2 * Main file supporting the SEC Phase on ARM Platforms
4 * Copyright (c) 2011-2012, ARM Limited. All rights reserved.
6 * This program and the accompanying materials
7 * are licensed and made available under the terms and conditions of the BSD License
8 * which accompanies this distribution. The full text of the license may be found at
9 * http://opensource.org/licenses/bsd-license.php
11 * THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
16 #include <Library/ArmTrustedMonitorLib.h>
17 #include <Library/DebugAgentLib.h>
18 #include <Library/PrintLib.h>
19 #include <Library/BaseMemoryLib.h>
20 #include <Library/SerialPortLib.h>
21 #include <Library/ArmGicLib.h>
22 #include <Library/ArmCpuLib.h>
24 #include "SecInternal.h"
26 #define SerialPrint(txt) SerialPortWrite ((UINT8*)txt, AsciiStrLen(txt)+1);
37 // Invalidate the data cache. Doesn't have to do the Data cache clean.
38 ArmInvalidateDataCache();
40 // Invalidate Instruction Cache
41 ArmInvalidateInstructionCache();
43 // Invalidate I & D TLBs
44 ArmInvalidateInstructionAndDataTlb();
46 // CPU specific settings
49 // Enable Floating Point Coprocessor if supported by the platform
50 if (FixedPcdGet32 (PcdVFPEnabled
)) {
54 // Primary CPU clears out the SCU tag RAMs, secondaries wait
55 if (IS_PRIMARY_CORE(MpId
)) {
57 ArmCpuSynchronizeSignal (ARM_CPU_EVENT_BOOT_MEM_INIT
);
60 // SEC phase needs to run library constructors by hand. This assumes we are linked against the SerialLib
61 // In non SEC modules the init call is in autogenerated code.
62 SerialPortInitialize ();
65 if (FixedPcdGetBool (PcdTrustzoneSupport
)) {
66 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Secure firmware (version %s built at %a on %a)\n\r",
67 (CHAR16
*)PcdGetPtr(PcdFirmwareVersionString
), __TIME__
, __DATE__
);
69 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Boot firmware (version %s built at %a on %a)\n\r",
70 (CHAR16
*)PcdGetPtr(PcdFirmwareVersionString
), __TIME__
, __DATE__
);
72 SerialPortWrite ((UINT8
*) Buffer
, CharCount
);
74 // Initialize the Debug Agent for Source Level Debugging
75 InitializeDebugAgent (DEBUG_AGENT_INIT_PREMEM_SEC
, NULL
, NULL
);
76 SaveAndSetDebugTimerInterrupt (TRUE
);
78 // Now we've got UART, make the check:
79 // - The Vector table must be 32-byte aligned
80 ASSERT(((UINT32
)SecVectorTable
& ((1 << 5)-1)) == 0);
82 // Enable the GIC distributor and CPU Interface
83 // - no other Interrupts are enabled, doesn't have to worry about the priority.
84 // - all the cores are in secure state, use secure SGI's
85 ArmGicEnableDistributor (PcdGet32(PcdGicDistributorBase
));
86 ArmGicEnableInterruptInterface (PcdGet32(PcdGicInterruptInterfaceBase
));
88 // Enable the GIC CPU Interface
89 ArmGicEnableInterruptInterface (PcdGet32(PcdGicInterruptInterfaceBase
));
92 // Enable Full Access to CoProcessors
93 ArmWriteCPACR (CPACR_CP_FULL_ACCESS
);
95 if (IS_PRIMARY_CORE(MpId
)) {
96 // Initialize peripherals that must be done at the early stage
97 // Example: Some L2x0 controllers must be initialized in Secure World
98 ArmPlatformSecInitialize ();
100 // If we skip the PEI Core we could want to initialize the DRAM in the SEC phase.
