plat-versal: add support for the Versal Net variant

[jcorbier]

This series upgrades the AMD/Xilinx port with the following:

• Add support for a new SoC in the Versal family
• Add a hardware crypto accelerator driver for this specific SoC
• Fixes for more recent versions of the Xilinx software environment (PLM APIs have changed in 2023)

[ldts]

thanks @jcorbier

I need to ask that the changes to support the more recent AMD/Xilinx tools maintain backwards compatibility. We should be able to query the ABI at runtime - maybe even propose whatever is needed to AMD/Xilinx https://github.com/Xilinx/embeddedsw .

I'd like to understand as well the level of testing that has been done with this software (just the output of xtest, to check if you encountered any regressions (ie this is the changelog for 4.1.0 #6574 (comment) ).

Thirdly is there anything that you also plan on posting to https://github.com/OP-TEE/optee_docs ?

[jcorbier]

Thanks @ldts for your feedback.

I need to ask that the changes to support the more recent AMD/Xilinx tools maintain backwards compatibility. We should be able to query the ABI at runtime - maybe even propose whatever is needed to AMD/Xilinx https://github.com/Xilinx/embeddedsw .

Noted. Let me see how best we can implement that.

I'd like to understand as well the level of testing that has been done with this software (just the output of xtest, to check if you encountered any regressions (ie this is the changelog for 4.1.0 #6574 (comment) ).

I don't have access to the logs right now but the current state is the same as for Versal in 4.1.0.

Thirdly is there anything that you also plan on posting to https://github.com/OP-TEE/optee_docs ?

Yes, a working version is available here https://github.com/ProvenRun/optee_docs/tree/versal_net_port
It needs some additional work before I create a pull request for it though.

Same thing for build and manifest repositories.

[ldts]

we should split the drivers (rng/nvm) into a different files (versal_net_rng, versal_net_nvm?)

[jcorbier]

we should split the drivers (rng/nvm) into a different files (versal_net_rng, versal_net_nvm?)

Agreed, the initial thinking for the current implementation was to avoid as much code duplication as possible between versal and versal_net but in the end it makes things much more complicated than needed.

[nathan-menhorn]

Hi @jcorbier any updates on this PR?

[jcorbier]

Hi @jcorbier any updates on this PR?

Hi @nathan-menhorn, still working out the details of what needs to be done to properly split versal/versal-net code, including the TRNG update. I'll try and push an update to this PR by end of this week.

[ldts]

@etienne-lms could you hold your comments until the patchset is updated please?

There are a couple of functional changes that need addressing first

1. ABI runtime detection (not only to support the older toolchain but also to be covered for changes in the future)
2. use different files for Versal net instead of conditional macros (since some drivers are radically different).

So I suggest we wait for that before we go into details (ie default configs, coding standards and so on) as some files will change quite a bit

[jcorbier]

@etienne-lms could you hold your comments until the patchset is updated please?

Indeed, I'll be pusing fixup commits in the coming hours/days.

[etienne-lms]

Deserves a specific commit IMHO.

[nathan-menhorn]

Hi @jcorbier what's the current status of this PR? Thanks.

[nathan-menhorn]

Hi @jcorbier any updates on this PR? Are patches to address all the comments in the PR still estimated to come by the end of the month? Thanks.

[wangjudyw]

this function is incorrect, there are total 8 offchip_revoke_id, and we use the api to update values for certain id, the parameters is lacking of the values going into that offchip id.
Please refer to the implementation in versal_nvm.c

[jcorbier]

Hi @wangjudyw,

Thanks for your feedback. This implementation is a direct mapping of the API offered by the xilnvm service:

https://github.com/Xilinx/embeddedsw/blob/86a272bd9cd412bf1e5214f6098aefff301e58f0/lib/sw_services/xilnvm/src/versal_net/server/xnvm_efuse_cdohandler.c#L229

As you can see, it only expects an uint32_t for the ID to be written in the fuses (and a flag that is set by default by the do_write_efuses_value() helper function). Could you elaborate what you mean?

