1f3c22059SEtienne Carriere // SPDX-License-Identifier: BSD-3-Clause 2f3c22059SEtienne Carriere /* 3ea8ba295SGatien Chevallier * Copyright (c) 2018-2023, STMicroelectronics 4f3c22059SEtienne Carriere */ 5f3c22059SEtienne Carriere 6f3c22059SEtienne Carriere #include <assert.h> 7d7a1a7d2SEtienne Carriere #include <drivers/clk.h> 8d7a1a7d2SEtienne Carriere #include <drivers/clk_dt.h> 9ea8ba295SGatien Chevallier #include <drivers/rstctrl.h> 10f3c22059SEtienne Carriere #include <io.h> 11f3c22059SEtienne Carriere #include <kernel/delay.h> 12a2fc83d1SJerome Forissier #include <kernel/dt.h> 13ea8ba295SGatien Chevallier #include <kernel/dt_driver.h> 1465401337SJens Wiklander #include <kernel/boot.h> 15f3c22059SEtienne Carriere #include <kernel/panic.h> 1629893549SGatien Chevallier #include <kernel/pm.h> 1765b5ada4SMarouene Boubakri #include <kernel/thread.h> 18a2fc83d1SJerome Forissier #include <libfdt.h> 19f3c22059SEtienne Carriere #include <mm/core_memprot.h> 20097f329aSEtienne Carriere #include <rng_support.h> 21f3c22059SEtienne Carriere #include <stdbool.h> 22f3c22059SEtienne Carriere #include <stm32_util.h> 23f3c22059SEtienne Carriere #include <string.h> 24cd451498SEtienne Carriere #include <tee/tee_cryp_utl.h> 25f3c22059SEtienne Carriere 260817aa6fSGatien Chevallier #define RNG_CR U(0x00) 270817aa6fSGatien Chevallier #define RNG_SR U(0x04) 280817aa6fSGatien Chevallier #define RNG_DR U(0x08) 29f3c22059SEtienne Carriere 30f3c22059SEtienne Carriere #define RNG_CR_RNGEN BIT(2) 31f3c22059SEtienne Carriere #define RNG_CR_IE BIT(3) 32f3c22059SEtienne Carriere #define RNG_CR_CED BIT(5) 33091ef005SGatien Chevallier #define RNG_CR_CLKDIV GENMASK_32(19, 16) 34091ef005SGatien Chevallier #define RNG_CR_CLKDIV_SHIFT U(16) 35091ef005SGatien Chevallier #define RNG_CR_CONDRST BIT(30) 36f3c22059SEtienne Carriere 37f3c22059SEtienne Carriere #define RNG_SR_DRDY BIT(0) 38f3c22059SEtienne Carriere #define RNG_SR_CECS BIT(1) 39f3c22059SEtienne Carriere #define RNG_SR_SECS BIT(2) 40f3c22059SEtienne Carriere #define RNG_SR_CEIS BIT(5) 41f3c22059SEtienne Carriere #define RNG_SR_SEIS BIT(6) 42f3c22059SEtienne Carriere 430817aa6fSGatien Chevallier #if TRACE_LEVEL > TRACE_DEBUG 440817aa6fSGatien Chevallier #define RNG_READY_TIMEOUT_US U(100000) 450817aa6fSGatien Chevallier #else 460817aa6fSGatien Chevallier #define RNG_READY_TIMEOUT_US U(10000) 470817aa6fSGatien Chevallier #endif 48ea8ba295SGatien Chevallier #define RNG_RESET_TIMEOUT_US U(1000) 49f3c22059SEtienne Carriere 500817aa6fSGatien Chevallier #define RNG_FIFO_BYTE_DEPTH U(16) 510817aa6fSGatien Chevallier 52091ef005SGatien Chevallier #define RNG_NIST_CONFIG_A U(0x0F00D00) 53091ef005SGatien Chevallier #define RNG_NIST_CONFIG_B U(0x1801000) 54091ef005SGatien Chevallier #define RNG_NIST_CONFIG_MASK GENMASK_32(25, 8) 55091ef005SGatien Chevallier 56091ef005SGatien Chevallier #define RNG_MAX_NOISE_CLK_FREQ U(3000000) 57091ef005SGatien Chevallier 58091ef005SGatien Chevallier struct stm32_rng_driver_data { 59091ef005SGatien Chevallier bool has_cond_reset; 60091ef005SGatien Chevallier }; 61091ef005SGatien Chevallier 62f3c22059SEtienne Carriere struct stm32_rng_instance { 63f3c22059SEtienne Carriere struct io_pa_va base; 64d7a1a7d2SEtienne Carriere struct clk *clock; 65ea8ba295SGatien Chevallier struct rstctrl *rstctrl; 66091ef005SGatien Chevallier const struct stm32_rng_driver_data *ddata; 67f3c22059SEtienne Carriere unsigned int lock; 68d8682c4cSEtienne Carriere bool release_post_boot; 693c752300SGatien Chevallier bool clock_error; 70091ef005SGatien Chevallier bool error_conceal; 71091ef005SGatien Chevallier uint64_t error_to_ref; 72f3c22059SEtienne Carriere }; 73f3c22059SEtienne Carriere 74ea8ba295SGatien Chevallier /* Expect at most a single RNG instance */ 75f3c22059SEtienne Carriere static struct stm32_rng_instance *stm32_rng; 76f3c22059SEtienne Carriere 77f63f11bdSGatien Chevallier static vaddr_t get_base(void) 78f63f11bdSGatien Chevallier { 79f63f11bdSGatien Chevallier assert(stm32_rng); 80f63f11bdSGatien Chevallier 81f63f11bdSGatien Chevallier return io_pa_or_va(&stm32_rng->base, 1); 82f63f11bdSGatien Chevallier } 83f63f11bdSGatien Chevallier 84f3c22059SEtienne Carriere /* 85091ef005SGatien Chevallier * Extracts from the STM32 RNG specification when RNG supports CONDRST. 86f3c22059SEtienne Carriere * 87f3c22059SEtienne Carriere * When a noise source (or seed) error occurs, the RNG stops generating 88f3c22059SEtienne Carriere * random numbers and sets to “1” both SEIS and SECS bits to indicate 89f3c22059SEtienne Carriere * that a seed error occurred. (...) 90091ef005SGatien Chevallier * 91091ef005SGatien Chevallier * 1. Software reset by writing CONDRST at 1 and at 0 (see bitfield 92091ef005SGatien Chevallier * description for details). This step is needed only if SECS is set. 93091ef005SGatien Chevallier * Indeed, when SEIS is set and SECS is cleared it means RNG performed 94091ef005SGatien Chevallier * the reset automatically (auto-reset). 95091ef005SGatien Chevallier * 2. If SECS was set in step 1 (no auto-reset) wait for CONDRST 96091ef005SGatien Chevallier * to be cleared in the RNG_CR register, then confirm that SEIS is 97091ef005SGatien Chevallier * cleared in the RNG_SR register. Otherwise just clear SEIS bit in 98091ef005SGatien Chevallier * the RNG_SR register. 99091ef005SGatien Chevallier * 3. If SECS was set in step 1 (no auto-reset) wait for SECS to be 100091ef005SGatien Chevallier * cleared by RNG. The random number generation is now back to normal. 101091ef005SGatien Chevallier */ 102091ef005SGatien Chevallier static void conceal_seed_error_cond_reset(void) 103091ef005SGatien Chevallier { 104091ef005SGatien Chevallier struct stm32_rng_instance *dev = stm32_rng; 105091ef005SGatien Chevallier vaddr_t rng_base = get_base(); 106f3c22059SEtienne Carriere 107091ef005SGatien Chevallier if (!dev->error_conceal) { 108091ef005SGatien Chevallier uint32_t sr = io_read32(rng_base + RNG_SR); 109091ef005SGatien Chevallier 110091ef005SGatien Chevallier if (sr & RNG_SR_SECS) { 111091ef005SGatien Chevallier /* Conceal by resetting the subsystem (step 1.) */ 112091ef005SGatien Chevallier io_setbits32(rng_base + RNG_CR, RNG_CR_CONDRST); 113091ef005SGatien Chevallier io_clrbits32(rng_base + RNG_CR, RNG_CR_CONDRST); 114091ef005SGatien Chevallier 115091ef005SGatien Chevallier /* Arm timeout for error_conceal sequence */ 116091ef005SGatien Chevallier dev->error_to_ref = 117091ef005SGatien Chevallier timeout_init_us(RNG_READY_TIMEOUT_US); 118091ef005SGatien Chevallier dev->error_conceal = true; 119091ef005SGatien Chevallier } else { 120091ef005SGatien Chevallier /* RNG auto-reset (step 2.) */ 121091ef005SGatien Chevallier io_clrbits32(rng_base + RNG_SR, RNG_SR_SEIS); 122091ef005SGatien Chevallier } 123091ef005SGatien Chevallier } else { 124091ef005SGatien Chevallier /* Measure time before possible reschedule */ 125091ef005SGatien Chevallier bool timed_out = timeout_elapsed(dev->error_to_ref); 126091ef005SGatien Chevallier 127091ef005SGatien Chevallier /* Wait CONDRST is cleared (step 2.) */ 128091ef005SGatien Chevallier if (io_read32(rng_base + RNG_CR) & RNG_CR_CONDRST) { 129091ef005SGatien Chevallier if (timed_out) 130091ef005SGatien Chevallier panic(); 131091ef005SGatien Chevallier 132091ef005SGatien Chevallier /* Wait subsystem reset cycle completes */ 133091ef005SGatien Chevallier return; 134091ef005SGatien Chevallier } 135091ef005SGatien Chevallier 136091ef005SGatien Chevallier /* Check SEIS is cleared (step 2.) */ 137091ef005SGatien Chevallier if (io_read32(rng_base + RNG_SR) & RNG_SR_SEIS) 138091ef005SGatien Chevallier panic(); 139091ef005SGatien Chevallier 140091ef005SGatien Chevallier /* Wait SECS is cleared (step 3.) */ 141091ef005SGatien Chevallier if (io_read32(rng_base + RNG_SR) & RNG_SR_SECS) { 142091ef005SGatien Chevallier if (timed_out) 143091ef005SGatien Chevallier panic(); 144091ef005SGatien Chevallier 145091ef005SGatien Chevallier /* Wait subsystem reset cycle completes */ 146091ef005SGatien Chevallier return; 147091ef005SGatien Chevallier } 148091ef005SGatien Chevallier 149091ef005SGatien Chevallier dev->error_conceal = false; 150091ef005SGatien Chevallier } 151091ef005SGatien Chevallier } 152091ef005SGatien Chevallier 153091ef005SGatien Chevallier /* 154091ef005SGatien Chevallier * Extracts from the STM32 RNG specification, when CONDRST is not supported 155091ef005SGatien Chevallier * 156091ef005SGatien Chevallier * When a noise source (or seed) error occurs, the RNG stops generating 157091ef005SGatien Chevallier * random numbers and sets to “1” both SEIS and SECS bits to indicate 158091ef005SGatien Chevallier * that a seed error occurred. (...) 159091ef005SGatien Chevallier * 160f3c22059SEtienne Carriere * The following sequence shall be used to fully recover from a seed 161f3c22059SEtienne Carriere * error after the RNG initialization: 162f3c22059SEtienne Carriere * 1. Clear the SEIS bit by writing it to “0”. 163f3c22059SEtienne Carriere * 2. Read out 12 words from the RNG_DR register, and discard each of 164f3c22059SEtienne Carriere * them in order to clean the pipeline. 165f3c22059SEtienne Carriere * 3. Confirm that SEIS is still cleared. Random number generation is 166f3c22059SEtienne Carriere * back to normal. 167f3c22059SEtienne Carriere */ 168091ef005SGatien Chevallier static void conceal_seed_error_sw_reset(void) 169f3c22059SEtienne Carriere { 1706a6b6168SGatien Chevallier vaddr_t rng_base = get_base(); 171f3c22059SEtienne Carriere size_t i = 0; 172f3c22059SEtienne Carriere 1736a6b6168SGatien Chevallier io_clrbits32(rng_base + RNG_SR, RNG_SR_SEIS); 174f3c22059SEtienne Carriere 175f3c22059SEtienne Carriere for (i = 12; i != 0; i--) 176f3c22059SEtienne Carriere (void)io_read32(rng_base + RNG_DR); 177f3c22059SEtienne Carriere 178f3c22059SEtienne Carriere if (io_read32(rng_base + RNG_SR) & RNG_SR_SEIS) 179f3c22059SEtienne Carriere panic("RNG noise"); 180f3c22059SEtienne Carriere } 181f3c22059SEtienne Carriere 182091ef005SGatien Chevallier static void conceal_seed_error(void) 183091ef005SGatien Chevallier { 184091ef005SGatien Chevallier if (stm32_rng->ddata->has_cond_reset) 185091ef005SGatien Chevallier conceal_seed_error_cond_reset(); 186091ef005SGatien Chevallier else 187091ef005SGatien Chevallier conceal_seed_error_sw_reset(); 188091ef005SGatien Chevallier } 189091ef005SGatien Chevallier 190c99311c8SEtienne Carriere static TEE_Result read_available(vaddr_t rng_base, uint8_t *out, size_t *size) 191f3c22059SEtienne Carriere { 192091ef005SGatien Chevallier struct stm32_rng_instance *dev = stm32_rng; 193c99311c8SEtienne Carriere uint8_t *buf = NULL; 194c99311c8SEtienne Carriere size_t req_size = 0; 195c99311c8SEtienne Carriere size_t len = 0; 196f3c22059SEtienne Carriere 197091ef005SGatien Chevallier if (dev->error_conceal || io_read32(rng_base + RNG_SR) & RNG_SR_SEIS) 1986a6b6168SGatien Chevallier conceal_seed_error(); 199f3c22059SEtienne Carriere 20023123473SEtienne Carriere if (!