xref: /rk3399_ARM-atf/services/std_svc/spm/el3_spmc/spmc.h (revision 1a752245ecae6487844c57667e24b704e6df8079) 
15096aeb2SMarc Bonnici /*
25096aeb2SMarc Bonnici  * Copyright (c) 2022, ARM Limited and Contributors. All rights reserved.
35096aeb2SMarc Bonnici  *
45096aeb2SMarc Bonnici  * SPDX-License-Identifier: BSD-3-Clause
55096aeb2SMarc Bonnici  */
65096aeb2SMarc Bonnici 
75096aeb2SMarc Bonnici #ifndef SPMC_H
85096aeb2SMarc Bonnici #define SPMC_H
95096aeb2SMarc Bonnici 
105096aeb2SMarc Bonnici #include <stdint.h>
115096aeb2SMarc Bonnici 
125096aeb2SMarc Bonnici #include <lib/psci/psci.h>
135096aeb2SMarc Bonnici #include <lib/spinlock.h>
147affa25cSMarc Bonnici #include <services/el3_spmc_logical_sp.h>
155096aeb2SMarc Bonnici #include "spm_common.h"
165096aeb2SMarc Bonnici 
175096aeb2SMarc Bonnici /*
185096aeb2SMarc Bonnici  * Ranges of FF-A IDs for Normal world and Secure world components. The
195096aeb2SMarc Bonnici  * convention matches that used by other SPMCs i.e. Hafnium and OP-TEE.
205096aeb2SMarc Bonnici  */
215096aeb2SMarc Bonnici #define FFA_NWD_ID_BASE		0x0
225096aeb2SMarc Bonnici #define FFA_NWD_ID_LIMIT	0x7FFF
235096aeb2SMarc Bonnici #define FFA_SWD_ID_BASE		0x8000
245096aeb2SMarc Bonnici #define FFA_SWD_ID_LIMIT	SPMD_DIRECT_MSG_ENDPOINT_ID - 1
255096aeb2SMarc Bonnici #define FFA_SWD_ID_MASK		0x8000
265096aeb2SMarc Bonnici 
27c4db76f0SMarc Bonnici /* ID 0 is reserved for the normal world entity, (Hypervisor or OS Kernel). */
28c4db76f0SMarc Bonnici #define FFA_NWD_ID		U(0)
295096aeb2SMarc Bonnici /* First ID is reserved for the SPMC */
305096aeb2SMarc Bonnici #define FFA_SPMC_ID		U(FFA_SWD_ID_BASE)
315096aeb2SMarc Bonnici /* SP IDs are allocated after the SPMC ID */
325096aeb2SMarc Bonnici #define FFA_SP_ID_BASE		(FFA_SPMC_ID + 1)
335096aeb2SMarc Bonnici /* Align with Hafnium implementation */
345096aeb2SMarc Bonnici #define INV_SP_ID		0x7FFF
355096aeb2SMarc Bonnici 
365096aeb2SMarc Bonnici /* FF-A warm boot types. */
375096aeb2SMarc Bonnici #define FFA_WB_TYPE_S2RAM	0
385096aeb2SMarc Bonnici #define FFA_WB_TYPE_NOTS2RAM	1
395096aeb2SMarc Bonnici 
40*1a752245SMarc Bonnici #define FFA_PAGE_SIZE (4096)
41*1a752245SMarc Bonnici #define FFA_RXTX_PAGE_COUNT_MASK 0x1F
42*1a752245SMarc Bonnici 
43*1a752245SMarc Bonnici /* Ensure that the page size used by TF-A is 4k aligned. */
44*1a752245SMarc Bonnici CASSERT((PAGE_SIZE % FFA_PAGE_SIZE) == 0, assert_aligned_page_size);
45*1a752245SMarc Bonnici 
465096aeb2SMarc Bonnici /*
475096aeb2SMarc Bonnici  * Runtime states of an execution context as per the FF-A v1.1 specification.
