css_scp_bootloader.c 5.91 KB
Newer Older
1
/*
2
 * Copyright (c) 2014-2016, ARM Limited and Contributors. All rights reserved.
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are met:
 *
 * Redistributions of source code must retain the above copyright notice, this
 * list of conditions and the following disclaimer.
 *
 * Redistributions in binary form must reproduce the above copyright notice,
 * this list of conditions and the following disclaimer in the documentation
 * and/or other materials provided with the distribution.
 *
 * Neither the name of ARM nor the names of its contributors may be used
 * to endorse or promote products derived from this software without specific
 * prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 * POSSIBILITY OF SUCH DAMAGE.
 */

#include <arch_helpers.h>
32
#include <assert.h>
33
#include <css_def.h>
34
#include <debug.h>
35
#include <platform.h>
36
#include <stdint.h>
37
38
39
40
#include "css_mhu.h"
#include "css_scp_bootloader.h"
#include "css_scpi.h"

41
42
/* ID of the MHU slot used for the BOM protocol */
#define BOM_MHU_SLOT_ID		0
43

44
45
46
/* Boot commands sent from AP -> SCP */
#define BOOT_CMD_INFO	0x00
#define BOOT_CMD_DATA	0x01
47

48
/* BOM command header */
49
typedef struct {
50
51
52
	uint32_t id : 8;
	uint32_t reserved : 24;
} bom_cmd_t;
53
54

typedef struct {
55
56
57
	uint32_t image_size;
	uint32_t checksum;
} cmd_info_payload_t;
58
59

/*
60
 * Unlike the SCPI protocol, the boot protocol uses the same memory region
61
62
 * for both AP -> SCP and SCP -> AP transfers; define the address of this...
 */
63
#define BOM_SHARED_MEM		PLAT_CSS_SCP_COM_SHARED_MEM_BASE
64
65
#define BOM_CMD_HEADER		((bom_cmd_t *) BOM_SHARED_MEM)
#define BOM_CMD_PAYLOAD		((void *) (BOM_SHARED_MEM + sizeof(bom_cmd_t)))
66

67
68
69
70
71
typedef struct {
	/* Offset from the base address of the Trusted RAM */
	uint32_t offset;
	uint32_t block_size;
} cmd_data_payload_t;
72

73
74
75
static void scp_boot_message_start(void)
{
	mhu_secure_message_start(BOM_MHU_SLOT_ID);
76
77
}

78
static void scp_boot_message_send(size_t payload_size)
79
{
80
81
82
83
	/* Ensure that any write to the BOM payload area is seen by SCP before
	 * we write to the MHU register. If these 2 writes were reordered by
	 * the CPU then SCP would read stale payload data */
	dmbst();
84
85

	/* Send command to SCP */
86
	mhu_secure_message_send(BOM_MHU_SLOT_ID);
87
88
89
90
}

static uint32_t scp_boot_message_wait(size_t size)
{
91
92
93
94
95
96
97
98
99
100
	uint32_t mhu_status;

	mhu_status = mhu_secure_message_wait();

	/* Expect an SCP Boot Protocol message, reject any other protocol */
	if (mhu_status != (1 << BOM_MHU_SLOT_ID)) {
		ERROR("MHU: Unexpected protocol (MHU status: 0x%x)\n",
			mhu_status);
		panic();
	}
101

102
103
104
105
	/* Ensure that any read to the BOM payload area is done after reading
	 * the MHU register. If these 2 reads were reordered then the CPU would
	 * read invalid payload data */
	dmbld();
106

107
	return *(uint32_t *) BOM_SHARED_MEM;
108
109
110
111
}

static void scp_boot_message_end(void)
{
112
	mhu_secure_message_end(BOM_MHU_SLOT_ID);
113
114
}

115
int scp_bootloader_transfer(void *image, unsigned int image_size)
116
{
117
118
119
120
	uint32_t response;
	uint32_t checksum;
	cmd_info_payload_t *cmd_info_payload;
	cmd_data_payload_t *cmd_data_payload;
121

122
	assert((uintptr_t) image == SCP_BL2_BASE);
123

124
	if ((image_size == 0) || (image_size % 4 != 0)) {
125
		ERROR("Invalid size for the SCP_BL2 image. Must be a multiple of "
126
127
128
129
			"4 bytes and not zero (current size = 0x%x)\n",
			image_size);
		return -1;
	}
130

131
132
133
134
	/* Extract the checksum from the image */
	checksum = *(uint32_t *) image;
	image = (char *) image + sizeof(checksum);
	image_size -= sizeof(checksum);
135

136
	mhu_secure_init();
137

138
	VERBOSE("Send info about the SCP_BL2 image to be transferred to SCP\n");
139

140
141
142
143
144
145
146
147
148
149
150
151
	/*
	 * Send information about the SCP firmware image about to be transferred
	 * to SCP
	 */
	scp_boot_message_start();

	BOM_CMD_HEADER->id = BOOT_CMD_INFO;
	cmd_info_payload = BOM_CMD_PAYLOAD;
	cmd_info_payload->image_size = image_size;
	cmd_info_payload->checksum = checksum;

	scp_boot_message_send(sizeof(*cmd_info_payload));
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
#if CSS_DETECT_PRE_1_7_0_SCP
	{
		const uint32_t deprecated_scp_nack_cmd = 0x404;
		uint32_t mhu_status;

		VERBOSE("Detecting SCP version incompatibility\n");

		mhu_status = mhu_secure_message_wait();
		if (mhu_status == deprecated_scp_nack_cmd) {
			ERROR("Detected an incompatible version of the SCP firmware.\n");
			ERROR("Only versions from v1.7.0 onwards are supported.\n");
			ERROR("Please update the SCP firmware.\n");
			return -1;
		}

		VERBOSE("SCP version looks OK\n");
	}
#endif /* CSS_DETECT_PRE_1_7_0_SCP */
170
171
	response = scp_boot_message_wait(sizeof(response));
	scp_boot_message_end();
172

173
174
175
176
177
	if (response != 0) {
		ERROR("SCP BOOT_CMD_INFO returned error %u\n", response);
		return -1;
	}

178
	VERBOSE("Transferring SCP_BL2 image to SCP\n");
179

180
	/* Transfer SCP_BL2 image to SCP */
181
	scp_boot_message_start();
182

183
184
	BOM_CMD_HEADER->id = BOOT_CMD_DATA;
	cmd_data_payload = BOM_CMD_PAYLOAD;
185
	cmd_data_payload->offset = (uintptr_t) image - ARM_TRUSTED_SRAM_BASE;
186
	cmd_data_payload->block_size = image_size;
187

188
189
190
	scp_boot_message_send(sizeof(*cmd_data_payload));
	response = scp_boot_message_wait(sizeof(response));
	scp_boot_message_end();
191

192
193
194
	if (response != 0) {
		ERROR("SCP BOOT_CMD_DATA returned error %u\n", response);
		return -1;
195
196
	}

197
198
	VERBOSE("Waiting for SCP to signal it is ready to go on\n");

199
200
201
	/* Wait for SCP to signal it's ready */
	return scpi_wait_ready();
}