mirror of
https://github.com/brain-hackers/u-boot-brain
synced 2024-06-09 15:26:03 +09:00
65e25bea59
In the spirit of using the same base name for all of these related macros, rename this to have the operation at the end. This is not widely used so the impact is fairly small. Signed-off-by: Simon Glass <sjg@chromium.org>
540 lines
12 KiB
C
540 lines
12 KiB
C
// SPDX-License-Identifier: GPL-2.0+
|
|
/*
|
|
* Copyright (C) 2018, STMicroelectronics - All Rights Reserved
|
|
*/
|
|
|
|
#include <common.h>
|
|
#include <dm.h>
|
|
#include <log.h>
|
|
#include <misc.h>
|
|
#include <asm/io.h>
|
|
#include <asm/arch/bsec.h>
|
|
#include <asm/arch/stm32mp1_smc.h>
|
|
#include <linux/arm-smccc.h>
|
|
#include <linux/iopoll.h>
|
|
|
|
#define BSEC_OTP_MAX_VALUE 95
|
|
#define BSEC_TIMEOUT_US 10000
|
|
|
|
/* BSEC REGISTER OFFSET (base relative) */
|
|
#define BSEC_OTP_CONF_OFF 0x000
|
|
#define BSEC_OTP_CTRL_OFF 0x004
|
|
#define BSEC_OTP_WRDATA_OFF 0x008
|
|
#define BSEC_OTP_STATUS_OFF 0x00C
|
|
#define BSEC_OTP_LOCK_OFF 0x010
|
|
#define BSEC_DENABLE_OFF 0x014
|
|
#define BSEC_DISTURBED_OFF 0x01C
|
|
#define BSEC_ERROR_OFF 0x034
|
|
#define BSEC_WRLOCK_OFF 0x04C /* OTP write permananet lock */
|
|
#define BSEC_SPLOCK_OFF 0x064 /* OTP write sticky lock */
|
|
#define BSEC_SWLOCK_OFF 0x07C /* shadow write sticky lock */
|
|
#define BSEC_SRLOCK_OFF 0x094 /* shadow read sticky lock */
|
|
#define BSEC_OTP_DATA_OFF 0x200
|
|
|
|
/* BSEC_CONFIGURATION Register MASK */
|
|
#define BSEC_CONF_POWER_UP 0x001
|
|
|
|
/* BSEC_CONTROL Register */
|
|
#define BSEC_READ 0x000
|
|
#define BSEC_WRITE 0x100
|
|
|
|
/* LOCK Register */
|
|
#define OTP_LOCK_MASK 0x1F
|
|
#define OTP_LOCK_BANK_SHIFT 0x05
|
|
#define OTP_LOCK_BIT_MASK 0x01
|
|
|
|
/* STATUS Register */
|
|
#define BSEC_MODE_BUSY_MASK 0x08
|
|
#define BSEC_MODE_PROGFAIL_MASK 0x10
|
|
#define BSEC_MODE_PWR_MASK 0x20
|
|
|
|
/* DENABLE Register */
|
|
#define BSEC_DENABLE_DBGSWENABLE BIT(10)
|
|
|
|
/*
|
|
* OTP Lock services definition
|
|
* Value must corresponding to the bit number in the register
|
|
*/
|
|
#define BSEC_LOCK_PROGRAM 0x04
|
|
|
|
/**
|
|
* bsec_lock() - manage lock for each type SR/SP/SW
|
|
* @address: address of bsec IP register
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* Return: true if locked else false
|
|
*/
|
|
static bool bsec_read_lock(u32 address, u32 otp)
|
|
{
|
|
u32 bit;
|
|
u32 bank;
|
|
|
|
bit = 1 << (otp & OTP_LOCK_MASK);
|
|
bank = ((otp >> OTP_LOCK_BANK_SHIFT) & OTP_LOCK_MASK) * sizeof(u32);
|
|
|
|
return !!(readl(address + bank) & bit);
|
|
}
|
|
|
|
/**
|
|
* bsec_check_error() - Check status of one otp
|
|
* @base: base address of bsec IP
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* Return: 0 if no error, -EAGAIN or -ENOTSUPP
|
|
*/
|
|
static u32 bsec_check_error(u32 base, u32 otp)
|
|
{
|
|
u32 bit;
|
|
u32 bank;
|
|
|
|
bit = 1 << (otp & OTP_LOCK_MASK);