Thanks!

[etienne-lms]

mainly coding style issues

[github-actions]

This pull request has been marked as a stale pull request because it has been open (more than) 30 days with no activity. Remove the stale label or add a comment, otherwise this pull request will automatically be closed in 5 days. Note, that you can always re-open a closed issue at any time.

[nathan-menhorn]

Hi @jcorbier what's the status of this PR? Last we discussed updates were supposed to be pushed a few weeks ago? Thanks.

[ldts]

@jcorbier do you plan on folding the commits as per the initial patch-set for further review? I can then have a a better look - last time I checked I found a simple regression (easy to fix).

Also I was testing the Xen hypervisor with the tip of OP-TEE on the vck190 evaluation kit and I found it to be broken. I was wondering if this is a configuration (optee+xen on Versal) that you have tested? I believe probably nobody has yet (@nathan-menhorn ?)

[nathan-menhorn]

Hi @ldts no testing has been performed on Xen+optee yet as there haven't been any customers requests.

[nathan-menhorn]

@jcorbier @ldts @etienne-lms just keeping this PR alive. We should be expecting some input from @jcorbier soon.

[jcorbier]

@jcorbier do you plan on folding the commits as per the initial patch-set for further review? I can then have a a better look - last time I checked I found a simple regression (easy to fix).

Yes, there a couple more things I want to fix then I'll force push a clean patchset to clean up the current fixup commits mess.

[nathan-menhorn]

@jcorbier 0 to 255

[nathan-menhorn]

@jcorbier check should be between 0 and 255.

I'm not sure why the AMD software was implemented this way as this is very confusing and it doesn't match the OFFCHIP_REVOKE function, which expects values from 1 - 256, but this function expects values from 0 to 255

See the error handling of
https://github.com/Xilinx/embeddedsw/blob/master/lib/sw_services/xilnvm/src/versal_net/server/xnvm_efuse.c#L615C21-L617
compared to
https://github.com/Xilinx/embeddedsw/blob/master/lib/sw_services/xilnvm/src/versal_net/server/xnvm_efuse.c#L701-L703

[nathan-menhorn]

0 - 255

[nathan-menhorn]

@jcorbier please fix.

[nathan-menhorn]

@jcorbier checks needs to be between 0 and 255 for this function.

[nathan-menhorn]

@jcorbier please fix.

[ldts]

@jcorbier @nathan-menhorn I am not seeing the separate commit that updates versal to the new PLM - I dont think this should be introduced just as part of the versal_net platform.
having said that, if we want to drop the support for the previous toolchain (@nathan-menhorn?) then I suppose we could.

Re: is this all that is needed or something else coming (this breaks versal last time I tested it)
9267cb6

[nathan-menhorn]

@jcorbier @nathan-menhorn I am not seeing the separate commit that updates versal to the new PLM - I dont think this should be introduced just as part of the versal_net platform. having said that, if we want to drop the support for the previous toolchain (@nathan-menhorn?) then I suppose we could.

Re: is this all that is needed or something else coming (this breaks versal last time I tested it) 9267cb6

Hi @ldts we still need Versal support as customers are actively using the Versal version. If this (your link above) breaks your original port supported for the 2022.1 and 2022.2 Versal BSPs then this isn't good.

[ldts]

Hi @ldts we still need Versal support as customers are actively using the Versal version. If this (your link above) breaks your original port supported for the 2022.1 and 2022.2 Versal BSPs then this isn't good.

ok. I'll wait for the commits being fold, then validate and review the partitioning/integration - @etienne-lms has already done the heavy lifting.

do you know if anyone is looking into the xen support? as I said it broken but I dont think it should be much work to get it right

[nathan-menhorn]

Thanks @ldts. No one is looking into Xen + OP-TEE support. We don't have any customer requests and we don't have the resources to investigate this at this time.

