[v2,0/6] qemu-arm64: Allow booting via Trusted Firmware

Message ID	20200930163918.24995-1-andre.przywara@arm.com
Headers	show Return-Path: <u-boot-bounces@lists.denx.de> From: Andre Przywara <andre.przywara@arm.com> To: Tuomas Tynkkynen <tuomas.tynkkynen@iki.fi>, Tom Rini <trini@konsulko.com> Cc: Heinrich Schuchardt <xypron.glpk@gmx.de>, Bin Meng <bmeng.cn@gmail.com>, Amit Tomar <atomar25opensource@gmail.com>, Ard Biesheuvel <ardb@kernel.org>, u-boot@lists.denx.de, Stephen Warren <swarren@nvidia.com>, Simon Glass <sjg@chromium.org>, Jens Wiklander <jens.wiklander@linaro.org>, Peter Maydell <peter.maydell@linaro.org> Subject: [PATCH v2 0/6] qemu-arm64: Allow booting via Trusted Firmware Date: Wed, 30 Sep 2020 17:39:12 +0100 Message-Id: <20200930163918.24995-1-andre.przywara@arm.com> Precedence: list Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
Series	qemu-arm64: Allow booting via Trusted Firmware \| expand [v2,0/6] qemu-arm64: Allow booting via Trusted Firmware [v2,1/6] arm64: PIE: Do not skip static relocation [v2,2/6] arm64: PIE: Skip fixups if distance is zero [v2,3/6] arm64: PIE: Allow fixed stack pointer [v2,4/6] qemu-arm: Remove need to specify flash banks [v2,5/6] qemu-arm: Drop ARCH_SUPPORT_TFABOOT [v2,6/6] qemu-arm64: Enable POSITION_INDEPENDENT

Message ID

20200930163918.24995-1-andre.przywara@arm.com

Headers

From: Andre Przywara <andre.przywara@arm.com>
To: Tuomas Tynkkynen <tuomas.tynkkynen@iki.fi>, Tom Rini <trini@konsulko.com>
Cc: Heinrich Schuchardt <xypron.glpk@gmx.de>, Bin Meng <bmeng.cn@gmail.com>,
 Amit Tomar <atomar25opensource@gmail.com>,
 Ard Biesheuvel <ardb@kernel.org>, u-boot@lists.denx.de,
 Stephen Warren <swarren@nvidia.com>, Simon Glass <sjg@chromium.org>,
 Jens Wiklander <jens.wiklander@linaro.org>,
 Peter Maydell <peter.maydell@linaro.org>
Subject: [PATCH v2 0/6] qemu-arm64: Allow booting via Trusted Firmware
Date: Wed, 30 Sep 2020 17:39:12 +0100
Message-Id: <20200930163918.24995-1-andre.przywara@arm.com>
Precedence: list
Errors-To: u-boot-bounces@lists.denx.de
Sender: "U-Boot" <u-boot-bounces@lists.denx.de>

Series

qemu-arm64: Allow booting via Trusted Firmware | expand

Message

Andre Przywara Sept. 30, 2020, 4:39 p.m. UTC

U-Boot on QEMU-arm64 can be used in two configurations: Loaded directly
via QEMU's -bios option, or as a non-secure payload (BL33) via
ARM Trusted Firmware-A (TF-A).
In the latter case we need to define CONFIG_TFABOOT, to accommodate
the first flash bank being secure only, and manually set SYS_TEXT_BASE
to the address configured in TF-A (currently 0x60000000).

To avoid this poorly documented adventure, we enable a position
independent build, and also let the flash regions be always detected
through the DTB. This results in a single build to work under both
scenarios, and also allows to move the BL33 load address in TF-A to
something lower in the future.

For this to work, we have to first make PIE work when booted from ROM.
While writing to ROM should not hurt, it might trigger CFI flash
sequences, and indeed crashes for me in the middle of the fixup routine.
This is covered by patch 2/6, which skips the whole fixup routine if the
offset is actually 0 (as it is in our case). To support older toolchains
(including the popular Linaro builds), we need to ensure we do the
static RELA fixups, even with PIE enabled (patch 1/6).
Also we have to decouple the relative initial stack pointer from the
PIE option, as we always need to use the fixed version, pointing to
RAM (patch 3/6).
Patch 4/6 drops the hard-coded flash address, instead U-Boot can already
read all required information from QEMU's DTB.
Patch 5/6 is a cleanup, while the last patch enables the PIE build.

With this series the very same u-boot.bin file works when directly loaded
from the QEMU command line (-bios), but also when embedded into TF-A's
fip.bin, removing the need for case-specific build options.

Please have a look!

Cheers,
Andre

Changelog v1 .. v2:
- Always do STATIC_RELA static fixups (new first patch)
- Reword commit messages for 3/6 and 5/6

Andre Przywara (5):
  arm64: PIE: Skip fixups if distance is zero
  arm64: PIE: Allow fixed stack pointer
  qemu-arm: Remove need to specify flash banks
  qemu: Drop ARCH_SUPPORT_TFABOOT
  qemu/arm64: Enable POSITION_INDEPENDENT

 arch/arm/Kconfig             | 4 ++--
 arch/arm/cpu/armv8/start.S   | 3 ++-
 configs/qemu_arm64_defconfig | 1 +
 include/configs/qemu-arm.h   | 8 +-------
 4 files changed, 6 insertions(+), 10 deletions(-)

Comments

Tom Rini Sept. 30, 2020, 5:39 p.m. UTC | #1

On Wed, Sep 30, 2020 at 05:39:12PM +0100, Andre Przywara wrote:

> U-Boot on QEMU-arm64 can be used in two configurations: Loaded directly
> via QEMU's -bios option, or as a non-secure payload (BL33) via
> ARM Trusted Firmware-A (TF-A).
> In the latter case we need to define CONFIG_TFABOOT, to accommodate
> the first flash bank being secure only, and manually set SYS_TEXT_BASE
> to the address configured in TF-A (currently 0x60000000).
> 
> To avoid this poorly documented adventure, we enable a position
> independent build, and also let the flash regions be always detected
> through the DTB. This results in a single build to work under both
> scenarios, and also allows to move the BL33 load address in TF-A to
> something lower in the future.
> 
> For this to work, we have to first make PIE work when booted from ROM.
> While writing to ROM should not hurt, it might trigger CFI flash
> sequences, and indeed crashes for me in the middle of the fixup routine.
> This is covered by patch 2/6, which skips the whole fixup routine if the
> offset is actually 0 (as it is in our case). To support older toolchains
> (including the popular Linaro builds), we need to ensure we do the
> static RELA fixups, even with PIE enabled (patch 1/6).
> Also we have to decouple the relative initial stack pointer from the
> PIE option, as we always need to use the fixed version, pointing to
> RAM (patch 3/6).
> Patch 4/6 drops the hard-coded flash address, instead U-Boot can already
> read all required information from QEMU's DTB.
> Patch 5/6 is a cleanup, while the last patch enables the PIE build.
> 
> With this series the very same u-boot.bin file works when directly loaded
> from the QEMU command line (-bios), but also when embedded into TF-A's
> fip.bin, removing the need for case-specific build options.
> 
> Please have a look!

Can you please also update doc/board/emulation/qemu-arm.rst with
instructions / example of using this configuration?  Thanks!