Building UEFI based firmware on MinnowBoard

Building coreboot on well supported platform such as Bay Trail is quite straightforward task, however we need to remember about some things in order to have coreboot working. First of all we need to provide up-to-date microcode and FSP (Firmware Support Package), which are not included in coreboot source tree and coreboot build system won’t complain about it. Second thing is that Bay Trail has TXE firmware on the same ROM as boot firmware so we have to make sure that we won’t corrupt it because it would brick the platform. Except those we have standard procedure, we need to get a toolchain.

Microcode

Newest microcode can be found on https://cloud.3mdeb.com/index.php/s/72tWrYQmYQ5gtTr We have to provide it because it’s a condition for warranty for CPU. It is provided as Intel-syntax assembly file with microcode as though it was ordinary data:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16

dd 000000001h ; Header Version
dd 000000321h ; Patch ID
dd 001142014h ; DATE
dd 000030673h ; CPUID
dd 0984d6012h ; Checksum
dd 000000001h ; Loader Version
dd 000000001h ; Platform ID
dd 00000cbd0h ; Data size
dd 00000cc00h ; Total size
dd 000000000h ; reserved
dd 000000000h ; reserved
dd 000000000h ; reserved
dd 000000000h
dd 0000000a1h
dd 000020001h
dd 000000321h

details of it’s structure are confidential. However for coreboot we need to provide it as comma separated list of values in C-style format, like this:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14

0x000000001,
0x00000021d,
0x008122013,
0x000030672,
0x0a565e78c,
0x000000001,
0x000000002,
0x00000cbd0,
0x00000cc00,
0x000000000,
0x000000000,
0x000000000,
0x000000000,
0x0000000a1,

We can easily download and convert it using simple script:

1
2
3
4
5
6
7
8
9

wget 'http://intel.ly/2yStb2e' -O MM-firmware.zip
unzip MM-firmware.zip
cd MinnowBoard_MAX-0.97-Binary.Objects/Vlv2MiscBinariesPkg/Microcode
for f in *.inc ; do
    name=${f%.inc}
    awk '{gsub( /h.*$/, "", $2 ); print "0x" $2 ","; }' $f \
        > $name.h
done
cp *.h ../../../

FSP (Firmware Support Package)

FSP is binary package from Intel dedicated to firmware developers containing most important platform initialization (including IP). However there is non-FSP version of coreboot for Bay Trail however it won’t work without MRC (Memory Reference Code) which is confidential (available for trusted vendors) so we won’t cover this option.

Intel sites redirect to https://github.com/IntelFsp/FSP (branch BayTrail) where you can find it. We are interested mostly in BayTrailFspBinPkg/FspBin/BayTrailFSP.fd which is file we have to provide to coreboot. FSP can be configured using BCT (Binary Configuration Tools), which is optional — needed to enable Secure boot and FastBoot. The tool is available only as Windows application, but works well using Wine too.

In the same package you can find VgaBIOS which can be used too if you want to use graphic card: BayTrailFspBinPkg/Vbios/Vga.dat

ME region

Despite the name, ME region contains TXE firmware, as mentioned, we must not corrupt it. The simplest way to avoid that is to read ROM layout from original firmware image. In utils/ifdtool of coreboot source tree we can find program for reading layout from ROM image. The image can be taken from firmware package or read using flashrom, using SPI interface:

1

sudo flashrom -p dediprog -r minnow.rom

Note that you may need to adjust -p option according to used SPI programmer. Use -p internal if you use MinnowBoard’s internal programmer.

 1
 2
 3
 4
 5
 6
 7
 8
 9
10

~/code/coreboot> cd util/ifdtool/
~/code/coreboot/util/ifdtool> make
~/code/coreboot/util/ifdtool> ./ifdtool -f ../../mb.layout minnow.rom
File minnow.bin is 8388608 bytes
Wrote layout to ../../mb.layout
~/code/coreboot/util/ifdtool> cat ../../mb.layout
00000000:00000fff fd
00400000:007fffff bios
00001000:003fffff me
00000000:00000fff gbe

While flashing coreboot we should inform flashrom only to write bios region

1

sudo flashrom -l mb.layout -i bios -p dediprog -w build/coreboot.rom

Be careful because this layout may vary between versions, so we should check it for each version separately. For mass reproduction it could be useful to read original firmware, apply coreboot on that image and flash it as a whole on each device.

