xref: /arm-trusted-firmware/plat/rpi/common/rpi3_io_storage.c (revision 91f16700b400a8c0651d24a598fc48ee2997a0d7) 
1*91f16700Schasinglulu /*
2*91f16700Schasinglulu  * Copyright (c) 2015-2018, ARM Limited and Contributors. All rights reserved.
3*91f16700Schasinglulu  *
4*91f16700Schasinglulu  * SPDX-License-Identifier: BSD-3-Clause
5*91f16700Schasinglulu  */
6*91f16700Schasinglulu 
7*91f16700Schasinglulu #include <assert.h>
8*91f16700Schasinglulu #include <string.h>
9*91f16700Schasinglulu 
10*91f16700Schasinglulu #include <platform_def.h>
11*91f16700Schasinglulu 
12*91f16700Schasinglulu #include <common/bl_common.h>
13*91f16700Schasinglulu #include <common/debug.h>
14*91f16700Schasinglulu #include <drivers/io/io_driver.h>
15*91f16700Schasinglulu #include <drivers/io/io_fip.h>
16*91f16700Schasinglulu #include <drivers/io/io_memmap.h>
17*91f16700Schasinglulu #include <tools_share/firmware_image_package.h>
18*91f16700Schasinglulu 
19*91f16700Schasinglulu /* Semihosting filenames */
20*91f16700Schasinglulu #define BL2_IMAGE_NAME			"bl2.bin"
21*91f16700Schasinglulu #define BL31_IMAGE_NAME			"bl31.bin"
22*91f16700Schasinglulu #define BL32_IMAGE_NAME			"bl32.bin"
23*91f16700Schasinglulu #define BL33_IMAGE_NAME			"bl33.bin"
24*91f16700Schasinglulu 
25*91f16700Schasinglulu #if TRUSTED_BOARD_BOOT
26*91f16700Schasinglulu #define TRUSTED_BOOT_FW_CERT_NAME	"tb_fw.crt"
27*91f16700Schasinglulu #define TRUSTED_KEY_CERT_NAME		"trusted_key.crt"
28*91f16700Schasinglulu #define SOC_FW_KEY_CERT_NAME		"soc_fw_key.crt"
29*91f16700Schasinglulu #define TOS_FW_KEY_CERT_NAME		"tos_fw_key.crt"
30*91f16700Schasinglulu #define NT_FW_KEY_CERT_NAME		"nt_fw_key.crt"
31*91f16700Schasinglulu #define SOC_FW_CONTENT_CERT_NAME	"soc_fw_content.crt"
32*91f16700Schasinglulu #define TOS_FW_CONTENT_CERT_NAME	"tos_fw_content.crt"
33*91f16700Schasinglulu #define NT_FW_CONTENT_CERT_NAME		"nt_fw_content.crt"
34*91f16700Schasinglulu #endif /* TRUSTED_BOARD_BOOT */
35*91f16700Schasinglulu 
36*91f16700Schasinglulu /* IO devices */
37*91f16700Schasinglulu static const io_dev_connector_t *fip_dev_con;
38*91f16700Schasinglulu static uintptr_t fip_dev_handle;
39*91f16700Schasinglulu static const io_dev_connector_t *memmap_dev_con;
40*91f16700Schasinglulu static uintptr_t memmap_dev_handle;
41*91f16700Schasinglulu 
42*91f16700Schasinglulu static const io_block_spec_t fip_block_spec = {
43*91f16700Schasinglulu 	.offset = PLAT_RPI3_FIP_BASE,
44*91f16700Schasinglulu 	.length = PLAT_RPI3_FIP_MAX_SIZE
45*91f16700Schasinglulu };
46*91f16700Schasinglulu 
47*91f16700Schasinglulu static const io_uuid_spec_t bl2_uuid_spec = {
48*91f16700Schasinglulu 	.uuid = UUID_TRUSTED_BOOT_FIRMWARE_BL2,
49*91f16700Schasinglulu };
50*91f16700Schasinglulu 
51*91f16700Schasinglulu static const io_uuid_spec_t bl31_uuid_spec = {
52*91f16700Schasinglulu 	.uuid = UUID_EL3_RUNTIME_FIRMWARE_BL31,
53*91f16700Schasinglulu };
54*91f16700Schasinglulu 
55*91f16700Schasinglulu static const io_uuid_spec_t bl32_uuid_spec = {
56*91f16700Schasinglulu 	.uuid = UUID_SECURE_PAYLOAD_BL32,
57*91f16700Schasinglulu };
58*91f16700Schasinglulu 
59*91f16700Schasinglulu static const io_uuid_spec_t bl32_extra1_uuid_spec = {
60*91f16700Schasinglulu 	.uuid = UUID_SECURE_PAYLOAD_BL32_EXTRA1,
61*91f16700Schasinglulu };
62*91f16700Schasinglulu 
