kmwebnet/OpenSK
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,279 Commits 4 Branches 2 Tags
2.1
Commit Graph

15 Commits

Author SHA1 Message Date
kaczmarczyck
f25cdd6acc Tock V2 port - rebased and updated (#620) 
* Changes from #580

* fixes USB cancel panic

* style fixes

* Update src/env/tock/storage.rs

Co-authored-by: Zach Halvorsen <zhalvorsen@google.com>

---------

Co-authored-by: Zach Halvorsen <zhalvorsen@google.com>
 2023-05-05 09:55:16 +02:00
kaczmarczyck
1b360662ee Public Key plain byte encoding (#540) 
* public key is encoded in bytes

* ECDSA pubkey in uncompressed format
 2022-08-31 15:51:40 +02:00
kaczmarczyck
7e7d5e38a1 enforces Module imports granularity (#445) 2022-03-14 20:44:48 +01:00
kaczmarczyck
9b780ef7d7 New boards with layouts for dual partition setups (#387) 
* upgradable boards

* updates the install manual for proper SSL config

* storage locations from build script

* deploy script improvements

* UTC time
 2021-10-06 18:33:40 +02:00
kaczmarczyck
596b47886c Upgrade signing key generation (#379) 
* adds the upgrade signing key generation and the partition offset

* use openssl in build.rs instead
 2021-09-15 21:25:19 +02:00
kaczmarczyck
c86905f592 build.rs additions (#319) 2021-06-09 16:16:47 +02:00
Jean-Michel Picod
3c93c8ddc6 Remove compile time crypto material. 2020-12-16 18:22:15 +01:00
Guillaume Endignoux
85a34ad085 Migrate import statements and macros to Rust 2018. 2020-09-24 11:28:24 +02:00
Jean-Michel Picod
65ca227dc3 Fix reproducibility 2020-09-18 17:23:06 +02:00
Jean-Michel Picod
34f3483f9e Decoralate AAGUID and certificates 2020-09-14 14:03:57 +02:00
Jean-Michel Picod
1c87efd27a Fix clippy warnings. 
Because of libtock-rs we can't run clippy on our codebase. But it could
run at least on `build.rs`.
 2020-03-02 15:14:50 +01:00
Jean-Michel Picod
ed6f408063 Address comments on pull-request 2020-02-20 17:09:08 +01:00
Jean-Michel Picod
6c363981c4 Better handling of OpenSSL generated keys. 
It seems that ECC keys generated by OpenSSL can be between 30 and 33
bytes long whereas OpenSK code expects a fixed size of 32 bytes.
This variation could cause Travis CI to fail but also invalid ECC keys
to be flashed, causing the authenticator to not work.
 2020-02-20 15:32:37 +01:00
Jean-Michel Picod
424d1e0be8 Rename "today" to "now" to reflects resolution is seconds. 2020-02-06 10:31:00 +01:00
Jean-Michel Picod
fdbfb1be2a Change the way private key and cert are embedded. 
OpenSSL seems to serialize bigints as signed value, which means the ECC
key may end up being 33 bytes instead of the 32 bytes we're expecting,
causing build to fail.
The shell script extraction is now replaced by a build.rs script that
uses OpenSSL to extract the content and do sanity checks.
Forcing generating cryptographic materials now always generate a key and
a certificate (useful to compile/flash multiple keys without them being
considered as clones). The self-signed CA is left untouched.
 2020-02-05 18:48:28 +01:00