bootloader: changes needed NSIB for nRF54H without PM

This commit introduces the changes needed for running the
NSIB on nRF54H - currently when running an application-core
only application.
Note: the NSIB is still experimental, as OTP memory is not
handled properly - MRAM is used instead.

Signed-off-by: Artur Hadasz <[email protected]>

Author: ahasztag

CODEOWNERS

@@ -345,6 +345,7 @@
 /include/dfu/dfu_target_suit.h            @nrfconnect/ncs-charon
 /include/dfu/suit_dfu_fetch_source.h      @nrfconnect/ncs-charon
 /include/dfu/suit_dfu.h                   @nrfconnect/ncs-charon
+/include/bl_partitions.h                  @nrfconnect/ncs-charon
 /include/drivers/flash/                   @nrfconnect/ncs-co-drivers
 /include/drivers/flash/flash_ipuc.h       @nrfconnect/ncs-co-drivers @nrfconnect/ncs-charon
 /include/drivers/gpio/                    @nrfconnect/ncs-co-drivers @nrfconnect/ncs-ll-ursus

cmake/sysbuild/b0_mcuboot_signing.cmake

@@ -10,6 +10,8 @@
 # Since this file is brought in via include(), we do the work in a
 # function to avoid polluting the top-level scope.
 
+include(${CMAKE_CURRENT_LIST_DIR}/bootloader_dts_utils.cmake)
+
 function(ncs_secure_boot_mcuboot_sign application bin_files signed_targets prefix)
   find_program(IMGTOOL imgtool.py HINTS ${ZEPHYR_MCUBOOT_MODULE_DIR}/scripts/ NAMES imgtool NAMES_PER_DIR)
   set(keyfile "${SB_CONFIG_BOOT_SIGNATURE_KEY_FILE}")
@@ -26,7 +28,20 @@ function(ncs_secure_boot_mcuboot_sign application bin_files signed_targets prefi
   sysbuild_get(CONFIG_BUILD_OUTPUT_HEX IMAGE ${application} VAR CONFIG_BUILD_OUTPUT_HEX KCONFIG)
 
   string(TOUPPER "${application}" application_uppercase)
-  set(imgtool_sign ${PYTHON_EXECUTABLE} ${IMGTOOL} sign --version ${SB_CONFIG_SECURE_BOOT_MCUBOOT_VERSION} --align 4 --slot-size $<TARGET_PROPERTY:partition_manager,${prefix}PM_${application_uppercase}_SIZE> --pad-header --header-size ${SB_CONFIG_PM_MCUBOOT_PAD})
+  if(SB_CONFIG_PARTITION_MANAGER)
+    set(slot_size $<TARGET_PROPERTY:partition_manager,${prefix}PM_${application_uppercase}_SIZE>)
+    set(mcuboot_pad ${SB_CONFIG_PM_MCUBOOT_PAD})
+    set(pad_header "--pad-header")
+  else()
+    dt_chosen(code_partition_node TARGET ${application} PROPERTY "zephyr,code-partition")
+    dt_reg_size(slot_size TARGET ${application} PATH ${code_partition_node})
+    sysbuild_get(mcuboot_pad IMAGE ${application} VAR CONFIG_ROM_START_OFFSET KCONFIG)
+
+    # The padding has already been added to the image by CONFIG_ROM_START_OFFSET
+    set(pad_header)
+  endif()
+
+  set(imgtool_sign ${PYTHON_EXECUTABLE} ${IMGTOOL} sign --version ${SB_CONFIG_SECURE_BOOT_MCUBOOT_VERSION} --align 4 --slot-size ${slot_size} ${pad_header} --header-size ${mcuboot_pad})
 
   if(SB_CONFIG_MCUBOOT_HARDWARE_DOWNGRADE_PREVENTION)
     set(imgtool_extra --security-counter ${SB_CONFIG_MCUBOOT_HW_DOWNGRADE_PREVENTION_COUNTER_VALUE})
@@ -101,6 +116,11 @@ function(ncs_secure_boot_mcuboot_sign application bin_files signed_targets prefi
       ${application_image_dir}/zephyr/.config
       ${CMAKE_BINARY_DIR}/signed_by_b0_${application}.hex
       )
+
+    set_property(
+      GLOBAL APPEND PROPERTY NORDIC_SECURE_BOOT_HEX_FILES_TO_MERGE
+      ${output}.hex
+    )
   endif()
 
