From: Christoffer Dall <christoffer.dall@linaro.org>
To: u-boot@lists.denx.de
Subject: [U-Boot] [PATCH v5 2/8] ARM: add secure monitor handler to switch to non-secure state
Date: Fri, 20 Sep 2013 04:47:18 +0100 [thread overview]
Message-ID: <20130920034718.GS7623@lvm> (raw)
In-Reply-To: <CAPUj1OPw5QFtM=p7eynTPS-3Kfp5SHpKJFeyTYYW-1dO-s0y6Q@mail.gmail.com>
On Fri, Sep 20, 2013 at 08:08:45AM +0530, Mj Embd wrote:
> On Fri, Sep 20, 2013 at 6:12 AM, Christoffer Dall <
> christoffer.dall at linaro.org> wrote:
>
> > On Fri, Sep 20, 2013 at 03:20:15AM +0530, Mj Embd wrote:
> > > Just checking, is the mcr p15,0,r1,c1,c1,0 in sync with the following
> > text
> > > . I could be wrong here, just checking
> >
> > In the future, if you can comment specifically inline on the lines of
> > code you are targeting, it is easier for other people to address your
> > concerns.
> >
> > >
> > > B1.5.1 Arm Arch Ref Manual
> > >
> > > -
> > >
> > > To avoid security holes, software must not:
> > > -
> > >
> > > ? Change from Secure to Non-secure state by using an MSR or CPS
> > > instruction
> > > to switch from Monitor
> >
> > The important part here is that we don't change from S to NS by
> > modifying the SCR, because monitor mode is always in secure mode, so the
> > change only happens on the exception return.
> >
> > So yes, it's safe.
> >
> > -Christoffer
> >
>
> Ok. Good Discussion. Thanks,
> PS: Gmail auto wraps the previous msg in 3 dots, so sometimes I miss
> inlining.
> Thanks for pointing out.
>
No problem, thanks for looking at the code.
-Christoffer
next prev parent reply other threads:[~2013-09-20 3:47 UTC|newest]
Thread overview: 37+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-09-19 16:06 [U-Boot] [PATCH v5 0/8] ARMv7: Add HYP mode switching support Andre Przywara
2013-09-19 16:06 ` [U-Boot] [PATCH v5 1/8] ARM: prepare armv7.h to be included from assembly source Andre Przywara
2013-09-19 16:06 ` [U-Boot] [PATCH v5 2/8] ARM: add secure monitor handler to switch to non-secure state Andre Przywara
2013-09-19 21:50 ` Mj Embd
2013-09-20 0:42 ` Christoffer Dall
2013-09-20 2:38 ` Mj Embd
2013-09-20 3:47 ` Christoffer Dall [this message]
2013-10-03 6:30 ` Albert ARIBAUD
2013-10-12 9:27 ` [U-Boot] [PATCH v5 2/8] ARM: add secure monitor handler to switchto " TigerLiu at viatech.com.cn
2013-10-12 19:50 ` Albert ARIBAUD
2013-10-14 2:14 ` TigerLiu at viatech.com.cn
2013-10-14 5:16 ` Albert ARIBAUD
2013-10-14 5:23 ` TigerLiu at viatech.com.cn
2013-09-19 16:06 ` [U-Boot] [PATCH v5 3/8] ARM: add assembly routine to switch to " Andre Przywara
2013-09-19 16:30 ` Mj Embd
2013-09-19 19:26 ` Christoffer Dall
2013-09-19 19:57 ` Mj Embd
2013-09-19 20:11 ` Christoffer Dall
2013-09-19 20:38 ` Mj Embd
2013-09-19 21:31 ` Andre Przywara
2013-09-19 21:39 ` Mj Embd
2013-09-19 21:55 ` Mj Embd
2013-09-19 22:35 ` Peter Maydell
2013-09-19 22:50 ` Mj Embd
2013-09-19 23:21 ` Peter Maydell
2013-09-19 21:28 ` Ian Campbell
2013-09-19 21:09 ` Andre Przywara
2013-09-19 21:27 ` Ian Campbell
2013-09-19 16:06 ` [U-Boot] [PATCH v5 4/8] ARM: add C function " Andre Przywara
2013-09-19 16:06 ` [U-Boot] [PATCH v5 5/8] ARM: trigger non-secure state switch during bootm execution Andre Przywara
2013-09-19 16:06 ` [U-Boot] [PATCH v5 6/8] ARM: add SMP support for non-secure switch Andre Przywara
2013-09-19 16:06 ` [U-Boot] [PATCH v5 7/8] ARM: extend non-secure switch to also go into HYP mode Andre Przywara
2013-10-03 6:24 ` Albert ARIBAUD
2013-10-03 18:55 ` Christoffer Dall
2013-10-03 19:14 ` Albert ARIBAUD
2013-09-19 16:06 ` [U-Boot] [PATCH v5 8/8] ARM: VExpress: enable ARMv7 virt support for VExpress A15 Andre Przywara
2013-10-03 19:31 ` [U-Boot] [PATCH v5 0/8] ARMv7: Add HYP mode switching support Albert ARIBAUD
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20130920034718.GS7623@lvm \
--to=christoffer.dall@linaro.org \
--cc=u-boot@lists.denx.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox