Skip to content

[RTL, RDL, DOC] add aggregate error register connections at ss top #271

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
bharatpillilli merged 12 commits into from
Apr 12, 2025
Merged

[RTL, RDL, DOC] add aggregate error register connections at ss top #271

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
1ed3119
add aggregate error register connections at ss top
Nitsirks Apr 10, 2025
0967e8e
add descriptions to aggregate error table in hardware specification
Nitsirks Apr 11, 2025
4ace8ac
fix line breaks inside table
Nitsirks Apr 11, 2025
9da4cc9
fix link to caliptra error handling
Nitsirks Apr 11, 2025
043f4e5
MICROSOFT AUTOMATED PIPELINE: Stamp 'user/dev/michnorris/agg_error_co…
Nitsirks Apr 11, 2025
3ff1e46
LCC Tests (#260)
nasahlpa Apr 9, 2025
3a7d92b
[fuse_ctrl, test] caliptra_ss_fuse_ctrl_bus_ecc_error (#261)
andrea-caforio Apr 9, 2025
f648eef
[RTL] Connect MCU AXI signals AxCACHE, AxPROT, AxQOS, AxREGION to top…
calebofearth Apr 9, 2025
63e24d2
[RTL][VAL] Add SOC BFM, MCU SRAM Exec Test, and AXI USER RO registers…
clayton8 Apr 10, 2025
36fd57a
Merge branch 'main' into user/dev/michnorris/agg_error_connections
Nitsirks Apr 11, 2025
5dab2bc
Merge branch 'main' into user/dev/michnorris/agg_error_connections
Nitsirks Apr 11, 2025
604c1e4
MICROSOFT AUTOMATED PIPELINE: Stamp 'user/dev/michnorris/agg_error_co…
bharatpillilli Apr 12, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflow_metadata/pr_hash
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1 +1 @@
64493d2343dc772a4b45093173182d340aff16da171a0f3ee8cb4ef6d7c802ad6be15409444c707f2345b11063eaa624
cc6f0ba0d9d73005640a2a8b9170976922320a504cecf11e087acd9a41d475f1edae2e326d1363eca081ecdb3afdfc4a
2 changes: 1 addition & 1 deletion .github/workflow_metadata/pr_timestamp
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1 +1 @@
1744401255
1744455972
16 changes: 16 additions & 0 deletions docs/CaliptraSSHardwareSpecification.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1321,6 +1321,22 @@ MCI aggregates the error information (Fatal, Non-Fatal errors from Caliptra, any

![](images/MCI-error-agg.png)

Aggregate error register assignments are documented in the register specification: **TODO:** Add a link to rdl -> html file

Regions of 6 bits in the aggregate error registers are reserved for each component.
MCU and Caliptra errors are connected to appropriate severity levels.
Lifecycle controller, fuse controller and I3C are connected to both severities.
Masks are used to set the severity of each error for these components. These can be configured by integrators, ROM, or runtime firmware.

| **Error Register Bits** | **Component** | **Default Error Severity** | **Description** |
| :--------- | :--------- | :--------- |:--------- |
| Aggregate error[5:0] | Caliptra core | Both | [Caliptra errors](https://github.com/chipsalliance/Caliptra/blob/main/doc/Caliptra.md#error-reporting-and-handling) |
| Aggregate error[11:6] | MCU | Both | DCCM double bit ECC error is fatal <br> DCCM single bit ECC error is non-fatal |
| Aggregate error[17:12] | Life cycle controller | Fatal | [LCC alerts](https://opentitan.org/book/hw/ip/lc_ctrl/doc/interfaces.html#security-alerts) |
| Aggregate error[23:18] | OTP Fuse controller | Fatal | [FC alerts](https://opentitan.org/book/hw/top_earlgrey/ip_autogen/otp_ctrl/doc/interfaces.html#security-alerts) |
| Aggregate error[29:24] | I3C | Non-Fatal | Peripheral reset and escalated reset pins from I3C <br> **TODO:** Add a link to I3C doc |
| Aggregate error[31:30] | Spare bits | None | Spare bits for integrator use |

MCI also generates error signals for its own internal blocks, specifically for MCU SRAM & mailboxes double bit ECC and WDT.

