1 /* 2 * Copyright (c) 2013-2023, Arm Limited and Contributors. All rights reserved. 3 * 4 * SPDX-License-Identifier: BSD-3-Clause 5 */ 6 7 #include <assert.h> 8 #include <string.h> 9 10 #include <arch.h> 11 #include <arch_features.h> 12 #include <arch_helpers.h> 13 #include <bl31/bl31.h> 14 #include <bl31/ehf.h> 15 #include <common/bl_common.h> 16 #include <common/debug.h> 17 #include <common/feat_detect.h> 18 #include <common/runtime_svc.h> 19 #include <drivers/console.h> 20 #include <lib/bootmarker_capture.h> 21 #include <lib/el3_runtime/context_debug.h> 22 #include <lib/el3_runtime/context_mgmt.h> 23 #include <lib/pmf/pmf.h> 24 #include <lib/runtime_instr.h> 25 #include <plat/common/platform.h> 26 #include <services/std_svc.h> 27 28 #if ENABLE_RUNTIME_INSTRUMENTATION 29 PMF_REGISTER_SERVICE_SMC(rt_instr_svc, PMF_RT_INSTR_SVC_ID, 30 RT_INSTR_TOTAL_IDS, PMF_STORE_ENABLE) 31 #endif 32 33 #if ENABLE_RUNTIME_INSTRUMENTATION 34 PMF_REGISTER_SERVICE(bl_svc, PMF_RT_INSTR_SVC_ID, 35 BL_TOTAL_IDS, PMF_DUMP_ENABLE) 36 #endif 37 38 /******************************************************************************* 39 * This function pointer is used to initialise the BL32 image. It's initialized 40 * by SPD calling bl31_register_bl32_init after setting up all things necessary 41 * for SP execution. In cases where both SPD and SP are absent, or when SPD 42 * finds it impossible to execute SP, this pointer is left as NULL 43 ******************************************************************************/ 44 static int32_t (*bl32_init)(void); 45 46 /***************************************************************************** 47 * Function used to initialise RMM if RME is enabled 48 *****************************************************************************/ 49 #if ENABLE_RME 50 static int32_t (*rmm_init)(void); 51 #endif 52 53 /******************************************************************************* 54 * Variable to indicate whether next image to execute after BL31 is BL33 55 * (non-secure & default) or BL32 (secure). 56 ******************************************************************************/ 57 static uint32_t next_image_type = NON_SECURE; 58 59 #ifdef SUPPORT_UNKNOWN_MPID 60 /* 61 * Flag to know whether an unsupported MPID has been detected. To avoid having it 62 * landing on the .bss section, it is initialized to a non-zero value, this way 63 * we avoid potential WAW hazards during system bring up. 64 * */ 65 volatile uint32_t unsupported_mpid_flag = 1; 66 #endif 67 68 /* 69 * Implement the ARM Standard Service function to get arguments for a 70 * particular service. 71 */ 72 uintptr_t get_arm_std_svc_args(unsigned int svc_mask) 73 { 74 /* Setup the arguments for PSCI Library */ 75 DEFINE_STATIC_PSCI_LIB_ARGS_V1(psci_args, bl31_warm_entrypoint); 76 77 /* PSCI is the only ARM Standard Service implemented */ 78 assert(svc_mask == PSCI_FID_MASK); 79 80 return (uintptr_t)&psci_args; 81 } 82 83 /******************************************************************************* 84 * Simple function to initialise all BL31 helper libraries. 85 ******************************************************************************/ 86 void __init bl31_lib_init(void) 87 { 88 cm_init(); 89 } 90 91 /******************************************************************************* 92 * Setup function for BL31. 93 ******************************************************************************/ 94 void bl31_setup(u_register_t arg0, u_register_t arg1, u_register_t arg2, 95 u_register_t arg3) 96 { 97 /* Perform early platform-specific setup */ 98 bl31_early_platform_setup2(arg0, arg1, arg2, arg3); 99 100 /* Perform late platform-specific setup */ 101 bl31_plat_arch_setup(); 102 103 #if CTX_INCLUDE_PAUTH_REGS 104 /* 105 * Assert that the ARMv8.3-PAuth registers are present or an access 106 * fault will be triggered when they are being saved or restored. 107 */ 108 assert(is_armv8_3_pauth_present()); 109 #endif /* CTX_INCLUDE_PAUTH_REGS */ 110 111 /* Prints context_memory allocated for all the security states */ 112 report_ctx_memory_usage(); 113 } 114 115 /******************************************************************************* 116 * BL31 is responsible for setting up the runtime services for the primary cpu 117 * before passing control to the bootloader or an Operating System. This 118 * function calls runtime_svc_init() which initializes all registered runtime 119 * services. The run time services would setup enough context for the core to 120 * switch to the next exception level. When this function returns, the core will 121 * switch to the programmed exception level via an ERET. 122 ******************************************************************************/ 123 void bl31_main(void) 124 { 125 /* Init registers that never change for the lifetime of TF-A */ 126 cm_manage_extensions_el3(); 127 128 /* Init per-world context registers for non-secure world */ 129 manage_extensions_nonsecure_per_world(); 130 131 NOTICE("BL31: %s\n", version_string); 132 NOTICE("BL31: %s\n", build_message); 133 134 #if FEATURE_DETECTION 135 /* Detect if features enabled during compilation are supported by PE. */ 136 detect_arch_features(); 137 #endif /* FEATURE_DETECTION */ 138 139 #if ENABLE_RUNTIME_INSTRUMENTATION 140 PMF_CAPTURE_TIMESTAMP(bl_svc, BL31_ENTRY, PMF_CACHE_MAINT); 141 #endif 142 143 #ifdef SUPPORT_UNKNOWN_MPID 144 if (unsupported_mpid_flag == 0) { 145 NOTICE("Unsupported MPID detected!