1 // SPDX-License-Identifier: GPL-2.0-only 2 /* Copyright (c) 2010,2015,2019 The Linux Foundation. All rights reserved. 3 * Copyright (C) 2015 Linaro Ltd. 4 */ 5 6 #include <linux/arm-smccc.h> 7 #include <linux/bitfield.h> 8 #include <linux/bits.h> 9 #include <linux/cleanup.h> 10 #include <linux/clk.h> 11 #include <linux/completion.h> 12 #include <linux/cpumask.h> 13 #include <linux/dma-mapping.h> 14 #include <linux/err.h> 15 #include <linux/export.h> 16 #include <linux/firmware/qcom/qcom_scm.h> 17 #include <linux/firmware/qcom/qcom_tzmem.h> 18 #include <linux/init.h> 19 #include <linux/interconnect.h> 20 #include <linux/interrupt.h> 21 #include <linux/kstrtox.h> 22 #include <linux/module.h> 23 #include <linux/of.h> 24 #include <linux/of_address.h> 25 #include <linux/of_irq.h> 26 #include <linux/of_platform.h> 27 #include <linux/of_reserved_mem.h> 28 #include <linux/platform_device.h> 29 #include <linux/reset-controller.h> 30 #include <linux/sizes.h> 31 #include <linux/types.h> 32 33 #include "qcom_scm.h" 34 #include "qcom_tzmem.h" 35 36 static u32 download_mode; 37 38 struct qcom_scm { 39 struct device *dev; 40 struct clk *core_clk; 41 struct clk *iface_clk; 42 struct clk *bus_clk; 43 struct icc_path *path; 44 struct completion waitq_comp; 45 struct reset_controller_dev reset; 46 47 /* control access to the interconnect path */ 48 struct mutex scm_bw_lock; 49 int scm_vote_count; 50 51 u64 dload_mode_addr; 52 53 struct qcom_tzmem_pool *mempool; 54 }; 55 56 struct qcom_scm_current_perm_info { 57 __le32 vmid; 58 __le32 perm; 59 __le64 ctx; 60 __le32 ctx_size; 61 __le32 unused; 62 }; 63 64 struct qcom_scm_mem_map_info { 65 __le64 mem_addr; 66 __le64 mem_size; 67 }; 68 69 /** 70 * struct qcom_scm_qseecom_resp - QSEECOM SCM call response. 71 * @result: Result or status of the SCM call. See &enum qcom_scm_qseecom_result. 72 * @resp_type: Type of the response. See &enum qcom_scm_qseecom_resp_type. 73 * @data: Response data. The type of this data is given in @resp_type. 74 */ 75 struct qcom_scm_qseecom_resp { 76 u64 result; 77 u64 resp_type; 78 u64 data; 79 }; 80 81 enum qcom_scm_qseecom_result { 82 QSEECOM_RESULT_SUCCESS = 0, 83 QSEECOM_RESULT_INCOMPLETE = 1, 84 QSEECOM_RESULT_BLOCKED_ON_LISTENER = 2, 85 QSEECOM_RESULT_FAILURE = 0xFFFFFFFF, 86 }; 87 88 enum qcom_scm_qseecom_resp_type { 89 QSEECOM_SCM_RES_APP_ID = 0xEE01, 90 QSEECOM_SCM_RES_QSEOS_LISTENER_ID = 0xEE02, 91 }; 92 93 enum qcom_scm_qseecom_tz_owner { 94 QSEECOM_TZ_OWNER_SIP = 2, 95 QSEECOM_TZ_OWNER_TZ_APPS = 48, 96 QSEECOM_TZ_OWNER_QSEE_OS = 50 97 }; 98 99 enum qcom_scm_qseecom_tz_svc { 100 QSEECOM_TZ_SVC_APP_ID_PLACEHOLDER = 0, 101 QSEECOM_TZ_SVC_APP_MGR = 1, 102 QSEECOM_TZ_SVC_INFO = 6, 103 }; 104 105 enum qcom_scm_qseecom_tz_cmd_app { 106 QSEECOM_TZ_CMD_APP_SEND = 1, 107 QSEECOM_TZ_CMD_APP_LOOKUP = 3, 108 }; 109 110 enum qcom_scm_qseecom_tz_cmd_info { 111 QSEECOM_TZ_CMD_INFO_VERSION = 3, 112 }; 113 114 #define QSEECOM_MAX_APP_NAME_SIZE 64 115 #define SHMBRIDGE_RESULT_NOTSUPP 4 116 117 /* Each bit configures cold/warm boot address for one of the 4 CPUs */ 118 static const u8 qcom_scm_cpu_cold_bits[QCOM_SCM_BOOT_MAX_CPUS] = { 119 0, BIT(0), BIT(3), BIT(5) 120 }; 121 static const u8 qcom_scm_cpu_warm_bits[QCOM_SCM_BOOT_MAX_CPUS] = { 122 BIT(2), BIT(1), BIT(4), BIT(6) 123 }; 124 125 #define QCOM_SMC_WAITQ_FLAG_WAKE_ONE BIT(0) 126 127 #define QCOM_DLOAD_MASK GENMASK(5, 4) 128 #define QCOM_DLOAD_NODUMP 0 129 #define QCOM_DLOAD_FULLDUMP 1 130 #define QCOM_DLOAD_MINIDUMP 2 131 #define QCOM_DLOAD_BOTHDUMP 3 132 133 static const char * const qcom_scm_convention_names[] = { 134 [SMC_CONVENTION_UNKNOWN] = "unknown", 135 [SMC_CONVENTION_ARM_32] = "smc arm 32", 136 [SMC_CONVENTION_ARM_64] = "smc arm 64", 137 [SMC_CONVENTION_LEGACY] = "smc legacy", 138 }; 139 140 static const char * const download_mode_name[] = { 141 [QCOM_DLOAD_NODUMP] = "off", 142 [QCOM_DLOAD_FULLDUMP] = "full", 143 [QCOM_DLOAD_MINIDUMP] = "mini", 144 [QCOM_DLOAD_BOTHDUMP] = "full,mini", 145 }; 146 147 static struct qcom_scm *__scm; 148 qcom_scm_clk_enable(void)149 static int qcom_scm_clk_enable(void) 150 { 151 int ret; 152 153 ret = clk_prepare_enable(__scm->core_clk); 154 if (ret) 155 goto bail; 156 157 ret = clk_prepare_enable(__scm->iface_clk); 158 if (ret) 159 goto disable_core; 160 161 ret = clk_prepare_enable(__scm->bus_clk); 162 if (ret) 163 goto disable_iface; 164 165 return 0; 166 167 disable_iface: 168 clk_disable_unprepare(__scm->iface_clk); 169 disable_core: 170 clk_disable_unprepare(__scm->core_clk); 171 bail: 172 return ret; 173 } 174 qcom_scm_clk_disable(void)175 static void qcom_scm_clk_disable(void) 176 { 177 clk_disable_unprepare(__scm->core_clk); 178 clk_disable_unprepare(__scm->iface_clk); 179 clk_disable_unprepare(__scm->bus_clk); 180 } 181 qcom_scm_bw_enable(void)182 static int qcom_scm_bw_enable(void) 183 { 184 int ret = 0; 185 186 if (!__scm->path) 187 return 0; 188 189 mutex_lock(&__scm->scm_bw_lock); 190 if (!__scm->scm_vote_count) { 191 ret = icc_set_bw(__scm->path, 0, UINT_MAX); 192 if (ret < 0) { 193 dev_err(__scm->dev, "failed to set bandwidth request\n"); 194 goto err_bw; 195 } 196 } 197 __scm->scm_vote_count++; 198 err_bw: 199 mutex_unlock(&__scm->scm_bw_lock); 200 201 return ret; 202 } 203 qcom_scm_bw_disable(void)204 static void qcom_scm_bw_disable(void) 205 { 206 if (!__scm->path) 207 return; 208 209 mutex_lock(&__scm->scm_bw_lock); 210 if (__scm->scm_vote_count-- == 1) 211 icc_set_bw(__scm->path, 0, 0); 212 mutex_unlock(&__scm->scm_bw_lock); 213 } 214 215 enum qcom_scm_convention qcom_scm_convention = SMC_CONVENTION_UNKNOWN; 216 static DEFINE_SPINLOCK(scm_query_lock); 217 qcom_scm_get_tzmem_pool(void)218 struct qcom_tzmem_pool *qcom_scm_get_tzmem_pool(void) 219 { 220 return __scm ? __scm->mempool : NULL; 221 } 222 __get_convention(void)223 static enum qcom_scm_convention __get_convention(void) 224 { 225 unsigned long flags; 226 struct qcom_scm_desc desc = { 227 .svc = QCOM_SCM_SVC_INFO, 228 .cmd = QCOM_SCM_INFO_IS_CALL_AVAIL, 229 .args[0] = SCM_SMC_FNID(QCOM_SCM_SVC_INFO, 230 QCOM_SCM_INFO_IS_CALL_AVAIL) | 231 (ARM_SMCCC_OWNER_SIP << ARM_SMCCC_OWNER_SHIFT), 232 .arginfo = QCOM_SCM_ARGS(1), 233 .owner = ARM_SMCCC_OWNER_SIP, 234 }; 235 struct qcom_scm_res res; 236 enum qcom_scm_convention probed_convention; 237 int ret; 238 bool forced = false; 239 240 if (likely(qcom_scm_convention != SMC_CONVENTION_UNKNOWN)) 241 return qcom_scm_convention; 242 243 /* 244 * Per the "SMC calling convention specification", the 64-bit calling 245 * convention can only be used when the client is 64-bit, otherwise 246 * system will encounter the undefined behaviour. 247 */ 248 #if IS_ENABLED(CONFIG_ARM64) 249 /* 250 * Device isn't required as there is only one argument - no device 251 * needed to dma_map_single to secure world 252 */ 253 probed_convention = SMC_CONVENTION_ARM_64; 254 ret = __scm_smc_call(NULL, &desc, probed_convention, &res, true); 255 if (!ret && res.result[0] == 1) 256 goto found; 257 258 /* 259 * Some SC7180 firmwares didn't implement the 260 * QCOM_SCM_INFO_IS_CALL_AVAIL call, so we fallback to forcing ARM_64 261 * calling conventions on these firmwares. Luckily we don't make any 262 * early calls into the firmware on these SoCs so the device pointer 263 * will be valid here to check if the compatible matches. 264 */ 265 if (of_device_is_compatible(__scm ? __scm->dev->of_node : NULL, "qcom,scm-sc7180")) { 266 forced = true; 267 goto found; 268 } 269 #endif 270 271 probed_convention = SMC_CONVENTION_ARM_32; 272 ret = __scm_smc_call(NULL, &desc, probed_convention, &res, true); 273 if (!ret && res.result[0] == 1) 274 goto found; 275 276 probed_convention = SMC_CONVENTION_LEGACY; 277 found: 278 spin_lock_irqsave(&scm_query_lock, flags); 279 if (probed_convention != qcom_scm_convention) { 280 qcom_scm_convention = probed_convention; 281 pr_info("qcom_scm: convention: %s%s\n", 282 qcom_scm_convention_names[qcom_scm_convention], 283 forced ? " (forced)" : ""); 284 } 285 spin_unlock_irqrestore(&scm_query_lock, flags); 286 287 return qcom_scm_convention; 288 } 289 290 /** 291 * qcom_scm_call() - Invoke a syscall in the secure world 292 * @dev: device 293 * @desc: Descriptor structure containing arguments and return values 294 * @res: Structure containing results from SMC/HVC call 295 * 296 * Sends a command to the SCM and waits for the command to finish processing. 