Skip to content

Commit fa4fc0d

Browse files
authored
Merge pull request #2232 from odincodeshen/main
CSS-V3 Pre-Silicon learning path
2 parents 470c198 + 4e6a364 commit fa4fc0d

File tree

15 files changed

+865
-1
lines changed

15 files changed

+865
-1
lines changed

assets/contributors.csv

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -95,4 +95,6 @@ Chenying Kuo,Adlink,evshary,evshary,,
9595
William Liang,,,wyliang,,
9696
Waheed Brown,Arm,https://github.com/armwaheed,https://www.linkedin.com/in/waheedbrown/,,
9797
Aryan Bhusari,Arm,,https://www.linkedin.com/in/aryanbhusari,,
98+
Ken Zhang,Insyde,,kai-di-zhang-b1642a266,,
99+
Ann Cheng,Arm,anncheng-arm,hello-ann,,
98100
Fidel Makatia Omusilibwa,,,,,

content/learning-paths/cross-platform/zenoh-multinode-ros2/_index.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -51,7 +51,7 @@ further_reading:
5151
type: documentation
5252
- resource:
5353
title: Zenoh and ROS 2 Integration Guide
54-
link: https://github.com/eclipse-zenoh/zenoh-plugin-ros2
54+
link: https://github.com/eclipse-zenoh/zenoh-plugin-ros2dds
5555
type: documentation
5656

