[test] Add sca kmac

Add the host and test scripts for sca kmac.

Signed-off-by: Siemen Dhooghe <sdhooghe@google.com>

Author: siemen11

communication/sca_kmac_commands.py

@@ -122,7 +122,7 @@ def absorb_batch(self, num_segments):
             self.target.write(json.dumps("Batch").encode("ascii"))
             # Num_segments payload.
             time.sleep(0.01)
-            num_segments_data = {"data": [x for x in num_segments]}
+            num_segments_data = {"num_enc": num_segments}
             self.target.write(json.dumps(num_segments_data).encode("ascii"))
 
     def absorb_daisy_chain(self, text, key, num_segments):
@@ -137,15 +137,16 @@ def absorb_daisy_chain(self, text, key, num_segments):
         else:
             # KmacSca command.
             self._ujson_kmac_sca_cmd()
-            # Batch command.
+            # BatchDaisy command.
             self.target.write(json.dumps("BatchDaisy").encode("ascii"))
             # Num_segments payload.
             time.sleep(0.01)
             num_it_data = {"num_enc": num_segments}
             self.target.write(json.dumps(num_it_data).encode("ascii"))
-            message_data = {"msg": text, "msg_length": 16}
+            message_data = {"msg": text, "msg_length": len(text)}
             self.target.write(json.dumps(message_data).encode("ascii"))
-            key_data = {"key": key, "key_length": 16}
+            key_data = {"key": key, "key_length": len(key)}
+            self.target.write(json.dumps(key_data).encode("ascii"))
 
     def absorb(self, text, text_length: Optional[int] = 16):
         """ Write plaintext to OpenTitan KMAC & start absorb.

test/penetrationtests/sca/BUILD

@@ -122,6 +122,47 @@ py_binary(
     }),
 )
 
+py_binary(
+    name = "sca_kmac_test",
+    srcs = ["test_scripts/sca_kmac_test.py"],
+    testonly = True,
+    deps = [
+        ":sca_kmac_functions",
+        "//communication:dut",
+        "//communication:chip",
+        "//communication:sca_kmac_commands",
+        "//test/penetrationtests/util:utils",
+        "@rules_python//python/runfiles",
+    ],
+    data = [
+        "@lowrisc_opentitan//sw/host/opentitantool", 
+    ] +
+        select({
+        "@lowrisc_opentitan//sw/device/tests/penetrationtests/config:env_silicon_owner_gb_rom_ext": [
+            "@lowrisc_opentitan//sw/device/tests/penetrationtests/firmware:pen_test_sca_silicon_owner_gb_rom_ext",
+        ],
+        "@lowrisc_opentitan//sw/device/tests/penetrationtests/config:env_fpga_cw310_rom_with_fake_keys": [
+            "@lowrisc_opentitan//sw/device/tests/penetrationtests/firmware:pen_test_sca_fpga_cw310_rom_with_fake_keys",
+        ],
+        "@lowrisc_opentitan//sw/device/tests/penetrationtests/config:env_fpga_cw310_sival_rom_ext": [
+            "@lowrisc_opentitan//sw/device/tests/penetrationtests/firmware:pen_test_sca_fpga_cw310_sival_rom_ext",
+        ],
+        "@lowrisc_opentitan//sw/device/tests/penetrationtests/config:env_fpga_cw310_test_rom": [
+            "@lowrisc_opentitan//sw/device/tests/penetrationtests/firmware:pen_test_sca_fpga_cw310_test_rom",
+        ],
+        "@lowrisc_opentitan//sw/device/tests/penetrationtests/config:env_silicon_owner_a2_rom_ext": [
+            "@lowrisc_opentitan//sw/device/tests/penetrationtests/firmware:pen_test_sca_silicon_owner_a2_rom_ext",
+        ],
+        "@lowrisc_opentitan//sw/device/tests/penetrationtests/config:env_silicon_owner_sival_rom_ext": [
+            "@lowrisc_opentitan//sw/device/tests/penetrationtests/firmware:pen_test_sca_silicon_owner_sival_rom_ext",
+        ],
+        "//conditions:default": [
+            "@lowrisc_opentitan//sw/device/tests/penetrationtests/firmware:pen_test_sca_silicon_owner_gb_rom_ext", 
+        ],
+    }),
+)
+
+
 py_library(
     name = "sca_ibex_functions",
     srcs = ["host_scripts/sca_ibex_functions.py"],
@@ -158,4 +199,17 @@ py_library(
         "//communication:sca_trigger_commands",
         requirement("pycryptodome"),
     ],
+)
+
+py_library(
+    name = "sca_kmac_functions",
+    srcs = ["host_scripts/sca_kmac_functions.py"],
+    deps = [
+        "//communication:dut",
+        "//communication:chip",
+        "//communication:sca_kmac_commands",
+        "//communication:sca_prng_commands",
+        "//communication:sca_trigger_commands",
+        requirement("pycryptodome"),
+    ],
 )

