1d64485e4SEtienne Carriere // SPDX-License-Identifier: BSD-3-Clause 2d64485e4SEtienne Carriere /* 38afb7c41SEtienne Carriere * Copyright (c) 2017-2021, STMicroelectronics 4d64485e4SEtienne Carriere */ 5d64485e4SEtienne Carriere 6d64485e4SEtienne Carriere #include <assert.h> 7890703c3SEtienne Carriere #include <config.h> 8d64485e4SEtienne Carriere #include <drivers/stm32_bsec.h> 9d64485e4SEtienne Carriere #include <io.h> 10d64485e4SEtienne Carriere #include <kernel/delay.h> 11890703c3SEtienne Carriere #include <kernel/dt.h> 1265401337SJens Wiklander #include <kernel/boot.h> 13d64485e4SEtienne Carriere #include <kernel/spinlock.h> 14a2fc83d1SJerome Forissier #include <libfdt.h> 15d64485e4SEtienne Carriere #include <limits.h> 16d64485e4SEtienne Carriere #include <mm/core_memprot.h> 17d64485e4SEtienne Carriere #include <platform_config.h> 18d64485e4SEtienne Carriere #include <stm32_util.h> 19ef9888dcSEtienne Carriere #include <string.h> 20ef9888dcSEtienne Carriere #include <tee_api_defines.h> 21d64485e4SEtienne Carriere #include <types_ext.h> 22d64485e4SEtienne Carriere #include <util.h> 23d64485e4SEtienne Carriere 24d64485e4SEtienne Carriere #define BSEC_OTP_MASK GENMASK_32(4, 0) 25d64485e4SEtienne Carriere #define BSEC_OTP_BANK_SHIFT 5 26d64485e4SEtienne Carriere 27d64485e4SEtienne Carriere /* Permanent lock bitmasks */ 28d64485e4SEtienne Carriere #define ADDR_LOWER_OTP_PERLOCK_SHIFT 3 29d64485e4SEtienne Carriere #define DATA_LOWER_OTP_PERLOCK_BIT 3 30d64485e4SEtienne Carriere #define DATA_LOWER_OTP_PERLOCK_MASK GENMASK_32(2, 0) 31d64485e4SEtienne Carriere #define ADDR_UPPER_OTP_PERLOCK_SHIFT 4 32d64485e4SEtienne Carriere #define DATA_UPPER_OTP_PERLOCK_BIT 1 33d64485e4SEtienne Carriere #define DATA_UPPER_OTP_PERLOCK_MASK GENMASK_32(3, 0) 34d64485e4SEtienne Carriere 35d64485e4SEtienne Carriere /* BSEC register offset */ 36d64485e4SEtienne Carriere #define BSEC_OTP_CONF_OFF 0x000U 37d64485e4SEtienne Carriere #define BSEC_OTP_CTRL_OFF 0x004U 38d64485e4SEtienne Carriere #define BSEC_OTP_WRDATA_OFF 0x008U 39d64485e4SEtienne Carriere #define BSEC_OTP_STATUS_OFF 0x00CU 40d64485e4SEtienne Carriere #define BSEC_OTP_LOCK_OFF 0x010U 41d64485e4SEtienne Carriere #define BSEC_DEN_OFF 0x014U 42d64485e4SEtienne Carriere #define BSEC_FEN_OFF 0x018U 43d64485e4SEtienne Carriere #define BSEC_DISTURBED_OFF 0x01CU 44d64485e4SEtienne Carriere #define BSEC_DISTURBED1_OFF 0x020U 45d64485e4SEtienne Carriere #define BSEC_DISTURBED2_OFF 0x024U 46d64485e4SEtienne Carriere #define BSEC_ERROR_OFF 0x034U 47d64485e4SEtienne Carriere #define BSEC_ERROR1_OFF 0x038U 48d64485e4SEtienne Carriere #define BSEC_ERROR2_OFF 0x03CU 49d64485e4SEtienne Carriere #define BSEC_WRLOCK_OFF 0x04CU 50d64485e4SEtienne Carriere #define BSEC_WRLOCK1_OFF 0x050U 51d64485e4SEtienne Carriere #define BSEC_WRLOCK2_OFF 0x054U 52d64485e4SEtienne Carriere #define BSEC_SPLOCK_OFF 0x064U 53d64485e4SEtienne Carriere #define BSEC_SPLOCK1_OFF 0x068U 54d64485e4SEtienne Carriere #define BSEC_SPLOCK2_OFF 0x06CU 55d64485e4SEtienne Carriere #define BSEC_SWLOCK_OFF 0x07CU 56d64485e4SEtienne Carriere #define BSEC_SWLOCK1_OFF 0x080U 57d64485e4SEtienne Carriere #define BSEC_SWLOCK2_OFF 0x084U 58d64485e4SEtienne Carriere #define BSEC_SRLOCK_OFF 0x094U 59d64485e4SEtienne Carriere #define BSEC_SRLOCK1_OFF 0x098U 60d64485e4SEtienne Carriere #define BSEC_SRLOCK2_OFF 0x09CU 61d64485e4SEtienne Carriere #define BSEC_JTAG_IN_OFF 0x0ACU 62d64485e4SEtienne Carriere #define BSEC_JTAG_OUT_OFF 0x0B0U 63d64485e4SEtienne Carriere #define BSEC_SCRATCH_OFF 0x0B4U 64d64485e4SEtienne Carriere #define BSEC_OTP_DATA_OFF 0x200U 65d64485e4SEtienne Carriere #define BSEC_IPHW_CFG_OFF 0xFF0U 66d64485e4SEtienne Carriere #define BSEC_IPVR_OFF 0xFF4U 67d64485e4SEtienne Carriere #define BSEC_IP_ID_OFF 0xFF8U 68d64485e4SEtienne Carriere #define BSEC_IP_MAGIC_ID_OFF 0xFFCU 69d64485e4SEtienne Carriere 70d64485e4SEtienne Carriere /* BSEC_CONFIGURATION Register */ 71d64485e4SEtienne Carriere #define BSEC_CONF_POWER_UP_MASK BIT(0) 72d64485e4SEtienne Carriere #define BSEC_CONF_POWER_UP_SHIFT 0 73d64485e4SEtienne Carriere #define BSEC_CONF_FRQ_MASK GENMASK_32(2, 1) 74d64485e4SEtienne Carriere #define BSEC_CONF_FRQ_SHIFT 1 75d64485e4SEtienne Carriere #define BSEC_CONF_PRG_WIDTH_MASK GENMASK_32(6, 3) 76d64485e4SEtienne Carriere #define BSEC_CONF_PRG_WIDTH_SHIFT 3 77d64485e4SEtienne Carriere #define