![](images/MCI-internal-error.png)
Expand Down
35 changes: 29 additions & 6 deletions src/integration/rtl/caliptra_ss_top.sv
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -245,8 +245,16 @@ module caliptra_ss_top
);

logic [pt.PIC_TOTAL_INT:1] ext_int;
logic [31:0] agg_error_fatal;
logic [31:0] agg_error_non_fatal;
logic timer_int;

logic mcu_dccm_ecc_single_error;
logic mcu_dccm_ecc_double_error;

logic i3c_peripheral_reset;
logic i3c_escalated_reset;

logic [31:0] reset_vector;


Expand Down Expand Up @@ -748,6 +756,21 @@ module caliptra_ss_top
assign ext_int[`VEER_INTR_VEC_FC] = intr_otp_operation_done;
assign ext_int[pt.PIC_TOTAL_INT:`VEER_INTR_EXT_LSB] = cptra_ss_mcu_ext_int;

//Aggregate error connections
assign agg_error_fatal[5:0] = {5'b0, cptra_error_fatal}; //CPTRA
assign agg_error_fatal[11:6] = {5'b0, mcu_dccm_ecc_double_error}; //MCU
assign agg_error_fatal[17:12] = {{6-lc_ctrl_reg_pkg::NumAlerts{1'b0}}, lc_alerts_o}; //LCC
assign agg_error_fatal[23:18] = {{6-otp_ctrl_reg_pkg::NumAlerts{1'b0}}, fc_alerts}; //FC
assign agg_error_fatal[29:24] = {4'b0, i3c_peripheral_reset, i3c_escalated_reset}; //I3C
assign agg_error_fatal[31:30] = '0; //spare

assign agg_error_non_fatal[5:0] = {5'b0, cptra_error_non_fatal}; //CPTRA
assign agg_error_non_fatal[11:6] = {5'b0, mcu_dccm_ecc_single_error}; //MCU
assign agg_error_non_fatal[17:12] = {{6-lc_ctrl_reg_pkg::NumAlerts{1'b0}}, lc_alerts_o}; //LCC
assign agg_error_non_fatal[23:18] = {{6-otp_ctrl_reg_pkg::NumAlerts{1'b0}}, fc_alerts}; //FC
assign agg_error_non_fatal[29:24] = {4'b0, i3c_peripheral_reset, i3c_escalated_reset}; //I3C
assign agg_error_non_fatal[31:30] = '0; //spare

//=========================================================================-
// MCU instance
//=========================================================================-
Expand Down Expand Up @@ -1023,8 +1046,8 @@ module caliptra_ss_top

.iccm_ecc_single_error (),
.iccm_ecc_double_error (),
.dccm_ecc_single_error (),
.dccm_ecc_double_error (),
.dccm_ecc_single_error (mcu_dccm_ecc_single_error),
.dccm_ecc_double_error (mcu_dccm_ecc_double_error),

.core_id ('0),
.scan_mode ( 1'b0 ), // To enable scan mode
Expand Down Expand Up @@ -1100,9 +1123,9 @@ module caliptra_ss_top
`endif
.recovery_payload_available_o(payload_available_o),
.recovery_image_activated_o(image_activated_o),
.peripheral_reset_o(),
.peripheral_reset_o(i3c_peripheral_reset),
.peripheral_reset_done_i(1'b1),
.escalated_reset_o(),
.escalated_reset_o(i3c_escalated_reset),
.irq_o()

// TODO: Add interrupts
Expand Down Expand Up @@ -1168,8 +1191,8 @@ module caliptra_ss_top
// -- connects to ss_generic_fw_exec_ctrl (bit 2)
.mcu_sram_fw_exec_region_lock(cptra_ss_cptra_generic_fw_exec_ctrl_2_mcu_i),

