0e43e02b9b
Allow getting memory region's permissions using either of the Firmware Framework(FF-A) ABI transport or through the earlier used SVC calls. Signed-off-by: Achin Gupta <achin.gupta@arm.com> Co-developed-by: Sughosh Ganu <sughosh.ganu@linaro.org> Reviewed-by: Sami Mujawar <sami.mujawar@arm.com> Acked-by: Ard Biesheuvel <ardb@kernel.org>
250 lines
7.0 KiB
C
250 lines
7.0 KiB
C
/** @file
|
|
* File managing the MMU for ARMv8 architecture in S-EL0
|
|
*
|
|
* Copyright (c) 2017 - 2021, Arm Limited. All rights reserved.<BR>
|
|
*
|
|
* SPDX-License-Identifier: BSD-2-Clause-Patent
|
|
*
|
|
**/
|
|
|
|
#include <Uefi.h>
|
|
#include <IndustryStandard/ArmMmSvc.h>
|
|
#include <IndustryStandard/ArmFfaSvc.h>
|
|
|
|
#include <Library/ArmLib.h>
|
|
#include <Library/ArmMmuLib.h>
|
|
#include <Library/ArmSvcLib.h>
|
|
#include <Library/BaseLib.h>
|
|
#include <Library/BaseMemoryLib.h>
|
|
#include <Library/DebugLib.h>
|
|
#include <Library/PcdLib.h>
|
|
|
|
STATIC
|
|
EFI_STATUS
|
|
GetMemoryPermissions (
|
|
IN EFI_PHYSICAL_ADDRESS BaseAddress,
|
|
OUT UINT32 *MemoryAttributes
|
|
)
|
|
{
|
|
INT32 Ret;
|
|
ARM_SVC_ARGS GetMemoryPermissionsSvcArgs;
|
|
BOOLEAN FfaEnabled;
|
|
|
|
ZeroMem (&GetMemoryPermissionsSvcArgs, sizeof (ARM_SVC_ARGS));
|
|
|
|
FfaEnabled = FeaturePcdGet (PcdFfaEnable);
|
|
if (FfaEnabled) {
|
|
GetMemoryPermissionsSvcArgs.Arg0 = ARM_SVC_ID_FFA_MSG_SEND_DIRECT_REQ_AARCH64;
|
|
GetMemoryPermissionsSvcArgs.Arg1 = ARM_FFA_DESTINATION_ENDPOINT_ID;
|
|
GetMemoryPermissionsSvcArgs.Arg2 = 0;
|
|
GetMemoryPermissionsSvcArgs.Arg3 = ARM_SVC_ID_SP_GET_MEM_ATTRIBUTES_AARCH64;
|
|
GetMemoryPermissionsSvcArgs.Arg4 = BaseAddress;
|
|
} else {
|
|
GetMemoryPermissionsSvcArgs.Arg0 = ARM_SVC_ID_SP_GET_MEM_ATTRIBUTES_AARCH64;
|
|
GetMemoryPermissionsSvcArgs.Arg1 = BaseAddress;
|
|
GetMemoryPermissionsSvcArgs.Arg2 = 0;
|
|
GetMemoryPermissionsSvcArgs.Arg3 = 0;
|
|
}
|
|
|
|
*MemoryAttributes = 0;
|
|
ArmCallSvc (&GetMemoryPermissionsSvcArgs);
|
|
if (FfaEnabled) {
|
|
// Getting memory attributes is an atomic call, with
|
|
// StandaloneMm at S-EL0 being the caller and the SPM
|
|
// core being the callee. Thus there won't be a
|
|
// FFA_INTERRUPT or FFA_SUCCESS response to the Direct
|
|
// Request sent above. This will have to be considered
|
|
// for other Direct Request calls which are not atomic
|
|
// We therefore check only for Direct Response by the
|
|
// callee.
|
|
if (GetMemoryPermissionsSvcArgs.Arg0 !=
|
|
ARM_SVC_ID_FFA_MSG_SEND_DIRECT_RESP_AARCH64) {
|
|
// If Arg0 is not a Direct Response, that means we
|
|
// have an FF-A error. We need to check Arg2 for the
|
|
// FF-A error code.