297 * This should *only* be called in pre-emptible context. 298 */ qcom_scm_call(struct device * dev,const struct qcom_scm_desc * desc,struct qcom_scm_res * res)299 static int qcom_scm_call(struct device *dev, const struct qcom_scm_desc *desc, 300 struct qcom_scm_res *res) 301 { 302 might_sleep(); 303 switch (__get_convention()) { 304 case SMC_CONVENTION_ARM_32: 305 case SMC_CONVENTION_ARM_64: 306 return scm_smc_call(dev, desc, res, false); 307 case SMC_CONVENTION_LEGACY: 308 return scm_legacy_call(dev, desc, res); 309 default: 310 pr_err("Unknown current SCM calling convention.\n"); 311 return -EINVAL; 312 } 313 } 314 315 /** 316 * qcom_scm_call_atomic() - atomic variation of qcom_scm_call() 317 * @dev: device 318 * @desc: Descriptor structure containing arguments and return values 319 * @res: Structure containing results from SMC/HVC call 320 * 321 * Sends a command to the SCM and waits for the command to finish processing. 322 * This can be called in atomic context. 323 */ qcom_scm_call_atomic(struct device * dev,const struct qcom_scm_desc * desc,struct qcom_scm_res * res)324 static int qcom_scm_call_atomic(struct device *dev, 325 const struct qcom_scm_desc *desc, 326 struct qcom_scm_res *res) 327 { 328 switch (__get_convention()) { 329 case SMC_CONVENTION_ARM_32: 330 case SMC_CONVENTION_ARM_64: 331 return scm_smc_call(dev, desc, res, true); 332 case SMC_CONVENTION_LEGACY: 333 return scm_legacy_call_atomic(dev, desc, res); 334 default: 335 pr_err("Unknown current SCM calling convention.\n"); 336 return -EINVAL; 337 } 338 } 339 __qcom_scm_is_call_available(struct device * dev,u32 svc_id,u32 cmd_id)340 static bool __qcom_scm_is_call_available(struct device *dev, u32 svc_id, 341 u32 cmd_id) 342 { 343 int ret; 344 struct qcom_scm_desc desc = { 345 .svc = QCOM_SCM_SVC_INFO, 346 .cmd = QCOM_SCM_INFO_IS_CALL_AVAIL, 347 .owner = ARM_SMCCC_OWNER_SIP, 348 }; 349 struct qcom_scm_res res; 350 351 desc.arginfo = QCOM_SCM_ARGS(1); 352 switch (__get_convention()) { 353 case SMC_CONVENTION_ARM_32: 354 case SMC_CONVENTION_ARM_64: 355 desc.args[0] = SCM_SMC_FNID(svc_id, cmd_id) | 356 (ARM_SMCCC_OWNER_SIP << ARM_SMCCC_OWNER_SHIFT); 357 break; 358 case SMC_CONVENTION_LEGACY: 359 desc.args[0] = SCM_LEGACY_FNID(svc_id, cmd_id); 360 break; 361 default: 362 pr_err("Unknown SMC convention being used\n"); 363 return false; 364 } 365 366 ret = qcom_scm_call(dev, &desc, &res); 367 368 return ret ? false : !!res.result[0]; 369 } 370 qcom_scm_set_boot_addr(void * entry,const u8 * cpu_bits)371 static int qcom_scm_set_boot_addr(void *entry, const u8 *cpu_bits) 372 { 373 int cpu; 374 unsigned int flags = 0; 375 struct qcom_scm_desc desc = { 376 .svc = QCOM_SCM_SVC_BOOT, 377 .cmd = QCOM_SCM_BOOT_SET_ADDR, 378 .arginfo = QCOM_SCM_ARGS(2), 379 .owner = ARM_SMCCC_OWNER_SIP, 380 }; 381 382 for_each_present_cpu(cpu) { 383 if (cpu >= QCOM_SCM_BOOT_MAX_CPUS) 384 return -EINVAL; 385 flags |= cpu_bits[cpu]; 386 } 387 388 desc.args[0] = flags; 389 desc.args[1] = virt_to_phys(entry); 390 391 return qcom_scm_call_atomic(__scm ? __scm->dev : NULL, &desc, NULL); 392 } 393 qcom_scm_set_boot_addr_mc(void * entry,unsigned int flags)394 static int qcom_scm_set_boot_addr_mc(void *entry, unsigned int flags) 395 { 396 struct qcom_scm_desc desc = { 397 .svc = QCOM_SCM_SVC_BOOT, 398 .cmd = QCOM_SCM_BOOT_SET_ADDR_MC, 399 .owner = ARM_SMCCC_OWNER_SIP, 400 .arginfo = QCOM_SCM_ARGS(6), 401 .args = { 402 virt_to_phys(entry), 403 /* Apply to all CPUs in all affinity levels */ 404 ~0ULL, ~0ULL, ~0ULL, ~0ULL, 405 flags, 406 }, 407 }; 408 409 /* Need a device for DMA of the additional arguments */ 410 if (!__scm || __get_convention() == SMC_CONVENTION_LEGACY) 411 return -EOPNOTSUPP; 412 413 return qcom_scm_call(__scm->dev, &desc, NULL); 414 } 415 416 /** 417 * qcom_scm_set_warm_boot_addr() - Set the warm boot address for all cpus 418 * @entry: Entry point function for the cpus 419 * 420 * Set the Linux entry point for the SCM to transfer control to when coming 421 * out of a power down. CPU power down may be executed on cpuidle or hotplug. 422 */ qcom_scm_set_warm_boot_addr(void * entry)423 int qcom_scm_set_warm_boot_addr(void *entry) 424 { 425 if (qcom_scm_set_boot_addr_mc(entry, QCOM_SCM_BOOT_MC_FLAG_WARMBOOT)) 426 /* Fallback to old SCM call */ 427 return qcom_scm_set_boot_addr(entry, qcom_scm_cpu_warm_bits); 428 return 0; 429 } 430 EXPORT_SYMBOL_GPL(qcom_scm_set_warm_boot_addr); 431 432 /** 433 * qcom_scm_set_cold_boot_addr() - Set the cold boot address for all cpus 434 * @entry: Entry point function for the cpus 435 */ qcom_scm_set_cold_boot_addr(void * entry)436 int qcom_scm_set_cold_boot_addr(void *entry) 437 { 438 if (qcom_scm_set_boot_addr_mc(entry, QCOM_SCM_BOOT_MC_FLAG_COLDBOOT)) 439 /* Fallback to old SCM call */ 440 return qcom_scm_set_boot_addr(entry, qcom_scm_cpu_cold_bits); 441 return 0; 442 } 443 EXPORT_SYMBOL_GPL(qcom_scm_set_cold_boot_addr); 444 445 /** 446 * qcom_scm_cpu_power_down() - Power down the cpu 447 * @flags: Flags to flush cache 448 * 449 * This is an end point to power down cpu. If there was a pending interrupt, 450 * the control would return from this function, otherwise, the cpu jumps to the 451 * warm boot entry point set for this cpu upon reset. 452 */ qcom_scm_cpu_power_down(u32 flags)453 void qcom_scm_cpu_power_down(u32 flags) 454 { 455 struct qcom_scm_desc desc = { 456 .svc = QCOM_SCM_SVC_BOOT, 457 .cmd = QCOM_SCM_BOOT_TERMINATE_PC, 458 .args[0] = flags & QCOM_SCM_FLUSH_FLAG_MASK, 459 .arginfo = QCOM_SCM_ARGS(1), 460 .owner = ARM_SMCCC_OWNER_SIP, 461 }; 462 463 qcom_scm_call_atomic(__scm ? __scm->dev : NULL, &desc, NULL); 464 } 465 EXPORT_SYMBOL_GPL(qcom_scm_cpu_power_down); 466 qcom_scm_set_remote_state(u32 state,u32 id)467 int qcom_scm_set_remote_state(u32 state, u32 id) 468 { 469 struct qcom_scm_desc desc = { 470 .svc = QCOM_SCM_SVC_BOOT, 471 .cmd = QCOM_SCM_BOOT_SET_REMOTE_STATE, 472 .arginfo = QCOM_SCM_ARGS(2), 473 .args[0] = state, 474 .args[1] = id, 475 .owner = ARM_SMCCC_OWNER_SIP, 476 }; 477 struct qcom_scm_res res; 478 int ret; 479 480 ret = qcom_scm_call(__scm->dev, &desc, &res); 481 482 return ret ? : res.result[0]; 483 } 484 EXPORT_SYMBOL_GPL(qcom_scm_set_remote_state); 485 qcom_scm_disable_sdi(void)486 static int qcom_scm_disable_sdi(void) 487 { 488 int ret; 489 struct qcom_scm_desc desc = { 490 .svc = QCOM_SCM_SVC_BOOT, 491 .cmd = QCOM_SCM_BOOT_SDI_CONFIG, 492 .args[0] = 1, /* Disable watchdog debug */ 493 .args[1] = 0, /* Disable SDI */ 494 .arginfo = QCOM_SCM_ARGS(2), 495 .owner = ARM_SMCCC_OWNER_SIP, 496 }; 497 struct qcom_scm_res res; 498 499 ret = qcom_scm_clk_enable(); 500 if (ret) 501 return ret; 502 ret = qcom_scm_call(__scm->dev, &desc, &res); 503 504 qcom_scm_clk_disable(); 505 506 return ret ? : res.result[0]; 507 } 508 __qcom_scm_set_dload_mode(struct device * dev,bool enable)509 static int __qcom_scm_set_dload_mode(struct device *dev, bool enable) 510 { 511 struct qcom_scm_desc desc = { 512 .svc = QCOM_SCM_SVC_BOOT, 513 .cmd = QCOM_SCM_BOOT_SET_DLOAD_MODE, 514 .arginfo = QCOM_SCM_ARGS(2), 515 .args[0] = QCOM_SCM_BOOT_SET_DLOAD_MODE, 516 .owner = ARM_SMCCC_OWNER_SIP, 517 }; 518 519 desc.args[1] = enable ? QCOM_SCM_BOOT_SET_DLOAD_MODE : 0; 520 521 return qcom_scm_call_atomic(__scm->dev, &desc, NULL); 522 } 523 qcom_scm_io_rmw(phys_addr_t addr,unsigned int mask,unsigned int val)524 static int qcom_scm_io_rmw(phys_addr_t addr, unsigned int mask, unsigned int val) 525 { 526 unsigned int old; 527 unsigned int new; 528 int ret; 529 530 ret = qcom_scm_io_readl(addr, &old); 531 if (ret) 532 return ret; 533 534 new = (old & ~mask) | (val & mask); 535 536 return qcom_scm_io_writel(addr, new); 537 } 538 qcom_scm_set_download_mode(u32 dload_mode)539 static void qcom_scm_set_download_mode(u32 dload_mode) 540 { 541 int ret = 0; 542 543 if (__scm->dload_mode_addr) { 544 ret = qcom_scm_io_rmw(__scm->dload_mode_addr, QCOM_DLOAD_MASK, 545 FIELD_PREP(QCOM_DLOAD_MASK, dload_mode)); 546 } else if (__qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_BOOT, 547 QCOM_SCM_BOOT_SET_DLOAD_MODE)) { 548 ret = __qcom_scm_set_dload_mode(__scm->dev, !!dload_mode); 549 } else if (dload_mode) { 550 dev_err(__scm->dev, 551 "No available mechanism for setting download mode\n"); 552 } 553 554 if (ret) 555 dev_err(__scm->dev, "failed to set download mode: %d\n", ret); 556 } 557 558 /** 559 * qcom_scm_pas_init_image() - Initialize peripheral authentication service 560 * state machine for a given peripheral, using the 561 * metadata 562 * @peripheral: peripheral id 563 * @metadata: pointer to memory containing ELF header, program header table 564 * and optional blob of data used for authenticating the metadata 565 * and the rest of the firmware 566 * @size: size of the metadata 567 * @ctx: optional metadata context 568 * 569 * Return: 0 on success. 