.agg_error_fatal('0), // FIXME connect to internal IPs
.agg_error_non_fatal('0), // FIXME connect to internal IPs
.agg_error_fatal(agg_error_fatal),
.agg_error_non_fatal(agg_error_non_fatal),

.all_error_fatal(cptra_ss_all_error_fatal_o),
.all_error_non_fatal(cptra_ss_all_error_non_fatal_o),
Expand Down
66 changes: 40 additions & 26 deletions src/mci/rtl/mci_reg.rdl
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -233,6 +233,17 @@ addrmap mci_reg {
mask register. After the output interrupt is asserted, clearing
the bit in this register will not cause the interrupt to deassert.
Only an MCI reset will clear the fatal error interrupt.
[br] 5:0 -- caliptra core fatal errors
[br] {5'b0, cptra_error_fatal}
[br] 11:6 - mcu fatal errors
[br] {5'b0, mcu_dccm_ecc_double_error}
[br] 17:12 -- lcc alerts
[br] {3'b0, fatal_bus_integ_error, fatal_state_error, fatal_prog_error}
[br] 23:18 -- otp fc alerts
[br] {1'b0, recov_prim_otp_alert, fatal_prim_otp_alert, fatal_bus_integ_error, fatal_check_error, fatal_macro_error}
[br] 29:24 -- I3C - masked by default, unmasked in non_fatal error register
[br] {4'b0, i3c_peripheral_reset, i3c_escalated_reset}
[br] 31:30 -- spare bits
[br]AXI Access: RW1C
[br]TAP Access [with debug intent set]: RO";
rw_rw_sticky_hw agg_error_fatal31 = 1'b0;
Expand Down Expand Up @@ -304,14 +315,17 @@ addrmap mci_reg {
that firmware may cause the mci_error_non_fatal signal to deassert by
writing to any of these registers, if the write results in all error
bits being cleared or masked:
[br][list]
[br] [*] HW_ERROR_NON_FATAL
[br] [*] AGG_ERROR_NON_FATAL
[br] [*] FW_ERROR_NON_FATAL
[br] [*] hw_error_non_fatal_mask
[br] [*] agg_error_non_fatal_mask
[br] [*] fw_error_non_fatal_mask
[/list]
[br] 5:0 -- caliptra core non fatal errors
[br] {5'b0, cptra_error_non_fatal}
[br] 11:6 - mcu non fatal errors
[br] {5'b0, mcu_dccm_ecc_single_error}
[br] 17:12 -- lcc alerts - masked by default, unmasked in fatal error register
[br] {3'b0, fatal_bus_integ_error, fatal_state_error, fatal_prog_error}
[br] 23:18 -- otp fc alerts - masked by default, unmasked in fatal error register
[br] {1'b0, recov_prim_otp_alert, fatal_prim_otp_alert, fatal_bus_integ_error, fatal_check_error, fatal_macro_error}
[br] 29:24 -- I3C
[br] {4'b0, i3c_peripheral_reset, i3c_escalated_reset}
[br] 31:30 -- spare bits
[br]AXI Access: RW1C
[br]TAP Access [with debug intent set]: RO";
rw_rw_sticky_hw agg_error_non_fatal31 = 1'b0;
Expand Down Expand Up @@ -463,24 +477,24 @@ addrmap mci_reg {
interrupt.";
rw_ro_ro_hw mask_agg_error_fatal31 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal30 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal29 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal28 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal27 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal26 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal25 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal24 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal23 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal22 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal21 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal20 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal19 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal18 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal17 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal16 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal15 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal14 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal13 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal12 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal29 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal28 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal27 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal26 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal25 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal24 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal23 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal22 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal21 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal20 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal19 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal18 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal17 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal16 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal15 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal14 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal13 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal12 = 1'b1;
rw_ro_ro_hw mask_agg_error_fatal11 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal10 = 1'b0;
rw_ro_ro_hw mask_agg_error_fatal9 = 1'b0;
Expand Down
Loading