git.somdevices.com Git - u-boot.git/commit

author	Breno Lima <breno.lima@nxp.com>
	Tue, 14 Nov 2017 22:10:45 +0000 (20:10 -0200)
committer	Ye Li <ye.li@nxp.com>
	Mon, 4 Dec 2017 02:26:07 +0000 (20:26 -0600)
commit	db2dbf622d3c711b2fbd85e6814992e023479dad
tree	18aa69c246bcfa1366dc6d3b12cc753a5a0de35b	tree \| snapshot
parent	4b5f448ba13e67cfc3178c34723723a15d18367d	commit \| diff

imx: imx7 Support for Manufacturing Protection

This code was originally developed by Raul Cardenas <raul.casas@nxp.com>
and modified to be applied in U-Boot imx_v2017.03.

More information about the initial submission can be seen
in the link below:
https://lists.denx.de/pipermail/u-boot/2016-February/245273.html

i.MX7D has an a protection feature for Manufacturing process.
This feature uses asymmetric encryption to sign and verify
authenticated software handled between parties. This command
enables the use of such feature.

The private key is unique and generated once per device.
And it is stored in secure memory and only accessible by CAAM.
Therefore, the public key generation and signature functions
are the only functions available for the user.

The manufacturing-protection authentication process can be used to
authenticate the chip to the OEM's server.

Command usage:

Print the public key for the device.
- mfgprot pubk

Generates Signature over given data.
- mfgprot sign <data_address> <data_size>

Signed-off-by: Raul Ulises Cardenas <raul.casas@nxp.com>
Signed-off-by: Breno Lima <breno.lima@nxp.com>
Reviewed-by: Fabio Estevam <fabio.estevam@nxp.com>
Reviewed-by: Ye Li <ye.li@nxp.com>

arch/arm/imx-common/Kconfig		diff \| blob \| history
arch/arm/imx-common/Makefile		diff \| blob \| history
arch/arm/imx-common/cmd_mfgprot.c	[new file with mode: 0644]	blob
drivers/crypto/fsl/Makefile		diff \| blob \| history
drivers/crypto/fsl/desc.h		diff \| blob \| history
drivers/crypto/fsl/fsl_mfgprot.c	[new file with mode: 0644]	blob
include/fsl_sec.h		diff \| blob \| history