|
|
Ret = GetMemoryPermissionsSvcArgs.Arg2;
|
|
switch (Ret) {
|
|
case ARM_FFA_SPM_RET_INVALID_PARAMETERS:
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
case ARM_FFA_SPM_RET_DENIED:
|
|
return EFI_NOT_READY;
|
|
|
|
case ARM_FFA_SPM_RET_NOT_SUPPORTED:
|
|
return EFI_UNSUPPORTED;
|
|
|
|
case ARM_FFA_SPM_RET_BUSY:
|
|
return EFI_NOT_READY;
|
|
|
|
case ARM_FFA_SPM_RET_ABORTED:
|
|
return EFI_ABORTED;
|
|
}
|
|
} else if (GetMemoryPermissionsSvcArgs.Arg0 ==
|
|
ARM_SVC_ID_FFA_MSG_SEND_DIRECT_RESP_AARCH64) {
|
|
// A Direct Response means FF-A success
|
|
// Now check the payload for errors
|
|
// The callee sends back the return value
|
|
// in Arg3
|
|
Ret = GetMemoryPermissionsSvcArgs.Arg3;
|
|
}
|
|
} else {
|
|
Ret = GetMemoryPermissionsSvcArgs.Arg0;
|
|
}
|
|
|
|
if (Ret & BIT31) {
|
|
// Bit 31 set means there is an error retured
|
|
switch (Ret) {
|
|
case ARM_SVC_SPM_RET_INVALID_PARAMS:
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
case ARM_SVC_SPM_RET_NOT_SUPPORTED:
|
|
return EFI_UNSUPPORTED;
|
|
}
|
|
} else {
|
|
*MemoryAttributes = Ret;
|
|
}
|
|
|
|
return EFI_SUCCESS;
|
|
}
|
|
|
|
STATIC
|
|
EFI_STATUS
|
|
RequestMemoryPermissionChange (
|
|
IN EFI_PHYSICAL_ADDRESS BaseAddress,
|
|
IN UINT64 Length,
|
|
IN UINTN Permissions
|
|
)
|
|
{
|
|
EFI_STATUS Status;
|
|
ARM_SVC_ARGS ChangeMemoryPermissionsSvcArgs;
|
|
|
|
ZeroMem (&ChangeMemoryPermissionsSvcArgs, sizeof (ARM_SVC_ARGS));
|
|
|
|
ChangeMemoryPermissionsSvcArgs.Arg0 = ARM_SVC_ID_SP_SET_MEM_ATTRIBUTES_AARCH64;
|
|
ChangeMemoryPermissionsSvcArgs.Arg1 = BaseAddress;
|
|
ChangeMemoryPermissionsSvcArgs.Arg2 = EFI_SIZE_TO_PAGES(Length);
|
|
ChangeMemoryPermissionsSvcArgs.Arg3 = Permissions;
|
|
|
|
ArmCallSvc (&ChangeMemoryPermissionsSvcArgs);
|
|
|
|
Status = ChangeMemoryPermissionsSvcArgs.Arg0;
|
|
|
|
switch (Status) {
|
|
case ARM_SVC_SPM_RET_SUCCESS:
|
|
Status = EFI_SUCCESS;
|
|
break;
|
|
|
|
case ARM_SVC_SPM_RET_NOT_SUPPORTED:
|
|
Status = EFI_UNSUPPORTED;
|
|
break;
|
|
|
|
case ARM_SVC_SPM_RET_INVALID_PARAMS:
|
|
Status = EFI_INVALID_PARAMETER;
|
|
break;
|
|
|
|
case ARM_SVC_SPM_RET_DENIED:
|
|
Status = EFI_ACCESS_DENIED;
|
|
break;
|
|
|
|
case ARM_SVC_SPM_RET_NO_MEMORY:
|
|
Status = EFI_BAD_BUFFER_SIZE;
|
|
break;
|
|
|
|
default:
|
|
Status = EFI_ACCESS_DENIED;
|
|
ASSERT (0);
