1*d64485e4SEtienne Carriere // SPDX-License-Identifier: BSD-3-Clause 2*d64485e4SEtienne Carriere /* 3*d64485e4SEtienne Carriere * Copyright (c) 2017-2019, STMicroelectronics 4*d64485e4SEtienne Carriere */ 5*d64485e4SEtienne Carriere 6*d64485e4SEtienne Carriere #include <assert.h> 7*d64485e4SEtienne Carriere #include <drivers/stm32_bsec.h> 8*d64485e4SEtienne Carriere #include <io.h> 9*d64485e4SEtienne Carriere #include <kernel/delay.h> 10*d64485e4SEtienne Carriere #include <kernel/generic_boot.h> 11*d64485e4SEtienne Carriere #include <kernel/spinlock.h> 12*d64485e4SEtienne Carriere #include <limits.h> 13*d64485e4SEtienne Carriere #include <mm/core_memprot.h> 14*d64485e4SEtienne Carriere #include <platform_config.h> 15*d64485e4SEtienne Carriere #include <stm32_util.h> 16*d64485e4SEtienne Carriere #include <types_ext.h> 17*d64485e4SEtienne Carriere #include <util.h> 18*d64485e4SEtienne Carriere 19*d64485e4SEtienne Carriere #define BSEC_OTP_MASK GENMASK_32(4, 0) 20*d64485e4SEtienne Carriere #define BSEC_OTP_BANK_SHIFT 5 21*d64485e4SEtienne Carriere 22*d64485e4SEtienne Carriere /* Permanent lock bitmasks */ 23*d64485e4SEtienne Carriere #define ADDR_LOWER_OTP_PERLOCK_SHIFT 3 24*d64485e4SEtienne Carriere #define DATA_LOWER_OTP_PERLOCK_BIT 3 25*d64485e4SEtienne Carriere #define DATA_LOWER_OTP_PERLOCK_MASK GENMASK_32(2, 0) 26*d64485e4SEtienne Carriere #define ADDR_UPPER_OTP_PERLOCK_SHIFT 4 27*d64485e4SEtienne Carriere #define DATA_UPPER_OTP_PERLOCK_BIT 1 28*d64485e4SEtienne Carriere #define DATA_UPPER_OTP_PERLOCK_MASK GENMASK_32(3, 0) 29*d64485e4SEtienne Carriere 30*d64485e4SEtienne Carriere /* BSEC register offset */ 31*d64485e4SEtienne Carriere #define BSEC_OTP_CONF_OFF 0x000U 32*d64485e4SEtienne Carriere #define BSEC_OTP_CTRL_OFF 0x004U 33*d64485e4SEtienne Carriere #define BSEC_OTP_WRDATA_OFF 0x008U 34*d64485e4SEtienne Carriere #define BSEC_OTP_STATUS_OFF 0x00CU 35*d64485e4SEtienne Carriere #define BSEC_OTP_LOCK_OFF 0x010U 36*d64485e4SEtienne Carriere #define BSEC_DEN_OFF 0x014U 37*d64485e4SEtienne Carriere #define BSEC_FEN_OFF 0x018U 38*d64485e4SEtienne Carriere #define BSEC_DISTURBED_OFF 0x01CU 39*d64485e4SEtienne Carriere #define BSEC_DISTURBED1_OFF 0x020U 40*d64485e4SEtienne Carriere #define BSEC_DISTURBED2_OFF 0x024U 41*d64485e4SEtienne Carriere #define BSEC_ERROR_OFF 0x034U 42*d64485e4SEtienne Carriere #define BSEC_ERROR1_OFF 0x038U 43*d64485e4SEtienne Carriere #define BSEC_ERROR2_OFF 0x03CU 44*d64485e4SEtienne Carriere #define BSEC_WRLOCK_OFF 0x04CU 45*d64485e4SEtienne Carriere #define BSEC_WRLOCK1_OFF 0x050U 46*d64485e4SEtienne Carriere #define BSEC_WRLOCK2_OFF 0x054U 47*d64485e4SEtienne Carriere #define BSEC_SPLOCK_OFF 0x064U 48*d64485e4SEtienne Carriere #define BSEC_SPLOCK1_OFF 0x068U 49*d64485e4SEtienne Carriere #define BSEC_SPLOCK2_OFF 0x06CU 50*d64485e4SEtienne Carriere #define BSEC_SWLOCK_OFF 0x07CU 51*d64485e4SEtienne Carriere #define BSEC_SWLOCK1_OFF 0x080U 52*d64485e4SEtienne Carriere #define BSEC_SWLOCK2_OFF 0x084U 53*d64485e4SEtienne Carriere #define BSEC_SRLOCK_OFF 0x094U 54*d64485e4SEtienne Carriere #define BSEC_SRLOCK1_OFF 0x098U 55*d64485e4SEtienne Carriere #define BSEC_SRLOCK2_OFF 0x09CU 56*d64485e4SEtienne Carriere #define BSEC_JTAG_IN_OFF 0x0ACU 57*d64485e4SEtienne Carriere #define BSEC_JTAG_OUT_OFF 0x0B0U 58*d64485e4SEtienne Carriere #define BSEC_SCRATCH_OFF 0x0B4U 59*d64485e4SEtienne Carriere #define BSEC_OTP_DATA_OFF 0x200U 60*d64485e4SEtienne Carriere #define BSEC_IPHW_CFG_OFF 0xFF0U 61*d64485e4SEtienne Carriere #define BSEC_IPVR_OFF 0xFF4U 62*d64485e4SEtienne Carriere #define BSEC_IP_ID_OFF 0xFF8U 63*d64485e4SEtienne Carriere #define BSEC_IP_MAGIC_ID_OFF 