In case of using wrong layout resulting in bricked platform flash stock firmware (or backup), reread layout and flash coreboot again.

Toolchain

coreboot needs specific versions of toolchain components, we have to take care of this. Makefile has rule for building toolchain:

1
2
3
4

# make sure, we have all dependencies:
apt-get install git build-essential gnat flex bison libncurses5-dev wget zlib1g-dev

make crossgcc-i386

Despite the fact that that we usually want to boot 64-bit OS, coreboot code is compiled for 32-bit. Moreover we have noticed that there’s problem with libpayload on 64-bit toolchain.

However this procedure may be problematic. It may take much time on older machine and compilation may fail on some GCC versions. It’s much easier to use docker, there is dedicated docker image with toolchain for coreboot:

1

sudo docker pull coreboot/coreboot-sdk:1.50

If you don’t have installed docker, please follow official guide: https://docs.docker.com/install/

There is also our image with additional FSP package (under default path): 3mdeb/coreboot-trainings-sdk:latest.

To run shell in docker environment:

1
2

docker run -u root -it -v $PWD:/home/coreboot/coreboot --rm  \
    coreboot/coreboot-sdk:1.50 /bin/bash

NOTE: remember that it works as root, so you may want to change owner of new files after build. This command must be ran in coreboot directory (there is $PWD in mount parameter -v).

Configuration

coreboot is configured using make menuconfig similar to Linux Kernel (needs ncurses library). First in Mainboard menu we set platform:

1
2

Mainboard vendor (Intel)  --->
Mainboard model (Minnow Max)  --->

Except of this we have to configure microcode and enable FSP in Chipset menu:

1
2
3
4
5

Include CPU microcode in CBFS (Include external microcode header files)  --->
(M0130673321.h  M0130679901.h  M023067221D.h) List of space separated microcode header

[*] Use Intel Firmware Support Package
(../intel/fsp/baytrail/BAYTRAIL_FSP.fd) Intel FSP binary path and filename (NEW)

If we want to use VgaBIOS, we can configure it in Devices:

1
2

 [*] Add a VGA BIOS image
(../intel/cpu/baytrail/vbios/Vga.dat) VGA BIOS path and filename (NEW)

On x86 by default, coreboot chooses SeaBIOS as a payload so that it provides legacy BIOS interface. You may want to use one of other options: GRUB (well known, robust Open Source boot loader), Tianocore (UEFI), etc.

This is minimal configuration for MinnowBoard. However you probably want to decrease log level (default 8:SPEW is much too verbose) in Console menu:

1

Default console log level (5: NOTICE)  --->

Build & Flash

When configuration is complete, we can save it and run:

1

make

If everything goes well, output should end like this:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20

    CBFSPRINT  coreboot.rom

Name                           Offset     Type           Size   Comp
cbfs master header             0x0        cbfs header        32 none
fallback/romstage              0x80       stage           30204 none
cpu_microcode_blob.bin         0x7700     microcode           0 none
fallback/ramstage              0x7780     stage           58614 none
config                         0x15cc0    raw               118 none
revision                       0x15d80    raw               582 none
cmos_layout.bin                0x16000    cmos_layout      1208 none
fallback/dsdt.aml              0x16500    raw             12528 none
fallback/payload               0x19640    payload         68158 none
payload_config                 0x2a0c0    raw              1593 none
payload_revision               0x2a740    raw               239 none
(empty)                        0x2a880    null          2969432 none
bootblock                      0x2ff800   bootblock        1720 none
    HOSTCC     cbfstool/ifwitool.o
    HOSTCC     cbfstool/ifwitool (link)

Built intel/minnowmax (Minnow Max)

So we can flash it. If you are using docker image, remember that it doesn’t contain flashrom so you have to do that outside container:

1

sudo flashrom -l mb.layout -i bios -p dediprog -w build/coreboot.rom

Conclusion

This procedure is pretty straightforward, but in practice turns out to cause much trouble at first time. It also covers only most basic options. We are open to help if you have problem with that. Also if you don’t want to do that we provide such a service.

