Execute FIPS Self Test in Runtime #684
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
rusty1968
force-pushed
the
antrocha/fips-invoke-rom-integrity
branch
from
4f3d0b2 to
b8553bf
Compare
FerralCoder
reviewed
Aug 24, 2023
rusty1968
force-pushed
the
antrocha/fips-invoke-rom-integrity
branch
2 times, most recently
from
3ad0673 to
1e2c0ce
Compare
rusty1968
changed the title
jhand2
reviewed
Aug 29, 2023
Comment on lines
+237
to
+279
| if let SelfTestStatus::InProgress(execute) = drivers.self_test_status { | ||
| if drivers.mbox.lock() == false { | ||
| match execute(drivers) { | ||
| Ok(_) => drivers.self_test_status = SelfTestStatus::Done, | ||
| Err(e) => caliptra_drivers::report_fw_error_non_fatal(e.into()), | ||
| } | ||
| } | ||
| } |
There was a problem hiding this comment.
Is there a specific reason SelfTest can't be blocking?
There was a problem hiding this comment.
We need to “reply with data” to conform with new FIPS API (response contains header + checksum), but the mailbox SRAM would already be mutated with the image.
There was a problem hiding this comment.
The alternative approach is to make the image-verification digest generic, using the sha384 peripheral instead of sha384acc with the mailbox.
If we want to abandon calling back into ROM forever, perhaps just using the sha384 peripheral is better...
There was a problem hiding this comment.
I think we should keep this run-self-test mailbox API as is. If a future version of FIPS ever needs us to test the sha384acc peripheral with something other than empty input data we'll need a mechanism to modify the mailbox.
rusty1968
force-pushed
the
antrocha/fips-invoke-rom-integrity
branch
3 times, most recently
from
8bd794f to
6734392
Compare
rusty1968
requested review from
fdamato,
bluegate010,
mhatrevi,
ajisaxena,
vsonims,
korran and
JohnTraverAmd
as code owners
korran
added a commit
to korran/caliptra-sw
that referenced
this pull request
Aug 30, 2023
When callers from separate crates call a large generic function like verify_lms_signature_cfi(), rustc 1.70 may build multiple versions (depending on optimizer heuristics), even when all the generic parameters are identical. This is bad, as it can bloat the binary and the second copy violates the FIPS requirements that the same machine code be used for the KAT as the actual implementation. To defend against it, we provide a non-generic function that production firmware should call instead.
korran
added a commit
that referenced
this pull request
Aug 30, 2023
When callers from separate crates call a large generic function like verify_lms_signature_cfi(), rustc 1.70 may build multiple versions (depending on optimizer heuristics), even when all the generic parameters are identical. This is bad, as it can bloat the binary and the second copy violates the FIPS requirements that the same machine code be used for the KAT as the actual implementation. To defend against it, we provide a non-generic function that production firmware should call instead.
FerralCoder
previously approved these changes
Aug 31, 2023
korran
added a commit
to korran/caliptra-sw
that referenced
this pull request
Sep 5, 2023
When callers from separate crates call a large generic function like verify_lms_signature_cfi(), rustc 1.70 may build multiple versions (depending on optimizer heuristics), even when all the generic parameters are identical. This is bad, as it can bloat the binary and the second copy violates the FIPS requirements that the same machine code be used for the KAT as the actual implementation. To defend against it, we provide a non-generic function that production firmware should call instead.
korran
reviewed
Sep 5, 2023
korran
reviewed
Sep 5, 2023
| .mailbox_execute(u32::from(CommandId::SELF_TEST), payload.as_bytes()) | ||
| .unwrap_err(); | ||
|
|
||
| hw.step_until_boot_status( |
There was a problem hiding this comment.
I don't think it is realistic to expect callers to do this. Also, I'm not sure the boot status register is really intended to be used once we've fully booted.
Perhaps the mailbox response from the SELF_TEST command should explain to the user that the test is currently in progress.
Maybe it would be simpler if this were two separate commands CommandId::SELF_TEST_START and CommandID:SELF_TEST_GET_RESULT?
korran
reviewed
Sep 5, 2023
runtime/src/lib.rs
Outdated
| @@ -256,7 +291,18 @@ fn handle_command(drivers: &mut Drivers) -> CaliptraResult<MboxStatusE> { | |||
| #[cfg(feature = "test_only_commands")] | |||
| CommandId::TEST_ONLY_HMAC384_VERIFY => HmacVerifyCmd::execute(drivers, cmd_bytes), | |||
| CommandId::VERSION => FipsVersionCmd::execute(drivers), | |||
| CommandId::SELF_TEST => FipsSelfTestCmd::execute(drivers), | |||
| #[cfg(feature = "fips_self_test")] | |||
| CommandId::SELF_TEST => match drivers.self_test_status { | |||
There was a problem hiding this comment.
