Gitiles
Code Review Sign In
git01.mediatek.com / filogic / atf / 0566a979507ab62442ac96ed5039f4720b4ea8b5 / . / plat / arm / board / tc / tc_bl1_dpe.c
blob: a073dc33375d27ce57d135244b73233fee8bdc1a [file] [log] [blame]
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]1/*
2 * Copyright (c) 2024, Arm Limited. All rights reserved.
3 *
4 * SPDX-License-Identifier: BSD-3-Clause
5 */
6
7#include <stdint.h>
8
Tamas Ban0fbe8622023-06-12 11:33:47 +0200[diff] [blame]9#include <common/debug.h>
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]10#include <drivers/arm/css/sds.h>
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]11#include <drivers/arm/rse_comms.h>
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]12#include <drivers/delay_timer.h>
13#include <drivers/generic_delay_timer.h>
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]14#include <drivers/measured_boot/metadata.h>
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]15#include <drivers/measured_boot/rse/dice_prot_env.h>
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]16#include <plat/arm/common/plat_arm.h>
17#include <plat/common/platform.h>
18#include <platform_def.h>
19#include <tools_share/zero_oid.h>
20
Tamas Bana5d3ca82024-01-30 12:56:38 +0100[diff] [blame]21#include "tc_dpe_cert.h"
22
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]23struct dpe_metadata tc_dpe_metadata[] = {
24 {
25 .id = FW_CONFIG_ID,
Tamas Bana5d3ca82024-01-30 12:56:38 +0100[diff] [blame]26 .cert_id = DPE_AP_FW_CERT_ID,
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]27 .signer_id_size = SIGNER_ID_MIN_SIZE,
28 .sw_type = MBOOT_FW_CONFIG_STRING,
29 .allow_new_context_to_derive = false,
30 .retain_parent_context = true,
31 .create_certificate = false,
32 .pk_oid = ZERO_OID },
33 {
34 .id = TB_FW_CONFIG_ID,
Tamas Bana5d3ca82024-01-30 12:56:38 +0100[diff] [blame]35 .cert_id = DPE_AP_FW_CERT_ID,
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]36 .signer_id_size = SIGNER_ID_MIN_SIZE,
37 .sw_type = MBOOT_TB_FW_CONFIG_STRING,
38 .allow_new_context_to_derive = false,
39 .retain_parent_context = true,
40 .create_certificate = false,
41 .pk_oid = ZERO_OID },
42 {
43 .id = BL2_IMAGE_ID,
Tamas Bana5d3ca82024-01-30 12:56:38 +0100[diff] [blame]44 .cert_id = DPE_AP_FW_CERT_ID,
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]45 .signer_id_size = SIGNER_ID_MIN_SIZE,
46 .sw_type = MBOOT_BL2_IMAGE_STRING,
47 .allow_new_context_to_derive = true,
Tamas Ban14d82442024-06-03 16:51:49 +0200[diff] [blame]48 .retain_parent_context = true, /* To handle restart */
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]49 .create_certificate = false,
50 .pk_oid = ZERO_OID },
51 {
52 .id = DPE_INVALID_ID }
53};
54
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]55/* Effective timeout of 10000 ms */
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]56#define RSE_DPE_BOOT_10US_RETRIES 1000000
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]57#define TC2_SDS_DPE_CTX_HANDLE_STRUCT_ID 0x0000000A
58
Tamas Ban0fbe8622023-06-12 11:33:47 +0200[diff] [blame]59/* Context handle is meant to be used by BL2. Sharing it via TB_FW_CONFIG */
60static int new_ctx_handle;
Tamas Ban14d82442024-06-03 16:51:49 +0200[diff] [blame]61/* Save a valid parent context handle to be able to send commands to DPE service
62 * in case of an AP cold restart.