63*91f16700Schasinglulu static const io_uuid_spec_t bl32_extra2_uuid_spec = {
64*91f16700Schasinglulu 	.uuid = UUID_SECURE_PAYLOAD_BL32_EXTRA2,
65*91f16700Schasinglulu };
66*91f16700Schasinglulu 
67*91f16700Schasinglulu static const io_uuid_spec_t bl33_uuid_spec = {
68*91f16700Schasinglulu 	.uuid = UUID_NON_TRUSTED_FIRMWARE_BL33,
69*91f16700Schasinglulu };
70*91f16700Schasinglulu 
71*91f16700Schasinglulu #if TRUSTED_BOARD_BOOT
72*91f16700Schasinglulu static const io_uuid_spec_t tb_fw_cert_uuid_spec = {
73*91f16700Schasinglulu 	.uuid = UUID_TRUSTED_BOOT_FW_CERT,
74*91f16700Schasinglulu };
75*91f16700Schasinglulu 
76*91f16700Schasinglulu static const io_uuid_spec_t trusted_key_cert_uuid_spec = {
77*91f16700Schasinglulu 	.uuid = UUID_TRUSTED_KEY_CERT,
78*91f16700Schasinglulu };
79*91f16700Schasinglulu 
80*91f16700Schasinglulu static const io_uuid_spec_t soc_fw_key_cert_uuid_spec = {
81*91f16700Schasinglulu 	.uuid = UUID_SOC_FW_KEY_CERT,
82*91f16700Schasinglulu };
83*91f16700Schasinglulu 
84*91f16700Schasinglulu static const io_uuid_spec_t tos_fw_key_cert_uuid_spec = {
85*91f16700Schasinglulu 	.uuid = UUID_TRUSTED_OS_FW_KEY_CERT,
86*91f16700Schasinglulu };
87*91f16700Schasinglulu 
88*91f16700Schasinglulu static const io_uuid_spec_t nt_fw_key_cert_uuid_spec = {
89*91f16700Schasinglulu 	.uuid = UUID_NON_TRUSTED_FW_KEY_CERT,
90*91f16700Schasinglulu };
91*91f16700Schasinglulu 
92*91f16700Schasinglulu static const io_uuid_spec_t soc_fw_cert_uuid_spec = {
93*91f16700Schasinglulu 	.uuid = UUID_SOC_FW_CONTENT_CERT,
94*91f16700Schasinglulu };
95*91f16700Schasinglulu 
96*91f16700Schasinglulu static const io_uuid_spec_t tos_fw_cert_uuid_spec = {
97*91f16700Schasinglulu 	.uuid = UUID_TRUSTED_OS_FW_CONTENT_CERT,
98*91f16700Schasinglulu };
99*91f16700Schasinglulu 
100*91f16700Schasinglulu static const io_uuid_spec_t nt_fw_cert_uuid_spec = {
101*91f16700Schasinglulu 	.uuid = UUID_NON_TRUSTED_FW_CONTENT_CERT,
102*91f16700Schasinglulu };
103*91f16700Schasinglulu #endif /* TRUSTED_BOARD_BOOT */
104*91f16700Schasinglulu 
105*91f16700Schasinglulu static int open_fip(const uintptr_t spec);
106*91f16700Schasinglulu static int open_memmap(const uintptr_t spec);
107*91f16700Schasinglulu 
108*91f16700Schasinglulu struct plat_io_policy {
109*91f16700Schasinglulu 	uintptr_t *dev_handle;
110*91f16700Schasinglulu 	uintptr_t image_spec;
111*91f16700Schasinglulu 	int (*check)(const uintptr_t spec);
112*91f16700Schasinglulu };
113*91f16700Schasinglulu 
114*91f16700Schasinglulu /* By default, load images from the FIP */
115*91f16700Schasinglulu static const struct plat_io_policy policies[] = {
116*91f16700Schasinglulu 	[FIP_IMAGE_ID] = {
117*91f16700Schasinglulu 		&memmap_dev_handle,
118*91f16700Schasinglulu 		(uintptr_t)&fip_block_spec,
119*91f16700Schasinglulu 		open_memmap
120*91f16700Schasinglulu 	},
121*91f16700Schasinglulu 	[BL2_IMAGE_ID] = {
122*91f16700Schasinglulu 		&fip_dev_handle,
123*91f16700Schasinglulu 		(uintptr_t)&bl2_uuid_spec,
124*91f16700Schasinglulu 		open_fip
125*91f16700Schasinglulu 	},
126*91f16700Schasinglulu 	[BL31_IMAGE_ID] = {
127*91f16700Schasinglulu 		&fip_dev_handle,
128*91f16700Schasinglulu 		(uintptr_t)&bl31_uuid_spec,
129*91f16700Schasinglulu 		open_fip
130*91f16700Schasinglulu 	},
131*91f16700Schasinglulu 	[BL32_IMAGE_ID] = {