   # Add the west sign calls and their byproducts to the post-processing
@@ -132,21 +152,32 @@ if(SB_CONFIG_BOOTLOADER_MCUBOOT)
 
     if(SB_CONFIG_SECURE_BOOT_BUILD_S1_VARIANT_IMAGE)
       ncs_secure_boot_mcuboot_sign(s1_image "${bin_files}" "${signed_targets}" "")
-      set(extra_bin_data "signed_by_mcuboot_and_b0_s1_image.binload_address=$<TARGET_PROPERTY:partition_manager,PM_S1_ADDRESS>;signed_by_mcuboot_and_b0_s1_image.binslot=1")
+      if(SB_CONFIG_PARTITION_MANAGER)
+        set(slot1_addr $<TARGET_PROPERTY:partition_manager,PM_S1_ADDRESS>)
+      else()
+        nsib_get_s1_address(slot1_addr)
+      endif()
+      set(extra_bin_data "signed_by_mcuboot_and_b0_s1_image.binload_address=${slot1_addr};signed_by_mcuboot_and_b0_s1_image.binslot=1")
     endif()
 
     if(bin_files)
       sysbuild_get(mcuboot_fw_info_firmware_version IMAGE mcuboot VAR CONFIG_FW_INFO_FIRMWARE_VERSION KCONFIG)
 
       include(${ZEPHYR_NRF_MODULE_DIR}/cmake/fw_zip.cmake)
 
+      if(SB_CONFIG_PARTITION_MANAGER)
+        set(slot0_addr $<TARGET_PROPERTY:partition_manager,PM_S0_ADDRESS>)
+      else()
+        nsib_get_s0_address(slot0_addr)
+      endif()
+
       generate_dfu_zip(
         OUTPUT ${CMAKE_BINARY_DIR}/dfu_mcuboot.zip
         BIN_FILES ${bin_files}
         TYPE mcuboot
         IMAGE mcuboot
         SCRIPT_PARAMS
-        "signed_by_mcuboot_and_b0_mcuboot.binload_address=$<TARGET_PROPERTY:partition_manager,PM_S0_ADDRESS>"
+        "signed_by_mcuboot_and_b0_mcuboot.binload_address=${slot0_addr}"
         ${extra_bin_data}
         "version_MCUBOOT=${SB_CONFIG_SECURE_BOOT_MCUBOOT_VERSION}"
         "version_B0=${mcuboot_fw_info_firmware_version}"

