TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / hafnium / hafnium.git / 4eb7b54348234d7f4bbac64bac28f683d6574ba9 / . / src / manifest.c
blob: b514472376aa77fe0409faab45a303529f2f545f [file] [log] [blame]
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]1/*
2 * Copyright 2019 The Hafnium Authors.
3 *
Andrew Walbrane959ec12020-06-17 15:01:09 +0100[diff] [blame]4 * Use of this source code is governed by a BSD-style
5 * license that can be found in the LICENSE file or at
6 * https://opensource.org/licenses/BSD-3-Clause.
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]7 */
8
9#include "hf/manifest.h"
10
11#include "hf/addr.h"
Daniel Boulbya2f8c662021-11-26 17:52:53 +0000[diff] [blame]12#include "hf/assert.h"
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]13#include "hf/check.h"
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]14#include "hf/dlog.h"
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]15#include "hf/static_assert.h"
16#include "hf/std.h"
17
18#define TRY(expr) \
19 do { \
20 enum manifest_return_code ret_code = (expr); \
21 if (ret_code != MANIFEST_SUCCESS) { \
22 return ret_code; \
23 } \
24 } while (0)
25
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]26#define VM_ID_MAX (HF_VM_ID_OFFSET + MAX_VMS - 1)
27#define VM_ID_MAX_DIGITS (5)
28#define VM_NAME_EXTRA_CHARS (3) /* "vm" + number + '\0' */
29#define VM_NAME_MAX_SIZE (VM_ID_MAX_DIGITS + VM_NAME_EXTRA_CHARS)
30static_assert(VM_NAME_MAX_SIZE <= STRING_MAX_SIZE,
31 "VM name does not fit into a struct string.");
32static_assert(VM_ID_MAX <= 99999, "Insufficient VM_NAME_BUF_SIZE");
Olivier Deprez2a8ee342020-08-03 15:10:44 +0200[diff] [blame]33static_assert((HF_OTHER_WORLD_ID > VM_ID_MAX) ||
34 (HF_OTHER_WORLD_ID < HF_VM_ID_BASE),
Andrew Walbran9daa57e2019-09-27 13:33:20 +0100[diff] [blame]35 "TrustZone VM ID clashes with normal VM range.");
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]36
Andrew Walbranb5ab43c2020-04-30 11:32:54 +0100[diff] [blame]37static inline size_t count_digits(ffa_vm_id_t vm_id)
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]38{
39 size_t digits = 0;
40
41 do {
42 digits++;
43 vm_id /= 10;
44 } while (vm_id);
45 return digits;
46}
47
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]48/**
49 * Generates a string with the two letters "vm" followed by an integer.
50 * Assumes `buf` is of size VM_NAME_BUF_SIZE.
51 */
Andrew Walbranb5ab43c2020-04-30 11:32:54 +0100[diff] [blame]52static void generate_vm_node_name(struct string *str, ffa_vm_id_t vm_id)
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]53{
54 static const char *digits = "0123456789";
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]55 size_t vm_id_digits = count_digits(vm_id);
56 char *base = str->data;
57 char *ptr = base + (VM_NAME_EXTRA_CHARS + vm_id_digits);
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]58
Daniel Boulbya2f8c662021-11-26 17:52:53 +0000[diff] [blame]59 assert(vm_id_digits <= VM_ID_MAX_DIGITS);
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]60 *(--ptr) = '\0';
61 do {
62 *(--ptr) = digits[vm_id % 10];
63 vm_id /= 10;
64 } while (vm_id);
65 *(--ptr) = 'm';
66 *(--ptr) = 'v';
Daniel Boulbya2f8c662021-11-26 17:52:53 +0000[diff] [blame]67 assert(ptr == base);
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]68}
69
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]70/**
Andrew Scullb2c3a242019-11-04 13:52:36 +0000[diff] [blame]71 * Read a boolean property: true if present; false if not. If present, the value
72 * of the property must be empty else it is considered malformed.
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]73 */
Andrew Scullb2c3a242019-11-04 13:52:36 +0000[diff] [blame]74static enum manifest_return_code read_bool(const struct fdt_node *node,
75 const char *property, bool *out)
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]76{
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]77 struct memiter data;
78 bool present = fdt_read_property(node, property, &data);
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]79
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]80 if (present && memiter_size(&data) != 0) {
Andrew Scullb2c3a242019-11-04 13:52:36 +0000[diff] [blame]81 return MANIFEST_ERROR_MALFORMED_BOOLEAN;
82 }
83
84 *out = present;
85 return MANIFEST_SUCCESS;
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]86}
87
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]88static enum manifest_return_code read_string(const struct fdt_node *node,
David Brazdil136f2942019-09-23 14:11:03 +0100[diff] [blame]89 const char *property,
90 struct string *out)
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]91{
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]92 struct memiter data;
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]93
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]94 if (!fdt_read_property(node, property, &data)) {
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]95 return MANIFEST_ERROR_PROPERTY_NOT_FOUND;
96 }
97
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]98 switch (string_init(out, &data)) {
David Brazdil136f2942019-09-23 14:11:03 +0100[diff] [blame]99 case STRING_SUCCESS:
100 return MANIFEST_SUCCESS;
101 case STRING_ERROR_INVALID_INPUT:
102 return MANIFEST_ERROR_MALFORMED_STRING;
103 case STRING_ERROR_TOO_LONG:
104 return MANIFEST_ERROR_STRING_TOO_LONG;
105 }
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]106}
107
108static enum manifest_return_code read_optional_string(
David Brazdil136f2942019-09-23 14:11:03 +0100[diff] [blame]109 const struct fdt_node *node, const char *property, struct string *out)
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]110{
David Brazdil136f2942019-09-23 14:11:03 +0100[diff] [blame]111 enum manifest_return_code ret;
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]112
David Brazdil136f2942019-09-23 14:11:03 +0100[diff] [blame]113 ret = read_string(node, property, out);
114 if (ret == MANIFEST_ERROR_PROPERTY_NOT_FOUND) {
115 string_init_empty(out);
116 ret = MANIFEST_SUCCESS;
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]117 }
David Brazdil136f2942019-09-23 14:11:03 +0100[diff] [blame]118 return ret;
Andrew Scull72b43c02019-09-18 13:53:45 +0100[diff] [blame]119}
120
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]121static enum manifest_return_code read_uint64(const struct fdt_node *node,
122 const char *property,
123 uint64_t *out)
124{
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]125 struct memiter data;
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]126
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]127 if (!fdt_read_property(node, property, &data)) {
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]128 return MANIFEST_ERROR_PROPERTY_NOT_FOUND;
129 }
130
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]131 if (!fdt_parse_number(&data, memiter_size(&data), out)) {
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]132 return MANIFEST_ERROR_MALFORMED_INTEGER;
133 }
134
135 return MANIFEST_SUCCESS;
136}
137
David Brazdil080ee312020-02-25 15:30:30 -0800[diff] [blame]138static enum manifest_return_code read_optional_uint64(
139 const struct fdt_node *node, const char *property,
140 uint64_t default_value, uint64_t *out)
141{
142 enum manifest_return_code ret;
143
144 ret = read_uint64(node, property, out);
145 if (ret == MANIFEST_ERROR_PROPERTY_NOT_FOUND) {
146 *out = default_value;
147 return MANIFEST_SUCCESS;
148 }
149 return ret;
150}
151
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]152static enum manifest_return_code read_uint32(const struct fdt_node *node,
153 const char *property,
154 uint32_t *out)
155{
156 uint64_t value;
157
158 TRY(read_uint64(node, property, &value));
159
160 if (value > UINT32_MAX) {
161 return MANIFEST_ERROR_INTEGER_OVERFLOW;
162 }
163
164 *out = (uint32_t)value;
165 return MANIFEST_SUCCESS;
166}
167
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]168static enum manifest_return_code read_optional_uint32(
169 const struct fdt_node *node, const char *property,
170 uint32_t default_value, uint32_t *out)
171{
172 enum manifest_return_code ret;
173
174 ret = read_uint32(node, property, out);
175 if (ret == MANIFEST_ERROR_PROPERTY_NOT_FOUND) {
176 *out = default_value;
177 return MANIFEST_SUCCESS;
178 }
179 return ret;
180}
181
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]182static enum manifest_return_code read_uint16(const struct fdt_node *node,
183 const char *property,
184 uint16_t *out)
185{
186 uint64_t value;
187
188 TRY(read_uint64(node, property, &value));
189
190 if (value > UINT16_MAX) {
191 return MANIFEST_ERROR_INTEGER_OVERFLOW;
192 }
193
194 *out = (uint16_t)value;
195 return MANIFEST_SUCCESS;
196}
197
J-Alvesb37fd082020-10-22 12:29:21 +0100[diff] [blame]198static enum manifest_return_code read_optional_uint16(
199 const struct fdt_node *node, const char *property,
200 uint16_t default_value, uint16_t *out)
201{
202 enum manifest_return_code ret;
203
204 ret = read_uint16(node, property, out);
205 if (ret == MANIFEST_ERROR_PROPERTY_NOT_FOUND) {
206 *out = default_value;
207 return MANIFEST_SUCCESS;
208 }
209
210 return MANIFEST_SUCCESS;
211}
212
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]213static enum manifest_return_code read_uint8(const struct fdt_node *node,
214 const char *property, uint8_t *out)
215{
216 uint64_t value;
217
218 TRY(read_uint64(node, property, &value));
219
220 if (value > UINT8_MAX) {
221 return MANIFEST_ERROR_INTEGER_OVERFLOW;
222 }
223
224 *out = (uint8_t)value;
225 return MANIFEST_SUCCESS;
226}
227
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]228static enum manifest_return_code read_optional_uint8(
229 const struct fdt_node *node, const char *property,
230 uint8_t default_value, uint8_t *out)
231{
232 enum manifest_return_code ret;
233
234 ret = read_uint8(node, property, out);
235 if (ret == MANIFEST_ERROR_PROPERTY_NOT_FOUND) {
236 *out = default_value;
237 return MANIFEST_SUCCESS;
238 }
239
240 return MANIFEST_SUCCESS;
241}
242
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]243struct uint32list_iter {
244 struct memiter mem_it;
245};
246
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]247static enum manifest_return_code read_uint32list(const struct fdt_node *node,
248 const char *property,
249 struct uint32list_iter *out)
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]250{
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]251 struct memiter data;
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]252
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]253 if (!fdt_read_property(node, property, &data)) {
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]254 memiter_init(&out->mem_it, NULL, 0);
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]255 return MANIFEST_ERROR_PROPERTY_NOT_FOUND;
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]256 }
257
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]258 if ((memiter_size(&data) % sizeof(uint32_t)) != 0) {
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]259 return MANIFEST_ERROR_MALFORMED_INTEGER_LIST;
260 }
261
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]262 out->mem_it = data;
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]263 return MANIFEST_SUCCESS;
264}
265
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]266static enum manifest_return_code read_optional_uint32list(
267 const struct fdt_node *node, const char *property,
268 struct uint32list_iter *out)
269{
270 enum manifest_return_code ret = read_uint32list(node, property, out);
271
272 if (ret == MANIFEST_ERROR_PROPERTY_NOT_FOUND) {
273 return MANIFEST_SUCCESS;
274 }
275 return ret;
276}
277
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]278static bool uint32list_has_next(const struct uint32list_iter *list)
279{
280 return memiter_size(&list->mem_it) > 0;
281}
282
David Brazdil5ea99462020-03-25 13:01:47 +0000[diff] [blame]283static enum manifest_return_code uint32list_get_next(
284 struct uint32list_iter *list, uint32_t *out)
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]285{
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]286 uint64_t num;
287
288 CHECK(uint32list_has_next(list));
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]289 if (!fdt_parse_number(&list->mem_it, sizeof(uint32_t), &num)) {
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]290 return MANIFEST_ERROR_MALFORMED_INTEGER;
291 }
292
David Brazdil5ea99462020-03-25 13:01:47 +0000[diff] [blame]293 *out = (uint32_t)num;
294 return MANIFEST_SUCCESS;
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]295}
296
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]297static enum manifest_return_code parse_vm_common(const struct fdt_node *node,
298 struct manifest_vm *vm,
299 ffa_vm_id_t vm_id)
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]300{
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]301 struct uint32list_iter smcs;
David Brazdil5ea99462020-03-25 13:01:47 +0000[diff] [blame]302 size_t idx;
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]303
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]304 TRY(read_bool(node, "is_ffa_partition", &vm->is_ffa_partition));
305
Raghu Krishnamurthyb49549e2021-07-02 08:27:38 -0700[diff] [blame]306 TRY(read_bool(node, "hyp_loaded", &vm->is_hyp_loaded));
307
David Brazdil136f2942019-09-23 14:11:03 +0100[diff] [blame]308 TRY(read_string(node, "debug_name", &vm->debug_name));
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]309
310 TRY(read_optional_uint32list(node, "smc_whitelist", &smcs));
311 while (uint32list_has_next(&smcs) &&
312 vm->smc_whitelist.smc_count < MAX_SMCS) {
David Brazdil5ea99462020-03-25 13:01:47 +0000[diff] [blame]313 idx = vm->smc_whitelist.smc_count++;
314 TRY(uint32list_get_next(&smcs, &vm->smc_whitelist.smcs[idx]));
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]315 }
316
317 if (uint32list_has_next(&smcs)) {
Andrew Walbran17eebf92020-02-05 16:35:49 +0000[diff] [blame]318 dlog_warning("%s SMC whitelist too long.\n", vm->debug_name);
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]319 }
320
Andrew Scullb2c3a242019-11-04 13:52:36 +0000[diff] [blame]321 TRY(read_bool(node, "smc_whitelist_permissive",
322 &vm->smc_whitelist.permissive));
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]323
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]324 if (vm_id != HF_PRIMARY_VM_ID) {
325 TRY(read_uint64(node, "mem_size", &vm->secondary.mem_size));
326 TRY(read_uint16(node, "vcpu_count", &vm->secondary.vcpu_count));
Fuad Tabba50469e02020-06-30 15:14:28 +0100[diff] [blame]327 TRY(read_optional_string(node, "fdt_filename",
328 &vm->secondary.fdt_filename));
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]329 }
330
331 return MANIFEST_SUCCESS;
332}
333
334static enum manifest_return_code parse_vm(struct fdt_node *node,
335 struct manifest_vm *vm,
336 ffa_vm_id_t vm_id)
337{
338 TRY(read_optional_string(node, "kernel_filename",
339 &vm->kernel_filename));
340
David Brazdile6f83222019-09-23 14:47:37 +0100[diff] [blame]341 if (vm_id == HF_PRIMARY_VM_ID) {
342 TRY(read_optional_string(node, "ramdisk_filename",
343 &vm->primary.ramdisk_filename));
David Brazdil080ee312020-02-25 15:30:30 -0800[diff] [blame]344 TRY(read_optional_uint64(node, "boot_address",
345 MANIFEST_INVALID_ADDRESS,
346 &vm->primary.boot_address));
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]347 }
Raghu Krishnamurthy988a5e72021-02-27 21:46:06 -0800[diff] [blame]348 TRY(read_optional_uint8(node, "exception-level", (uint8_t)EL1,
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]349 (uint8_t *)&vm->partition.run_time_el));
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]350
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]351 return MANIFEST_SUCCESS;
352}
353
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]354static enum manifest_return_code parse_ffa_memory_region_node(
Manish Pandeyfa1f2912020-05-05 12:57:01 +0100[diff] [blame]355 struct fdt_node *mem_node, struct memory_region *mem_regions,
Manish Pandey2145c212020-05-01 16:04:22 +0100[diff] [blame]356 uint8_t *count, struct rx_tx *rxtx)
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]357{
Manish Pandeyfa1f2912020-05-05 12:57:01 +0100[diff] [blame]358 uint32_t phandle;
Manish Pandey2145c212020-05-01 16:04:22 +0100[diff] [blame]359 uint8_t i = 0;
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]360
361 dlog_verbose(" Partition memory regions\n");
362
363 if (!fdt_is_compatible(mem_node, "arm,ffa-manifest-memory-regions")) {
364 return MANIFEST_ERROR_NOT_COMPATIBLE;
365 }
366
367 if (!fdt_first_child(mem_node)) {
368 return MANIFEST_ERROR_MEMORY_REGION_NODE_EMPTY;
369 }
370
371 do {
372 dlog_verbose(" Memory Region[%u]\n", i);
373
374 TRY(read_optional_string(mem_node, "description",
375 &mem_regions[i].name));
376 dlog_verbose(" Name: %s\n",
377 string_data(&mem_regions[i].name));
378
379 TRY(read_optional_uint64(mem_node, "base-address",
380 MANIFEST_INVALID_ADDRESS,
381 &mem_regions[i].base_address));
382 dlog_verbose(" Base address: %#x\n",
383 mem_regions[i].base_address);
384
385 TRY(read_uint32(mem_node, "pages-count",
386 &mem_regions[i].page_count));
387 dlog_verbose(" Pages_count: %u\n",
388 mem_regions[i].page_count);
389
390 TRY(read_uint32(mem_node, "attributes",
391 &mem_regions[i].attributes));
392 mem_regions[i].attributes &= MM_PERM_MASK;
Raghu Krishnamurthy384693c2021-10-11 13:56:24 -0700[diff] [blame]393
394 if (mem_regions[i].attributes != (MM_MODE_R) &&
395 mem_regions[i].attributes != (MM_MODE_R | MM_MODE_W) &&
396 mem_regions[i].attributes != (MM_MODE_R | MM_MODE_X)) {
397 return MANIFEST_ERROR_INVALID_MEM_PERM;
398 }
399
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]400 dlog_verbose(" Attributes: %u\n",
401 mem_regions[i].attributes);
Manish Pandeyfa1f2912020-05-05 12:57:01 +0100[diff] [blame]402
Manish Pandeya70a4192020-10-07 22:05:04 +0100[diff] [blame]403 if (rxtx->available) {
404 TRY(read_optional_uint32(
405 mem_node, "phandle",
406 (uint32_t)MANIFEST_INVALID_ADDRESS, &phandle));
407 if (phandle == rxtx->rx_phandle) {
408 dlog_verbose(" Assigned as RX buffer\n");
409 rxtx->rx_buffer = &mem_regions[i];
410 } else if (phandle == rxtx->tx_phandle) {
411 dlog_verbose(" Assigned as TX buffer\n");
412 rxtx->tx_buffer = &mem_regions[i];
413 }
Manish Pandeyfa1f2912020-05-05 12:57:01 +0100[diff] [blame]414 }
415
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]416 i++;
417 } while (fdt_next_sibling(mem_node) && (i < SP_MAX_MEMORY_REGIONS));
418
Manish Pandeya70a4192020-10-07 22:05:04 +0100[diff] [blame]419 if (rxtx->available &&
420 (rxtx->rx_buffer->page_count != rxtx->tx_buffer->page_count)) {
Manish Pandeyf06c9072020-09-29 15:41:58 +0100[diff] [blame]421 return MANIFEST_ERROR_RXTX_SIZE_MISMATCH;
422 }
423
Manish Pandey2145c212020-05-01 16:04:22 +0100[diff] [blame]424 *count = i;
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]425
426 return MANIFEST_SUCCESS;
427}
428
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]429static enum manifest_return_code parse_ffa_device_region_node(
Manish Pandey2145c212020-05-01 16:04:22 +0100[diff] [blame]430 struct fdt_node *dev_node, struct device_region *dev_regions,
431 uint8_t *count)
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]432{
433 struct uint32list_iter list;
Manish Pandey2145c212020-05-01 16:04:22 +0100[diff] [blame]434 uint8_t i = 0;
Madhukar Pappireddy5fc8be12021-08-03 11:42:53 -0500[diff] [blame]435 uint32_t j = 0;
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]436
437 dlog_verbose(" Partition Device Regions\n");
438
439 if (!fdt_is_compatible(dev_node, "arm,ffa-manifest-device-regions")) {
440 return MANIFEST_ERROR_NOT_COMPATIBLE;
441 }
442
443 if (!fdt_first_child(dev_node)) {
444 return MANIFEST_ERROR_DEVICE_REGION_NODE_EMPTY;
445 }
446
447 do {
448 dlog_verbose(" Device Region[%u]\n", i);
449
450 TRY(read_optional_string(dev_node, "description",
451 &dev_regions[i].name));
452 dlog_verbose(" Name: %s\n",
453 string_data(&dev_regions[i].name));
454
455 TRY(read_uint64(dev_node, "base-address",
456 &dev_regions[i].base_address));
457 dlog_verbose(" Base address: %#x\n",
458 dev_regions[i].base_address);
459
460 TRY(read_uint32(dev_node, "pages-count",
461 &dev_regions[i].page_count));
462 dlog_verbose(" Pages_count: %u\n",
463 dev_regions[i].page_count);
464
465 TRY(read_uint32(dev_node, "attributes",
466 &dev_regions[i].attributes));
467 dev_regions[i].attributes =
468 (dev_regions[i].attributes & MM_PERM_MASK) | MM_MODE_D;
Raghu Krishnamurthy384693c2021-10-11 13:56:24 -0700[diff] [blame]469
470 if (dev_regions[i].attributes != (MM_MODE_R | MM_MODE_D) &&
471 dev_regions[i].attributes !=
472 (MM_MODE_R | MM_MODE_W | MM_MODE_D)) {
473 return MANIFEST_ERROR_INVALID_MEM_PERM;
474 }
475
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]476 dlog_verbose(" Attributes: %u\n",
477 dev_regions[i].attributes);
478
479 TRY(read_optional_uint32list(dev_node, "interrupts", &list));
480 dlog_verbose(" Interrupt List:\n");
481 j = 0;
482 while (uint32list_has_next(&list) &&
483 j < SP_MAX_INTERRUPTS_PER_DEVICE) {
484 TRY(uint32list_get_next(
485 &list, &dev_regions[i].interrupts[j].id));
486 if (uint32list_has_next(&list)) {
487 TRY(uint32list_get_next(&list,
488 &dev_regions[i]
489 .interrupts[j]
490 .attributes));
491 } else {
492 return MANIFEST_ERROR_MALFORMED_INTEGER_LIST;
493 }
494
495 dlog_verbose(" ID = %u, attributes = %u\n",
496 dev_regions[i].interrupts[j].id,
497 dev_regions[i].interrupts[j].attributes);
498 j++;
499 }
Madhukar Pappireddy5fc8be12021-08-03 11:42:53 -0500[diff] [blame]500
501 dev_regions[i].interrupt_count = j;
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]502 if (j == 0) {
503 dlog_verbose(" Empty\n");
504 }
505
506 TRY(read_optional_uint32(dev_node, "smmu-id",
Madhukar Pappireddy54680c72020-10-23 15:02:38 -0500[diff] [blame]507 MANIFEST_INVALID_ID,
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]508 &dev_regions[i].smmu_id));
Olivier Deprez86d87ae2021-08-19 14:27:46 +0200[diff] [blame]509 if (dev_regions[i].smmu_id != MANIFEST_INVALID_ID) {
510 dlog_verbose(" smmu-id: %u\n",
511 dev_regions[i].smmu_id);
512 }
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]513
514 TRY(read_optional_uint32list(dev_node, "stream-ids", &list));
515 dlog_verbose(" Stream IDs assigned:\n");
516
517 j = 0;
518 while (uint32list_has_next(&list) &&
519 j < SP_MAX_STREAMS_PER_DEVICE) {
520 TRY(uint32list_get_next(&list,
521 &dev_regions[i].stream_ids[j]));
522 dlog_verbose(" %u\n",
523 dev_regions[i].stream_ids[j]);
524 j++;
525 }
526 if (j == 0) {
527 dlog_verbose(" None\n");
528 }
Madhukar Pappireddy54680c72020-10-23 15:02:38 -0500[diff] [blame]529 dev_regions[i].stream_count = j;
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]530
531 TRY(read_bool(dev_node, "exclusive-access",
532 &dev_regions[i].exclusive_access));
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]533 dlog_verbose(" Exclusive_access: %u\n",
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]534 dev_regions[i].exclusive_access);
535
536 i++;
537 } while (fdt_next_sibling(dev_node) && (i < SP_MAX_DEVICE_REGIONS));
538
Manish Pandey2145c212020-05-01 16:04:22 +0100[diff] [blame]539 *count = i;
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]540
541 return MANIFEST_SUCCESS;
542}
543
Raghu Krishnamurthyb49549e2021-07-02 08:27:38 -0700[diff] [blame]544enum manifest_return_code parse_ffa_manifest(struct fdt *fdt,
545 struct manifest_vm *vm)
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]546{
547 unsigned int i = 0;
548 struct uint32list_iter uuid;
549 uint32_t uuid_word;
550 struct fdt_node root;
551 struct fdt_node ffa_node;
552 struct string rxtx_node_name = STRING_INIT("rx_tx-info");
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]553 struct string mem_region_node_name = STRING_INIT("memory-regions");
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]554 struct string dev_region_node_name = STRING_INIT("device-regions");
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]555
556 if (!fdt_find_node(fdt, "/", &root)) {
557 return MANIFEST_ERROR_NO_ROOT_NODE;
558 }
559
560 /* Check "compatible" property. */
561 if (!fdt_is_compatible(&root, "arm,ffa-manifest-1.0")) {
562 return MANIFEST_ERROR_NOT_COMPATIBLE;
563 }
564
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]565 TRY(read_uint32(&root, "ffa-version", &vm->partition.ffa_version));
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]566 dlog_verbose(" Expected FF-A version %u.%u\n",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]567 vm->partition.ffa_version >> 16,
568 vm->partition.ffa_version & 0xffff);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]569
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]570 TRY(read_uint32list(&root, "uuid", &uuid));
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]571
572 while (uint32list_has_next(&uuid) && i < 4) {
573 TRY(uint32list_get_next(&uuid, &uuid_word));
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]574 vm->partition.uuid.uuid[i] = uuid_word;
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]575 i++;
576 }
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]577 dlog_verbose(" UUID %#x-%x-%x-%x\n", vm->partition.uuid.uuid[0],
578 vm->partition.uuid.uuid[1], vm->partition.uuid.uuid[2],
579 vm->partition.uuid.uuid[3]);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]580
581 TRY(read_uint16(&root, "execution-ctx-count",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]582 &vm->partition.execution_ctx_count));
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]583 dlog_verbose(" Number of execution context %u\n",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]584 vm->partition.execution_ctx_count);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]585
586 TRY(read_uint8(&root, "exception-level",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]587 (uint8_t *)&vm->partition.run_time_el));
588 dlog_verbose(" Run-time EL %u\n", vm->partition.run_time_el);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]589
590 TRY(read_uint8(&root, "execution-state",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]591 (uint8_t *)&vm->partition.execution_state));
592 dlog_verbose(" Execution state %u\n", vm->partition.execution_state);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]593
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]594 TRY(read_optional_uint64(&root, "load-address", 0,
595 &vm->partition.load_addr));
596 dlog_verbose(" Load address %#x\n", vm->partition.load_addr);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]597
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]598 TRY(read_optional_uint64(&root, "entrypoint-offset", 0,
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]599 &vm->partition.ep_offset));
600 dlog_verbose(" Entry point offset %#x\n", vm->partition.ep_offset);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]601
J-Alvesb37fd082020-10-22 12:29:21 +0100[diff] [blame]602 TRY(read_optional_uint16(&root, "boot-order", DEFAULT_BOOT_ORDER,
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]603 &vm->partition.boot_order));
604 dlog_verbose(" Boot order %#u\n", vm->partition.boot_order);
J-Alvesb37fd082020-10-22 12:29:21 +0100[diff] [blame]605
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]606 TRY(read_optional_uint8(&root, "xlat-granule", 0,
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]607 (uint8_t *)&vm->partition.xlat_granule));
608 dlog_verbose(" Translation granule %u\n", vm->partition.xlat_granule);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]609
610 ffa_node = root;
611 if (fdt_find_child(&ffa_node, &rxtx_node_name)) {
612 if (!fdt_is_compatible(&ffa_node,
613 "arm,ffa-manifest-rx_tx-buffer")) {
614 return MANIFEST_ERROR_NOT_COMPATIBLE;
615 }
616
Manish Pandeyfa1f2912020-05-05 12:57:01 +0100[diff] [blame]617 /*
618 * Read only phandles for now, it will be used to update buffers
619 * while parsing memory regions.
620 */
621 TRY(read_uint32(&ffa_node, "rx-buffer",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]622 &vm->partition.rxtx.rx_phandle));
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]623
Manish Pandeyfa1f2912020-05-05 12:57:01 +0100[diff] [blame]624 TRY(read_uint32(&ffa_node, "tx-buffer",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]625 &vm->partition.rxtx.tx_phandle));
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]626
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]627 vm->partition.rxtx.available = true;
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]628 }
629
630 TRY(read_uint8(&root, "messaging-method",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]631 (uint8_t *)&vm->partition.messaging_method));
632 dlog_verbose(" Messaging method %u\n", vm->partition.messaging_method);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]633
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]634 TRY(read_bool(&root, "managed-exit", &vm->partition.managed_exit));
J-Alvesa4730db2021-11-02 10:31:01 +0000[diff] [blame]635 if (vm->partition.managed_exit) {
636 dlog_verbose(" Managed Exit Supported\n");
637 }
638
639 TRY(read_bool(&root, "notification-support",
640 &vm->partition.notification_support));
641 if (vm->partition.notification_support) {
642 dlog_verbose(" Notifications Receipt Supported\n");
643 }
Maksims Svecovs9ddf86a2021-05-06 17:17:21 +0100[diff] [blame]644
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]645 /* Parse memory-regions */
646 ffa_node = root;
647 if (fdt_find_child(&ffa_node, &mem_region_node_name)) {
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]648 TRY(parse_ffa_memory_region_node(
649 &ffa_node, vm->partition.mem_regions,
650 &vm->partition.mem_region_count, &vm->partition.rxtx));
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]651 }
Manish Pandey2145c212020-05-01 16:04:22 +0100[diff] [blame]652 dlog_verbose(" Total %u memory regions found\n",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]653 vm->partition.mem_region_count);
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]654
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]655 /* Parse Device-regions */
656 ffa_node = root;
657 if (fdt_find_child(&ffa_node, &dev_region_node_name)) {
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]658 TRY(parse_ffa_device_region_node(
659 &ffa_node, vm->partition.dev_regions,
660 &vm->partition.dev_region_count));
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]661 }
Manish Pandey2145c212020-05-01 16:04:22 +0100[diff] [blame]662 dlog_verbose(" Total %u device regions found\n",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]663 vm->partition.dev_region_count);
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]664
J-Alves4eb7b542022-03-02 15:21:52 +0000[diff] [blame^]665 return sanity_check_ffa_manifest(vm);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]666}
667
Raghu Krishnamurthyb49549e2021-07-02 08:27:38 -0700[diff] [blame]668enum manifest_return_code sanity_check_ffa_manifest(struct manifest_vm *vm)
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]669{
670 uint16_t ffa_version_major;
671 uint16_t ffa_version_minor;
672 enum manifest_return_code ret_code = MANIFEST_SUCCESS;
673 const char *error_string = "specified in manifest is unsupported";
Madhukar Pappireddy5fc8be12021-08-03 11:42:53 -0500[diff] [blame]674 uint32_t k = 0;
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]675
676 /* ensure that the SPM version is compatible */
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]677 ffa_version_major = (vm->partition.ffa_version & 0xffff0000) >>
678 FFA_VERSION_MAJOR_OFFSET;
679 ffa_version_minor = vm->partition.ffa_version & 0xffff;
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]680
681 if (ffa_version_major != FFA_VERSION_MAJOR ||
682 ffa_version_minor > FFA_VERSION_MINOR) {
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]683 dlog_error("FF-A partition manifest version %s: %u.%u\n",
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]684 error_string, ffa_version_major, ffa_version_minor);
685 ret_code = MANIFEST_ERROR_NOT_COMPATIBLE;
686 }
687
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]688 if (vm->partition.xlat_granule != PAGE_4KB) {
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]689 dlog_error("Translation granule %s: %u\n", error_string,
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]690 vm->partition.xlat_granule);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]691 ret_code = MANIFEST_ERROR_NOT_COMPATIBLE;
692 }
693
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]694 if (vm->partition.execution_state != AARCH64) {
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]695 dlog_error("Execution state %s: %u\n", error_string,
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]696 vm->partition.execution_state);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]697 ret_code = MANIFEST_ERROR_NOT_COMPATIBLE;
698 }
699
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]700 if (vm->partition.run_time_el != EL1 &&
701 vm->partition.run_time_el != S_EL1 &&
702 vm->partition.run_time_el != S_EL0) {
Raghu Krishnamurthyac5a8092021-01-03 14:23:51 -0800[diff] [blame]703 dlog_error("Exception level %s: %d\n", error_string,
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]704 vm->partition.run_time_el);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]705 ret_code = MANIFEST_ERROR_NOT_COMPATIBLE;
706 }
707
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]708 if ((vm->partition.messaging_method &
Maksims Svecovsb596eab2021-04-27 00:52:27 +0100[diff] [blame]709 ~(FFA_PARTITION_DIRECT_REQ_RECV | FFA_PARTITION_DIRECT_REQ_SEND |
Maksims Svecovs9ddf86a2021-05-06 17:17:21 +0100[diff] [blame]710 FFA_PARTITION_INDIRECT_MSG)) != 0U) {
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]711 dlog_error("Messaging method %s: %x\n", error_string,
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]712 vm->partition.messaging_method);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]713 ret_code = MANIFEST_ERROR_NOT_COMPATIBLE;
714 }
715
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]716 if (vm->partition.run_time_el == S_EL0 &&
717 vm->partition.execution_ctx_count != 1) {
Raghu Krishnamurthycd1eceb2021-01-04 12:20:48 -0800[diff] [blame]718 dlog_error(
719 "Exception level and execution context count %s: %d "
720 "%d\n",
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]721 error_string, vm->partition.run_time_el,
722 vm->partition.execution_ctx_count);
Raghu Krishnamurthycd1eceb2021-01-04 12:20:48 -0800[diff] [blame]723 ret_code = MANIFEST_ERROR_NOT_COMPATIBLE;
724 }
725
Madhukar Pappireddy5fc8be12021-08-03 11:42:53 -0500[diff] [blame]726 for (uint8_t i = 0; i < vm->partition.dev_region_count; i++) {
727 struct device_region dev_region;
728
729 dev_region = vm->partition.dev_regions[i];
730
731 if (dev_region.interrupt_count > SP_MAX_INTERRUPTS_PER_DEVICE) {
732 dlog_error(
733 "Interrupt count for device region exceeds "
734 "limit.\n");
735 ret_code = MANIFEST_ERROR_NOT_COMPATIBLE;
736 continue;
737 }
738
739 for (uint8_t j = 0; j < dev_region.interrupt_count; j++) {
740 k++;
741 if (k > VM_MANIFEST_MAX_INTERRUPTS) {
742 dlog_error(
743 "Interrupt count for VM exceeds "
744 "limit.\n");
745 ret_code = MANIFEST_ERROR_NOT_COMPATIBLE;
746 continue;
747 }
748 }
749 }
750
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]751 return ret_code;
752}
753
754static enum manifest_return_code parse_ffa_partition_package(
755 struct mm_stage1_locked stage1_locked, struct fdt_node *node,
756 struct manifest_vm *vm, ffa_vm_id_t vm_id, struct mpool *ppool)
757{
758 enum manifest_return_code ret = MANIFEST_ERROR_NOT_COMPATIBLE;
759 uintpaddr_t sp_pkg_addr;
760 paddr_t sp_pkg_start;
761 paddr_t sp_pkg_end;
762 struct sp_pkg_header *sp_pkg;
763 size_t sp_header_dtb_size;
764 paddr_t sp_dtb_addr;
765 struct fdt sp_fdt;
766
767 /*
768 * This must have been hinted as being an FF-A partition,
769 * return straight with failure if this is not the case.
770 */
771 if (!vm->is_ffa_partition) {
772 return MANIFEST_ERROR_NOT_COMPATIBLE;
773 }
774
775 TRY(read_uint64(node, "load_address", &sp_pkg_addr));
776 if (!is_aligned(sp_pkg_addr, PAGE_SIZE)) {
777 return MANIFEST_ERROR_NOT_COMPATIBLE;
778 }
779
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]780 /* Map top of package as a single page to extract the header */
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]781 sp_pkg_start = pa_init(sp_pkg_addr);
782 sp_pkg_end = pa_add(sp_pkg_start, PAGE_SIZE);
783 sp_pkg = mm_identity_map(stage1_locked, sp_pkg_start,
784 pa_add(sp_pkg_start, PAGE_SIZE), MM_MODE_R,
785 ppool);
786 CHECK(sp_pkg != NULL);
787
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]788 dlog_verbose("Package load address %#x\n", sp_pkg_addr);
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]789
790 if (sp_pkg->magic != SP_PKG_HEADER_MAGIC) {
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]791 dlog_error("Invalid package magic.\n");
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]792 goto exit_unmap;
793 }
794
795 if (sp_pkg->version != SP_PKG_HEADER_VERSION) {
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]796 dlog_error("Invalid package version.\n");
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]797 goto exit_unmap;
798 }
799
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]800 /* Expect DTB to immediately follow header */
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]801 if (sp_pkg->pm_offset != sizeof(struct sp_pkg_header)) {
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]802 dlog_error("Invalid package manifest offset.\n");
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]803 goto exit_unmap;
804 }
805
806 sp_header_dtb_size = align_up(
807 sp_pkg->pm_size + sizeof(struct sp_pkg_header), PAGE_SIZE);
808 if ((vm_id != HF_PRIMARY_VM_ID) &&
809 (sp_header_dtb_size >= vm->secondary.mem_size)) {
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]810 dlog_error("Invalid package header or DT size.\n");
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]811 goto exit_unmap;
812 }
813
814 if (sp_header_dtb_size > PAGE_SIZE) {
815 /* Map remainder of header + DTB */
816 sp_pkg_end = pa_add(sp_pkg_start, sp_header_dtb_size);
817
818 sp_pkg = mm_identity_map(stage1_locked, sp_pkg_start,
819 sp_pkg_end, MM_MODE_R, ppool);
820 CHECK(sp_pkg != NULL);
821 }
822
823 sp_dtb_addr = pa_add(sp_pkg_start, sp_pkg->pm_offset);
Daniel Boulby3f784262021-09-27 13:02:54 +0100[diff] [blame]824
825 /* Since the address is from pa_addr allow the cast */
826 // NOLINTNEXTLINE(performance-no-int-to-ptr)
J-Alves4369bd92020-08-07 16:35:36 +0100[diff] [blame]827 if (!fdt_init_from_ptr(&sp_fdt, (void *)pa_addr(sp_dtb_addr),
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]828 sp_pkg->pm_size)) {
829 dlog_error("FDT failed validation.\n");
830 goto exit_unmap;
831 }
832
833 ret = parse_ffa_manifest(&sp_fdt, vm);
834 if (ret != MANIFEST_SUCCESS) {
J-Alves4eb7b542022-03-02 15:21:52 +0000[diff] [blame^]835 dlog_error("Error parsing partition manifest: %s.\n",
836 manifest_strerror(ret));
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]837 goto exit_unmap;
838 }
839
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]840 if (vm->partition.load_addr != sp_pkg_addr) {
J-Alvesa26ea212021-03-22 14:33:47 +0000[diff] [blame]841 dlog_warning(
842 "Partition's load address at its manifest differs"
843 " from specified in partition's package.\n");
Raghu Krishnamurthy8c250a92021-07-02 12:16:42 -0700[diff] [blame]844 vm->partition.load_addr = sp_pkg_addr;
J-Alvesa26ea212021-03-22 14:33:47 +0000[diff] [blame]845 }
846
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]847exit_unmap:
848 CHECK(mm_unmap(stage1_locked, sp_pkg_start, sp_pkg_end, ppool));
849
850 return ret;
851}
852
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]853/**
854 * Parse manifest from FDT.
855 */
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]856enum manifest_return_code manifest_init(struct mm_stage1_locked stage1_locked,
857 struct manifest *manifest,
858 struct memiter *manifest_fdt,
859 struct mpool *ppool)
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]860{
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]861 struct string vm_name;
862 struct fdt fdt;
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]863 struct fdt_node hyp_node;
864 size_t i = 0;
865 bool found_primary_vm = false;
866
867 memset_s(manifest, sizeof(*manifest), 0, sizeof(*manifest));
868
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]869 if (!fdt_init_from_memiter(&fdt, manifest_fdt)) {
870 return MANIFEST_ERROR_FILE_SIZE; /* TODO */
David Brazdila2358d42020-01-27 18:51:38 +0000[diff] [blame]871 }
872
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]873 /* Find hypervisor node. */
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]874 if (!fdt_find_node(&fdt, "/hypervisor", &hyp_node)) {
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]875 return MANIFEST_ERROR_NO_HYPERVISOR_FDT_NODE;
876 }
877
David Brazdil74e9c3b2019-08-28 11:09:08 +0100[diff] [blame]878 /* Check "compatible" property. */
David Brazdilf4925382020-03-25 13:33:51 +0000[diff] [blame]879 if (!fdt_is_compatible(&hyp_node, "hafnium,hafnium")) {
David Brazdil74e9c3b2019-08-28 11:09:08 +0100[diff] [blame]880 return MANIFEST_ERROR_NOT_COMPATIBLE;
881 }
882
Olivier Deprez622ab8d2021-08-02 12:15:45 +0200[diff] [blame]883 TRY(read_bool(&hyp_node, "ffa_tee_enabled",
884 &manifest->ffa_tee_enabled));
Andrew Walbran41a49d82020-01-10 17:46:38 +0000[diff] [blame]885
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]886 /* Iterate over reserved VM IDs and check no such nodes exist. */
Olivier Deprez2a8ee342020-08-03 15:10:44 +0200[diff] [blame]887 for (i = HF_VM_ID_BASE; i < HF_VM_ID_OFFSET; i++) {
888 ffa_vm_id_t vm_id = (ffa_vm_id_t)i - HF_VM_ID_BASE;
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]889 struct fdt_node vm_node = hyp_node;
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]890
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]891 generate_vm_node_name(&vm_name, vm_id);
892 if (fdt_find_child(&vm_node, &vm_name)) {
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]893 return MANIFEST_ERROR_RESERVED_VM_ID;
894 }
895 }
896
897 /* Iterate over VM nodes until we find one that does not exist. */
898 for (i = 0; i <= MAX_VMS; ++i) {
Andrew Walbranb5ab43c2020-04-30 11:32:54 +0100[diff] [blame]899 ffa_vm_id_t vm_id = HF_VM_ID_OFFSET + i;
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]900 struct fdt_node vm_node = hyp_node;
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]901
Olivier Deprez2a8ee342020-08-03 15:10:44 +0200[diff] [blame]902 generate_vm_node_name(&vm_name, vm_id - HF_VM_ID_BASE);
David Brazdilb856be62020-03-25 10:14:55 +0000[diff] [blame]903 if (!fdt_find_child(&vm_node, &vm_name)) {
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]904 break;
905 }
906
907 if (i == MAX_VMS) {
908 return MANIFEST_ERROR_TOO_MANY_VMS;
909 }
910
911 if (vm_id == HF_PRIMARY_VM_ID) {
912 CHECK(found_primary_vm == false); /* sanity check */
913 found_primary_vm = true;
914 }
915
David Brazdil0251b942019-09-10 15:59:50 +0100[diff] [blame]916 manifest->vm_count = i + 1;
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]917
918 TRY(parse_vm_common(&vm_node, &manifest->vm[i], vm_id));
919
Raghu Krishnamurthyb49549e2021-07-02 08:27:38 -0700[diff] [blame]920 CHECK(!manifest->vm[i].is_hyp_loaded ||
921 manifest->vm[i].is_ffa_partition);
922
923 if (manifest->vm[i].is_ffa_partition &&
924 !manifest->vm[i].is_hyp_loaded) {
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]925 TRY(parse_ffa_partition_package(stage1_locked, &vm_node,
926 &manifest->vm[i], vm_id,
927 ppool));
928 } else {
929 TRY(parse_vm(&vm_node, &manifest->vm[i], vm_id));
930 }
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]931 }
932
Olivier Deprezfb05f3c2020-11-10 17:48:04 +0100[diff] [blame]933 if (!found_primary_vm && vm_id_is_current_world(HF_PRIMARY_VM_ID)) {
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]934 return MANIFEST_ERROR_NO_PRIMARY_VM;
935 }
936
937 return MANIFEST_SUCCESS;
938}
939
940const char *manifest_strerror(enum manifest_return_code ret_code)
941{
942 switch (ret_code) {
943 case MANIFEST_SUCCESS:
944 return "Success";
David Brazdila2358d42020-01-27 18:51:38 +0000[diff] [blame]945 case MANIFEST_ERROR_FILE_SIZE:
946 return "Total size in header does not match file size";
Olivier Deprez62d99e32020-01-09 15:58:07 +0100[diff] [blame]947 case MANIFEST_ERROR_MALFORMED_DTB:
948 return "Malformed device tree blob";
David Brazdila2358d42020-01-27 18:51:38 +0000[diff] [blame]949 case MANIFEST_ERROR_NO_ROOT_NODE:
950 return "Could not find root node in manifest";
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]951 case MANIFEST_ERROR_NO_HYPERVISOR_FDT_NODE:
952 return "Could not find \"hypervisor\" node in manifest";
David Brazdil74e9c3b2019-08-28 11:09:08 +0100[diff] [blame]953 case MANIFEST_ERROR_NOT_COMPATIBLE:
954 return "Hypervisor manifest entry not compatible with Hafnium";
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]955 case MANIFEST_ERROR_RESERVED_VM_ID:
956 return "Manifest defines a VM with a reserved ID";
957 case MANIFEST_ERROR_NO_PRIMARY_VM:
958 return "Manifest does not contain a primary VM entry";
959 case MANIFEST_ERROR_TOO_MANY_VMS:
960 return "Manifest specifies more VMs than Hafnium has "
961 "statically allocated space for";
962 case MANIFEST_ERROR_PROPERTY_NOT_FOUND:
963 return "Property not found";
964 case MANIFEST_ERROR_MALFORMED_STRING:
965 return "Malformed string property";
David Brazdil0dbb41f2019-09-09 18:03:35 +0100[diff] [blame]966 case MANIFEST_ERROR_STRING_TOO_LONG:
967 return "String too long";
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]968 case MANIFEST_ERROR_MALFORMED_INTEGER:
969 return "Malformed integer property";
970 case MANIFEST_ERROR_INTEGER_OVERFLOW:
971 return "Integer overflow";
Andrew Scullae9962e2019-10-03 16:51:16 +0100[diff] [blame]972 case MANIFEST_ERROR_MALFORMED_INTEGER_LIST:
973 return "Malformed integer list property";
Andrew Scullb2c3a242019-11-04 13:52:36 +0000[diff] [blame]974 case MANIFEST_ERROR_MALFORMED_BOOLEAN:
975 return "Malformed boolean property";
Manish Pandey6542f5c2020-04-27 14:37:46 +0100[diff] [blame]976 case MANIFEST_ERROR_MEMORY_REGION_NODE_EMPTY:
977 return "Memory-region node should have at least one entry";
Manish Pandeye68e7932020-04-23 15:29:28 +0100[diff] [blame]978 case MANIFEST_ERROR_DEVICE_REGION_NODE_EMPTY:
979 return "Device-region node should have at least one entry";
Manish Pandeyf06c9072020-09-29 15:41:58 +0100[diff] [blame]980 case MANIFEST_ERROR_RXTX_SIZE_MISMATCH:
981 return "RX and TX buffers should be of same size";
Raghu Krishnamurthy384693c2021-10-11 13:56:24 -0700[diff] [blame]982 case MANIFEST_ERROR_INVALID_MEM_PERM:
983 return "Memory permission should be RO, RW or RX";
David Brazdil7a462ec2019-08-15 12:27:47 +0100[diff] [blame]984 }
985
986 panic("Unexpected manifest return code.");
987}