Gitiles
Code Review Sign In
git01.mediatek.com / filogic / uboot / 1bbfbf5e85445b4e2b8652729afcbef91ccd659d / . / arch / arm / mach-stm32mp / bsec.c
blob: f5f4b20d4776fd57659a34814f172051102d7211 [file] [log] [blame]
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]1// SPDX-License-Identifier: GPL-2.0+
2/*
3 * Copyright (C) 2018, STMicroelectronics - All Rights Reserved
4 */
5
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]6#define LOG_CATEGORY UCLASS_MISC
7
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]8#include <common.h>
Patrick Delaunayaaf1f962021-02-25 13:43:07 +0100[diff] [blame]9#include <clk.h>
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]10#include <dm.h>
Simon Glass0f2af882020-05-10 11:40:05 -0600[diff] [blame]11#include <log.h>
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]12#include <misc.h>
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]13#include <tee.h>
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]14#include <asm/io.h>
Patrick Delaunay6332c042020-06-16 18:27:44 +0200[diff] [blame]15#include <asm/arch/bsec.h>
Patrick Delaunay7858d7e2019-02-12 11:44:40 +0100[diff] [blame]16#include <asm/arch/stm32mp1_smc.h>
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]17#include <dm/device.h>
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]18#include <dm/device_compat.h>
Patrick Delaunay7858d7e2019-02-12 11:44:40 +0100[diff] [blame]19#include <linux/arm-smccc.h>
Patrick Delaunay2fa55eb2019-04-18 17:32:39 +0200[diff] [blame]20#include <linux/iopoll.h>
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]21
22#define BSEC_OTP_MAX_VALUE 95
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]23#define BSEC_OTP_UPPER_START 32
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]24#define BSEC_TIMEOUT_US 10000
25
26/* BSEC REGISTER OFFSET (base relative) */
27#define BSEC_OTP_CONF_OFF 0x000
28#define BSEC_OTP_CTRL_OFF 0x004
29#define BSEC_OTP_WRDATA_OFF 0x008
30#define BSEC_OTP_STATUS_OFF 0x00C
31#define BSEC_OTP_LOCK_OFF 0x010
Patrick Delaunay6332c042020-06-16 18:27:44 +0200[diff] [blame]32#define BSEC_DENABLE_OFF 0x014
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]33#define BSEC_DISTURBED_OFF 0x01C
34#define BSEC_ERROR_OFF 0x034
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]35#define BSEC_WRLOCK_OFF 0x04C /* OTP write permananet lock */
36#define BSEC_SPLOCK_OFF 0x064 /* OTP write sticky lock */
37#define BSEC_SWLOCK_OFF 0x07C /* shadow write sticky lock */
38#define BSEC_SRLOCK_OFF 0x094 /* shadow read sticky lock */
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]39#define BSEC_OTP_DATA_OFF 0x200
40
41/* BSEC_CONFIGURATION Register MASK */
42#define BSEC_CONF_POWER_UP 0x001
43
44/* BSEC_CONTROL Register */
45#define BSEC_READ 0x000
46#define BSEC_WRITE 0x100
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]47#define BSEC_LOCK 0x200
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]48
49/* LOCK Register */
50#define OTP_LOCK_MASK 0x1F
51#define OTP_LOCK_BANK_SHIFT 0x05
52#define OTP_LOCK_BIT_MASK 0x01
53
54/* STATUS Register */
55#define BSEC_MODE_BUSY_MASK 0x08
56#define BSEC_MODE_PROGFAIL_MASK 0x10
57#define BSEC_MODE_PWR_MASK 0x20
58
Patrick Delaunay6332c042020-06-16 18:27:44 +0200[diff] [blame]59/* DENABLE Register */
60#define BSEC_DENABLE_DBGSWENABLE BIT(10)
61
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]62/*
63 * OTP Lock services definition
64 * Value must corresponding to the bit number in the register
65 */
66#define BSEC_LOCK_PROGRAM 0x04
67
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]68#define PTA_BSEC_UUID { 0x94cf71ad, 0x80e6, 0x40b5, \
69 { 0xa7, 0xc6, 0x3d, 0xc5, 0x01, 0xeb, 0x28, 0x03 } }
70
71/*
72 * Read OTP memory
73 *
74 * [in] value[0].a OTP start offset in byte
75 * [in] value[0].b Access type (0:shadow, 1:fuse, 2:lock)
76 * [out] memref[1].buffer Output buffer to store read values
77 * [out] memref[1].size Size of OTP to be read
78 *
79 * Return codes:
80 * TEE_SUCCESS - Invoke command success
81 * TEE_ERROR_BAD_PARAMETERS - Incorrect input param
82 * TEE_ERROR_ACCESS_DENIED - OTP not accessible by caller
83 */
84#define PTA_BSEC_READ_MEM 0x0
85
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]86/*
