mirrors/pico-keys-sdk
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add command to enable secure boot and secure lock via rescue.

Browse source 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
This commit is contained in:
Pol Henarejos 2024-11-08 19:24:33 +01:00
parent daddb7fa57
commit 37e3058015
No known key found for this signature in database
GPG key ID: C0095B7870A4CCD3
1 changed files with 18 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
src/rescue.c
View file

@ -18,6 +18,7 @@
#include "pico_keys.h"
#include "apdu.h"
#include "pico_keys_version.h"
#include "otp.h"
int rescue_process_apdu();
int rescue_unload();
@ -77,10 +78,27 @@ int cmd_write() {
return SW_OK();
}
int cmd_secure() {
if (apdu.nc != 0) {
return SW_WRONG_LENGTH();
}
uint8_t bootkey = P1(apdu);
bool secure_lock = P2(apdu) == 0x1;
int ret = otp_enable_secure_boot(bootkey, secure_lock);
if (ret != 0) {
return SW_EXEC_ERROR();
}
return SW_OK();
}
#define INS_WRITE 0x1C
#define INS_SECURE 0x1D
static const cmd_t cmds[] = {
{ INS_WRITE, cmd_write },
{ INS_SECURE, cmd_secure },
{ 0x00, 0x0 }
};