(io_read32(rng_base + RNG_SR) & RNG_SR_DRDY)) { 20123123473SEtienne Carriere FMSG("RNG not ready"); 202c99311c8SEtienne Carriere return TEE_ERROR_NO_DATA; 20323123473SEtienne Carriere } 204f3c22059SEtienne Carriere 20523123473SEtienne Carriere if (io_read32(rng_base + RNG_SR) & RNG_SR_SEIS) { 20623123473SEtienne Carriere FMSG("RNG noise error"); 207c99311c8SEtienne Carriere return TEE_ERROR_NO_DATA; 20823123473SEtienne Carriere } 209c99311c8SEtienne Carriere 210c99311c8SEtienne Carriere buf = out; 211c99311c8SEtienne Carriere req_size = MIN(RNG_FIFO_BYTE_DEPTH, *size); 212c99311c8SEtienne Carriere len = req_size; 213f3c22059SEtienne Carriere 214f3c22059SEtienne Carriere /* RNG is ready: read up to 4 32bit words */ 215f3c22059SEtienne Carriere while (len) { 21623bdf063SEtienne Carriere uint32_t data32 = 0; 217f3c22059SEtienne Carriere size_t sz = MIN(len, sizeof(uint32_t)); 218f3c22059SEtienne Carriere 21923bdf063SEtienne Carriere if (!(io_read32(rng_base + RNG_SR) & RNG_SR_DRDY)) 22023bdf063SEtienne Carriere break; 22123bdf063SEtienne Carriere data32 = io_read32(rng_base + RNG_DR); 22223bdf063SEtienne Carriere 2233e64c635SGatien Chevallier /* Late seed error case: DR being 0 is an error status */ 2243e64c635SGatien Chevallier if (!data32) { 2253e64c635SGatien Chevallier conceal_seed_error(); 2263e64c635SGatien Chevallier return TEE_ERROR_NO_DATA; 2273e64c635SGatien Chevallier } 2283e64c635SGatien Chevallier 229f3c22059SEtienne Carriere memcpy(buf, &data32, sz); 230f3c22059SEtienne Carriere buf += sz; 231f3c22059SEtienne Carriere len -= sz; 232f3c22059SEtienne Carriere } 233c99311c8SEtienne Carriere 23423bdf063SEtienne Carriere *size = req_size - len; 235f3c22059SEtienne Carriere 236c99311c8SEtienne Carriere return TEE_SUCCESS; 237f3c22059SEtienne Carriere } 238f3c22059SEtienne Carriere 239091ef005SGatien Chevallier static uint32_t stm32_rng_clock_freq_restrain(void) 240091ef005SGatien Chevallier { 241091ef005SGatien Chevallier struct stm32_rng_instance *dev = stm32_rng; 242091ef005SGatien Chevallier unsigned long clock_rate = 0; 243091ef005SGatien Chevallier uint32_t clock_div = 0; 244091ef005SGatien Chevallier 245091ef005SGatien Chevallier clock_rate = clk_get_rate(dev->clock); 246091ef005SGatien Chevallier 247091ef005SGatien Chevallier /* 248091ef005SGatien Chevallier * Get the exponent to apply on the CLKDIV field in RNG_CR register 249091ef005SGatien Chevallier * No need to handle the case when clock-div > 0xF as it is physically 250091ef005SGatien Chevallier * impossible 251091ef005SGatien Chevallier */ 252091ef005SGatien Chevallier while ((clock_rate >> clock_div) > RNG_MAX_NOISE_CLK_FREQ) 253091ef005SGatien Chevallier clock_div++; 254091ef005SGatien Chevallier 255091ef005SGatien Chevallier DMSG("RNG clk rate : %lu", clk_get_rate(dev->clock) >> clock_div); 256091ef005SGatien Chevallier 257091ef005SGatien Chevallier return clock_div; 258091ef005SGatien Chevallier } 259091ef005SGatien Chevallier 260f63f11bdSGatien Chevallier static TEE_Result init_rng(void) 261f3c22059SEtienne Carriere { 262f63f11bdSGatien Chevallier vaddr_t rng_base = get_base(); 263f63f11bdSGatien Chevallier uint64_t timeout_ref = 0; 2643c752300SGatien Chevallier uint32_t cr_ced_mask = 0; 2653c752300SGatien Chevallier 2663c752300SGatien Chevallier if (!stm32_rng->clock_error) 2673c752300SGatien Chevallier cr_ced_mask = RNG_CR_CED; 268f3c22059SEtienne Carriere 269f63f11bdSGatien Chevallier /* Clean error indications */ 270f63f11bdSGatien Chevallier io_write32(rng_base + RNG_SR, 0); 271f3c22059SEtienne Carriere 272091ef005SGatien Chevallier if (stm32_rng->ddata->has_cond_reset) { 273091ef005SGatien Chevallier uint32_t clock_div = stm32_rng_clock_freq_restrain(); 274091ef005SGatien Chevallier 275091ef005SGatien Chevallier /* Update configuration fields */ 276091ef005SGatien Chevallier io_clrsetbits32(rng_base + RNG_CR, RNG_NIST_CONFIG_MASK, 277091ef005SGatien Chevallier RNG_NIST_CONFIG_B | RNG_CR_CONDRST | 2783c752300SGatien Chevallier cr_ced_mask); 279091ef005SGatien Chevallier io_clrsetbits32(rng_base + RNG_CR, RNG_CR_CLKDIV, 280091ef005SGatien Chevallier clock_div << RNG_CR_CLKDIV_SHIFT); 281091ef005SGatien Chevallier 282091ef005SGatien Chevallier io_clrsetbits32(rng_base + RNG_CR, RNG_CR_CONDRST, 283091ef005SGatien Chevallier RNG_CR_RNGEN); 284*eb5cf770SGatien Chevallier 285*eb5cf770SGatien Chevallier timeout_ref = timeout_init_us(RNG_READY_TIMEOUT_US); 286*eb5cf770SGatien Chevallier while (io_read32(rng_base + RNG_CR) & RNG_CR_CONDRST) 287*eb5cf770SGatien Chevallier if (timeout_elapsed(timeout_ref)) 288*eb5cf770SGatien Chevallier break; 289*eb5cf770SGatien Chevallier if (io_read32(rng_base + RNG_CR) & RNG_CR_CONDRST) 290*eb5cf770SGatien Chevallier panic(); 291091ef005SGatien Chevallier } else { 2923c752300SGatien Chevallier io_setbits32(rng_base + RNG_CR, RNG_CR_RNGEN | cr_ced_mask); 293091ef005SGatien Chevallier } 294f63f11bdSGatien Chevallier 2950817aa6fSGatien Chevallier timeout_ref = timeout_init_us(RNG_READY_TIMEOUT_US); 296f63f11bdSGatien Chevallier while (!(io_read32(rng_base + RNG_SR) & RNG_SR_DRDY)) 297f63f11bdSGatien Chevallier if (timeout_elapsed(timeout_ref)) 298f63f11bdSGatien Chevallier break; 299f63f11bdSGatien Chevallier 300f63f11bdSGatien Chevallier if (!(io_read32(rng_base + RNG_SR) & RNG_SR_DRDY)) 301f63f11bdSGatien Chevallier return TEE_ERROR_GENERIC; 302f63f11bdSGatien Chevallier 303f63f11bdSGatien Chevallier return TEE_SUCCESS; 304f3c22059SEtienne Carriere } 305f3c22059SEtienne Carriere 30698c36268SGatien Chevallier static TEE_Result stm32_rng_read(uint8_t *out, size_t size) 307f3c22059SEtienne Carriere { 308c99311c8SEtienne Carriere TEE_Result rc = TEE_ERROR_GENERIC; 309c99311c8SEtienne Carriere bool burst_timeout = false; 310c99311c8SEtienne Carriere uint64_t timeout_ref = 0; 311f3c22059SEtienne Carriere uint32_t exceptions = 0; 312f3c22059SEtienne Carriere uint8_t *out_ptr = out; 313c99311c8SEtienne Carriere vaddr_t rng_base = 0; 314f3c22059SEtienne Carriere size_t out_size = 0; 315f3c22059SEtienne Carriere 316f3c22059SEtienne Carriere if (!stm32_rng) { 317f3c22059SEtienne Carriere DMSG("No RNG"); 318f3c22059SEtienne Carriere return TEE_ERROR_NOT_SUPPORTED; 319f3c22059SEtienne Carriere } 320f3c22059SEtienne Carriere 321fb1681dfSGatien Chevallier rc = clk_enable(stm32_rng->clock); 322fb1681dfSGatien Chevallier if (rc) 323fb1681dfSGatien Chevallier return rc; 324fb1681dfSGatien Chevallier 325f63f11bdSGatien Chevallier rng_base = get_base(); 326c99311c8SEtienne Carriere 327c99311c8SEtienne Carriere /* Arm timeout */ 3280817aa6fSGatien Chevallier timeout_ref = timeout_init_us(RNG_READY_TIMEOUT_US); 329c99311c8SEtienne Carriere burst_timeout = false; 330f3c22059SEtienne Carriere 331f3c22059SEtienne Carriere while (out_size < size) { 332f3c22059SEtienne Carriere /* Read by chunks of the size the RNG FIFO depth */ 333f3c22059SEtienne Carriere size_t sz = size - out_size; 334f3c22059SEtienne Carriere 335f3c22059SEtienne Carriere exceptions = may_spin_lock(&stm32_rng->lock); 336f3c22059SEtienne Carriere 337c99311c8SEtienne Carriere rc = read_available(rng_base, out_ptr, &sz); 338c99311c8SEtienne Carriere 339c99311c8SEtienne Carriere /* Raise timeout only if we failed to get some samples */ 340c99311c8SEtienne Carriere assert(!rc || rc == TEE_ERROR_NO_DATA); 341c99311c8SEtienne Carriere if (rc) 342c99311c8SEtienne Carriere burst_timeout = timeout_elapsed(timeout_ref); 343f3c22059SEtienne Carriere 344f3c22059SEtienne Carriere may_spin_unlock(&stm32_rng->lock, exceptions); 345f3c22059SEtienne Carriere 346c99311c8SEtienne Carriere if (burst_timeout) { 347c99311c8SEtienne Carriere rc = TEE_ERROR_GENERIC; 348c99311c8SEtienne Carriere goto out; 349f3c22059SEtienne Carriere } 350f3c22059SEtienne Carriere 351c99311c8SEtienne Carriere if (!rc) { 352c99311c8SEtienne