Currently, cwt_dice_chain_entry.hjson and cwt_dice_chain_entry_input.hjson both depend on the max-size of cwt_dice_chain_entry_payload.hjson. But that value relies on manually updating currently. If that doesn't fit, the error would be postponed until runtime check.
stevenchtsai
commented
2 weeks ago
This is a follow-up issue of https://github.com/lowRISC/opentitan/pull/24754.
https://github.com/lowRISC/opentitan/blob/a8c0633016e90d705338b80a938742f44d12115e/sw/device/silicon_creator/lib/cert/cwt_dice_chain_entry.hjson#L13-L15
https://github.com/lowRISC/opentitan/blob/a8c0633016e90d705338b80a938742f44d12115e/sw/device/silicon_creator/lib/cert/cwt_dice_chain_entry_input.hjson#L13-L15
Currently,
cwt_dice_chain_entry.hjsonandcwt_dice_chain_entry_input.hjsonboth depend on themax-sizeofcwt_dice_chain_entry_payload.hjson. But that value relies on manually updating currently. If that doesn't fit, the error would be postponed until runtime check.