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]87 * Write OTP memory
88 *
89 * [in] value[0].a OTP start offset in byte
90 * [in] value[0].b Access type (0:shadow, 1:fuse, 2:lock)
91 * [in] memref[1].buffer Input buffer to read values
92 * [in] memref[1].size Size of OTP to be written
93 *
94 * Return codes:
95 * TEE_SUCCESS - Invoke command success
96 * TEE_ERROR_BAD_PARAMETERS - Incorrect input param
97 * TEE_ERROR_ACCESS_DENIED - OTP not accessible by caller
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]98 */
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]99#define PTA_BSEC_WRITE_MEM 0x1
100
101/* value of PTA_BSEC access type = value[in] b */
102#define SHADOW_ACCESS 0
103#define FUSE_ACCESS 1
104#define LOCK_ACCESS 2
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]105
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]106/**
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]107 * bsec_lock() - manage lock for each type SR/SP/SW
108 * @address: address of bsec IP register
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]109 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]110 * Return: true if locked else false
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]111 */
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]112static bool bsec_read_lock(u32 address, u32 otp)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]113{
114 u32 bit;
115 u32 bank;
116
117 bit = 1 << (otp & OTP_LOCK_MASK);
118 bank = ((otp >> OTP_LOCK_BANK_SHIFT) & OTP_LOCK_MASK) * sizeof(u32);
119
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]120 return !!(readl(address + bank) & bit);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]121}
122
123/**
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]124 * bsec_check_error() - Check status of one otp
125 * @base: base address of bsec IP
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]126 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]127 * Return: 0 if no error, -EAGAIN or -ENOTSUPP
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]128 */
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]129static u32 bsec_check_error(u32 base, u32 otp)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]130{
131 u32 bit;
132 u32 bank;
133
134 bit = 1 << (otp & OTP_LOCK_MASK);
135 bank = ((otp >> OTP_LOCK_BANK_SHIFT) & OTP_LOCK_MASK) * sizeof(u32);
136
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]137 if (readl(base + BSEC_DISTURBED_OFF + bank) & bit)
138 return -EAGAIN;
139 else if (readl(base + BSEC_ERROR_OFF + bank) & bit)
140 return -ENOTSUPP;
141
142 return 0;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]143}
144
145/**
146 * bsec_read_SR_lock() - read SR lock (Shadowing)
147 * @base: base address of bsec IP
148 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
149 * Return: true if locked else false
150 */
151static bool bsec_read_SR_lock(u32 base, u32 otp)
152{
153 return bsec_read_lock(base + BSEC_SRLOCK_OFF, otp);
154}
155
156/**
157 * bsec_read_SP_lock() - read SP lock (program Lock)
158 * @base: base address of bsec IP
159 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
160 * Return: true if locked else false
161 */
162static bool bsec_read_SP_lock(u32 base, u32 otp)
163{
164 return bsec_read_lock(base + BSEC_SPLOCK_OFF, otp);
165}
166
167/**
168 * bsec_SW_lock() - manage SW lock (Write in Shadow)
169 * @base: base address of bsec IP
170 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
171 * Return: true if locked else false
172 */
173static bool bsec_read_SW_lock(u32 base, u32 otp)
174{
175 return bsec_read_lock(base + BSEC_SWLOCK_OFF, otp);
176}
177
178/**
179 * bsec_power_safmem() - Activate or deactivate safmem power
180 * @base: base address of bsec IP
181 * @power: true to power up , false to power down
182 * Return: 0 if succeed
183 */
184static int bsec_power_safmem(u32 base, bool power)
185{
186 u32 val;
187 u32 mask;
188
189 if (power) {
190 setbits_le32(base + BSEC_OTP_CONF_OFF, BSEC_CONF_POWER_UP);
191 mask = BSEC_MODE_PWR_MASK;
192 } else {
193 clrbits_le32(base + BSEC_OTP_CONF_OFF, BSEC_CONF_POWER_UP);
194 mask = 0;
195 }
196
197 /* waiting loop */
198 return readl_poll_timeout(base + BSEC_OTP_STATUS_OFF,