485096aeb2SMarc Bonnici  */
495096aeb2SMarc Bonnici enum sp_runtime_states {
505096aeb2SMarc Bonnici 	RT_STATE_WAITING,
515096aeb2SMarc Bonnici 	RT_STATE_RUNNING,
525096aeb2SMarc Bonnici 	RT_STATE_PREEMPTED,
535096aeb2SMarc Bonnici 	RT_STATE_BLOCKED
545096aeb2SMarc Bonnici };
555096aeb2SMarc Bonnici 
565096aeb2SMarc Bonnici /*
575096aeb2SMarc Bonnici  * Runtime model of an execution context as per the FF-A v1.1 specification. Its
585096aeb2SMarc Bonnici  * value is valid only if the execution context is not in the waiting state.
595096aeb2SMarc Bonnici  */
605096aeb2SMarc Bonnici enum sp_runtime_model {
615096aeb2SMarc Bonnici 	RT_MODEL_DIR_REQ,
625096aeb2SMarc Bonnici 	RT_MODEL_RUN,
635096aeb2SMarc Bonnici 	RT_MODEL_INIT,
645096aeb2SMarc Bonnici 	RT_MODEL_INTR
655096aeb2SMarc Bonnici };
665096aeb2SMarc Bonnici 
675096aeb2SMarc Bonnici enum sp_runtime_el {
685096aeb2SMarc Bonnici 	EL1 = 0,
695096aeb2SMarc Bonnici 	S_EL0,
705096aeb2SMarc Bonnici 	S_EL1
715096aeb2SMarc Bonnici };
725096aeb2SMarc Bonnici 
735096aeb2SMarc Bonnici enum sp_execution_state {
745096aeb2SMarc Bonnici 	SP_STATE_AARCH64 = 0,
755096aeb2SMarc Bonnici 	SP_STATE_AARCH32
765096aeb2SMarc Bonnici };
775096aeb2SMarc Bonnici 
78e1df6008SMarc Bonnici enum mailbox_state {
79e1df6008SMarc Bonnici 	/* There is no message in the mailbox. */
80e1df6008SMarc Bonnici 	MAILBOX_STATE_EMPTY,
81e1df6008SMarc Bonnici 
82e1df6008SMarc Bonnici 	/* There is a message that has been populated in the mailbox. */
83e1df6008SMarc Bonnici 	MAILBOX_STATE_FULL,
84e1df6008SMarc Bonnici };
85e1df6008SMarc Bonnici 
86e1df6008SMarc Bonnici struct mailbox {
87e1df6008SMarc Bonnici 	enum mailbox_state state;
88e1df6008SMarc Bonnici 
89e1df6008SMarc Bonnici 	/* RX/TX Buffers. */
90e1df6008SMarc Bonnici 	void *rx_buffer;
91e1df6008SMarc Bonnici 	const void *tx_buffer;
92e1df6008SMarc Bonnici 
93e1df6008SMarc Bonnici 	/* Size of RX/TX Buffer. */
94e1df6008SMarc Bonnici 	uint32_t rxtx_page_count;
95e1df6008SMarc Bonnici 
96e1df6008SMarc Bonnici 	/* Lock access to mailbox. */
97e1df6008SMarc Bonnici 	spinlock_t lock;
98e1df6008SMarc Bonnici };
99e1df6008SMarc Bonnici 
1005096aeb2SMarc Bonnici /*
1015096aeb2SMarc Bonnici  * Execution context members for an SP. This is a bit like struct
1025096aeb2SMarc Bonnici  * vcpu in a hypervisor.
1035096aeb2SMarc Bonnici  */
1045096aeb2SMarc Bonnici struct sp_exec_ctx {
1055096aeb2SMarc Bonnici 	/*
1065096aeb2SMarc Bonnici 	 * Store the stack address to restore C runtime context from after
1075096aeb2SMarc Bonnici 	 * returning from a synchronous entry into the SP.
1085096aeb2SMarc Bonnici 	 */
1095096aeb2SMarc Bonnici 	uint64_t c_rt_ctx;
1105096aeb2SMarc Bonnici 
1115096aeb2SMarc Bonnici 	/* Space to maintain the architectural state of an SP. */
1125096aeb2SMarc Bonnici 	cpu_context_t cpu_ctx;
1135096aeb2SMarc Bonnici 
1145096aeb2SMarc Bonnici 	/* Track the current runtime state of the SP. */
1155096aeb2SMarc Bonnici 	enum sp_runtime_states rt_state;
1165096aeb2SMarc Bonnici 
1175096aeb2SMarc Bonnici 	/* Track the current runtime model of the SP. */
1185096aeb2SMarc Bonnici 	enum sp_runtime_model rt_model;
1195096aeb2SMarc Bonnici };
1205096aeb2SMarc Bonnici 
1215096aeb2SMarc Bonnici /*
1225096aeb2SMarc Bonnici  * Structure to describe the cumulative properties of an SP.