5757

Lines changed: 85 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,85 @@
1+
---
2+
title: Introducing the Arm RD‑V3 Platform
3+
weight: 2
4+
5+
### FIXED, DO NOT MODIFY
6+
layout: learningpathall
7+
---
8+
9+
## Introduction to the Arm RD‑V3 Platform
10+
11+
This module introduces the Arm [Neoverse CSS‑V3](https://www.arm.com/products/neoverse-compute-subsystems/css-v3) architecture and the RD‑V3 [Reference Design Platform Software](https://neoverse-reference-design.docs.arm.com/en/latest/index.html) that implements it. You'll learn how these components enable scalable, server-class system design, and how to simulate and validate the full firmware stack using Fixed Virtual Platforms (FVP)—well before hardware is available.
12+
13+
Arm Neoverse is designed to meet the demanding requirements of data center and edge computing, delivering high performance and efficiency. Widely adopted in servers, networking, and edge devices, the Neoverse architecture provides a solid foundation for modern infrastructure.
14+
15+
Using Arm Fixed Virtual Platforms (FVPs), you can explore system bring-up, boot flow, and firmware customization well before physical silicon becomes available.
16+
17+
This module also introduces the key components involved, from Neoverse V3 cores to secure subsystem controllers, and shows how these elements work together in a fully virtualized system simulation.
18+
19+
### Neoverse CSS-V3 Platform Overview
20+
21+
[Neoverse CSS-V3](https://www.arm.com/products/neoverse-compute-subsystems/css-v3) (Compute Subsystem Version 3) is the core subsystem architecture underpinning the Arm RD-V3 platform. It is specifically optimized for high-performance server and data center applications, providing a highly integrated solution combining processing cores, memory management, and interconnect technology.
22+
23+
CSS V3 forms the key building block for specialized computing systems. It reduces design and validation costs for the general-purpose compute subsystem, allowing partners to focus on their specialization and acceleration while reducing risk and accelerating time to deployment.
24+
25+
CSS‑V3 is available in configurable subsystems, supporting up to 64 Neoverse V3 cores per die. It also enables integration of high-bandwidth DDR5/LPDDR5 memory (up to 12 channels), PCIe Gen5 or CXL I/O (up to 64 lanes), and high-speed die-to-die links with support for UCIe 1.1 or custom PHYs. Designs can be scaled down to smaller core-count configurations, such as 32-core SoCs, or expanded through multi-die integration.
26+
27+
Key features of CSS-V3 include:
28+
29+
* High-performance CPU clusters: Optimized for server workloads and data throughput.
30+
31+
* Advanced memory management: Efficient handling of data across multiple processing cores.
32+
33+
* Interconnect technology: Enabling high-speed, low-latency communication within the subsystem.
34+
35+
The CSS‑V3 subsystem is fully supported by Arm's Fixed Virtual Platform, enabling pre-silicon testing of these capabilities.
36+
37+
### RD‑V3 Platform Introduction
38+
39+
The RD‑V3 platform is a comprehensive reference design built around Arm’s [Neoverse V3](https://www.arm.com/products/silicon-ip-cpu/neoverse/neoverse-v3) CPUs, along with [Cortex-M55](https://www.arm.com/products/silicon-ip-cpu/cortex-m/cortex-m55) and [Cortex-M7](https://www.arm.com/products/silicon-ip-cpu/cortex-m/cortex-m7) microcontrollers. This platform enables efficient high-performance computing and robust platform management:
40+
41+
42+
| Component | Description |
43+
|------------------|------------------------------------------------------------------------------------------------|
44+
| Neoverse V3 | The primary application processor responsible for executing OS and payloads |
45+
| Cortex M7 | Implements the System Control Processor (SCP) for power, clocks, and init |
46+
| Cortex M55 | Hosts the Runtime Security Engine (RSE), providing secure boot and runtime integrity |
47+
| Cortex M55 (LCP) | Acts as the Local Control Processor, enabling per-core power and reset management for AP cores |
48+
49+
50+
These subsystems work together in a coordinated architecture, communicating through shared memory regions, control buses, and platform protocols. This enables multi-stage boot processes and robust secure boot implementations.
51+
52+
Here is the Neoverse Reference Design Platform [Software Stack](https://neoverse-reference-design.docs.arm.com/en/latest/about/software_stack.html#sw-stack) for your reference.
53+
54+
![img1 alt-text#center](rdinfra_sw_stack.jpg "Neoverse Reference Design Software Stack")
55+
56+
57+
### Develop and Validate Without Hardware
58+
59+
In traditional development workflows, system validation cannot begin until silicon is available—often introducing risk and delay.
60+
61+
To address this, Arm provides the Fixed Virtual Platform ([FVP](https://developer.arm.com/Tools%20and%20Software/Fixed%20Virtual%20Platforms)) —a complete simulations model that emulates full Arm SoC behavior on a host machine. The CSS‑V3 platform is available in multiple FVP configurations, allowing developers to select the model that best fits their specific development and validation needs.
62+
63+
64+
Key Capabilities of FVP:
65+
* Multi-core CPU simulation with SMP boot
66+
* Multiple UART interfaces for serial debug and monitoring
67+
* Compatible with TF‑A, UEFI, GRUB, and Linux kernel images
68+