132*91f16700Schasinglulu 		&fip_dev_handle,
133*91f16700Schasinglulu 		(uintptr_t)&bl32_uuid_spec,
134*91f16700Schasinglulu 		open_fip
135*91f16700Schasinglulu 	},
136*91f16700Schasinglulu 	[BL32_EXTRA1_IMAGE_ID] = {
137*91f16700Schasinglulu 		&fip_dev_handle,
138*91f16700Schasinglulu 		(uintptr_t)&bl32_extra1_uuid_spec,
139*91f16700Schasinglulu 		open_fip
140*91f16700Schasinglulu 	},
141*91f16700Schasinglulu 	[BL32_EXTRA2_IMAGE_ID] = {
142*91f16700Schasinglulu 		&fip_dev_handle,
143*91f16700Schasinglulu 		(uintptr_t)&bl32_extra2_uuid_spec,
144*91f16700Schasinglulu 		open_fip
145*91f16700Schasinglulu 	},
146*91f16700Schasinglulu 	[BL33_IMAGE_ID] = {
147*91f16700Schasinglulu 		&fip_dev_handle,
148*91f16700Schasinglulu 		(uintptr_t)&bl33_uuid_spec,
149*91f16700Schasinglulu 		open_fip
150*91f16700Schasinglulu 	},
151*91f16700Schasinglulu #if TRUSTED_BOARD_BOOT
152*91f16700Schasinglulu 	[TRUSTED_BOOT_FW_CERT_ID] = {
153*91f16700Schasinglulu 		&fip_dev_handle,
154*91f16700Schasinglulu 		(uintptr_t)&tb_fw_cert_uuid_spec,
155*91f16700Schasinglulu 		open_fip
156*91f16700Schasinglulu 	},
157*91f16700Schasinglulu 	[TRUSTED_KEY_CERT_ID] = {
158*91f16700Schasinglulu 		&fip_dev_handle,
159*91f16700Schasinglulu 		(uintptr_t)&trusted_key_cert_uuid_spec,
160*91f16700Schasinglulu 		open_fip
161*91f16700Schasinglulu 	},
162*91f16700Schasinglulu 	[SOC_FW_KEY_CERT_ID] = {
163*91f16700Schasinglulu 		&fip_dev_handle,
164*91f16700Schasinglulu 		(uintptr_t)&soc_fw_key_cert_uuid_spec,
165*91f16700Schasinglulu 		open_fip
166*91f16700Schasinglulu 	},
167*91f16700Schasinglulu 	[TRUSTED_OS_FW_KEY_CERT_ID] = {
168*91f16700Schasinglulu 		&fip_dev_handle,
169*91f16700Schasinglulu 		(uintptr_t)&tos_fw_key_cert_uuid_spec,
170*91f16700Schasinglulu 		open_fip
171*91f16700Schasinglulu 	},
172*91f16700Schasinglulu 	[NON_TRUSTED_FW_KEY_CERT_ID] = {
173*91f16700Schasinglulu 		&fip_dev_handle,
174*91f16700Schasinglulu 		(uintptr_t)&nt_fw_key_cert_uuid_spec,
175*91f16700Schasinglulu 		open_fip
176*91f16700Schasinglulu 	},
177*91f16700Schasinglulu 	[SOC_FW_CONTENT_CERT_ID] = {
178*91f16700Schasinglulu 		&fip_dev_handle,
179*91f16700Schasinglulu 		(uintptr_t)&soc_fw_cert_uuid_spec,
180*91f16700Schasinglulu 		open_fip
181*91f16700Schasinglulu 	},
182*91f16700Schasinglulu 	[TRUSTED_OS_FW_CONTENT_CERT_ID] = {
183*91f16700Schasinglulu 		&fip_dev_handle,
184*91f16700Schasinglulu 		(uintptr_t)&tos_fw_cert_uuid_spec,
185*91f16700Schasinglulu 		open_fip
186*91f16700Schasinglulu 	},
187*91f16700Schasinglulu 	[NON_TRUSTED_FW_CONTENT_CERT_ID] = {
188*91f16700Schasinglulu 		&fip_dev_handle,
189*91f16700Schasinglulu 		(uintptr_t)&nt_fw_cert_uuid_spec,
190*91f16700Schasinglulu 		open_fip
191*91f16700Schasinglulu 	},
192*91f16700Schasinglulu #endif /* TRUSTED_BOARD_BOOT */
193*91f16700Schasinglulu };
194*91f16700Schasinglulu 
195*91f16700Schasinglulu static int open_fip(const uintptr_t spec)
196*91f16700Schasinglulu {
197*91f16700Schasinglulu 	int result;
198*91f16700Schasinglulu 	uintptr_t local_image_handle;
199*91f16700Schasinglulu 
200*91f16700Schasinglulu 	/* See if a Firmware Image Package is available */
201*91f16700Schasinglulu 	result = io_dev_init(fip_dev_handle, (uintptr_t)FIP_IMAGE_ID);
202*91f16700Schasinglulu 	if (result == 0) {
