds protos and a function stub for the `DeriveSymmetricKey` RPC call which the PA must implement to support OpenTitan A1 provisioning flows. This RPC will support: - OpenTitan lifecycle token generation (in raw and hashed form) - OpenTitan wafer authentication secret generation. This partially addresses lowRISC#4. Signed-off-by: Tim Trippel <[email protected]>
timothytrippel
added a commit
that referenced
this issue
Sep 27, 2024
This adds protos and a function stub for the `DeriveSymmetricKey` RPC call which the PA must implement to support OpenTitan A1 provisioning flows. This RPC will support: - OpenTitan lifecycle token generation (in raw and hashed form) - OpenTitan wafer authentication secret generation. This partially addresses #4. Signed-off-by: Tim Trippel <[email protected]>
timothytrippel
added a commit
to timothytrippel/opentitan-provisioning
that referenced
this issue
Sep 29, 2024
This adds KDF seed loading subcommands to support the KDF operations that will be used to generate OpenTitan Earlgrey LC tokens and Wafer Auth Secrets during provisioning. This partially addresses lowRISC#4. Signed-off-by: Tim Trippel <[email protected]>
timothytrippel
added a commit
to timothytrippel/opentitan-provisioning
that referenced
this issue
Oct 1, 2024
This adds KDF seed loading subcommands to support the KDF operations that will be used to generate OpenTitan Earlgrey LC tokens and Wafer Auth Secrets during provisioning. This partially addresses lowRISC#4. Signed-off-by: Tim Trippel <[email protected]>
timothytrippel
added a commit
that referenced
this issue
Oct 1, 2024
This adds KDF seed loading subcommands to support the KDF operations that will be used to generate OpenTitan Earlgrey LC tokens and Wafer Auth Secrets during provisioning. This partially addresses #4. Signed-off-by: Tim Trippel <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The PA proto (and thus the SPM proto) should be updated to support the Earlgrey A1 provisioning flow include (at a minimum):
DeriveSymmetricKeyRPC function stub to PA (this can be used to generate a raw token or the hashed form)EndorseCertsRPC function stub to PAThe text was updated successfully, but these errors were encountered: