* [U-Boot] [PATCH] ARM: socfpga: Add boot0 hook to prevent SPL corruption
@ 2016-11-16 16:54 Marek Vasut
2016-11-16 19:27 ` Dinh Nguyen
2016-11-18 19:47 ` Anatolij Gustschin
0 siblings, 2 replies; 5+ messages in thread
From: Marek Vasut @ 2016-11-16 16:54 UTC (permalink / raw)
To: u-boot
Valid Altera SoCFPGA preloader image must contain special data at
offsets 0x40, 0x44, 0x48 and valid instructions at address 0x4c or
0x50. These addresses are by default used by U-Boot's vector table
and a piece of reset handler, thus a valid preloader corrupts those
addresses slightly. While this works most of the time, this can and
does prevent the board from rebooting sometimes and triggering this
issue may even depend on compiler.
The problem is that when SoCFPGA performs warm reset, it checks the
addresses 0x40..0x4b in SRAM for a valid preloader signature and
header checksum. If those are found, it jumps to address 0x4c or
0x50 (this is unclear). These addresses are populated by the first
few instructions of arch/arm/cpu/armv7/start.S:
ffff0040 <data_abort>:
ffff0040: ebfffffe bl ffff0040 <data_abort>
ffff0044 <reset>:
ffff0044: ea000012 b ffff0094 <save_boot_params>
ffff0048 <save_boot_params_ret>:
ffff0048: e10f0000 mrs r0, CPSR
ffff004c: e200101f and r1, r0, #31
ffff0050: e331001a teq r1, #26
Without this patch, the CPU will enter the code at 0xffff004c or
0xffff0050 , at which point the value of r0 and r1 registers is
undefined. Moreover, jumping directly to the preloader entry point
at address 0xffff0000 will also fail, because address 0xffff004.
is invalid and contains the preloader magic.
Add BOOT0 hook which reserves the area at offset 0x40..0x5f and
populates offset 0x50 with jump to the entry point. This way, the
preloader signature is stored in reserved space and can not corrupt
the SPL code.
Signed-off-by: Marek Vasut <marex@denx.de>
Cc: Chin Liang See <clsee@altera.com>
Cc: Dinh Nguyen <dinguyen@opensource.altera.com>
Cc: Stefan Roese <sr@denx.de>
---
arch/arm/Kconfig | 1 +
arch/arm/mach-socfpga/include/mach/boot0.h | 28 ++++++++++++++++++++++++++++
2 files changed, 29 insertions(+)
create mode 100644 arch/arm/mach-socfpga/include/mach/boot0.h
diff --git a/arch/arm/Kconfig b/arch/arm/Kconfig
index d7a9b11..25bda14 100644
--- a/arch/arm/Kconfig
+++ b/arch/arm/Kconfig
@@ -551,6 +551,7 @@ config ARCH_SOCFPGA
select DM
select DM_SPI_FLASH
select DM_SPI
+ select ENABLE_ARM_SOC_BOOT0_HOOK
config TARGET_CM_T43
bool "Support cm_t43"
diff --git a/arch/arm/mach-socfpga/include/mach/boot0.h b/arch/arm/mach-socfpga/include/mach/boot0.h
new file mode 100644
index 0000000..aaada31
--- /dev/null
+++ b/arch/arm/mach-socfpga/include/mach/boot0.h
@@ -0,0 +1,28 @@
+/*
+ * Specialty padding for the Altera SoCFPGA preloader image
+ *
+ * SPDX-License-Identifier: GPL-2.0+
+ */
+
+#ifndef __BOOT0_H
+#define __BOOT0_H
+
+#ifdef CONFIG_SPL_BUILD
+#define ARM_SOC_BOOT0_HOOK \
+ .balignl 64,0xf33db33f; \
+ \
+ .word 0x1337c0d3; /* SoCFPGA preloader validation word */ \
+ .word 0xc01df00d; /* Version, flags, length */ \
+ .word 0xcafec0d3; /* Checksum, zero-pad */ \
+ nop; \
+ \
+ b reset; /* SoCFPGA jumps here */ \
+ nop; \
+ nop; \
+ nop;
+#else
+#define ARM_SOC_BOOT0_HOOK
+#endif
+
+
+#endif /* __BOOT0_H */
--
2.10.2
^ permalink raw reply related [flat|nested] 5+ messages in thread
* [U-Boot] [PATCH] ARM: socfpga: Add boot0 hook to prevent SPL corruption
2016-11-16 16:54 [U-Boot] [PATCH] ARM: socfpga: Add boot0 hook to prevent SPL corruption Marek Vasut
@ 2016-11-16 19:27 ` Dinh Nguyen
2016-11-16 22:39 ` Marek Vasut
2016-11-18 19:47 ` Anatolij Gustschin
1 sibling, 1 reply; 5+ messages in thread
From: Dinh Nguyen @ 2016-11-16 19:27 UTC (permalink / raw)
To: u-boot
On 11/16/2016 10:54 AM, Marek Vasut wrote:
> Valid Altera SoCFPGA preloader image must contain special data at
> offsets 0x40, 0x44, 0x48 and valid instructions at address 0x4c or
> 0x50. These addresses are by default used by U-Boot's vector table
> and a piece of reset handler, thus a valid preloader corrupts those
> addresses slightly. While this works most of the time, this can and
> does prevent the board from rebooting sometimes and triggering this
> issue may even depend on compiler.
