Make the libcaliptra test verify LMS signatures by default.

Previously LMS signatures were ignored. This enables `lms_verify` in the fuse register by default. It can be skipped by defining an environment variable. For example: ``` SKIP_LMS_VERIFY=1 make run ```
chipsalliance · Jan 31, 2025 · 5dce932 · 5dce932
1 parent f17528a
commit 5dce932
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 0 deletions.
diff --git a/libcaliptra/examples/generic/main.c b/libcaliptra/examples/generic/main.c
@@ -34,6 +34,10 @@ static void set_fuses(test_info* info)
         fuses->owner_pk_hash[x] = __builtin_bswap32(((uint32_t*)opk_hash)[x]);
         fuses->key_manifest_pk_hash[x] = __builtin_bswap32(((uint32_t*)vpk_hash)[x]);
     }
+
+#if !defined(SKIP_LMS_VERIFY)
+    fuses->lms_verify = true;
+#endif
 }
 
 static struct caliptra_buffer read_file_or_exit(const char* path)

diff --git a/libcaliptra/examples/hwmodel/Makefile b/libcaliptra/examples/hwmodel/Makefile
@@ -23,6 +23,9 @@ BUILDER_PATH = ../../../builder
 # main sources don't need a command line.
 DEFINES  = -DROM_PATH=\"$(ROM_FILE)\"
 DEFINES += -DFW_PATH=\"$(FW_FILE)\"
+ifdef SKIP_LMS_VERIFY
+	DEFINES += -DSKIP_LMS_VERIFY=\"$(SKIP_LMS_VERIFY)\"
+endif
 
 # HW MODEL
 HWMODEL_DIR = $(OUTPUT_DIR)