![](\"http:\/\/bunniefoo.com\/novena\/pvt1_release\/novena_pvt1e_top_sm.jpg\")
<\/p>\n
It is a small single-board Linux PC, which happens to include a Xilinx Spartan-6 FPGA \u2026<\/a><\/p>","content":" This is a writeup on how to setup, build and testrun the coretest_hashes\nCryptech subsystem on a Novena PVT1 development board.<\/p>\n Novena<\/a> is an open hardware and F\/OSS-friendly computing platform.<\/p>\n It is a small single-board Linux PC, which happens to include a Xilinx Spartan-6 FPGA<\/a>. This, together with the TerasIC Cyclone 5 GX<\/a>, is what we are using to develop and test the Cryptech cores.<\/p>\n The Novena includes an HDMI adapter and two USB ports, so you can plug in a monitor, keyboard, and mouse, and have a graphical desktop environment. However, I prefer to run it headless, and ssh to it. To ssh to the Novena, you need to know its IP address, which means you need to either statically configure it, or you need to assign it an address in your DHCP server.<\/p>\n If you go the DHCP route, be aware that Novena doesn't used a fixed hardware address, so you'll have to statically configure that<\/strong>.\nOpen The coretest_hashes is a subsystem that is a FPGA design that contains\nCryptech application cores as well as support cores used to run tests\nof the SHA-1 and SHA-2 hash functions from the host computer via an\nI2C serial bus. The subsystem consists of:<\/p>\n sha1<\/a>: A HW implementation of the SHA-1 hash function.<\/p>\n<\/li>\n sha256<\/a>: A HW implementation of the SHA-256 hash\n function.<\/p>\n<\/li>\n sha512<\/a>: A HW implementation of the SHA-512 hash\n function.<\/p>\n<\/li>\n coretest<\/a>: A command parser that accepts read\/write\n commands from a host, executes the commands and sends the response.<\/p>\n<\/li>\n i2c<\/a>: A serial interface that connects coretest to the\n host.<\/p>\n<\/li>\n novena<\/a>: A top-level wrapper that connects all<\/p>\n<\/li>\n<\/ul>\n the cores, and connects i2c to external pins as well as clk and\n reset. This repo also contains userland software that talks to\n coretest and performs tests of the sha1, sha256, and sha512 cores.<\/p>\n You need to download and install the Xilinx\nISE Design Suite<\/a>.<\/p>\n Note: this software runs on a Windows or x86 Linux host, not<\/strong> on the Novena.<\/p>\n The Windows install is pretty straight-forward. So is the Linux\ninstall, but with a few extra notes:<\/p>\n Xilinx only supports specific versions of Red Hat and Suse Linux, but it does run on Ubuntu, with the following caveat: Ubuntu symlinks ISE Design Suite uses a graphical installer, so has to be installed\n on a desktop edition, not a server edition.<\/p>\n<\/li>\n Although the software can be installed as user or root, by default\n it wants to install into The Xilinx tools are disk hogs, so if you're building a VM for this, you'll probably want to give it at least 30-40 GB of disk space.<\/p>\n<\/li>\n<\/ul>\n Step-by-step installation:\n1. Unpack Xilinx_ISE_DS_Lin_14.7_1015_1.tar (or whatever version you have).\n2. Well, not quite. You will need to convince the ISE that you have a license.<\/p>\n On the page http:\/\/www.xilinx.com\/products\/design-tools\/ise-design-suite\/ise-webpack.htm<\/a> click on the You do not need to go through the HostID dance, just say Do It. You will then receive a certificate in email (not an X.509 certificate) which you will be able to use. Then start the ISE Webpack by issuing the command Getting started with Novena<\/h2>\n
<\/p>\n\/etc\/network\/interfaces<\/code>, and add something like the following lines:<\/p>\n<\/span>allow<\/span>-<\/span>hotplug<\/span> <\/span>eth0<\/span>\niface<\/span> <\/span>eth0<\/span> <\/span>inet<\/span> <\/span>dhcp<\/span>\n <\/span>hwaddress<\/span> <\/span>ether<\/span> <\/span>00<\/span>:<\/span>0<\/span>e<\/span>:<\/span>c6<\/span>:<\/span>87<\/span>:<\/span>72<\/span>:<\/span>01<\/span>\n<\/code><\/pre><\/div>\n\n\n
Coretest_hashes<\/h3>\n
\n
Software and system requirements<\/h2>\n
Installing on Linux<\/h3>\n
\n
\/bin\/sh<\/code> to dash<\/code>, which can't handle if [ ]<\/code> syntax in shell scripts, so I symlinked \/bin\/sh<\/code> to bash<\/code> instead.<\/p>\n<\/li>\n\/opt\/Xilinx<\/code>, so you need to install as root\n if you want to do that.<\/p>\n<\/li>\ncd<\/code> to Xilinx_ISE_DS_Lin_14.7_1015_1, and run sudo .\/xsetup<\/code>\n3. Click through two screens of license agreements.\n4. Select ISE WebPACK<\/code>.\n5. Unselect (or leave unselected) Install Cable Drivers<\/code>.\n6. Go!<\/p>\nLicensing Solutions<\/code> link. On the resulting page, expand the section Obtain a license for Free or Evaluation product<\/code>. To download the ISE Webpack, you should have created an account, so now you can go to the Licensing Site and use that account to create a Certificate Based License.<\/p>\nise<\/code>. Go to the Help menu and Manage Licenses<\/code>. Use the resulting new License Manager window to install the .lic file. This process is complex and flakey.<\/p>\n