>
> The problem is that when SoCFPGA performs warm reset, it checks the
> addresses 0x40..0x4b in SRAM for a valid preloader signature and
> header checksum. If those are found, it jumps to address 0x4c or
> 0x50 (this is unclear). These addresses are populated by the first
> few instructions of arch/arm/cpu/armv7/start.S:
>
> ffff0040 <data_abort>:
> ffff0040: ebfffffe bl ffff0040 <data_abort>
>
> ffff0044 <reset>:
> ffff0044: ea000012 b ffff0094 <save_boot_params>
>
> ffff0048 <save_boot_params_ret>:
> ffff0048: e10f0000 mrs r0, CPSR
> ffff004c: e200101f and r1, r0, #31
> ffff0050: e331001a teq r1, #26
>
> Without this patch, the CPU will enter the code at 0xffff004c or
> 0xffff0050 , at which point the value of r0 and r1 registers is
> undefined. Moreover, jumping directly to the preloader entry point
> at address 0xffff0000 will also fail, because address 0xffff004.
> is invalid and contains the preloader magic.
>
> Add BOOT0 hook which reserves the area at offset 0x40..0x5f and
> populates offset 0x50 with jump to the entry point. This way, the
> preloader signature is stored in reserved space and can not corrupt
> the SPL code.
>
> Signed-off-by: Marek Vasut <marex@denx.de>
> Cc: Chin Liang See <clsee@altera.com>
> Cc: Dinh Nguyen <dinguyen@opensource.altera.com>
> Cc: Stefan Roese <sr@denx.de>
> ---
> arch/arm/Kconfig | 1 +
> arch/arm/mach-socfpga/include/mach/boot0.h | 28 ++++++++++++++++++++++++++++
> 2 files changed, 29 insertions(+)
> create mode 100644 arch/arm/mach-socfpga/include/mach/boot0.h
With this patch, I can properly do a soft reset on an Atlas DE0 Nano board.
So feel free to add:
Tested-by: Dinh Nguyen <dinguyen@opensource.altera.com>
Dinh
^ permalink raw reply [flat|nested] 5+ messages in thread
* [U-Boot] [PATCH] ARM: socfpga: Add boot0 hook to prevent SPL corruption
2016-11-16 19:27 ` Dinh Nguyen
@ 2016-11-16 22:39 ` Marek Vasut
2016-11-17 4:24 ` Chin Liang See
0 siblings, 1 reply; 5+ messages in thread
From: Marek Vasut @ 2016-11-16 22:39 UTC (permalink / raw)
To: u-boot
On 11/16/2016 08:27 PM, Dinh Nguyen wrote:
>
>
> On 11/16/2016 10:54 AM, Marek Vasut wrote:
>> Valid Altera SoCFPGA preloader image must contain special data at
>> offsets 0x40, 0x44, 0x48 and valid instructions at address 0x4c or
>> 0x50. These addresses are by default used by U-Boot's vector table
>> and a piece of reset handler, thus a valid preloader corrupts those
>> addresses slightly. While this works most of the time, this can and
>> does prevent the board from rebooting sometimes and triggering this
>> issue may even depend on compiler.