0xFFCU 64*d64485e4SEtienne Carriere 65*d64485e4SEtienne Carriere /* BSEC_CONFIGURATION Register */ 66*d64485e4SEtienne Carriere #define BSEC_CONF_POWER_UP_MASK BIT(0) 67*d64485e4SEtienne Carriere #define BSEC_CONF_POWER_UP_SHIFT 0 68*d64485e4SEtienne Carriere #define BSEC_CONF_FRQ_MASK GENMASK_32(2, 1) 69*d64485e4SEtienne Carriere #define BSEC_CONF_FRQ_SHIFT 1 70*d64485e4SEtienne Carriere #define BSEC_CONF_PRG_WIDTH_MASK GENMASK_32(6, 3) 71*d64485e4SEtienne Carriere #define BSEC_CONF_PRG_WIDTH_SHIFT 3 72*d64485e4SEtienne Carriere #define BSEC_CONF_TREAD_MASK GENMASK_32(8, 7) 73*d64485e4SEtienne Carriere #define BSEC_CONF_TREAD_SHIFT 7 74*d64485e4SEtienne Carriere 75*d64485e4SEtienne Carriere /* BSEC_CONTROL Register */ 76*d64485e4SEtienne Carriere #define BSEC_READ 0x000U 77*d64485e4SEtienne Carriere #define BSEC_WRITE 0x100U 78*d64485e4SEtienne Carriere #define BSEC_LOCK 0x200U 79*d64485e4SEtienne Carriere 80*d64485e4SEtienne Carriere /* BSEC_STATUS Register */ 81*d64485e4SEtienne Carriere #define BSEC_MODE_STATUS_MASK GENMASK_32(2, 0) 82*d64485e4SEtienne Carriere #define BSEC_MODE_BUSY_MASK BIT(3) 83*d64485e4SEtienne Carriere #define BSEC_MODE_PROGFAIL_MASK BIT(4) 84*d64485e4SEtienne Carriere #define BSEC_MODE_PWR_MASK BIT(5) 85*d64485e4SEtienne Carriere #define BSEC_MODE_BIST1_LOCK_MASK BIT(6) 86*d64485e4SEtienne Carriere #define BSEC_MODE_BIST2_LOCK_MASK BIT(7) 87*d64485e4SEtienne Carriere 88*d64485e4SEtienne Carriere /* BSEC_DEBUG */ 89*d64485e4SEtienne Carriere #define BSEC_HDPEN BIT(4) 90*d64485e4SEtienne Carriere #define BSEC_SPIDEN BIT(5) 91*d64485e4SEtienne Carriere #define BSEC_SPINDEN BIT(6) 92*d64485e4SEtienne Carriere #define BSEC_DBGSWGEN BIT(10) 93*d64485e4SEtienne Carriere #define BSEC_DEN_ALL_MSK GENMASK_32(10, 0) 94*d64485e4SEtienne Carriere 95*d64485e4SEtienne Carriere /* 96*d64485e4SEtienne Carriere * OTP Lock services definition 97*d64485e4SEtienne Carriere * Value must corresponding to the bit position in the register 98*d64485e4SEtienne Carriere */ 99*d64485e4SEtienne Carriere #define BSEC_LOCK_UPPER_OTP 0x00 100*d64485e4SEtienne Carriere #define BSEC_LOCK_DEBUG 0x02 101*d64485e4SEtienne Carriere #define BSEC_LOCK_PROGRAM 0x03 102*d64485e4SEtienne Carriere 103*d64485e4SEtienne Carriere /* Timeout when polling on status */ 104*d64485e4SEtienne Carriere #define BSEC_TIMEOUT_US 1000 105*d64485e4SEtienne Carriere 106*d64485e4SEtienne Carriere struct bsec_dev { 107*d64485e4SEtienne Carriere struct io_pa_va base; 108*d64485e4SEtienne Carriere unsigned int upper_base; 109*d64485e4SEtienne Carriere unsigned int max_id; 110*d64485e4SEtienne Carriere bool closed_device; 111*d64485e4SEtienne Carriere }; 112*d64485e4SEtienne Carriere 113*d64485e4SEtienne Carriere /* Only 1 instance of BSEC is expected per platform */ 114*d64485e4SEtienne Carriere static struct bsec_dev bsec_dev; 115*d64485e4SEtienne Carriere 116*d64485e4SEtienne Carriere /* BSEC access protection */ 117*d64485e4SEtienne Carriere static unsigned int lock = SPINLOCK_UNLOCK; 118*d64485e4SEtienne Carriere 119*d64485e4SEtienne Carriere static uint32_t bsec_lock(void) 120*d64485e4SEtienne Carriere { 121*d64485e4SEtienne Carriere return may_spin_lock(&lock); 122*d64485e4SEtienne Carriere } 123*d64485e4SEtienne Carriere 124*d64485e4SEtienne Carriere static void bsec_unlock(uint32_t exceptions) 125*d64485e4SEtienne Carriere { 126*d64485e4SEtienne Carriere may_spin_unlock(&lock, exceptions); 127*d64485e4SEtienne Carriere } 128*d64485e4SEtienne Carriere 129*d64485e4SEtienne Carriere static uint32_t otp_max_id(void) 130*d64485e4SEtienne Carriere { 131*d64485e4SEtienne Carriere return bsec_dev.max_id; 