test/penetrationtests/sca/host_scripts/sca_aes_functions.py

@@ -85,7 +85,7 @@ def char_aes_batch_data_fvsr_encrypt(opentitantool, iterations, num_segments, ma
 
     # Set the internal prng
     ot_prng = OTPRNG(target=target, protocol="ujson")
-    ot_prng.seed_prng([0,0,0,0])
+    ot_prng.seed_prng([1,0,0,0])
 
     # Generate plaintexts and keys for first batch.
     aessca.start_fvsr_batch_generate(2)
@@ -118,7 +118,7 @@ def char_aes_batch_key_fvsr_encrypt(opentitantool, iterations, num_segments, mas
 
     # Set the internal prng
     ot_prng = OTPRNG(target=target, protocol="ujson")
-    ot_prng.seed_prng([0,0,0,0])
+    ot_prng.seed_prng([1,0,0,0])
 
     # Generate plaintexts and keys for first batch.
     aessca.start_fvsr_batch_generate(1)

test/penetrationtests/sca/host_scripts/sca_hmac_functions.py

@@ -59,7 +59,7 @@ def char_hmac_random_batch(opentitantool, iterations, num_segments, trigger):
 
     # Set the internal prng
     ot_prng = OTPRNG(target=target, protocol="ujson")
-    ot_prng.seed_prng([0,0,0,0])
+    ot_prng.seed_prng([1,0,0,0])
 
     for _ in range(iterations):
         hmacsca.random_batch(num_segments, trigger)
@@ -82,7 +82,7 @@ def char_hmac_fvsr_batch(opentitantool, iterations, num_segments, trigger, key):
 
     # Set the internal prng
     ot_prng = OTPRNG(target=target, protocol="ujson")
-    ot_prng.seed_prng([0,0,0,0])
+    ot_prng.seed_prng([1,0,0,0])
 
     for _ in range(iterations):
         hmacsca.fvsr_batch(key, num_segments, trigger)