* Provides boot logs, trace outputs, and interrupt event visibility for debugging
69+
70+
FVP enables developers to verify boot sequences, debug firmware handoffs, and even simulate RSE behaviors—all before first silicon.
71+
72+
### Comparing different version of RD-V3 FVP
73+
74+
To support different use cases and levels of platform complexity, Arm offers three virtual models based on the CSS‑v3 architecture: RD‑V3, RD-V3-Cfg1, and RD‑V3‑R1. While they share a common foundation, they differ in chip count, system topology, and simulation flexibility.
75+
76+
| Model | Description | Recommended Use Cases |
77+
|-------------|------------------------------------------------------------------|--------------------------------------------------------------------|
78+
| RD‑V3 | Standard single-die platform with full processor and security blocks | Ideal for newcomers, firmware bring-up, and basic validation |
79+
| RD‑V3‑R1 | Dual-die platform simulating chiplet-based architecture | Suitable for multi-node, interconnect, and advanced boot tests |
80+
| CFG1 | Lightweight model with reduced control complexity for fast startup | Best for CI pipelines, unit testing, and quick validations |
81+
| CFG2 | Quad-chip platform with 4×32-core Poseidon-V CPUs connected via CCG links | Designed for advanced multi-chip validation, CML-based coherence, and high-performance platform scaling |
82+
83+
84+
This Learning Path begins with RD‑V3 as the primary platform for foundational exercises, guiding you through the process of building the software stack and simulating it on FVP to verify the boot sequence.
85+
In later modules, you’ll transition to RD‑V3‑R1 to more advanced system simulation, multi-node bring-up, and firmware coordination across components like MCP and SCP.
Lines changed: 160 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,160 @@
1+
---
2+
title: Understanding the CSS V3 Boot Flow and Firmware Stack
3+
weight: 3
4+
5+
### FIXED, DO NOT MODIFY
6+
layout: learningpathall
7+
---
8+
9+
## Firmware Stack Overview and Boot Sequence Coordination
10+
11+
To ensure the platform transitions securely and reliably from power-on to operating system launch, this module introduces the roles and interactions of each firmware component within the RD‑V3 boot process.
12+
You’ll learn how each module contributes to system initialization and how control is systematically handed off across the boot chain.
13+
14+
15+
## How the System Wakes Up
16+
17+
In the RD‑V3 platform, each subsystem—such as TF‑A, RSE, SCP, LCP, and UEFI—operates independently but cooperates through a well-defined sequence.
18+
Each module is delivered as a separate firmware image, yet they coordinate tightly through a structured boot flow and inter-processor signaling.
19+
20+
The following diagram from the [Neoverse Reference Design Documentation](https://neoverse-reference-design.docs.arm.com/en/latest/shared/boot_flow/rdv3_single_chip.html?highlight=boot) illustrates the progression of component activation from initial reset to OS handoff:
21+
22+
![img1 alt-text#center](rdf_single_chip.png "Boot Flow for RD-V3 Single Chip")
23+
24+
### Stage 1. Security Validation Starts First (RSE)
25+
26+
The first firmware module triggered after BL2 is the Runtime Security Engine (RSE), executing on Cortex‑M55. RSE authenticates all critical firmware components—including SCP, UEFI, and kernel images—using secure boot mechanisms. It performs cryptographic measurements and builds a Root of Trust before allowing any other processors to start.
27+
28+
***RSE acts as the platform’s security gatekeeper.***
29+
30+
### Stage 2. Early Hardware Initialization (SCP / MCP)
31+
32+
Once RSE completes verification, the System Control Processor (SCP) and Management Control Processor (MCP) are released from reset.
33+
34+
These controllers perform essential platform bring-up:
35+
* Initialize clocks, reset lines, and power domains
36+
* Prepare DRAM and interconnect
37+
* Enable the application cores and signal readiness to TF‑A
38+
39+
***SCP/MCP are the ground crew bringing hardware systems online.***
40+
41+
### Stage 3. Secure Execution Setup (TF‑A)
42+
43+
Once the AP is released, it begins executing Trusted Firmware‑A (TF‑A) at EL3, starting from the reset vector address programmed during boot image layout.
44+
TF‑A configures the secure world, sets up exception levels, and prepares for handoff to UEFI.
45+
46+
***TF‑A is the ignition controller, launching the next stages securely.***
47+
48+
### Stage 4. Firmware and Bootloader (EDK2 / GRUB)
49+
50+
TF‑A hands off control to UEFI firmware (EDK2), which performs device discovery and launches GRUB.
51+
52+
Responsibilities:
53+
* Detect and initialize memory, PCIe, and boot devices
54+
* Generate ACPI and platform configuration tables
55+
* Locate and launch GRUB from storage or flash
56+
57+
***EDK2 and GRUB are like the first- and second-stage rockets launching the payload.***
58+
59+
### Stage 5. Linux Kernel Boot
60+
61+
GRUB loads the Linux kernel and passes full control to the OS.
62+
63+
Responsibilities:
64+
* Initialize device drivers and kernel subsystems
65+
* Mount the root filesystem
66+
* Start user-space processes (e.g., BusyBox)
67+
68+
***The Linux kernel is the spacecraft—it takes over and begins its mission.***
69+
70+
## Firmware Module Responsibilities in Detail
71+
72+
Now that we’ve examined the high-level boot stages, let’s break down each firmware module’s role in more detail.
73+
74+