570 * 571 * Upon successful return, the PAS metadata context (@ctx) will be used to 572 * track the metadata allocation, this needs to be released by invoking 573 * qcom_scm_pas_metadata_release() by the caller. 574 */ qcom_scm_pas_init_image(u32 peripheral,const void * metadata,size_t size,struct qcom_scm_pas_metadata * ctx)575 int qcom_scm_pas_init_image(u32 peripheral, const void *metadata, size_t size, 576 struct qcom_scm_pas_metadata *ctx) 577 { 578 dma_addr_t mdata_phys; 579 void *mdata_buf; 580 int ret; 581 struct qcom_scm_desc desc = { 582 .svc = QCOM_SCM_SVC_PIL, 583 .cmd = QCOM_SCM_PIL_PAS_INIT_IMAGE, 584 .arginfo = QCOM_SCM_ARGS(2, QCOM_SCM_VAL, QCOM_SCM_RW), 585 .args[0] = peripheral, 586 .owner = ARM_SMCCC_OWNER_SIP, 587 }; 588 struct qcom_scm_res res; 589 590 /* 591 * During the scm call memory protection will be enabled for the meta 592 * data blob, so make sure it's physically contiguous, 4K aligned and 593 * non-cachable to avoid XPU violations. 594 * 595 * For PIL calls the hypervisor creates SHM Bridges for the blob 596 * buffers on behalf of Linux so we must not do it ourselves hence 597 * not using the TZMem allocator here. 598 * 599 * If we pass a buffer that is already part of an SHM Bridge to this 600 * call, it will fail. 601 */ 602 mdata_buf = dma_alloc_coherent(__scm->dev, size, &mdata_phys, 603 GFP_KERNEL); 604 if (!mdata_buf) 605 return -ENOMEM; 606 607 memcpy(mdata_buf, metadata, size); 608 609 ret = qcom_scm_clk_enable(); 610 if (ret) 611 goto out; 612 613 ret = qcom_scm_bw_enable(); 614 if (ret) 615 goto disable_clk; 616 617 desc.args[1] = mdata_phys; 618 619 ret = qcom_scm_call(__scm->dev, &desc, &res); 620 qcom_scm_bw_disable(); 621 622 disable_clk: 623 qcom_scm_clk_disable(); 624 625 out: 626 if (ret < 0 || !ctx) { 627 dma_free_coherent(__scm->dev, size, mdata_buf, mdata_phys); 628 } else if (ctx) { 629 ctx->ptr = mdata_buf; 630 ctx->phys = mdata_phys; 631 ctx->size = size; 632 } 633 634 return ret ? : res.result[0]; 635 } 636 EXPORT_SYMBOL_GPL(qcom_scm_pas_init_image); 637 638 /** 639 * qcom_scm_pas_metadata_release() - release metadata context 640 * @ctx: metadata context 641 */ qcom_scm_pas_metadata_release(struct qcom_scm_pas_metadata * ctx)642 void qcom_scm_pas_metadata_release(struct qcom_scm_pas_metadata *ctx) 643 { 644 if (!ctx->ptr) 645 return; 646 647 dma_free_coherent(__scm->dev, ctx->size, ctx->ptr, ctx->phys); 648 649 ctx->ptr = NULL; 650 ctx->phys = 0; 651 ctx->size = 0; 652 } 653 EXPORT_SYMBOL_GPL(qcom_scm_pas_metadata_release); 654 655 /** 656 * qcom_scm_pas_mem_setup() - Prepare the memory related to a given peripheral 657 * for firmware loading 658 * @peripheral: peripheral id 659 * @addr: start address of memory area to prepare 660 * @size: size of the memory area to prepare 661 * 662 * Returns 0 on success. 663 */ qcom_scm_pas_mem_setup(u32 peripheral,phys_addr_t addr,phys_addr_t size)664 int qcom_scm_pas_mem_setup(u32 peripheral, phys_addr_t addr, phys_addr_t size) 665 { 666 int ret; 667 struct qcom_scm_desc desc = { 668 .svc = QCOM_SCM_SVC_PIL, 669 .cmd = QCOM_SCM_PIL_PAS_MEM_SETUP, 670 .arginfo = QCOM_SCM_ARGS(3), 671 .args[0] = peripheral, 672 .args[1] = addr, 673 .args[2] = size, 674 .owner = ARM_SMCCC_OWNER_SIP, 675 }; 676 struct qcom_scm_res res; 677 678 ret = qcom_scm_clk_enable(); 679 if (ret) 680 return ret; 681 682 ret = qcom_scm_bw_enable(); 683 if (ret) 684 goto disable_clk; 685 686 ret = qcom_scm_call(__scm->dev, &desc, &res); 687 qcom_scm_bw_disable(); 688 689 disable_clk: 690 qcom_scm_clk_disable(); 691 692 return ret ? : res.result[0]; 693 } 694 EXPORT_SYMBOL_GPL(qcom_scm_pas_mem_setup); 695 696 /** 697 * qcom_scm_pas_auth_and_reset() - Authenticate the given peripheral firmware 698 * and reset the remote processor 699 * @peripheral: peripheral id 700 * 701 * Return 0 on success. 702 */ qcom_scm_pas_auth_and_reset(u32 peripheral)703 int qcom_scm_pas_auth_and_reset(u32 peripheral) 704 { 705 int ret; 706 struct qcom_scm_desc desc = { 707 .svc = QCOM_SCM_SVC_PIL, 708 .cmd = QCOM_SCM_PIL_PAS_AUTH_AND_RESET, 709 .arginfo = QCOM_SCM_ARGS(1), 710 .args[0] = peripheral, 711 .owner = ARM_SMCCC_OWNER_SIP, 712 }; 713 struct qcom_scm_res res; 714 715 ret = qcom_scm_clk_enable(); 716 if (ret) 717 return ret; 718 719 ret = qcom_scm_bw_enable(); 720 if (ret) 721 goto disable_clk; 722 723 ret = qcom_scm_call(__scm->dev, &desc, &res); 724 qcom_scm_bw_disable(); 725 726 disable_clk: 727 qcom_scm_clk_disable(); 728 729 return ret ? : res.result[0]; 730 } 731 EXPORT_SYMBOL_GPL(qcom_scm_pas_auth_and_reset); 732 733 /** 734 * qcom_scm_pas_shutdown() - Shut down the remote processor 735 * @peripheral: peripheral id 736 * 737 * Returns 0 on success. 738 */ qcom_scm_pas_shutdown(u32 peripheral)739 int qcom_scm_pas_shutdown(u32 peripheral) 740 { 741 int ret; 742 struct qcom_scm_desc desc = { 743 .svc = QCOM_SCM_SVC_PIL, 744 .cmd = QCOM_SCM_PIL_PAS_SHUTDOWN, 745 .arginfo = QCOM_SCM_ARGS(1), 746 .args[0] = peripheral, 747 .owner = ARM_SMCCC_OWNER_SIP, 748 }; 749 struct qcom_scm_res res; 750 751 ret = qcom_scm_clk_enable(); 752 if (ret) 753 return ret; 754 755 ret = qcom_scm_bw_enable(); 756 if (ret) 757 goto disable_clk; 758 759 ret = qcom_scm_call(__scm->dev, &desc, &res); 760 qcom_scm_bw_disable(); 761 762 disable_clk: 763 qcom_scm_clk_disable(); 764 765 return ret ? : res.result[0]; 766 } 767 EXPORT_SYMBOL_GPL(qcom_scm_pas_shutdown); 768 769 /** 770 * qcom_scm_pas_supported() - Check if the peripheral authentication service is 771 * available for the given peripherial 772 * @peripheral: peripheral id 773 * 774 * Returns true if PAS is supported for this peripheral, otherwise false. 775 */ qcom_scm_pas_supported(u32 peripheral)776 bool qcom_scm_pas_supported(u32 peripheral) 777 { 778 int ret; 779 struct qcom_scm_desc desc = { 780 .svc = QCOM_SCM_SVC_PIL, 781 .cmd = QCOM_SCM_PIL_PAS_IS_SUPPORTED, 782 .arginfo = QCOM_SCM_ARGS(1), 783 .args[0] = peripheral, 784 .owner = ARM_SMCCC_OWNER_SIP, 785 }; 786 struct qcom_scm_res res; 787 788 if (!__qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_PIL, 789 QCOM_SCM_PIL_PAS_IS_SUPPORTED)) 790 return false; 791 792 ret = qcom_scm_call(__scm->dev, &desc, &res); 793 794 return ret ? false : !!res.result[0]; 795 } 796 EXPORT_SYMBOL_GPL(qcom_scm_pas_supported); 797 __qcom_scm_pas_mss_reset(struct device * dev,bool reset)798 static int __qcom_scm_pas_mss_reset(struct device *dev, bool reset) 799 { 800 struct qcom_scm_desc desc = { 801 .svc = QCOM_SCM_SVC_PIL, 802 .cmd = QCOM_SCM_PIL_PAS_MSS_RESET, 803 .arginfo = QCOM_SCM_ARGS(2), 804 .args[0] = reset, 805 .args[1] = 0, 806 .owner = ARM_SMCCC_OWNER_SIP, 807 }; 808 struct qcom_scm_res res; 809 int ret; 810 811 ret = qcom_scm_call(__scm->dev, &desc, &res); 812 813 return ret ? : res.result[0]; 814 } 815 qcom_scm_pas_reset_assert(struct reset_controller_dev * rcdev,unsigned long idx)816 static int qcom_scm_pas_reset_assert(struct reset_controller_dev *rcdev, 817 unsigned long idx) 818 { 819 if (idx != 0) 820 return -EINVAL; 821 822 return __qcom_scm_pas_mss_reset(__scm->dev, 1); 823 } 824 qcom_scm_pas_reset_deassert(struct reset_controller_dev * rcdev,unsigned long idx)825 static int qcom_scm_pas_reset_deassert(struct reset_controller_dev *rcdev, 826 unsigned long idx) 827 { 828 if (idx != 0) 829 return -EINVAL; 830 831 return __qcom_scm_pas_mss_reset(__scm->dev, 0); 832 } 833 834 static const struct reset_control_ops qcom_scm_pas_reset_ops = { 835 .assert = qcom_scm_pas_reset_assert, 836 .deassert = qcom_scm_pas_reset_deassert, 837 }; 838 qcom_scm_io_readl(phys_addr_t addr,unsigned int * val)839 int qcom_scm_io_readl(phys_addr_t addr, unsigned int *val) 840 { 841 struct qcom_scm_desc desc = { 842 .svc = QCOM_SCM_SVC_IO, 843 .cmd = QCOM_SCM_IO_READ, 844 .arginfo = QCOM_SCM_ARGS(1), 845 .args[0] = addr, 846 .owner = ARM_SMCCC_OWNER_SIP, 847 }; 848 struct qcom_scm_res res; 849 int ret; 850 851 852 ret = qcom_scm_call_atomic(__scm->dev, &desc, &res); 853 if (ret >= 0) 854 *val = res.result[0]; 855 856 return ret < 0 ? ret : 0; 857 } 858 EXPORT_SYMBOL_GPL(qcom_scm_io_readl); 859 qcom_scm_io_writel(phys_addr_t addr,unsigned int val)860 int qcom_scm_io_writel(phys_addr_t addr, unsigned int val) 861 { 862 struct qcom_scm_desc desc = { 863 .svc = QCOM_SCM_SVC_IO, 864 .cmd = QCOM_SCM_IO_WRITE, 865 .arginfo = QCOM_SCM_ARGS(2), 866 .args[0] = addr, 867 .args[1] = val, 868 .owner = ARM_SMCCC_OWNER_SIP, 869 }; 870 871 return qcom_scm_call_atomic(__scm->dev, &desc, NULL); 872 } 873 EXPORT_SYMBOL_GPL(qcom_scm_io_writel); 874 875 /** 876 * qcom_scm_restore_sec_cfg_available() - Check if secure environment 877 * supports restore security config interface. 878 * 879 * Return true if restore-cfg interface is supported, false if not. 880 */ qcom_scm_restore_sec_cfg_available(void)881 bool qcom_scm_restore_sec_cfg_available(void) 882 { 883 return __qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_MP, 884 QCOM_SCM_MP_RESTORE_SEC_CFG); 885 } 886 EXPORT_SYMBOL_GPL(qcom_scm_restore_sec_cfg_available); 887 qcom_scm_restore_sec_cfg(u32 device_id,u32 spare)888 int qcom_scm_restore_sec_cfg(u32 device_id, u32 spare) 889 { 890 struct qcom_scm_desc desc = { 891 .svc = QCOM_SCM_SVC_MP, 892 .cmd = QCOM_SCM_MP_RESTORE_SEC_CFG, 893 .arginfo = QCOM_SCM_ARGS(2), 894 .args[0] = device_id, 895 .args[1] = spare, 896 .owner = ARM_SMCCC_OWNER_SIP, 897 }; 898 struct qcom_scm_res res; 899 int ret; 900 901 ret = qcom_scm_call(__scm->dev, &desc, &res); 902 903 return ret ? : res.result[0]; 904 } 905 EXPORT_SYMBOL_GPL(qcom_scm_restore_sec_cfg); 906 qcom_scm_iommu_secure_ptbl_size(u32 spare,size_t * size)907 int qcom_scm_iommu_secure_ptbl_size(u32 spare, size_t *size) 908 { 909 struct qcom_scm_desc desc = { 910 .svc = QCOM_SCM_SVC_MP, 911 .cmd = QCOM_SCM_MP_IOMMU_SECURE_PTBL_SIZE, 912 .arginfo = QCOM_SCM_ARGS(1), 913 .args[0] = spare, 914 .owner = ARM_SMCCC_OWNER_SIP, 915 }; 916 struct qcom_scm_res res; 917 int ret; 918 919 ret = qcom_scm_call(__scm->dev, &desc, &res); 920 921 if (size) 922 *size = res.result[0]; 923 924 return ret ? : res.result[1]; 925 } 926 EXPORT_SYMBOL_GPL(qcom_scm_iommu_secure_ptbl_size); 927 qcom_scm_iommu_secure_ptbl_init(u64 addr,u32 size,u32 spare)928 int qcom_scm_iommu_secure_ptbl_init(u64 addr, u32 size, u32 spare) 929 { 930 struct qcom_scm_desc desc = { 931 .svc = QCOM_SCM_SVC_MP, 932 .cmd = QCOM_SCM_MP_IOMMU_SECURE_PTBL_INIT, 933 .arginfo = QCOM_SCM_ARGS(3, QCOM_SCM_RW, QCOM_SCM_VAL, 934 QCOM_SCM_VAL), 935 .args[0] = addr, 936 .args[1] = size, 937 .args[2] = spare, 938 .owner = ARM_SMCCC_OWNER_SIP, 939 }; 940 int ret; 941 942 ret = qcom_scm_call(__scm->dev, &desc, NULL); 943 944 /* the pg table has been initialized already, ignore the error */ 945 if (ret == -EPERM) 946 ret = 0; 947 948 return ret; 949 } 950 EXPORT_SYMBOL_GPL(qcom_scm_iommu_secure_ptbl_init); 951 qcom_scm_iommu_set_cp_pool_size(u32 spare,u32 size)952 int qcom_scm_iommu_set_cp_pool_size(u32 spare, u32 size) 953 { 954 struct qcom_scm_desc desc = { 955 .svc = QCOM_SCM_SVC_MP, 956 .cmd = QCOM_SCM_MP_IOMMU_SET_CP_POOL_SIZE, 957 .arginfo = QCOM_SCM_ARGS(2), 958 .args[0] = size, 959 .args[1] = spare, 960 .owner = ARM_SMCCC_OWNER_SIP, 961 }; 962 963 return qcom_scm_call(__scm->dev, &desc, NULL); 964 } 965 EXPORT_SYMBOL_GPL(qcom_scm_iommu_set_cp_pool_size); 966 qcom_scm_mem_protect_video_var(u32 cp_start,u32 cp_size,u32 cp_nonpixel_start,u32 cp_nonpixel_size)967 int qcom_scm_mem_protect_video_var(u32 cp_start, u32 cp_size, 968 u32 cp_nonpixel_start, 969 u32 cp_nonpixel_size) 970 { 971 int ret; 972 struct qcom_scm_desc desc = { 973 .svc = QCOM_SCM_SVC_MP, 974 .cmd = QCOM_SCM_MP_VIDEO_VAR, 975 .arginfo = QCOM_SCM_ARGS(4, QCOM_SCM_VAL, QCOM_SCM_VAL, 976 QCOM_SCM_VAL, QCOM_SCM_VAL), 977 .args[0] = cp_start, 978 .args[1] = cp_size, 979 .args[2] = cp_nonpixel_start, 980 .args[3] = cp_nonpixel_size, 981 .owner = ARM_SMCCC_OWNER_SIP, 982 }; 983 struct qcom_scm_res res; 984 985 ret = qcom_scm_call(__scm->dev, &desc, &res); 986 987 return ret ? : res.result[0]; 988 } 989 EXPORT_SYMBOL_GPL(qcom_scm_mem_protect_video_var); 990 __qcom_scm_assign_mem(struct device * dev,phys_addr_t mem_region,size_t mem_sz,phys_addr_t src,size_t src_sz,phys_addr_t dest,size_t dest_sz)991 static int __qcom_scm_assign_mem(struct device *dev, phys_addr_t mem_region, 992 size_t mem_sz, phys_addr_t src, size_t src_sz, 993 phys_addr_t dest, size_t dest_sz) 994 { 995 int ret; 996 struct qcom_scm_desc desc = { 997 .svc = QCOM_SCM_SVC_MP, 998 .cmd = QCOM_SCM_MP_ASSIGN, 999 .arginfo = QCOM_SCM_ARGS(7, QCOM_SCM_RO, QCOM_SCM_VAL, 1000 QCOM_SCM_RO, QCOM_SCM_VAL, QCOM_SCM_RO, 1001 QCOM_SCM_VAL, QCOM_SCM_VAL), 1002 .args[0] = mem_region, 1003 .args[1] = mem_sz, 1004 .args[2] = src, 1005 .args[3] = src_sz, 1006 .args[4] = dest, 1007 .args[5] = dest_sz, 1008 .args[6] = 0, 1009 .owner = ARM_SMCCC_OWNER_SIP, 1010 }; 1011 struct qcom_scm_res res; 1012 1013 ret = qcom_scm_call(dev, &desc, &res); 1014 1015 return ret ? : res.result[0]; 1016 } 1017 1018 /** 1019 * qcom_scm_assign_mem() - Make a secure call to reassign memory ownership 1020 * @mem_addr: mem region whose ownership need to be reassigned 1021 * @mem_sz: size of the region. 1022 * @srcvm: vmid for current set of owners, each set bit in 1023 * flag indicate a unique owner 1024 * @newvm: array having new owners and corresponding permission 1025 * flags 1026 * @dest_cnt: number of owners in next set. 1027 * 1028 * Return negative errno on failure or 0 on success with @srcvm updated. 1029 */ qcom_scm_assign_mem(phys_addr_t mem_addr,size_t mem_sz,u64 * srcvm,const struct qcom_scm_vmperm * newvm,unsigned int dest_cnt)1030 int qcom_scm_assign_mem(phys_addr_t mem_addr, size_t mem_sz, 1031 u64 *srcvm, 1032 const struct qcom_scm_vmperm *newvm, 1033 unsigned int dest_cnt) 1034 { 1035 struct qcom_scm_current_perm_info *destvm; 1036 struct qcom_scm_mem_map_info *mem_to_map; 1037 phys_addr_t mem_to_map_phys; 1038 phys_addr_t dest_phys; 1039 phys_addr_t ptr_phys; 1040 size_t mem_to_map_sz; 1041 size_t dest_sz; 1042 size_t src_sz; 1043 size_t ptr_sz; 1044 int next_vm; 1045 __le32 *src; 1046 int ret, i, b; 1047 u64 srcvm_bits = *srcvm; 1048 1049 src_sz = hweight64(srcvm_bits) * sizeof(*src); 1050 mem_to_map_sz = sizeof(*mem_to_map); 1051 dest_sz = dest_cnt * sizeof(*destvm); 1052 ptr_sz = ALIGN(src_sz, SZ_64) + ALIGN(mem_to_map_sz, SZ_64) + 1053 ALIGN(dest_sz, SZ_64); 1054 1055 void *ptr __free(qcom_tzmem) = qcom_tzmem_alloc(__scm->mempool, 1056 ptr_sz, GFP_KERNEL); 1057 if (!ptr) 1058 return -ENOMEM; 1059 1060 ptr_phys = qcom_tzmem_to_phys(ptr); 1061 1062 /* Fill source vmid detail */ 1063 src = ptr; 1064 i = 0; 1065 for (b = 0; b < BITS_PER_TYPE(u64); b++) { 1066 if (srcvm_bits & BIT(b)) 1067 src[i++] = cpu_to_le32(b); 1068 } 1069 1070 /* Fill details of mem buff to map */ 1071 mem_to_map = ptr + ALIGN(src_sz, SZ_64); 1072 mem_to_map_phys = ptr_phys + ALIGN(src_sz, SZ_64); 1073 mem_to_map->mem_addr = cpu_to_le64(mem_addr); 1074 mem_to_map->mem_size = cpu_to_le64(mem_sz); 1075 1076 next_vm = 0; 1077 /* Fill details of next vmid detail */ 1078 destvm = ptr + ALIGN(mem_to_map_sz, SZ_64) + ALIGN(src_sz, SZ_64); 1079 dest_phys = ptr_phys + ALIGN(mem_to_map_sz, SZ_64) + ALIGN(src_sz, SZ_64); 1080 for (i = 0; i < dest_cnt; i++, destvm++, newvm++) { 1081 destvm->vmid = cpu_to_le32(newvm->vmid); 1082 destvm->perm = cpu_to_le32(newvm->perm); 1083 