i.MX8MP 平台开启 CAAM + trusted keys 后 warm reboot 稳定性问题咨询

DADAXIN

NXP社区技术人员，大家好

在 i.MX8MP 平台上做系统稳定性测试时，遇到一个与 CAAM 相关的 warm reboot 小概率卡住问题，想请教是否有相关经验或建议的配置方式。

测试环境说明

SoC：i.MX8MP
系统：Yocto Linux（init 启动方式）
内核版本：6.6.52
存储：eMMC
测试方式：系统启动后，通过脚本进行连续 reboot 压力测试

现象描述

关闭 CAAM 相关功能时
- 连续 reboot 测试超过 500 次
- 系统均可正常启动
- 未出现卡死或启动异常
开启 CAAM 及 trusted/encrypted keys 相关功能后
- reboot 测试中 约 1/100 ～ 1/200 的概率
- 系统在启动阶段卡住
- 串口停留在早期初始化日志
- 异常时可观察到类似日志

3、异常时可观察到类似日志

<1>内核卡住log

[    2.159151] caam 30900000.crypto: caam pkc algorithms registered in /proc/crypto
[    2.166628] caam 30900000.crypto: rng crypto API alg registered prng-caam
[    2.173441] caam 30900000.crypto: registering rng-caam
[    2.180670] Executing RNG SELF-TEST with wait
[    2.259240] mmc2: new HS400 Enhanced strobe MMC card at address 0001
[    2.266720] mmcblk2: mmc2:0001 DV4032 29.1 GiB
[    2.274171]  mmcblk2: p1 p2 p3
[    2.279584] mmcblk2boot0: mmc2:0001 DV4032 4.00 MiB
[    2.286069] mmcblk2boot1: mmc2:0001 DV4032 4.00 MiB
[    2.293040] mmcblk2rpmb: mmc2:0001 DV4032 16.0 MiB, chardev (234:0)
[   60.410412] imx-sdma 30bd0000.dma-controller: Direct firmware load for imx/sdma/sdma-imx7d.bin failed with error -2
[   60.420874] imx-sdma 30bd0000.dma-controller: Falling back to sysfs fallback for: imx/sdma/sdma-imx7d.bin
[  121.822422] imx-sdma 30bd0000.dma-controller: external firmware not found, using ROM firmware
[  123.010384] random: crng init done

<2> 在 reboot 过程中，也偶尔能看到：

caam_jr ... Device is busy

<3> 相关内核配置

CONFIG_CRYPTO=y
CONFIG_CRYPTO_DEV_FSL_CAAM=y
CONFIG_CRYPTO_DEV_FSL_CAAM_JR=y
CONFIG_CRYPTO_DEV_FSL_CAAM_RNG_API=y
CONFIG_TRUSTED_KEYS=y
CONFIG_TRUSTED_KEYS_CAAM=y
CONFIG_ENCRYPTED_KEYS=y
CONFIG_DM_CRYPT=y

关闭 CAAM（或 trusted/encrypted keys），warm reboot 稳定性恢复正常

Bio_TICFSL

Hello,

On the i.MX8MP platform, considering the Kernel 6.6.52 and CAAM RNG Self-test stuck issues you provided, this is typically related to a chain reaction caused by residual RNG initialization state, Job Ring permission lockout, or SDMA firmware loading timeout. The following are analysis suggestions and configuration solutions for this issue:

1. Core Cause Analysis CAAM State Machine Not Reset: Warm reboot does not reset all SoC registers. If CAAM was busy before reboot (e.g., caam_jr ... Device is busy in the log), the RNG's hardware state machine may be in an indeterminate intermediate state after reboot. Job Ring Permission Issue: If High Assurance Boot (HAB) or OP-TEE is used, the BootROM or ATF may lock certain Job Rings (JRs). During warm reboot, if the JR registers are not properly released, the Linux kernel will wait indefinitely during the Executing RNG SELF-TEST with wait phase because it cannot obtain a hardware response.

2. Suggested Optimizations and Solutions

A. Kernel Configuration and Driver Adjustment Disable Synchronous Self-Check: Try disabling the forced wait mechanism in CONFIG_CRYPTO_DEV_FSL_CAAM_RNG_API, or pre-initialize the RNG in U-Boot.

Integrate SDMA Firmware: Compile the SDMA firmware into the kernel (CONFIG_EXTRA_FIRMWARE="imx/sdma/sdma-imx7d.bin") to avoid the 60-second wait time caused by the file system not being mounted in the early stages of startup. This can significantly reduce timing risks during the startup process.

B. Modify U-Boot/ATF Reset Behavior (Workaround) Warm Reset often has this kind of residual problem on the i.MX8M series.

C. DTS Device Tree Check the attributes of the caam_jr node. In some versions, it is necessary to ensure that the Job Ring allocation is consistent with the security mode:

&crypto {
    status = "okay";
};

&sec_jr0 {
    status = "okay";
};

Regards

DADAXIN

感谢回复！我将对这两个部分进行改动验证，后续反馈情况；