BSEC_CONF_TREAD_MASK GENMASK_32(8, 7) 78d64485e4SEtienne Carriere #define BSEC_CONF_TREAD_SHIFT 7 79d64485e4SEtienne Carriere 80d64485e4SEtienne Carriere /* BSEC_CONTROL Register */ 81d64485e4SEtienne Carriere #define BSEC_READ 0x000U 82d64485e4SEtienne Carriere #define BSEC_WRITE 0x100U 83d64485e4SEtienne Carriere #define BSEC_LOCK 0x200U 84d64485e4SEtienne Carriere 85d64485e4SEtienne Carriere /* BSEC_STATUS Register */ 86d64485e4SEtienne Carriere #define BSEC_MODE_STATUS_MASK GENMASK_32(2, 0) 87d64485e4SEtienne Carriere #define BSEC_MODE_BUSY_MASK BIT(3) 88d64485e4SEtienne Carriere #define BSEC_MODE_PROGFAIL_MASK BIT(4) 89d64485e4SEtienne Carriere #define BSEC_MODE_PWR_MASK BIT(5) 90d64485e4SEtienne Carriere #define BSEC_MODE_BIST1_LOCK_MASK BIT(6) 91d64485e4SEtienne Carriere #define BSEC_MODE_BIST2_LOCK_MASK BIT(7) 92d64485e4SEtienne Carriere 93d64485e4SEtienne Carriere /* BSEC_DEBUG */ 94d64485e4SEtienne Carriere #define BSEC_HDPEN BIT(4) 95d64485e4SEtienne Carriere #define BSEC_SPIDEN BIT(5) 96d64485e4SEtienne Carriere #define BSEC_SPINDEN BIT(6) 97d64485e4SEtienne Carriere #define BSEC_DBGSWGEN BIT(10) 98d64485e4SEtienne Carriere #define BSEC_DEN_ALL_MSK GENMASK_32(10, 0) 99d64485e4SEtienne Carriere 100d64485e4SEtienne Carriere /* 101d64485e4SEtienne Carriere * OTP Lock services definition 102d64485e4SEtienne Carriere * Value must corresponding to the bit position in the register 103d64485e4SEtienne Carriere */ 104d64485e4SEtienne Carriere #define BSEC_LOCK_UPPER_OTP 0x00 105d64485e4SEtienne Carriere #define BSEC_LOCK_DEBUG 0x02 106e03a4a45SEtienne Carriere #define BSEC_LOCK_PROGRAM 0x04 107d64485e4SEtienne Carriere 108d64485e4SEtienne Carriere /* Timeout when polling on status */ 109b76fcab5SEtienne Carriere #define BSEC_TIMEOUT_US 10000 110d64485e4SEtienne Carriere 111890703c3SEtienne Carriere 112d64485e4SEtienne Carriere struct bsec_dev { 113d64485e4SEtienne Carriere struct io_pa_va base; 114d64485e4SEtienne Carriere unsigned int upper_base; 115d64485e4SEtienne Carriere unsigned int max_id; 116890703c3SEtienne Carriere uint32_t *nsec_access; 117d64485e4SEtienne Carriere }; 118d64485e4SEtienne Carriere 119d64485e4SEtienne Carriere /* Only 1 instance of BSEC is expected per platform */ 120d64485e4SEtienne Carriere static struct bsec_dev bsec_dev; 121d64485e4SEtienne Carriere 122d64485e4SEtienne Carriere /* BSEC access protection */ 123d64485e4SEtienne Carriere static unsigned int lock = SPINLOCK_UNLOCK; 124d64485e4SEtienne Carriere 125d64485e4SEtienne Carriere static uint32_t bsec_lock(void) 126d64485e4SEtienne Carriere { 127d64485e4SEtienne Carriere return may_spin_lock(&lock); 128d64485e4SEtienne Carriere } 129d64485e4SEtienne Carriere 130d64485e4SEtienne Carriere static void bsec_unlock(uint32_t exceptions) 131d64485e4SEtienne Carriere { 132d64485e4SEtienne Carriere may_spin_unlock(&lock, exceptions); 133d64485e4SEtienne Carriere } 134d64485e4SEtienne Carriere 135d64485e4SEtienne Carriere static uint32_t otp_max_id(void) 136d64485e4SEtienne Carriere { 137d64485e4SEtienne Carriere return bsec_dev.max_id; 138d64485e4SEtienne Carriere } 139d64485e4SEtienne Carriere 140586eee81SEtienne Carriere static uint32_t otp_upper_base(void) 141586eee81SEtienne Carriere { 142586eee81SEtienne Carriere return bsec_dev.upper_base; 143586eee81SEtienne Carriere } 144586eee81SEtienne Carriere 145d64485e4SEtienne Carriere static uint32_t otp_bank_offset(uint32_t otp_id) 146d64485e4SEtienne Carriere { 147d64485e4SEtienne Carriere assert(otp_id <= otp_max_id()); 148d64485e4SEtienne Carriere 149d64485e4SEtienne Carriere return ((otp_id & ~BSEC_OTP_MASK) >> BSEC_OTP_BANK_SHIFT) * 150d64485e4SEtienne Carriere sizeof(uint32_t); 151d64485e4SEtienne Carriere } 152d64485e4SEtienne Carriere 153d64485e4SEtienne Carriere static vaddr_t bsec_base(void) 154d64485e4SEtienne Carriere { 155c2e4eb43SAnton Rybakov return io_pa_or_va_secure(&bsec_dev.base, BSEC_IP_MAGIC_ID_OFF + 1); 156d64485e4SEtienne Carriere } 157d64485e4SEtienne Carriere 158d64485e4SEtienne Carriere static uint32_t bsec_status(void) 159d64485e4SEtienne Carriere { 160d64485e4SEtienne Carriere return io_read32(bsec_base() + BSEC_OTP_STATUS_OFF); 161d64485e4SEtienne Carriere } 162d64485e4SEtienne Carriere 1631ac4ea14SEtienne Carriere /* 1641ac4ea14SEtienne Carriere * Check that BSEC interface does not report an error 1651ac4ea14SEtienne