destvm->ctx = 0; 1084 destvm->ctx_size = 0; 1085 next_vm |= BIT(newvm->vmid); 1086 } 1087 1088 ret = __qcom_scm_assign_mem(__scm->dev, mem_to_map_phys, mem_to_map_sz, 1089 ptr_phys, src_sz, dest_phys, dest_sz); 1090 if (ret) { 1091 dev_err(__scm->dev, 1092 "Assign memory protection call failed %d\n", ret); 1093 return -EINVAL; 1094 } 1095 1096 *srcvm = next_vm; 1097 return 0; 1098 } 1099 EXPORT_SYMBOL_GPL(qcom_scm_assign_mem); 1100 1101 /** 1102 * qcom_scm_ocmem_lock_available() - is OCMEM lock/unlock interface available 1103 */ qcom_scm_ocmem_lock_available(void)1104 bool qcom_scm_ocmem_lock_available(void) 1105 { 1106 return __qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_OCMEM, 1107 QCOM_SCM_OCMEM_LOCK_CMD); 1108 } 1109 EXPORT_SYMBOL_GPL(qcom_scm_ocmem_lock_available); 1110 1111 /** 1112 * qcom_scm_ocmem_lock() - call OCMEM lock interface to assign an OCMEM 1113 * region to the specified initiator 1114 * 1115 * @id: tz initiator id 1116 * @offset: OCMEM offset 1117 * @size: OCMEM size 1118 * @mode: access mode (WIDE/NARROW) 1119 */ qcom_scm_ocmem_lock(enum qcom_scm_ocmem_client id,u32 offset,u32 size,u32 mode)1120 int qcom_scm_ocmem_lock(enum qcom_scm_ocmem_client id, u32 offset, u32 size, 1121 u32 mode) 1122 { 1123 struct qcom_scm_desc desc = { 1124 .svc = QCOM_SCM_SVC_OCMEM, 1125 .cmd = QCOM_SCM_OCMEM_LOCK_CMD, 1126 .args[0] = id, 1127 .args[1] = offset, 1128 .args[2] = size, 1129 .args[3] = mode, 1130 .arginfo = QCOM_SCM_ARGS(4), 1131 }; 1132 1133 return qcom_scm_call(__scm->dev, &desc, NULL); 1134 } 1135 EXPORT_SYMBOL_GPL(qcom_scm_ocmem_lock); 1136 1137 /** 1138 * qcom_scm_ocmem_unlock() - call OCMEM unlock interface to release an OCMEM 1139 * region from the specified initiator 1140 * 1141 * @id: tz initiator id 1142 * @offset: OCMEM offset 1143 * @size: OCMEM size 1144 */ qcom_scm_ocmem_unlock(enum qcom_scm_ocmem_client id,u32 offset,u32 size)1145 int qcom_scm_ocmem_unlock(enum qcom_scm_ocmem_client id, u32 offset, u32 size) 1146 { 1147 struct qcom_scm_desc desc = { 1148 .svc = QCOM_SCM_SVC_OCMEM, 1149 .cmd = QCOM_SCM_OCMEM_UNLOCK_CMD, 1150 .args[0] = id, 1151 .args[1] = offset, 1152 .args[2] = size, 1153 .arginfo = QCOM_SCM_ARGS(3), 1154 }; 1155 1156 return qcom_scm_call(__scm->dev, &desc, NULL); 1157 } 1158 EXPORT_SYMBOL_GPL(qcom_scm_ocmem_unlock); 1159 1160 /** 1161 * qcom_scm_ice_available() - Is the ICE key programming interface available? 1162 * 1163 * Return: true iff the SCM calls wrapped by qcom_scm_ice_invalidate_key() and 1164 * qcom_scm_ice_set_key() are available. 1165 */ qcom_scm_ice_available(void)1166 bool qcom_scm_ice_available(void) 1167 { 1168 return __qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_ES, 1169 QCOM_SCM_ES_INVALIDATE_ICE_KEY) && 1170 __qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_ES, 1171 QCOM_SCM_ES_CONFIG_SET_ICE_KEY); 1172 } 1173 EXPORT_SYMBOL_GPL(qcom_scm_ice_available); 1174 1175 /** 1176 * qcom_scm_ice_invalidate_key() - Invalidate an inline encryption key 1177 * @index: the keyslot to invalidate 1178 * 1179 * The UFSHCI and eMMC standards define a standard way to do this, but it 1180 * doesn't work on these SoCs; only this SCM call does. 1181 * 1182 * It is assumed that the SoC has only one ICE instance being used, as this SCM 1183 * call doesn't specify which ICE instance the keyslot belongs to. 1184 * 1185 * Return: 0 on success; -errno on failure. 1186 */ qcom_scm_ice_invalidate_key(u32 index)1187 int qcom_scm_ice_invalidate_key(u32 index) 1188 { 1189 struct qcom_scm_desc desc = { 1190 .svc = QCOM_SCM_SVC_ES, 1191 .cmd = QCOM_SCM_ES_INVALIDATE_ICE_KEY, 1192 .arginfo = QCOM_SCM_ARGS(1), 1193 .args[0] = index, 1194 .owner = ARM_SMCCC_OWNER_SIP, 1195 }; 1196 1197 return qcom_scm_call(__scm->dev, &desc, NULL); 1198 } 1199 EXPORT_SYMBOL_GPL(qcom_scm_ice_invalidate_key); 1200 1201 /** 1202 * qcom_scm_ice_set_key() - Set an inline encryption key 1203 * @index: the keyslot into which to set the key 1204 * @key: the key to program 1205 * @key_size: the size of the key in bytes 1206 * @cipher: the encryption algorithm the key is for 1207 * @data_unit_size: the encryption data unit size, i.e. the size of each 1208 * individual plaintext and ciphertext. Given in 512-byte 1209 * units, e.g. 1 = 512 bytes, 8 = 4096 bytes, etc. 1210 * 1211 * Program a key into a keyslot of Qualcomm ICE (Inline Crypto Engine), where it 1212 * can then be used to encrypt/decrypt UFS or eMMC I/O requests inline. 1213 * 1214 * The UFSHCI and eMMC standards define a standard way to do this, but it 1215 * doesn't work on these SoCs; only this SCM call does. 1216 * 1217 * It is assumed that the SoC has only one ICE instance being used, as this SCM 1218 * call doesn't specify which ICE instance the keyslot belongs to. 1219 * 1220 * Return: 0 on success; -errno on failure. 1221 */ qcom_scm_ice_set_key(u32 index,const u8 * key,u32 key_size,enum qcom_scm_ice_cipher cipher,u32 data_unit_size)1222 int qcom_scm_ice_set_key(u32 index, const u8 *key, u32 key_size, 1223 enum qcom_scm_ice_cipher cipher, u32 data_unit_size) 1224 { 1225 struct qcom_scm_desc desc = { 1226 .svc = QCOM_SCM_SVC_ES, 1227 .cmd = QCOM_SCM_ES_CONFIG_SET_ICE_KEY, 1228 .arginfo = QCOM_SCM_ARGS(5, QCOM_SCM_VAL, QCOM_SCM_RW, 1229 QCOM_SCM_VAL, QCOM_SCM_VAL, 1230 QCOM_SCM_VAL), 1231 .args[0] = index, 1232 .args[2] = key_size, 1233 .args[3] = cipher, 1234 .args[4] = data_unit_size, 1235 .owner = ARM_SMCCC_OWNER_SIP, 1236 }; 1237 1238 int ret; 1239 1240 void *keybuf __free(qcom_tzmem) = qcom_tzmem_alloc(__scm->mempool, 1241 key_size, 1242 GFP_KERNEL); 1243 if (!keybuf) 1244 return -ENOMEM; 1245 memcpy(keybuf, key, key_size); 1246 desc.args[1] = qcom_tzmem_to_phys(keybuf); 1247 1248 ret = qcom_scm_call(__scm->dev, &desc, NULL); 1249 1250 memzero_explicit(keybuf, key_size); 1251 1252 return ret; 1253 } 1254 EXPORT_SYMBOL_GPL(qcom_scm_ice_set_key); 1255 1256 /** 1257 * qcom_scm_hdcp_available() - Check if secure environment supports HDCP. 1258 * 1259 * Return true if HDCP is supported, false if not. 1260 */ qcom_scm_hdcp_available(void)1261 bool qcom_scm_hdcp_available(void) 1262 { 1263 bool avail; 1264 int ret = qcom_scm_clk_enable(); 1265 1266 if (ret) 1267 return ret; 1268 1269 avail = __qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_HDCP, 1270 QCOM_SCM_HDCP_INVOKE); 1271 1272 qcom_scm_clk_disable(); 1273 1274 return avail; 1275 } 1276 EXPORT_SYMBOL_GPL(qcom_scm_hdcp_available); 1277 1278 /** 1279 * qcom_scm_hdcp_req() - Send HDCP request. 1280 * @req: HDCP request array 1281 * @req_cnt: HDCP request array count 1282 * @resp: response buffer passed to SCM 1283 * 1284 * Write HDCP register(s) through SCM. 1285 */ qcom_scm_hdcp_req(struct qcom_scm_hdcp_req * req,u32 req_cnt,u32 * resp)1286 int qcom_scm_hdcp_req(struct qcom_scm_hdcp_req *req, u32 req_cnt, u32 *resp) 1287 { 1288 int ret; 1289 struct qcom_scm_desc desc = { 1290 .svc = QCOM_SCM_SVC_HDCP, 1291 .cmd = QCOM_SCM_HDCP_INVOKE, 1292 .arginfo = QCOM_SCM_ARGS(10), 1293 .args = { 1294 req[0].addr, 1295 req[0].val, 1296 req[1].addr, 1297 req[1].val, 1298 req[2].addr, 1299 req[2].val, 1300 req[3].addr, 1301 req[3].val, 1302 req[4].addr, 1303 req[4].val 1304 }, 1305 .owner = ARM_SMCCC_OWNER_SIP, 1306 }; 1307 struct qcom_scm_res res; 1308 1309 if (req_cnt > QCOM_SCM_HDCP_MAX_REQ_CNT) 1310 return -ERANGE; 1311 1312 ret = qcom_scm_clk_enable(); 1313 if (ret) 1314 return ret; 1315 1316 ret = qcom_scm_call(__scm->dev, &desc, &res); 1317 *resp = res.result[0]; 1318 1319 qcom_scm_clk_disable(); 1320 1321 return ret; 1322 } 1323 EXPORT_SYMBOL_GPL(qcom_scm_hdcp_req); 1324 qcom_scm_iommu_set_pt_format(u32 sec_id,u32 ctx_num,u32 pt_fmt)1325 int qcom_scm_iommu_set_pt_format(u32 sec_id, u32 ctx_num, u32 pt_fmt) 1326 { 1327 struct qcom_scm_desc desc = { 1328 .svc = QCOM_SCM_SVC_SMMU_PROGRAM, 1329 .cmd = QCOM_SCM_SMMU_PT_FORMAT, 1330 .arginfo = QCOM_SCM_ARGS(3), 1331 .args[0] = sec_id, 1332 .args[1] = ctx_num, 1333 .args[2] = pt_fmt, /* 0: LPAE AArch32 - 1: AArch64 */ 1334 .owner = ARM_SMCCC_OWNER_SIP, 1335 }; 1336 1337 return qcom_scm_call(__scm->dev, &desc, NULL); 1338 } 1339 EXPORT_SYMBOL_GPL(qcom_scm_iommu_set_pt_format); 1340 qcom_scm_qsmmu500_wait_safe_toggle(bool en)1341 int qcom_scm_qsmmu500_wait_safe_toggle(bool en) 1342 { 1343 struct qcom_scm_desc desc = { 1344 .svc = QCOM_SCM_SVC_SMMU_PROGRAM, 1345 .cmd = QCOM_SCM_SMMU_CONFIG_ERRATA1, 1346 .arginfo = QCOM_SCM_ARGS(2), 1347 .args[0] = QCOM_SCM_SMMU_CONFIG_ERRATA1_CLIENT_ALL, 1348 .args[1] = en, 1349 .owner = ARM_SMCCC_OWNER_SIP, 1350 }; 1351 1352 1353 return qcom_scm_call_atomic(__scm->dev, &desc, NULL); 1354 } 1355 EXPORT_SYMBOL_GPL(qcom_scm_qsmmu500_wait_safe_toggle); 1356 qcom_scm_lmh_dcvsh_available(void)1357 bool qcom_scm_lmh_dcvsh_available(void) 1358 { 1359 return __qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_LMH, QCOM_SCM_LMH_LIMIT_DCVSH); 1360 } 1361 EXPORT_SYMBOL_GPL(qcom_scm_lmh_dcvsh_available); 1362 qcom_scm_shm_bridge_enable(void)1363 int qcom_scm_shm_bridge_enable(void) 1364 { 1365 int ret; 1366 1367 struct qcom_scm_desc desc = { 1368 .svc = QCOM_SCM_SVC_MP, 1369 .cmd = QCOM_SCM_MP_SHM_BRIDGE_ENABLE, 1370 .owner = ARM_SMCCC_OWNER_SIP 1371 }; 1372 1373 struct qcom_scm_res res; 1374 1375 if (!