|
|
bank = ((otp >> OTP_LOCK_BANK_SHIFT) & OTP_LOCK_MASK) * sizeof(u32);
|
|
|
|
if (readl(base + BSEC_DISTURBED_OFF + bank) & bit)
|
|
return -EAGAIN;
|
|
else if (readl(base + BSEC_ERROR_OFF + bank) & bit)
|
|
return -ENOTSUPP;
|
|
|
|
return 0;
|
|
}
|
|
|
|
/**
|
|
* bsec_read_SR_lock() - read SR lock (Shadowing)
|
|
* @base: base address of bsec IP
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* Return: true if locked else false
|
|
*/
|
|
static bool bsec_read_SR_lock(u32 base, u32 otp)
|
|
{
|
|
return bsec_read_lock(base + BSEC_SRLOCK_OFF, otp);
|
|
}
|
|
|
|
/**
|
|
* bsec_read_SP_lock() - read SP lock (program Lock)
|
|
* @base: base address of bsec IP
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* Return: true if locked else false
|
|
*/
|
|
static bool bsec_read_SP_lock(u32 base, u32 otp)
|
|
{
|
|
return bsec_read_lock(base + BSEC_SPLOCK_OFF, otp);
|
|
}
|
|
|
|
/**
|
|
* bsec_SW_lock() - manage SW lock (Write in Shadow)
|
|
* @base: base address of bsec IP
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* Return: true if locked else false
|
|
*/
|
|
static bool bsec_read_SW_lock(u32 base, u32 otp)
|
|
{
|
|
return bsec_read_lock(base + BSEC_SWLOCK_OFF, otp);
|
|
}
|
|
|
|
/**
|
|
* bsec_power_safmem() - Activate or deactivate safmem power
|
|
* @base: base address of bsec IP
|
|
* @power: true to power up , false to power down
|
|
* Return: 0 if succeed
|
|
*/
|
|
static int bsec_power_safmem(u32 base, bool power)
|
|
{
|
|
u32 val;
|
|
u32 mask;
|
|
|
|
if (power) {
|
|
setbits_le32(base + BSEC_OTP_CONF_OFF, BSEC_CONF_POWER_UP);
|
|
mask = BSEC_MODE_PWR_MASK;
|
|
} else {
|
|
clrbits_le32(base + BSEC_OTP_CONF_OFF, BSEC_CONF_POWER_UP);
|
|
mask = 0;
|
|
}
|
|
|
|
/* waiting loop */
|
|
return readl_poll_timeout(base + BSEC_OTP_STATUS_OFF,
|
|
val, (val & BSEC_MODE_PWR_MASK) == mask,
|
|
BSEC_TIMEOUT_US);
|
|
}
|
|
|
|
/**
|
|
* bsec_shadow_register() - copy safmen otp to bsec data
|
|
* @base: base address of bsec IP
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* Return: 0 if no error
|
|
*/
|
|
static int bsec_shadow_register(u32 base, u32 otp)
|
|
{
|
|
u32 val;
|
|
int ret;
|
|
bool power_up = false;
|
|
|
|
/* check if shadowing of otp is locked */
|
|
if (bsec_read_SR_lock(base, otp))
|
|
pr_debug("bsec : OTP %d is locked and refreshed with 0\n", otp);
|
|
|
|
/* check if safemem is power up */
|
|
val = readl(base + BSEC_OTP_STATUS_OFF);
|
|
if (!(val & BSEC_MODE_PWR_MASK)) {
|
|
ret = bsec_power_safmem(base, true);
|
|
if (ret)
|
|
return ret;
|
|
power_up = true;
|
|
}
|
|
/* set BSEC_OTP_CTRL_OFF with the otp value*/
|
|
writel(otp | BSEC_READ, base + BSEC_OTP_CTRL_OFF);
|
|
|
|
/* check otp status*/
|
|
ret = readl_poll_timeout(base + BSEC_OTP_STATUS_OFF,
|
|
val, (val & BSEC_MODE_BUSY_MASK) == 0,
|
|
BSEC_TIMEOUT_US);
|
|
if (ret)
|
|
return ret;
|
|
|
|
