14f6ad66aSAchin Gupta /* 2*758ccb80SChris Kay * Copyright (c) 2013-2024, Arm Limited and Contributors. All rights reserved. 34f6ad66aSAchin Gupta * 482cb2c1aSdp-arm * SPDX-License-Identifier: BSD-3-Clause 54f6ad66aSAchin Gupta */ 64f6ad66aSAchin Gupta 7ed108b56SAlexei Fedorov #include <assert.h> 8ed108b56SAlexei Fedorov 94f6ad66aSAchin Gupta #include <arch_helpers.h> 10ed108b56SAlexei Fedorov #include <arch_features.h> 1109d40e0eSAntonio Nino Diaz #include <bl1/bl1.h> 1209d40e0eSAntonio Nino Diaz #include <bl2/bl2.h> 1309d40e0eSAntonio Nino Diaz #include <common/bl_common.h> 14*758ccb80SChris Kay #include <common/build_message.h> 1509d40e0eSAntonio Nino Diaz #include <common/debug.h> 1609d40e0eSAntonio Nino Diaz #include <drivers/auth/auth_mod.h> 170aa0b3afSManish V Badarkhe #include <drivers/auth/crypto_mod.h> 1809d40e0eSAntonio Nino Diaz #include <drivers/console.h> 19396b339dSManish V Badarkhe #include <drivers/fwu/fwu.h> 20ed8f06ddSthagon01-arm #include <lib/bootmarker_capture.h> 21ed108b56SAlexei Fedorov #include <lib/extensions/pauth.h> 22ed8f06ddSthagon01-arm #include <lib/pmf/pmf.h> 2309d40e0eSAntonio Nino Diaz #include <plat/common/platform.h> 2409d40e0eSAntonio Nino Diaz 255b827a8fSDan Handley #include "bl2_private.h" 264f6ad66aSAchin Gupta 27402b3cf8SJulius Werner #ifdef __aarch64__ 28b1d27b48SRoberto Vargas #define NEXT_IMAGE "BL31" 29402b3cf8SJulius Werner #else 30402b3cf8SJulius Werner #define NEXT_IMAGE "BL32" 31b1d27b48SRoberto Vargas #endif 3293d81d64SSandrine Bailleux 33ed8f06ddSthagon01-arm #if ENABLE_RUNTIME_INSTRUMENTATION 34ed8f06ddSthagon01-arm PMF_REGISTER_SERVICE(bl_svc, PMF_RT_INSTR_SVC_ID, 35ed8f06ddSthagon01-arm BL_TOTAL_IDS, PMF_DUMP_ENABLE); 36ed8f06ddSthagon01-arm #endif 37ed8f06ddSthagon01-arm 3842d4d3baSArvind Ram Prakash #if RESET_TO_BL2 3993d81d64SSandrine Bailleux /******************************************************************************* 4042d4d3baSArvind Ram Prakash * Setup function for BL2 when RESET_TO_BL2=1 41dcbfa11bSAntonio Nino Diaz ******************************************************************************/ 42dcbfa11bSAntonio Nino Diaz void bl2_el3_setup(u_register_t arg0, u_register_t arg1, u_register_t arg2, 43dcbfa11bSAntonio Nino Diaz u_register_t arg3) 44dcbfa11bSAntonio Nino Diaz { 45dcbfa11bSAntonio Nino Diaz /* Perform early platform-specific setup */ 46dcbfa11bSAntonio Nino Diaz bl2_el3_early_platform_setup(arg0, arg1, arg2, arg3); 47dcbfa11bSAntonio Nino Diaz 48dcbfa11bSAntonio Nino Diaz /* Perform late platform-specific setup */ 49dcbfa11bSAntonio Nino Diaz bl2_el3_plat_arch_setup(); 50ed108b56SAlexei Fedorov 51ed108b56SAlexei Fedorov #if CTX_INCLUDE_PAUTH_REGS 52ed108b56SAlexei Fedorov /* 53ed108b56SAlexei Fedorov * Assert that the ARMv8.3-PAuth registers are present or an access 54ed108b56SAlexei Fedorov * fault will be triggered when they are being saved or restored. 