Building EDK2 based firmware for MinnowBoard

There are some options to build firmware for MinnowBoard, a Bay-Trail-based SBC (Single Board Computer) from Intel. We usually prefer coreboot as simplest and fastest, open source solution, but sometimes we want to have UEFI interface.

UEFI itself doesn’t cover whole boot procedure, so its open source reference implementation, EDK2 is not enough to build firmware for hardware plafrorms so we need to provide PI (Platform Initialization) phase implementation. In EDK2 repository we can find only implementation for virtualization (OVMF), this option is covered in this article.

coreboot could be used to provide PI phase, but this procedure is mostly covered in the article on building coreboot for MinnowBoard, but we need to choose Tianocore payload. In this article we cover building UEFI firmware using binary objects from Intel. Whole procedure can be done using following script:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19

#!/bin/sh -xe

if [[ "$1" == "init" ]]; then
    docker pull 3mdeb/edk2
    git clone https://github.com/tianocore/edk2.git -b vUDK2017
    git clone https://github.com/tianocore/edk2-platforms.git -b devel-MinnowBoardMax-UDK2017
    wget https://firmware.intel.com/sites/default/files/MinnowBoard_MAX-0.97-Binary.Objects.zip
    unzip MinnowBoard_MAX-0.97-Binary.Objects.zip
    cd edk2/CryptoPkg/Library/OpensslLib
    git clone -b OpenSSL_1_1_0-stable https://github.com/openssl/openssl openssl
    cd ../../../..
fi

docker run --rm -it -w /home/edk2 -v $PWD/edk2:/home/edk2/edk2 \
    -v $PWD/edk2-platforms:/home/edk2/edk2-platforms \
    -v $PWD/MinnowBoard_MAX-0.97-Binary.Objects:/home/edk2/silicon \
    -v $PWD/ccache:/home/edk2/.ccache \
    3mdeb/edk2 /bin/bash -c 'cd edk2-platforms/Vlv2TbltDevicePkg/ &&
        source Build_IFWI.sh MNW2 Debug'

in edk2-platforms repository we find open-source part of PI for various platforms including MinnowBoard. However, we need also some closed code from Intel’s site, which contains IP (Intellectual Property). Finally we have to fetch OpenSSL, which is another dependency.

When all those components are ready, we can build. We use dedicated docker images to avoid toolchain compatibility problems. So running docker we mount edk2 (main repository), edk2-platforms and cache directory to respective mount points in the image (build script assume that they are all located in the same directory). So we enter edk2-platforms/Vlv2TbltDevicePkg/ and run source Build_IFWI.sh MNW2 Debug (for DEBUG version). If the build is successfully complete, we can find the image in edk2-platforms/Vlv2TbltDevicePkg/Stitch/MNW2MAX_X64_D_0097_01_GCC.bin.

Bartek Pastudzki

Donate


Search


Recent posts

Research of RAM data remanence times

UEFI Update Capsules for Open Source firmware

Qubes Os Summit 2024

Improving measured boot and TPM support in Dasharo

UEFI Secure Booting FreeBSD with Dasharo firmware


Top authors


Related posts

UEFI Update Capsules for Open Source firmware

UEFI Secure Booting FreeBSD with Dasharo firmware

Implementing UEFI Secure Boot on MPL PIP4x

Installing TrenchBoot in UEFI environments

Building EDK2 based firmware for MinnowBoard


Archives

2024 (13)
2023 (12)
2022 (14)
2021 (25)
2020 (44)
2019 (26)
2018 (16)
2017 (12)
2016 (10)
2015 (8)
2014 (6)
2013 (14)
2012 (24)

Popular tags

linux coreboot embedded open-source trenchboot productivity tpm xen toolchain uefi qubesos yocto apu dasharo arm virtualization qemu rte hypervisor debian Show more