sw/device/silicon_creator/lib/drivers/keymgr.c - 3p/lowrisc/opentitan - Git at Google

 // Copyright lowRISC contributors.
 // Licensed under the Apache License, Version 2.0, see LICENSE for details.
 // SPDX-License-Identifier: Apache-2.0

 #include "sw/device/silicon_creator/lib/drivers/keymgr.h"

 #include "sw/device/lib/base/memory.h"
 #include "sw/device/silicon_creator/lib/base/abs_mmio.h"

 #include "hw/top_earlgrey/sw/autogen/top_earlgrey.h"
 #include "keymgr_regs.h"  // Generated.

 enum {
   kBase = TOP_EARLGREY_KEYMGR_BASE_ADDR,
 };

 /**
  * Checks the key manager `expected_state`.
  *
  * This function reads and clears the status and error code registers.
  *
  * @return `kErrorOk` if the key manager is at the `expected_state` and the
  * status is idle or success.
  */
 static rom_error_t check_expected_state(uint32_t expected_state,
                                         uint32_t expected_status) {
   // Read and clear the status register by writing back the read value,
   // polling until the status is non-WIP.
   uint32_t op_status;
   uint32_t op_status_field;
   do {
     op_status = abs_mmio_read32(kBase + KEYMGR_OP_STATUS_REG_OFFSET);
     abs_mmio_write32(kBase + KEYMGR_OP_STATUS_REG_OFFSET, op_status);
     op_status_field =
         bitfield_field32_read(op_status, KEYMGR_OP_STATUS_STATUS_FIELD);
   } while (op_status_field == KEYMGR_OP_STATUS_STATUS_VALUE_WIP);

   // Read and clear the error register by writing back the read value.
   uint32_t error_code = abs_mmio_read32(kBase + KEYMGR_ERR_CODE_REG_OFFSET);
   abs_mmio_write32(kBase + KEYMGR_ERR_CODE_REG_OFFSET, error_code);

   uint32_t got_state = abs_mmio_read32(kBase + KEYMGR_WORKING_STATE_REG_OFFSET);
   if (op_status_field == expected_status && error_code == 0u &&
       got_state == expected_state) {
     return kErrorOk;
   }
   return kErrorKeymgrInternal;
 }

 /**
  * Advances the sate of the key manager.
  *
  * The `check_expected_state()` function must be called before this function
  * no ensure the key manager is ready to receive op commands.
  */
 static void advance_state(void) {
   uint32_t reg = bitfield_bit32_write(0, KEYMGR_CONTROL_START_BIT, true);
   reg = bitfield_field32_write(reg, KEYMGR_CONTROL_DEST_SEL_FIELD,
                                KEYMGR_CONTROL_DEST_SEL_VALUE_NONE);
   reg = bitfield_field32_write(reg, KEYMGR_CONTROL_OPERATION_FIELD,
                                KEYMGR_CONTROL_OPERATION_VALUE_ADVANCE);
   abs_mmio_write32(kBase + KEYMGR_CONTROL_REG_OFFSET, reg);
 }

 rom_error_t keymgr_init(uint16_t entropy_reseed_interval) {
   RETURN_IF_ERROR(check_expected_state(KEYMGR_WORKING_STATE_STATE_VALUE_RESET,
                                        KEYMGR_OP_STATUS_STATUS_VALUE_IDLE));

   uint32_t reg = bitfield_field32_write(0, KEYMGR_RESEED_INTERVAL_VAL_FIELD,
                                         entropy_reseed_interval);
   abs_mmio_write32(kBase + KEYMGR_RESEED_INTERVAL_REG_OFFSET, reg);

   // Advance to INIT state.
   advance_state();
   return kErrorOk;
 }

 rom_error_t keymgr_state_advance_to_creator(
     const keymgr_binding_value_t *binding_value, uint32_t max_key_ver) {
   RETURN_IF_ERROR(
       check_expected_state(KEYMGR_WORKING_STATE_STATE_VALUE_INIT,
                            KEYMGR_OP_STATUS_STATUS_VALUE_DONE_SUCCESS));

   // Write and lock (rw0c) the software binding value. This register is unlocked
   // by hardware upon a successful state transition.
   // FIXME: Consider using sec_mmio module for the following register writes.
   for (size_t i = 0; i < ARRAYSIZE(binding_value->data); ++i) {
     abs_mmio_write32(
         kBase + KEYMGR_SW_BINDING_0_REG_OFFSET + i * sizeof(uint32_t),
         binding_value->data[i]);
   }
   abs_mmio_write32(kBase + KEYMGR_SW_BINDING_REGWEN_REG_OFFSET, 0);

   // Write and lock (rw0c) the max key version.
   abs_mmio_write32(kBase + KEYMGR_MAX_CREATOR_KEY_VER_REG_OFFSET, max_key_ver);
   abs_mmio_write32(kBase + KEYMGR_MAX_CREATOR_KEY_VER_REGWEN_REG_OFFSET, 0);

   // Advance to CREATOR_ROOT_KEY state.
   advance_state();
   return kErrorOk;
 }

 rom_error_t keymgr_state_creator_check() {
   return check_expected_state(KEYMGR_WORKING_STATE_STATE_VALUE_CREATOR_ROOT_KEY,
                               KEYMGR_OP_STATUS_STATUS_VALUE_DONE_SUCCESS);
 }
	// Copyright lowRISC contributors.
	// Licensed under the Apache License, Version 2.0, see LICENSE for details.
	// SPDX-License-Identifier: Apache-2.0

