Trustzone support for QUARTZ64
#1
Hello!

The documentation for Quartz64 mentions of support for ARM Trustzone. Is this available to test at this time, where can I find the repo/sources and the instructions for it? I am looking for OP-TEE along with TF-A support. If there is no support at this time, when is it expected to be?

I am asking because I would like to purchase one if it is supported, and recommend to others depending on evaluation results.
  Reply
#2
The board is still in quite an early development phase so I don't think anybody has looked into this yet. You're better off looking into a ROCKPro64 right now.

Occasional Linux Kernel Contributor, Avid Wiki Updater, Ask Me About Quartz64
Open Hardware Quartz64 Model A TOSLink Adapter
Pi-bus GPIO Extender For ROCKPro64 And Quartz64 Model A
Plebian GNU/Linux
  Reply
#3
(07-14-2021, 04:30 PM)CounterPillow Wrote: The board is still in quite an early development phase so I don't think anybody has looked into this yet. You're better off looking into a ROCKPro64 right now.


Hello!



I received my Quartz64 model-A. Booting the Slackware as well as CRUX each with 5.13.0 kernel seems to boot. The serial console is on the UART2 (2x10 PI-2 header pins 8 and 10). I used the SDCard to boot. It would be nice to know if USB and eMMC boots also work.



Each of the two images I tried have Trustzone bootloaders enabled, and that includes OPTEE (BL32 phase) as well! So this is very promising to my requirements for eval/testing/exploring. The userland tee-supplicant and example OPTEE binaries are not included in the image, so I will have to build them.



An aside, for the first boot the Linux OOPS'd and panicked. But just did fsck on each of the partitions on the SDcard, and the board booted all the way in the login prompt, was able to login and look around.



It will help if someone who knows the JTAG/SWD header location and details can share those details. If using openocd then the config file will also help.


Updated  8 Aug 2021:
Attempting to trace the location of the Trusted Firmware A (TF-A) and OP-TEE sources:
  1. https://wiki.pine64.org/wiki/Quartz64_De...ing_Status leads to
  2. http://opensource.rock-chips.com/wiki_Main_Page, which leads to
  3. http://opensource.rock-chips.com/wiki_ATF

The comment on this page is "Rockchip do not provide the ATF source code, you can find the ATF binaries in rkbin repository".
The plat/rockchip directory under mainline the AT=F, https://github.com/ARM-software/arm-trus...t/rockchip, sources does not have an rk3566 folder or an rk folder. Is RK3566's startup the same as one of the rk33's? Which one if so? Or has Rockchip really not released the AT-F source code?

If no sources available for rk3566, it would be disappointing: the chain of trust really depends on trusting RockChip's TF-A binaries, not the solution builder. Also, the Linux part of the userland OP-TEE cannot be built. I wanted to evaluate signed and encrypted boot, which then I cannot.

Does anyone have any comments on this? Will Rockchip ever release these sources? When if so?
  Reply
#4
(08-07-2021, 08:31 AM)capablegh Wrote: Or has Rockchip really not released the AT-F source code?

If no sources available for rk3566, it would be disappointing: the chain of trust really depends on trusting RockChip's TF-A binaries, not the solution builder. Also, the Linux part of the userland OP-TEE cannot be built. I wanted to evaluate signed and encrypted boot, which then I cannot.

Does anyone have any comments on this? Will Rockchip ever release these sources? When if so?

Rockchip has not yet released the trusted firmware source. We've been told that they will do this in due time, once they've cleaned them up. The plan is to release them eventually, from what we know. It's just not a priority for them right now.

Occasional Linux Kernel Contributor, Avid Wiki Updater, Ask Me About Quartz64
Open Hardware Quartz64 Model A TOSLink Adapter
Pi-bus GPIO Extender For ROCKPro64 And Quartz64 Model A
Plebian GNU/Linux
  Reply
#5
(08-09-2021, 02:41 AM)CounterPillow Wrote:
(08-07-2021, 08:31 AM)capablegh Wrote: Or has Rockchip really not released the AT-F source code?

