Conversation

chompie
@chompie1337
Google promised to open source Citadel, the firmware for the Pixel’s Titan M security chip, 2 years ago. Doing some light RE, it’s likely the code is a branch of Chromium EC project. Has modules for AVB, privkey storage/crypto, OEM un/locking. Confused why they haven’t yet?
1
28
Tim Michaud
@TimGMichaud
Replying to
@chompie1337
and
@dwizzzleMSFT
IANAL; but could there be other parties involved that forbid exposing the source? I know in the jailbreak scene certain binaries would never be opensourced due to licensing issues, so maybe something similar happened here?
1
chompie
@chompie1337
Replying to
@TimGMichaud
and
@dwizzzleMSFT
Then why promise to open source? Iirc they again said they were “working on” getting it open sourced after a serious flaw in the crypto implementation was reported early this year. Nothing yet tho 🤷🏻‍♀️
2
1
Daniel Micay
@DanielMicay
Replying to
@chompie1337
@TimGMichaud
and
@dwizzzleMSFT
Could have been a misunderstanding from people who didn't realize opentitan.org is a distinct project that will at most be the basis for a future iteration of it. I don't really think it was a misunderstanding though. Pixel 2 security chip applet sources are in AOSP...
opentitan.org
Open source silicon root of trust (RoT) | OpenTitan
The first open source project building a transparent, high-quality reference design and integration guidelines for silicon root of trust (RoT) chips
Twitter Web App
2
Likes
Daniel Micay
@DanielMicay
Replying to
@DanielMicay
@chompie1337
and 2 others
I don't understand the delay and they haven't explained what's going on with it. BTW, I wouldn't describe the bug I think you're talking about as a serious flaw. It's clearly the VM aborting and returning a sentinel value. You can see that it's a standard hard-wired sentinel.
2
2
Daniel Micay
@DanielMicay
Replying to
@DanielMicay
@chompie1337
and 2 others
The post made it seem like a serious cryptographic flaw but what really happened is they used a set of options that wasn't properly supported and the VM aborted and returned an error which wasn't properly passed along. It's wrong and needed fixing but doubt that it's exploitable.
1
1
Show replies
chompie
@chompie1337
Replying to
@DanielMicay
@TimGMichaud
and
@dwizzzleMSFT
Where? The only thing I’ve seen is the source for the services that communicate to citald via vndbinder. Then requests to the applets are sent via spi driver in the Linux kernel. The sources for the applets running on the chip itself wouldn’t be in AOSP?
1
Daniel Micay
@DanielMicay
Replying to
@chompie1337
@TimGMichaud
and
@dwizzzleMSFT
I'm talking about the earlier generation Pixel 2 security chip before the Titan M. android.googlesource.com/platform/exter are the sources for Weaver which is all they ended up providing in production on that generation. android.googlesource.com/platform/exter didn't actually end up being used in production.
2
Show replies