132*d64485e4SEtienne Carriere } 133*d64485e4SEtienne Carriere 134*d64485e4SEtienne Carriere static uint32_t otp_bank_offset(uint32_t otp_id) 135*d64485e4SEtienne Carriere { 136*d64485e4SEtienne Carriere assert(otp_id <= otp_max_id()); 137*d64485e4SEtienne Carriere 138*d64485e4SEtienne Carriere return ((otp_id & ~BSEC_OTP_MASK) >> BSEC_OTP_BANK_SHIFT) * 139*d64485e4SEtienne Carriere sizeof(uint32_t); 140*d64485e4SEtienne Carriere } 141*d64485e4SEtienne Carriere 142*d64485e4SEtienne Carriere static vaddr_t bsec_base(void) 143*d64485e4SEtienne Carriere { 144*d64485e4SEtienne Carriere return io_pa_or_va(&bsec_dev.base); 145*d64485e4SEtienne Carriere } 146*d64485e4SEtienne Carriere 147*d64485e4SEtienne Carriere static uint32_t bsec_status(void) 148*d64485e4SEtienne Carriere { 149*d64485e4SEtienne Carriere return io_read32(bsec_base() + BSEC_OTP_STATUS_OFF); 150*d64485e4SEtienne Carriere } 151*d64485e4SEtienne Carriere 152*d64485e4SEtienne Carriere static TEE_Result check_no_error(uint32_t otp_id) 153*d64485e4SEtienne Carriere { 154*d64485e4SEtienne Carriere uint32_t bit = BIT(otp_id & BSEC_OTP_MASK); 155*d64485e4SEtienne Carriere uint32_t bank = otp_bank_offset(otp_id); 156*d64485e4SEtienne Carriere 157*d64485e4SEtienne Carriere if (io_read32(bsec_base() + BSEC_DISTURBED_OFF + bank) & bit) 158*d64485e4SEtienne Carriere return TEE_ERROR_GENERIC; 159*d64485e4SEtienne Carriere 160*d64485e4SEtienne Carriere if (io_read32(bsec_base() + BSEC_ERROR_OFF + bank) & bit) 161*d64485e4SEtienne Carriere return TEE_ERROR_GENERIC; 162*d64485e4SEtienne Carriere 163*d64485e4SEtienne Carriere return TEE_SUCCESS; 164*d64485e4SEtienne Carriere } 165*d64485e4SEtienne Carriere 166*d64485e4SEtienne Carriere static TEE_Result power_up_safmem(void) 167*d64485e4SEtienne Carriere { 168*d64485e4SEtienne Carriere uint64_t timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 169*d64485e4SEtienne Carriere 170*d64485e4SEtienne Carriere io_mask32(bsec_base() + BSEC_OTP_CONF_OFF, BSEC_CONF_POWER_UP_MASK, 171*d64485e4SEtienne Carriere BSEC_CONF_POWER_UP_MASK); 172*d64485e4SEtienne Carriere 173*d64485e4SEtienne Carriere /* 174*d64485e4SEtienne Carriere * If a timeout is detected, test the condition again to consider 175*d64485e4SEtienne Carriere * cases where timeout is due to the executing TEE thread rescheduling. 176*d64485e4SEtienne Carriere */ 177*d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 178*d64485e4SEtienne Carriere if (bsec_status() & BSEC_MODE_PWR_MASK) 179*d64485e4SEtienne Carriere break; 180*d64485e4SEtienne Carriere 181*d64485e4SEtienne Carriere if (bsec_status() & BSEC_MODE_PWR_MASK) 182*d64485e4SEtienne Carriere return TEE_SUCCESS; 183*d64485e4SEtienne Carriere 184*d64485e4SEtienne Carriere return TEE_ERROR_GENERIC; 185*d64485e4SEtienne Carriere } 186*d64485e4SEtienne Carriere 187*d64485e4SEtienne Carriere static TEE_Result power_down_safmem(void) 188*d64485e4SEtienne Carriere { 189*d64485e4SEtienne Carriere uint64_t timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 190*d64485e4SEtienne Carriere 191*d64485e4SEtienne Carriere io_mask32(bsec_base() + BSEC_OTP_CONF_OFF, 0, BSEC_CONF_POWER_UP_MASK); 192*d64485e4SEtienne Carriere 193*d64485e4SEtienne Carriere /* 194*d64485e4SEtienne Carriere * If a timeout is detected, test the condition again to consider 195*d64485e4SEtienne Carriere * cases where timeout is due to the executing TEE thread rescheduling. 