Carriere * @otp_id : OTP number 1661ac4ea14SEtienne Carriere * @check_disturbed: check only error (false) or all sources (true) 1671ac4ea14SEtienne Carriere * Return a TEE_Result compliant value 1681ac4ea14SEtienne Carriere */ 1691ac4ea14SEtienne Carriere static TEE_Result check_no_error(uint32_t otp_id, bool check_disturbed) 170d64485e4SEtienne Carriere { 171d64485e4SEtienne Carriere uint32_t bit = BIT(otp_id & BSEC_OTP_MASK); 172d64485e4SEtienne Carriere uint32_t bank = otp_bank_offset(otp_id); 173d64485e4SEtienne Carriere 1741ac4ea14SEtienne Carriere if (io_read32(bsec_base() + BSEC_ERROR_OFF + bank) & bit) 175d64485e4SEtienne Carriere return TEE_ERROR_GENERIC; 176d64485e4SEtienne Carriere 1771ac4ea14SEtienne Carriere if (check_disturbed && 1781ac4ea14SEtienne Carriere io_read32(bsec_base() + BSEC_DISTURBED_OFF + bank) & bit) 179d64485e4SEtienne Carriere return TEE_ERROR_GENERIC; 180d64485e4SEtienne Carriere 181d64485e4SEtienne Carriere return TEE_SUCCESS; 182d64485e4SEtienne Carriere } 183d64485e4SEtienne Carriere 184d64485e4SEtienne Carriere static TEE_Result power_up_safmem(void) 185d64485e4SEtienne Carriere { 186d64485e4SEtienne Carriere uint64_t timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 187d64485e4SEtienne Carriere 188d64485e4SEtienne Carriere io_mask32(bsec_base() + BSEC_OTP_CONF_OFF, BSEC_CONF_POWER_UP_MASK, 189d64485e4SEtienne Carriere BSEC_CONF_POWER_UP_MASK); 190d64485e4SEtienne Carriere 191d64485e4SEtienne Carriere /* 192d64485e4SEtienne Carriere * If a timeout is detected, test the condition again to consider 193d64485e4SEtienne Carriere * cases where timeout is due to the executing TEE thread rescheduling. 194d64485e4SEtienne Carriere */ 195d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 196d64485e4SEtienne Carriere if (bsec_status() & BSEC_MODE_PWR_MASK) 197d64485e4SEtienne Carriere break; 198d64485e4SEtienne Carriere 199d64485e4SEtienne Carriere if (bsec_status() & BSEC_MODE_PWR_MASK) 200d64485e4SEtienne Carriere return TEE_SUCCESS; 201d64485e4SEtienne Carriere 202d64485e4SEtienne Carriere return TEE_ERROR_GENERIC; 203d64485e4SEtienne Carriere } 204d64485e4SEtienne Carriere 205d64485e4SEtienne Carriere static TEE_Result power_down_safmem(void) 206d64485e4SEtienne Carriere { 207d64485e4SEtienne Carriere uint64_t timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 208d64485e4SEtienne Carriere 209d64485e4SEtienne Carriere io_mask32(bsec_base() + BSEC_OTP_CONF_OFF, 0, BSEC_CONF_POWER_UP_MASK); 210d64485e4SEtienne Carriere 211d64485e4SEtienne Carriere /* 212d64485e4SEtienne Carriere * If a timeout is detected, test the condition again to consider 213d64485e4SEtienne Carriere * cases where timeout is due to the executing TEE thread rescheduling. 214d64485e4SEtienne Carriere */ 215d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 216d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_PWR_MASK)) 217d64485e4SEtienne Carriere break; 218d64485e4SEtienne Carriere 219d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_PWR_MASK)) 220d64485e4SEtienne Carriere return TEE_SUCCESS; 221d64485e4SEtienne Carriere 222d64485e4SEtienne Carriere return TEE_ERROR_GENERIC; 223d64485e4SEtienne Carriere } 224d64485e4SEtienne Carriere 225d64485e4SEtienne Carriere TEE_Result stm32_bsec_shadow_register(uint32_t otp_id) 226d64485e4SEtienne Carriere { 227d64485e4SEtienne Carriere TEE_Result result = 0; 228d64485e4SEtienne Carriere uint32_t exceptions = 0; 229d64485e4SEtienne Carriere uint64_t timeout_ref = 0; 230ef9888dcSEtienne Carriere bool locked = false; 231d64485e4SEtienne Carriere 232ef9888dcSEtienne Carriere /* Check if shadowing of OTP is locked, informative only */ 233ef9888dcSEtienne Carriere result = stm32_bsec_read_sr_lock(otp_id, &locked); 234ef9888dcSEtienne Carriere if (result) 235ef9888dcSEtienne Carriere return result; 236d64485e4SEtienne Carriere 237ef9888dcSEtienne Carriere if (locked) 238ef9888dcSEtienne Carriere DMSG("BSEC shadow warning: OTP locked"); 239d64485e4SEtienne Carriere 240d64485e4SEtienne Carriere exceptions = bsec_lock(); 241d64485e4SEtienne Carriere 242d64485e4SEtienne Carriere result = power_up_safmem(); 243d64485e4SEtienne Carriere if (result) 2447b05d514SEtienne Carriere goto out; 245d64485e4SEtienne Carriere 246d64485e4SEtienne Carriere io_write32(bsec_base() + BSEC_OTP_CTRL_OFF, otp_id | BSEC_READ); 247d64485e4SEtienne