Carriere out_size += sz; 353c99311c8SEtienne Carriere out_ptr += sz; 354c99311c8SEtienne Carriere /* Re-arm timeout */ 3550817aa6fSGatien Chevallier timeout_ref = timeout_init_us(RNG_READY_TIMEOUT_US); 356c99311c8SEtienne Carriere burst_timeout = false; 357c99311c8SEtienne Carriere } 358c99311c8SEtienne Carriere } 359c99311c8SEtienne Carriere 360c99311c8SEtienne Carriere out: 361c99311c8SEtienne Carriere assert(!rc || rc == TEE_ERROR_GENERIC); 362f63f11bdSGatien Chevallier clk_disable(stm32_rng->clock); 363f3c22059SEtienne Carriere 364f3c22059SEtienne Carriere return rc; 365f3c22059SEtienne Carriere } 366f3c22059SEtienne Carriere 367cd451498SEtienne Carriere #ifdef CFG_WITH_SOFTWARE_PRNG 368cd451498SEtienne Carriere /* Override weak plat_rng_init with platform handler to seed PRNG */ 369cd451498SEtienne Carriere void plat_rng_init(void) 370cd451498SEtienne Carriere { 371cd451498SEtienne Carriere uint8_t seed[RNG_FIFO_BYTE_DEPTH] = { }; 372cd451498SEtienne Carriere 373cd451498SEtienne Carriere if (stm32_rng_read(seed, sizeof(seed))) 374cd451498SEtienne Carriere panic(); 375cd451498SEtienne Carriere 376cd451498SEtienne Carriere if (crypto_rng_init(seed, sizeof(seed))) 377cd451498SEtienne Carriere panic(); 378cd451498SEtienne Carriere 379cd451498SEtienne Carriere DMSG("PRNG seeded with RNG"); 380cd451498SEtienne Carriere } 381cd451498SEtienne Carriere #else 382cb2478efSAndrew Davis TEE_Result hw_get_random_bytes(void *out, size_t size) 383097f329aSEtienne Carriere { 384097f329aSEtienne Carriere return stm32_rng_read(out, size); 385097f329aSEtienne Carriere } 38627f3087bSGatien Chevallier 38727f3087bSGatien Chevallier void plat_rng_init(void) 38827f3087bSGatien Chevallier { 38927f3087bSGatien Chevallier } 390097f329aSEtienne Carriere #endif 391097f329aSEtienne Carriere 39229893549SGatien Chevallier static TEE_Result stm32_rng_pm_resume(uint32_t pm_cr) 39329893549SGatien Chevallier { 39429893549SGatien Chevallier vaddr_t base = get_base(); 39529893549SGatien Chevallier 39629893549SGatien Chevallier /* Clean error indications */ 39729893549SGatien Chevallier io_write32(base + RNG_SR, 0); 39829893549SGatien Chevallier 39929893549SGatien Chevallier if (stm32_rng->ddata->has_cond_reset) { 400*eb5cf770SGatien Chevallier uint64_t timeout_ref = 0; 401*eb5cf770SGatien Chevallier 40229893549SGatien Chevallier /* 403c2c5b4beSGatien Chevallier * Configuration must be set in the same access that sets 404c2c5b4beSGatien Chevallier * RNG_CR_CONDRST bit. Otherwise, the configuration setting is 405c2c5b4beSGatien Chevallier * not taken into account. CONFIGLOCK bit is always cleared in 406c2c5b4beSGatien Chevallier * this configuration. 40729893549SGatien Chevallier */ 40829893549SGatien Chevallier io_write32(base + RNG_CR, pm_cr | RNG_CR_CONDRST); 40929893549SGatien Chevallier 41029893549SGatien Chevallier io_clrsetbits32(base + RNG_CR, RNG_CR_CONDRST, RNG_CR_RNGEN); 411*eb5cf770SGatien Chevallier 412*eb5cf770SGatien Chevallier timeout_ref = timeout_init_us(RNG_READY_TIMEOUT_US); 413*eb5cf770SGatien Chevallier while (io_read32(base + RNG_CR) & RNG_CR_CONDRST) 414*eb5cf770SGatien Chevallier if (timeout_elapsed(timeout_ref)) 415*eb5cf770SGatien Chevallier break; 416*eb5cf770SGatien Chevallier if (io_read32(base + RNG_CR) & RNG_CR_CONDRST) 417*eb5cf770SGatien Chevallier panic(); 41829893549SGatien Chevallier } else { 41929893549SGatien Chevallier io_write32(base + RNG_CR, RNG_CR_RNGEN | pm_cr); 42029893549SGatien Chevallier } 42129893549SGatien Chevallier 42229893549SGatien Chevallier return TEE_SUCCESS; 42329893549SGatien Chevallier } 42429893549SGatien Chevallier 42529893549SGatien Chevallier static TEE_Result 42629893549SGatien Chevallier stm32_rng_pm(enum pm_op op, unsigned int pm_hint __unused, 