199 val, (val & BSEC_MODE_PWR_MASK) == mask,
200 BSEC_TIMEOUT_US);
201}
202
203/**
204 * bsec_shadow_register() - copy safmen otp to bsec data
Patrick Delaunay6292db12022-02-15 16:08:51 +0100[diff] [blame]205 * @dev: bsec IP device
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]206 * @base: base address of bsec IP
207 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
208 * Return: 0 if no error
209 */
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]210static int bsec_shadow_register(struct udevice *dev, u32 base, u32 otp)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]211{
212 u32 val;
213 int ret;
214 bool power_up = false;
215
216 /* check if shadowing of otp is locked */
217 if (bsec_read_SR_lock(base, otp))
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]218 dev_dbg(dev, "OTP %d is locked and refreshed with 0\n",
219 otp);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]220
221 /* check if safemem is power up */
222 val = readl(base + BSEC_OTP_STATUS_OFF);
223 if (!(val & BSEC_MODE_PWR_MASK)) {
224 ret = bsec_power_safmem(base, true);
225 if (ret)
226 return ret;
Patrick Delaunayf95686b2019-02-27 17:01:28 +0100[diff] [blame]227 power_up = true;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]228 }
229 /* set BSEC_OTP_CTRL_OFF with the otp value*/
230 writel(otp | BSEC_READ, base + BSEC_OTP_CTRL_OFF);
231
232 /* check otp status*/
233 ret = readl_poll_timeout(base + BSEC_OTP_STATUS_OFF,
234 val, (val & BSEC_MODE_BUSY_MASK) == 0,
235 BSEC_TIMEOUT_US);
236 if (ret)
237 return ret;
238
239 ret = bsec_check_error(base, otp);
240
241 if (power_up)
242 bsec_power_safmem(base, false);
243
244 return ret;
245}
246
247/**
248 * bsec_read_shadow() - read an otp data value from shadow
Patrick Delaunay6292db12022-02-15 16:08:51 +0100[diff] [blame]249 * @dev: bsec IP device
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]250 * @base: base address of bsec IP
251 * @val: read value
252 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
253 * Return: 0 if no error
254 */
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]255static int bsec_read_shadow(struct udevice *dev, u32 base, u32 *val, u32 otp)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]256{
257 *val = readl(base + BSEC_OTP_DATA_OFF + otp * sizeof(u32));
258
259 return bsec_check_error(base, otp);
260}
261
262/**
263 * bsec_write_shadow() - write value in BSEC data register in shadow
Patrick Delaunay6292db12022-02-15 16:08:51 +0100[diff] [blame]264 * @dev: bsec IP device
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]265 * @base: base address of bsec IP
266 * @val: value to write
267 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
268 * Return: 0 if no error
269 */
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]270static int bsec_write_shadow(struct udevice *dev, u32 base, u32 val, u32 otp)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]271{
272 /* check if programming of otp is locked */
273 if (bsec_read_SW_lock(base, otp))
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]274 dev_dbg(dev, "OTP %d is lock, write will be ignore\n", otp);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]275
276 writel(val, base + BSEC_OTP_DATA_OFF + otp * sizeof(u32));
277
278 return bsec_check_error(base, otp);
279}
280
281/**
282 * bsec_program_otp() - program a bit in SAFMEM
Patrick Delaunay6292db12022-02-15 16:08:51 +0100[diff] [blame]283 * @dev: bsec IP device
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]284 * @base: base address of bsec IP
285 * @val: value to program
286 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
287 * after the function the otp data is not refreshed in shadow
288 * Return: 0 if no error
289 */
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]290static int bsec_program_otp(struct udevice *dev, long base, u32 val, u32 otp)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]291{
292 u32 ret;
293 bool power_up = false;
294
295 if (bsec_read_SP_lock(base, otp))
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]296 dev_dbg(dev, "OTP %d locked, prog will be ignore\n", otp);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]297