Carriere 248d64485e4SEtienne Carriere timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 249d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 250d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_BUSY_MASK)) 251d64485e4SEtienne Carriere break; 252d64485e4SEtienne Carriere 253d64485e4SEtienne Carriere if (bsec_status() & BSEC_MODE_BUSY_MASK) 2548afb7c41SEtienne Carriere result = TEE_ERROR_BUSY; 255d64485e4SEtienne Carriere else 2561ac4ea14SEtienne Carriere result = check_no_error(otp_id, true /* check-disturbed */); 257d64485e4SEtienne Carriere 258d64485e4SEtienne Carriere power_down_safmem(); 259d64485e4SEtienne Carriere 2607b05d514SEtienne Carriere out: 261d64485e4SEtienne Carriere bsec_unlock(exceptions); 262d64485e4SEtienne Carriere 263d64485e4SEtienne Carriere return result; 264d64485e4SEtienne Carriere } 265d64485e4SEtienne Carriere 266d64485e4SEtienne Carriere TEE_Result stm32_bsec_read_otp(uint32_t *value, uint32_t otp_id) 267d64485e4SEtienne Carriere { 268d64485e4SEtienne Carriere if (otp_id > otp_max_id()) 269d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 270d64485e4SEtienne Carriere 271d64485e4SEtienne Carriere *value = io_read32(bsec_base() + BSEC_OTP_DATA_OFF + 272d64485e4SEtienne Carriere (otp_id * sizeof(uint32_t))); 273d64485e4SEtienne Carriere 2741ac4ea14SEtienne Carriere return TEE_SUCCESS; 275d64485e4SEtienne Carriere } 276d64485e4SEtienne Carriere 277d64485e4SEtienne Carriere TEE_Result stm32_bsec_shadow_read_otp(uint32_t *otp_value, uint32_t otp_id) 278d64485e4SEtienne Carriere { 279d64485e4SEtienne Carriere TEE_Result result = 0; 280d64485e4SEtienne Carriere 281d64485e4SEtienne Carriere result = stm32_bsec_shadow_register(otp_id); 282d64485e4SEtienne Carriere if (result) { 283ef9888dcSEtienne Carriere EMSG("BSEC %"PRIu32" Shadowing Error %#"PRIx32, otp_id, result); 284d64485e4SEtienne Carriere return result; 285d64485e4SEtienne Carriere } 286d64485e4SEtienne Carriere 287d64485e4SEtienne Carriere result = stm32_bsec_read_otp(otp_value, otp_id); 288d64485e4SEtienne Carriere if (result) 289ef9888dcSEtienne Carriere EMSG("BSEC %"PRIu32" Read Error %#"PRIx32, otp_id, result); 290d64485e4SEtienne Carriere 291d64485e4SEtienne Carriere return result; 292d64485e4SEtienne Carriere } 293d64485e4SEtienne Carriere 294d64485e4SEtienne Carriere TEE_Result stm32_bsec_write_otp(uint32_t value, uint32_t otp_id) 295d64485e4SEtienne Carriere { 296d64485e4SEtienne Carriere TEE_Result result = 0; 297d64485e4SEtienne Carriere uint32_t exceptions = 0; 298d64485e4SEtienne Carriere vaddr_t otp_data_base = bsec_base() + BSEC_OTP_DATA_OFF; 299ef9888dcSEtienne Carriere bool locked = false; 300d64485e4SEtienne Carriere 301ef9888dcSEtienne Carriere /* Check if write of OTP is locked, informative only */ 302ef9888dcSEtienne Carriere result = stm32_bsec_read_sw_lock(otp_id, &locked); 303ef9888dcSEtienne Carriere if (result) 304ef9888dcSEtienne Carriere return result; 305d64485e4SEtienne Carriere 306ef9888dcSEtienne Carriere if (locked) 307ef9888dcSEtienne Carriere DMSG("BSEC write warning: OTP locked"); 308d64485e4SEtienne Carriere 309d64485e4SEtienne Carriere exceptions = bsec_lock(); 310d64485e4SEtienne Carriere 311d64485e4SEtienne Carriere io_write32(otp_data_base + (otp_id * sizeof(uint32_t)), value); 312d64485e4SEtienne Carriere 313d64485e4SEtienne Carriere bsec_unlock(exceptions); 314d64485e4SEtienne Carriere 3151ac4ea14SEtienne Carriere return TEE_SUCCESS; 316d64485e4SEtienne Carriere } 317d64485e4SEtienne Carriere 3180c30f9eaSEtienne Carriere #ifdef CFG_STM32_BSEC_WRITE 319d64485e4SEtienne Carriere TEE_Result stm32_bsec_program_otp(uint32_t value, uint32_t otp_id) 320d64485e4SEtienne Carriere { 321d64485e4SEtienne Carriere TEE_Result result = 0; 322d64485e4SEtienne Carriere uint32_t exceptions = 0; 323ef9888dcSEtienne Carriere uint64_t timeout_ref = 0; 324ef9888dcSEtienne Carriere bool locked = false; 325d64485e4SEtienne Carriere 326ef9888dcSEtienne Carriere /* Check if shadowing of OTP is locked, informative only */ 327ef9888dcSEtienne Carriere result = stm32_bsec_read_sp_lock(otp_id, &locked); 328ef9888dcSEtienne Carriere if (result) 329ef9888dcSEtienne Carriere return result; 330d64485e4SEtienne Carriere 331ef9888dcSEtienne Carriere if (locked) 332ef9888dcSEtienne Carriere DMSG("BSEC program warning: OTP locked"); 333d64485e4SEtienne Carriere 334d64485e4SEtienne