42729893549SGatien Chevallier const struct pm_callback_handle *pm_handle __unused) 42829893549SGatien Chevallier { 42929893549SGatien Chevallier static uint32_t pm_cr; 43029893549SGatien Chevallier TEE_Result res = TEE_ERROR_GENERIC; 43129893549SGatien Chevallier 43229893549SGatien Chevallier assert(stm32_rng && (op == PM_OP_SUSPEND || op == PM_OP_RESUME)); 43329893549SGatien Chevallier 43429893549SGatien Chevallier res = clk_enable(stm32_rng->clock); 43529893549SGatien Chevallier if (res) 43629893549SGatien Chevallier return res; 43729893549SGatien Chevallier 43829893549SGatien Chevallier if (op == PM_OP_SUSPEND) 43929893549SGatien Chevallier pm_cr = io_read32(get_base() + RNG_CR); 44029893549SGatien Chevallier else 44129893549SGatien Chevallier res = stm32_rng_pm_resume(pm_cr); 44229893549SGatien Chevallier 44329893549SGatien Chevallier clk_disable(stm32_rng->clock); 44429893549SGatien Chevallier 44529893549SGatien Chevallier return res; 44629893549SGatien Chevallier } 44729893549SGatien Chevallier DECLARE_KEEP_PAGER(stm32_rng_pm); 44829893549SGatien Chevallier 449ea8ba295SGatien Chevallier static TEE_Result stm32_rng_parse_fdt(const void *fdt, int node) 450f3c22059SEtienne Carriere { 451d7a1a7d2SEtienne Carriere TEE_Result res = TEE_ERROR_GENERIC; 452ea8ba295SGatien Chevallier struct dt_node_info dt_rng = { }; 453f3c22059SEtienne Carriere 454f354a5d8SGatien Chevallier fdt_fill_device_info(fdt, &dt_rng, node); 455ea8ba295SGatien Chevallier if (dt_rng.reg == DT_INFO_INVALID_REG) 456ea8ba295SGatien Chevallier return TEE_ERROR_BAD_PARAMETERS; 457f3c22059SEtienne Carriere 458ea8ba295SGatien Chevallier stm32_rng->base.pa = dt_rng.reg; 459ea8ba295SGatien Chevallier stm32_rng->base.va = io_pa_or_va_secure(&stm32_rng->base, 460ea8ba295SGatien Chevallier dt_rng.reg_size); 461ea8ba295SGatien Chevallier assert(stm32_rng->base.va); 462f3c22059SEtienne Carriere 463ea8ba295SGatien Chevallier res = rstctrl_dt_get_by_index(fdt, node, 0, &stm32_rng->rstctrl); 464ea8ba295SGatien Chevallier if (res != TEE_SUCCESS && res != TEE_ERROR_ITEM_NOT_FOUND) 465ea8ba295SGatien Chevallier return res; 46668c4a16bSEtienne Carriere 467d7a1a7d2SEtienne Carriere res = clk_dt_get_by_index(fdt, node, 0, &stm32_rng->clock); 468d7a1a7d2SEtienne Carriere if (res) 469d7a1a7d2SEtienne Carriere return res; 470d7a1a7d2SEtienne Carriere 4713c752300SGatien Chevallier if (fdt_getprop(fdt, node, "clock-error-detect", NULL)) 4723c752300SGatien Chevallier stm32_rng->clock_error = true; 4733c752300SGatien Chevallier 474ea8ba295SGatien Chevallier /* Release device if not used at runtime or for pm transitions */ 475ea8ba295SGatien Chevallier stm32_rng->release_post_boot = IS_ENABLED(CFG_WITH_SOFTWARE_PRNG) && 476ea8ba295SGatien Chevallier !IS_ENABLED(CFG_PM); 477f3c22059SEtienne Carriere 478f3c22059SEtienne Carriere return TEE_SUCCESS; 479f3c22059SEtienne Carriere } 480f3c22059SEtienne Carriere 481ea8ba295SGatien Chevallier static TEE_Result stm32_rng_probe(const void *fdt, int offs, 482f9508605SGatien Chevallier const void *compat_data) 483ea8ba295SGatien Chevallier { 484ea8ba295SGatien Chevallier TEE_Result res = TEE_ERROR_GENERIC; 485ea8ba295SGatien Chevallier 486ea8ba295SGatien Chevallier /* Expect a single RNG instance */ 487ea8ba295SGatien Chevallier assert(!stm32_rng); 488ea8ba295SGatien Chevallier 489ea8ba295SGatien Chevallier stm32_rng = calloc(1, sizeof(*stm32_rng)); 490ea8ba295SGatien Chevallier if (!stm32_rng) 491ea8ba295SGatien Chevallier panic(); 492ea8ba295SGatien Chevallier 493ea8ba295SGatien Chevallier res = stm32_rng_parse_fdt(fdt, offs); 494ea8ba295SGatien Chevallier if (res) 495ea8ba295SGatien Chevallier goto err; 496ea8ba295SGatien Chevallier 497091ef005SGatien Chevallier stm32_rng->ddata = compat_data; 