__qcom_scm_is_call_available(__scm->dev, QCOM_SCM_SVC_MP, 1376 QCOM_SCM_MP_SHM_BRIDGE_ENABLE)) 1377 return -EOPNOTSUPP; 1378 1379 ret = qcom_scm_call(__scm->dev, &desc, &res); 1380 1381 if (ret) 1382 return ret; 1383 1384 if (res.result[0] == SHMBRIDGE_RESULT_NOTSUPP) 1385 return -EOPNOTSUPP; 1386 1387 return res.result[0]; 1388 } 1389 EXPORT_SYMBOL_GPL(qcom_scm_shm_bridge_enable); 1390 qcom_scm_shm_bridge_create(struct device * dev,u64 pfn_and_ns_perm_flags,u64 ipfn_and_s_perm_flags,u64 size_and_flags,u64 ns_vmids,u64 * handle)1391 int qcom_scm_shm_bridge_create(struct device *dev, u64 pfn_and_ns_perm_flags, 1392 u64 ipfn_and_s_perm_flags, u64 size_and_flags, 1393 u64 ns_vmids, u64 *handle) 1394 { 1395 struct qcom_scm_desc desc = { 1396 .svc = QCOM_SCM_SVC_MP, 1397 .cmd = QCOM_SCM_MP_SHM_BRIDGE_CREATE, 1398 .owner = ARM_SMCCC_OWNER_SIP, 1399 .args[0] = pfn_and_ns_perm_flags, 1400 .args[1] = ipfn_and_s_perm_flags, 1401 .args[2] = size_and_flags, 1402 .args[3] = ns_vmids, 1403 .arginfo = QCOM_SCM_ARGS(4, QCOM_SCM_VAL, QCOM_SCM_VAL, 1404 QCOM_SCM_VAL, QCOM_SCM_VAL), 1405 }; 1406 1407 struct qcom_scm_res res; 1408 int ret; 1409 1410 ret = qcom_scm_call(__scm->dev, &desc, &res); 1411 1412 if (handle && !ret) 1413 *handle = res.result[1]; 1414 1415 return ret ?: res.result[0]; 1416 } 1417 EXPORT_SYMBOL_GPL(qcom_scm_shm_bridge_create); 1418 qcom_scm_shm_bridge_delete(struct device * dev,u64 handle)1419 int qcom_scm_shm_bridge_delete(struct device *dev, u64 handle) 1420 { 1421 struct qcom_scm_desc desc = { 1422 .svc = QCOM_SCM_SVC_MP, 1423 .cmd = QCOM_SCM_MP_SHM_BRIDGE_DELETE, 1424 .owner = ARM_SMCCC_OWNER_SIP, 1425 .args[0] = handle, 1426 .arginfo = QCOM_SCM_ARGS(1, QCOM_SCM_VAL), 1427 }; 1428 1429 return qcom_scm_call(__scm->dev, &desc, NULL); 1430 } 1431 EXPORT_SYMBOL_GPL(qcom_scm_shm_bridge_delete); 1432 qcom_scm_lmh_profile_change(u32 profile_id)1433 int qcom_scm_lmh_profile_change(u32 profile_id) 1434 { 1435 struct qcom_scm_desc desc = { 1436 .svc = QCOM_SCM_SVC_LMH, 1437 .cmd = QCOM_SCM_LMH_LIMIT_PROFILE_CHANGE, 1438 .arginfo = QCOM_SCM_ARGS(1, QCOM_SCM_VAL), 1439 .args[0] = profile_id, 1440 .owner = ARM_SMCCC_OWNER_SIP, 1441 }; 1442 1443 return qcom_scm_call(__scm->dev, &desc, NULL); 1444 } 1445 EXPORT_SYMBOL_GPL(qcom_scm_lmh_profile_change); 1446 qcom_scm_lmh_dcvsh(u32 payload_fn,u32 payload_reg,u32 payload_val,u64 limit_node,u32 node_id,u64 version)1447 int qcom_scm_lmh_dcvsh(u32 payload_fn, u32 payload_reg, u32 payload_val, 1448 u64 limit_node, u32 node_id, u64 version) 1449 { 1450 int ret, payload_size = 5 * sizeof(u32); 1451 1452 struct qcom_scm_desc desc = { 1453 .svc = QCOM_SCM_SVC_LMH, 1454 .cmd = QCOM_SCM_LMH_LIMIT_DCVSH, 1455 .arginfo = QCOM_SCM_ARGS(5, QCOM_SCM_RO, QCOM_SCM_VAL, QCOM_SCM_VAL, 1456 QCOM_SCM_VAL, QCOM_SCM_VAL), 1457 .args[1] = payload_size, 1458 .args[2] = limit_node, 1459 .args[3] = node_id, 1460 .args[4] = version, 1461 .owner = ARM_SMCCC_OWNER_SIP, 1462 }; 1463 1464 u32 *payload_buf __free(qcom_tzmem) = qcom_tzmem_alloc(__scm->mempool, 1465 payload_size, 1466 GFP_KERNEL); 1467 if (!payload_buf) 1468 return -ENOMEM; 1469 1470 payload_buf[0] = payload_fn; 1471 payload_buf[1] = 0; 1472 payload_buf[2] = payload_reg; 1473 payload_buf[3] = 1; 1474 payload_buf[4] = payload_val; 1475 1476 desc.args[0] = qcom_tzmem_to_phys(payload_buf); 1477 1478 ret = qcom_scm_call(__scm->dev, &desc, NULL); 1479 1480 return ret; 1481 } 1482 EXPORT_SYMBOL_GPL(qcom_scm_lmh_dcvsh); 1483 qcom_scm_gpu_init_regs(u32 gpu_req)1484 int qcom_scm_gpu_init_regs(u32 gpu_req) 1485 { 1486 struct qcom_scm_desc desc = { 1487 .svc = QCOM_SCM_SVC_GPU, 1488 .cmd = QCOM_SCM_SVC_GPU_INIT_REGS, 1489 .arginfo = QCOM_SCM_ARGS(1), 1490 .args[0] = gpu_req, 1491 .owner = ARM_SMCCC_OWNER_SIP, 1492 }; 1493 1494 return qcom_scm_call(__scm->dev, &desc, NULL); 1495 } 1496 EXPORT_SYMBOL_GPL(qcom_scm_gpu_init_regs); 1497 qcom_scm_find_dload_address(struct device * dev,u64 * addr)1498 static int qcom_scm_find_dload_address(struct device *dev, u64 *addr) 1499 { 1500 struct device_node *tcsr; 1501 struct device_node *np = dev->of_node; 1502 struct resource res; 1503 u32 offset; 1504 int ret; 1505 1506 tcsr = of_parse_phandle(np, "qcom,dload-mode", 0); 1507 if (!tcsr) 1508 return 0; 1509 1510 ret = of_address_to_resource(tcsr, 0, &res); 1511 of_node_put(tcsr); 1512 if (ret) 1513 return ret; 1514 1515 ret = of_property_read_u32_index(np, "qcom,dload-mode", 1, &offset); 1516 if (ret < 0) 1517 return ret; 1518 1519 *addr = res.start + offset; 1520 1521 return 0; 1522 } 1523 1524 #ifdef CONFIG_QCOM_QSEECOM 1525 1526 /* Lock for QSEECOM SCM call executions */ 1527 static DEFINE_MUTEX(qcom_scm_qseecom_call_lock); 1528 __qcom_scm_qseecom_call(const struct qcom_scm_desc * desc,struct qcom_scm_qseecom_resp * res)1529 static int __qcom_scm_qseecom_call(const struct qcom_scm_desc *desc, 1530 struct qcom_scm_qseecom_resp *res) 1531 { 1532 struct qcom_scm_res scm_res = {}; 1533 int status; 1534 1535 /* 1536 * QSEECOM SCM calls should not be executed concurrently. Therefore, we 1537 * require the respective call lock to be held. 1538 */ 1539 lockdep_assert_held(&qcom_scm_qseecom_call_lock); 1540 1541 status = qcom_scm_call(__scm->dev, desc, &scm_res); 1542 1543 res->result = scm_res.result[0]; 1544 res->resp_type = scm_res.result[1]; 1545 res->data = scm_res.result[2]; 1546 1547 if (status) 1548 return status; 1549 1550 return 0; 1551 } 1552 1553 /** 1554 * qcom_scm_qseecom_call() - Perform a QSEECOM SCM call. 1555 * @desc: SCM call descriptor. 1556 * @res: SCM call response (output). 1557 * 1558 * Performs the QSEECOM SCM call described by @desc, returning the response in 1559 * @rsp. 1560 * 1561 * Return: Zero on success, nonzero on failure. 1562 */ qcom_scm_qseecom_call(const struct qcom_scm_desc * desc,struct qcom_scm_qseecom_resp * res)1563 static int qcom_scm_qseecom_call(const struct qcom_scm_desc *desc, 1564 struct qcom_scm_qseecom_resp *res) 1565 { 1566 int status; 1567 1568 /* 1569 * Note: Multiple QSEECOM SCM calls should not be executed same time, 1570 * so lock things here. This needs to be extended to callback/listener 1571 * handling when support for that is implemented. 1572 */ 1573 1574 mutex_lock(&qcom_scm_qseecom_call_lock); 1575 status = __qcom_scm_qseecom_call(desc, res); 1576 mutex_unlock(&qcom_scm_qseecom_call_lock); 1577 1578 dev_dbg(__scm->dev, "%s: owner=%x, svc=%x, cmd=%x, result=%lld, type=%llx, data=%llx\n", 1579 __func__, desc->owner, desc->svc, desc->cmd, res->result, 1580 res->resp_type, res->data); 1581 1582 if (status) { 1583 dev_err(__scm->dev, "qseecom: scm call failed with error %d\n", status); 1584 return status; 1585 } 1586 1587 /* 1588 * TODO: Handle incomplete and blocked calls: 1589 * 1590 * Incomplete and blocked calls are not supported yet. Some devices 1591 * and/or commands require those, some don't. Let's warn about them 1592 * prominently in case someone attempts to try these commands with a 1593 * device/command combination that isn't supported yet. 1594 */ 1595 WARN_ON(res->result == QSEECOM_RESULT_INCOMPLETE); 1596 WARN_ON(res->result == QSEECOM_RESULT_BLOCKED_ON_LISTENER); 1597 1598 return 0; 1599 } 1600 1601 /** 1602 * qcom_scm_qseecom_get_version() - Query the QSEECOM version. 