Google Git
Sign in
third-party-mirror / u-boot / 46a8da2338f5ca2afe2fd315c1a0722c99baa9df / . / drivers / tee / optee / core.c
blob: 0116c7b4ea503686b170d8b0069ed8ad7b79a7b7 [file] [log] [blame]
// SPDX-License-Identifier: GPL-2.0+
/*
* Copyright (c) 2018 Linaro Limited
*/
#include <common.h>
#include <dm.h>
#include <log.h>
#include <tee.h>
#include <linux/arm-smccc.h>
#include <linux/io.h>
#include "optee_smc.h"
#include "optee_msg.h"
#include "optee_private.h"
/*
* Default block size of the managed shared memory pool.
*
* The value is somewhat arbitrary but should be at least double the page size
* because some driver data structures need to be aligned on page boundaries.
*
* For example, with BL32 running on astro and sherlock, the page size is 4K,
* the size of the predefined shared memory pool is 4MB. So a default block size
* of 16K gives us 4MB/16K = 256 maximum in-flight buffers with plenty of wiggle
* room for alignment.
*/
#define SHARED_MEMORY_BLOCK_SIZE (16 * 1024)
#define PAGELIST_ENTRIES_PER_PAGE \
((OPTEE_MSG_NONCONTIG_PAGE_SIZE / sizeof(u64)) - 1)
typedef void (optee_invoke_fn)(unsigned long, unsigned long, unsigned long,
unsigned long, unsigned long, unsigned long,
unsigned long, unsigned long,
struct arm_smccc_res *);
struct optee_pdata {
optee_invoke_fn *invoke_fn;
};
struct rpc_param {
u32 a0;
u32 a1;
u32 a2;
u32 a3;
u32 a4;
u32 a5;
u32 a6;
u32 a7;
};
/**
* reg_pair_to_ptr() - Make a pointer of 2 32-bit values
* @reg0: High bits of the pointer
* @reg1: Low bits of the pointer
*
* Returns the combined result, note that if a pointer is 32-bit wide @reg0
* will be discarded.
*/
static void *reg_pair_to_ptr(u32 reg0, u32 reg1)
{
return (void *)(ulong)(((u64)reg0 << 32) | reg1);
}
/**
* reg_pair_from_64() - Split a 64-bit value into two 32-bit values
* @reg0: High bits of @val
* @reg1: Low bits of @val
* @val: The value to split
*/
static void reg_pair_from_64(u32 *reg0, u32 *reg1, u64 val)
{
*reg0 = val >> 32;
*reg1 = val;
}
static void *optee_shm_allocate(struct udevice *dev, size_t align, size_t bytes)
{
struct optee_private *priv = dev_get_priv(dev);
return memory_pool_allocate(priv->shm_pool, align, bytes);
}
static void optee_shm_free(struct udevice *dev, void *ptr)
{
struct optee_private *priv = dev_get_priv(dev);
memory_pool_deallocate(priv->shm_pool, ptr);
}
static void optee_get_version(struct udevice *dev,
struct tee_version_data *vers)
{
struct tee_version_data v = {
.gen_caps = TEE_GEN_CAP_GP | TEE_GEN_CAP_REG_MEM,
};
*vers = v;
}
static int get_msg_arg(struct udevice *dev, uint num_params,
struct tee_shm **shmp, struct optee_msg_arg **msg_arg)
{
int rc;
struct optee_msg_arg *ma;
rc = __tee_shm_add(dev, OPTEE_MSG_NONCONTIG_PAGE_SIZE, NULL,
OPTEE_MSG_GET_ARG_SIZE(num_params), TEE_SHM_ALLOC,
shmp);
if (rc)
return rc;
ma = (*shmp)->addr;
memset(ma, 0, OPTEE_MSG_GET_ARG_SIZE(num_params));
ma->num_params = num_params;
*msg_arg = ma;
return 0;
}
static int to_msg_param(struct optee_msg_param *msg_params, uint num_params,
const struct tee_param *params)
{
uint n;
for (n = 0; n < num_params; n++) {
const struct tee_param *p = params + n;
struct optee_msg_param *mp = msg_params + n;
switch (p->attr) {
case TEE_PARAM_ATTR_TYPE_NONE:
mp->attr = OPTEE_MSG_ATTR_TYPE_NONE;
memset(&mp->u, 0, sizeof(mp->u));
break;
case TEE_PARAM_ATTR_TYPE_VALUE_INPUT:
case TEE_PARAM_ATTR_TYPE_VALUE_OUTPUT:
case TEE_PARAM_ATTR_TYPE_VALUE_INOUT:
mp->attr = OPTEE_MSG_ATTR_TYPE_VALUE_INPUT + p->attr -
TEE_PARAM_ATTR_TYPE_VALUE_INPUT;
mp->u.value.a = p->u.value.a;
mp->u.value.b = p->u.value.b;
mp->u.value.c = p->u.value.c;
break;
/*
* All memory-reference parameters going into TEE must be translated
* to OPTEE_MSG_ATTR_TYPE_TMEM_* types because current Amlogic BL32
* firmware is based on OP-TEE v2.4 and do not support dynamically
* registered (client owned) memory references.