101 // If we are in standalone, we need the initialization to copy the UEFI firmware into DRAM
102 if (FeaturePcdGet (PcdSystemMemoryInitializeInSec
)) {
103 // Initialize system memory (DRAM)
104 ArmPlatformInitializeSystemMemory ();
108 // Test if Trustzone is supported on this platform
109 if (FixedPcdGetBool (PcdTrustzoneSupport
)) {
111 // Setup SMP in Non Secure world
112 ArmCpuSetupSmpNonSecure (GET_CORE_ID(MpId
));
115 // Either we use the Secure Stacks for Secure Monitor (in this case (Base == 0) && (Size == 0))
116 // Or we use separate Secure Monitor stacks (but (Base != 0) && (Size != 0))
117 ASSERT (((PcdGet32(PcdCPUCoresSecMonStackBase
) == 0) && (PcdGet32(PcdCPUCoreSecMonStackSize
) == 0)) ||
118 ((PcdGet32(PcdCPUCoresSecMonStackBase
) != 0) && (PcdGet32(PcdCPUCoreSecMonStackSize
) != 0)));
120 // Enter Monitor Mode
121 enter_monitor_mode ((UINTN
)TrustedWorldInitialization
, MpId
, (VOID
*)(PcdGet32(PcdCPUCoresSecMonStackBase
) + (PcdGet32(PcdCPUCoreSecMonStackSize
) * (GET_CORE_POS(MpId
) + 1))));
123 if (IS_PRIMARY_CORE(MpId
)) {
124 SerialPrint ("Trust Zone Configuration is disabled\n\r");
127 // With Trustzone support the transition from Sec to Normal world is done by return_from_exception().
128 // If we want to keep this function call we need to ensure the SVC's SPSR point to the same Program
129 // Status Register as the the current one (CPSR).
130 copy_cpsr_into_spsr ();
132 // Call the Platform specific function to execute additional actions if required
133 JumpAddress
= PcdGet32 (PcdFvBaseAddress
);
134 ArmPlatformSecExtraAction (MpId
, &JumpAddress
);
136 NonTrustedWorldTransition (MpId
, JumpAddress
);
138 ASSERT (0); // We must never return from the above function
142 TrustedWorldInitialization (
148 //-------------------- Monitor Mode ---------------------
150 // Set up Monitor World (Vector Table, etc)
151 ArmSecureMonitorWorldInitialize ();
153 // Transfer the interrupt to Non-secure World
154 ArmGicSetupNonSecure (MpId
, PcdGet32(PcdGicDistributorBase
), PcdGet32(PcdGicInterruptInterfaceBase
));
156 // Initialize platform specific security policy
157 ArmPlatformTrustzoneInit (MpId
);
159 // Setup the Trustzone Chipsets
160 if (IS_PRIMARY_CORE(MpId
)) {
162 // Waiting for the Primary Core to have finished to initialize the Secure World
163 ArmCpuSynchronizeSignal (ARM_CPU_EVENT_SECURE_INIT
);
166 // The secondary cores need to wait until the Trustzone chipsets configuration is done
167 // before switching to Non Secure World
169 // Waiting for the Primary Core to have finished to initialize the Secure World
170 ArmCpuSynchronizeWait (ARM_CPU_EVENT_SECURE_INIT
);
173 // Call the Platform specific fucntion to execute additional actions if required
174 JumpAddress
= PcdGet32 (PcdFvBaseAddress
);
175 ArmPlatformSecExtraAction (MpId
, &JumpAddress
);
177 // Write to CP15 Non-secure Access Control Register
178 ArmWriteNsacr (PcdGet32 (PcdArmNsacr
));
180 // CP15 Secure Configuration Register
181 ArmWriteScr (PcdGet32 (PcdArmScr
));
183 NonTrustedWorldTransition (MpId
, JumpAddress
);
187 NonTrustedWorldTransition (
192 // If PcdArmNonSecModeTransition is defined then set this specific mode to CPSR before the transition
193 // By not set, the mode for Non Secure World is SVC
194 if (PcdGet32 (PcdArmNonSecModeTransition
) != 0) {
195 set_non_secure_mode ((ARM_PROCESSOR_MODE
)PcdGet32 (PcdArmNonSecModeTransition
));
198 return_from_exception (JumpAddress
);
199 //-------------------- Non Secure Mode ---------------------
201 // PEI Core should always load and never return
206 SecCommonExceptionEntry (
216 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Reset Exception at 0x%X\n\r",LR
);
219 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Undefined Exception at 0x%X\n\r",LR
);
222 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"SWI Exception at 0x%X\n\r",LR
);
225 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"PrefetchAbort Exception at 0x%X\n\r",LR
);
228 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"DataAbort Exception at 0x%X\n\r",LR
);
231 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Reserved Exception at 0x%X\n\r",LR
);
234 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"IRQ Exception at 0x%X\n\r",LR
);
237 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"FIQ Exception at 0x%X\n\r",LR
);
240 CharCount
= AsciiSPrint (Buffer
,sizeof (Buffer
),"Unknown Exception at 0x%X\n\r",LR
);
243 SerialPortWrite ((UINT8
*) Buffer
, CharCount
);