63 */
64static int new_parent_ctx_handle;
Tamas Ban0fbe8622023-06-12 11:33:47 +0200[diff] [blame]65
Tamas Ban14d82442024-06-03 16:51:49 +0200[diff] [blame]66void plat_dpe_share_context_handle(int *ctx_handle, int *parent_ctx_handle)
Tamas Ban0fbe8622023-06-12 11:33:47 +0200[diff] [blame]67{
68 new_ctx_handle = *ctx_handle;
Tamas Ban14d82442024-06-03 16:51:49 +0200[diff] [blame]69 new_parent_ctx_handle = *parent_ctx_handle;
Tamas Ban0fbe8622023-06-12 11:33:47 +0200[diff] [blame]70}
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]71
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]72void plat_dpe_get_context_handle(int *ctx_handle)
73{
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]74 int retry = RSE_DPE_BOOT_10US_RETRIES;
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]75 int ret;
76
77 /* Initialize System level generic or SP804 timer */
78 generic_delay_timer_init();
79
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]80 /* Check the initialization of the Shared Data Storage area between RSE
81 * and AP. Since AP_BL1 is executed first then a bit later the RSE
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]82 * runtime, which initialize this area, therefore AP needs to check it
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]83 * in a loop until it gets written by RSE Secure Runtime.
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]84 */
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]85 VERBOSE("Waiting for DPE service initialization in RSE Secure Runtime\n");
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]86 while (retry > 0) {
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]87 ret = sds_init(SDS_RSE_AP_REGION_ID);
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]88 if (ret != SDS_OK) {
89 udelay(10);
90 retry--;
91 } else {
92 break;
93 }
94 }
95
96 if (retry == 0) {
97 ERROR("DPE init timeout\n");
98 plat_panic_handler();
99 } else {
100 VERBOSE("DPE init succeeded in %dms.\n",
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]101 (RSE_DPE_BOOT_10US_RETRIES - retry) / 100);
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]102 }
103
104 /* TODO: call this in a loop to avoid reading unfinished data */
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]105 ret = sds_struct_read(SDS_RSE_AP_REGION_ID,
Tamas Banae33fa92023-06-07 14:18:46 +0200[diff] [blame]106 TC2_SDS_DPE_CTX_HANDLE_STRUCT_ID,
107 0,
108 ctx_handle,
109 sizeof(*ctx_handle),
110 SDS_ACCESS_MODE_NON_CACHED);
111 if (ret != SDS_OK) {
112 ERROR("Unable to get DPE context handle from SDS area\n");
113 plat_panic_handler();
114 }
115
116 VERBOSE("Received DPE context handle: 0x%x\n", *ctx_handle);
117}
118
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]119void bl1_plat_mboot_init(void)
120{
Tamas Bandc15bf42024-02-22 11:35:28 +0100[diff] [blame]121 /* Initialize the communication channel between AP and RSE */
122 (void)rse_comms_init(PLAT_RSE_AP_SND_MHU_BASE,
123 PLAT_RSE_AP_RCV_MHU_BASE);
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]124
125 dpe_init(tc_dpe_metadata);
126}
127
128void bl1_plat_mboot_finish(void)
129{
Tamas Ban0fbe8622023-06-12 11:33:47 +0200[diff] [blame]130 int rc;
131
132 VERBOSE("Share DPE context handle with BL2: 0x%x\n", new_ctx_handle);
133 rc = arm_set_tb_fw_info(&new_ctx_handle);
134 if (rc != 0) {
135 ERROR("Unable to set DPE context handle in TB_FW_CONFIG\n");
136 /*
137 * It is a fatal error because on TC platform, BL2 software
138 * assumes that a valid DPE context_handle is passed through
139 * the DTB object by BL1.
140 */
141 plat_panic_handler();
142 }
Tamas Ban14d82442024-06-03 16:51:49 +0200[diff] [blame]143
144 VERBOSE("Save parent context handle: 0x%x\n", new_parent_ctx_handle);
145 rc = sds_struct_write(SDS_RSE_AP_REGION_ID,
146 TC2_SDS_DPE_CTX_HANDLE_STRUCT_ID,
147 0,
148 &new_parent_ctx_handle,
149 sizeof(new_parent_ctx_handle),
150 SDS_ACCESS_MODE_NON_CACHED);
151 if (rc != SDS_OK) {
152 ERROR("Unable to save DPE parent context handle to SDS area\n");
153 plat_panic_handler();
154 }
Tamas Bana4260892023-06-07 13:35:04 +0200[diff] [blame]155}