imx6 secure monitor code

Hi Yuri. Yes I'd found that. The issue I see seems to be that when I get control of the machine, after the IVT and DCD stuff has been run, it is on non secure mode.. i.e. secure configuration register data bit 0 = 0. The only way to get to secure mode from there is SMC #0, which appears to go to uninitialised code..  Can I setup, e.g. the secure vector base address register in the DCD code? if so how do I get there please

Hi John,

It seems you have your bits backwards - the bottom bit of the SCR register is actually .NS which dictates that the world you "came from" (in the Secure Monitor) or want to transition to is Non-Secure - if set. That is to say, SCR.NS==0 is Secure and SCR.NS==1 is Non-Secure.

Here's the thing, though: if you can even read the value of the SCR, you are also in Secure world, because it is appropriately not readable in the Non-Secure world. It will cause an undefined instruction exception just from reading the SCR, because Normal (Non-secure) World software is not meant to know whether security extensions are even present let alone which world they are in - the effect of trying to read the SCR in Normal (NS) or no-Security-Extensions-present environments is identical in that regard.

The way SMC works is really simple - it causes an SMC exception at the secure monitor. There's no way to set either the secure monitor vector base address in IVT or DCD for i.MX processors, but it would be incredibly unfortunate if you - without loading any plugins or other code via the Boot ROM APIs - somehow dropped to Non-secure since then you'd lose all access to the L2 cache configuration and so on. Note that the ARM TrustZone API example is old and deprecated and generally people are pointed to this vendor who have an open-source implementation:

     Open Virtualization - ARM TrustZone and ARM Hypervisor Open Source Software

The real question here is how and where are you encountering this instruction, and if there is no secure environment for the SMC to enter, why is it even being executed if you are already in Secure world? Are you attempting to directly load software that was intended to run under a secure environment?

Ta,

Matt

Hi Matt

Reply really appreciated.

I have now got on top of it.. there appear to be one or 2 'little

bits'that really need the secure code, so I needed to ensure a monitor

was installed. .. (in particular, access to L2 cache controller.)

For what it is worth, I now have a HAL up and running for RISCOS, though

it isn't in the public domain as yet.

Many thanks

John

Stop press! Just announced -

Free Standard Broadband for 6 months, unlimited data, and no minimum

contract

For full details of see http://www.JustAskJB.co.uk

<http://www.justaskjb.co.uk>

Intrigued? Call me

John Ballance C.Eng MIET - jwb@rosery.net - 07976 295923

Understood, I realise my reply was late (compared to when you asked the question!) but I really felt that the information isn't really well expanded on in the real world without digging through the ARM ARM (and the old TrustZone API example referenced really isn't the place ARM support points you at anymore).

It is REALLY interesting that RISCOS HAL - from your description - uses TrustZone functionality for the HAL calls...

mmm

there are just a couple of calls to do with L2 cache that I found I

needed to do in the secure realm. The rest of the time is spent in

normal modes...

Stop press! Just announced -

Free Standard Broadband for 6 months, unlimited data, and no minimum

contract

For full details of see http://www.JustAskJB.co.uk

<http://www.justaskjb.co.uk>

Intrigued? Call me

John Ballance C.Eng MIET - jwb@rosery.net - 07976 295923