If no sources available for rk3566, it would be disappointing: the chain of trust really depends on trusting RockChip's TF-A binaries, not the solution builder. Also, the Linux part of the userland OP-TEE cannot be built. I wanted to evaluate signed and encrypted boot, which then I cannot.

Does anyone have any comments on this? Will Rockchip ever release these sources? When if so?

Rockchip has not yet released the trusted firmware source. We've been told that they will do this in due time, once they've cleaned them up. The plan is to release them eventually, from what we know. It's just not a priority for them right now.

Thank you @CounterPillow ,  it helps know the perspective.

What remains is getting specifics about the JTAG/SWD on Quartz64 board: Which of JTAG or SWD is used? Where are these exposed on the board? And any other specifics such as OpenOCD config that can help setup the debug environment? Where could I find this info? The RK3566 datasheet does not seem to provide specifics. There is some mention on the Quartz64 schematics, but it isn't exactly clear.
  Reply
#6
(08-09-2021, 02:41 AM)CounterPillow Wrote:
(08-07-2021, 08:31 AM)capablegh Wrote: Or has Rockchip really not released the AT-F source code?

If no sources available for rk3566, it would be disappointing: the chain of trust really depends on trusting RockChip's TF-A binaries, not the solution builder. Also, the Linux part of the userland OP-TEE cannot be built. I wanted to evaluate signed and encrypted boot, which then I cannot.

Does anyone have any comments on this? Will Rockchip ever release these sources? When if so?

Rockchip has not yet released the trusted firmware source. We've been told that they will do this in due time, once they've cleaned them up. The plan is to release them eventually, from what we know. It's just not a priority for them right now.

Hello everybody,

We are also interested with ATF for Quartz64. Your reply was sent one year's ago. Do you know if there any progress about the release of AT-F source for RK3568 ? 
Thank you in advance, 
Regards,
Romain
  Reply
#7
(09-15-2022, 02:37 AM)rrollet Wrote:
(08-09-2021, 02:41 AM)CounterPillow Wrote:
(08-07-2021, 08:31 AM)capablegh Wrote: Or has Rockchip really not released the AT-F source code?

If no sources available for rk3566, it would be disappointing: the chain of trust really depends on trusting RockChip's TF-A binaries, not the solution builder. Also, the Linux part of the userland OP-TEE cannot be built. I wanted to evaluate signed and encrypted boot, which then I cannot.

Does anyone have any comments on this? Will Rockchip ever release these sources? When if so?

Rockchip has not yet released the trusted firmware source. We've been told that they will do this in due time, once they've cleaned them up. The plan is to release them eventually, from what we know. It's just not a priority for them right now.

Hello everybody,

We are also interested with ATF for Quartz64. Your reply was sent one year's ago. Do you know if there any progress about the release of AT-F source for RK3568 ? 
Thank you in advance, 
Regards,
Romain

Hello,
I've inquired with Rockchip directly about this over a month ago and they said they'd do it at the end of August, but they didn't. At this point I'm relatively sure they're just taking the piss and don't care to provide source code to their customers anymore.

It's best to buy something else.

Occasional Linux Kernel Contributor, Avid Wiki Updater, Ask Me About Quartz64
Open Hardware Quartz64 Model A TOSLink Adapter
Pi-bus GPIO Extender For ROCKPro64 And Quartz64 Model A
Plebian GNU/Linux
  Reply
#8
Hi everyone,

With Rockchip still not having released the source code, I have three questions I would like to get feedback on:

1. Is it possible to use a SBC with an RK36XX series SOC without ever loading the TrustZone blob?
2. If it is possible, what are the negative consequences of not using it?
3. Are there any SOCs with comparable performance to the 35XX series that are as open as the 33XX series, or does one just need to fall back to buying 33XX equipped boards?
  Reply
#9
(09-17-2022, 02:08 PM)CounterPillow Wrote:
(09-15-2022, 02:37 AM)rrollet Wrote:
(08-09-2021, 02:41 AM)CounterPillow Wrote:
(08-07-2021, 08:31 AM)capablegh Wrote: Or has Rockchip really not released the AT-F source code?