cmake/sysbuild/bootloader_dts_utils.cmake

@@ -0,0 +1,137 @@
+# Copyright (c) 2025 Nordic Semiconductor ASA
+# SPDX-License-Identifier: LicenseRef-Nordic-5-Clause
+
+# This file contains utility functions used for handling
+# data coming from the devicetree for configurations using
+# a bootloader.
+# It contains helper functions used to get the addresses of
+# specific bootloader patitions as well as
+# functions that are used to verify the
+# that devicetrees of the images are consistent with each other
+# and with the current bootloader configuration.
+
+function(get_address_from_dt_partition_nodelabel label address)
+  dt_nodelabel(partition_node TARGET ${DEFAULT_IMAGE} NODELABEL ${label} REQUIRED)
+  dt_reg_addr(partition_offset TARGET ${DEFAULT_IMAGE} PATH ${partition_node})
+
+  # Get the parent "two levels up" (../../) of the partition node
+  # This is the partition flash area node
+  string(REPLACE "/" ";" partition_node_split ${partition_node})
+  list(LENGTH partition_node_split child_path_length)
+  math(EXPR parent_path_length "${child_path_length} - 2")
+  list(SUBLIST partition_node_split 0 ${parent_path_length} parent_path_split)
+  string(REPLACE ";" "/" flash_area_node "${parent_path_split}")
+
+  dt_reg_addr(flash_area_addr TARGET ${DEFAULT_IMAGE} PATH ${flash_area_node})
+
+  math(EXPR ${address} "${flash_area_addr} + ${partition_offset}")
+  set(${address} ${${address}} PARENT_SCOPE)
+endfunction()
+
+#
+# Verify that the code partition for a given image matches a specific node label.
+#
+function(code_partition_matches_label_verify label image)
+  dt_nodelabel(label_node TARGET ${image} NODELABEL ${label})
+  dt_chosen(code_partition_node TARGET ${image} PROPERTY "zephyr,code-partition")
+
+  if (NOT "${code_partition_node}" STREQUAL "${label_node}")
+    message(FATAL_ERROR "
+      ERROR: zephyr,code-partition for image ${image}
+      does not match label ${label}.
+      This is required by the current bootloader configuration.
+      zephyr,code-partition node:
+      ${code_partition_node}
+      ${label} node:
+      ${label_node}
+      \n"
+    )
+  endif()
+endfunction()
+
+#
+# Verify that the required node labels for all images point to the same nodes
+# as for the default image
+#
+function(labels_match_for_all_images_verify labels)
+  foreach(label ${labels})
+    dt_nodelabel(default_image_node TARGET ${DEFAULT_IMAGE} NODELABEL ${label} REQUIRED)
+    foreach(image ${IMAGES})
+      dt_nodelabel(node TARGET ${image} NODELABEL ${label} REQUIRED)
+      if (NOT "${node}" STREQUAL "${default_image_node}")
+        message(FATAL_ERROR "
+          ERROR: Node pointed by ${label} for image ${image}
+          does not match the node for the default image ${DEFAULT_IMAGE}.
+          Node for default image ${DEFAULT_IMAGE}: ${default_image_node}
+          Node for image ${image}: ${label_node}
+          \n"
+        )
+      endif()
+    endforeach()
+  endforeach()
+endfunction()
+
+function(verify_bootloader_dts_configuration)
+  set(required_labels_list)
+  set(nordic_bootloader_vars_names)
+
+  # Create a list of all devicetree labels that are required for
+  # the current bootloader configuration.
+  if(SB_CONFIG_SECURE_BOOT)
+    list(APPEND required_labels_list "b0_partition" "provision_partition" "s0_partition")
+  endif()
+  if(SB_CONFIG_BOOTLOADER_MCUBOOT)
+    list(APPEND required_labels_list "boot_partition")
+    list(APPEND required_labels_list "slot0_partition")
+    list(APPEND required_labels_list "slot1_partition")
+  endif()
+  if(SB_CONFIG_SECURE_BOOT_BUILD_S1_VARIANT_IMAGE)
+    list(APPEND required_labels_list "s1_partition")
+  endif()
+
+  # Check that the labels are present for all images and that they point to the same nodes
+  # for each of the images.
+  # This way we can treat a devicetree from any of the images as the source of truth for
+  # the whole system when it comes to the required node labels.
+  labels_match_for_all_images_verify("${required_labels_list}")
+
+  # Verify that the zephyr,code-partition chosen node for each of the images
+  # points to the expected node labels
+  if(SB_CONFIG_BOOTLOADER_MCUBOOT)
+    code_partition_matches_label_verify("slot0_partition" "${DEFAULT_IMAGE}")
+  elseif(SB_CONFIG_SECURE_BOOT)
+    code_partition_matches_label_verify("s0_partition" "${DEFAULT_IMAGE}")
+  endif()
+
+  if(SB_CONFIG_SECURE_BOOT)
+    code_partition_matches_label_verify("b0_partition" "b0")
+  endif()
+  if(SB_CONFIG_SECURE_BOOT_BUILD_S1_VARIANT_IMAGE)
+    code_partition_matches_label_verify("s1_partition" "s1_image")
+  endif()
+
+  if(SB_CONFIG_BOOTLOADER_MCUBOOT)
+    code_partition_matches_label_verify("boot_partition" "mcuboot")
+    if(SB_CONFIG_SECURE_BOOT)
+      # In the B0 + MCUBOOT configuration s0_partition points to boot_partition
+      code_partition_matches_label_verify("s0_partition" "mcuboot")
+    endif()
+  endif()
+endfunction()
+
+function(nsib_get_s0_address address)
+  set(s0_label "s0_partition")
+  get_address_from_dt_partition_nodelabel(${s0_label} ${address})
+  set(${address} ${${address}} PARENT_SCOPE)
+endfunction()
+
+function(nsib_get_s1_address address)
+  set(s1_label "s1_partition")
+  get_address_from_dt_partition_nodelabel(${s1_label} ${address})
+  set(${address} ${${address}} PARENT_SCOPE)
+endfunction()
+
+function(nsib_get_provision_address address)
+  get_address_from_dt_partition_nodelabel("provision_partition" ${address})
+  set(${address} ${${address}} PARENT_SCOPE)
+endfunction()