[ldts]

Thanks @ldts. No one is looking into Xen + OP-TEE support. We don't have any customer requests and we don't have the resources to investigate this at this time.

um, that is a pity. Over the summer I did some prototyping - integrated OP-TEE on meta-xilinx booted xen and started debugging op-tee but then had to drop it.

Maybe I'll continue with it since I still have your board - need to check with my employer first if they allow me work on this on my spare time. will let you know

[nathan-menhorn]

Thanks @ldts. Feel free to give me an update offline through email.

[jenswi-linaro]

I'm sorry, I missed there was an update in this pull request. Sometimes when only pushing changes to a pull request, github doesn't send updates. So the best is to add a comment after pushing changes to a PR to avoid unnecessary delays.

@ldts had a few questions:

That said, we are where we are, so moving forward: from your comment, it sounds like the current upstream Versal port is now obsolete (no users). If that’s the case, it may be time to consider dropping it entirely. @nathan-menhorn, do you know who will be maintaining Versal Net? Perhaps that team could also take over maintainership of Versal and its drivers and handle the necessary cleanup?

Do we need to choose between Versal and Versal Net to move forward here, or can both variants co-exist without breakage? Who decides to remove Versal if that's needed?

[ldts]

@jenswi-linaro I believe this decision is ultimately up to @nathan-menhorn.

I'm willing to step down as a Versal platform and crypto/driver maintainer to support the proposed strategy moving forward. I don't want to be a blocker for either Versal2 or Versal-Net. My only request is that the license remains in place, as I understand AMD intends to reuse all of the code.

[jenswi-linaro]

Thank you @ldts, I fully support your request for the license.

[nathan-menhorn]

@jenswi-linaro I believe this decision is ultimately up to @nathan-menhorn.

I'm willing to step down as a Versal platform and crypto/driver maintainer to support the proposed strategy moving forward. I don't want to be a blocker for either Versal2 or Versal-Net. My only request is that the license remains in place, as I understand AMD intends to reuse all of the code.

@ldts @jenswi-linaro I agree that the license needs to remain in place as the code is heavily reused.

@jcorbier could you please provide an update with the license request? Thanks.

[nathan-menhorn]

I'm sorry, I missed there was an update in this pull request. Sometimes when only pushing changes to a pull request, github doesn't send updates. So the best is to add a comment after pushing changes to a PR to avoid unnecessary delays.

@ldts had a few questions:

That said, we are where we are, so moving forward: from your comment, it sounds like the current upstream Versal port is now obsolete (no users). If that’s the case, it may be time to consider dropping it entirely. @nathan-menhorn, do you know who will be maintaining Versal Net? Perhaps that team could also take over maintainership of Versal and its drivers and handle the necessary cleanup?

Do we need to choose between Versal and Versal Net to move forward here, or can both variants co-exist without breakage? Who decides to remove Versal if that's needed?

Hi @jenswi-linaro both variants can exist without breakage. I've done basic testing on my end and both variants compile as expected for the various boards. Plans for Versal NET maintenance are currently TBD, the main goal is to support the end customer by first getting this port upstreamed.

[jenswi-linaro]

Hi @jenswi-linaro both variants can exist without breakage. I've done basic testing on my end and both variants compile as expected for the various boards. Plans for Versal NET maintenance are currently TBD, the main goal is to support the end customer by first getting this port upstreamed.

Thanks for testing. @nathan-menhorn, if @ldts is stepping down, can you be an interim maintainer for versal while future maintenance is sorted out?

[nathan-menhorn]

@jenswi-linaro I believe this decision is ultimately up to @nathan-menhorn.
I'm willing to step down as a Versal platform and crypto/driver maintainer to support the proposed strategy moving forward. I don't want to be a blocker for either Versal2 or Versal-Net. My only request is that the license remains in place, as I understand AMD intends to reuse all of the code.

@ldts @jenswi-linaro I agree that the license needs to remain in place as the code is heavily reused.

@jcorbier could you please provide an update with the license request? Thanks.

Just a minor correction on the license. I am checking with AMD legal on this. Thanks.