298 if (readl(base + BSEC_OTP_LOCK_OFF) & (1 << BSEC_LOCK_PROGRAM))
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]299 dev_dbg(dev, "Global lock, prog will be ignore\n");
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]300
301 /* check if safemem is power up */
302 if (!(readl(base + BSEC_OTP_STATUS_OFF) & BSEC_MODE_PWR_MASK)) {
303 ret = bsec_power_safmem(base, true);
304 if (ret)
305 return ret;
306
307 power_up = true;
308 }
309 /* set value in write register*/
310 writel(val, base + BSEC_OTP_WRDATA_OFF);
311
312 /* set BSEC_OTP_CTRL_OFF with the otp value */
313 writel(otp | BSEC_WRITE, base + BSEC_OTP_CTRL_OFF);
314
315 /* check otp status*/
316 ret = readl_poll_timeout(base + BSEC_OTP_STATUS_OFF,
317 val, (val & BSEC_MODE_BUSY_MASK) == 0,
318 BSEC_TIMEOUT_US);
319 if (ret)
320 return ret;
321
322 if (val & BSEC_MODE_PROGFAIL_MASK)
323 ret = -EACCES;
324 else
325 ret = bsec_check_error(base, otp);
326
327 if (power_up)
328 bsec_power_safmem(base, false);
329
330 return ret;
331}
332
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]333/**
334 * bsec_permanent_lock_otp() - permanent lock of OTP in SAFMEM
335 * @dev: bsec IP device
336 * @base: base address of bsec IP
337 * @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
338 * Return: 0 if no error
339 */
340static int bsec_permanent_lock_otp(struct udevice *dev, long base, uint32_t otp)
341{
342 int ret;
343 bool power_up = false;
344 u32 val, addr;
345
346 /* check if safemem is power up */
347 if (!(readl(base + BSEC_OTP_STATUS_OFF) & BSEC_MODE_PWR_MASK)) {
348 ret = bsec_power_safmem(base, true);
349 if (ret)
350 return ret;
351
352 power_up = true;
353 }
354
355 /*
356 * low OTPs = 2 bits word for low OTPs, 1 bits per word for upper OTP
357 * and only 16 bits used in WRDATA
358 */
359 if (otp < BSEC_OTP_UPPER_START) {
360 addr = otp / 8;
361 val = 0x03 << ((otp * 2) & 0xF);
362 } else {
363 addr = BSEC_OTP_UPPER_START / 8 +
364 ((otp - BSEC_OTP_UPPER_START) / 16);
365 val = 0x01 << (otp & 0xF);
366 }
367
368 /* set value in write register*/
369 writel(val, base + BSEC_OTP_WRDATA_OFF);
370
371 /* set BSEC_OTP_CTRL_OFF with the otp addr and lock request*/
372 writel(addr | BSEC_WRITE | BSEC_LOCK, base + BSEC_OTP_CTRL_OFF);
373
374 /* check otp status*/
375 ret = readl_poll_timeout(base + BSEC_OTP_STATUS_OFF,
376 val, (val & BSEC_MODE_BUSY_MASK) == 0,
377 BSEC_TIMEOUT_US);
378 if (ret)
379 return ret;
380
381 if (val & BSEC_MODE_PROGFAIL_MASK)
382 ret = -EACCES;
383 else
384 ret = bsec_check_error(base, otp);
385
386 if (power_up)
387 bsec_power_safmem(base, false);
388
389 return ret;
390}
391
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]392/* BSEC MISC driver *******************************************************/
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]393struct stm32mp_bsec_plat {
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]394 u32 base;
395};
396
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]397struct stm32mp_bsec_priv {
398 struct udevice *tee;
399};
400
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]401static int stm32mp_bsec_read_otp(struct udevice *dev, u32 *val, u32 otp)
402{
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]403 struct stm32mp_bsec_plat *plat;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]404 u32 tmp_data = 0;
405 int ret;
406
Patrick Delaunay72a57622021-10-11 09:52:50 +0200[diff] [blame]407 if (IS_ENABLED(CONFIG_ARM_SMCCC) && !IS_ENABLED(CONFIG_SPL_BUILD))
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]408 return stm32_smc(STM32_SMC_BSEC,
409 STM32_SMC_READ_OTP,
410 otp, 0, val);
411
Simon Glassfa20e932020-12-03 16:55:20 -0700[diff] [blame]412 plat = dev_get_plat(dev);
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]413
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]414 /* read current shadow value */
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]415 ret = bsec_read_shadow(dev, plat->base, &tmp_data, otp);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]416 if (ret)
417 return ret;
418
419 /* copy otp in shadow */
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]420 ret = bsec_shadow_register(dev, plat->base, otp);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]421 if (ret)
