Added Support for Toshiba TMPM46B #5902
Conversation
|
Automatic CI verification build not done, please verify manually. |
| int trng_get_bytes(trng_t *obj, uint8_t *output, size_t length, size_t *output_length) | ||
| { | ||
| uint32_t Data[length]; | ||
| int timeout = 10; |
There was a problem hiding this comment.
how is t his number calculated ? why 10?
There was a problem hiding this comment.
The entropy seed generator (ESG) is a circuit that generates a 512-bit entropy seed using a ring oscillator. When the ESG core ends the operation, it outputs an interrupt. Interrupt generation can be checked by polling of the interrupt flag. Then an entropy seed can be read from 16 blocks (ESGBLK00 to 15)
Timeout 10 is used for 10 iteration to confirm the ESG operation is completed.
- Sometimes function execution completes before generating interrupts and read wrong value.
- Timeout will help to return from function, even interrupts are not generated within 10 iteration.
We will also try to change the approach.
There was a problem hiding this comment.
@hanno-arm Please review trng addition
|
|
||
| void hal_deepsleep(void) | ||
| { | ||
| hal_sleep(); |
There was a problem hiding this comment.
why deepsleep = sleep here?
There was a problem hiding this comment.
TMPM46BF10FG does not support the low power consumption mode configured with the SLEEPDEEP bit in the Cortex-M4 core.
Setting the bit of the system control register is prohibited.
There was a problem hiding this comment.
OK Thanks, if this is captured in git log or can be here in the code, so others wont be surprised?
There was a problem hiding this comment.
Hi @0xc0170, added the reason as code comments. Thank you.
| #include "tmpm46b_tmrb.h" | ||
|
|
||
| #define MAX_COUNTER_16B 0xFFFF | ||
| TMRB_InitTypeDef m_tmrb; |
| 20, 24, 32, 48, 80, 144, 272, 528 | ||
| }; // SCK Divider value table | ||
|
|
||
| I2C_clock_setting_t clk; |
There was a problem hiding this comment.
why these 2 are not static as well?
I might have missed the test results shared above. The failure MBED 11 was resolved recently, should be also green ! Travis failed, this was also fixed. Can you please rebase from master, to get both fixes in? |
We checked MBED 11 and result is OK.
Rebased from master. |
|
|
||
| int trng_get_bytes(trng_t *obj, uint8_t *output, size_t length, size_t *output_length) | ||
| { | ||
| uint32_t Data[length]; |
There was a problem hiding this comment.
The length parameter is the maximum amount of entropy in bytes that may be written to output, while Data has four times that size.
| // Get the calculation result | ||
| if(CompleteFlag == 1){ | ||
| CompleteFlag = 0; | ||
| ESG_GetResult(Data); |
There was a problem hiding this comment.
This might overflow the Data buffer if length < 16.
| CompleteFlag = 0; | ||
| ESG_GetResult(Data); | ||
| for(i = 0U; i < length; i++){ | ||
| output[i] = Data[i]; |
There was a problem hiding this comment.
At most 16 bytes have been written to Data, but this loop reads its entire contents of user-specified size length, filling the remainder of output with non-random data.
There was a problem hiding this comment.
The entropy gathering function trng_get_bytes needs to be rewritten. The internal data buffer should have a static size of 64 bytes - the chunk size in which the TRNG returns the entropy - and only the amount of entropy gathered should be reported back to the user. Since it is not mandatory to return as many bytes as the user has requested, this leaves the option of either looping or always returning at most 16 bytes. Also, the stack buffer temporarily holding the entropy must be zeroized before the function returns.
|
Hi @hanno-arm, rewritten the entropy gathering function trng_get_bytes based on your comments. |
|
Hi @ganesh-ramachandran, thank you for your rework! Could you point me to the technical reference manual for the board? |
Hi @hanno-arm, Please find the datasheet and schematics at https://os.mbed.com/platforms/TMPM46B/#technical-reference |
|
ARM Internal Ref: IOTSSL-2073 |
|
@ganesh-ramachandran As TRNG is waiting for mbedtls approval, it might be faster to leave TRNG here and send PR adding target support separately? Or leave it as it is. |
| ESG_SetLatchTiming(ESG_LATCH_TIMING_1); | ||
| // Get latchtiming value | ||
| latchtiming = ESG_GetLatchTiming(); | ||
| if (Fintming >= 512U * (latchtiming + 1U) + 3U) { |
There was a problem hiding this comment.