196*d64485e4SEtienne Carriere */ 197*d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 198*d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_PWR_MASK)) 199*d64485e4SEtienne Carriere break; 200*d64485e4SEtienne Carriere 201*d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_PWR_MASK)) 202*d64485e4SEtienne Carriere return TEE_SUCCESS; 203*d64485e4SEtienne Carriere 204*d64485e4SEtienne Carriere return TEE_ERROR_GENERIC; 205*d64485e4SEtienne Carriere } 206*d64485e4SEtienne Carriere 207*d64485e4SEtienne Carriere TEE_Result stm32_bsec_shadow_register(uint32_t otp_id) 208*d64485e4SEtienne Carriere { 209*d64485e4SEtienne Carriere TEE_Result result = 0; 210*d64485e4SEtienne Carriere uint32_t exceptions = 0; 211*d64485e4SEtienne Carriere uint64_t timeout_ref = 0; 212*d64485e4SEtienne Carriere 213*d64485e4SEtienne Carriere if (otp_id > otp_max_id()) 214*d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 215*d64485e4SEtienne Carriere 216*d64485e4SEtienne Carriere /* Check if shadowing of OTP is locked */ 217*d64485e4SEtienne Carriere if (stm32_bsec_read_sr_lock(otp_id)) 218*d64485e4SEtienne Carriere IMSG("OTP locked, register will not be refreshed"); 219*d64485e4SEtienne Carriere 220*d64485e4SEtienne Carriere exceptions = bsec_lock(); 221*d64485e4SEtienne Carriere 222*d64485e4SEtienne Carriere result = power_up_safmem(); 223*d64485e4SEtienne Carriere if (result) 224*d64485e4SEtienne Carriere return result; 225*d64485e4SEtienne Carriere 226*d64485e4SEtienne Carriere io_write32(bsec_base() + BSEC_OTP_CTRL_OFF, otp_id | BSEC_READ); 227*d64485e4SEtienne Carriere 228*d64485e4SEtienne Carriere timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 229*d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 230*d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_BUSY_MASK)) 231*d64485e4SEtienne Carriere break; 232*d64485e4SEtienne Carriere 233*d64485e4SEtienne Carriere if (bsec_status() & BSEC_MODE_BUSY_MASK) 234*d64485e4SEtienne Carriere result = TEE_ERROR_GENERIC; 235*d64485e4SEtienne Carriere else 236*d64485e4SEtienne Carriere result = check_no_error(otp_id); 237*d64485e4SEtienne Carriere 238*d64485e4SEtienne Carriere power_down_safmem(); 239*d64485e4SEtienne Carriere 240*d64485e4SEtienne Carriere bsec_unlock(exceptions); 241*d64485e4SEtienne Carriere 242*d64485e4SEtienne Carriere return result; 243*d64485e4SEtienne Carriere } 244*d64485e4SEtienne Carriere 245*d64485e4SEtienne Carriere TEE_Result stm32_bsec_read_otp(uint32_t *value, uint32_t otp_id) 246*d64485e4SEtienne Carriere { 247*d64485e4SEtienne Carriere TEE_Result result = 0; 248*d64485e4SEtienne Carriere uint32_t exceptions = 0; 249*d64485e4SEtienne Carriere 250*d64485e4SEtienne Carriere if (otp_id > otp_max_id()) 251*d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 252*d64485e4SEtienne Carriere 253*d64485e4SEtienne Carriere exceptions = bsec_lock(); 254*d64485e4SEtienne Carriere 255*d64485e4SEtienne Carriere *value = io_read32(bsec_base() + BSEC_OTP_DATA_OFF + 256*d64485e4SEtienne Carriere (otp_id * sizeof(uint32_t))); 257*d64485e4SEtienne Carriere 258*d64485e4SEtienne Carriere result = check_no_error(otp_id); 259*d64485e4SEtienne Carriere 260*d64485e4SEtienne Carriere bsec_unlock(exceptions); 261*d64485e4SEtienne Carriere 262*d64485e4SEtienne Carriere return result; 263*d64485e4SEtienne Carriere } 264*d64485e4SEtienne Carriere 265*d64485e4SEtienne Carriere TEE_Result stm32_bsec_shadow_read_otp(uint32_t *otp_value, uint32_t otp_id) 266*d64485e4SEtienne Carriere { 267*d64485e4SEtienne Carriere TEE_Result result = 0; 268*d64485e4SEtienne Carriere 269*d64485e4SEtienne Carriere result = stm32_bsec_shadow_register(otp_id); 270*d64485e4SEtienne Carriere if (result) { 271*d64485e4SEtienne Carriere EMSG("BSEC %" PRIu32 " Shadowing Error %x", otp_id, result); 272*d64485e4SEtienne Carriere return result; 273*d64485e4SEtienne Carriere } 