Skip to content

Add Vorago VA416x0 hardware TRNG support #10671

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
dgarske wants to merge 1 commit into
base: master
Choose a base branch
from
+154 −4
Draft

Add Vorago VA416x0 hardware TRNG support #10671

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions .wolfssl_known_macro_extras
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -955,6 +955,7 @@ WOLFSSL_USE_ESP32C3_CRYPT_HASH_HW
WOLFSSL_USE_FLASHMEM
WOLFSSL_USE_FORCE_ZERO
WOLFSSL_USE_OPTIONS_H
WOLFSSL_VA416X0_TRNG
WOLFSSL_VALIDATE_DH_KEYGEN
WOLFSSL_WC_SLHDSA_RECURSIVE
WOLFSSL_WC_XMSS_NO_SHA256
Expand Down
157 changes: 153 additions & 4 deletions wolfcrypt/src/random.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -88,18 +88,24 @@
* FREESCALE_RNGA: Freescale RNGA default: off
* FREESCALE_K70_RNGA: Freescale K70 RNGA default: off
* FREESCALE_RNGB: Freescale RNGB default: off
* FREESCALE_KSDK_2_0_RNGA: Freescale KSDK 2.0 RNGA default: off
* FREESCALE_KSDK_2_0_TRNG: Freescale KSDK 2.0 TRNG default: off
* MAX3266X_RNG: MAX3266X hardware RNG default: off
* FREESCALE_KSDK_2_0_RNGA: Freescale KSDK 2.0 RNGA default: off
* FREESCALE_KSDK_2_0_TRNG: Freescale KSDK 2.0 TRNG default: off
* MAX3266X_RNG: MAX3266X hardware RNG default: off
* QAT_ENABLE_RNG: Intel QAT hardware RNG default: off
* WOLFSSL_ATECC_RNG: ATECC508/608 hardware RNG default: off
* WOLFSSL_ATECC_RNG: ATECC508/608 hardware RNG default: off
* WOLFSSL_SILABS_TRNG: Silicon Labs TRNG default: off
* WOLFSSL_SCE_NO_TRNG: Disable Renesas SCE TRNG default: off
* WOLFSSL_SCE_TRNG_HANDLE: Renesas SCE TRNG handle default: off
* WOLFSSL_SE050_NO_TRNG: Disable SE050 TRNG default: off
* WOLFSSL_PSA_NO_RNG: Disable PSA RNG default: off
* HAVE_IOTSAFE_HWRNG: IoT-Safe hardware RNG default: off
* WOLFSSL_XILINX_CRYPT_VERSAL: Xilinx Versal crypto RNG default: off
* WOLFSSL_VA416X0_TRNG: Vorago VA416x0 hardware TRNG default: off
* (seeds Hash-DRBG; needs the VA416xx
* SDK header va416xx.h on the include
* path). See the wc_GenerateSeed()
* implementation below for SDK API and
* tuning details.
*/

#include <wolfssl/wolfcrypt/libwolfssl_sources.h>
Expand Down Expand Up @@ -5171,6 +5177,149 @@
return 0;
}

#elif defined(WOLFSSL_VA416X0_TRNG)
/* Vorago VA416x0 hardware TRNG (an Arm CryptoCell-style entropy block).
* Used to seed the SP800-90A Hash-DRBG (keep HAVE_HASHDRBG enabled); the
* TRNG yields only ~1.25 kb/s of entropy, so the DRBG expands it.
*
* Build: define WOLFSSL_VA416X0_TRNG, and have the VA416xx SDK header
* "va416xx.h" on the include path (provides VOR_SYSCONFIG / VOR_TRNG and
* the register field macros). There is no SDK HAL driver for the TRNG, so
* it is accessed at the register level below. The tuning macros
* (WOLFSSL_VA416X0_TRNG_SAMPLE_CNT / _MAX_RETRY / _TIMEOUT) are documented
* with the other Hardware RNG build options at the top of this file.
Comment on lines +5188 to +5190
*
* Note: the TRNG PERIPHERAL_RESET bit is active low and must be released
* or every TRNG register write is silently ignored. */
#include "va416xx.h"

/* Ring-oscillator sample count (must be non-zero). May need tuning on
* hardware: too low results in repeated autocorrelation/CRNGT errors. */
#ifndef WOLFSSL_VA416X0_TRNG_SAMPLE_CNT
#define WOLFSSL_VA416X0_TRNG_SAMPLE_CNT 1000
#endif
Comment on lines +5198 to +5200
#ifndef WOLFSSL_VA416X0_TRNG_MAX_RETRY
#define WOLFSSL_VA416X0_TRNG_MAX_RETRY 10
#endif
/* Max poll iterations waiting for one 192-bit entropy block before
* giving up (guards against a non-responsive TRNG). */
#ifndef WOLFSSL_VA416X0_TRNG_TIMEOUT
#define WOLFSSL_VA416X0_TRNG_TIMEOUT 1000000
#endif
#if WOLFSSL_VA416X0_TRNG_SAMPLE_CNT == 0
#error "WOLFSSL_VA416X0_TRNG_SAMPLE_CNT must be non-zero"
#endif
#if WOLFSSL_VA416X0_TRNG_TIMEOUT == 0
#error "WOLFSSL_VA416X0_TRNG_TIMEOUT must be non-zero"
#endif

int wc_GenerateSeed(OS_Seed* os, byte* output, word32 sz)
{
word32 i;
word32 reg;
word32 chunk;
word32 timeout;
word32 ehr[6]; /* 192-bit entropy holding register */