55ed108b56SAlexei Fedorov */ 56ed108b56SAlexei Fedorov assert(is_armv8_3_pauth_present()); 57ed108b56SAlexei Fedorov #endif /* CTX_INCLUDE_PAUTH_REGS */ 58dcbfa11bSAntonio Nino Diaz } 5942d4d3baSArvind Ram Prakash #else /* RESET_TO_BL2 */ 6042d4d3baSArvind Ram Prakash 616c09af9fSZelalem Aweke /******************************************************************************* 6242d4d3baSArvind Ram Prakash * Setup function for BL2 when RESET_TO_BL2=0 636c09af9fSZelalem Aweke ******************************************************************************/ 646c09af9fSZelalem Aweke void bl2_setup(u_register_t arg0, u_register_t arg1, u_register_t arg2, 656c09af9fSZelalem Aweke u_register_t arg3) 666c09af9fSZelalem Aweke { 676c09af9fSZelalem Aweke /* Perform early platform-specific setup */ 686c09af9fSZelalem Aweke bl2_early_platform_setup2(arg0, arg1, arg2, arg3); 696c09af9fSZelalem Aweke 706c09af9fSZelalem Aweke /* Perform late platform-specific setup */ 716c09af9fSZelalem Aweke bl2_plat_arch_setup(); 726c09af9fSZelalem Aweke 736c09af9fSZelalem Aweke #if CTX_INCLUDE_PAUTH_REGS 746c09af9fSZelalem Aweke /* 756c09af9fSZelalem Aweke * Assert that the ARMv8.3-PAuth registers are present or an access 766c09af9fSZelalem Aweke * fault will be triggered when they are being saved or restored. 776c09af9fSZelalem Aweke */ 786c09af9fSZelalem Aweke assert(is_armv8_3_pauth_present()); 796c09af9fSZelalem Aweke #endif /* CTX_INCLUDE_PAUTH_REGS */ 806c09af9fSZelalem Aweke } 8142d4d3baSArvind Ram Prakash #endif /* RESET_TO_BL2 */ 82dcbfa11bSAntonio Nino Diaz 839d93fc2fSAntonio Nino Diaz /******************************************************************************* 8493d81d64SSandrine Bailleux * The only thing to do in BL2 is to load further images and pass control to 8542019bf4SYatharth Kochar * next BL. The memory occupied by BL2 will be reclaimed by BL3x stages. BL2 8642019bf4SYatharth Kochar * runs entirely in S-EL1. 8793d81d64SSandrine Bailleux ******************************************************************************/ 8893d81d64SSandrine Bailleux void bl2_main(void) 8993d81d64SSandrine Bailleux { 9042019bf4SYatharth Kochar entry_point_info_t *next_bl_ep_info; 9193d81d64SSandrine Bailleux 92ed8f06ddSthagon01-arm #if ENABLE_RUNTIME_INSTRUMENTATION 93ed8f06ddSthagon01-arm PMF_CAPTURE_TIMESTAMP(bl_svc, BL2_ENTRY, PMF_CACHE_MAINT); 94ed8f06ddSthagon01-arm #endif 95ed8f06ddSthagon01-arm 96*758ccb80SChris Kay NOTICE("BL2: %s\n", build_version_string); 976ad2e461SDan Handley NOTICE("BL2: %s\n", build_message); 986ad2e461SDan Handley 9993d81d64SSandrine Bailleux /* Perform remaining generic architectural setup in S-EL1 */ 10093d81d64SSandrine Bailleux bl2_arch_setup(); 10193d81d64SSandrine Bailleux 102396b339dSManish V Badarkhe #if PSA_FWU_SUPPORT 103396b339dSManish V Badarkhe fwu_init(); 104396b339dSManish V Badarkhe #endif /* PSA_FWU_SUPPORT */ 105396b339dSManish V Badarkhe 1060aa0b3afSManish V Badarkhe crypto_mod_init(); 1070aa0b3afSManish V Badarkhe 108dec840afSJuan Castillo /* Initialize authentication module */ 1091779ba6bSJuan Castillo auth_mod_init(); 110dec840afSJuan Castillo 11147bf3ac3SManish V Badarkhe /* Initialize the Measured Boot backend */ 