Entropy Stack update #153
Open
Entropy Stack update #153
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
fc891c7 to
5b61a89
Compare
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
5b61a89 to
53d3431
Compare
loiclefort
reviewed
Mar 26, 2025
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
53d3431 to
5de8cd8
Compare
|
Updated EDN: GENERATE command header was not parsed in |
loiclefort
approved these changes
Mar 26, 2025
|
It's going to take me a while to mentally digest all of the changes in this PR, so a review from me might take a bit, but I don't want to delay this too much. Maybe we could occasionally do review meetings where we go over the code together? |
|
|
Some progress since last draft:
|
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
5de8cd8 to
b5013e5
Compare
|
It might be worth splitting this PR once entropy test are passing. Entropy tests depend on so many IPs that is difficult to predict the proper set of IPs to update for now. |
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
b5013e5 to
057b9fe
Compare
loiclefort
approved these changes
Mar 28, 2025
This departs from QEMU's fifo8 implementation, but enables to use the OT FIFO from a const context. Signed-off-by: Emmanuel Blot <[email protected]>
…blic Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
057b9fe to
1540612
Compare
|
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
2 times, most recently
from
c5f0586 to
cf2d9cc
Compare
loiclefort
approved these changes
Mar 28, 2025
AlexJones0
reviewed
Mar 28, 2025
There was a problem hiding this comment.
I'm not very familiar with the EDN and CSRNG and so can't provide a thorough review on the implementation specifics (I did find the CSRNG changes easier to review though); I've left some comments on things I noticed going over the code. On the whole the changes all look great, however, and it's nice to see more EDN/CSRNG tests passing.
Aside: it is surprising to me to see entropy_src_kat_test failing, since I have it noted as passing - I went and ran it on master on OpenTitan and to my surprise it is failing! Going back to an older OpenTitan commit 32b1337496 and running ./bazelisk.sh test //sw/device/tests:entropy_src_kat_test_sim_qemu_rom_with_fake_keys it clearly is passing, so there has been a regression at some point, though not in this PR (so it shouldn't block merging). I would guess that the implementation of this test changed during the Multitop top-level-test porting efforts, in a way that is incompatible with the QEMU model (or maybe QEMU was bumped since then and a previous change broke this)?
This enables runnning applications built for Verilator simulator on QEMU. Signed-off-by: Emmanuel Blot <[email protected]>
…xecution. Tracing execution massively slows down OTBN execution. Add a new option to trace execution, while leaving logfile option to only report execution errors when trace logging is not enabled. Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
OT_SENSOR IP is no longer present on Darjeeling Signed-off-by: Emmanuel Blot <[email protected]>
OT Sensor IP is top-specific Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
A new command should never be emitted if there is a previous one on going. Remove useless command buffer wipes. Signed-off-by: Emmanuel Blot <[email protected]>
EDN_ENABLE is not a boolean, but a multibit boolean. Signed-off-by: Emmanuel Blot <[email protected]>
…mentation Signed-off-by: Emmanuel Blot <[email protected]>
…icit class name QEMU assumes that the class name should be built from the instance name, however this is not even used constantly across QEMU files. Only when abstract classes are used this auto naming scheme is applied. Redefine two similar macros (from the original ones) to provide the actual object class name. Signed-off-by: Emmanuel Blot <[email protected]>
This naming better follows other OT class naming conventions. Signed-off-by: Emmanuel Blot <[email protected]>
…ble implementation Signed-off-by: Emmanuel Blot <[email protected]>
Upon reset the data will be invalid with a new EDN request pending. Signed-off-by: Emmanuel Blot <[email protected]>
1. inverted detection of a previous EDN connection 2. the filler_fn function now tracks whether an EDN is connected or not, the instantiation status was a left over from the initial implementation Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
When an ELF file is used to store an app in the flash image, and not binary physical file exists, the binary data is automatically generated but no match should be attempted between the ELF metadata and the generated binary content. Signed-off-by: Emmanuel Blot <[email protected]>
The documented rules 1. ENTROPY_SRC may only be disabled if CSRNG is disabled. 3. Once disabled, CSRNG may only be re-enabled after ENTROPY_SRC has been disabled and re-enabled. no longer apply: remove the related checks. Signed-off-by: Emmanuel Blot <[email protected]>
They had not been updated when registers had. Signed-off-by: Emmanuel Blot <[email protected]>
FIPS status should be reset after each entropy packet is delivered to the OTBN core. Signed-off-by: Emmanuel Blot <[email protected]>
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
cf2d9cc to
b77932f
Compare
|
#153 (comment) not yet addressed (TBD next week). |
It turns out that the generation identifier is no longer needed with the latest Entropy Src IP. |
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
b77932f to
22f23c1
Compare
Get rid of the generation identifier. This mechanism had initially be implemented to verify early EarlGrey entropy source constraint, quoting: "CSRNG may only be enabled if ENTROPY_SRC is enabled. Once disabled, CSRNG may only be re-enabled after ENTROPY_SRC has been disabled and re-enabled." This constraint has been removed in recent EarlGrey implementations while Darjeeling implementation did not follow this constraint, as it did not make use of the entropy source IP. Generation number is therefore removed; get_random_generation API is no longer needed, neither is the genid argument of get_random_values. Error management can be simplified accordingly. Signed-off-by: Emmanuel Blot <[email protected]>
Signed-off-by: Emmanuel Blot <[email protected]>
rivos-eblot
force-pushed
the
dev/ebl/entropy_stack_update
branch
from
22f23c1 to
3838be9
Compare
loiclefort
approved these changes
Mar 31, 2025
AlexJones0
approved these changes
Apr 1, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This update contains mostly EDN IP update which has been heavily reworked based on HW simulation (Verilator traces) rather than on EDN documentation, as it has been done for the initial implementation.
It also contains several updates and fixes for the CSRNG and EntropySrc, but those IPs still require some updates, which will be delivered in a forth coming PR.