- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
I implemented DFU BLE in MTB for PSOC6 with CRC app verify.
I want to enable signature verification like SHA256 encrypted with RSAES-PKCS.
Do an example exists ? How I can enable this functionnality ?
Thank you for your support,
Kind regards
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @PSOC6_dev
Please find attached zip containing a code example that can help you with.
There is a Cy_DFU_ValidateApp() function present in bootloader_cm4/cy_dfu_user.c which contains the functionality to verify the signature using RSASSA-PKCS.
This code example is built for target CY8CPROTO-062-4343W, you can use the library manager to set the target on which you are working.
Let me know if fulfils your need.
Thanks & Regards,
Shreya
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
Can you please tell me the BSP version you're using?
Also, please let me know if this is the "example" that you're using.
Thanks,
Shreya
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @Shreya_S,
I use v3.1.0 of CY8CKIT-062-BLE BSP on MTB2.4
Yes, this is the example i use
Thank you for your support,
Kind regards,
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello there,
The example "Basic Device Firmware Upgrade" you are using only supports application verification using CRC32.
I suggest you use "Security App" example as it explains: how to create, verify signature of an existing image as well as Upgrade image (By default it uses ECC, but it also supports RSA).
I hope this helps.
Thanks & Regards,
Shreya
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @Shreya_S
Thank you for your feedback.
I do not use MCUboot, I use only Cypress DFU lib.
For the bootloader the integrity of the bootloader is checked throught a SHA256 encrypted with RSASSA-PKCS signature.
I want to implement exactly the same thing for user app1. Do you have a Cy_DFU_ValidateApp() implementation according to cymcuelftool SHA256 encrypted with RSASSA-PKCS signature generation ?
Thank you for your support,
Kind regards,
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @PSOC6_dev
Please find attached zip containing a code example that can help you with.
There is a Cy_DFU_ValidateApp() function present in bootloader_cm4/cy_dfu_user.c which contains the functionality to verify the signature using RSASSA-PKCS.
This code example is built for target CY8CPROTO-062-4343W, you can use the library manager to set the target on which you are working.
Let me know if fulfils your need.
Thanks & Regards,
Shreya
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @Shreya_S
Thank you for your feedback!
I'll integrate this in next days and I keep you informed
Regards,
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi there,
Please let me know if this solution has worked for you. If yes, please accept the solution. 🙂
Thanks & Regards,
Shreya
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content