>>
>> The problem is that when SoCFPGA performs warm reset, it checks the
>> addresses 0x40..0x4b in SRAM for a valid preloader signature and
>> header checksum. If those are found, it jumps to address 0x4c or
>> 0x50 (this is unclear). These addresses are populated by the first
>> few instructions of arch/arm/cpu/armv7/start.S:
>>
>> ffff0040 <data_abort>:
>> ffff0040: ebfffffe bl ffff0040 <data_abort>
>>
>> ffff0044 <reset>:
>> ffff0044: ea000012 b ffff0094 <save_boot_params>
>>
>> ffff0048 <save_boot_params_ret>:
>> ffff0048: e10f0000 mrs r0, CPSR
>> ffff004c: e200101f and r1, r0, #31
>> ffff0050: e331001a teq r1, #26
>>
>> Without this patch, the CPU will enter the code at 0xffff004c or
>> 0xffff0050 , at which point the value of r0 and r1 registers is
>> undefined. Moreover, jumping directly to the preloader entry point
>> at address 0xffff0000 will also fail, because address 0xffff004.
>> is invalid and contains the preloader magic.
>>
>> Add BOOT0 hook which reserves the area at offset 0x40..0x5f and
>> populates offset 0x50 with jump to the entry point. This way, the
>> preloader signature is stored in reserved space and can not corrupt
>> the SPL code.
>>
>> Signed-off-by: Marek Vasut <marex@denx.de>
>> Cc: Chin Liang See <clsee@altera.com>
>> Cc: Dinh Nguyen <dinguyen@opensource.altera.com>
>> Cc: Stefan Roese <sr@denx.de>
>> ---
>> arch/arm/Kconfig | 1 +
>> arch/arm/mach-socfpga/include/mach/boot0.h | 28 ++++++++++++++++++++++++++++
>> 2 files changed, 29 insertions(+)
>> create mode 100644 arch/arm/mach-socfpga/include/mach/boot0.h
>
> With this patch, I can properly do a soft reset on an Atlas DE0 Nano board.
>
> So feel free to add:
>
> Tested-by: Dinh Nguyen <dinguyen@opensource.altera.com>
That's great, thanks for checking ! You probably want to propagate this
fix to your downstream U-Boot mutation and also that MPL loader.
--
Best regards,
Marek Vasut
^ permalink raw reply [flat|nested] 5+ messages in thread
* [U-Boot] [PATCH] ARM: socfpga: Add boot0 hook to prevent SPL corruption
2016-11-16 22:39 ` Marek Vasut
@ 2016-11-17 4:24 ` Chin Liang See
0 siblings, 0 replies; 5+ messages in thread
From: Chin Liang See @ 2016-11-17 4:24 UTC (permalink / raw)
To: u-boot
On Rab, 2016-11-16 at 23:39 +0100, Marek Vasut wrote:
> On 11/16/2016 08:27 PM, Dinh Nguyen wrote:
> >
> >
> >
> > On 11/16/2016 10:54 AM, Marek Vasut wrote:
> > >
> > > Valid Altera SoCFPGA preloader image must contain special data at
> > > offsets 0x40, 0x44, 0x48 and valid instructions at address 0x4c
> > > or
> > > 0x50. These addresses are by default used by U-Boot's vector
> > > table
> > > and a piece of reset handler, thus a valid preloader corrupts
> > > those
> > > addresses slightly. While this works most of the time, this can
> > > and
> > > does prevent the board from rebooting sometimes and triggering
> > > this
> > > issue may even depend on compiler.
> > >
> > > The problem is that when SoCFPGA performs warm reset, it checks
> > > the
> > > addresses 0x40..0x4b in SRAM for a valid preloader signature and
> > > header checksum. If those are found, it jumps to address 0x4c or
> > > 0x50 (this is unclear). These addresses are populated by the
> > > first
> > > few instructions of arch/arm/cpu/armv7/start.S:
> > >
> > > ffff0040 <data_abort>:
> > > ffff0040:???????ebfffffe????????bl??????ffff0040 <data_abort>
> > >
> > > ffff0044 <reset>:
> > > ffff0044:???????ea000012????????b???????ffff0094
> > > <save_boot_params>
> > >
> > > ffff0048 <save_boot_params_ret>:
> > > ffff0048:???????e10f0000????????mrs?????r0, CPSR
> > > ffff004c:???????e200101f????????and?????r1, r0, #31
> > > ffff0050:???????e331001a????????teq?????r1, #26
> > >
> > > Without this patch, the CPU will enter the code at 0xffff004c or
> > > 0xffff0050 , at which point the value of r0 and r1 registers is
> > > undefined. Moreover, jumping directly to the preloader entry
> > > point
> > > at address 0xffff0000 will also fail, because address 0xffff004.
