[v1,35/49] board: ns3: add optee based bnxt fw load driver

Message ID	20200427105207.5659-36-rayagonda.kokatanur@broadcom.com
State	Superseded
Headers	show List-Id: U-Boot discussion <u-boot.lists.denx.de> From: rayagonda.kokatanur at broadcom.com (Rayagonda Kokatanur) Date: Mon, 27 Apr 2020 16:21:53 +0530 Subject: [PATCH v1 35/49] board: ns3: add optee based bnxt fw load driver In-Reply-To: <20200427105207.5659-1-rayagonda.kokatanur@broadcom.com> References: <20200427105207.5659-1-rayagonda.kokatanur@broadcom.com> Message-ID: <20200427105207.5659-36-rayagonda.kokatanur@broadcom.com>
Series	add support for broadcom NS3 soc \| expand [v1,00/49] add support for broadcom NS3 soc [v1,01/49] board: ns3: add support for Broadcom Northstar 3 [v1,02/49] arm: cpu: armv8: add L3 memory flush support [v1,03/49] configs: ns3: enable clock subsystem [v1,04/49] arm: dts: ns3: add clock dt node [v1,05/49] configs: ns3: enable pinctrl driver [v1,06/49] dt-bindings: pinctrl: add ns3 pads definition [v1,07/49] arm: dts: ns3: add pinctrl node [v1,08/49] arm: dts: ns3: add gpio node [v1,09/49] gpio: do not include <asm/arch/gpio.h> on TARGET_BCMNS3 [v1,10/49] configs: ns3: enable BCM IPROC mmc driver [v1,11/49] arm: dts: ns3: add emmc node [v1,12/49] configs: ns3: enable mmc commands [v1,13/49] arm: dts: ns3: add qspi node [v1,14/49] dt-bindings: memory: ns3: add memory definitions [v1,15/49] arm: dts: ns3: add i2c node [v1,16/49] arm: dts: ns3: add PAXB PCIe host and phy node [v1,17/49] configs: ns3: enable gpt commands [v1,18/49] configs: ns3: enable EXT4 and FAT fs support [v1,19/49] configs: ns3: enable sp805 watchdog driver [v1,20/49] arm: dts: ns3: add sp805 watchdog node [v1,21/49] board: ns3: start sp805 watchdog service [v1,22/49] board: ns3: add api to save boot parameters passed from BL31 [v1,23/49] board: ns3: default reset type to L3 [v1,24/49] dt-bindings: memory: ns3: update GIC LPI address [v1,25/49] board: ns3: program GIC LPI tables [v1,26/49] configs: ns3: enable GIC ITS LPI table programing [v1,27/49] dt-bindings: memory: ns3: add ddr memory definition [v1,28/49] board: ns3: define ddr memory layout [v1,29/49] board: ns3: limit U-boot relocation within 16MB memory [v1,30/49] configs: ns3: enable FIT config [v1,31/49] board: ns3: add FIT image its file [v1,32/49] board: ns3: add development keys used in FIT [v1,33/49] configs: ns3: enable PXE boot command [v1,34/49] configs: ns3: enable RPMB [v1,35/49] board: ns3: add optee based bnxt fw load driver [v1,36/49] configs: ns3: enable tee and optee driver [v1,37/49] arm: dts: ns3: add optee node [v1,38/49] board: ns3: add generic MCU IPC command send API [v1,39/49] include/configs: ns3: add env variables for Linux boot [v1,40/49] configs: ns3: env in mmc [v1,41/49] include/configs: ns3: add support for flashing images [v1,42/49] common: ns3: add error logging support [v1,43/49] board: ns3: kconfig: extend board kconfig with specific commands [v1,44/49] cmd: bcm: add broadcom error log setup command [v1,45/49] cmd: gpt: add eMMC and GPT support [v1,46/49] cmd: bcm: add nitro boot command [v1,47/49] cmd: bcm: add nitro image load commands [v1,48/49] cmd: bcm: add command for chimp hand shake [v1,49/49] board: ns3: check chimp handshake status

diff --git a/board/broadcom/bcmns3/Kconfig b/board/broadcom/bcmns3/Kconfig index 8ce21f980d..84daad9415 100644 --- a/board/broadcom/bcmns3/Kconfig +++ b/board/broadcom/bcmns3/Kconfig @@ -12,4 +12,9 @@ config SYS_SOC config SYS_CONFIG_NAME default "bcm_ns3" +config CHIMP_OPTEE + bool "Enable secure ChiMP firmware loading" + depends on OPTEE + default y + endif diff --git a/board/broadcom/bcmns3/Makefile b/board/broadcom/bcmns3/Makefile index 3404260148..08e1d7203b 100644 --- a/board/broadcom/bcmns3/Makefile +++ b/board/broadcom/bcmns3/Makefile @@ -3,3 +3,4 @@ # Copyright 2020 Broadcom. obj-y := ns3.o +obj-$(CONFIG_CHIMP_OPTEE) += chimp_optee.o diff --git a/board/broadcom/bcmns3/chimp_optee.c b/board/broadcom/bcmns3/chimp_optee.c new file mode 100644 index 0000000000..edbb7afd91 --- /dev/null +++ b/board/broadcom/bcmns3/chimp_optee.c @@ -0,0 +1,154 @@ +// SPDX-License-Identifier: BSD-2-Clause +/* + * Copyright 2020 Broadcom. + */ + +#include <brcm/chimp.h> +#include <common.h> +#include <tee.h> + +#define CHMIP_BOOT_UUID { 0x6272636D, 0x2019, 0x0716, \ + { 0x42, 0x43, 0x4D, 0x5F, 0x53, 0x43, 0x48, 0x49 } } + +enum { + TEE_CHIMP_FASTBOOT = 0, + TEE_CHIMP_HEALTH_STATUS, + TEE_CHIMP_HANDSHAKE_STATUS, +} tee_chmip_cmd; + +struct bcm_chimp_data { + struct udevice *tee; + u32 session; +} chimp_data; + +static int get_open_session(struct bcm_chimp_data *b_data) +{ + struct udevice *tee = NULL; + + while (!b_data->tee) { + const struct tee_optee_ta_uuid uuid = CHMIP_BOOT_UUID; + struct tee_open_session_arg arg; + int rc; + + tee = tee_find_device(tee, NULL, NULL, NULL); + if (!tee) + return -ENODEV; + + memset(&arg, 0, sizeof(arg)); + tee_optee_ta_uuid_to_octets(arg.uuid, &uuid); + rc = tee_open_session(tee, &arg, 0, NULL); + if (!rc) { + b_data->tee = tee; + b_data->session = arg.session; + } + } + + return 0; +} + +int chimp_handshake_status_optee(u32 timeout, u32 *hs) +{ + struct tee_invoke_arg arg; + struct tee_param param[1]; + int ret; + + if (get_open_session(&chimp_data)) + return BCM_CHIMP_FAILURE; + + memset(&arg, 0, sizeof(arg)); + arg.func = TEE_CHIMP_HANDSHAKE_STATUS; + arg.session = chimp_data.session; + + param[0].attr = TEE_PARAM_ATTR_TYPE_VALUE_INOUT; + param[0].u.value.a = timeout; + + if (tee_invoke_func(chimp_data.tee, &arg, + ARRAY_SIZE(param), param)) { + printf("Handshake status command failed\n"); + ret = BCM_CHIMP_FAILURE; + goto out; + } + switch (arg.ret) { + case TEE_SUCCESS: + *hs = param[0].u.value.a; + ret = BCM_CHIMP_SUCCESS; + break; + default: + ret = BCM_CHIMP_FAILURE; + break; + } +out: + tee_close_session(chimp_data.tee, chimp_data.session); + chimp_data.tee = NULL; + + return ret; +} + +int chimp_health_status_optee(u32 *health) +{ + struct tee_invoke_arg arg; + struct tee_param param[1]; + int ret; + + if (get_open_session(&chimp_data)) + return BCM_CHIMP_FAILURE; + + memset(&arg, 0, sizeof(arg)); + arg.func = TEE_CHIMP_HEALTH_STATUS; + arg.session = chimp_data.session; + + param[0].attr = TEE_PARAM_ATTR_TYPE_VALUE_OUTPUT; + + if (tee_invoke_func(chimp_data.tee, &arg, + ARRAY_SIZE(param), param)) { + printf("Helath status command failed\n"); + ret = BCM_CHIMP_FAILURE; + goto out; + } + switch (arg.ret) { + case TEE_SUCCESS: + *health = param[0].u.value.a; + ret = BCM_CHIMP_SUCCESS; + break; + default: + ret = BCM_CHIMP_FAILURE; + break; + } +out: + tee_close_session(chimp_data.tee, chimp_data.session); + chimp_data.tee = NULL; + + return ret; +} + +int chimp_fastboot_optee(void) +{ + struct tee_invoke_arg arg; + int ret; + + if (get_open_session(&chimp_data)) + return BCM_CHIMP_FAILURE; + + memset(&arg, 0, sizeof(arg)); + arg.func = TEE_CHIMP_FASTBOOT; + arg.session = chimp_data.session; + + if (tee_invoke_func(chimp_data.tee, &arg, 0, NULL)) { + printf("Chimp boot_fail\n"); + ret = BCM_CHIMP_FAILURE; + goto out; + } + switch (arg.ret) { + case TEE_SUCCESS: + ret = BCM_CHIMP_SUCCESS; + break; + default: + ret = BCM_CHIMP_FAILURE; + break; + } +out: + tee_close_session(chimp_data.tee, chimp_data.session); + chimp_data.tee = NULL; + + return ret; +} diff --git a/include/brcm/chimp.h b/include/brcm/chimp.h new file mode 100644 index 0000000000..c3d4594c4b --- /dev/null +++ b/include/brcm/chimp.h @@ -0,0 +1,40 @@ +/* SPDX-License-Identifier: GPL-2.0+ */ +/* + * Copyright 2020 Broadcom. + * + */ + +#ifndef __CHIMP_H__ +#define __CHIMP_H__ + +#include <common.h> +#include <linux/compiler.h> + +#define BCM_CHIMP_SUCCESS 0 +#define BCM_CHIMP_FAILURE (!BCM_CHIMP_SUCCESS) + +#ifdef CONFIG_CHIMP_OPTEE +int chimp_fastboot_optee(void); +int chimp_health_status_optee(u32 *status); +int chimp_handshake_status_optee(u32 timeout, u32 *hstatus); +#else +static inline int chimp_handshake_status_optee(u32 timeout, u32 *status) +{ + printf("ChiMP handshake status fail (OPTEE not enabled)\n"); + return BCM_CHIMP_FAILURE; +} + +static inline int chimp_health_status_optee(u32 *status) +{ + printf("ChiMP health status fail (OPTEE not enabled)\n"); + return BCM_CHIMP_FAILURE; +} + +static inline int chimp_fastboot_optee(void) +{ + printf("ChiMP secure boot fail (OPTEE not enabled)\n"); + return BCM_CHIMP_FAILURE; +} +#endif + +#endif

[v1,35/49] board: ns3: add optee based bnxt fw load driver

Commit Message

Patch