1235096aeb2SMarc Bonnici  */
1245096aeb2SMarc Bonnici struct secure_partition_desc {
1255096aeb2SMarc Bonnici 	/*
1265096aeb2SMarc Bonnici 	 * Execution contexts allocated to this endpoint. Ideally,
1275096aeb2SMarc Bonnici 	 * we need as many contexts as there are physical cpus only
1285096aeb2SMarc Bonnici 	 * for a S-EL1 SP which is MP-pinned.
1295096aeb2SMarc Bonnici 	 */
1305096aeb2SMarc Bonnici 	struct sp_exec_ctx ec[PLATFORM_CORE_COUNT];
1315096aeb2SMarc Bonnici 
1325096aeb2SMarc Bonnici 	/* ID of the Secure Partition. */
1335096aeb2SMarc Bonnici 	uint16_t sp_id;
1345096aeb2SMarc Bonnici 
1355096aeb2SMarc Bonnici 	/* Runtime EL. */
1365096aeb2SMarc Bonnici 	enum sp_runtime_el runtime_el;
1375096aeb2SMarc Bonnici 
1385096aeb2SMarc Bonnici 	/* Partition UUID. */
1395096aeb2SMarc Bonnici 	uint32_t uuid[4];
1405096aeb2SMarc Bonnici 
1415096aeb2SMarc Bonnici 	/* Partition Properties. */
1425096aeb2SMarc Bonnici 	uint32_t properties;
1435096aeb2SMarc Bonnici 
1445096aeb2SMarc Bonnici 	/* Supported FF-A Version. */
1455096aeb2SMarc Bonnici 	uint32_t ffa_version;
1465096aeb2SMarc Bonnici 
1475096aeb2SMarc Bonnici 	/* Execution State. */
1485096aeb2SMarc Bonnici 	enum sp_execution_state execution_state;
1495096aeb2SMarc Bonnici 
150e1df6008SMarc Bonnici 	/* Mailbox tracking. */
151e1df6008SMarc Bonnici 	struct mailbox mailbox;
152e1df6008SMarc Bonnici 
1535096aeb2SMarc Bonnici 	/* Secondary entrypoint. Only valid for a S-EL1 SP. */
1545096aeb2SMarc Bonnici 	uintptr_t secondary_ep;
1555096aeb2SMarc Bonnici };
1565096aeb2SMarc Bonnici 
1575096aeb2SMarc Bonnici /*
1585096aeb2SMarc Bonnici  * This define identifies the only SP that will be initialised and participate
1595096aeb2SMarc Bonnici  * in FF-A communication. The implementation leaves the door open for more SPs
1605096aeb2SMarc Bonnici  * to be managed in future but for now it is reasonable to assume that either a
1615096aeb2SMarc Bonnici  * single S-EL0 or a single S-EL1 SP will be supported. This define will be used
1625096aeb2SMarc Bonnici  * to identify which SP descriptor to initialise and manage during SP runtime.
1635096aeb2SMarc Bonnici  */
1645096aeb2SMarc Bonnici #define ACTIVE_SP_DESC_INDEX	0
1655096aeb2SMarc Bonnici 
1665096aeb2SMarc Bonnici /*
1675096aeb2SMarc Bonnici  * Structure to describe the cumulative properties of the Hypervisor and
1685096aeb2SMarc Bonnici  * NS-Endpoints.
1695096aeb2SMarc Bonnici  */
1705096aeb2SMarc Bonnici struct ns_endpoint_desc {
1715096aeb2SMarc Bonnici 	/*
1725096aeb2SMarc Bonnici 	 * ID of the NS-Endpoint or Hypervisor.
1735096aeb2SMarc Bonnici 	 */
1745096aeb2SMarc Bonnici 	uint16_t ns_ep_id;
1755096aeb2SMarc Bonnici 
1765096aeb2SMarc Bonnici 	/*
177e1df6008SMarc Bonnici 	 * Mailbox tracking.