422 return ret;
423
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]424 ret = bsec_read_shadow(dev, plat->base, val, otp);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]425 if (ret)
426 return ret;
427
428 /* restore shadow value */
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]429 ret = bsec_write_shadow(dev, plat->base, tmp_data, otp);
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]430
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]431 return ret;
432}
433
434static int stm32mp_bsec_read_shadow(struct udevice *dev, u32 *val, u32 otp)
435{
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]436 struct stm32mp_bsec_plat *plat;
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]437
Patrick Delaunay72a57622021-10-11 09:52:50 +0200[diff] [blame]438 if (IS_ENABLED(CONFIG_ARM_SMCCC) && !IS_ENABLED(CONFIG_SPL_BUILD))
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]439 return stm32_smc(STM32_SMC_BSEC,
440 STM32_SMC_READ_SHADOW,
441 otp, 0, val);
442
Simon Glassfa20e932020-12-03 16:55:20 -0700[diff] [blame]443 plat = dev_get_plat(dev);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]444
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]445 return bsec_read_shadow(dev, plat->base, val, otp);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]446}
447
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]448static int stm32mp_bsec_read_lock(struct udevice *dev, u32 *val, u32 otp)
449{
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]450 struct stm32mp_bsec_plat *plat = dev_get_plat(dev);
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]451 u32 wrlock;
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]452
453 /* return OTP permanent write lock status */
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]454 wrlock = bsec_read_lock(plat->base + BSEC_WRLOCK_OFF, otp);
455
456 *val = 0;
457 if (wrlock)
458 *val = BSEC_LOCK_PERM;
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]459
460 return 0;
461}
462
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]463static int stm32mp_bsec_write_otp(struct udevice *dev, u32 val, u32 otp)
464{
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]465 struct stm32mp_bsec_plat *plat;
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]466
Patrick Delaunay72a57622021-10-11 09:52:50 +0200[diff] [blame]467 if (IS_ENABLED(CONFIG_ARM_SMCCC) && !IS_ENABLED(CONFIG_SPL_BUILD))
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]468 return stm32_smc_exec(STM32_SMC_BSEC,
469 STM32_SMC_PROG_OTP,
470 otp, val);
471
Simon Glassfa20e932020-12-03 16:55:20 -0700[diff] [blame]472 plat = dev_get_plat(dev);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]473
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]474 return bsec_program_otp(dev, plat->base, val, otp);
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]475
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]476}
477
478static int stm32mp_bsec_write_shadow(struct udevice *dev, u32 val, u32 otp)
479{
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]480 struct stm32mp_bsec_plat *plat;
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]481
Patrick Delaunay72a57622021-10-11 09:52:50 +0200[diff] [blame]482 if (IS_ENABLED(CONFIG_ARM_SMCCC) && !IS_ENABLED(CONFIG_SPL_BUILD))
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]483 return stm32_smc_exec(STM32_SMC_BSEC,
484 STM32_SMC_WRITE_SHADOW,
485 otp, val);
486
Simon Glassfa20e932020-12-03 16:55:20 -0700[diff] [blame]487 plat = dev_get_plat(dev);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]488
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]489 return bsec_write_shadow(dev, plat->base, val, otp);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]490}
491
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]492static int stm32mp_bsec_write_lock(struct udevice *dev, u32 val, u32 otp)
493{
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]494 struct stm32mp_bsec_plat *plat;
495
496 /* only permanent write lock is supported in U-Boot */
497 if (!(val & BSEC_LOCK_PERM)) {
498 dev_dbg(dev, "lock option without BSEC_LOCK_PERM: %x\n", val);
499 return 0; /* nothing to do */
500 }