I don't think you should overload the SELF_TEST command for the "start" and "get result" phases. The response in both cases is an empty success result, which isn't very informative. See my comments in smoke_test.rs.
jhand2
reviewed
Sep 5, 2023
| #[cfg(feature = "fips_self_test")] | ||
| CommandId::SELF_TEST => match drivers.self_test_status { | ||
| SelfTestStatus::Idle => { | ||
| drivers.self_test_status = SelfTestStatus::InProgress(fips_self_test_cmd::execute); |
There was a problem hiding this comment.
Does this need to take a function? Or could the handler code in goto_idle just call fips_self_test_cmd::execute directly? I feel like the current code is a bit hard to follow.
rusty1968
pushed a commit
that referenced
this pull request
Sep 7, 2023
When callers from separate crates call a large generic function like verify_lms_signature_cfi(), rustc 1.70 may build multiple versions (depending on optimizer heuristics), even when all the generic parameters are identical. This is bad, as it can bloat the binary and the second copy violates the FIPS requirements that the same machine code be used for the KAT as the actual implementation. To defend against it, we provide a non-generic function that production firmware should call instead.
rusty1968
force-pushed
the
antrocha/fips-invoke-rom-integrity
branch
from
8c49288 to
dbd83b8
Compare
rusty1968
pushed a commit
that referenced
this pull request
Sep 7, 2023
When callers from separate crates call a large generic function like verify_lms_signature_cfi(), rustc 1.70 may build multiple versions (depending on optimizer heuristics), even when all the generic parameters are identical. This is bad, as it can bloat the binary and the second copy violates the FIPS requirements that the same machine code be used for the KAT as the actual implementation. To defend against it, we provide a non-generic function that production firmware should call instead.
rusty1968
force-pushed
the
antrocha/fips-invoke-rom-integrity
branch
from
dbd83b8 to
1a6b7ff
Compare
When callers from separate crates call a large generic function like verify_lms_signature_cfi(), rustc 1.70 may build multiple versions (depending on optimizer heuristics), even when all the generic parameters are identical. This is bad, as it can bloat the binary and the second copy violates the FIPS requirements that the same machine code be used for the KAT as the actual implementation. To defend against it, we provide a non-generic function that production firmware should call instead.
rusty1968
force-pushed
the
antrocha/fips-invoke-rom-integrity
branch
from
fe40e89 to
bcf5b40
Compare
mhatrevi
requested changes
Sep 7, 2023
|
@mhatrevi , ajisaxena : please give feedback on changes in crates owned by msft. |
mhatrevi
approved these changes
Sep 8, 2023
korran
added a commit
that referenced
this pull request
Sep 8, 2023
) * Decouple dependency of Kat execution from Rom * Decouple verification environment from ROM dependency * Move fips-self-test test to test crate * Use conditional compilation to build caliptra-runtime as ROM image * Postpone self test execution * Fix 1600 byte ROM size regression in #684 When callers from separate crates call a large generic function like verify_lms_signature_cfi(), rustc 1.70 may build multiple versions (depending on optimizer heuristics), even when all the generic parameters are identical. This is bad, as it can bloat the binary and the second copy violates the FIPS requirements that the same machine code be used for the KAT as the actual implementation. To defend against it, we provide a non-generic function that production firmware should call instead. * Rename goto_idle to enter_idle * Fix typo * Renamed SELF_TEST * START/GET_PROGRESS commands * kats executes before image verification * Remove persistent_data from venv * Implement FIPS commands in ROM VERSION SELF_TEST SHUTDOWN * Fix unassigned error codes * Address feedback - Remove mut from fips create_slice - Use copy_bytes_to_mbox in write_response - Restore idevid tests mistakenly removed - Add bounds checking on fmc and rt sizes * Rom itegrity test call from Runtime. * Fixes for gate --------- Co-authored-by: Anthony Rocha <anthony.rocha@amd.com> Co-authored-by: Kor Nielsen <kor@google.com>
|
changes were included with PR #693 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This commit enables Runtime to run FIPS Self Tests as follows : KATs, verification of firmware image in ICCM, and ROM integrity test.
Runtime copies image from ICCM to mailbox SRAM , so it needs to fake a send a transaction and hold the mailbox lock while the image is being validated,. It defers the actual self test execution until the mailbox lock can be acquired. SoC must "poll" for self test completion.