|
|
}
|
|
|
|
return Status;
|
|
}
|
|
|
|
EFI_STATUS
|
|
ArmSetMemoryRegionNoExec (
|
|
IN EFI_PHYSICAL_ADDRESS BaseAddress,
|
|
IN UINT64 Length
|
|
)
|
|
{
|
|
EFI_STATUS Status;
|
|
UINT32 MemoryAttributes;
|
|
UINT32 CodePermission;
|
|
|
|
Status = GetMemoryPermissions (BaseAddress, &MemoryAttributes);
|
|
if (Status != EFI_INVALID_PARAMETER) {
|
|
CodePermission = SET_MEM_ATTR_CODE_PERM_XN << SET_MEM_ATTR_CODE_PERM_SHIFT;
|
|
return RequestMemoryPermissionChange (
|
|
BaseAddress,
|
|
Length,
|
|
MemoryAttributes | CodePermission
|
|
);
|
|
}
|
|
return EFI_INVALID_PARAMETER;
|
|
}
|
|
|
|
EFI_STATUS
|
|
ArmClearMemoryRegionNoExec (
|
|
IN EFI_PHYSICAL_ADDRESS BaseAddress,
|
|
IN UINT64 Length
|
|
)
|
|
{
|
|
EFI_STATUS Status;
|
|
UINT32 MemoryAttributes;
|
|
UINT32 CodePermission;
|
|
|
|
Status = GetMemoryPermissions (BaseAddress, &MemoryAttributes);
|
|
if (Status != EFI_INVALID_PARAMETER) {
|
|
CodePermission = SET_MEM_ATTR_CODE_PERM_XN << SET_MEM_ATTR_CODE_PERM_SHIFT;
|
|
return RequestMemoryPermissionChange (
|
|
BaseAddress,
|
|
Length,
|
|
MemoryAttributes & ~CodePermission
|
|
);
|
|
}
|
|
return EFI_INVALID_PARAMETER;
|
|
}
|
|
|
|
EFI_STATUS
|
|
ArmSetMemoryRegionReadOnly (
|
|
IN EFI_PHYSICAL_ADDRESS BaseAddress,
|
|
IN UINT64 Length
|
|
)
|
|
{
|
|
EFI_STATUS Status;
|
|
UINT32 MemoryAttributes;
|
|
UINT32 DataPermission;
|
|
|
|
Status = GetMemoryPermissions (BaseAddress, &MemoryAttributes);
|
|
if (Status != EFI_INVALID_PARAMETER) {
|
|
DataPermission = SET_MEM_ATTR_DATA_PERM_RO << SET_MEM_ATTR_DATA_PERM_SHIFT;
|
|
return RequestMemoryPermissionChange (
|
|
BaseAddress,
|
|
Length,
|
|
MemoryAttributes | DataPermission
|
|
);
|
|
}
|
|
return EFI_INVALID_PARAMETER;
|
|
}
|
|
|
|
EFI_STATUS
|
|
ArmClearMemoryRegionReadOnly (
|
|
IN EFI_PHYSICAL_ADDRESS BaseAddress,
|
|
IN UINT64 Length
|
|
)
|
|
{
|
|
EFI_STATUS Status;
|
|
UINT32 MemoryAttributes;
|
|
UINT32 PermissionRequest;
|
|
|
|
Status = GetMemoryPermissions (BaseAddress, &MemoryAttributes);
|
|
if (Status != EFI_INVALID_PARAMETER) {
|
|
PermissionRequest = SET_MEM_ATTR_MAKE_PERM_REQUEST (SET_MEM_ATTR_DATA_PERM_RW,
|
|
MemoryAttributes);
|
|
return RequestMemoryPermissionChange (
|
|
BaseAddress,
|
|
Length,
|
|
PermissionRequest
|
|
);
|
|
}
|
|
return EFI_INVALID_PARAMETER;
|
|
}
|