2 * Main file supporting the SEC Phase on ARM Platforms
4 * Copyright (c) 2011-2012, ARM Limited. All rights reserved.
6 * This program and the accompanying materials
7 * are licensed and made available under the terms and conditions of the BSD License
8 * which accompanies this distribution. The full text of the license may be found at
9 * http://opensource.org/licenses/bsd-license.php
11 * THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
16 #include <Library/ArmTrustedMonitorLib.h>
17 #include <Library/DebugAgentLib.h>
18 #include <Library/PrintLib.h>
19 #include <Library/BaseMemoryLib.h>
20 #include <Library/SerialPortLib.h>
21 #include <Library/ArmGicLib.h>
22 #include <Library/ArmCpuLib.h>
24 #include "SecInternal.h"
26 #define SerialPrint(txt) SerialPortWrite ((UINT8*)txt, AsciiStrLen(txt)+1);
37 // Invalidate the data cache. Doesn't have to do the Data cache clean.
38 ArmInvalidateDataCache();
40 // Invalidate Instruction Cache
41 ArmInvalidateInstructionCache();
43 // Invalidate I & D TLBs
44 ArmInvalidateInstructionAndDataTlb();
46 // CPU specific settings
49 // Enable Floating Point Coprocessor if supported by the platform
50 if (FixedPcdGet32 (PcdVFPEnabled
)) {
54 // Primary CPU clears out the SCU tag RAMs, secondaries wait
55 if (IS_PRIMARY_CORE(MpId
)) {
57 // Signal for the initial memory is configured (event: BOOT_MEM_INIT)
61 // SEC phase needs to run library constructors by hand. This assumes we are linked against the SerialLib
62 // In non SEC modules the init call is in autogenerated code.
63 SerialPortInitialize ();
66 if (FixedPcdGetBool (PcdTrustzoneSupport
)) {
67 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Secure firmware (version %s built at %a on %a)\n\r",
68 (CHAR16
*)PcdGetPtr(PcdFirmwareVersionString
), __TIME__
, __DATE__
);
70 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Boot firmware (version %s built at %a on %a)\n\r",
71 (CHAR16
*)PcdGetPtr(PcdFirmwareVersionString
), __TIME__
, __DATE__
);
73 SerialPortWrite ((UINT8
*) Buffer
, CharCount
);
75 // Initialize the Debug Agent for Source Level Debugging
76 InitializeDebugAgent (DEBUG_AGENT_INIT_PREMEM_SEC
, NULL
, NULL
);
77 SaveAndSetDebugTimerInterrupt (TRUE
);
79 // Now we've got UART, make the check:
80 // - The Vector table must be 32-byte aligned
81 ASSERT(((UINT32
)SecVectorTable
& ((1 << 5)-1)) == 0);
83 // Enable the GIC distributor and CPU Interface
84 // - no other Interrupts are enabled, doesn't have to worry about the priority.
85 // - all the cores are in secure state, use secure SGI's
86 ArmGicEnableDistributor (PcdGet32(PcdGicDistributorBase
));
87 ArmGicEnableInterruptInterface (PcdGet32(PcdGicInterruptInterfaceBase
));
89 // Enable the GIC CPU Interface
90 ArmGicEnableInterruptInterface (PcdGet32(PcdGicInterruptInterfaceBase
));
93 // Enable Full Access to CoProcessors
94 ArmWriteCpacr (CPACR_CP_FULL_ACCESS
);
96 if (IS_PRIMARY_CORE(MpId
)) {
97 // Initialize peripherals that must be done at the early stage
98 // Example: Some L2x0 controllers must be initialized in Secure World
99 ArmPlatformSecInitialize ();
101 // If we skip the PEI Core we could want to initialize the DRAM in the SEC phase.
