css_bom_bootloader.c 5.07 KB
Newer Older
1
/*
Roberto Vargas's avatar
Roberto Vargas committed
2
 * Copyright (c) 2014-2018, ARM Limited and Contributors. All rights reserved.
3
 *
dp-arm's avatar
dp-arm committed
4
 * SPDX-License-Identifier: BSD-3-Clause
5
6
7
 */

#include <arch_helpers.h>
8
#include <assert.h>
9
#include <css_def.h>
10
#include <debug.h>
11
#include <platform.h>
12
#include <stdint.h>
13
#include "../mhu/css_mhu.h"
Soby Mathew's avatar
Soby Mathew committed
14
#include "../scpi/css_scpi.h"
Roberto Vargas's avatar
Roberto Vargas committed
15
#include "css_scp.h"
16

17
18
/* ID of the MHU slot used for the BOM protocol */
#define BOM_MHU_SLOT_ID		0
19

20
21
22
/* Boot commands sent from AP -> SCP */
#define BOOT_CMD_INFO	0x00
#define BOOT_CMD_DATA	0x01
23

24
/* BOM command header */
25
typedef struct {
26
27
28
	uint32_t id : 8;
	uint32_t reserved : 24;
} bom_cmd_t;
29
30

typedef struct {
31
32
33
	uint32_t image_size;
	uint32_t checksum;
} cmd_info_payload_t;
34
35

/*
36
 * Unlike the SCPI protocol, the boot protocol uses the same memory region
37
38
 * for both AP -> SCP and SCP -> AP transfers; define the address of this...
 */
39
#define BOM_SHARED_MEM		PLAT_CSS_SCP_COM_SHARED_MEM_BASE
40
41
#define BOM_CMD_HEADER		((bom_cmd_t *) BOM_SHARED_MEM)
#define BOM_CMD_PAYLOAD		((void *) (BOM_SHARED_MEM + sizeof(bom_cmd_t)))
42

43
44
45
46
47
typedef struct {
	/* Offset from the base address of the Trusted RAM */
	uint32_t offset;
	uint32_t block_size;
} cmd_data_payload_t;
48

49
/*
50
51
52
53
 * All CSS platforms load SCP_BL2/SCP_BL2U just below BL2 (this is where BL31
 * usually resides except when ARM_BL31_IN_DRAM is
 * set). Ensure that SCP_BL2/SCP_BL2U do not overflow into shared RAM and
 * the tb_fw_config.
54
 */
55
56
CASSERT(SCP_BL2_LIMIT <= BL2_BASE, assert_scp_bl2_overwrite_bl2);
CASSERT(SCP_BL2U_LIMIT <= BL2_BASE, assert_scp_bl2u_overwrite_bl2);
57

58
59
CASSERT(SCP_BL2_BASE >= ARM_TB_FW_CONFIG_LIMIT, assert_scp_bl2_overflow);
CASSERT(SCP_BL2U_BASE >= ARM_TB_FW_CONFIG_LIMIT, assert_scp_bl2u_overflow);
60

61
62
63
static void scp_boot_message_start(void)
{
	mhu_secure_message_start(BOM_MHU_SLOT_ID);
64
65
}

66
static void scp_boot_message_send(size_t payload_size)
67
{
68
69
70
71
	/* Ensure that any write to the BOM payload area is seen by SCP before
	 * we write to the MHU register. If these 2 writes were reordered by
	 * the CPU then SCP would read stale payload data */
	dmbst();
72
73

	/* Send command to SCP */
74
	mhu_secure_message_send(BOM_MHU_SLOT_ID);
75
76
77
78
}

static uint32_t scp_boot_message_wait(size_t size)
{
79
80
81
82
83
84
85
86
87
88
	uint32_t mhu_status;

	mhu_status = mhu_secure_message_wait();

	/* Expect an SCP Boot Protocol message, reject any other protocol */
	if (mhu_status != (1 << BOM_MHU_SLOT_ID)) {
		ERROR("MHU: Unexpected protocol (MHU status: 0x%x)\n",
			mhu_status);
		panic();
	}
89