test/penetrationtests/sca/host_scripts/sca_kmac_functions.py

@@ -0,0 +1,90 @@
+from communication.sca_kmac_commands import OTKMAC
+from communication.sca_prng_commands import OTPRNG
+from communication.sca_trigger_commands import OTTRIGGER
+from communication.chip import *
+from communication.dut import DUT
+import time
+import random
+
+def char_kmac_single(opentitantool, iterations, masking, key, text):
+    target = DUT()
+    reset_target(opentitantool)
+    # Clear the output from the reset
+    target.dump_all()
+
+    kmacsca = OTKMAC(target, "ujson")
+    # Initialize our chip and catch its output
+    device_id, owner_page, boot_log, boot_measurements, version = kmacsca.init(0)
+
+    if masking:
+        lfsr_seed = [0, 1, 2, 3]
+    else:
+        lfsr_seed = [0, 0, 0, 0]
+    kmacsca.write_lfsr_seed(lfsr_seed)
+
+    kmacsca.write_key(key)
+    
+    # Set the trigger
+    triggersca = OTTRIGGER(target, "ujson")
+    triggersca.select_trigger(0)
+    
+    for _ in range(iterations):
+        kmacsca.absorb(text, len(text))
+        response = target.read_response()
+    return response
+
+def char_kmac_batch_daisy_chain(opentitantool, iterations, num_segments, masking, key, text):
+    target = DUT()
+    reset_target(opentitantool)
+    # Clear the output from the reset
+    target.dump_all()
+
+    kmacsca = OTKMAC(target, "ujson")
+    # Initialize our chip and catch its output
+    device_id, owner_page, boot_log, boot_measurements, version = kmacsca.init(0)
+
+    if masking:
+        lfsr_seed = [0, 1, 2, 3]
+    else:
+        lfsr_seed = [0, 0, 0, 0]
+    kmacsca.write_lfsr_seed(lfsr_seed)
+    
+    # Set the trigger
+    triggersca = OTTRIGGER(target, "ujson")
+    triggersca.select_trigger(0)
+    
+    for _ in range(iterations):
+        kmacsca.absorb_daisy_chain(text, key, num_segments)
+        response = target.read_response()
+    return response
+
+def char_kmac_batch(opentitantool, iterations, num_segments, masking, key, text):
+    target = DUT()
+    reset_target(opentitantool)
+    # Clear the output from the reset
+    target.dump_all()
+
+    kmacsca = OTKMAC(target, "ujson")
+    # Initialize our chip and catch its output
+    device_id, owner_page, boot_log, boot_measurements, version = kmacsca.init(0)
+
+    if masking:
+        lfsr_seed = [0, 1, 2, 3]
+    else:
+        lfsr_seed = [0, 0, 0, 0]
+    kmacsca.write_lfsr_seed(lfsr_seed)
+    
+    # Set the trigger
+    triggersca = OTTRIGGER(target, "ujson")
+    triggersca.select_trigger(0)
+
+    # Set the internal prng
+    ot_prng = OTPRNG(target=target, protocol="ujson")
+    ot_prng.seed_prng([1,0,0,0])
+
+    kmacsca.fvsr_key_set(key, len(key))
+    
+    for _ in range(iterations):
+        kmacsca.absorb_batch(num_segments)
+        response = target.read_response()
+    return response

test/penetrationtests/sca/test_scripts/sca_aes_test.py

@@ -175,7 +175,7 @@ def char_aes_batch_data_fvsr_encrypt_test(opentitantool_path, iterations, num_se
         return False
 
     # Set the syncrhonized randomness
-    batch_prng_seed = 0
+    batch_prng_seed = 1
     random.seed(batch_prng_seed)
 
     # Start with a fixed measurement
@@ -216,7 +216,7 @@ def char_aes_batch_key_fvsr_encrypt_test(opentitantool_path, iterations, num_seg
         return False
 
     # Set the syncrhonized randomness
-    batch_prng_seed = 0
+    batch_prng_seed = 1
     random.seed(batch_prng_seed)
 
     # Start with a fixed measurement

test/penetrationtests/sca/test_scripts/sca_hmac_test.py

@@ -173,7 +173,7 @@ def char_hmac_random_batch_test(opentitantool_path, iterations, num_segments):
         return False
 
     # Set the syncrhonized randomness
-    batch_prng_seed = 0
+    batch_prng_seed = 1
     random.seed(batch_prng_seed)
 
     # Generate the batch data
@@ -209,7 +209,7 @@ def char_hmac_fvsr_batch_test(opentitantool_path, iterations, num_segments):
         return False
 
     # Set the syncrhonized randomness
-    batch_prng_seed = 0
+    batch_prng_seed = 1
     random.seed(batch_prng_seed)
 
     # Generate the batch data