Check failure on line 5222 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her
int retry;
int ret;

(void)os;

if (output == NULL) {
return BUFFER_E;
}

/* serialize access to the shared TRNG hardware */
ret = wolfSSL_CryptHwMutexLock();
if (ret != 0) {
return ret;
}

/* enable the TRNG peripheral clock and release it from reset (the
* reset bit is active low: 0 = held in reset, 1 = released) */
VOR_SYSCONFIG->PERIPHERAL_CLK_ENABLE |=
SYSCONFIG_PERIPHERAL_CLK_ENABLE_TRNG_Msk;
VOR_SYSCONFIG->PERIPHERAL_RESET |=
SYSCONFIG_PERIPHERAL_RESET_TRNG_Msk;

/* mask all interrupts (poll instead) and clear any stale status */
VOR_TRNG->IMR = TRNG_IMR_EHR_VALID_INT_MASK_Msk |
TRNG_IMR_AUTOCORR_ERR_INT_MASK_Msk |
TRNG_IMR_CRNGT_ERR_INT_MASK_Msk |
TRNG_IMR_VN_ERR_INT_MASK_Msk;
VOR_TRNG->ICR = TRNG_ICR_EHR_VALID_Msk | TRNG_ICR_AUTOCORR_ERR_Msk |
TRNG_ICR_CRNGT_ERR_Msk | TRNG_ICR_VN_ERR_Msk;

/* select ring-oscillator source, set sample rate, keep health
* tests enabled (no DEBUG_CONTROL bypass) */
VOR_TRNG->CONFIG = 0;
VOR_TRNG->SAMPLE_CNT1 = WOLFSSL_VA416X0_TRNG_SAMPLE_CNT;
VOR_TRNG->DEBUG_CONTROL = 0;
Comment on lines +5253 to +5257

for (i = 0; i < sz; ) {
retry = 0;
timeout = WOLFSSL_VA416X0_TRNG_TIMEOUT;

/* start entropy collection */
VOR_TRNG->RND_SOURCE_ENABLE =
TRNG_RND_SOURCE_ENABLE_RND_SRC_EN_Msk;

for (;;) {
reg = VOR_TRNG->ISR;
if ((reg & (TRNG_ISR_AUTOCORR_ERR_Msk |
TRNG_ISR_CRNGT_ERR_Msk |
TRNG_ISR_VN_ERR_Msk)) != 0) {
/* health-test failure: stop, clear, re-collect */
VOR_TRNG->RND_SOURCE_ENABLE = 0;
VOR_TRNG->ICR = TRNG_ICR_AUTOCORR_ERR_Msk |
TRNG_ICR_CRNGT_ERR_Msk |
TRNG_ICR_VN_ERR_Msk;
if (++retry > WOLFSSL_VA416X0_TRNG_MAX_RETRY) {
ForceZero(ehr, sizeof(ehr));

Check failure on line 5278 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her

Check failure on line 5278 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her
wolfSSL_CryptHwMutexUnLock();
return RNG_FAILURE_E;
}
timeout = WOLFSSL_VA416X0_TRNG_TIMEOUT;
VOR_TRNG->RND_SOURCE_ENABLE =
TRNG_RND_SOURCE_ENABLE_RND_SRC_EN_Msk;
continue;
Comment on lines +5272 to +5285
}
Comment on lines +5269 to +5286
if ((VOR_TRNG->VALID & TRNG_VALID_EHR_VALID_Msk) != 0) {
break;
}
if (--timeout == 0) {
VOR_TRNG->RND_SOURCE_ENABLE = 0;
ForceZero(ehr, sizeof(ehr));

Check failure on line 5292 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her

Check failure on line 5292 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her
wolfSSL_CryptHwMutexUnLock();
return RNG_FAILURE_E;
}
}

/* read 192 bits of entropy (6 x 32-bit words) */
ehr[0] = VOR_TRNG->EHR_DATA0;

Check failure on line 5299 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her
ehr[1] = VOR_TRNG->EHR_DATA1;

Check failure on line 5300 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her
ehr[2] = VOR_TRNG->EHR_DATA2;

Check failure on line 5301 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her
ehr[3] = VOR_TRNG->EHR_DATA3;

Check failure on line 5302 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her
ehr[4] = VOR_TRNG->EHR_DATA4;

Check failure on line 5303 in wolfcrypt/src/random.c

View workflow job for this annotation

GitHub Actions / codespell 

ehr ==> her
ehr[5] = VOR_TRNG->EHR_DATA5;

/* reading the EHR clears EHR_VALID; stop the source and ack */
VOR_TRNG->RND_SOURCE_ENABLE = 0;
VOR_TRNG->ICR = TRNG_ICR_EHR_VALID_Msk;

chunk = sz - i;
if (chunk > sizeof(ehr)) {
chunk = sizeof(ehr);
}
XMEMCPY(&output[i], (byte*)ehr, chunk);
i += chunk;
}

ForceZero(ehr, sizeof(ehr)); /* scrub seed material from stack */
wolfSSL_CryptHwMutexUnLock();
return 0;
}

#elif defined(DOLPHIN_EMULATOR) || defined (WOLFSSL_NDS)

int wc_GenerateSeed(OS_Seed* os, byte* output, word32 sz)
Expand Down
Loading