274*d64485e4SEtienne Carriere 275*d64485e4SEtienne Carriere result = stm32_bsec_read_otp(otp_value, otp_id); 276*d64485e4SEtienne Carriere if (result) 277*d64485e4SEtienne Carriere EMSG("BSEC %" PRIu32 " Read Error %x", otp_id, result); 278*d64485e4SEtienne Carriere 279*d64485e4SEtienne Carriere return result; 280*d64485e4SEtienne Carriere } 281*d64485e4SEtienne Carriere 282*d64485e4SEtienne Carriere TEE_Result stm32_bsec_write_otp(uint32_t value, uint32_t otp_id) 283*d64485e4SEtienne Carriere { 284*d64485e4SEtienne Carriere TEE_Result result = 0; 285*d64485e4SEtienne Carriere uint32_t exceptions = 0; 286*d64485e4SEtienne Carriere vaddr_t otp_data_base = bsec_base() + BSEC_OTP_DATA_OFF; 287*d64485e4SEtienne Carriere 288*d64485e4SEtienne Carriere if (otp_id > otp_max_id()) 289*d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 290*d64485e4SEtienne Carriere 291*d64485e4SEtienne Carriere /* Check if programming of OTP is locked */ 292*d64485e4SEtienne Carriere if (stm32_bsec_read_sw_lock(otp_id)) 293*d64485e4SEtienne Carriere IMSG("OTP locked, write will be ignored"); 294*d64485e4SEtienne Carriere 295*d64485e4SEtienne Carriere exceptions = bsec_lock(); 296*d64485e4SEtienne Carriere 297*d64485e4SEtienne Carriere io_write32(otp_data_base + (otp_id * sizeof(uint32_t)), value); 298*d64485e4SEtienne Carriere 299*d64485e4SEtienne Carriere result = check_no_error(otp_id); 300*d64485e4SEtienne Carriere 301*d64485e4SEtienne Carriere bsec_unlock(exceptions); 302*d64485e4SEtienne Carriere 303*d64485e4SEtienne Carriere return result; 304*d64485e4SEtienne Carriere } 305*d64485e4SEtienne Carriere 306*d64485e4SEtienne Carriere TEE_Result stm32_bsec_program_otp(uint32_t value, uint32_t otp_id) 307*d64485e4SEtienne Carriere { 308*d64485e4SEtienne Carriere TEE_Result result = 0; 309*d64485e4SEtienne Carriere uint32_t exceptions = 0; 310*d64485e4SEtienne Carriere uint64_t timeout_ref; 311*d64485e4SEtienne Carriere 312*d64485e4SEtienne Carriere if (otp_id > otp_max_id()) 313*d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 314*d64485e4SEtienne Carriere 315*d64485e4SEtienne Carriere /* Check if programming of OTP is locked */ 316*d64485e4SEtienne Carriere if (stm32_bsec_read_sp_lock(otp_id)) 317*d64485e4SEtienne Carriere IMSG("OTP locked, prog will be ignored"); 318*d64485e4SEtienne Carriere 319*d64485e4SEtienne Carriere if (io_read32(bsec_base() + BSEC_OTP_LOCK_OFF) & BIT(BSEC_LOCK_PROGRAM)) 320*d64485e4SEtienne Carriere IMSG("GPLOCK activated, prog will be ignored"); 321*d64485e4SEtienne Carriere 322*d64485e4SEtienne Carriere exceptions = bsec_lock(); 323*d64485e4SEtienne Carriere 324*d64485e4SEtienne Carriere result = power_up_safmem(); 325*d64485e4SEtienne Carriere if (result) 326*d64485e4SEtienne Carriere return result; 327*d64485e4SEtienne Carriere 328*d64485e4SEtienne Carriere io_write32(bsec_base() + BSEC_OTP_WRDATA_OFF, value); 329*d64485e4SEtienne Carriere io_write32(bsec_base() + BSEC_OTP_CTRL_OFF, otp_id | BSEC_WRITE); 330*d64485e4SEtienne Carriere 331*d64485e4SEtienne Carriere timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 332*d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 333*d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_BUSY_MASK)) 334*d64485e4SEtienne Carriere break; 335*d64485e4SEtienne Carriere 336*d64485e4SEtienne Carriere if (bsec_status() & (BSEC_MODE_BUSY_MASK | BSEC_MODE_PROGFAIL_MASK)) 337*d64485e4SEtienne Carriere result = TEE_ERROR_GENERIC; 338*d64485e4SEtienne Carriere else 339*d64485e4SEtienne Carriere result = check_no_error(otp_id); 340*d64485e4SEtienne Carriere 341*d64485e4SEtienne Carriere power_down_safmem(); 342*d64485e4SEtienne Carriere 