Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bootutil: Add support for Ed25519 using SHA-512 with mbedTLS #2066

Merged
merged 2 commits into from
Oct 10, 2024
Merged

bootutil: Add support for Ed25519 using SHA-512 with mbedTLS #2066

merged 2 commits into from
Oct 10, 2024

Conversation

taltenbach
Copy link
Contributor

This MR adds in the bootloader support for Ed25519 using SHA-512 with mbedTLS. To do so, this MR:

  • Adds support for SHA-512 with mbedTLS.
  • Adds support for images hashed with SHA-512 in the Ed25519 verification routine.

The changes were tested on an STM32F4 MCU, with both SHA-256 and SHA-512 configuration.

Relates to #2048.

@taltenbach
bootutil: Add SHA-512 support with mbedTLS
553af34 
The use of SHA-512 was only available with PSA. This commit adds support
for SHA-512 when using mbedTLS.

Signed-off-by: Thomas Altenbach <thomas.altenbach@legrand.com>
@taltenbach
bootutil: Add SHA-512 support to Ed25519
e051c46 
When Ed25519 signatures are used, the bootutil_verify_sig responsible
for verifying a signature was expecting as argument the SHA-256 digest
of the firmware image. This commit slightly modifies this routine to
make possible to use Ed25519 with SHA-512 digests.

Signed-off-by: Thomas Altenbach <thomas.altenbach@legrand.com>
@taltenbach taltenbach mentioned this pull request Sep 19, 2024
Merged
@de-nordic de-nordic added the crypto Encryption support label Oct 2, 2024
@d3zd3z d3zd3z merged commit a5f28c1 into mcu-tools:main Oct 10, 2024
58 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@de-nordic de-nordic de-nordic approved these changes

@d3zd3z d3zd3z d3zd3z approved these changes

@nvlsianpu nvlsianpu Awaiting requested review from nvlsianpu

Assignees
No one assigned
Labels
crypto Encryption support
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@taltenbach @d3zd3z @de-nordic