If no sources available for rk3566, it would be disappointing: the chain of trust really depends on trusting RockChip's TF-A binaries, not the solution builder. Also, the Linux part of the userland OP-TEE cannot be built. I wanted to evaluate signed and encrypted boot, which then I cannot.

Does anyone have any comments on this? Will Rockchip ever release these sources? When if so?

Rockchip has not yet released the trusted firmware source. We've been told that they will do this in due time, once they've cleaned them up. The plan is to release them eventually, from what we know. It's just not a priority for them right now.

We are also interested with ATF for Quartz64. Your reply was sent one year's ago. Do you know if there any progress about the release of AT-F source for RK3568 ?

I've inquired with Rockchip directly about this over a month ago and they said they'd do it at the end of August, but they didn't. At this point I'm relatively sure they're just taking the piss and don't care to provide source code to their customers anymore.

It's best to buy something else.

AFAICT it's in the works: https://review.trustedfirmware.org/c/TF-...-a/+/16952

Although I don't understand why they haven't fixed the remaining issues as that looks rather simple?
  Reply
#10
(04-26-2023, 05:20 AM)diederik Wrote:
(09-17-2022, 02:08 PM)CounterPillow Wrote:
(09-15-2022, 02:37 AM)rrollet Wrote:
(08-09-2021, 02:41 AM)CounterPillow Wrote:
(08-07-2021, 08:31 AM)capablegh Wrote: Or has Rockchip really not released the AT-F source code?

If no sources available for rk3566, it would be disappointing: the chain of trust really depends on trusting RockChip's TF-A binaries, not the solution builder. Also, the Linux part of the userland OP-TEE cannot be built. I wanted to evaluate signed and encrypted boot, which then I cannot.

Does anyone have any comments on this? Will Rockchip ever release these sources? When if so?

Rockchip has not yet released the trusted firmware source. We've been told that they will do this in due time, once they've cleaned them up. The plan is to release them eventually, from what we know. It's just not a priority for them right now.

We are also interested with ATF for Quartz64. Your reply was sent one year's ago. Do you know if there any progress about the release of AT-F source for RK3568 ?

I've inquired with Rockchip directly about this over a month ago and they said they'd do it at the end of August, but they didn't. At this point I'm relatively sure they're just taking the piss and don't care to provide source code to their customers anymore.

It's best to buy something else.

AFAICT it's in the works: https://review.trustedfirmware.org/c/TF-...-a/+/16952

Although I don't understand why they haven't fixed the remaining issues as that looks rather simple?
Looks like (glacial) progress is indeed being made, but only for the rk3568? Any news about the other rk35XX SOCs?
  Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Quartz64 seeming died Darin755 0 200 01-19-2024, 07:29 PM
Last Post: Darin755
  Quartz64 model a neither booting nor resetting without pressing reset button aleix 2 1,268 08-24-2023, 04:52 AM
Last Post: aleix
  Thoughts on repairs for a Quartz64-B beepy 1 870 08-02-2023, 05:02 PM
Last Post: beepy
Question Li-Pol QUARTZ64 Model-B vs Model-A polrus 1 836 07-13-2023, 10:36 PM
Last Post: tllim
  can't get quartz64-A working jyoung 14 4,867 04-29-2023, 04:41 PM
Last Post: diederik
  Booting Quartz64 Model B Jojo120120 14 7,973 01-23-2023, 03:31 AM
Last Post: balbes150
  OpenBSD support? pion 5 4,000 12-23-2022, 11:10 AM
Last Post: TRS-80
  quartz64 model b 2x20 max power proj964 1 1,620 10-23-2022, 05:32 AM
Last Post: CounterPillow
  quartz64 model b 2x20 pin header proj964 1 1,582 10-23-2022, 05:21 AM
Last Post: CounterPillow
  JTAG/SWD on Quartz64 model A capablegh 4 4,934 10-03-2022, 03:16 PM
Last Post: fatalfeel

Forum Jump:


Users browsing this thread: 2 Guest(s)