[feat] Data Vault in DCCM

This change moves the information stored in the hardware datavault into a DCCM-backed datavault. Memory protections on the DCCM datavault will be added as a separate change later.
chipsalliance · Dec 10, 2024 · a304341 · a304341
1 parent 716d695
commit a304341
Show file tree

Hide file tree

Showing 31 changed files with 448 additions and 1,022 deletions.
diff --git a/common/src/verifier.rs b/common/src/verifier.rs
@@ -25,7 +25,7 @@ pub struct FirmwareImageVerificationEnv<'a, 'b> {
     pub sha2_512_384: &'a mut Sha2_512_384,
     pub soc_ifc: &'a mut SocIfc,
     pub ecc384: &'a mut Ecc384,
-    pub data_vault: &'a mut DataVault,
+    pub data_vault: &'a DataVault,
     pub pcr_bank: &'a mut PcrBank,
     pub image: &'b [u8],
 }
@@ -110,15 +110,15 @@ impl<'a, 'b> ImageVerificationEnv for &mut FirmwareImageVerificationEnv<'a, 'b>
 
     /// Get the vendor ECC key index saved in data vault on cold boot
     fn vendor_ecc_pub_key_idx_dv(&self) -> u32 {
-        self.data_vault.ecc_vendor_pk_index()
+        self.data_vault.vendor_ecc_pk_index()
     }
 
     /// Get the vendor LMS key index saved in data vault on cold boot
     fn vendor_lms_pub_key_idx_dv(&self) -> u32 {
-        self.data_vault.lms_vendor_pk_index()
+        self.data_vault.vendor_lms_pk_index()
     }
 
-    /// Get the owner public key digest saved in the dv on cold boot
+    /// Get the owner public keys digest saved in the dv on cold boot
     fn owner_pub_key_digest_dv(&self) -> ImageDigest {
         self.data_vault.owner_pk_hash().into()
     }