ret = bsec_check_error(base, otp);
|
|
|
|
if (power_up)
|
|
bsec_power_safmem(base, false);
|
|
|
|
return ret;
|
|
}
|
|
|
|
/**
|
|
* bsec_read_shadow() - read an otp data value from shadow
|
|
* @base: base address of bsec IP
|
|
* @val: read value
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* Return: 0 if no error
|
|
*/
|
|
static int bsec_read_shadow(u32 base, u32 *val, u32 otp)
|
|
{
|
|
*val = readl(base + BSEC_OTP_DATA_OFF + otp * sizeof(u32));
|
|
|
|
return bsec_check_error(base, otp);
|
|
}
|
|
|
|
/**
|
|
* bsec_write_shadow() - write value in BSEC data register in shadow
|
|
* @base: base address of bsec IP
|
|
* @val: value to write
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* Return: 0 if no error
|
|
*/
|
|
static int bsec_write_shadow(u32 base, u32 val, u32 otp)
|
|
{
|
|
/* check if programming of otp is locked */
|
|
if (bsec_read_SW_lock(base, otp))
|
|
pr_debug("bsec : OTP %d is lock, write will be ignore\n", otp);
|
|
|
|
writel(val, base + BSEC_OTP_DATA_OFF + otp * sizeof(u32));
|
|
|
|
return bsec_check_error(base, otp);
|
|
}
|
|
|
|
/**
|
|
* bsec_program_otp() - program a bit in SAFMEM
|
|
* @base: base address of bsec IP
|
|
* @val: value to program
|
|
* @otp: otp number (0 - BSEC_OTP_MAX_VALUE)
|
|
* after the function the otp data is not refreshed in shadow
|
|
* Return: 0 if no error
|
|
*/
|
|
static int bsec_program_otp(long base, u32 val, u32 otp)
|
|
{
|
|
u32 ret;
|
|
bool power_up = false;
|
|
|
|
if (bsec_read_SP_lock(base, otp))
|
|
pr_debug("bsec : OTP %d locked, prog will be ignore\n", otp);
|
|
|
|
if (readl(base + BSEC_OTP_LOCK_OFF) & (1 << BSEC_LOCK_PROGRAM))
|
|
pr_debug("bsec : Global lock, prog will be ignore\n");
|
|
|
|
/* check if safemem is power up */
|
|
if (!(readl(base + BSEC_OTP_STATUS_OFF) & BSEC_MODE_PWR_MASK)) {
|
|
ret = bsec_power_safmem(base, true);
|
|
if (ret)
|
|
return ret;
|
|
|
|
power_up = true;
|
|
}
|
|
/* set value in write register*/
|
|
writel(val, base + BSEC_OTP_WRDATA_OFF);
|
|
|
|
/* set BSEC_OTP_CTRL_OFF with the otp value */
|
|
writel(otp | BSEC_WRITE, base + BSEC_OTP_CTRL_OFF);
|
|
|
|
/* check otp status*/
|
|
ret = readl_poll_timeout(base + BSEC_OTP_STATUS_OFF,
|
|
val, (val & BSEC_MODE_BUSY_MASK) == 0,
|
|
BSEC_TIMEOUT_US);
|
|
if (ret)
|
|
return ret;
|
|
|
|
if (val & BSEC_MODE_PROGFAIL_MASK)
|
|
ret = -EACCES;
|
|
else
|
|
ret = bsec_check_error(base, otp);
|
|
|
|
if (power_up)
|
|
bsec_power_safmem(base, false);
|
|
|
|
return ret;
|
|
}
|
|
|
|
/* BSEC MISC driver *******************************************************/
|
|
struct stm32mp_bsec_plat {
|
|
u32 base;
|
|
};
|
|
|
|
static int stm32mp_bsec_read_otp(struct udevice *dev, u32 *val, u32 otp)
|
|
{
|
|
struct stm32mp_bsec_plat *plat;
|
|
u32 tmp_data = 0;
|
|
int ret;
|
|
|
|
if (IS_ENABLED(CONFIG_TFABOOT))
|
|
return stm32_smc(STM32_SMC_BSEC,
|
|
STM32_SMC_READ_OTP,
|
|
otp, 0, val);
|