Carriere if (io_read32(bsec_base() + BSEC_OTP_LOCK_OFF) & BIT(BSEC_LOCK_PROGRAM)) 335ef9888dcSEtienne Carriere DMSG("BSEC program warning: GPLOCK activated"); 336d64485e4SEtienne Carriere 337d64485e4SEtienne Carriere exceptions = bsec_lock(); 338d64485e4SEtienne Carriere 339d64485e4SEtienne Carriere result = power_up_safmem(); 340d64485e4SEtienne Carriere if (result) 3417b05d514SEtienne Carriere goto out; 342d64485e4SEtienne Carriere 343d64485e4SEtienne Carriere io_write32(bsec_base() + BSEC_OTP_WRDATA_OFF, value); 344d64485e4SEtienne Carriere io_write32(bsec_base() + BSEC_OTP_CTRL_OFF, otp_id | BSEC_WRITE); 345d64485e4SEtienne Carriere 346d64485e4SEtienne Carriere timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 347d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 348d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_BUSY_MASK)) 349d64485e4SEtienne Carriere break; 350d64485e4SEtienne Carriere 3518afb7c41SEtienne Carriere if (bsec_status() & BSEC_MODE_BUSY_MASK) 3528afb7c41SEtienne Carriere result = TEE_ERROR_BUSY; 3538afb7c41SEtienne Carriere else if (bsec_status() & BSEC_MODE_PROGFAIL_MASK) 3548afb7c41SEtienne Carriere result = TEE_ERROR_BAD_PARAMETERS; 355d64485e4SEtienne Carriere else 3561ac4ea14SEtienne Carriere result = check_no_error(otp_id, true /* check-disturbed */); 357d64485e4SEtienne Carriere 358d64485e4SEtienne Carriere power_down_safmem(); 359d64485e4SEtienne Carriere 3607b05d514SEtienne Carriere out: 361d64485e4SEtienne Carriere bsec_unlock(exceptions); 362d64485e4SEtienne Carriere 363d64485e4SEtienne Carriere return result; 364d64485e4SEtienne Carriere } 365301b3eb5SEtienne Carriere #endif /*CFG_STM32_BSEC_WRITE*/ 366d64485e4SEtienne Carriere 367d64485e4SEtienne Carriere TEE_Result stm32_bsec_permanent_lock_otp(uint32_t otp_id) 368d64485e4SEtienne Carriere { 369d64485e4SEtienne Carriere TEE_Result result = 0; 370d64485e4SEtienne Carriere uint32_t data = 0; 371d64485e4SEtienne Carriere uint32_t addr = 0; 372d64485e4SEtienne Carriere uint32_t exceptions = 0; 373d64485e4SEtienne Carriere vaddr_t base = bsec_base(); 374586eee81SEtienne Carriere uint64_t timeout_ref = 0; 375d64485e4SEtienne Carriere 376d64485e4SEtienne Carriere if (otp_id > otp_max_id()) 377d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 378d64485e4SEtienne Carriere 379586eee81SEtienne Carriere if (otp_id < otp_upper_base()) { 380d64485e4SEtienne Carriere addr = otp_id >> ADDR_LOWER_OTP_PERLOCK_SHIFT; 381d64485e4SEtienne Carriere data = DATA_LOWER_OTP_PERLOCK_BIT << 382d64485e4SEtienne Carriere ((otp_id & DATA_LOWER_OTP_PERLOCK_MASK) << 1U); 383d64485e4SEtienne Carriere } else { 384d64485e4SEtienne Carriere addr = (otp_id >> ADDR_UPPER_OTP_PERLOCK_SHIFT) + 2U; 385d64485e4SEtienne Carriere data = DATA_UPPER_OTP_PERLOCK_BIT << 386d64485e4SEtienne Carriere (otp_id & DATA_UPPER_OTP_PERLOCK_MASK); 387d64485e4SEtienne Carriere } 388d64485e4SEtienne Carriere 389d64485e4SEtienne Carriere exceptions = bsec_lock(); 390d64485e4SEtienne Carriere 391d64485e4SEtienne Carriere result = power_up_safmem(); 392d64485e4SEtienne Carriere if (result) 3937b05d514SEtienne Carriere goto out; 394d64485e4SEtienne Carriere 395d64485e4SEtienne Carriere io_write32(base + BSEC_OTP_WRDATA_OFF, data); 396d64485e4SEtienne Carriere io_write32(base + BSEC_OTP_CTRL_OFF, addr | BSEC_WRITE | BSEC_LOCK); 397d64485e4SEtienne Carriere 398d64485e4SEtienne Carriere timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 399d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 400d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_BUSY_MASK)) 401d64485e4SEtienne Carriere break; 402d64485e4SEtienne Carriere 4038afb7c41SEtienne Carriere if (bsec_status() & BSEC_MODE_BUSY_MASK) 4048afb7c41SEtienne Carriere result = TEE_ERROR_BUSY; 4058afb7c41SEtienne Carriere else if (bsec_status() & BSEC_MODE_PROGFAIL_MASK) 406d64485e4SEtienne Carriere result = TEE_ERROR_BAD_PARAMETERS; 407d64485e4SEtienne Carriere else 4081ac4ea14SEtienne Carriere result = check_no_error(otp_id, false /* not-disturbed */); 409d64485e4SEtienne Carriere 410d64485e4SEtienne Carriere power_down_safmem(); 411d64485e4SEtienne Carriere 4127b05d514SEtienne Carriere out: 413d64485e4SEtienne Carriere bsec_unlock(exceptions); 414d64485e4SEtienne Carriere 415d64485e4SEtienne Carriere return result; 416d64485e4SEtienne Carriere } 417d64485e4SEtienne Carriere 