[provisioning] check in SIVAL RMA unlock token wrapping pubkey

This pubkey is used to encrypt RMA unlock tokens during FT before saving them to the registry. Signed-off-by: Tim Trippel <[email protected]>
lowRISC · Dec 4, 2024 · f2def7c · f2def7c
1 parent 3ec1f6f
commit f2def7c
Show file tree

Hide file tree

Showing 3 changed files with 2 additions and 2 deletions.
diff --git a/sw/device/silicon_creator/manuf/keys/fake/README.md b/sw/device/silicon_creator/manuf/keys/fake/README.md
@@ -62,6 +62,6 @@ $ openssl genrsa -out rma_unlock_enc_rsa3072.pem 3072
 $ openssl rsa -in rma_unlock_enc_rsa3072.pem -pubout -out rma_unlock_enc_rsa3072.pub.pem
 
 ### Convert the PEM files to DER files:
-$ openssl rsa -in rma_unlock_enc_rsa3072.pem -outform der -out rma_unlock_enc_rsa3072..der
+$ openssl rsa -in rma_unlock_enc_rsa3072.pem -outform der -out rma_unlock_enc_rsa3072.der
 $ openssl rsa -pubin -in rma_unlock_enc_rsa3072.pub.pem -outform der -out rma_unlock_enc_rsa3072.pub.der
 ```
diff --git a/sw/device/silicon_creator/manuf/keys/sival/rma_unlock_enc_rsa3072.pub.der b/sw/device/silicon_creator/manuf/keys/sival/rma_unlock_enc_rsa3072.pub.der
diff --git a/sw/host/provisioning/orchestrator/configs/skus/sival.hjson b/sw/host/provisioning/orchestrator/configs/skus/sival.hjson
@@ -22,5 +22,5 @@
     key_type: "Token",
     key_id: "0x0"
   }
-  token_encrypt_key: "sw/device/silicon_creator/manuf/keys/fake/rma_unlock_enc_rsa3072.pub.der"
+  token_encrypt_key: "sw/device/silicon_creator/manuf/keys/sival/rma_unlock_enc_rsa3072.pub.der"
 }