343*d64485e4SEtienne Carriere bsec_unlock(exceptions); 344*d64485e4SEtienne Carriere 345*d64485e4SEtienne Carriere return result; 346*d64485e4SEtienne Carriere } 347*d64485e4SEtienne Carriere 348*d64485e4SEtienne Carriere TEE_Result stm32_bsec_permanent_lock_otp(uint32_t otp_id) 349*d64485e4SEtienne Carriere { 350*d64485e4SEtienne Carriere TEE_Result result = 0; 351*d64485e4SEtienne Carriere uint32_t data = 0; 352*d64485e4SEtienne Carriere uint32_t addr = 0; 353*d64485e4SEtienne Carriere uint32_t exceptions = 0; 354*d64485e4SEtienne Carriere vaddr_t base = bsec_base(); 355*d64485e4SEtienne Carriere uint64_t timeout_ref; 356*d64485e4SEtienne Carriere 357*d64485e4SEtienne Carriere if (otp_id > otp_max_id()) 358*d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 359*d64485e4SEtienne Carriere 360*d64485e4SEtienne Carriere if (otp_id < bsec_dev.upper_base) { 361*d64485e4SEtienne Carriere addr = otp_id >> ADDR_LOWER_OTP_PERLOCK_SHIFT; 362*d64485e4SEtienne Carriere data = DATA_LOWER_OTP_PERLOCK_BIT << 363*d64485e4SEtienne Carriere ((otp_id & DATA_LOWER_OTP_PERLOCK_MASK) << 1U); 364*d64485e4SEtienne Carriere } else { 365*d64485e4SEtienne Carriere addr = (otp_id >> ADDR_UPPER_OTP_PERLOCK_SHIFT) + 2U; 366*d64485e4SEtienne Carriere data = DATA_UPPER_OTP_PERLOCK_BIT << 367*d64485e4SEtienne Carriere (otp_id & DATA_UPPER_OTP_PERLOCK_MASK); 368*d64485e4SEtienne Carriere } 369*d64485e4SEtienne Carriere 370*d64485e4SEtienne Carriere exceptions = bsec_lock(); 371*d64485e4SEtienne Carriere 372*d64485e4SEtienne Carriere result = power_up_safmem(); 373*d64485e4SEtienne Carriere if (result) 374*d64485e4SEtienne Carriere return result; 375*d64485e4SEtienne Carriere 376*d64485e4SEtienne Carriere io_write32(base + BSEC_OTP_WRDATA_OFF, data); 377*d64485e4SEtienne Carriere io_write32(base + BSEC_OTP_CTRL_OFF, addr | BSEC_WRITE | BSEC_LOCK); 378*d64485e4SEtienne Carriere 379*d64485e4SEtienne Carriere timeout_ref = timeout_init_us(BSEC_TIMEOUT_US); 380*d64485e4SEtienne Carriere while (!timeout_elapsed(timeout_ref)) 381*d64485e4SEtienne Carriere if (!(bsec_status() & BSEC_MODE_BUSY_MASK)) 382*d64485e4SEtienne Carriere break; 383*d64485e4SEtienne Carriere 384*d64485e4SEtienne Carriere if (bsec_status() & (BSEC_MODE_BUSY_MASK | BSEC_MODE_PROGFAIL_MASK)) 385*d64485e4SEtienne Carriere result = TEE_ERROR_BAD_PARAMETERS; 386*d64485e4SEtienne Carriere else 387*d64485e4SEtienne Carriere result = check_no_error(otp_id); 388*d64485e4SEtienne Carriere 389*d64485e4SEtienne Carriere power_down_safmem(); 390*d64485e4SEtienne Carriere 391*d64485e4SEtienne Carriere bsec_unlock(exceptions); 392*d64485e4SEtienne Carriere 393*d64485e4SEtienne Carriere return result; 394*d64485e4SEtienne Carriere } 395*d64485e4SEtienne Carriere 396*d64485e4SEtienne Carriere TEE_Result stm32_bsec_write_debug_conf(uint32_t value) 397*d64485e4SEtienne Carriere { 398*d64485e4SEtienne Carriere TEE_Result result = TEE_ERROR_GENERIC; 399*d64485e4SEtienne Carriere uint32_t masked_val = value & BSEC_DEN_ALL_MSK; 400*d64485e4SEtienne Carriere uint32_t exceptions = 0; 401*d64485e4SEtienne Carriere 402*d64485e4SEtienne Carriere exceptions = bsec_lock(); 403*d64485e4SEtienne Carriere 404*d64485e4SEtienne Carriere io_write32(bsec_base() + BSEC_DEN_OFF, value); 405*d64485e4SEtienne Carriere 406*d64485e4SEtienne Carriere if ((io_read32(bsec_base() + BSEC_DEN_OFF) ^ masked_val) == 0U) 407*d64485e4SEtienne Carriere result = TEE_SUCCESS; 408*d64485e4SEtienne Carriere 409*d64485e4SEtienne Carriere bsec_unlock(exceptions); 410*d64485e4SEtienne Carriere 411*d64485e4SEtienne Carriere return result; 412*d64485e4SEtienne Carriere } 413*d64485e4SEtienne