1603 * @version: Pointer where the QSEECOM version will be stored. 1604 * 1605 * Performs the QSEECOM SCM querying the QSEECOM version currently running in 1606 * the TrustZone. 1607 * 1608 * Return: Zero on success, nonzero on failure. 1609 */ qcom_scm_qseecom_get_version(u32 * version)1610 static int qcom_scm_qseecom_get_version(u32 *version) 1611 { 1612 struct qcom_scm_desc desc = {}; 1613 struct qcom_scm_qseecom_resp res = {}; 1614 u32 feature = 10; 1615 int ret; 1616 1617 desc.owner = QSEECOM_TZ_OWNER_SIP; 1618 desc.svc = QSEECOM_TZ_SVC_INFO; 1619 desc.cmd = QSEECOM_TZ_CMD_INFO_VERSION; 1620 desc.arginfo = QCOM_SCM_ARGS(1, QCOM_SCM_VAL); 1621 desc.args[0] = feature; 1622 1623 ret = qcom_scm_qseecom_call(&desc, &res); 1624 if (ret) 1625 return ret; 1626 1627 *version = res.result; 1628 return 0; 1629 } 1630 1631 /** 1632 * qcom_scm_qseecom_app_get_id() - Query the app ID for a given QSEE app name. 1633 * @app_name: The name of the app. 1634 * @app_id: The returned app ID. 1635 * 1636 * Query and return the application ID of the SEE app identified by the given 1637 * name. This returned ID is the unique identifier of the app required for 1638 * subsequent communication. 1639 * 1640 * Return: Zero on success, nonzero on failure, -ENOENT if the app has not been 1641 * loaded or could not be found. 1642 */ qcom_scm_qseecom_app_get_id(const char * app_name,u32 * app_id)1643 int qcom_scm_qseecom_app_get_id(const char *app_name, u32 *app_id) 1644 { 1645 unsigned long name_buf_size = QSEECOM_MAX_APP_NAME_SIZE; 1646 unsigned long app_name_len = strlen(app_name); 1647 struct qcom_scm_desc desc = {}; 1648 struct qcom_scm_qseecom_resp res = {}; 1649 int status; 1650 1651 if (app_name_len >= name_buf_size) 1652 return -EINVAL; 1653 1654 char *name_buf __free(qcom_tzmem) = qcom_tzmem_alloc(__scm->mempool, 1655 name_buf_size, 1656 GFP_KERNEL); 1657 if (!name_buf) 1658 return -ENOMEM; 1659 1660 memcpy(name_buf, app_name, app_name_len); 1661 1662 desc.owner = QSEECOM_TZ_OWNER_QSEE_OS; 1663 desc.svc = QSEECOM_TZ_SVC_APP_MGR; 1664 desc.cmd = QSEECOM_TZ_CMD_APP_LOOKUP; 1665 desc.arginfo = QCOM_SCM_ARGS(2, QCOM_SCM_RW, QCOM_SCM_VAL); 1666 desc.args[0] = qcom_tzmem_to_phys(name_buf); 1667 desc.args[1] = app_name_len; 1668 1669 status = qcom_scm_qseecom_call(&desc, &res); 1670 1671 if (status) 1672 return status; 1673 1674 if (res.result == QSEECOM_RESULT_FAILURE) 1675 return -ENOENT; 1676 1677 if (res.result != QSEECOM_RESULT_SUCCESS) 1678 return -EINVAL; 1679 1680 if (res.resp_type != QSEECOM_SCM_RES_APP_ID) 1681 return -EINVAL; 1682 1683 *app_id = res.data; 1684 return 0; 1685 } 1686 EXPORT_SYMBOL_GPL(qcom_scm_qseecom_app_get_id); 1687 1688 /** 1689 * qcom_scm_qseecom_app_send() - Send to and receive data from a given QSEE app. 1690 * @app_id: The ID of the target app. 1691 * @req: Request buffer sent to the app (must be TZ memory) 1692 * @req_size: Size of the request buffer. 1693 * @rsp: Response buffer, written to by the app (must be TZ memory) 1694 * @rsp_size: Size of the response buffer. 1695 * 1696 * Sends a request to the QSEE app associated with the given ID and read back 1697 * its response. The caller must provide two DMA memory regions, one for the 1698 * request and one for the response, and fill out the @req region with the 1699 * respective (app-specific) request data. The QSEE app reads this and returns 1700 * its response in the @rsp region. 1701 * 1702 * Return: Zero on success, nonzero on failure. 1703 */ qcom_scm_qseecom_app_send(u32 app_id,void * req,size_t req_size,void * rsp,size_t rsp_size)1704 int qcom_scm_qseecom_app_send(u32 app_id, void *req, size_t req_size, 1705 void *rsp, size_t rsp_size) 1706 { 1707 struct qcom_scm_qseecom_resp res = {}; 1708 struct qcom_scm_desc desc = {}; 1709 phys_addr_t req_phys; 1710 phys_addr_t rsp_phys; 1711 int status; 1712 1713 req_phys = qcom_tzmem_to_phys(req); 1714 rsp_phys = qcom_tzmem_to_phys(rsp); 1715 1716 desc.owner = QSEECOM_TZ_OWNER_TZ_APPS; 1717 desc.svc = QSEECOM_TZ_SVC_APP_ID_PLACEHOLDER; 1718 desc.cmd = QSEECOM_TZ_CMD_APP_SEND; 1719 desc.arginfo = QCOM_SCM_ARGS(5, QCOM_SCM_VAL, 1720 QCOM_SCM_RW, QCOM_SCM_VAL, 1721 QCOM_SCM_RW, QCOM_SCM_VAL); 1722 desc.args[0] = app_id; 1723 desc.args[1] = req_phys; 1724 desc.args[2] = req_size; 1725 desc.args[3] = rsp_phys; 1726 desc.args[4] = rsp_size; 1727 1728 status = qcom_scm_qseecom_call(&desc, &res); 1729 1730 if (status) 1731 return status; 1732 1733 if (res.result != QSEECOM_RESULT_SUCCESS) 1734 return -EIO; 1735 1736 return 0; 1737 } 1738 EXPORT_SYMBOL_GPL(qcom_scm_qseecom_app_send); 1739 1740 /* 1741 * We do not yet support re-entrant calls via the qseecom interface. To prevent 1742 + any potential issues with this, only allow validated machines for now. 1743 */ 1744 static const struct of_device_id qcom_scm_qseecom_allowlist[] __maybe_unused = { 1745 { .compatible = "lenovo,flex-5g" }, 1746 { .compatible = "lenovo,thinkpad-t14s" }, 1747 { .compatible = "lenovo,thinkpad-x13s", }, 1748 { .compatible = "microsoft,romulus13", }, 1749 { .compatible = "microsoft,romulus15", }, 1750 { .compatible = "qcom,sc8180x-primus" }, 1751 { .compatible = "qcom,x1e80100-crd" }, 1752 { .compatible = "qcom,x1e80100-qcp" }, 1753 { } 1754 }; 1755 qcom_scm_qseecom_machine_is_allowed(void)1756 static bool qcom_scm_qseecom_machine_is_allowed(void) 1757 { 1758 struct device_node *np; 1759 bool match; 1760 1761 np = of_find_node_by_path("/"); 1762 if (!np) 1763 return false; 1764 1765 match = of_match_node(qcom_scm_qseecom_allowlist, np); 1766 of_node_put(np); 1767 1768 return match; 1769 } 1770 qcom_scm_qseecom_free(void * data)1771 static void qcom_scm_qseecom_free(void *data) 1772 { 1773 struct platform_device *qseecom_dev = data; 1774 1775 platform_device_del(qseecom_dev); 1776 platform_device_put(qseecom_dev); 1777 } 1778 qcom_scm_qseecom_init(struct qcom_scm * scm)1779 static int qcom_scm_qseecom_init(struct qcom_scm *scm) 1780 { 1781 struct platform_device *qseecom_dev; 1782 u32 version; 1783 int ret; 1784 1785 /* 1786 * Note: We do two steps of validation here: First, we try to query the 1787 * QSEECOM version as a check to see if the interface exists on this 1788 * device. Second, we check against known good devices due to current 1789 * driver limitations (see comment in qcom_scm_qseecom_allowlist). 1790 * 1791 * Note that we deliberately do the machine check after the version 1792 * check so that we can log potentially supported devices. This should 1793 * be safe as downstream sources indicate that the version query is 1794 * neither blocking nor reentrant. 1795 */ 1796 ret = qcom_scm_qseecom_get_version(&version); 1797 if (ret) 1798 return 0; 1799 1800 dev_info(scm->dev, "qseecom: found qseecom with version 0x%x\n", version); 1801 1802 if (!qcom_scm_qseecom_machine_is_allowed()) { 1803 dev_info(scm->dev, "qseecom: untested machine, skipping\n"); 1804 return 0; 1805 } 1806 1807 /* 1808 * Set up QSEECOM interface device. All application clients will be 1809 * set up and managed by the corresponding driver for it. 1810 */ 1811 qseecom_dev = platform_device_alloc("qcom_qseecom", -1); 1812 if (!qseecom_dev) 1813 return -ENOMEM; 1814 1815 qseecom_dev->dev.parent = scm->dev; 1816 1817 ret = platform_device_add(qseecom_dev); 1818 if (ret) { 1819 platform_device_put(qseecom_dev); 1820 return ret; 1821 } 1822 1823 return devm_add_action_or_reset(scm->dev, qcom_scm_qseecom_free, qseecom_dev); 1824 } 1825 1826 #else /* CONFIG_QCOM_QSEECOM */ 1827 qcom_scm_qseecom_init(struct qcom_scm * scm)1828 static int qcom_scm_qseecom_init(struct qcom_scm *scm) 1829 { 1830 return 0; 1831 } 1832 1833 #endif /* CONFIG_QCOM_QSEECOM */ 1834 1835 /** 1836 * qcom_scm_is_available() - Checks if SCM is available 1837 */ qcom_scm_is_available(void)1838 bool qcom_scm_is_available(void) 1839 { 1840 return !!READ_ONCE(__scm); 1841 } 1842 EXPORT_SYMBOL_GPL(qcom_scm_is_available); 1843 qcom_scm_assert_valid_wq_ctx(u32 wq_ctx)1844 static int qcom_scm_assert_valid_wq_ctx(u32 wq_ctx) 1845 { 1846 /* FW currently only supports a single wq_ctx (zero). 