*/
case TEE_PARAM_ATTR_TYPE_MEMREF_INPUT:
case TEE_PARAM_ATTR_TYPE_MEMREF_OUTPUT:
case TEE_PARAM_ATTR_TYPE_MEMREF_INOUT:
mp->attr = OPTEE_MSG_ATTR_TYPE_TMEM_INPUT + p->attr -
TEE_PARAM_ATTR_TYPE_MEMREF_INPUT;
mp->u.tmem.buf_ptr = (u64)(p->u.memref.shm->addr);
mp->u.tmem.size = p->u.memref.size;
mp->u.tmem.shm_ref = (ulong)p->u.memref.shm;
break;
default:
return -EINVAL;
}
}
return 0;
}
static int from_msg_param(struct tee_param *params, uint num_params,
const struct optee_msg_param *msg_params)
{
uint n;
for (n = 0; n < num_params; n++) {
struct tee_param *p = params + n;
const struct optee_msg_param *mp = msg_params + n;
u32 attr = mp->attr & OPTEE_MSG_ATTR_TYPE_MASK;
switch (attr) {
case OPTEE_MSG_ATTR_TYPE_NONE:
p->attr = TEE_PARAM_ATTR_TYPE_NONE;
memset(&p->u, 0, sizeof(p->u));
break;
case OPTEE_MSG_ATTR_TYPE_VALUE_INPUT:
case OPTEE_MSG_ATTR_TYPE_VALUE_OUTPUT:
case OPTEE_MSG_ATTR_TYPE_VALUE_INOUT:
p->attr = TEE_PARAM_ATTR_TYPE_VALUE_INPUT + attr -
OPTEE_MSG_ATTR_TYPE_VALUE_INPUT;
p->u.value.a = mp->u.value.a;
p->u.value.b = mp->u.value.b;
p->u.value.c = mp->u.value.c;
break;
case OPTEE_MSG_ATTR_TYPE_TMEM_INPUT:
case OPTEE_MSG_ATTR_TYPE_TMEM_OUTPUT:
case OPTEE_MSG_ATTR_TYPE_TMEM_INOUT:
p->attr = TEE_PARAM_ATTR_TYPE_MEMREF_INPUT + attr -
OPTEE_MSG_ATTR_TYPE_TMEM_INPUT;
p->u.memref.shm = (struct tee_shm *)(ulong)mp->u.tmem.shm_ref;
p->u.memref.size = mp->u.tmem.size;
p->u.memref.shm_offs = 0;
break;
default:
return -EINVAL;
}
}
return 0;
}
static void handle_rpc(struct udevice *dev, struct rpc_param *param)
{
struct tee_shm *shm;
switch (OPTEE_SMC_RETURN_GET_RPC_FUNC(param->a0)) {
case OPTEE_SMC_RPC_FUNC_ALLOC:
if (!__tee_shm_add(dev, OPTEE_MSG_NONCONTIG_PAGE_SIZE, NULL,
param->a1, TEE_SHM_ALLOC | TEE_SHM_REGISTER,
&shm)) {
reg_pair_from_64(&param->a1, &param->a2,
virt_to_phys(shm->addr));
/* "cookie" */
reg_pair_from_64(&param->a4, &param->a5, (ulong)shm);
} else {
param->a1 = 0;
param->a2 = 0;
param->a4 = 0;
param->a5 = 0;
}
break;