Carriere 414*d64485e4SEtienne Carriere uint32_t stm32_bsec_read_debug_conf(void) 415*d64485e4SEtienne Carriere { 416*d64485e4SEtienne Carriere return io_read32(bsec_base() + BSEC_DEN_OFF); 417*d64485e4SEtienne Carriere } 418*d64485e4SEtienne Carriere 419*d64485e4SEtienne Carriere static bool write_bsec_lock(uint32_t otp_id, uint32_t value, size_t lock_offset) 420*d64485e4SEtienne Carriere { 421*d64485e4SEtienne Carriere uint32_t bank = otp_bank_offset(otp_id); 422*d64485e4SEtienne Carriere uint32_t otp_mask = BIT(otp_id & BSEC_OTP_MASK); 423*d64485e4SEtienne Carriere vaddr_t lock_addr = bsec_base() + bank + lock_offset; 424*d64485e4SEtienne Carriere uint32_t bank_value = 0; 425*d64485e4SEtienne Carriere uint32_t exceptions = 0; 426*d64485e4SEtienne Carriere 427*d64485e4SEtienne Carriere if (!value) 428*d64485e4SEtienne Carriere return false; 429*d64485e4SEtienne Carriere 430*d64485e4SEtienne Carriere exceptions = bsec_lock(); 431*d64485e4SEtienne Carriere 432*d64485e4SEtienne Carriere bank_value = io_read32(lock_addr); 433*d64485e4SEtienne Carriere 434*d64485e4SEtienne Carriere if ((bank_value & otp_mask) != value) { 435*d64485e4SEtienne Carriere /* 436*d64485e4SEtienne Carriere * We can write 0 in all other OTP 437*d64485e4SEtienne Carriere * if the lock is activated in one of other OTP. 438*d64485e4SEtienne Carriere * Write 0 has no effect. 439*d64485e4SEtienne Carriere */ 440*d64485e4SEtienne Carriere io_write32(lock_addr, bank_value | otp_mask); 441*d64485e4SEtienne Carriere } 442*d64485e4SEtienne Carriere 443*d64485e4SEtienne Carriere bsec_unlock(exceptions); 444*d64485e4SEtienne Carriere 445*d64485e4SEtienne Carriere return true; 446*d64485e4SEtienne Carriere } 447*d64485e4SEtienne Carriere 448*d64485e4SEtienne Carriere bool stm32_bsec_write_sr_lock(uint32_t otp_id, uint32_t value) 449*d64485e4SEtienne Carriere { 450*d64485e4SEtienne Carriere return write_bsec_lock(otp_id, value, BSEC_SRLOCK_OFF); 451*d64485e4SEtienne Carriere } 452*d64485e4SEtienne Carriere 453*d64485e4SEtienne Carriere bool stm32_bsec_write_sw_lock(uint32_t otp_id, uint32_t value) 454*d64485e4SEtienne Carriere { 455*d64485e4SEtienne Carriere return write_bsec_lock(otp_id, value, BSEC_SWLOCK_OFF); 456*d64485e4SEtienne Carriere } 457*d64485e4SEtienne Carriere 458*d64485e4SEtienne Carriere bool stm32_bsec_write_sp_lock(uint32_t otp_id, uint32_t value) 459*d64485e4SEtienne Carriere { 460*d64485e4SEtienne Carriere return write_bsec_lock(otp_id, value, BSEC_SPLOCK_OFF); 461*d64485e4SEtienne Carriere } 462*d64485e4SEtienne Carriere 463*d64485e4SEtienne Carriere static bool read_bsec_lock(uint32_t otp_id, size_t lock_offset) 464*d64485e4SEtienne Carriere { 465*d64485e4SEtienne Carriere uint32_t bank = otp_bank_offset(otp_id); 466*d64485e4SEtienne Carriere uint32_t otp_mask = BIT(otp_id & BSEC_OTP_MASK); 467*d64485e4SEtienne Carriere vaddr_t lock_addr = bsec_base() + bank + lock_offset; 468*d64485e4SEtienne Carriere 469*d64485e4SEtienne Carriere return io_read32(lock_addr) & otp_mask; 470*d64485e4SEtienne Carriere } 471*d64485e4SEtienne Carriere 472*d64485e4SEtienne Carriere bool stm32_bsec_read_sr_lock(uint32_t otp_id) 473*d64485e4SEtienne Carriere { 474*d64485e4SEtienne Carriere return read_bsec_lock(otp_id, BSEC_SRLOCK_OFF); 475*d64485e4SEtienne Carriere } 476*d64485e4SEtienne Carriere 477*d64485e4SEtienne Carriere bool stm32_bsec_read_sw_lock(uint32_t otp_id) 478*d64485e4SEtienne Carriere { 479*d64485e4SEtienne Carriere return read_bsec_lock(otp_id, BSEC_SWLOCK_OFF); 480*d64485e4SEtienne Carriere } 481*d64485e4SEtienne Carriere 482*d64485e4SEtienne Carriere bool stm32_bsec_read_sp_lock(uint32_t otp_id) 