11247bf3ac3SManish V Badarkhe bl2_plat_mboot_init(); 11347bf3ac3SManish V Badarkhe 1143f498b0dSAlexei Fedorov /* Initialize boot source */ 11501f62b6dSRoberto Vargas bl2_plat_preload_setup(); 11601f62b6dSRoberto Vargas 11742019bf4SYatharth Kochar /* Load the subsequent bootloader images. */ 11842019bf4SYatharth Kochar next_bl_ep_info = bl2_load_images(); 119ef538c6fSJuan Castillo 12047bf3ac3SManish V Badarkhe /* Teardown the Measured Boot backend */ 12147bf3ac3SManish V Badarkhe bl2_plat_mboot_finish(); 1223f498b0dSAlexei Fedorov 12342d4d3baSArvind Ram Prakash #if !BL2_RUNS_AT_EL3 124402b3cf8SJulius Werner #ifndef __aarch64__ 125d48c12e9SYatharth Kochar /* 126d48c12e9SYatharth Kochar * For AArch32 state BL1 and BL2 share the MMU setup. 127d48c12e9SYatharth Kochar * Given that BL2 does not map BL1 regions, MMU needs 128d48c12e9SYatharth Kochar * to be disabled in order to go back to BL1. 129d48c12e9SYatharth Kochar */ 130d48c12e9SYatharth Kochar disable_mmu_icache_secure(); 131402b3cf8SJulius Werner #endif /* !__aarch64__ */ 132d48c12e9SYatharth Kochar 133ed108b56SAlexei Fedorov #if ENABLE_PAUTH 134ed108b56SAlexei Fedorov /* 135ed108b56SAlexei Fedorov * Disable pointer authentication before running next boot image 136ed108b56SAlexei Fedorov */ 137ed108b56SAlexei Fedorov pauth_disable_el1(); 138ed108b56SAlexei Fedorov #endif /* ENABLE_PAUTH */ 139ed108b56SAlexei Fedorov 140ed8f06ddSthagon01-arm #if ENABLE_RUNTIME_INSTRUMENTATION 141ed8f06ddSthagon01-arm PMF_CAPTURE_TIMESTAMP(bl_svc, BL2_EXIT, PMF_CACHE_MAINT); 142ed8f06ddSthagon01-arm #endif 143ed8f06ddSthagon01-arm 144ed8f06ddSthagon01-arm console_flush(); 145ed8f06ddSthagon01-arm 14693d81d64SSandrine Bailleux /* 14742019bf4SYatharth Kochar * Run next BL image via an SMC to BL1. Information on how to pass 14842019bf4SYatharth Kochar * control to the BL32 (if present) and BL33 software images will 14942019bf4SYatharth Kochar * be passed to next BL image as an argument. 15093d81d64SSandrine Bailleux */ 15142019bf4SYatharth Kochar smc(BL1_SMC_RUN_IMAGE, (unsigned long)next_bl_ep_info, 0, 0, 0, 0, 0, 0); 15242d4d3baSArvind Ram Prakash #else /* if BL2_RUNS_AT_EL3 */ 15342d4d3baSArvind Ram Prakash 154b1d27b48SRoberto Vargas NOTICE("BL2: Booting " NEXT_IMAGE "\n"); 155b1d27b48SRoberto Vargas print_entry_point_info(next_bl_ep_info); 156ed8f06ddSthagon01-arm #if ENABLE_RUNTIME_INSTRUMENTATION 157ed8f06ddSthagon01-arm PMF_CAPTURE_TIMESTAMP(bl_svc, BL2_EXIT, PMF_CACHE_MAINT); 158ed8f06ddSthagon01-arm #endif 159b1d27b48SRoberto Vargas console_flush(); 160b1d27b48SRoberto Vargas 161ed108b56SAlexei Fedorov #if ENABLE_PAUTH 162ed108b56SAlexei Fedorov /* 163ed108b56SAlexei Fedorov * Disable pointer authentication before running next boot image 164ed108b56SAlexei Fedorov */ 165ed108b56SAlexei Fedorov pauth_disable_el3(); 166ed108b56SAlexei Fedorov #endif /* ENABLE_PAUTH */ 167ed108b56SAlexei Fedorov 168b1d27b48SRoberto Vargas bl2_run_next_image(next_bl_ep_info); 16942d4d3baSArvind Ram Prakash #endif /* BL2_RUNS_AT_EL3 */ 1704f6ad66aSAchin Gupta } 171