case OPTEE_SMC_RPC_FUNC_FREE:
shm = reg_pair_to_ptr(param->a1, param->a2);
tee_shm_free(shm);
break;
case OPTEE_SMC_RPC_FUNC_FOREIGN_INTR:
break;
case OPTEE_SMC_RPC_FUNC_CMD:
shm = reg_pair_to_ptr(param->a1, param->a2);
optee_suppl_cmd(dev, shm);
break;
default:
break;
}
param->a0 = OPTEE_SMC_CALL_RETURN_FROM_RPC;
}
static u32 call_err_to_res(u32 call_err)
{
switch (call_err) {
case OPTEE_SMC_RETURN_OK:
return TEE_SUCCESS;
default:
return TEE_ERROR_BAD_PARAMETERS;
}
}
static u32 do_call_with_arg(struct udevice *dev, struct optee_msg_arg *arg)
{
struct optee_pdata *pdata = dev_get_platdata(dev);
struct rpc_param param = { .a0 = OPTEE_SMC_CALL_WITH_ARG };
reg_pair_from_64(&param.a1, &param.a2, virt_to_phys(arg));
while (true) {
struct arm_smccc_res res;
pdata->invoke_fn(param.a0, param.a1, param.a2, param.a3,
param.a4, param.a5, param.a6, param.a7, &res);
if (OPTEE_SMC_RETURN_IS_RPC(res.a0)) {
param.a0 = res.a0;
param.a1 = res.a1;
param.a2 = res.a2;
param.a3 = res.a3;
handle_rpc(dev, &param);
} else {
/*
* In case we've accessed RPMB to serve an RPC
* request we need to restore the previously
* selected partition as the caller may expect it
* to remain unchanged.
*/
optee_suppl_rpmb_release(dev);
return call_err_to_res(res.a0);
}
}
}
static int optee_close_session(struct udevice *dev, u32 session)
{
int rc;
struct tee_shm *shm;
struct optee_msg_arg *msg_arg;
rc = get_msg_arg(dev, 0, &shm, &msg_arg);
if (rc)
return rc;
msg_arg->cmd = OPTEE_MSG_CMD_CLOSE_SESSION;
msg_arg->session = session;
if (do_call_with_arg(dev, msg_arg) || msg_arg->ret)
rc = -EINVAL;
tee_shm_free(shm);
return rc;
}
static int optee_open_session(struct udevice *dev,
struct tee_open_session_arg *arg,
uint num_params, struct tee_param *params)
{
int rc;
struct tee_shm *shm;
struct optee_msg_arg *msg_arg;
rc = get_msg_arg(dev, num_params + 2, &shm, &msg_arg);
if (rc)
return rc;
msg_arg->cmd = OPTEE_MSG_CMD_OPEN_SESSION;
/*
* Initialize and add the meta parameters needed when opening a
* session.