203*91f16700Schasinglulu 		result = io_open(fip_dev_handle, spec, &local_image_handle);
204*91f16700Schasinglulu 		if (result == 0) {
205*91f16700Schasinglulu 			VERBOSE("Using FIP\n");
206*91f16700Schasinglulu 			io_close(local_image_handle);
207*91f16700Schasinglulu 		}
208*91f16700Schasinglulu 	}
209*91f16700Schasinglulu 	return result;
210*91f16700Schasinglulu }
211*91f16700Schasinglulu 
212*91f16700Schasinglulu static int open_memmap(const uintptr_t spec)
213*91f16700Schasinglulu {
214*91f16700Schasinglulu 	int result;
215*91f16700Schasinglulu 	uintptr_t local_image_handle;
216*91f16700Schasinglulu 
217*91f16700Schasinglulu 	result = io_dev_init(memmap_dev_handle, (uintptr_t)NULL);
218*91f16700Schasinglulu 	if (result == 0) {
219*91f16700Schasinglulu 		result = io_open(memmap_dev_handle, spec, &local_image_handle);
220*91f16700Schasinglulu 		if (result == 0) {
221*91f16700Schasinglulu 			VERBOSE("Using Memmap\n");
222*91f16700Schasinglulu 			io_close(local_image_handle);
223*91f16700Schasinglulu 		}
224*91f16700Schasinglulu 	}
225*91f16700Schasinglulu 	return result;
226*91f16700Schasinglulu }
227*91f16700Schasinglulu 
228*91f16700Schasinglulu void plat_rpi3_io_setup(void)
229*91f16700Schasinglulu {
230*91f16700Schasinglulu 	int io_result;
231*91f16700Schasinglulu 
232*91f16700Schasinglulu 	io_result = register_io_dev_fip(&fip_dev_con);
233*91f16700Schasinglulu 	assert(io_result == 0);
234*91f16700Schasinglulu 
235*91f16700Schasinglulu 	io_result = register_io_dev_memmap(&memmap_dev_con);
236*91f16700Schasinglulu 	assert(io_result == 0);
237*91f16700Schasinglulu 
238*91f16700Schasinglulu 	/* Open connections to devices and cache the handles */
239*91f16700Schasinglulu 	io_result = io_dev_open(fip_dev_con, (uintptr_t)NULL,
240*91f16700Schasinglulu 				&fip_dev_handle);
241*91f16700Schasinglulu 	assert(io_result == 0);
242*91f16700Schasinglulu 
243*91f16700Schasinglulu 	io_result = io_dev_open(memmap_dev_con, (uintptr_t)NULL,
244*91f16700Schasinglulu 				&memmap_dev_handle);
245*91f16700Schasinglulu 	assert(io_result == 0);
246*91f16700Schasinglulu 
247*91f16700Schasinglulu 	/* Ignore improbable errors in release builds */
248*91f16700Schasinglulu 	(void)io_result;
249*91f16700Schasinglulu }
250*91f16700Schasinglulu 
251*91f16700Schasinglulu /*
252*91f16700Schasinglulu  * Return an IO device handle and specification which can be used to access
253*91f16700Schasinglulu  * an image. Use this to enforce platform load policy
254*91f16700Schasinglulu  */
255*91f16700Schasinglulu int plat_get_image_source(unsigned int image_id, uintptr_t *dev_handle,
256*91f16700Schasinglulu 			  uintptr_t *image_spec)
257*91f16700Schasinglulu {
258*91f16700Schasinglulu 	int result;
259*91f16700Schasinglulu 	const struct plat_io_policy *policy;
260*91f16700Schasinglulu 
261*91f16700Schasinglulu 	assert(image_id < ARRAY_SIZE(policies));
262*91f16700Schasinglulu 
263*91f16700Schasinglulu 	policy = &policies[image_id];
264*91f16700Schasinglulu 	result = policy->check(policy->image_spec);
265*91f16700Schasinglulu 	if (result == 0) {
266*91f16700Schasinglulu 		*image_spec = policy->image_spec;
267*91f16700Schasinglulu 		*dev_handle = *(policy->dev_handle);
268*91f16700Schasinglulu 	}
269*91f16700Schasinglulu 
270*91f16700Schasinglulu 	return result;
271*91f16700Schasinglulu }
272