178e1df6008SMarc Bonnici 	 */
179e1df6008SMarc Bonnici 	struct mailbox mailbox;
180e1df6008SMarc Bonnici 
181e1df6008SMarc Bonnici 	/*
182e1df6008SMarc Bonnici 	 * Supported FF-A Version
1835096aeb2SMarc Bonnici 	 */
1845096aeb2SMarc Bonnici 	uint32_t ffa_version;
1855096aeb2SMarc Bonnici };
1865096aeb2SMarc Bonnici 
1875096aeb2SMarc Bonnici /* Setup Function for different SP types. */
1885096aeb2SMarc Bonnici void spmc_sp_common_setup(struct secure_partition_desc *sp,
1895096aeb2SMarc Bonnici 			  entry_point_info_t *ep_info);
1905096aeb2SMarc Bonnici void spmc_el1_sp_setup(struct secure_partition_desc *sp,
1915096aeb2SMarc Bonnici 		       entry_point_info_t *ep_info);
1925096aeb2SMarc Bonnici void spmc_sp_common_ep_commit(struct secure_partition_desc *sp,
1935096aeb2SMarc Bonnici 			      entry_point_info_t *ep_info);
1945096aeb2SMarc Bonnici 
1955096aeb2SMarc Bonnici /*
1965096aeb2SMarc Bonnici  * Helper function to perform a synchronous entry into a SP.
1975096aeb2SMarc Bonnici  */
1985096aeb2SMarc Bonnici uint64_t spmc_sp_synchronous_entry(struct sp_exec_ctx *ec);
1995096aeb2SMarc Bonnici 
2005096aeb2SMarc Bonnici /*
2015096aeb2SMarc Bonnici  * Helper function to obtain the descriptor of the current SP on a physical cpu.
2025096aeb2SMarc Bonnici  */
2035096aeb2SMarc Bonnici struct secure_partition_desc *spmc_get_current_sp_ctx(void);
2045096aeb2SMarc Bonnici 
2055096aeb2SMarc Bonnici /*
2065096aeb2SMarc Bonnici  * Helper function to obtain the execution context of an SP on a
2075096aeb2SMarc Bonnici  * physical cpu.
2085096aeb2SMarc Bonnici  */
2095096aeb2SMarc Bonnici struct sp_exec_ctx *spmc_get_sp_ec(struct secure_partition_desc *sp);
2105096aeb2SMarc Bonnici 
2115096aeb2SMarc Bonnici /*
2125096aeb2SMarc Bonnici  * Helper function to obtain the index of the execution context of an SP on a
2135096aeb2SMarc Bonnici  * physical cpu.
2145096aeb2SMarc Bonnici  */
2155096aeb2SMarc Bonnici unsigned int get_ec_index(struct secure_partition_desc *sp);
2165096aeb2SMarc Bonnici 
2175096aeb2SMarc Bonnici uint64_t spmc_ffa_error_return(void *handle, int error_code);
2185096aeb2SMarc Bonnici 
2195096aeb2SMarc Bonnici /*
2205096aeb2SMarc Bonnici  * Ensure a partition ID does not clash and follows the secure world convention.
2215096aeb2SMarc Bonnici  */
2225096aeb2SMarc Bonnici bool is_ffa_secure_id_valid(uint16_t partition_id);
2235096aeb2SMarc Bonnici 
2247affa25cSMarc Bonnici /*
2257affa25cSMarc Bonnici  * Helper function to obtain the array storing the EL3
2267affa25cSMarc Bonnici  * Logical Partition descriptors.
2277affa25cSMarc Bonnici  */
2287affa25cSMarc Bonnici struct el3_lp_desc *get_el3_lp_array(void);
2297affa25cSMarc Bonnici 
230f16b6ee3SMarc Bonnici /*
231f16b6ee3SMarc Bonnici  * Helper function to obtain the RX/TX buffer pair descriptor of the Hypervisor
232f16b6ee3SMarc Bonnici  * or OS kernel in the normal world or the last SP that was run.
233f16b6ee3SMarc Bonnici  */
234f16b6ee3SMarc Bonnici struct mailbox *spmc_get_mbox_desc(bool secure_origin);
235f16b6ee3SMarc Bonnici 
2365096aeb2SMarc Bonnici #endif /* SPMC_H */
237