*/
msg_arg->params[0].attr = OPTEE_MSG_ATTR_TYPE_VALUE_INPUT |
OPTEE_MSG_ATTR_META;
msg_arg->params[1].attr = OPTEE_MSG_ATTR_TYPE_VALUE_INPUT |
OPTEE_MSG_ATTR_META;
memcpy(&msg_arg->params[0].u.value, arg->uuid, sizeof(arg->uuid));
memcpy(&msg_arg->params[1].u.value, arg->uuid, sizeof(arg->clnt_uuid));
msg_arg->params[1].u.value.c = arg->clnt_login;
rc = to_msg_param(msg_arg->params + 2, num_params, params);
if (rc)
goto out;
arg->ret = do_call_with_arg(dev, msg_arg);
if (arg->ret) {
arg->ret_origin = TEE_ORIGIN_COMMS;
rc = -EINVAL;
goto out;
}
rc = from_msg_param(params, num_params, msg_arg->params + 2);
if (rc) {
arg->ret = TEE_ERROR_COMMUNICATION;
arg->ret_origin = TEE_ORIGIN_COMMS;
/* Close session again to avoid leakage */
optee_close_session(dev, msg_arg->session);
goto out;
}
arg->session = msg_arg->session;
arg->ret = msg_arg->ret;
arg->ret_origin = msg_arg->ret_origin;
out:
tee_shm_free(shm);
return rc;
}
static int optee_invoke_func(struct udevice *dev, struct tee_invoke_arg *arg,
uint num_params, struct tee_param *params)
{
struct tee_shm *shm;
struct optee_msg_arg *msg_arg;
int rc;
rc = get_msg_arg(dev, num_params, &shm, &msg_arg);
if (rc)
return rc;
msg_arg->cmd = OPTEE_MSG_CMD_INVOKE_COMMAND;
msg_arg->func = arg->func;
msg_arg->session = arg->session;
rc = to_msg_param(msg_arg->params, num_params, params);
if (rc)
goto out;
arg->ret = do_call_with_arg(dev, msg_arg);
if (arg->ret) {
arg->ret_origin = TEE_ORIGIN_COMMS;
rc = -EINVAL;
goto out;
}
rc = from_msg_param(params, num_params, msg_arg->params);
if (rc) {
arg->ret = TEE_ERROR_COMMUNICATION;
arg->ret_origin = TEE_ORIGIN_COMMS;
goto out;
}
arg->ret = msg_arg->ret;
arg->ret_origin = msg_arg->ret_origin;
out:
tee_shm_free(shm);
return rc;
}
static int optee_shm_register(struct udevice *dev, struct tee_shm *shm)
{
return -EINVAL;
}
static int optee_shm_unregister(struct udevice *dev, struct tee_shm *shm)
{
return -EINVAL;
}
static const struct tee_driver_ops optee_ops = {
.get_version = optee_get_version,
.open_session = optee_open_session,
.close_session = optee_close_session,
.invoke_func = optee_invoke_func,
.shm_register = optee_shm_register,
.shm_unregister = optee_shm_unregister,
.shm_allocate = optee_shm_allocate,
.shm_free = optee_shm_free,
};
static bool is_optee_api(optee_invoke_fn *invoke_fn)
{
struct arm_smccc_res res;
invoke_fn(OPTEE_SMC_CALLS_UID, 0, 0, 0, 0, 0, 0, 0, &res);
return res.a0 == OPTEE_MSG_UID_0 && res.a1 == OPTEE_MSG_UID_1 &&
res.a2 == OPTEE_MSG_UID_2 && res.a3 == OPTEE_MSG_UID_3;
}
static void print_os_revision(optee_invoke_fn *invoke_fn)
{
union {
struct arm_smccc_res smccc;
struct optee_smc_call_get_os_revision_result result;
} res = {
.result = {
.build_id = 0
}
};
invoke_fn(OPTEE_SMC_CALL_GET_OS_REVISION, 0, 0, 0, 0, 0, 0, 0,
&res.smccc);
if (res.result.build_id)
debug("OP-TEE revision %lu.%lu (%08lx)\n", res.result.major,
res.result.minor, res.result.build_id);
else
debug("OP-TEE revision %lu.%lu\n", res.result.major,
res.result.minor);
}
static bool api_revision_is_compatible(optee_invoke_fn *invoke_fn)
{
union {
struct arm_smccc_res smccc;
struct optee_smc_calls_revision_result result;
} res;
invoke_fn(OPTEE_SMC_CALLS_REVISION, 0, 0, 0, 0, 0, 0, 0, &res.smccc);
return res.result.major == OPTEE_MSG_REVISION_MAJOR &&
(int)res.result.minor >= OPTEE_MSG_REVISION_MINOR;
