-
Notifications
You must be signed in to change notification settings - Fork 237
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
✨🔒 add optional on-chip debugger authentication (#1053)
- Loading branch information
Showing
26 changed files
with
712 additions
and
483 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Large diffs are not rendered by default.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,75 @@ | ||
-- ================================================================================ -- | ||
-- NEORV32 SoC - RISC-V-Compatible Authentication Module for the On-Chip Debugger -- | ||
-- -------------------------------------------------------------------------------- -- | ||
-- Note that this module (in its default state) just provides a very simple and -- | ||
-- UNSECUR authentication mechanism that is meant as an example to showcase the -- | ||
-- interface. Users should replace this module to implement a custom authentication -- | ||
-- (and SECURE) mechanism. -- | ||
-- -------------------------------------------------------------------------------- -- | ||
-- The NEORV32 RISC-V Processor - https://github.com/stnolting/neorv32 -- | ||
-- Copyright (c) NEORV32 contributors. -- | ||
-- Copyright (c) 2020 - 2024 Stephan Nolting. All rights reserved. -- | ||
-- Licensed under the BSD-3-Clause license, see LICENSE for details. -- | ||
-- SPDX-License-Identifier: BSD-3-Clause -- | ||
-- ================================================================================ -- | ||
|
||
library ieee; | ||
use ieee.std_logic_1164.all; | ||
|
||
library neorv32; | ||
use neorv32.neorv32_package.all; | ||
|
||
entity neorv32_debug_auth is | ||
port ( | ||
-- global control -- | ||
clk_i : in std_ulogic; -- global clock | ||
rstn_i : in std_ulogic; -- global reset, low-active, asynchronous | ||
-- register interface -- | ||
we_i : in std_ulogic; -- write data when high | ||
re_i : in std_ulogic; -- read data has been consumed by the debugger when high | ||
wdata_i : in std_ulogic_vector(31 downto 0); -- write data (from debugger) | ||
rdata_o : out std_ulogic_vector(31 downto 0); -- read data (to debugger) | ||
-- status -- | ||
enable_i : in std_ulogic; -- authenticator enabled when high; reset & clear authentication when low | ||
busy_o : out std_ulogic; -- authenticator is busy when high; no further read/write accesses | ||
valid_o : out std_ulogic -- high when authentication passed; unlocks the on-chip debugger | ||
); | ||
end neorv32_debug_auth; | ||
|
||
architecture neorv32_debug_auth_rtl of neorv32_debug_auth is | ||
|
||
signal authenticated : std_ulogic; | ||
|
||
begin | ||
|
||
-- Warn about Default Authenticator ------------------------------------------------------- | ||
-- ------------------------------------------------------------------------------------------- | ||
assert false report "[NEORV32] OCD: using DEFAULT authenticator. Replace by custom module." severity warning; | ||
|
||
|
||
-- Exemplary Authentication Mechanism ----------------------------------------------------- | ||
-- ------------------------------------------------------------------------------------------- | ||
dm_controller: process(rstn_i, clk_i) | ||
begin | ||
if (rstn_i = '0') then | ||
authenticated <= '0'; | ||
elsif rising_edge(clk_i) then | ||
if (enable_i = '0') then | ||
authenticated <= '0'; -- clear authentication when disabled | ||
elsif (we_i = '1') then | ||
authenticated <= wdata_i(0); -- just write a 1 to authenticate | ||
end if; | ||
end if; | ||
end process dm_controller; | ||
|
||
-- authenticator busy -- | ||
busy_o <= '0'; -- this simple authenticator is always ready | ||
|
||
-- authentication passed -- | ||
valid_o <= authenticated; | ||
|
||
-- read data -- | ||
rdata_o <= (others => '0'); -- there is nothing to read here | ||
|
||
|
||
end neorv32_debug_auth_rtl; |
Oops, something went wrong.