483*d64485e4SEtienne Carriere { 484*d64485e4SEtienne Carriere return read_bsec_lock(otp_id, BSEC_SPLOCK_OFF); 485*d64485e4SEtienne Carriere } 486*d64485e4SEtienne Carriere 487*d64485e4SEtienne Carriere bool stm32_bsec_wr_lock(uint32_t otp_id) 488*d64485e4SEtienne Carriere { 489*d64485e4SEtienne Carriere uint32_t bank = otp_bank_offset(otp_id); 490*d64485e4SEtienne Carriere uint32_t lock_bit = BIT(otp_id & BSEC_OTP_MASK); 491*d64485e4SEtienne Carriere 492*d64485e4SEtienne Carriere if (io_read32(bsec_base() + BSEC_WRLOCK_OFF + bank) & lock_bit) { 493*d64485e4SEtienne Carriere /* 494*d64485e4SEtienne Carriere * In case of write don't need to write, 495*d64485e4SEtienne Carriere * the lock is already set. 496*d64485e4SEtienne Carriere */ 497*d64485e4SEtienne Carriere return true; 498*d64485e4SEtienne Carriere } 499*d64485e4SEtienne Carriere 500*d64485e4SEtienne Carriere return false; 501*d64485e4SEtienne Carriere } 502*d64485e4SEtienne Carriere 503*d64485e4SEtienne Carriere uint32_t stm32_bsec_otp_lock(uint32_t service, uint32_t value) 504*d64485e4SEtienne Carriere { 505*d64485e4SEtienne Carriere vaddr_t addr = bsec_base() + BSEC_OTP_LOCK_OFF; 506*d64485e4SEtienne Carriere 507*d64485e4SEtienne Carriere switch (service) { 508*d64485e4SEtienne Carriere case BSEC_LOCK_UPPER_OTP: 509*d64485e4SEtienne Carriere io_write32(addr, value << BSEC_LOCK_UPPER_OTP); 510*d64485e4SEtienne Carriere break; 511*d64485e4SEtienne Carriere case BSEC_LOCK_DEBUG: 512*d64485e4SEtienne Carriere io_write32(addr, value << BSEC_LOCK_DEBUG); 513*d64485e4SEtienne Carriere break; 514*d64485e4SEtienne Carriere case BSEC_LOCK_PROGRAM: 515*d64485e4SEtienne Carriere io_write32(addr, value << BSEC_LOCK_PROGRAM); 516*d64485e4SEtienne Carriere break; 517*d64485e4SEtienne Carriere default: 518*d64485e4SEtienne Carriere return TEE_ERROR_BAD_PARAMETERS; 519*d64485e4SEtienne Carriere } 520*d64485e4SEtienne Carriere 521*d64485e4SEtienne Carriere return TEE_SUCCESS; 522*d64485e4SEtienne Carriere } 523*d64485e4SEtienne Carriere 524*d64485e4SEtienne Carriere bool stm32_bsec_nsec_can_access_otp(uint32_t otp_id) 525*d64485e4SEtienne Carriere { 526*d64485e4SEtienne Carriere if (otp_id > otp_max_id()) 527*d64485e4SEtienne Carriere return false; 528*d64485e4SEtienne Carriere 529*d64485e4SEtienne Carriere return otp_id < bsec_dev.upper_base || !bsec_dev.closed_device; 530*d64485e4SEtienne Carriere } 531*d64485e4SEtienne Carriere 532*d64485e4SEtienne Carriere static TEE_Result initialize_bsec(void) 533*d64485e4SEtienne Carriere { 534*d64485e4SEtienne Carriere struct stm32_bsec_static_cfg cfg = { 0 }; 535*d64485e4SEtienne Carriere uint32_t otp = 0; 536*d64485e4SEtienne Carriere TEE_Result result = 0; 537*d64485e4SEtienne Carriere 538*d64485e4SEtienne Carriere stm32mp_get_bsec_static_cfg(&cfg); 539*d64485e4SEtienne Carriere 540*d64485e4SEtienne Carriere bsec_dev.base.pa = cfg.base; 541*d64485e4SEtienne Carriere bsec_dev.upper_base = cfg.upper_start; 542*d64485e4SEtienne Carriere bsec_dev.max_id = cfg.max_id; 543*d64485e4SEtienne Carriere bsec_dev.closed_device = true; 544*d64485e4SEtienne Carriere 545*d64485e4SEtienne Carriere /* Disable closed device mode upon platform closed device OTP value */ 546*d64485e4SEtienne Carriere result = stm32_bsec_shadow_read_otp(&otp, cfg.closed_device_id); 547*d64485e4SEtienne Carriere if (!result && !(otp & BIT(cfg.closed_device_position))) 548*d64485e4SEtienne Carriere bsec_dev.closed_device = false; 549*d64485e4SEtienne Carriere 550*d64485e4SEtienne Carriere return TEE_SUCCESS; 551*d64485e4SEtienne Carriere } 552*d64485e4SEtienne Carriere 553*d64485e4SEtienne Carriere driver_init(initialize_bsec); 554