|
|
|
plat = dev_get_plat(dev);
|
|
|
|
/* read current shadow value */
|
|
ret = bsec_read_shadow(plat->base, &tmp_data, otp);
|
|
if (ret)
|
|
return ret;
|
|
|
|
/* copy otp in shadow */
|
|
ret = bsec_shadow_register(plat->base, otp);
|
|
if (ret)
|
|
return ret;
|
|
|
|
ret = bsec_read_shadow(plat->base, val, otp);
|
|
if (ret)
|
|
return ret;
|
|
|
|
/* restore shadow value */
|
|
ret = bsec_write_shadow(plat->base, tmp_data, otp);
|
|
|
|
return ret;
|
|
}
|
|
|
|
static int stm32mp_bsec_read_shadow(struct udevice *dev, u32 *val, u32 otp)
|
|
{
|
|
struct stm32mp_bsec_plat *plat;
|
|
|
|
if (IS_ENABLED(CONFIG_TFABOOT))
|
|
return stm32_smc(STM32_SMC_BSEC,
|
|
STM32_SMC_READ_SHADOW,
|
|
otp, 0, val);
|
|
|
|
plat = dev_get_plat(dev);
|
|
|
|
return bsec_read_shadow(plat->base, val, otp);
|
|
}
|
|
|
|
static int stm32mp_bsec_read_lock(struct udevice *dev, u32 *val, u32 otp)
|
|
{
|
|
struct stm32mp_bsec_plat *plat = dev_get_plat(dev);
|
|
|
|
/* return OTP permanent write lock status */
|
|
*val = bsec_read_lock(plat->base + BSEC_WRLOCK_OFF, otp);
|
|
|
|
return 0;
|
|
}
|
|
|
|
static int stm32mp_bsec_write_otp(struct udevice *dev, u32 val, u32 otp)
|
|
{
|
|
struct stm32mp_bsec_plat *plat;
|
|
|
|
if (IS_ENABLED(CONFIG_TFABOOT))
|
|
return stm32_smc_exec(STM32_SMC_BSEC,
|
|
STM32_SMC_PROG_OTP,
|
|
otp, val);
|
|
|
|
plat = dev_get_plat(dev);
|
|
|
|
return bsec_program_otp(plat->base, val, otp);
|
|
|
|
}
|
|
|
|
static int stm32mp_bsec_write_shadow(struct udevice *dev, u32 val, u32 otp)
|
|
{
|
|
struct stm32mp_bsec_plat *plat;
|
|
|
|
if (IS_ENABLED(CONFIG_TFABOOT))
|
|
return stm32_smc_exec(STM32_SMC_BSEC,
|
|
STM32_SMC_WRITE_SHADOW,
|
|
otp, val);
|
|
|
|
plat = dev_get_plat(dev);
|
|
|
|
return bsec_write_shadow(plat->base, val, otp);
|
|
}
|
|
|
|
static int stm32mp_bsec_write_lock(struct udevice *dev, u32 val, u32 otp)
|
|
{
|
|
if (!IS_ENABLED(CONFIG_TFABOOT))
|
|
return -ENOTSUPP;
|
|
|
|
if (val == 1)
|
|
return stm32_smc_exec(STM32_SMC_BSEC,
|
|
STM32_SMC_WRLOCK_OTP,
|
|
otp, 0);
|
|
if (val == 0)
|
|
return 0; /* nothing to do */
|
|
|
|
return -EINVAL;
|
|
}
|
|
|
|
static int stm32mp_bsec_read(struct udevice *dev, int offset,
|
|
void *buf, int size)
|
|
{
|
|
int ret;
|
|
int i;
|
|
bool shadow = true, lock = false;
|
|
int nb_otp = size / sizeof(u32);
|
|
int otp;
|
|
unsigned int offs = offset;
|
|
|
|
if (offs >= STM32_BSEC_LOCK_OFFSET) {
|
|
offs -= STM32_BSEC_LOCK_OFFSET;
|
|
lock = true;
|
|
} else if (offs >= STM32_BSEC_OTP_OFFSET) {
|
|
offs -= STM32_BSEC_OTP_OFFSET;
|
|
shadow = false;
|
|
}
|
|
|
|
if ((offs % 4) || (size % 4))
|
|
return -EINVAL;
|
|
|
|
otp = offs / sizeof(u32);
|
|
|
|
for (i = otp; i < (otp + nb_otp) && i <= BSEC_OTP_MAX_VALUE; i++) {
|
|
u32 *addr = &((u32 *)buf)[i - otp];
|
|
|
|
if (lock)
|
|
ret = stm32mp_bsec_read_lock(dev, addr, i);
|
|
else if (shadow)
|
|