102 // If we are in standalone, we need the initialization to copy the UEFI firmware into DRAM
103 if (FeaturePcdGet (PcdSystemMemoryInitializeInSec
)) {
104 // Initialize system memory (DRAM)
105 ArmPlatformInitializeSystemMemory ();
109 // Test if Trustzone is supported on this platform
110 if (FixedPcdGetBool (PcdTrustzoneSupport
)) {
112 // Setup SMP in Non Secure world
113 ArmCpuSetupSmpNonSecure (GET_CORE_ID(MpId
));
116 // Either we use the Secure Stacks for Secure Monitor (in this case (Base == 0) && (Size == 0))
117 // Or we use separate Secure Monitor stacks (but (Base != 0) && (Size != 0))
118 ASSERT (((PcdGet32(PcdCPUCoresSecMonStackBase
) == 0) && (PcdGet32(PcdCPUCoreSecMonStackSize
) == 0)) ||
119 ((PcdGet32(PcdCPUCoresSecMonStackBase
) != 0) && (PcdGet32(PcdCPUCoreSecMonStackSize
) != 0)));
121 // Enter Monitor Mode
122 enter_monitor_mode ((UINTN
)TrustedWorldInitialization
, MpId
, (VOID
*)(PcdGet32(PcdCPUCoresSecMonStackBase
) + (PcdGet32(PcdCPUCoreSecMonStackSize
) * (GET_CORE_POS(MpId
) + 1))));
124 if (IS_PRIMARY_CORE(MpId
)) {
125 SerialPrint ("Trust Zone Configuration is disabled\n\r");
128 // With Trustzone support the transition from Sec to Normal world is done by return_from_exception().
129 // If we want to keep this function call we need to ensure the SVC's SPSR point to the same Program
130 // Status Register as the the current one (CPSR).
131 copy_cpsr_into_spsr ();
133 // Call the Platform specific function to execute additional actions if required
134 JumpAddress
= PcdGet32 (PcdFvBaseAddress
);
135 ArmPlatformSecExtraAction (MpId
, &JumpAddress
);
137 NonTrustedWorldTransition (MpId
, JumpAddress
);
139 ASSERT (0); // We must never return from the above function
143 TrustedWorldInitialization (
149 //-------------------- Monitor Mode ---------------------
151 // Set up Monitor World (Vector Table, etc)
152 ArmSecureMonitorWorldInitialize ();
154 // Transfer the interrupt to Non-secure World
155 ArmGicSetupNonSecure (MpId
, PcdGet32(PcdGicDistributorBase
), PcdGet32(PcdGicInterruptInterfaceBase
));
157 // Initialize platform specific security policy
158 ArmPlatformTrustzoneInit (MpId
);
160 // Setup the Trustzone Chipsets
161 if (IS_PRIMARY_CORE(MpId
)) {
163 // Signal the secondary core the Security settings is done (event: EVENT_SECURE_INIT)
167 // The secondary cores need to wait until the Trustzone chipsets configuration is done
168 // before switching to Non Secure World
170 // Wait for the Primary Core to finish the initialization of the Secure World (event: EVENT_SECURE_INIT)
174 // Call the Platform specific function to execute additional actions if required
175 JumpAddress
= PcdGet32 (PcdFvBaseAddress
);
176 ArmPlatformSecExtraAction (MpId
, &JumpAddress
);
178 // Write to CP15 Non-secure Access Control Register
179 ArmWriteNsacr (PcdGet32 (PcdArmNsacr
));
181 // CP15 Secure Configuration Register
182 ArmWriteScr (PcdGet32 (PcdArmScr
));
184 NonTrustedWorldTransition (MpId
, JumpAddress
);
188 NonTrustedWorldTransition (
193 // If PcdArmNonSecModeTransition is defined then set this specific mode to CPSR before the transition
194 // By not set, the mode for Non Secure World is SVC
195 if (PcdGet32 (PcdArmNonSecModeTransition
) != 0) {
196 set_non_secure_mode ((ARM_PROCESSOR_MODE
)PcdGet32 (PcdArmNonSecModeTransition
));
199 return_from_exception (JumpAddress
);
200 //-------------------- Non Secure Mode ---------------------
202 // PEI Core should always load and never return
207 SecCommonExceptionEntry (
217 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Reset Exception at 0x%X\n\r",LR
);
220 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Undefined Exception at 0x%X\n\r",LR
);
223 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"SWI Exception at 0x%X\n\r",LR
);
226 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"PrefetchAbort Exception at 0x%X\n\r",LR
);
229 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"DataAbort Exception at 0x%X\n\r",LR
);
232 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Reserved Exception at 0x%X\n\r",LR
);
235 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"IRQ Exception at 0x%X\n\r",LR
);
238 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"FIQ Exception at 0x%X\n\r",LR
);
241 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Unknown Exception at 0x%X\n\r",LR
);
244 SerialPortWrite ((UINT8
*) Buffer
, CharCount
);