Gitiles
Code Review Sign In
git01.mediatek.com / filogic / atf / 7b7ebff4e9d0c7ef8972c1d42cffe67e75950f0c / . / plat / arm / board / fvp / fvp_trusted_boot.c
blob: 8e59529531b8b9d9fe8d5cc613863ec231a533df [file] [log] [blame]
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]1/*
laurenw-arm7b7ebff2023-05-02 14:42:48 -0500[diff] [blame^]2 * Copyright (c) 2016-2023, Arm Limited and Contributors. All rights reserved.
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]3 *
dp-armfa3cf0b2017-05-03 09:38:09 +0100[diff] [blame]4 * SPDX-License-Identifier: BSD-3-Clause
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]5 */
6
7#include <assert.h>
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]8#include <stdint.h>
9#include <string.h>
Antonio Nino Diaze0f90632018-12-14 00:18:21 +0000[diff] [blame]10
Sandrine Bailleux2397d472019-07-23 15:41:06 +0200[diff] [blame]11#include <lib/mmio.h>
Manish V Badarkhe09a192c2020-08-23 09:58:44 +0100[diff] [blame]12#include <lib/fconf/fconf.h>
Max Shvetsov06dba292019-12-06 11:50:12 +0000[diff] [blame]13#include <plat/arm/common/plat_arm.h>
Manish V Badarkhe09a192c2020-08-23 09:58:44 +0100[diff] [blame]14#include <plat/arm/common/fconf_nv_cntr_getter.h>
Antonio Nino Diaze0f90632018-12-14 00:18:21 +0000[diff] [blame]15#include <plat/common/platform.h>
Antonio Nino Diaza320ecd2019-01-15 14:19:50 +0000[diff] [blame]16#include <platform_def.h>
laurenw-arm7b7ebff2023-05-02 14:42:48 -0500[diff] [blame^]17#include <tools_share/cca_oid.h>
Masahiro Yamadad1f97752017-05-23 19:41:36 +0900[diff] [blame]18
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]19/*
Max Shvetsov06dba292019-12-06 11:50:12 +0000[diff] [blame]20 * Return the ROTPK hash in the following ASN.1 structure in DER format:
21 *
22 * AlgorithmIdentifier ::= SEQUENCE {
23 * algorithm OBJECT IDENTIFIER,
24 * parameters ANY DEFINED BY algorithm OPTIONAL
25 * }
26 *
27 * DigestInfo ::= SEQUENCE {
28 * digestAlgorithm AlgorithmIdentifier,
29 * digest OCTET STRING
30 * }
31 */
32int plat_get_rotpk_info(void *cookie, void **key_ptr, unsigned int *key_len,
33 unsigned int *flags)
34{
Sandrine Bailleux7b7a41c2020-02-06 14:34:44 +0100[diff] [blame]35 return arm_get_rotpk_info(cookie, key_ptr, key_len, flags);
Max Shvetsov06dba292019-12-06 11:50:12 +0000[diff] [blame]36}
37
38/*
Sandrine Bailleux2397d472019-07-23 15:41:06 +0200[diff] [blame]39 * Store a new non-volatile counter value.
40 *
41 * On some FVP versions, the non-volatile counters are read-only so this
42 * function will always fail.
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]43 *
44 * Return: 0 = success, Otherwise = error
45 */
46int plat_set_nv_ctr(void *cookie, unsigned int nv_ctr)
47{
48 const char *oid;
Sandrine Bailleux2397d472019-07-23 15:41:06 +0200[diff] [blame]49 uintptr_t nv_ctr_addr;
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]50
51 assert(cookie != NULL);
52
53 oid = (const char *)cookie;
54 if (strcmp(oid, TRUSTED_FW_NVCOUNTER_OID) == 0) {
Manish V Badarkhe09a192c2020-08-23 09:58:44 +0100[diff] [blame]55 nv_ctr_addr = FCONF_GET_PROPERTY(cot, nv_cntr_addr,
56 TRUSTED_NV_CTR_ID);
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]57 } else if (strcmp(oid, NON_TRUSTED_FW_NVCOUNTER_OID) == 0) {
Manish V Badarkhe09a192c2020-08-23 09:58:44 +0100[diff] [blame]58 nv_ctr_addr = FCONF_GET_PROPERTY(cot, nv_cntr_addr,
59 NON_TRUSTED_NV_CTR_ID);
laurenw-arm7b7ebff2023-05-02 14:42:48 -0500[diff] [blame^]60 } else if (strcmp(oid, CCA_FW_NVCOUNTER_OID) == 0) {
61 /* FVP does not support the CCA NV Counter so use the Trusted NV */
62 nv_ctr_addr = FCONF_GET_PROPERTY(cot, nv_cntr_addr,
63 TRUSTED_NV_CTR_ID);
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]64 } else {
65 return 1;
66 }
67
Sandrine Bailleux2397d472019-07-23 15:41:06 +0200[diff] [blame]68 mmio_write_32(nv_ctr_addr, nv_ctr);
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]69
Sandrine Bailleux2397d472019-07-23 15:41:06 +0200[diff] [blame]70 /*
71 * If the FVP models a locked counter then its value cannot be updated
72 * and the above write operation has been silently ignored.
73 */
74 return (mmio_read_32(nv_ctr_addr) == nv_ctr) ? 0 : 1;
Antonio Nino Diaz9d602fe2016-05-20 14:14:16 +0100[diff] [blame]75}
laurenw-arm7b7ebff2023-05-02 14:42:48 -0500[diff] [blame^]76
77/*
78 * Return the non-volatile counter value stored in the platform. The cookie
79 * will contain the OID of the counter in the certificate.
80 *
81 * Return: 0 = success, Otherwise = error
82 */
83int plat_get_nv_ctr(void *cookie, unsigned int *nv_ctr)
84{
85 const char *oid;
86 uint32_t *nv_ctr_addr;
87
88 assert(cookie != NULL);
89 assert(nv_ctr != NULL);
90
91 oid = (const char *)cookie;
92 if (strcmp(oid, TRUSTED_FW_NVCOUNTER_OID) == 0) {
93 nv_ctr_addr = (uint32_t *)FCONF_GET_PROPERTY(cot, nv_cntr_addr,
94 TRUSTED_NV_CTR_ID);
95 } else if (strcmp(oid, NON_TRUSTED_FW_NVCOUNTER_OID) == 0) {
96 nv_ctr_addr = (uint32_t *)FCONF_GET_PROPERTY(cot, nv_cntr_addr,
97 NON_TRUSTED_NV_CTR_ID);
98 } else if (strcmp(oid, CCA_FW_NVCOUNTER_OID) == 0) {
99 /* FVP does not support the CCA NV Counter so use the Trusted NV */
100 nv_ctr_addr = (uint32_t *)FCONF_GET_PROPERTY(cot, nv_cntr_addr,
101 TRUSTED_NV_CTR_ID);
102 } else {
103 return 1;
104 }
105
106 *nv_ctr = (unsigned int)(*nv_ctr_addr);
107
108 return 0;
109}