> > > is invalid and contains the preloader magic.
> > >
> > > Add BOOT0 hook which reserves the area at offset 0x40..0x5f and
> > > populates offset 0x50 with jump to the entry point. This way, the
> > > preloader signature is stored in reserved space and can not
> > > corrupt
> > > the SPL code.
> > >
> > > Signed-off-by: Marek Vasut <marex@denx.de>
> > > Cc: Chin Liang See <clsee@altera.com>
> > > Cc: Dinh Nguyen <dinguyen@opensource.altera.com>
> > > Cc: Stefan Roese <sr@denx.de>
> > > ---
> > > ?arch/arm/Kconfig???????????????????????????|??1 +
> > > ?arch/arm/mach-socfpga/include/mach/boot0.h | 28
> > > ++++++++++++++++++++++++++++
> > > ?2 files changed, 29 insertions(+)
> > > ?create mode 100644 arch/arm/mach-socfpga/include/mach/boot0.h
> > With this patch, I can properly do a soft reset on an Atlas DE0
> > Nano board.
> >
> > So feel free to add:
> >
> > Tested-by: Dinh Nguyen <dinguyen@opensource.altera.com>
> That's great, thanks for checking ! You probably want to propagate
> this
> fix to your downstream U-Boot mutation and also that MPL loader.
>
Great, this fix in time as we noticed this issue early of this week. We
were testing out the Arria10 SoC SPL. While for downstream, we already
cater that but not gracefully as we modified the start.s :)
THanks
Chin Liang
> --
> Best regards,
> Marek Vasut
>
> ________________________________
>
> Confidentiality Notice.
> This message may contain information that is confidential or
> otherwise protected from disclosure. If you are not the intended
> recipient, you are hereby notified that any use, disclosure,
> dissemination, distribution, or copying of this message, or any
> attachments, is strictly prohibited. If you have received this
> message in error, please advise the sender by reply e-mail, and
> delete the message and any attachments. Thank you.
^ permalink raw reply [flat|nested] 5+ messages in thread
* [U-Boot] [PATCH] ARM: socfpga: Add boot0 hook to prevent SPL corruption
2016-11-16 16:54 [U-Boot] [PATCH] ARM: socfpga: Add boot0 hook to prevent SPL corruption Marek Vasut
2016-11-16 19:27 ` Dinh Nguyen
@ 2016-11-18 19:47 ` Anatolij Gustschin
1 sibling, 0 replies; 5+ messages in thread
From: Anatolij Gustschin @ 2016-11-18 19:47 UTC (permalink / raw)
To: u-boot
On Wed, 16 Nov 2016 17:54:14 +0100
Marek Vasut marex at denx.de wrote:
...
> Add BOOT0 hook which reserves the area at offset 0x40..0x5f and
> populates offset 0x50 with jump to the entry point. This way, the
> preloader signature is stored in reserved space and can not corrupt
> the SPL code.
>
> Signed-off-by: Marek Vasut <marex@denx.de>
> Cc: Chin Liang See <clsee@altera.com>
> Cc: Dinh Nguyen <dinguyen@opensource.altera.com>
> Cc: Stefan Roese <sr@denx.de>
> ---
> arch/arm/Kconfig | 1 +
> arch/arm/mach-socfpga/include/mach/boot0.h | 28 ++++++++++++++++++++++++++++
> 2 files changed, 29 insertions(+)
> create mode 100644 arch/arm/mach-socfpga/include/mach/boot0.h
Tested-by: Anatolij Gustschin <agust@denx.de>
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2016-11-18 19:47 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2016-11-16 16:54 [U-Boot] [PATCH] ARM: socfpga: Add boot0 hook to prevent SPL corruption Marek Vasut
2016-11-16 19:27 ` Dinh Nguyen
2016-11-16 22:39 ` Marek Vasut
2016-11-17 4:24 ` Chin Liang See
2016-11-18 19:47 ` Anatolij Gustschin
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox