From: Moritz Fischer <mdf@kernel.org>
To: Tom Rix <trix@redhat.com>
Cc: Moritz Fischer <mdf@kernel.org>,
"Gong, Richard" <richard.gong@intel.com>,
"gregkh@linuxfoundation.org" <gregkh@linuxfoundation.org>,
"linux-fpga@vger.kernel.org" <linux-fpga@vger.kernel.org>,
"linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
"richard.gong@linux.intel.com" <richard.gong@linux.intel.com>,
russell.h.weight@intel.com
Subject: Re: [PATCHv5 0/7] Extend Intel service layer, FPGA manager and region
Date: Sun, 28 Mar 2021 10:20:23 -0700 [thread overview]
Message-ID: <YGC619DmLM0AAQ5p@epycbox.lan> (raw)
In-Reply-To: <496aa871-cfb0-faf4-4b1c-b53e56b58030@redhat.com>
Tom,
On Sun, Mar 28, 2021 at 08:40:24AM -0700, Tom Rix wrote:
>
> On 3/27/21 11:09 AM, Moritz Fischer wrote:
> > Hi Richard, Russ,
> >
> > On Thu, Feb 25, 2021 at 01:07:14PM +0000, Gong, Richard wrote:
> >> Hi Moritz,
> >>
> >> Sorry for asking.
> >>
> >> When you have chance, can you help review the version 5 patchset submitted on 02/09/21?
> >>
> >> Regards,
> >> Richard
> >>
> >> -----Original Message-----
> >> From: richard.gong@linux.intel.com <richard.gong@linux.intel.com>
> >> Sent: Tuesday, February 9, 2021 4:20 PM
> >> To: mdf@kernel.org; trix@redhat.com; gregkh@linuxfoundation.org; linux-fpga@vger.kernel.org; linux-kernel@vger.kernel.org
> >> Cc: Gong, Richard <richard.gong@intel.com>
> >> Subject: [PATCHv5 0/7] Extend Intel service layer, FPGA manager and region
> >>
> >> From: Richard Gong <richard.gong@intel.com>
> >>
> >> This is 5th submission of Intel service layer and FPGA patches, which includes the missing standalone patch in the 4th submission.
> >>
> >> This submission includes additional changes for Intel service layer driver to get the firmware version running at FPGA SoC device. Then FPGA manager driver, one of Intel service layer driver's client, can decide whether to handle the newly added bitstream authentication function based on the retrieved firmware version. So that we can maintain FPGA manager driver the back compatible.
> >>
> >> Bitstream authentication makes sure a signed bitstream has valid signatures.
> >>
> >> The customer sends the bitstream via FPGA framework and overlay, the firmware will authenticate the bitstream but not program the bitstream to device. If the authentication passes, the bitstream will be programmed into QSPI flash and will be expected to boot without issues.
> >>
> >> Extend Intel service layer, FPGA manager and region drivers to support the bitstream authentication feature.
> >>
> >> Richard Gong (7):
> >> firmware: stratix10-svc: reset COMMAND_RECONFIG_FLAG_PARTIAL to 0
> >> firmware: stratix10-svc: add COMMAND_AUTHENTICATE_BITSTREAM flag
> >> firmware: stratix10-svc: extend SVC driver to get the firmware version
> >> fpga: fpga-mgr: add FPGA_MGR_BITSTREAM_AUTHENTICATE flag
> >> fpga: of-fpga-region: add authenticate-fpga-config property
> >> dt-bindings: fpga: add authenticate-fpga-config property
> >> fpga: stratix10-soc: extend driver for bitstream authentication
> >>
> >> .../devicetree/bindings/fpga/fpga-region.txt | 10 ++++
> >> drivers/firmware/stratix10-svc.c | 12 ++++-
> >> drivers/fpga/of-fpga-region.c | 24 ++++++---
> >> drivers/fpga/stratix10-soc.c | 62 +++++++++++++++++++---
> >> include/linux/firmware/intel/stratix10-smc.h | 21 +++++++-
> >> .../linux/firmware/intel/stratix10-svc-client.h | 11 +++-
> >> include/linux/fpga/fpga-mgr.h | 3 ++
> >> 7 files changed, 125 insertions(+), 18 deletions(-)
> >>
> >> --
> >> 2.7.4
> >>
> > Apologies for the epic delay in getting back to this, I took another
> > look at this patchset and Russ' patchset.
> >
> > TL;DR I'm not really a fan of using device-tree overlays for this (and
> > again, apologies, I should've voiced this earlier ...).
> >
> > Anyways, let's find a common API for this and Russ' work, they're trying
> > to achieve the same / similar thing, they should use the same API.
> >
> > I'd like to re-invetigate the possiblity to extend FPGA Manager with
> > 'secure update' ops that work for both these use-cases (and I susspect
> > hte XRT patchset will follow with a similar requirement, right after).
>
> The xrt patchset makes heavy use of device trees.
>
> What is the general guidance for device tree usage ?
I'm not generally against using device tree, it has its place. To
describe hardware (and hardware *changes* with overlays) :)
What I don't like about this particular implementation w.r.t device-tree
usage is that it uses DT overlays as a mechanism to program the flash --
in place of having an API to do so.
One could add device-nodes during the DT overlay application, while the
FPGA doesn't actually get programmed with a new runtime image -- meaning
live DT and actual hardware state diverged -- worst case it'd crash.
So when roughly at the same time (from the same company even) we have two
patchsets that do similar things with radically different APIs I think
we should pause, and reflect on whether we can come up with something
that works for both :)
TL;DR the firmware parts to authenticate the bitstream look fine to me, the
way we tie it into the FPGA region I'm not a fan of.
- Moritz
next prev parent reply other threads:[~2021-03-28 17:21 UTC|newest]
Thread overview: 30+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-02-09 22:20 [PATCHv5 0/7] Extend Intel service layer, FPGA manager and region richard.gong
2021-02-09 22:20 ` [PATCHv5 1/7] firmware: stratix10-svc: reset COMMAND_RECONFIG_FLAG_PARTIAL to 0 richard.gong
2021-02-13 15:44 ` Tom Rix
2021-02-15 14:41 ` Richard Gong
2021-02-15 14:32 ` Tom Rix
2021-03-18 16:57 ` Moritz Fischer
2021-02-09 22:20 ` [PATCHv5 2/7] firmware: stratix10-svc: add COMMAND_AUTHENTICATE_BITSTREAM flag richard.gong
2021-02-09 22:20 ` [PATCHv5 3/7] firmware: stratix10-svc: extend SVC driver to get the firmware version richard.gong
2021-03-28 20:52 ` Moritz Fischer
2021-02-09 22:20 ` [PATCHv5 4/7] fpga: fpga-mgr: add FPGA_MGR_BITSTREAM_AUTHENTICATE flag richard.gong
2021-02-09 22:20 ` [PATCHv5 5/7] fpga: of-fpga-region: add authenticate-fpga-config property richard.gong
2021-02-09 22:20 ` [PATCHv5 6/7] dt-bindings: fpga: " richard.gong
2021-02-09 22:20 ` [PATCHv5 7/7] fpga: stratix10-soc: extend driver for bitstream authentication richard.gong
2021-02-25 13:07 ` [PATCHv5 0/7] Extend Intel service layer, FPGA manager and region Gong, Richard
2021-02-25 13:28 ` Tom Rix
2021-02-25 16:58 ` Richard Gong
2021-03-19 23:22 ` Richard Gong
2021-03-20 14:35 ` Tom Rix
[not found] ` <MWHPR11MB0015516D86D02A0FE5423D6387669@MWHPR11MB0015.namprd11.prod.outlook.com>
2021-03-21 21:05 ` FW: " Richard Gong
2021-03-22 13:53 ` Tom Rix
2021-03-22 15:53 ` Richard Gong
2021-03-27 18:09 ` Moritz Fischer
2021-03-28 15:40 ` Tom Rix
2021-03-28 17:20 ` Moritz Fischer [this message]
2021-03-31 18:47 ` Russ Weight
2021-03-31 22:16 ` Moritz Fischer
2021-04-07 23:27 ` Russ Weight
2021-05-02 18:43 ` Moritz Fischer
2021-04-13 1:41 ` Richard Gong
2021-04-29 14:56 ` Richard Gong
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YGC619DmLM0AAQ5p@epycbox.lan \
--to=mdf@kernel.org \
--cc=gregkh@linuxfoundation.org \
--cc=linux-fpga@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=richard.gong@intel.com \
--cc=richard.gong@linux.intel.com \
--cc=russell.h.weight@intel.com \
--cc=trix@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).