418301b3eb5SEtienne Carriere #ifdef CFG_STM32_BSEC_WRITE 419d64485e4SEtienne Carriere TEE_Result stm32_bsec_write_debug_conf(uint32_t value) 420d64485e4SEtienne Carriere { 421d64485e4SEtienne Carriere TEE_Result result = TEE_ERROR_GENERIC; 422d64485e4SEtienne Carriere uint32_t masked_val = value & BSEC_DEN_ALL_MSK; 423d64485e4SEtienne Carriere uint32_t exceptions = 0; 424d64485e4SEtienne Carriere 425d64485e4SEtienne Carriere exceptions = bsec_lock(); 426d64485e4SEtienne Carriere 427d64485e4SEtienne Carriere io_write32(bsec_base() + BSEC_DEN_OFF, value); 428d64485e4SEtienne Carriere 429d64485e4SEtienne Carriere if ((io_read32(bsec_base() + BSEC_DEN_OFF) ^ masked_val) == 0U) 430d64485e4SEtienne Carriere result = TEE_SUCCESS; 431d64485e4SEtienne Carriere 432d64485e4SEtienne Carriere bsec_unlock(exceptions); 433d64485e4SEtienne Carriere 434d64485e4SEtienne Carriere return result; 435d64485e4SEtienne Carriere } 436301b3eb5SEtienne Carriere #endif /*CFG_STM32_BSEC_WRITE*/ 437d64485e4SEtienne Carriere 438d64485e4SEtienne Carriere uint32_t stm32_bsec_read_debug_conf(void) 439d64485e4SEtienne Carriere { 440d64485e4SEtienne Carriere return io_read32(bsec_base() + BSEC_DEN_OFF); 441d64485e4SEtienne Carriere } 442d64485e4SEtienne Carriere 443ef9888dcSEtienne Carriere static TEE_Result set_bsec_lock(uint32_t otp_id, size_t lock_offset) 444d64485e4SEtienne Carriere { 445d64485e4SEtienne Carriere uint32_t bank = otp_bank_offset(otp_id); 446d64485e4SEtienne Carriere uint32_t otp_mask = BIT(otp_id & BSEC_OTP_MASK); 447d64485e4SEtienne Carriere vaddr_t lock_addr = bsec_base() + bank + lock_offset; 448d64485e4SEtienne Carriere uint32_t exceptions = 0; 449d64485e4SEtienne Carriere 450ef9888dcSEtienne Carriere if (otp_id > STM32MP1_OTP_MAX_ID) 451ef9888dcSEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 452d64485e4SEtienne Carriere 453d64485e4SEtienne Carriere exceptions = bsec_lock(); 454d64485e4SEtienne Carriere 455ef9888dcSEtienne Carriere io_write32(lock_addr, otp_mask); 456d64485e4SEtienne Carriere 457d64485e4SEtienne Carriere bsec_unlock(exceptions); 458d64485e4SEtienne Carriere 459ef9888dcSEtienne Carriere return TEE_SUCCESS; 460d64485e4SEtienne Carriere } 461d64485e4SEtienne Carriere 462ef9888dcSEtienne Carriere TEE_Result stm32_bsec_set_sr_lock(uint32_t otp_id) 463d64485e4SEtienne Carriere { 464ef9888dcSEtienne Carriere return set_bsec_lock(otp_id, BSEC_SRLOCK_OFF); 465d64485e4SEtienne Carriere } 466d64485e4SEtienne Carriere 467ef9888dcSEtienne Carriere TEE_Result stm32_bsec_set_sw_lock(uint32_t otp_id) 468d64485e4SEtienne Carriere { 469ef9888dcSEtienne Carriere return set_bsec_lock(otp_id, BSEC_SWLOCK_OFF); 470d64485e4SEtienne Carriere } 471d64485e4SEtienne Carriere 472ef9888dcSEtienne Carriere TEE_Result stm32_bsec_set_sp_lock(uint32_t otp_id) 473d64485e4SEtienne Carriere { 474ef9888dcSEtienne Carriere return set_bsec_lock(otp_id, BSEC_SPLOCK_OFF); 475d64485e4SEtienne Carriere } 476d64485e4SEtienne Carriere 477ef9888dcSEtienne Carriere static TEE_Result read_bsec_lock(uint32_t otp_id, bool *locked, 478ef9888dcSEtienne Carriere size_t lock_offset) 479d64485e4SEtienne Carriere { 480d64485e4SEtienne Carriere uint32_t bank = otp_bank_offset(otp_id); 481d64485e4SEtienne Carriere uint32_t otp_mask = BIT(otp_id & BSEC_OTP_MASK); 482d64485e4SEtienne Carriere vaddr_t lock_addr = bsec_base() + bank + lock_offset; 483d64485e4SEtienne Carriere 484ef9888dcSEtienne Carriere if (otp_id > STM32MP1_OTP_MAX_ID) 485ef9888dcSEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 486ef9888dcSEtienne Carriere 487ef9888dcSEtienne Carriere *locked = (io_read32(lock_addr) & otp_mask) != 0; 488ef9888dcSEtienne Carriere 489ef9888dcSEtienne Carriere return TEE_SUCCESS; 490d64485e4SEtienne Carriere } 491d64485e4SEtienne Carriere 492ef9888dcSEtienne Carriere TEE_Result stm32_bsec_read_sr_lock(uint32_t otp_id, bool *locked) 493d64485e4SEtienne Carriere { 494ef9888dcSEtienne Carriere return read_bsec_lock(otp_id, locked, BSEC_SRLOCK_OFF); 495d64485e4SEtienne Carriere } 496d64485e4SEtienne Carriere 497ef9888dcSEtienne Carriere TEE_Result stm32_bsec_read_sw_lock(uint32_t otp_id, bool *locked) 498d64485e4SEtienne Carriere { 499ef9888dcSEtienne Carriere return read_bsec_lock(otp_id, locked, BSEC_SWLOCK_OFF); 500d64485e4SEtienne Carriere } 501d64485e4SEtienne Carriere 502ef9888dcSEtienne Carriere TEE_Result