[nathan-menhorn]

Hi @jcorbier the TRNG KAT test is not passing.

[nathan-menhorn]

@jcorbier This code is not passing as expected on hardware causing OP-TEE to fail booting. Please recheck this on your board as the generated output does not match the expected output. Thanks.

[nathan-menhorn]

I added some debug prints to see the KAT output and here are the results:

D/TC:00 0 do_init_calls:19 service_initcall level 2 check_ta_store()
D/TC:00 0 check_ta_store:449 TA store: "early TA"
D/TC:00 0 check_ta_store:449 TA store: "Secure Storage TA"
D/TC:00 0 check_ta_store:449 TA store: "REE"
D/TC:00 0 do_init_calls:19 service_initcall level 2 early_ta_init()
D/TC:00 0 early_ta_init:56 Early TA f04a0fe7-1f5d-4b9b-abf7-619b85b4ce8c size 48116 (compressed, uncompressed 109288)
D/TC:00 0 do_init_calls:19 service_initcall level 2 verify_pseudo_tas_conformance()
D/TC:00 0 do_init_calls:19 service_initcall level 3 tee_fs_init_key_manager()
I/TC: Using Development HUK
D/TC:00 0 boot_mem_release_tmp_alloc:324 Releasing 8192 bytes from va 0x223fe000
D/TC:00 0 do_init_calls:19 driver_initcall level 1 ecc_init()
E/TC:00 0 trng_kat_test_v2:1152 PRINTING TRNG KAT VECTOR
E/TC:00 0 trng_kat_test_v2:1155 D8
E/TC:00 0 trng_kat_test_v2:1155 F1
E/TC:00 0 trng_kat_test_v2:1155 6E
E/TC:00 0 trng_kat_test_v2:1155 04
E/TC:00 0 trng_kat_test_v2:1155 46
E/TC:00 0 trng_kat_test_v2:1155 8E
E/TC:00 0 trng_kat_test_v2:1155 6B
E/TC:00 0 trng_kat_test_v2:1155 73
E/TC:00 0 trng_kat_test_v2:1155 E6
E/TC:00 0 trng_kat_test_v2:1155 92
E/TC:00 0 trng_kat_test_v2:1155 BD
E/TC:00 0 trng_kat_test_v2:1155 3D
E/TC:00 0 trng_kat_test_v2:1155 A6
E/TC:00 0 trng_kat_test_v2:1155 28
E/TC:00 0 trng_kat_test_v2:1155 9C
E/TC:00 0 trng_kat_test_v2:1155 37
E/TC:00 0 trng_kat_test_v2:1155 5B
E/TC:00 0 trng_kat_test_v2:1155 9E
E/TC:00 0 trng_kat_test_v2:1155 6C
E/TC:00 0 trng_kat_test_v2:1155 3C
E/TC:00 0 trng_kat_test_v2:1155 89
E/TC:00 0 trng_kat_test_v2:1155 8D
E/TC:00 0 trng_kat_test_v2:1155 81
E/TC:00 0 trng_kat_test_v2:1155 9E
E/TC:00 0 trng_kat_test_v2:1155 D7
E/TC:00 0 trng_kat_test_v2:1155 E3
E/TC:00 0 trng_kat_test_v2:1155 89
E/TC:00 0 trng_kat_test_v2:1155 61
E/TC:00 0 trng_kat_test_v2:1155 6A
E/TC:00 0 trng_kat_test_v2:1155 58
E/TC:00 0 trng_kat_test_v2:1155 65
E/TC:00 0 trng_kat_test_v2:1155 09
E/TC:00 0 trng_kat_test_v2:1157
E/TC:00 0 trng_kat_test_v2:1158 K.A.T mismatch
E/TC:00 0 versal_trng_hw_init:1216 KAT Failed
E/TC:00 0 Panic at core/drivers/versal_trng.c:1217 <versal_trng_hw_init>
E/TC:00 0 TEE load address @ 0x22200000
E/TC:00 0 Call stack:
E/TC:00 0 0x222081d4
E/TC:00 0 0x22225cbc
E/TC:00 0 0x2221c89c
E/TC:00 0 0x222227cc
E/TC:00 0 0x22223180
E/TC:00 0 0x222219d4
E/TC:00 0 0x222277bc
E/TC:00 0 0x22207ee8

[jcorbier]

Hi @nathan-menhorn, thanks for the logs. It might be a merge issue caused by us not testing on the final hardware, sorry about that. Let me check.

