1 // SPDX-License-Identifier: GPL-2.0 2 /* 3 * (C) Copyright 2018 Xilinx, Inc. 4 * Siva Durga Prasad Paladugu <siva.durga.paladugu@xilinx.com> 5 */ 6 7 #include <common.h> 8 #include <malloc.h> 9 #include <asm/arch/sys_proto.h> 10 #include <asm/io.h> 11 12 static int zynqmp_verify_secure(u8 *key_ptr, u8 *src_ptr, u32 len) 13 { 14 int ret; 15 u32 src_lo, src_hi; 16 u32 key_lo = 0; 17 u32 key_hi = 0; 18 u32 ret_payload[PAYLOAD_ARG_CNT]; 19 u64 addr; 20 21 if ((ulong)src_ptr != ALIGN((ulong)src_ptr, 22 CONFIG_SYS_CACHELINE_SIZE)) { 23 printf("Failed: source address not aligned:%p\n", src_ptr); 24 return -EINVAL; 25 } 26 27 src_lo = lower_32_bits((ulong)src_ptr); 28 src_hi = upper_32_bits((ulong)src_ptr); 29 flush_dcache_range((ulong)src_ptr, (ulong)(src_ptr + len)); 30 31 if (key_ptr) { 32 key_lo = lower_32_bits((ulong)key_ptr); 33 key_hi = upper_32_bits((ulong)key_ptr); 34 flush_dcache_range((ulong)key_ptr, 35 (ulong)(key_ptr + KEY_PTR_LEN)); 36 } 37 38 ret = invoke_smc(ZYNQMP_SIP_SVC_PM_SECURE_IMG_LOAD, src_lo, src_hi, 39 key_lo, key_hi, ret_payload); 40 if (ret) { 41 printf("Failed: secure op status:0x%x\n", ret); 42 } else { 43 addr = (u64)ret_payload[1] << 32 | ret_payload[2]; 44 printf("Verified image at 0x%llx\n", addr); 45 env_set_hex("zynqmp_verified_img_addr", addr); 46 } 47 48 return ret; 49 } 50 51 /** 52 * do_zynqmp - Handle the "zynqmp" command-line command 53 * @cmdtp: Command data struct pointer 54 * @flag: Command flag 55 * @argc: Command-line argument count 56 * @argv: Array of command-line arguments 57 * 58 * Processes the zynqmp specific commands 59 * 60 * Return: return 0 on success and CMD_RET_USAGE incase of misuse and error 61 */ 62 static int do_zynqmp(cmd_tbl_t *cmdtp, int flag, int argc, 63 char *const argv[]) 64 { 65 u64 src_addr; 66 u32 len; 67 u8 *key_ptr = NULL; 68 u8 *src_ptr; 69 int ret; 70 71 if (argc > 5 || argc < 4 || strncmp(argv[1], "secure", 6)) 72 return CMD_RET_USAGE; 73 74 src_addr = simple_strtoull(argv[2], NULL, 16); 75 76 len = simple_strtoul(argv[3], NULL, 16); 77 78 if (argc > 4) 79 key_ptr = (uint8_t *)(uintptr_t)simple_strtoull(argv[4], 80 NULL, 16); 81 82 src_ptr = (uint8_t *)(uintptr_t)src_addr; 83 84 ret = zynqmp_verify_secure(key_ptr, src_ptr, len); 85 if (ret) 86 return CMD_RET_FAILURE; 87 88 return CMD_RET_SUCCESS; 89 } 90 91 /***************************************************/ 92 #ifdef CONFIG_SYS_LONGHELP 93 static char zynqmp_help_text[] = 94 "secure src len [key_addr] - verifies secure images of $len bytes\n" 95 " long at address $src. Optional key_addr\n" 96 " can be specified if user key needs to\n" 97 " be used for decryption\n"; 98 #endif 99 100 U_BOOT_CMD( 101 zynqmp, 5, 1, do_zynqmp, 102 "Verify and load secure images", 103 zynqmp_help_text 104 ) 105