1847 * TODO: Update this logic to include dynamic allocation and lookup of 1848 * completion structs when FW supports more wq_ctx values. 1849 */ 1850 if (wq_ctx != 0) { 1851 dev_err(__scm->dev, "Firmware unexpectedly passed non-zero wq_ctx\n"); 1852 return -EINVAL; 1853 } 1854 1855 return 0; 1856 } 1857 qcom_scm_wait_for_wq_completion(u32 wq_ctx)1858 int qcom_scm_wait_for_wq_completion(u32 wq_ctx) 1859 { 1860 int ret; 1861 1862 ret = qcom_scm_assert_valid_wq_ctx(wq_ctx); 1863 if (ret) 1864 return ret; 1865 1866 wait_for_completion(&__scm->waitq_comp); 1867 1868 return 0; 1869 } 1870 qcom_scm_waitq_wakeup(unsigned int wq_ctx)1871 static int qcom_scm_waitq_wakeup(unsigned int wq_ctx) 1872 { 1873 int ret; 1874 1875 ret = qcom_scm_assert_valid_wq_ctx(wq_ctx); 1876 if (ret) 1877 return ret; 1878 1879 complete(&__scm->waitq_comp); 1880 1881 return 0; 1882 } 1883 qcom_scm_irq_handler(int irq,void * data)1884 static irqreturn_t qcom_scm_irq_handler(int irq, void *data) 1885 { 1886 int ret; 1887 struct qcom_scm *scm = data; 1888 u32 wq_ctx, flags, more_pending = 0; 1889 1890 do { 1891 ret = scm_get_wq_ctx(&wq_ctx, &flags, &more_pending); 1892 if (ret) { 1893 dev_err(scm->dev, "GET_WQ_CTX SMC call failed: %d\n", ret); 1894 goto out; 1895 } 1896 1897 if (flags != QCOM_SMC_WAITQ_FLAG_WAKE_ONE) { 1898 dev_err(scm->dev, "Invalid flags received for wq_ctx: %u\n", flags); 1899 goto out; 1900 } 1901 1902 ret = qcom_scm_waitq_wakeup(wq_ctx); 1903 if (ret) 1904 goto out; 1905 } while (more_pending); 1906 1907 out: 1908 return IRQ_HANDLED; 1909 } 1910 get_download_mode(char * buffer,const struct kernel_param * kp)1911 static int get_download_mode(char *buffer, const struct kernel_param *kp) 1912 { 1913 if (download_mode >= ARRAY_SIZE(download_mode_name)) 1914 return sysfs_emit(buffer, "unknown mode\n"); 1915 1916 return sysfs_emit(buffer, "%s\n", download_mode_name[download_mode]); 1917 } 1918 set_download_mode(const char * val,const struct kernel_param * kp)1919 static int set_download_mode(const char *val, const struct kernel_param *kp) 1920 { 1921 bool tmp; 1922 int ret; 1923 1924 ret = sysfs_match_string(download_mode_name, val); 1925 if (ret < 0) { 1926 ret = kstrtobool(val, &tmp); 1927 if (ret < 0) { 1928 pr_err("qcom_scm: err: %d\n", ret); 1929 return ret; 1930 } 1931 1932 ret = tmp ? 1 : 0; 1933 } 1934 1935 download_mode = ret; 1936 if (__scm) 1937 qcom_scm_set_download_mode(download_mode); 1938 1939 return 0; 1940 } 1941 1942 static const struct kernel_param_ops download_mode_param_ops = { 1943 .get = get_download_mode, 1944 .set = set_download_mode, 1945 }; 1946 1947 module_param_cb(download_mode, &download_mode_param_ops, NULL, 0644); 1948 MODULE_PARM_DESC(download_mode, "download mode: off/0/N for no dump mode, full/on/1/Y for full dump mode, mini for minidump mode and full,mini for both full and minidump mode together are acceptable values"); 1949 qcom_scm_probe(struct platform_device * pdev)1950 static int qcom_scm_probe(struct platform_device *pdev) 1951 { 1952 struct qcom_tzmem_pool_config pool_config; 1953 struct qcom_scm *scm; 1954 int irq, ret; 1955 1956 scm = devm_kzalloc(&pdev->dev, sizeof(*scm), GFP_KERNEL); 1957 if (!scm) 1958 return -ENOMEM; 1959 1960 scm->dev = &pdev->dev; 1961 ret = qcom_scm_find_dload_address(&pdev->dev, &scm->dload_mode_addr); 1962 if (ret < 0) 1963 return ret; 1964 1965 init_completion(&scm->waitq_comp); 1966 mutex_init(&scm->scm_bw_lock); 1967 1968 scm->path = devm_of_icc_get(&pdev->dev, NULL); 1969 if (IS_ERR(scm->path)) 1970 return dev_err_probe(&pdev->dev, PTR_ERR(scm->path), 1971 "failed to acquire interconnect path\n"); 1972 1973 scm->core_clk = devm_clk_get_optional(&pdev->dev, "core"); 1974 if (IS_ERR(scm->core_clk)) 1975 return PTR_ERR(scm->core_clk); 1976 1977 scm->iface_clk = devm_clk_get_optional(&pdev->dev, "iface"); 1978 if (IS_ERR(scm->iface_clk)) 1979 return PTR_ERR(scm->iface_clk); 1980 1981 scm->bus_clk = devm_clk_get_optional(&pdev->dev, "bus"); 1982 if (IS_ERR(scm->bus_clk)) 1983 return PTR_ERR(scm->bus_clk); 1984 1985 scm->reset.ops = &qcom_scm_pas_reset_ops; 1986 scm->reset.nr_resets = 1; 1987 scm->reset.of_node = pdev->dev.of_node; 1988 ret = devm_reset_controller_register(&pdev->dev, &scm->reset); 1989 if (ret) 1990 return ret; 1991 1992 /* vote for max clk rate for highest performance */ 1993 ret = clk_set_rate(scm->core_clk, INT_MAX); 1994 if (ret) 1995 return ret; 1996 1997 /* Let all above stores be available after this */ 1998 smp_store_release(&__scm, scm); 1999 2000 irq = platform_get_irq_optional(pdev, 0); 2001 if (irq < 0) { 2002 if (irq != -ENXIO) 2003 return irq; 2004 } else { 2005 ret = devm_request_threaded_irq(__scm->dev, irq, NULL, qcom_scm_irq_handler, 2006 IRQF_ONESHOT, "qcom-scm", __scm); 2007 if (ret < 0) 2008 return dev_err_probe(scm->dev, ret, "Failed to request qcom-scm irq\n"); 2009 } 2010 2011 __get_convention(); 2012 2013 /* 2014 * If "download mode" is requested, from this point on warmboot 2015 * will cause the boot stages to enter download mode, unless 2016 * disabled below by a clean shutdown/reboot. 2017 */ 2018 qcom_scm_set_download_mode(download_mode); 2019 2020 /* 2021 * Disable SDI if indicated by DT that it is enabled by default. 2022 */ 2023 if (of_property_read_bool(pdev->dev.of_node, "qcom,sdi-enabled") || !download_mode) 2024 qcom_scm_disable_sdi(); 2025 2026 ret = of_reserved_mem_device_init(__scm->dev); 2027 if (ret && ret != -ENODEV) 2028 return dev_err_probe(__scm->dev, ret, 2029 "Failed to setup the reserved memory region for TZ mem\n"); 2030 2031 ret = qcom_tzmem_enable(__scm->dev); 2032 if (ret) 2033 return dev_err_probe(__scm->dev, ret, 2034 "Failed to enable the TrustZone memory allocator\n"); 2035 2036 memset(&pool_config, 0, sizeof(pool_config)); 2037 pool_config.initial_size = 0; 2038 pool_config.policy = QCOM_TZMEM_POLICY_ON_DEMAND; 2039 pool_config.max_size = SZ_256K; 2040 2041 __scm->mempool = devm_qcom_tzmem_pool_new(__scm->dev, &pool_config); 2042 if (IS_ERR(__scm->mempool)) 2043 return dev_err_probe(__scm->dev, PTR_ERR(__scm->mempool), 2044 "Failed to create the SCM memory pool\n"); 2045 2046 /* 2047 * Initialize the QSEECOM interface. 2048 * 2049 * Note: QSEECOM is fairly self-contained and this only adds the 2050 * interface device (the driver of which does most of the heavy 2051 * lifting). So any errors returned here should be either -ENOMEM or 2052 * -EINVAL (with the latter only in case there's a bug in our code). 2053 * This means that there is no need to bring down the whole SCM driver. 2054 * Just log the error instead and let SCM live. 2055 */ 2056 ret = qcom_scm_qseecom_init(scm); 2057 WARN(ret < 0, "failed to initialize qseecom: %d\n", ret); 2058 2059 return 0; 2060 } 2061 qcom_scm_shutdown(struct platform_device * pdev)2062 static void qcom_scm_shutdown(struct platform_device *pdev) 2063 { 2064 /* Clean shutdown, disable download mode to allow normal restart */ 2065 qcom_scm_set_download_mode(QCOM_DLOAD_NODUMP); 2066 } 2067 2068 static const struct of_device_id qcom_scm_dt_match[] = { 2069 { .compatible = "qcom,scm" }, 2070 2071 /* Legacy entries kept for backwards compatibility */ 2072 { .compatible = "qcom,scm-apq8064" }, 2073 { .compatible = "qcom,scm-apq8084" }, 2074 { .compatible = "qcom,scm-ipq4019" }, 2075 { .compatible = "qcom,scm-msm8953" }, 2076 { .compatible = "qcom,scm-msm8974" }, 2077 { .compatible = "qcom,scm-msm8996" }, 2078 {} 2079 }; 2080 MODULE_DEVICE_TABLE(of, qcom_scm_dt_match); 2081 2082 static struct platform_driver qcom_scm_driver = { 2083 .driver = { 2084 .name = "qcom_scm", 2085 .of_match_table = qcom_scm_dt_match, 2086 .suppress_bind_attrs = true, 2087 }, 2088 .probe = qcom_scm_probe, 2089 .shutdown = qcom_scm_shutdown, 2090 }; 2091 qcom_scm_init(void)2092 static int __init qcom_scm_init(void) 2093 { 2094 return platform_driver_register(&qcom_scm_driver); 2095 } 2096 subsys_initcall(qcom_scm_init); 2097 2098 MODULE_DESCRIPTION("Qualcomm Technologies, Inc. SCM driver"); 2099 MODULE_LICENSE("GPL v2"); 2100