498091ef005SGatien Chevallier assert(stm32_rng->ddata); 499091ef005SGatien Chevallier 500ea8ba295SGatien Chevallier res = clk_enable(stm32_rng->clock); 501ea8ba295SGatien Chevallier if (res) 502ea8ba295SGatien Chevallier goto err; 503ea8ba295SGatien Chevallier 504ea8ba295SGatien Chevallier if (stm32_rng->rstctrl && 505ea8ba295SGatien Chevallier rstctrl_assert_to(stm32_rng->rstctrl, RNG_RESET_TIMEOUT_US)) { 506ea8ba295SGatien Chevallier res = TEE_ERROR_GENERIC; 507ea8ba295SGatien Chevallier goto err_clk; 508ea8ba295SGatien Chevallier } 509ea8ba295SGatien Chevallier 510ea8ba295SGatien Chevallier if (stm32_rng->rstctrl && 511ea8ba295SGatien Chevallier rstctrl_deassert_to(stm32_rng->rstctrl, RNG_RESET_TIMEOUT_US)) { 512ea8ba295SGatien Chevallier res = TEE_ERROR_GENERIC; 513ea8ba295SGatien Chevallier goto err_clk; 514ea8ba295SGatien Chevallier } 515ea8ba295SGatien Chevallier 516f63f11bdSGatien Chevallier res = init_rng(); 517f63f11bdSGatien Chevallier if (res) 518f63f11bdSGatien Chevallier goto err_clk; 519f63f11bdSGatien Chevallier 520ea8ba295SGatien Chevallier clk_disable(stm32_rng->clock); 521ea8ba295SGatien Chevallier 522ea8ba295SGatien Chevallier if (stm32_rng->release_post_boot) 523ea8ba295SGatien Chevallier stm32mp_register_non_secure_periph_iomem(stm32_rng->base.pa); 524ea8ba295SGatien Chevallier else 525ea8ba295SGatien Chevallier stm32mp_register_secure_periph_iomem(stm32_rng->base.pa); 526ea8ba295SGatien Chevallier 52729893549SGatien Chevallier register_pm_core_service_cb(stm32_rng_pm, &stm32_rng, "rng-service"); 52829893549SGatien Chevallier 529ea8ba295SGatien Chevallier return TEE_SUCCESS; 530ea8ba295SGatien Chevallier 531ea8ba295SGatien Chevallier err_clk: 532ea8ba295SGatien Chevallier clk_disable(stm32_rng->clock); 533ea8ba295SGatien Chevallier err: 534ea8ba295SGatien Chevallier free(stm32_rng); 535ea8ba295SGatien Chevallier stm32_rng = NULL; 536ea8ba295SGatien Chevallier 537ea8ba295SGatien Chevallier return res; 538ea8ba295SGatien Chevallier } 539ea8ba295SGatien Chevallier 540091ef005SGatien Chevallier static const struct stm32_rng_driver_data mp13_data[] = { 541091ef005SGatien Chevallier { .has_cond_reset = true }, 542091ef005SGatien Chevallier }; 543091ef005SGatien Chevallier 544091ef005SGatien Chevallier static const struct stm32_rng_driver_data mp15_data[] = { 545091ef005SGatien Chevallier { .has_cond_reset = false }, 546091ef005SGatien Chevallier }; 547091ef005SGatien Chevallier DECLARE_KEEP_PAGER(mp15_data); 548091ef005SGatien Chevallier 549ea8ba295SGatien Chevallier static const struct dt_device_match rng_match_table[] = { 550091ef005SGatien Chevallier { .compatible = "st,stm32-rng", .compat_data = &mp15_data }, 551091ef005SGatien Chevallier { .compatible = "st,stm32mp13-rng", .compat_data = &mp13_data }, 552ea8ba295SGatien Chevallier { } 553ea8ba295SGatien Chevallier }; 554ea8ba295SGatien Chevallier 555ea8ba295SGatien Chevallier DEFINE_DT_DRIVER(stm32_rng_dt_driver) = { 556ea8ba295SGatien Chevallier .name = "stm32_rng", 557ea8ba295SGatien Chevallier .match_table = rng_match_table, 558ea8ba295SGatien Chevallier .probe = stm32_rng_probe, 559ea8ba295SGatien Chevallier }; 560d8682c4cSEtienne Carriere 561d8682c4cSEtienne Carriere static TEE_Result stm32_rng_release(void) 562d8682c4cSEtienne Carriere { 563d8682c4cSEtienne Carriere if (stm32_rng && stm32_rng->release_post_boot) { 564d8682c4cSEtienne Carriere DMSG("Release RNG driver"); 565d8682c4cSEtienne Carriere free(stm32_rng); 566d8682c4cSEtienne Carriere stm32_rng = NULL; 567d8682c4cSEtienne Carriere } 568d8682c4cSEtienne Carriere 569d8682c4cSEtienne Carriere return TEE_SUCCESS; 570d8682c4cSEtienne Carriere } 571d8682c4cSEtienne Carriere 572d8682c4cSEtienne Carriere release_init_resource(stm32_rng_release); 573