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]501
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]502 if (IS_ENABLED(CONFIG_ARM_SMCCC) && !IS_ENABLED(CONFIG_SPL_BUILD))
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]503 return stm32_smc_exec(STM32_SMC_BSEC,
504 STM32_SMC_WRLOCK_OTP,
505 otp, 0);
Patrick Delaunayb9201a72022-02-15 16:08:50 +0100[diff] [blame]506
507 plat = dev_get_plat(dev);
508
509 return bsec_permanent_lock_otp(dev, plat->base, otp);
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]510}
511
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]512static int bsec_pta_open_session(struct udevice *tee, u32 *tee_session)
513{
514 const struct tee_optee_ta_uuid uuid = PTA_BSEC_UUID;
515 struct tee_open_session_arg arg;
516 int rc;
517
518 memset(&arg, 0, sizeof(arg));
519 tee_optee_ta_uuid_to_octets(arg.uuid, &uuid);
520 arg.clnt_login = TEE_LOGIN_REE_KERNEL;
521 rc = tee_open_session(tee, &arg, 0, NULL);
522 if (rc < 0)
523 return -ENODEV;
524
525 *tee_session = arg.session;
526
527 return 0;
528}
529
530static int bsec_optee_open(struct udevice *dev)
531{
532 struct stm32mp_bsec_priv *priv = dev_get_priv(dev);
533 struct udevice *tee;
534 u32 tee_session;
535 int rc;
536
537 tee = tee_find_device(NULL, NULL, NULL, NULL);
538 if (!tee)
539 return -ENODEV;
540
541 /* try to open the STM32 BSEC TA */
542 rc = bsec_pta_open_session(tee, &tee_session);
543 if (rc)
544 return rc;
545
546 tee_close_session(tee, tee_session);
547
548 priv->tee = tee;
549
550 return 0;
551}
552
553static int bsec_optee_pta(struct udevice *dev, int cmd, int type, int offset,
554 void *buff, ulong size)
555{
556 struct stm32mp_bsec_priv *priv = dev_get_priv(dev);
557 u32 tee_session;
558 struct tee_invoke_arg arg;
559 struct tee_param param[2];
560 struct tee_shm *fw_shm;
561 int rc;
562
563 rc = bsec_pta_open_session(priv->tee, &tee_session);
564 if (rc)
565 return rc;
566
567 rc = tee_shm_register(priv->tee, buff, size, 0, &fw_shm);
568 if (rc)
569 goto close_session;
570
571 memset(&arg, 0, sizeof(arg));
572 arg.func = cmd;
573 arg.session = tee_session;
574
575 memset(param, 0, sizeof(param));
576
577 param[0].attr = TEE_PARAM_ATTR_TYPE_VALUE_INPUT;
578 param[0].u.value.a = offset;
579 param[0].u.value.b = type;
580
581 if (cmd == PTA_BSEC_WRITE_MEM)
582 param[1].attr = TEE_PARAM_ATTR_TYPE_MEMREF_INPUT;
583 else
584 param[1].attr = TEE_PARAM_ATTR_TYPE_MEMREF_OUTPUT;
585
586 param[1].u.memref.shm = fw_shm;
587 param[1].u.memref.size = size;
588
589 rc = tee_invoke_func(priv->tee, &arg, 2, param);
590 if (rc < 0 || arg.ret != 0) {
591 dev_err(priv->tee,
592 "PTA_BSEC invoke failed TEE err: %x, err:%x\n",
593 arg.ret, rc);
594 if (!rc)
595 rc = -EIO;
596 }
597
598 tee_shm_free(fw_shm);
599
600close_session:
601 tee_close_session(priv->tee, tee_session);
602
603 return rc;
604}
605
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]606static int stm32mp_bsec_read(struct udevice *dev, int offset,
607 void *buf, int size)
608{
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]609 struct stm32mp_bsec_priv *priv = dev_get_priv(dev);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]610 int ret;
611 int i;
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]612 bool shadow = true, lock = false;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]613 int nb_otp = size / sizeof(u32);
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]614 int otp, cmd;
Patrick Delaunay4c7c0742019-06-21 15:26:43 +0200[diff] [blame]615 unsigned int offs = offset;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]616
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]617 if (offs >= STM32_BSEC_LOCK_OFFSET) {
618 offs -= STM32_BSEC_LOCK_OFFSET;
619 lock = true;
620 } else if (offs >= STM32_BSEC_OTP_OFFSET) {
Patrick Delaunay4c7c0742019-06-21 15:26:43 +0200[diff] [blame]621 offs -= STM32_BSEC_OTP_OFFSET;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]622 shadow = false;
623 }
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]624
Patrick Delaunay3b7dbd42020-02-12 19:37:37 +0100[diff] [blame]625 if ((offs % 4) || (size % 4))
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]626 return -EINVAL;
