00:19
machinehum has quit []
00:21
ftg has quit [Read error: Connection reset by peer]
00:26
utsweetyfish has quit [Remote host closed the connection]
00:26
utsweetyfish has joined #linux-sunxi
00:28
Newbyte has joined #linux-sunxi
00:43
utsweetyfish has quit [Remote host closed the connection]
00:43
utsweetyfish has joined #linux-sunxi
01:33
Tooniis[m] has joined #linux-sunxi
01:46
apritzel has quit [Ping timeout: 480 seconds]
01:55
insep has joined #linux-sunxi
02:14
Daanct12 has joined #linux-sunxi
02:23
Jookia has quit [Remote host closed the connection]
02:51
GrantM11235[m] has joined #linux-sunxi
04:15
JohnDoe_71Rus has joined #linux-sunxi
04:47
chuang[m] has joined #linux-sunxi
04:59
hexdump01 has joined #linux-sunxi
05:01
hexdump0815 has quit [Ping timeout: 480 seconds]
05:22
aerospace[m] has joined #linux-sunxi
05:33
Jookia has joined #linux-sunxi
06:18
movedon5b2z4xywybidzannet[m] has joined #linux-sunxi
07:01
gsz has joined #linux-sunxi
07:11
<
montjoie >
I am here:) you want cryptoengine in uboot ?
07:15
sunshavi_ has joined #linux-sunxi
07:21
sunshavi has quit [Ping timeout: 480 seconds]
07:23
<
smaeul >
yes, in SPL, as it should reduce the code size compared to a software implementation. as a benchmark, here's nezha_defconfig:
07:23
<
smaeul >
text data bss dec hex filename
07:23
<
smaeul >
58582 11752 176 70510 1136e spl/u-boot-spl
07:23
<
smaeul >
and with CONFIG_SPL_FIT_SIGNATURE=y:
07:23
<
smaeul >
87310 12104 176 99590 18506 spl/u-boot-spl
07:26
<
smaeul >
we can't really afford 29K on crypto code on chips with a 32K size limit for the whole thing :)
07:30
<
gamiee >
smaeul: which crypto stuff needs to be added? RSA?
07:31
<
smaeul >
RSA + SHA256
07:31
<
smaeul >
or really, whatever algorithms we want to use, but some hash algo and some public key algo
07:31
<
gamiee >
Hmm, if there is already good implementation in Linux, I might give this a shot.
07:32
<
montjoie >
support for RSA in H3 cryptoengine was done privatly but in a horrible way
07:33
<
montjoie >
I can publish patch if someone want to polish it
07:33
<
gamiee >
Anything will be useful. But to note, I am not sure when I will be able to take look on this.
07:33
<
montjoie >
the hard part of understand how the crypto engine want data (le/BE) was done
07:34
<
montjoie >
and it was hard:(
07:45
<
smaeul >
fwiw SHA256 + RSA with CE + DMA is what SBROM uses, so that code may provide some hints
07:48
sajattack[m]1 has joined #linux-sunxi
07:58
warpme has joined #linux-sunxi
08:30
KNULLNoNeAll[m] has joined #linux-sunxi
08:32
<
Jookia >
good news, i have NAND working in u-boot. now to get DFU working :)
08:37
<
gamiee >
in BSP there is no implementation for crypto?
08:49
gsz has quit [Quit: leaving]
08:56
apritzel has joined #linux-sunxi
09:25
evgeny_boger1 has joined #linux-sunxi
09:30
evgeny_boger has quit [Ping timeout: 480 seconds]
09:39
utsweetyfish has quit [Remote host closed the connection]
09:40
utsweetyfish has joined #linux-sunxi
09:41
cperon has joined #linux-sunxi
10:46
Daaanct12 has joined #linux-sunxi
10:46
kuba2k2 has joined #linux-sunxi
10:47
Daanct12 has quit [Ping timeout: 480 seconds]
11:15
kuba2k2 has quit [Ping timeout: 480 seconds]
11:20
dsimic is now known as Guest5650
11:20
dsimic has joined #linux-sunxi
11:22
Guest5650 has quit [Ping timeout: 480 seconds]
12:11
bauen1_ has joined #linux-sunxi
12:13
bauen1 has quit [Ping timeout: 480 seconds]
12:19
bauen1_ has quit [Ping timeout: 480 seconds]
12:35
<
montjoie >
gamiee: there is allwinner's one, but for RSA I was sure their implementation was never tested
12:38
<
gamiee >
lol.... Allwinner moment
12:40
<
montjoie >
In my memory I saw RSA in CBC mode
12:41
<
montjoie >
but how to add RSA on a Linux release without support for it...
12:47
JohnDoe_71Rus has quit []
13:06
Daaanct12 has quit [Quit: WeeChat 4.1.1]
13:15
Danct12 has quit [Read error: Connection reset by peer]
14:00
evgeny_boger1 has quit [Ping timeout: 480 seconds]
14:04
warpme has joined #linux-sunxi
14:08
kuba2k2 has joined #linux-sunxi
14:15
Danct12 has joined #linux-sunxi
14:18
bauen1 has joined #linux-sunxi
14:25
obbardc has joined #linux-sunxi
14:39
bauen1_ has joined #linux-sunxi
14:41
bauen1 has quit [Ping timeout: 480 seconds]
15:05
bauen1 has joined #linux-sunxi
15:07
bauen1_ has quit [Ping timeout: 480 seconds]
15:24
tlwoerner has quit [Quit: Leaving]
15:25
tlwoerner has joined #linux-sunxi
16:00
JohnDoe_71Rus has joined #linux-sunxi
16:18
utsweetyfish has quit [Remote host closed the connection]
16:20
utsweetyfish has joined #linux-sunxi
16:30
jernej has joined #linux-sunxi
16:50
kuba2k2 has quit [Ping timeout: 480 seconds]
17:26
apritzel has quit [Ping timeout: 480 seconds]
17:34
bauen1 has quit [Ping timeout: 480 seconds]
17:41
evgeny_boger has joined #linux-sunxi
17:50
apritzel has joined #linux-sunxi
18:06
apritzel has quit [Ping timeout: 480 seconds]
19:21
evgeny_boger has quit [Ping timeout: 480 seconds]
19:27
evgeny_boger has joined #linux-sunxi
19:29
JohnDoe_71Rus has quit []
19:46
apritzel has joined #linux-sunxi
19:50
evgeny_boger has quit [Ping timeout: 480 seconds]
20:05
aperezdc has joined #linux-sunxi
20:06
aperezdc is now known as Guest5690
20:07
Guest5690 is now known as aperezdc
20:52
warpme has joined #linux-sunxi
21:43
error2[m] has joined #linux-sunxi
22:15
<
apritzel >
smaeul: I sent a PR with the two A523 BROM parts to your sunxi-blobs repo, cheekily to get another pair of eyes on the "switch to secure state" problem ;-)
22:16
<
apritzel >
because that blocks further progress with FEL, since I need to be in secure state to do the RMR and reset to AArch64
22:24
<
smaeul >
I'll look at it if I get a chance, which may not be for a couple of weeks (though anybody else is free to investigate as well)
22:37
<
apritzel >
sure, thanks!
23:32
utsweetyfish has quit [Remote host closed the connection]
23:34
utsweetyfish has joined #linux-sunxi
23:40
dittid[m] has joined #linux-sunxi