ret = stm32mp_bsec_read_shadow(dev, addr, i);
|
|
else
|
|
ret = stm32mp_bsec_read_otp(dev, addr, i);
|
|
|
|
if (ret)
|
|
break;
|
|
}
|
|
if (ret)
|
|
return ret;
|
|
else
|
|
return (i - otp) * 4;
|
|
}
|
|
|
|
static int stm32mp_bsec_write(struct udevice *dev, int offset,
|
|
const void *buf, int size)
|
|
{
|
|
int ret = 0;
|
|
int i;
|
|
bool shadow = true, lock = false;
|
|
int nb_otp = size / sizeof(u32);
|
|
int otp;
|
|
unsigned int offs = offset;
|
|
|
|
if (offs >= STM32_BSEC_LOCK_OFFSET) {
|
|
offs -= STM32_BSEC_LOCK_OFFSET;
|
|
lock = true;
|
|
} else if (offs >= STM32_BSEC_OTP_OFFSET) {
|
|
offs -= STM32_BSEC_OTP_OFFSET;
|
|
shadow = false;
|
|
}
|
|
|
|
if ((offs % 4) || (size % 4))
|
|
return -EINVAL;
|
|
|
|
otp = offs / sizeof(u32);
|
|
|
|
for (i = otp; i < otp + nb_otp && i <= BSEC_OTP_MAX_VALUE; i++) {
|
|
u32 *val = &((u32 *)buf)[i - otp];
|
|
|
|
if (lock)
|
|
ret = stm32mp_bsec_write_lock(dev, *val, i);
|
|
else if (shadow)
|
|
ret = stm32mp_bsec_write_shadow(dev, *val, i);
|
|
else
|
|
ret = stm32mp_bsec_write_otp(dev, *val, i);
|
|
if (ret)
|
|
break;
|
|
}
|
|
if (ret)
|
|
return ret;
|
|
else
|
|
return (i - otp) * 4;
|
|
}
|
|
|
|
static const struct misc_ops stm32mp_bsec_ops = {
|
|
.read = stm32mp_bsec_read,
|
|
.write = stm32mp_bsec_write,
|
|
};
|
|
|
|
static int stm32mp_bsec_of_to_plat(struct udevice *dev)
|
|
{
|
|
struct stm32mp_bsec_plat *plat = dev_get_plat(dev);
|
|
|
|
plat->base = (u32)dev_read_addr_ptr(dev);
|
|
|
|
return 0;
|
|
}
|
|
|
|
static int stm32mp_bsec_probe(struct udevice *dev)
|
|
{
|
|
int otp;
|
|
struct stm32mp_bsec_plat *plat;
|
|
|
|
/*
|
|
* update unlocked shadow for OTP cleared by the rom code
|
|
* only executed in U-Boot proper when TF-A is not used
|
|
*/
|
|
|
|
if (!IS_ENABLED(CONFIG_TFABOOT) && !IS_ENABLED(CONFIG_SPL_BUILD)) {
|
|
plat = dev_get_plat(dev);
|
|
|
|
for (otp = 57; otp <= BSEC_OTP_MAX_VALUE; otp++)
|
|
if (!bsec_read_SR_lock(plat->base, otp))
|
|
bsec_shadow_register(plat->base, otp);
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
static const struct udevice_id stm32mp_bsec_ids[] = {
|
|
{ .compatible = "st,stm32mp15-bsec" },
|
|
{}
|
|
};
|
|
|
|
U_BOOT_DRIVER(stm32mp_bsec) = {
|
|
.name = "stm32mp_bsec",
|
|
.id = UCLASS_MISC,
|
|
.of_match = stm32mp_bsec_ids,
|
|
.of_to_plat = stm32mp_bsec_of_to_plat,
|
|
.plat_auto = sizeof(struct stm32mp_bsec_plat),
|
|
.ops = &stm32mp_bsec_ops,
|
|
.probe = stm32mp_bsec_probe,
|
|
};
|
|
|
|
bool bsec_dbgswenable(void)
|
|
{
|
|
struct udevice *dev;
|
|
struct stm32mp_bsec_plat *plat;
|
|
int ret;
|
|
|
|
ret = uclass_get_device_by_driver(UCLASS_MISC,
|
|
DM_DRIVER_GET(stm32mp_bsec), &dev);
|
|
if (ret || !dev) {
|
|
pr_debug("bsec driver not available\n");
|
|
return false;
|
|
}
|
|
|
|
plat = dev_get_plat(dev);
|
|
if (readl(plat->base + BSEC_DENABLE_OFF) & BSEC_DENABLE_DBGSWENABLE)
|
|
return true;
|
|
|
|
return false;
|
|
}
|