TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TF-M / trusted-firmware-m.git / 5248af2d7b86775364a0e131eb80ac0330bc81fb^! / .
commit5248af2d7b86775364a0e131eb80ac0330bc81fb[log] [tgz]
authorKen Liu <ken.liu@arm.com>Sun Dec 29 12:47:13 2019 +0800
committerSummer Qin <summer.qin@arm.com>Fri Jan 03 13:28:25 2020 +0800
treeee0c5ac8409c51e4e2b087790bbd3553f278829e
parent490281df3736b11b62e25bc98d3e2c6e4e10478c [diff]
Core: Use naked function for ns jumping

Jumping to non-secure using a naked function to avoid touching stack.
The reasons of keeping stack clean are:

- There is no chance to clean these contents.
- The stacked size can not being tracked, while the non-secure
  reentrant checking identities stacked context by stacked size.

Change-Id: I5804aeb00db32f8d6b7b6da929c5c1b8ffa95755
Signed-off-by: Ken Liu <ken.liu@arm.com>

diff --git a/secure_fw/core/tfm_nspm_ipc.c b/secure_fw/core/tfm_nspm_ipc.c
index 47e47b0..d07906f 100644
--- a/secure_fw/core/tfm_nspm_ipc.c
+++ b/secure_fw/core/tfm_nspm_ipc.c

@@ -86,18 +86,39 @@
     return 1U;
 }
 
-__attribute__((section("SFN")))
+__attribute__((used)) static void pre_ns_jumping(void)
+{
+    LOG_MSG("\033[1;34m[Sec Thread] Jumping to non-secure code...\033[0m\r\n");
+}
+
+/*
+ * 'r0' impliedly holds the address of non-secure entry,
+ * given during non-secure partition initialization.
+ */
+__attribute__((naked, section("SFN")))
 void tfm_nspm_thread_entry(void)
 {
-#ifdef TFM_CORE_DEBUG
-    /* Jumps to non-secure code */
-    LOG_MSG("Jumping to non-secure code...");
-#endif
-
-    jump_to_ns_code();
-
-    /* Should not run here */
-    TFM_ASSERT(false);
+    __ASM volatile(
+        ".syntax unified         \n"
+        "mov      r4, r0         \n"
+        "bl       pre_ns_jumping \n"
+        "movs     r2, #1         \n" /* Clear Bit[0] for S to NS transition */
+        "bics     r4, r2         \n"
+        "mov      r0, r4         \n"
+        "mov      r1, r4         \n"
+        "mov      r2, r4         \n"
+        "mov      r3, r4         \n"
+        "mov      r5, r4         \n"
+        "mov      r6, r4         \n"
+        "mov      r7, r4         \n"
+        "mov      r8, r4         \n"
+        "mov      r9, r4         \n"
+        "mov      r10, r4        \n"
+        "mov      r11, r4        \n"
+        "mov      r12, r4        \n"
+        "push     {r0, r1}       \n"
+        "bxns     r0             \n"
+    );
 }
 
 void configure_ns_code(void)
@@ -109,12 +130,4 @@
     uint32_t ns_msp = tfm_spm_hal_get_ns_MSP();
 
     __TZ_set_MSP_NS(ns_msp);
-
-    /* Get the address of non-secure code entry point to jump there */
-    uint32_t entry_ptr = tfm_spm_hal_get_ns_entry_point();
-
-    /* Clears LSB of the function address to indicate the function-call
-     * will perform the switch from secure to non-secure
-     */
-    ns_entry = (nsfptr_t) cmse_nsfptr_create(entry_ptr);
 }

diff --git a/secure_fw/spm/spm_api_ipc.c b/secure_fw/spm/spm_api_ipc.c
index 9827e4d..1f14ced 100644
--- a/secure_fw/spm/spm_api_ipc.c
+++ b/secure_fw/spm/spm_api_ipc.c

@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2018-2019, Arm Limited. All rights reserved.
+ * Copyright (c) 2018-2020, Arm Limited. All rights reserved.
  *
  * SPDX-License-Identifier: BSD-3-Clause
  *
@@ -589,6 +589,7 @@
 
         if (partition->static_data->partition_id == TFM_SP_NON_SECURE_ID) {
             p_ns_entry_thread = pth;
+            pth->param = (void *)tfm_spm_hal_get_ns_entry_point();
         }
 
         /* Kick off */