\n"); 146 } 147 #endif 148 149 /* Perform platform setup in BL31 */ 150 bl31_platform_setup(); 151 152 /* Initialise helper libraries */ 153 bl31_lib_init(); 154 155 #if EL3_EXCEPTION_HANDLING 156 INFO("BL31: Initialising Exception Handling Framework\n"); 157 ehf_init(); 158 #endif 159 160 /* Initialize the runtime services e.g. psci. */ 161 INFO("BL31: Initializing runtime services\n"); 162 runtime_svc_init(); 163 164 /* 165 * All the cold boot actions on the primary cpu are done. We now need to 166 * decide which is the next image and how to execute it. 167 * If the SPD runtime service is present, it would want to pass control 168 * to BL32 first in S-EL1. In that case, SPD would have registered a 169 * function to initialize bl32 where it takes responsibility of entering 170 * S-EL1 and returning control back to bl31_main. Similarly, if RME is 171 * enabled and a function is registered to initialize RMM, control is 172 * transferred to RMM in R-EL2. After RMM initialization, control is 173 * returned back to bl31_main. Once this is done we can prepare entry 174 * into BL33 as normal. 175 */ 176 177 /* 178 * If SPD had registered an init hook, invoke it. 179 */ 180 if (bl32_init != NULL) { 181 INFO("BL31: Initializing BL32\n"); 182 183 console_flush(); 184 int32_t rc = (*bl32_init)(); 185 186 if (rc == 0) { 187 WARN("BL31: BL32 initialization failed\n"); 188 } 189 } 190 191 /* 192 * If RME is enabled and init hook is registered, initialize RMM 193 * in R-EL2. 194 */ 195 #if ENABLE_RME 196 if (rmm_init != NULL) { 197 INFO("BL31: Initializing RMM\n"); 198 199 console_flush(); 200 int32_t rc = (*rmm_init)(); 201 202 if (rc == 0) { 203 WARN("BL31: RMM initialization failed\n"); 204 } 205 } 206 #endif 207 208 /* 209 * We are ready to enter the next EL. Prepare entry into the image 210 * corresponding to the desired security state after the next ERET. 211 */ 212 bl31_prepare_next_image_entry(); 213 214 console_flush(); 215 216 /* 217 * Perform any platform specific runtime setup prior to cold boot exit 218 * from BL31 219 */ 220 bl31_plat_runtime_setup(); 221 222 #if ENABLE_RUNTIME_INSTRUMENTATION 223 PMF_CAPTURE_TIMESTAMP(bl_svc, BL31_EXIT, PMF_CACHE_MAINT); 224 console_flush(); 225 #endif 226 } 227 228 /******************************************************************************* 229 * Accessor functions to help runtime services decide which image should be 230 * executed after BL31. This is BL33 or the non-secure bootloader image by 231 * default but the Secure payload dispatcher could override this by requesting 232 * an entry into BL32 (Secure payload) first. If it does so then it should use 233 * the same API to program an entry into BL33 once BL32 initialisation is 234 * complete. 235 ******************************************************************************/ 236 void bl31_set_next_image_type(uint32_t security_state) 237 { 238 assert(sec_state_is_valid(security_state)); 239 next_image_type = security_state; 240 } 241 242 uint32_t bl31_get_next_image_type(void) 243 { 244 return next_image_type; 245 } 246 247 /******************************************************************************* 248 * This function programs EL3 registers and performs other setup to enable entry 249 * into the next image after BL31 at the next ERET. 250 ******************************************************************************/ 251 void __init bl31_prepare_next_image_entry(void) 252 { 253 entry_point_info_t *next_image_info; 254 uint32_t image_type; 255 256 #if CTX_INCLUDE_AARCH32_REGS 257 /* 258 * Ensure that the build flag to save AArch32 system registers in CPU 259 * context is not set for AArch64-only platforms. 260 */ 261 if (el_implemented(1) == EL_IMPL_A64ONLY) { 262 ERROR("EL1 supports AArch64-only. Please set build flag " 263 "CTX_INCLUDE_AARCH32_REGS = 0\n"); 264 panic(); 265 } 266 #endif 267 268 /* Determine which image to execute next */ 269 image_type = bl31_get_next_image_type(); 270 271 /* Program EL3 registers to enable entry into the next EL */ 272 next_image_info = bl31_plat_get_next_image_ep_info(image_type); 273 assert(next_image_info != NULL); 274 assert(image_type == GET_SECURITY_STATE(next_image_info->h.attr)); 275 276 INFO("BL31: Preparing for EL3 exit to %s world\n", 277 (image_type == SECURE) ? "secure" : "normal"); 278 print_entry_point_info(next_image_info); 279 cm_init_my_context(next_image_info); 280 281 /* 282 * If we are entering the Non-secure world, use 283 * 'cm_prepare_el3_exit_ns' to exit. 284 */ 285 if (image_type == NON_SECURE) { 286 cm_prepare_el3_exit_ns(); 287 } else { 288 cm_prepare_el3_exit(image_type); 289 } 290 } 291 292 /******************************************************************************* 293 * This function initializes the pointer to BL32 init function. This is expected 294 * to be called by the SPD after it finishes all its initialization 295 ******************************************************************************/ 296 void bl31_register_bl32_init(int32_t (*func)(void)) 297 { 298 bl32_init = func; 299 } 300 301 #if ENABLE_RME 302 /******************************************************************************* 303 * This function initializes the pointer to RMM init function. This is expected 304 * to be called by the RMMD after it finishes all its initialization 305 ******************************************************************************/ 306 void bl31_register_rmm_init(int32_t (*func)(void)) 307 { 308 rmm_init = func; 309 } 310 #endif 311