@ganesh-ramachandran Could you explain the rationale behind this check? As far as I see, it passes if and only if latchtiming is zero ( == ESG_LATCH_TIMING_1), so why not check for this directly?
There was a problem hiding this comment.
Yes, we understood and removed the extra checking.
| } else { | ||
| // Do nothing | ||
| } | ||
| } |
There was a problem hiding this comment.
Unfortunately, the current API doesn't allow trng_init to have a return value to signal failure (that has been resolved in Mbed TLS 2.7.0 and will hopefully soon be merged into Mbed OS). Still, I'd like to seek for a solution which allows to distinguish initialization failure from success, in order to not have the TRNG driver potentially output non-random data because of unnoticed failure during initialization.
Suggestion: Currently, the TRNG context trng_s consists of an unused dummy field only. This can be changed to a boolean flag indicating successful initialization, which is set on a successful call to trng_init, cleared on a call to trng_free, and checked for in trng_get_bytes.
There was a problem hiding this comment.
Thank you for the suggestion. we have added the errors handling during TRNG initialization to prevent accidental output of non-random data.
| *output_length = 0; | ||
| (void)obj; | ||
|
|
||
| while (TSB_ESG->ST == ESG_BUSY_SET) { |
There was a problem hiding this comment.
Why are we polling on TSB_ESB->ST here instead of CompleteFlag, which is what the ESG's IRQ handler sets?
There was a problem hiding this comment.
TSB_ESB->ST is the status register and it indicate the process is complete or not.
While polling IRQ handler flag(CompleteFlag), interrupt will generate only once.
Hence if application will try to call two times the trng_get_bytes() function it will freeze the application. To avoid this scenario we poll TSB_ESB->ST and reconfirm IRQ handler flag (CompleteFlag) is set or not.
Now we changed to polling on IRQ handler flag(CompleteFlag), because we confirmed the upper layer file(mbed_trng.c) always calls trng_get_bytes() function in between TRNG init and TRNG free.
| CompleteFlag = 0; | ||
| // Get the calculation result | ||
| ESG_GetResult((uint32_t*)random); //512-bit entropy | ||
| for (i = 0; (i < 64) && (*output_length < length); i++) { |
There was a problem hiding this comment.
Please use i < length here instead of *output_length < length, and set *output_length only once at the end of the loop.
There was a problem hiding this comment.
Yes, modified as per your suggestion.
| } | ||
|
|
||
| // initialize us_ticker | ||
| void us_ticker_init(void) |
There was a problem hiding this comment.
I've noticed in the init interrupts for HAL. you are not using NVIC_SetVector - dynamic vectors?
See https://docs.mbed.com/docs/mbed-os-handbook/en/5.2/advanced/porting_guide/ (Bootstrap section)
There was a problem hiding this comment.
@0xc0170, Added NVIC_SetVector - dynamic vectors
| const ticker_info_t* us_ticker_get_info() | ||
| { | ||
| static const ticker_info_t info = { | ||
| 1875000,//1875000, |
There was a problem hiding this comment.
are there tabs as this line is misaligned with line below?
| // Interrupt clearing | ||
| ret = ESG_ClrInt(); | ||
| if (ret == ERROR) | ||
| { |
There was a problem hiding this comment.
{ one the same line (line 74 as well here)
ghost
dismissed
|
/morph build |
Build : SUCCESSBuild number : 1616 Triggering tests/morph test |
|
@ganesh-ramachandran thanks for incorporating the comments. Approved. |
Exporter Build : SUCCESSBuild number : 1245 |
Test : SUCCESSBuild number : 1398 |
Description
Add mbed support for TOSHIBA's TMPM46B board.
Status
READY
Migrations
NO
Test Status
Pass: Mbed SDK automated test suite and greentea with ARM, GCC_ARM and IAR toolchains.
M46B_GreenteaAutomated_TestResults.txt
M46B_SingleAutomated_TestResults.txt