Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[pentest] OTBN FI key sideloading & load integrity #21917

Merged
merged 1 commit into from
Mar 21, 2024
Merged

[pentest] OTBN FI key sideloading & load integrity #21917

merged 1 commit into from
Mar 21, 2024

Conversation

nasahlpa
Copy link
Member

@nasahlpa nasahlpa commented Mar 8, 2024
edited
Loading

This commits adds the following two FI penetration tests for OTBN:

  • otbn.fi.load_integrity
  • otbn.fi.key_sideload

The first test aims to check whether the CRC checksum over the DMEM can be manipulated.
The second test aims to test whether a fault can manipulate a key that gets sideloaded from the key manager.

The host code is located in lowRISC/ot-sca#338

nasahlpa added a commit to nasahlpa/ot-sca that referenced this pull request Mar 13, 2024
@nasahlpa
[fi] Add OTBN command handlers
841879e 
This commit adds command handlers for the following tests:
- otbn_key_sideload
- otbn_load_integrity

The device code is located in lowRISC/opentitan#21917. The
binary was created with this PR.

Signed-off-by: Pascal Nasahl <[email protected]>
@nasahlpa nasahlpa mentioned this pull request Mar 13, 2024
Merged
@nasahlpa nasahlpa force-pushed the otbn_fi branch 2 times, most recently from 593c9b5 to d4347c5 Compare March 13, 2024 15:42
@nasahlpa nasahlpa marked this pull request as ready for review March 13, 2024 15:43
@nasahlpa nasahlpa requested a review from a team as a code owner March 13, 2024 15:43
@nasahlpa nasahlpa requested review from alees24, vogelpi, a team and johannheyszl and removed request for a team March 13, 2024 15:43
nasahlpa added a commit to nasahlpa/ot-sca that referenced this pull request Mar 13, 2024
@nasahlpa
[fi] Add OTBN command handlers
3a9d936 
This commit adds command handlers for the following tests:
- otbn_key_sideload
- otbn_load_integrity

The device code is located in lowRISC/opentitan#21917. The
binary was created with this PR.

Signed-off-by: Pascal Nasahl <[email protected]>
@nasahlpa
[pentest] OTBN FI key sideloading & load integrity
3be00e3 
This commits adds the following two FI penetration tests for OTBN:
- otbn.fi.load_integrity
- otbn.fi.key_sideload

The first test aims to check whether the CRC checksum over the
DMEM can be manipulated.
The second test aims to test whether a fault can manipulate a key
that gets sideloaded from the key manager.

The host code is located in lowRISC/ot-sca#338

Signed-off-by: Pascal Nasahl <[email protected]>
nasahlpa added a commit to nasahlpa/ot-sca that referenced this pull request Mar 14, 2024
@nasahlpa
[fi] Add OTBN command handlers
cda1e0d 
This commit adds command handlers for the following tests:
- otbn_key_sideload
- otbn_load_integrity

The device code is located in lowRISC/opentitan#21917. The
binary was created with this PR.

Signed-off-by: Pascal Nasahl <[email protected]>
@nasahlpa nasahlpa added the CherryPick:master This PR should be cherry-picked to master label Mar 14, 2024
@nasahlpa nasahlpa removed the request for review from alees24 March 15, 2024 09:51
@moidx moidx removed the request for review from a team March 15, 2024 23:25
@moidx moidx merged commit 55091e7 into lowRISC:earlgrey_es_sival Mar 21, 2024
28 of 30 checks passed
@github-actions GitHub Actions
Copy link

Successfully created backport PR for master:

@github-actions github-actions bot mentioned this pull request Mar 21, 2024
Closed
nasahlpa added a commit to nasahlpa/ot-sca that referenced this pull request Mar 21, 2024
@nasahlpa
[fi] Add OTBN command handlers
af9630a 
This commit adds command handlers for the following tests:
- otbn_key_sideload
- otbn_load_integrity

The device code is located in lowRISC/opentitan#21917. The
binary was created from lowRISC/opentitan@55091e7 with
./bazelisk.sh build //sw/device/tests/crypto/cryptotest/firmware:firmware_fpga_cw310_test_rom

Signed-off-by: Pascal Nasahl <[email protected]>
nasahlpa added a commit to nasahlpa/ot-sca that referenced this pull request Mar 21, 2024
@nasahlpa
[fi] Add OTBN command handlers
b14c4e9 
This commit adds command handlers for the following tests:
- otbn_key_sideload
- otbn_load_integrity

The device code is located in lowRISC/opentitan#21917. The
binary was created from lowRISC/opentitan@55091e7 with
./bazelisk.sh build //sw/device/tests/crypto/cryptotest/firmware:firmware_fpga_cw310_test_rom

Signed-off-by: Pascal Nasahl <[email protected]>
nasahlpa added a commit to lowRISC/ot-sca that referenced this pull request Mar 21, 2024
@nasahlpa
[fi] Add OTBN command handlers
679d99f 
This commit adds command handlers for the following tests:
- otbn_key_sideload
- otbn_load_integrity

The device code is located in lowRISC/opentitan#21917. The
binary was created from lowRISC/opentitan@55091e7 with
./bazelisk.sh build //sw/device/tests/crypto/cryptotest/firmware:firmware_fpga_cw310_test_rom

Signed-off-by: Pascal Nasahl <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@moidx moidx moidx approved these changes

@vogelpi vogelpi Awaiting requested review from vogelpi

@johannheyszl johannheyszl Awaiting requested review from johannheyszl

@timothytrippel timothytrippel Awaiting requested review from timothytrippel

Assignees
No one assigned
Labels
CherryPick:master This PR should be cherry-picked to master
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@nasahlpa @moidx