stm32_bsec_read_sp_lock(uint32_t otp_id, bool *locked) 503d64485e4SEtienne Carriere { 504ef9888dcSEtienne Carriere return read_bsec_lock(otp_id, locked, BSEC_SPLOCK_OFF); 505d64485e4SEtienne Carriere } 506d64485e4SEtienne Carriere 507ef9888dcSEtienne Carriere TEE_Result stm32_bsec_read_permanent_lock(uint32_t otp_id, bool *locked) 508d64485e4SEtienne Carriere { 509ef9888dcSEtienne Carriere return read_bsec_lock(otp_id, locked, BSEC_WRLOCK_OFF); 510d64485e4SEtienne Carriere } 511d64485e4SEtienne Carriere 512ef9888dcSEtienne Carriere TEE_Result stm32_bsec_otp_lock(uint32_t service) 513d64485e4SEtienne Carriere { 514d64485e4SEtienne Carriere vaddr_t addr = bsec_base() + BSEC_OTP_LOCK_OFF; 515d64485e4SEtienne Carriere 516d64485e4SEtienne Carriere switch (service) { 517d64485e4SEtienne Carriere case BSEC_LOCK_UPPER_OTP: 518ef9888dcSEtienne Carriere io_write32(addr, BIT(BSEC_LOCK_UPPER_OTP)); 519d64485e4SEtienne Carriere break; 520d64485e4SEtienne Carriere case BSEC_LOCK_DEBUG: 521ef9888dcSEtienne Carriere io_write32(addr, BIT(BSEC_LOCK_DEBUG)); 522d64485e4SEtienne Carriere break; 523d64485e4SEtienne Carriere case BSEC_LOCK_PROGRAM: 524ef9888dcSEtienne Carriere io_write32(addr, BIT(BSEC_LOCK_PROGRAM)); 525d64485e4SEtienne Carriere break; 526d64485e4SEtienne Carriere default: 527d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 528d64485e4SEtienne Carriere } 529d64485e4SEtienne Carriere 530d64485e4SEtienne Carriere return TEE_SUCCESS; 531d64485e4SEtienne Carriere } 532d64485e4SEtienne Carriere 533890703c3SEtienne Carriere static size_t nsec_access_array_size(void) 534890703c3SEtienne Carriere { 535586eee81SEtienne Carriere size_t upper_count = otp_max_id() - otp_upper_base() + 1; 536890703c3SEtienne Carriere 537*8396f62eSGatien Chevallier return ROUNDUP_DIV(upper_count, BSEC_BITS_PER_WORD); 538890703c3SEtienne Carriere } 539890703c3SEtienne Carriere 540890703c3SEtienne Carriere static bool nsec_access_granted(unsigned int index) 541890703c3SEtienne Carriere { 542890703c3SEtienne Carriere uint32_t *array = bsec_dev.nsec_access; 543890703c3SEtienne Carriere 544890703c3SEtienne Carriere return array && 545*8396f62eSGatien Chevallier (index / BSEC_BITS_PER_WORD) < nsec_access_array_size() && 546*8396f62eSGatien Chevallier array[index / BSEC_BITS_PER_WORD] & 547*8396f62eSGatien Chevallier BIT(index % BSEC_BITS_PER_WORD); 548890703c3SEtienne Carriere } 549890703c3SEtienne Carriere 550d64485e4SEtienne Carriere bool stm32_bsec_nsec_can_access_otp(uint32_t otp_id) 551d64485e4SEtienne Carriere { 552586eee81SEtienne Carriere return otp_id < otp_upper_base() || 553586eee81SEtienne Carriere nsec_access_granted(otp_id - otp_upper_base()); 554d64485e4SEtienne Carriere } 555d64485e4SEtienne Carriere 556cfada897SAlexandru Gagniuc #ifdef CFG_EMBED_DTB 557890703c3SEtienne Carriere static void enable_nsec_access(unsigned int otp_id) 558890703c3SEtienne Carriere { 559*8396f62eSGatien Chevallier unsigned int idx = (otp_id - otp_upper_base()) / BSEC_BITS_PER_WORD; 560890703c3SEtienne Carriere 561586eee81SEtienne Carriere if (otp_id < otp_upper_base()) 562890703c3SEtienne Carriere return; 563890703c3SEtienne Carriere 564890703c3SEtienne Carriere if (otp_id > otp_max_id() || stm32_bsec_shadow_register(otp_id)) 565890703c3SEtienne Carriere panic(); 566890703c3SEtienne Carriere 567*8396f62eSGatien Chevallier bsec_dev.nsec_access[idx] |= BIT(otp_id % BSEC_BITS_PER_WORD); 568890703c3SEtienne Carriere } 569890703c3SEtienne Carriere 570890703c3SEtienne Carriere static void bsec_dt_otp_nsec_access(void *fdt, int bsec_node) 571890703c3SEtienne Carriere { 572890703c3SEtienne Carriere int bsec_subnode = 0; 573890703c3SEtienne Carriere 574890703c3SEtienne Carriere bsec_dev.nsec_access = calloc(nsec_access_array_size(), 575890703c3SEtienne Carriere sizeof(*bsec_dev.nsec_access)); 576890703c3SEtienne Carriere if (!bsec_dev.nsec_access) 577890703c3SEtienne Carriere panic(); 578890703c3SEtienne Carriere 579890703c3SEtienne Carriere fdt_for_each_subnode(bsec_subnode, fdt, bsec_node) { 580890703c3SEtienne Carriere const fdt32_t *cuint = NULL; 581890703c3SEtienne Carriere unsigned int otp_id = 0; 582890703c3SEtienne Carriere unsigned int i = 0; 583890703c3SEtienne Carriere size_t size = 0; 584890703c3SEtienne Carriere uint32_t offset = 0; 585890703c3SEtienne Carriere uint32_t length = 0; 586890703c3SEtienne Carriere 587890703c3SEtienne Carriere cuint = fdt_getprop(fdt, bsec_subnode, "reg", NULL); 588890703c3SEtienne Carriere assert(cuint); 589890703c3SEtienne Carriere 590890703c3SEtienne Carriere offset = fdt32_to_cpu(*cuint); 591890703c3SEtienne Carriere cuint++; 592890703c3SEtienne Carriere length = fdt32_to_cpu(*cuint); 593890703c3SEtienne Carriere 594890703c3SEtienne Carriere otp_id = offset / sizeof(uint32_t); 595890703c3SEtienne Carriere 596890703c3SEtienne Carriere if (otp_id < STM32MP1_UPPER_OTP_START) { 597890703c3SEtienne Carriere unsigned int otp_end = ROUNDUP(offset + length, 598890703c3SEtienne Carriere sizeof(uint32_t)) / 599890703c3SEtienne Carriere sizeof(uint32_t); 600890703c3SEtienne Carriere 601890703c3SEtienne Carriere if (otp_end > STM32MP1_UPPER_OTP_START) { 602890703c3SEtienne Carriere /* 603890703c3SEtienne Carriere * OTP crosses Lower/Upper boundary, consider 604890703c3SEtienne Carriere * only the upper part. 605890703c3SEtienne Carriere */ 606890703c3SEtienne Carriere otp_id = STM32MP1_UPPER_OTP_START; 607890703c3SEtienne Carriere length -= (STM32MP1_UPPER_OTP_START * 608890703c3SEtienne Carriere sizeof(uint32_t)) - offset; 609890703c3SEtienne Carriere offset = STM32MP1_UPPER_OTP_START * 610890703c3SEtienne Carriere sizeof(uint32_t); 611890703c3SEtienne Carriere 612890703c3SEtienne Carriere DMSG("OTP crosses Lower/Upper boundary"); 613890703c3SEtienne Carriere } else { 614890703c3SEtienne Carriere continue; 615890703c3SEtienne Carriere } 616890703c3SEtienne Carriere } 617890703c3SEtienne Carriere 618890703c3SEtienne Carriere if (!fdt_getprop(fdt, bsec_subnode, "st,non-secure-otp", NULL)) 619890703c3SEtienne Carriere continue; 620890703c3SEtienne Carriere 621890703c3SEtienne Carriere if ((offset % sizeof(uint32_t)) || (length % sizeof(uint32_t))) 622890703c3SEtienne Carriere panic("Unaligned non-secure OTP"); 623890703c3SEtienne Carriere 624890703c3SEtienne Carriere size = length / sizeof(uint32_t); 625890703c3SEtienne Carriere 626890703c3SEtienne Carriere if (otp_id + size > STM32MP1_OTP_MAX_ID) 627890703c3SEtienne Carriere panic("OTP range oversized"); 628890703c3SEtienne Carriere 629890703c3SEtienne Carriere for (i = otp_id; i < otp_id + size; i++) 630890703c3SEtienne Carriere enable_nsec_access(i); 631890703c3SEtienne Carriere } 632890703c3SEtienne Carriere } 633890703c3SEtienne Carriere 634890703c3SEtienne Carriere static void initialize_bsec_from_dt(void) 635890703c3SEtienne Carriere { 636890703c3SEtienne Carriere void *fdt = NULL; 637890703c3SEtienne Carriere int node = 0; 638890703c3SEtienne Carriere struct dt_node_info bsec_info = { }; 639890703c3SEtienne Carriere 640890703c3SEtienne Carriere fdt = get_embedded_dt(); 641890703c3SEtienne Carriere node = fdt_node_offset_by_compatible(fdt, 0, "st,stm32mp15-bsec"); 642890703c3SEtienne Carriere if (node < 0) 643890703c3SEtienne Carriere panic(); 644890703c3SEtienne Carriere 645890703c3SEtienne Carriere _fdt_fill_device_info(fdt, &bsec_info, node); 646890703c3SEtienne Carriere 647890703c3SEtienne Carriere if (bsec_info.reg != bsec_dev.base.pa || 648890703c3SEtienne Carriere !(bsec_info.status & DT_STATUS_OK_SEC)) 649890703c3SEtienne Carriere panic(); 650890703c3SEtienne Carriere 651890703c3SEtienne Carriere bsec_dt_otp_nsec_access(fdt, node); 652890703c3SEtienne Carriere } 653890703c3SEtienne Carriere #else 654890703c3SEtienne Carriere static void initialize_bsec_from_dt(void) 655890703c3SEtienne Carriere { 656890703c3SEtienne Carriere } 657cfada897SAlexandru Gagniuc #endif /*CFG_EMBED_DTB*/ 658890703c3SEtienne Carriere 659d64485e4SEtienne Carriere static TEE_Result initialize_bsec(void) 660d64485e4SEtienne Carriere { 6617994d842SEtienne Carriere struct stm32_bsec_static_cfg cfg = { }; 662d64485e4SEtienne Carriere 663d64485e4SEtienne Carriere stm32mp_get_bsec_static_cfg(&cfg); 664d64485e4SEtienne Carriere 665d64485e4SEtienne Carriere bsec_dev.base.pa = cfg.base; 666d64485e4SEtienne Carriere bsec_dev.upper_base = cfg.upper_start; 667d64485e4SEtienne Carriere bsec_dev.max_id = cfg.max_id; 668d64485e4SEtienne Carriere 669890703c3SEtienne Carriere if (IS_ENABLED(CFG_EMBED_DTB)) 670890703c3SEtienne Carriere initialize_bsec_from_dt(); 671890703c3SEtienne Carriere 672d64485e4SEtienne Carriere return TEE_SUCCESS; 673d64485e4SEtienne Carriere } 674d64485e4SEtienne Carriere 6758c8316dbSEtienne Carriere early_init(initialize_bsec); 676