Patrick Delaunay7e5f8e32019-08-02 13:08:02 +0200[diff] [blame]627
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]628 if (IS_ENABLED(CONFIG_OPTEE) && priv->tee) {
629 cmd = FUSE_ACCESS;
630 if (shadow)
631 cmd = SHADOW_ACCESS;
632 if (lock)
633 cmd = LOCK_ACCESS;
634 ret = bsec_optee_pta(dev, PTA_BSEC_READ_MEM, cmd, offs, buf, size);
635 if (ret)
636 return ret;
637
638 return size;
639 }
640
Patrick Delaunay7e5f8e32019-08-02 13:08:02 +0200[diff] [blame]641 otp = offs / sizeof(u32);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]642
Patrick Delaunay7e5f8e32019-08-02 13:08:02 +0200[diff] [blame]643 for (i = otp; i < (otp + nb_otp) && i <= BSEC_OTP_MAX_VALUE; i++) {
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]644 u32 *addr = &((u32 *)buf)[i - otp];
645
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]646 if (lock)
647 ret = stm32mp_bsec_read_lock(dev, addr, i);
648 else if (shadow)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]649 ret = stm32mp_bsec_read_shadow(dev, addr, i);
650 else
651 ret = stm32mp_bsec_read_otp(dev, addr, i);
652
653 if (ret)
654 break;
655 }
Patrick Delaunay7e5f8e32019-08-02 13:08:02 +0200[diff] [blame]656 if (ret)
657 return ret;
658 else
659 return (i - otp) * 4;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]660}
661
662static int stm32mp_bsec_write(struct udevice *dev, int offset,
663 const void *buf, int size)
664{
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]665 struct stm32mp_bsec_priv *priv = dev_get_priv(dev);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]666 int ret = 0;
667 int i;
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]668 bool shadow = true, lock = false;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]669 int nb_otp = size / sizeof(u32);
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]670 int otp, cmd;
Patrick Delaunay4c7c0742019-06-21 15:26:43 +0200[diff] [blame]671 unsigned int offs = offset;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]672
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]673 if (offs >= STM32_BSEC_LOCK_OFFSET) {
674 offs -= STM32_BSEC_LOCK_OFFSET;
675 lock = true;
676 } else if (offs >= STM32_BSEC_OTP_OFFSET) {
Patrick Delaunay4c7c0742019-06-21 15:26:43 +0200[diff] [blame]677 offs -= STM32_BSEC_OTP_OFFSET;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]678 shadow = false;
679 }
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]680
Patrick Delaunay3b7dbd42020-02-12 19:37:37 +0100[diff] [blame]681 if ((offs % 4) || (size % 4))
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]682 return -EINVAL;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]683
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]684 if (IS_ENABLED(CONFIG_OPTEE) && priv->tee) {
685 cmd = FUSE_ACCESS;
686 if (shadow)
687 cmd = SHADOW_ACCESS;
688 if (lock)
689 cmd = LOCK_ACCESS;
690 ret = bsec_optee_pta(dev, PTA_BSEC_WRITE_MEM, cmd, offs, (void *)buf, size);
691 if (ret)
692 return ret;
693
694 return size;
695 }
696
Patrick Delaunay7e5f8e32019-08-02 13:08:02 +0200[diff] [blame]697 otp = offs / sizeof(u32);
698
699 for (i = otp; i < otp + nb_otp && i <= BSEC_OTP_MAX_VALUE; i++) {
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]700 u32 *val = &((u32 *)buf)[i - otp];
701
Patrick Delaunayb10cddf2020-02-12 19:37:38 +0100[diff] [blame]702 if (lock)
703 ret = stm32mp_bsec_write_lock(dev, *val, i);
704 else if (shadow)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]705 ret = stm32mp_bsec_write_shadow(dev, *val, i);
706 else
707 ret = stm32mp_bsec_write_otp(dev, *val, i);
708 if (ret)
709 break;
710 }
Patrick Delaunay7e5f8e32019-08-02 13:08:02 +0200[diff] [blame]711 if (ret)
712 return ret;
713 else
714 return (i - otp) * 4;
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]715}
716
717static const struct misc_ops stm32mp_bsec_ops = {
718 .read = stm32mp_bsec_read,
719 .write = stm32mp_bsec_write,
720};
721
Simon Glassaad29ae2020-12-03 16:55:21 -0700[diff] [blame]722static int stm32mp_bsec_of_to_plat(struct udevice *dev)
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]723{
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]724 struct stm32mp_bsec_plat *plat = dev_get_plat(dev);
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]725
