Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[pa] add RPC stubs for endorsing certs and generating LC/WAS tokens #21

Merged
merged 2 commits into from
Sep 27, 2024

Conversation

timothytrippel
Copy link
Collaborator

@timothytrippel timothytrippel commented Sep 20, 2024

This partially addresses #4 by adding RPC function stubs for:

  1. endorsing cert payloads from OT devices (during personalization),
  2. generating LC tokens (in raw and hashed forms), and
  3. generating wafer authentication secrets.

@timothytrippel timothytrippel changed the title [pa] add RPC stubs for endorsing certs and generating LC tokens for OpenTitan A1 provisioning flows [pa] add RPC stubs for endorsing certs and generating LC tokens Sep 20, 2024
@timothytrippel timothytrippel changed the title [pa] add RPC stubs for endorsing certs and generating LC tokens [pa] add RPC stubs for endorsing certs and generating LC tokens and WASs Sep 23, 2024
@timothytrippel timothytrippel changed the title [pa] add RPC stubs for endorsing certs and generating LC tokens and WASs [pa] add RPC stubs for endorsing certs and generating LC tokens and WAS Sep 23, 2024
@timothytrippel timothytrippel changed the title [pa] add RPC stubs for endorsing certs and generating LC tokens and WAS [pa] add RPC stubs for endorsing certs and generating LC/WAS tokens Sep 23, 2024
src/pa/proto/pa.proto Outdated Show resolved Hide resolved
@timothytrippel
Copy link
Collaborator Author

I consolidated the GenLcToken and GenWaferAuthSecrete RPCs into a single DeriveSymmetricKey RPC since one RPC can serve both functions.

This adds protos and a function stub for the `EndorseCerts` RPC call
which the PA must implement to support OpenTitan A1 provisioning flows.

Signed-off-by: Tim Trippel <ttrippel@google.com>
This adds protos and a function stub for the `DeriveSymmetricKey` RPC call
which the PA must implement to support OpenTitan A1 provisioning flows.
This RPC will support:
- OpenTitan lifecycle token generation (in raw and hashed form)
- OpenTitan wafer authentication secret generation.

This partially addresses lowRISC#4.

Signed-off-by: Tim Trippel <ttrippel@google.com>
@timothytrippel timothytrippel merged commit 0536d38 into lowRISC:main Sep 27, 2024
3 checks passed
@timothytrippel timothytrippel deleted the enhance-pa-proto branch September 27, 2024 18:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants