M2354: Refine TF-M/Mbed integration readme

ccli8 · ccli8 · commit 9ceb6f70bb79 · 2021-04-13T15:17:29.000+08:00
Add adjusting Flash/SRAM memory spec
diff --git a/targets/TARGET_NUVOTON/TARGET_M2354/TARGET_TFM/TARGET_NU_M2354/COMPONENT_TFM_S_FW/README.md b/targets/TARGET_NUVOTON/TARGET_M2354/TARGET_TFM/TARGET_NU_M2354/COMPONENT_TFM_S_FW/README.md
@@ -1,40 +1,27 @@
-# TF-M exported stuff for Mbed integration
+# Rebuild TF-M and integrate with Mbed on M2354
 
-This directory contains TF-M exported stuff to integrate with Mbed.
+This document guides how to rebuild TF-M and integrate with Mbed on M2354.
 
-## TF-M exported stuff
+### Downloading TF-M source
 
--   bl2.bin: [MCUboot](https://github.com/mcu-tools/mcuboot) bootloader binary
+The M2354 port in TF-M must patch to enable TF-M integration with Mbed.
+For TF-M 1.2/Mbed integration on M2354, the [mainstream TF-M](https://git.trustedfirmware.org/TF-M/trusted-firmware-m.git) is patched as follows:
+-   Apply Mbed-enabled patch to `nuvoton/m2354` TF-M target.
+-   Backport to base on [ARMmbed TF-M mbed-tfm-1.2](https://github.com/ARMmbed/trusted-firmware-m/tree/mbed-tfm-1.2).
 
--   tfm_s.bin: TF-M secure binary
+Run the following command to fetch and switch to the intended version:
+```sh
+git clone https://github.com/OpenNuvoton/trusted-firmware-m -b nuvoton_mbed_m2354_tfm-1.2
+```
 
--   s_veneers.o: TF-M secure gateway library
+## Customizing TF-M
 
--   partition/: Flash layout for image signing and concatenating in post-build process
+TF-M is out of scope of Mbed.
+We only provide limited support for customizing M2354 port in TF-M.
 
-    **NOTE**: On import, `signing_layout_s_ns.o` is renamed to `signing_layout_preprocessed.h` for the following reasons:
-    -   Post-build script checks file name with `_s`/`_ns` to resolve `sw_type` as `SPE`/`NSPE` respectively.
-        To recognize as `NSPE_SPE`, don't use `_s_ns`/`_ns_s` file name to avoid mis-recognized.
-    -   Use `.h` instead of `.c` as file extension name.
-        This is to enable custom TF-M build where the locatioin of this directory can change elsewhere.
-        In Greentea build process, `.c` file isn't but`.h` file is copied into `BUILD` directory, so that post-build script can still access the file.
-
--   [signing_key/](signing_key/nuvoton_m2354-root-rsa-3072.md)
+### Default hardware partition
 
-### Copy path summary
-
-This section summarizes the copy paths from TF-M to Mbed.
-
--   trusted-firmware-m/cmake_build/bin/bl2.bin → bl2.bin
--   trusted-firmware-m/cmake_build/install/export/tfm/lib/s_veneers.o → s_veneers.o
--   trusted-firmware-m/cmake_build/bin/tfm_s.bin → tfm_s.bin
--   trusted-firmware-m/platform/ext/target/nuvoton/m2354/partition/flash_layout.h → partition/flash_layout.h
--   trusted-firmware-m/cmake_build/bl2/ext/mcuboot/CMakeFiles/signing_layout_s.dir/signing_layout_s_ns.o → partition/signing_layout_preprocessed.h
--   trusted-firmware-m/bl2/ext/mcuboot/root-RSA-3072.pem → signing_key/nuvoton_m2354-root-rsa-3072.pem
-
-## Partitioning the hardware
-
-In TF-M, the hardware is partitioned as follows:
+In TF-M, by default, the M2354 hardware is partitioned as follows:
 
 - Flash (1024KiB in total): 448KiB for secure and 576KiB for nonsecure.
 - SRAM (256KiB in total): 80KiB for secure and 176KiB for nonsecure.
@@ -51,16 +38,52 @@ In TF-M, the hardware is partitioned as follows:
     - **CRYPTO**: Configured to secure. Inaccessible to Mbed.
     - **TRNG**: Hardwired to secure. Accessible to Mbed through secure gateway.
 
-## Building TF-M
+### Defining Flash for TF-M/Mbed
 
-For Mbed/TF-M 1.2 integration, the mainstream TF-M is patched as follows:
--   Apply Mbed-enabled patch to `nuvoton/m2354` TF-M target.
--   Backport to base on [ARMmbed TF-M mbed-tfm-1.2](https://github.com/ARMmbed/trusted-firmware-m/tree/mbed-tfm-1.2).
+To define memory spec of Flash for TF-M/Mbed, search/change the line:
+
+**trusted-firmware-m/platform/ext/target/nuvoton/m2354/partition/flash_layout.h**:
+```C
+/* Max Flash size for TF-M + bootloader information */
+#define FLASH_S_PARTITION_SIZE          (0x50000)
+/* Max Flash size for Mbed + bootloader information */
+#define FLASH_NS_PARTITION_SIZE         (0x90000)
+```
+
+M2354 has 1024KiB Flash in total, among which 128KiB have been allocated for bootloader code and ITS/PS storage.
+896KiB are left for `FLASH_S_PARTITION_SIZE` and `FLASH_NS_PARTITION_SIZE`.
+
+**NOTE**: `FLASH_S_PARTITION_SIZE` and `FLASH_NS_PARTITION_SIZE` must be sector size (2KiB)-aligned.
+
+### Defining SRAM for TF-M/Mbed
+
+To define memory spec of SRAM for TF-M/Mbed, search/change the line:
+
+**trusted-firmware-m/platform/ext/target/nuvoton/m2354/partition/region_defs.h**:
+```C
+/* Max SRAM size for TF-M */
+#define S_DATA_SIZE     (80 * 1024)
+/* Max SRAM size for Mbed = Total - Max SRAM size for TF-M */
+#define NS_DATA_SIZE    (TOTAL_RAM_SIZE - S_DATA_SIZE)
+```
+
+**NOTE**: `S_DATA_SIZE` and `NS_DATA_SIZE` must be 16KiB-aligned required by M2354 Security Configuration Unit (SCU).
+
+## Rebuilding TF-M
+
+### Environment
+
+Navigate [TF-M](https://www.trustedfirmware.org/projects/tf-m/).
+Then go through **DOCS** → **Getting Started Guides** → **Software requirements** for TF-M build environment setup.
+
+**NOTE**: For unknown reason, **GNU Arm Embedded Toolchain 10-2020-q4-major** built code **FAILS** to run. Avoid this toolchain version.
 
-To re-build TF-M, run:
+### Compile
+
+To compile TF-M on M2354, run:
 
 ```sh
-$ cmake -S . \
+cmake -S . \
 -B cmake_build \
 -DTFM_PLATFORM=nuvoton/m2354 \
 -DTFM_TOOLCHAIN_FILE=toolchain_GNUARM.cmake \
@@ -69,8 +92,82 @@ $ cmake -S . \
 -G"Unix Makefiles"
 ```
 
+Then:
+
 ```sh
-$ cmake --build cmake_build -- install
+cmake --build cmake_build -- install
+```
+
+## Integrating with Mbed
+
+### Updating TF-M exported stuff
+
+The following TF-M exported stuffs must update into Mbed:
+
+-   bl2.bin: [MCUboot](https://github.com/mcu-tools/mcuboot) bootloader binary
+
+-   tfm_s.bin: TF-M secure binary
+
+-   s_veneers.o: TF-M secure gateway library
+
+-   partition/: Flash layout for image signing and concatenating in post-build process
+
+    **NOTE**: On import, `signing_layout_s_ns.o` is renamed to `signing_layout_preprocessed.h` for the following reasons:
+    -   Post-build script checks file name with `_s`/`_ns` to resolve `sw_type` as `SPE`/`NSPE` respectively.
+        To recognize as `NSPE_SPE`, don't use `_s_ns`/`_ns_s` file name to avoid mis-recognized.
+    -   Use `.h` instead of `.c` as file extension name.
+        This is to enable custom TF-M build where the locatioin of this directory can change elsewhere.
+        In Greentea build process, `.c` file isn't but`.h` file is copied into `BUILD` directory, so that post-build script can still access the file.
+
+-   [signing_key/](signing_key/nuvoton_m2354-root-rsa-3072.md)
+
+Below summarizes the copy paths from TF-M into Mbed:
+
+-   trusted-firmware-m/cmake_build/bin/bl2.bin → bl2.bin
+-   trusted-firmware-m/cmake_build/install/export/tfm/lib/s_veneers.o → s_veneers.o
+-   trusted-firmware-m/cmake_build/bin/tfm_s.bin → tfm_s.bin
+-   trusted-firmware-m/platform/ext/target/nuvoton/m2354/partition/flash_layout.h → partition/flash_layout.h
+-   trusted-firmware-m/cmake_build/bl2/ext/mcuboot/CMakeFiles/signing_layout_s.dir/signing_layout_s_ns.o → partition/signing_layout_preprocessed.h
+-   trusted-firmware-m/bl2/ext/mcuboot/root-RSA-3072.pem → signing_key/nuvoton_m2354-root-rsa-3072.pem
+
+### Updating TF-M defined Flash/SRAM
+
+TF-M defines the memory spec of Flash/SRAM for TF-M/Mbed on M2354.
+Mbed needs to know its own memory spec of Flash/SRAM for its build.
+They can configure into Mbed via Mbed target configuration `mbed_rom_start` and friends:
+
+**mbed-os/targets/targets.json**:
+```json
+"NU_M2354": {
+    ......
+    "mbed_rom_start"    : "<NS_CODE_START from TF-M>",
+    "mbed_rom_size"     : "<NS_CODE_SIZE from TF-M>",
+    "mbed_ram_start"    : "<NS_DATA_START from TF-M>",
+    "mbed_ram_size"     : "<NS_DATA_SIZE from TF-M>",
+    ......
+```
+
+Where `NS_CODE_START` and friends are defined in the location:
+
+**trusted-firmware-m/platform/ext/target/nuvoton/m2354/partition/region_defs.h**:
+```C
+#define NS_CODE_START   (NS_ROM_ALIAS(NS_IMAGE_PRIMARY_AREA_OFFSET))
+#define NS_CODE_SIZE    (IMAGE_NS_CODE_SIZE)
+#define NS_CODE_LIMIT   (NS_CODE_START + NS_CODE_SIZE - 1)
+
+#define NS_DATA_START   (NS_RAM_ALIAS(S_DATA_SIZE))
+#define NS_DATA_SIZE    (TOTAL_RAM_SIZE - S_DATA_SIZE)
+#define NS_DATA_LIMIT   (NS_DATA_START + NS_DATA_SIZE - 1)
 ```
 
-**NOTE**: This patch has not been public yet.
+But due to conditional compile, these valuse are not clear until expanding.
+However, their expanded values can acquire in the location after TF-M build:
+
+**trusted-firmware-m/cmake_build/bin/tfm_ns.map**:
+```
+Memory Configuration
+
+Name             Origin             Length             Attributes
+FLASH            NS_CODE_START      NS_CODE_SIZE       xr
+RAM              NS_DATA_START      NS_DATA_SIZE       xrw
+```