726 plat->base = (u32)dev_read_addr_ptr(dev);
727
728 return 0;
729}
730
Patrick Delaunayf95686b2019-02-27 17:01:28 +0100[diff] [blame]731static int stm32mp_bsec_probe(struct udevice *dev)
732{
733 int otp;
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]734 struct stm32mp_bsec_plat *plat;
Patrick Delaunayaaf1f962021-02-25 13:43:07 +0100[diff] [blame]735 struct clk_bulk clk_bulk;
736 int ret;
737
738 ret = clk_get_bulk(dev, &clk_bulk);
739 if (!ret) {
740 ret = clk_enable_bulk(&clk_bulk);
741 if (ret)
742 return ret;
743 }
Patrick Delaunayf95686b2019-02-27 17:01:28 +0100[diff] [blame]744
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]745 if (IS_ENABLED(CONFIG_OPTEE))
746 bsec_optee_open(dev);
747
Patrick Delaunayb6cc5052020-05-25 12:19:41 +0200[diff] [blame]748 /*
749 * update unlocked shadow for OTP cleared by the rom code
Patrick Delaunaydd2ca252021-10-11 09:52:48 +0200[diff] [blame]750 * only executed in SPL, it is done in TF-A for TFABOOT
Patrick Delaunayb6cc5052020-05-25 12:19:41 +0200[diff] [blame]751 */
Patrick Delaunaydd2ca252021-10-11 09:52:48 +0200[diff] [blame]752 if (IS_ENABLED(CONFIG_SPL_BUILD)) {
Simon Glassfa20e932020-12-03 16:55:20 -0700[diff] [blame]753 plat = dev_get_plat(dev);
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]754
755 for (otp = 57; otp <= BSEC_OTP_MAX_VALUE; otp++)
756 if (!bsec_read_SR_lock(plat->base, otp))
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]757 bsec_shadow_register(dev, plat->base, otp);
Patrick Delaunay1dffeaf2020-07-31 16:31:51 +0200[diff] [blame]758 }
Patrick Delaunayf95686b2019-02-27 17:01:28 +0100[diff] [blame]759
760 return 0;
761}
Patrick Delaunayf95686b2019-02-27 17:01:28 +0100[diff] [blame]762
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]763static const struct udevice_id stm32mp_bsec_ids[] = {
Patrick Delaunay986ec7b2023-01-06 13:20:16 +0100[diff] [blame]764 { .compatible = "st,stm32mp13-bsec" },
Patrick Delaunaybdd71362019-02-27 17:01:27 +0100[diff] [blame]765 { .compatible = "st,stm32mp15-bsec" },
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]766 {}
767};
768
769U_BOOT_DRIVER(stm32mp_bsec) = {
770 .name = "stm32mp_bsec",
771 .id = UCLASS_MISC,
772 .of_match = stm32mp_bsec_ids,
Simon Glassaad29ae2020-12-03 16:55:21 -0700[diff] [blame]773 .of_to_plat = stm32mp_bsec_of_to_plat,
Patrick Delaunay5fa74b82023-01-06 13:20:14 +0100[diff] [blame]774 .plat_auto = sizeof(struct stm32mp_bsec_plat),
Patrick Delaunayd5388292023-01-06 13:20:15 +0100[diff] [blame]775 .priv_auto = sizeof(struct stm32mp_bsec_priv),
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]776 .ops = &stm32mp_bsec_ops,
Patrick Delaunayf95686b2019-02-27 17:01:28 +0100[diff] [blame]777 .probe = stm32mp_bsec_probe,
Patrick Delaunay14d6a242018-05-17 15:24:05 +0200[diff] [blame]778};
Patrick Delaunay6332c042020-06-16 18:27:44 +0200[diff] [blame]779
780bool bsec_dbgswenable(void)
781{
782 struct udevice *dev;
Simon Glassb75b15b2020-12-03 16:55:23 -0700[diff] [blame]783 struct stm32mp_bsec_plat *plat;
Patrick Delaunay6332c042020-06-16 18:27:44 +0200[diff] [blame]784 int ret;
785
786 ret = uclass_get_device_by_driver(UCLASS_MISC,
Simon Glass65130cd2020-12-28 20:34:56 -0700[diff] [blame]787 DM_DRIVER_GET(stm32mp_bsec), &dev);
Patrick Delaunay6332c042020-06-16 18:27:44 +0200[diff] [blame]788 if (ret || !dev) {
Patrick Delaunayfbefc102020-11-06 19:01:31 +0100[diff] [blame]789 log_debug("bsec driver not available\n");
Patrick Delaunay6332c042020-06-16 18:27:44 +0200[diff] [blame]790 return false;
791 }
792
Simon Glassfa20e932020-12-03 16:55:20 -0700[diff] [blame]793 plat = dev_get_plat(dev);
Patrick Delaunay6332c042020-06-16 18:27:44 +0200[diff] [blame]794 if (readl(plat->base + BSEC_DENABLE_OFF) & BSEC_DENABLE_DBGSWENABLE)
795 return true;
796
797 return false;
798}
Patrick Delaunay9fa24a52022-05-20 18:24:41 +0200[diff] [blame]799
800u32 get_otp(int index, int shift, int mask)
801{
802 int ret;
803 struct udevice *dev;
804 u32 otp = 0;
805
806 ret = uclass_get_device_by_driver(UCLASS_MISC,
807 DM_DRIVER_GET(stm32mp_bsec),
808 &dev);
809
810 if (!ret)
811 ret = misc_read(dev, STM32_BSEC_SHADOW(index),
812 &otp, sizeof(otp));
813
814 return (otp >> shift) & mask;
815}