[nathan-menhorn]

Hi @ldts could you please clearly specific which files are missing the license you mention and the specific license text you are looking to include. Thanks.

[nathan-menhorn]

@jcorbier any updates on the TRNG?

[ldts]

Hi @ldts could you please clearly specific which files are missing the license you mention and the specific license text you are looking to include. Thanks.

hi @nathan-menhorn I checked and I think it is all good now. Maybe I was confused with the versal2 PRs.

[nathan-menhorn]

Thanks @ldts for confirming.

[nathan-menhorn]

@jcorbier any updates on the TRNG? This is slipping schedules for our CAVP testing and slipping schedules for the end customer. Thanks.

[jcorbier]

@jcorbier any updates on the TRNG? This is slipping schedules for our CAVP testing and slipping schedules for the end customer. Thanks.

Hi @nathan-menhorn, working on it. Debugging is taking a bit more time than expected. We hope we'll have pushed an update here by tomorrow morning your time.

[ldts]

@jcorbier can you check if this is required for Versal?
74c6ad9

I suspect it will be.

[jcorbier]

@jcorbier can you check if this is required for Versal? 74c6ad9

I suspect it will be.

Indeed. Thanks for pointing this out.

[nathan-menhorn]

Hi @jcorbier any updates?

[nathan-menhorn]

Hi @jcorbier any updates on the TRNG KAT?

[nathan-menhorn]

@jcorbier any updates on the TRNG? This is slipping schedules for our CAVP testing and slipping schedules for the end customer. Thanks.

Hi @nathan-menhorn, working on it. Debugging is taking a bit more time than expected. We hope we'll have pushed an update here by tomorrow morning your time.

Hi @jcorbier From your comment last month, we were supposed to get updates in a day or so and it's now May and the customer is even further behind. Any updates on getting this fixed?

[nathan-menhorn]

@jcorbier

[nathan-menhorn]

@jcorbier

[nathan-menhorn]

@jcorbier

[nathan-menhorn]

@jcorbier

[nathan-menhorn]

@jcorbier

[github-actions]

This pull request has been marked as a stale pull request because it has been open (more than) 30 days with no activity. Remove the stale label or add a comment, otherwise this pull request will automatically be closed in 5 days. Note, that you can always re-open a closed issue at any time.

[jcorbier]

Pull request still being worked on in the background. More pushes to come in an estimated couple weeks

[huynhdanvo]

Hi @nathan-menhorn , I was able to produce the same issue with trng_kat_test_v2() panic issue. It seems to me that the hw is disabled.

I/TC: TRNG_OSC_EN after manual enable: 0x00000001
I/TC: TRNG_CTRL = 0x00000000
I/TC: Initial CTRL: 0x00000000
I/TC: CTRL after write: 0x00000000
I/TC: Dump before TRNG KAT
I/TC: ---- TRNG Register Dump ----
I/TC: TRNG_CTRL       : 0x00000000
I/TC: TRNG_STATUS     : 0x00000000
I/TC: TRNG_OSC_EN     : 0x00000001
I/TC: TRNG_CORE_OUTPUT: 0x00000000
I/TC: CFG_VERSAL_RNG_DRV_V2: 1
I/TC: TRNG_CTRL2       : 0x00000000
I/TC: TRNG_CTRL3       : 0x00000000
I/TC: TRNG_CTRL4       : 0x00000000
I/TC: -----------------------------

Could you please assist me on how to setup the right clock to enable the hw on my device?

Thanks,
Dan