Each stage of the boot chain is backed by a dedicated component—either a secure bootloader, platform controller, or operating system manager—working together to ensure a reliable system bring-up.
75+
76+
### RSE: Runtime Security Engine (Cortex‑M55) (Stage 1: Security Validation)
77+
78+
RSE firmware runs on the Cortex‑M55 and plays a critical role in platform attestation and integrity enforcement.
79+
* Authenticates BL2, SCP, and UEFI firmware images (Secure Boot)
80+
* Records boot-time measurements (e.g., PCRs, ROT)
81+
* Releases boot authorization only after successful validation
82+
83+
RSE acts as the second layer of the chain of trust, maintaining a monitored and secure environment throughout early boot.
84+
85+
86+
### SCP: System Control Processor (Cortex‑M7) (Stage 2: Early Hardware Bring-up)
87+
88+
SCP firmware runs on the Cortex‑M7 core and performs early hardware initialization and power domain control.
89+
* Initializes clocks, reset controllers, and system interconnect
90+
* Manages DRAM setup and enables power for the application processor
91+
* Coordinates boot readiness with RSE via MHU (Message Handling Unit)
92+
93+
SCP is central to bring-up operations and ensures the AP starts in a stable hardware environment.
94+
95+
### TF-A: Trusted Firmware-A (BL1 / BL2) (Stage 3: Secure Execution Setup)
96+
97+
TF‑A is the entry point of the boot chain and is responsible for establishing the system’s root of trust.
98+
* BL1 (Boot Loader Stage 1): Executes from ROM, initializing minimal hardware such as clocks and serial interfaces, and loads BL2.
99+
* BL2 (Boot Loader Stage 2): Validates and loads SCP, RSE, and UEFI images, setting up secure handover to later stages.
100+
101+
TF‑A ensures all downstream components are authenticated and loaded from trusted sources, laying the foundation for a secure boot.
102+
103+
104+
### UEFI / GRUB / Linux Kernel (Stage 4–5: Bootloader and OS Handoff)
105+
106+
After SCP powers on the application processor, control passes to the main bootloader and operating system:
107+
* UEFI (EDK2): Provides firmware abstraction, hardware discovery, and ACPI table generation
108+
* GRUB: Selects and loads the Linux kernel image
109+
* Linux Kernel: Initializes the OS, drivers, and launches the userland (e.g., BusyBox)
110+
111+
On the FVP, you can observe this process via UART logs, helping validate each stage’s success.
112+
113+
114+
### LCP: Low Power Controller (Optional Component)
115+
116+
If present in the configuration, LCP handles platform power management at a finer granularity:
117+
* Implements sleep/wake transitions
118+
* Controls per-core power gating
119+
* Manages transitions to ACPI power states (e.g., S3, S5)
120+
121+
LCP support depends on the FVP model and may be omitted in simplified virtual setups.
122+
123+
124+
### Coordination and Handoff Logic
125+
126+
The RD‑V3 boot sequence follows a multi-stage, dependency-driven handshake model, where each firmware module validates, powers, or authorizes the next.
127+
128+
| Stage | Dependency Chain | Description |
129+
|-------|----------------------|-------------------------------------------------------------------------|
130+
| 1 | RSE ← BL2 | RSE is loaded and triggered by BL2 to begin security validation |
131+
| 2 | SCP ← BL2 + RSE | SCP initialization requires both BL2 and authorization from RSE |
132+
| 3 | AP ← SCP + RSE | The application processor starts only after SCP sets power and RSE permits |
133+
| 4 | UEFI → GRUB → Linux | UEFI launches GRUB, which loads the kernel and enters the OS |
134+
135+
This handshake model ensures that no firmware stage proceeds unless its dependencies have securely initialized and authorized the next step.
136+
137+
{{% notice Note %}}
138+
In the table above, arrows (←) represent **dependency relationships**—the component on the left **depends on** the component(s) on the right to be triggered or authorized.
139+
For example, `RSE ← BL2` means that RSE is loaded and triggered by BL2;
140+
`AP ← SCP + RSE` means the application processor can only start after SCP has initialized the hardware and RSE has granted secure boot authorization.
141+
These arrows do not represent execution order but indicate **which component must be ready for another to begin**.
142+
{{% /notice %}}
143+
144+
{{% notice Note %}}
145+
Once the firmware stack reaches UEFI, it performs hardware discovery and launches GRUB.
146+
GRUB then selects and boots the Linux kernel. Unlike the previous dependency arrows (←), this is a **direct execution path**—each stage passes control directly to the next.
147+
{{% /notice %}}
148+
149+
This layered approach supports modular testing, independent debugging, and early-stage simulation—all essential for secure and robust platform bring-up.
150+
151+
152+
In this module, you have:
153+
154+
* Explored the full boot sequence of the RD‑V3 platform, from power-on to Linux login
155+
* Understood the responsibilities of key firmware components such as TF‑A, RSE, SCP, LCP, and UEFI
156+
* Learned how secure boot is enforced and how each module hands off control to the next
157+
* Interpreted boot dependencies using FVP simulation and UART logs
158+
159+
With the full boot flow and firmware responsibilities now clear, you're ready to apply these insights.
160+
In the next module, you'll fetch the RD‑V3 codebase, configure your workspace, and begin building your own firmware stack for simulation.

0 commit comments

Comments
 (0)