}
static bool discover_shared_memory_config(optee_invoke_fn *invoke_fn,
uintptr_t *out_start_addr, size_t *out_size)
{
union {
struct arm_smccc_res smccc;
struct optee_smc_get_shm_config_result result;
} res;
invoke_fn(OPTEE_SMC_GET_SHM_CONFIG, 0, 0, 0, 0, 0, 0, 0, &res.smccc);
if (res.result.status != OPTEE_SMC_RETURN_OK)
return false;
*out_start_addr = res.result.start;
*out_size = res.result.size;
return true;
}
/* Simple wrapper functions to be able to use a function pointer */
static void optee_smccc_smc(unsigned long a0, unsigned long a1,
unsigned long a2, unsigned long a3,
unsigned long a4, unsigned long a5,
unsigned long a6, unsigned long a7,
struct arm_smccc_res *res)
{
arm_smccc_smc(a0, a1, a2, a3, a4, a5, a6, a7, res);
}
static void optee_smccc_hvc(unsigned long a0, unsigned long a1,
unsigned long a2, unsigned long a3,
unsigned long a4, unsigned long a5,
unsigned long a6, unsigned long a7,
struct arm_smccc_res *res)
{
arm_smccc_hvc(a0, a1, a2, a3, a4, a5, a6, a7, res);
}
static optee_invoke_fn *get_invoke_func(struct udevice *dev)
{
const char *method;
debug("optee: looking for conduit method in DT.\n");
method = ofnode_get_property(dev->node, "method", NULL);
if (!method) {
debug("optee: missing \"method\" property\n");
return ERR_PTR(-ENXIO);
}
if (!strcmp("hvc", method))
return optee_smccc_hvc;
else if (!strcmp("smc", method))
return optee_smccc_smc;
debug("optee: invalid \"method\" property: %s\n", method);
return ERR_PTR(-EINVAL);
}
static int optee_ofdata_to_platdata(struct udevice *dev)
{
struct optee_pdata *pdata = dev_get_platdata(dev);
pdata->invoke_fn = get_invoke_func(dev);
if (IS_ERR(pdata->invoke_fn))
return PTR_ERR(pdata->invoke_fn);
return 0;
}
static int optee_probe(struct udevice *dev)
{
struct optee_pdata *pdata = dev_get_platdata(dev);
struct optee_private *priv = dev_get_priv(dev);
if (!is_optee_api(pdata->invoke_fn)) {
debug("%s: OP-TEE api uid mismatch\n", __func__);
return -ENOENT;
}
print_os_revision(pdata->invoke_fn);
if (!api_revision_is_compatible(pdata->invoke_fn)) {
debug("%s: OP-TEE api revision mismatch\n", __func__);
return -ENOENT;
}
/*
* Discover predefined shared memory pool configuration.
*
* OP-TEE can use both shared memory via predefined pool or as
* dynamic shared memory provided by normal world. But as all
* current (Amlogic customized) BL32 baselines only support
* predefined pools, U-Boot would only rely on pre-defined shared
* memory as well.
*/
uintptr_t shm_pool_start;
size_t shm_pool_size;
if (!discover_shared_memory_config(pdata->invoke_fn,
&shm_pool_start, &shm_pool_size)) {
return -ENOENT;
}
priv->shm_pool = memory_pool_create(shm_pool_start, shm_pool_size,
SHARED_MEMORY_BLOCK_SIZE);
if (!priv->shm_pool) {
return -ENOMEM;
}
return 0;
}
static int optee_remove(struct udevice *dev)
{
struct optee_private *priv = dev_get_priv(dev);
memory_pool_destroy(priv->shm_pool);
priv->shm_pool = NULL;
return 0;
}
static const struct udevice_id optee_match[] = {
{ .compatible = "linaro,optee-tz" },
{},
};
U_BOOT_DRIVER(optee) = {
.name = "optee",
.id = UCLASS_TEE,
.of_match = optee_match,
.ofdata_to_platdata = optee_ofdata_to_platdata,
.probe = optee_probe,
.remove = optee_remove,
.ops = &optee_ops,
.platdata_auto_alloc_size = sizeof(struct optee_pdata),
.priv_auto_alloc_size = sizeof(struct optee_private),
};