TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TF-RMM / tf-rmm / ecb521827d1ae96133b9feacc1a601100d6c5d8e
commitecb521827d1ae96133b9feacc1a601100d6c5d8e[log] [tgz]
authorArunachalam Ganapathy <arunachalam.ganapathy@arm.com>Fri Jul 26 16:22:51 2024 +0100
committerSoby Mathew <soby.mathew@arm.com>Fri Jun 27 15:14:49 2025 +0100
tree051dbb2abb80da65dd9275ffd303ed2aa12ff567
parentfabc0d0b77271ce592196855ac03da4c29c41f8e [diff]
feat(runtime/rmi): implement RMI_PDEV_SET_PUBKEY

Validate the public key length and key algorithm based on RMM
specification. Convert the raw public key to mbedtls ecdh or rsa context
based on key algorithm. Set public context in libspdm connection.

Compute the digest of the public key as part of attestation evidence.

This change also adds a patch to libspdm which will set the PUB_KEY to
the spdm connection in provided certificate slot id.

Supports public key from certificate that uses asym algo of type
ECDSA_P256, ECDSA_P384 or RSASSA_3072.

Signed-off-by: Arunachalam Ganapathy <arunachalam.ganapathy@arm.com>
Signed-off-by: Mate Toth-Pal <mate.toth-pal@arm.com>
Change-Id: I3d5efa12fe7c267120664ff88e81964db298a9c7
9 files changed
tree: 051dbb2abb80da65dd9275ffd303ed2aa12ff567
  1. .github/
  2. app/
  3. cmake/
  4. configs/
  5. docs/
  6. drivers/
  7. ext/
  8. lib/
  9. plat/
  10. runtime/
  11. toolchains/
  12. tools/
  13. .checkpatch.conf
  14. .clang-tidy
  15. .gitignore
  16. .gitmodules
  17. .readthedocs.yaml
  18. CMakeLists.txt
  19. DCO
  20. LICENSE
  21. requirements.txt