	#include "sw/device/silicon_creator/lib/drivers/keymgr.h"

	#include "sw/device/lib/base/memory.h"
	#include "sw/device/silicon_creator/lib/base/abs_mmio.h"

	#include "hw/top_earlgrey/sw/autogen/top_earlgrey.h"
	#include "keymgr_regs.h" // Generated.

	enum {
	kBase = TOP_EARLGREY_KEYMGR_BASE_ADDR,
	};

	/**
	* Checks the key manager `expected_state`.
	*
	* This function reads and clears the status and error code registers.
	*
	* @return `kErrorOk` if the key manager is at the `expected_state` and the
	* status is idle or success.
	*/
	static rom_error_t check_expected_state(uint32_t expected_state,
	uint32_t expected_status) {
	// Read and clear the status register by writing back the read value,
	// polling until the status is non-WIP.
	uint32_t op_status;
	uint32_t op_status_field;
	do {
	op_status = abs_mmio_read32(kBase + KEYMGR_OP_STATUS_REG_OFFSET);
	abs_mmio_write32(kBase + KEYMGR_OP_STATUS_REG_OFFSET, op_status);
	op_status_field =
	bitfield_field32_read(op_status, KEYMGR_OP_STATUS_STATUS_FIELD);
	} while (op_status_field == KEYMGR_OP_STATUS_STATUS_VALUE_WIP);

	// Read and clear the error register by writing back the read value.
	uint32_t error_code = abs_mmio_read32(kBase + KEYMGR_ERR_CODE_REG_OFFSET);
	abs_mmio_write32(kBase + KEYMGR_ERR_CODE_REG_OFFSET, error_code);

	uint32_t got_state = abs_mmio_read32(kBase + KEYMGR_WORKING_STATE_REG_OFFSET);
	if (op_status_field == expected_status && error_code == 0u &&
	got_state == expected_state) {
	return kErrorOk;
	}
	return kErrorKeymgrInternal;
	}

	/**
	* Advances the sate of the key manager.
	*
	* The `check_expected_state()` function must be called before this function
	* no ensure the key manager is ready to receive op commands.
	*/
	static void advance_state(void) {
	uint32_t reg = bitfield_bit32_write(0, KEYMGR_CONTROL_START_BIT, true);
	reg = bitfield_field32_write(reg, KEYMGR_CONTROL_DEST_SEL_FIELD,
	KEYMGR_CONTROL_DEST_SEL_VALUE_NONE);
	reg = bitfield_field32_write(reg, KEYMGR_CONTROL_OPERATION_FIELD,
	KEYMGR_CONTROL_OPERATION_VALUE_ADVANCE);
	abs_mmio_write32(kBase + KEYMGR_CONTROL_REG_OFFSET, reg);
	}

	rom_error_t keymgr_init(uint16_t entropy_reseed_interval) {
	RETURN_IF_ERROR(check_expected_state(KEYMGR_WORKING_STATE_STATE_VALUE_RESET,
	KEYMGR_OP_STATUS_STATUS_VALUE_IDLE));

	uint32_t reg = bitfield_field32_write(0, KEYMGR_RESEED_INTERVAL_VAL_FIELD,
	entropy_reseed_interval);
	abs_mmio_write32(kBase + KEYMGR_RESEED_INTERVAL_REG_OFFSET, reg);

	// Advance to INIT state.
	advance_state();
	return kErrorOk;
	}

	rom_error_t keymgr_state_advance_to_creator(
	const keymgr_binding_value_t *binding_value, uint32_t max_key_ver) {
	RETURN_IF_ERROR(
	check_expected_state(KEYMGR_WORKING_STATE_STATE_VALUE_INIT,
	KEYMGR_OP_STATUS_STATUS_VALUE_DONE_SUCCESS));

	// Write and lock (rw0c) the software binding value. This register is unlocked
	// by hardware upon a successful state transition.
	// FIXME: Consider using sec_mmio module for the following register writes.
	for (size_t i = 0; i < ARRAYSIZE(binding_value->data); ++i) {
	abs_mmio_write32(
	kBase + KEYMGR_SW_BINDING_0_REG_OFFSET + i * sizeof(uint32_t),
	binding_value->data[i]);
	}
	abs_mmio_write32(kBase + KEYMGR_SW_BINDING_REGWEN_REG_OFFSET, 0);

	// Write and lock (rw0c) the max key version.
	abs_mmio_write32(kBase + KEYMGR_MAX_CREATOR_KEY_VER_REG_OFFSET, max_key_ver);
	abs_mmio_write32(kBase + KEYMGR_MAX_CREATOR_KEY_VER_REGWEN_REG_OFFSET, 0);

	// Advance to CREATOR_ROOT_KEY state.
	advance_state();
	return kErrorOk;
	}

	rom_error_t keymgr_state_creator_check() {
	return check_expected_state(KEYMGR_WORKING_STATE_STATE_VALUE_CREATOR_ROOT_KEY,
	KEYMGR_OP_STATUS_STATUS_VALUE_DONE_SUCCESS);
	}