cmake/sysbuild/image_signing.cmake

@@ -58,7 +58,7 @@ function(zephyr_mcuboot_tasks)
   # Fetch devicetree details for flash and slot information
   dt_chosen(flash_node PROPERTY "zephyr,flash")
   dt_nodelabel(slot0_flash NODELABEL "slot0_partition" REQUIRED)
-  dt_prop(slot_size PATH "${slot0_flash}" PROPERTY "reg" INDEX 1 REQUIRED)
+  dt_reg_size(slot_size PATH "${slot0_flash}" REQUIRED)
   dt_prop(write_block_size PATH "${flash_node}" PROPERTY "write-block-size")
 
   if(NOT write_block_size)
@@ -81,13 +81,17 @@ function(zephyr_mcuboot_tasks)
     endif()
   endif()
 
-  # Split fields, imgtool_sign_sysbuild is stored in cache which will have fields updated by
-  # sysbuild, imgtool_sign must not be stored in cache because it would then prevent those fields
-  # from being updated without a pristine build
-  # TODO: NCSDK-28461 sysbuild PM fields cannot be updated without a pristine build, will become
-  # invalid if a static PM file is updated without pristine build
-  set(imgtool_sign_sysbuild --slot-size @PM_MCUBOOT_PRIMARY_SIZE@ --pad-header --header-size @PM_MCUBOOT_PAD_SIZE@ ${imgtool_rom_command} CACHE STRING "imgtool sign sysbuild replacement")
-  set(imgtool_sign ${PYTHON_EXECUTABLE} ${IMGTOOL} sign --version ${CONFIG_MCUBOOT_IMGTOOL_SIGN_VERSION} --align ${write_block_size} ${imgtool_sign_sysbuild})
+  if(CONFIG_PARTITION_MANAGER_ENABLED)
+    # Split fields, imgtool_sign_sysbuild is stored in cache which will have fields updated by
+    # sysbuild, imgtool_sign must not be stored in cache because it would then prevent those fields
+    # from being updated without a pristine build
+    # TODO: NCSDK-28461 sysbuild PM fields cannot be updated without a pristine build, will become
+    # invalid if a static PM file is updated without pristine build
+    set(imgtool_sign_sysbuild --slot-size @PM_MCUBOOT_PRIMARY_SIZE@ --pad-header --header-size @PM_MCUBOOT_PAD_SIZE@ ${imgtool_rom_command} CACHE STRING "imgtool sign sysbuild replacement")
+    set(imgtool_sign ${PYTHON_EXECUTABLE} ${IMGTOOL} sign --version ${CONFIG_MCUBOOT_IMGTOOL_SIGN_VERSION} --align ${write_block_size} ${imgtool_sign_sysbuild})
+  else()
+    set(imgtool_sign ${PYTHON_EXECUTABLE} ${IMGTOOL} sign --version ${CONFIG_MCUBOOT_IMGTOOL_SIGN_VERSION} --align ${write_block_size} --slot-size ${slot_size} --header-size ${CONFIG_ROM_START_OFFSET} ${imgtool_rom_command})
+  endif()
 
   # Arguments to imgtool.
   if(NOT CONFIG_MCUBOOT_EXTRA_IMGTOOL_ARGS STREQUAL "")