Chris Gori

Just adding a quick comment to this, [PR2572](https://github.com/lowRISC/opentitan/pull/2572) on opentitan (I think) got folded into this area and we opted for the "intermediate-level" fix for the update of the LSFR/PRNG...

@jesultra do you want to open a separate low-priority issue for the behavior of pin B8 so this doesn't get lost? (I suspect that as this is closed it will...

> Another thought: if we did not want to read out each entire partition (for each software readable partition) on every boot, to minimize boot time we could just read...

As the reviewer, probably 1:1 would be easier to deal with. But that basically makes the countermeasure lists unwieldy and forces a need for manual reconciliation which is not desirable....

One other comment, what I am finding in the review process is that we are pursuing two goals in parallel: 1) for annotated/stated countermeasures, are they present / properly used?...

Also agreed on this approach from my side, not controversial at all.

In theory, we might be able to flush/invalidate the whole icache before running cryptolib functions. We should get deterministic cycle counts then. (Some questions arise about interrupts / context switches...

It's fairly important to have a way to test this re-generation over a number of iterations, in case there is some issue, so I wouldn't suggest backlog here.

I don't know what everyone would consider an appropriate number of nightlies to exercise this seeding/regeneration process to be, but something like a ~month's worth feels correct to me.

Not sure if this is useful, but just based on the inbound email questions we seem to get: - Hardware engineer, wanting to port to their favorite / a different...