90
91
92
93
	/* Ensure that any read to the BOM payload area is done after reading
	 * the MHU register. If these 2 reads were reordered then the CPU would
	 * read invalid payload data */
	dmbld();
94

95
	return *(uint32_t *) BOM_SHARED_MEM;
96
97
98
99
}

static void scp_boot_message_end(void)
{
100
	mhu_secure_message_end(BOM_MHU_SLOT_ID);
101
102
}

103
int css_scp_boot_image_xfer(void *image, unsigned int image_size)
104
{
105
106
107
108
	uint32_t response;
	uint32_t checksum;
	cmd_info_payload_t *cmd_info_payload;
	cmd_data_payload_t *cmd_data_payload;
109

110
	assert((uintptr_t) image == SCP_BL2_BASE);
111

112
	if ((image_size == 0) || (image_size % 4 != 0)) {
113
		ERROR("Invalid size for the SCP_BL2 image. Must be a multiple of "
114
115
116
117
			"4 bytes and not zero (current size = 0x%x)\n",
			image_size);
		return -1;
	}
118

119
120
121
122
	/* Extract the checksum from the image */
	checksum = *(uint32_t *) image;
	image = (char *) image + sizeof(checksum);
	image_size -= sizeof(checksum);
123

124
	mhu_secure_init();
125

126
	VERBOSE("Send info about the SCP_BL2 image to be transferred to SCP\n");
127

128
129
130
131
132
133
134
135
136
137
138
139
	/*
	 * Send information about the SCP firmware image about to be transferred
	 * to SCP
	 */
	scp_boot_message_start();

	BOM_CMD_HEADER->id = BOOT_CMD_INFO;
	cmd_info_payload = BOM_CMD_PAYLOAD;
	cmd_info_payload->image_size = image_size;
	cmd_info_payload->checksum = checksum;

	scp_boot_message_send(sizeof(*cmd_info_payload));
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
#if CSS_DETECT_PRE_1_7_0_SCP
	{
		const uint32_t deprecated_scp_nack_cmd = 0x404;
		uint32_t mhu_status;

		VERBOSE("Detecting SCP version incompatibility\n");

		mhu_status = mhu_secure_message_wait();
		if (mhu_status == deprecated_scp_nack_cmd) {
			ERROR("Detected an incompatible version of the SCP firmware.\n");
			ERROR("Only versions from v1.7.0 onwards are supported.\n");
			ERROR("Please update the SCP firmware.\n");
			return -1;
		}

		VERBOSE("SCP version looks OK\n");
	}
#endif /* CSS_DETECT_PRE_1_7_0_SCP */
158
159
	response = scp_boot_message_wait(sizeof(response));
	scp_boot_message_end();
160

161
162
163
164
165
	if (response != 0) {
		ERROR("SCP BOOT_CMD_INFO returned error %u\n", response);
		return -1;
	}

166
	VERBOSE("Transferring SCP_BL2 image to SCP\n");
167

168
	/* Transfer SCP_BL2 image to SCP */
169
	scp_boot_message_start();
170

171
172
	BOM_CMD_HEADER->id = BOOT_CMD_DATA;
	cmd_data_payload = BOM_CMD_PAYLOAD;
173
	cmd_data_payload->offset = (uintptr_t) image - ARM_TRUSTED_SRAM_BASE;
174
	cmd_data_payload->block_size = image_size;
175

176
177
178
	scp_boot_message_send(sizeof(*cmd_data_payload));
	response = scp_boot_message_wait(sizeof(response));
	scp_boot_message_end();
179

180
181
182
	if (response != 0) {
		ERROR("SCP BOOT_CMD_DATA returned error %u\n", response);
		return -1;
183
184
	}

185
	return 0;
186
}
Soby Mathew's avatar
Soby Mathew committed
187
188
189
190
191
192
193
194

int css_scp_boot_ready(void)
{
	VERBOSE("Waiting for SCP to signal it is ready to go on\n");

	/* Wait for SCP to signal it's ready */
	return scpi_wait_ready();
}