FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

Program Flash with Secure AHB Controller enabled

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

Program Flash with Secure AHB Controller enabled

Jump to solution
‎05-22-2019 06:40 AM
1,028 Views
simon_ott
Contributor I

What is the proper way to read and write data from and to the flash?

I assumed that the FLASH API should be used, so I used those functions to read and write data to and from the flash (FLASH_Init, FLASH_Program, FLASH_Erase, ...). This worked fine, as long as the Secure AHB Controller is not enabled.

However, as soon as I enable the Secure AHB Controller, the LPC55S69 runs into a bus fault when calling FLASH_Init. I can see that the error is caused on AHB layer zero by the CPU (bus master 0) which is running secure privileged and that it is a read address on location 0x3004310 that causes the security violation. The address is obviously in the ROM area where the FLASH API is located, but I am not sure why I cannot access this region at all. Explicitely programming the security level of the ROM (AHB_SECURE_CTRL->SEC_CTRL_FLASH_ROM[0].SEC_CTRL_ROM_MEM_RULE[0] and so on) to any security level does not have any effect.

My only goal is to store some data structures persistently (while the Secure AHB Controller is enabled). So my question is if I am doing something wrong in general (use the wrong API etc.) or how can I prevent the security error when accessing the FLASH API.

Labels (1)
Labels
Tags (2)
0 Kudos
Reply
1 Solution

Jump to solution
‎05-31-2019 12:34 AM
747 Views
Alice_Yang
NXP TechSupport
NXP TechSupport

Hello Simon,

Feedback as below: 

Check “Master secure level register (MASTER_SEC_LEVEL, offset = 0xFD0) bit description” should give you the master list:

0 – CPU0 CortexM33 code bus port

1 - CPU0 CortexM33 system bus port

2 – CPU1 CortexM33 code bus port

3 – CPU1 CortexM33 system bus port

4 - USB full speed Device

5 - System DMA 0.

6 - EZH data.

7 - EZH instruction.

8 – SDIO

9 - Power quad.

10 – Hash-Crypt engine

11 - USB full speed host.

12 - System DMA 1

Hope it helps,


Have a great day,
TIC

-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!

- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

View solution in original post

0 Kudos
Reply
4 Replies

Jump to solution
‎05-23-2019 04:49 AM
747 Views
simon_ott
Contributor I

Thank you for the reply. The SAU is configured but that was not the problem anyway. The error occured as soon as I enabled the Secure AHB Controller via the AHB_SECURE_CTRL MISC_CTRL_REG (ENABLE_SECURE_CHECKING bits set to 0x1).

However, I think I now solved the problem: I overlooked that the secure checking is in restrictive mode so that the master must have exactly the same tier as the slave (my thinking was that secure privileged can access anything). I configured the ROM where the FLASH API is located to be accessible from tier 3 (AHB_SECURE_CTRL->SEC_CTRL_FLASH_ROM[0].SEC_CTRL_ROM_MEM_RULE[x] = 0x33333333U;) before writing the MISC_CTRL_REG and now the flash can be programmed by secure privileged (tier 3) software without any errors.

What I was not able to find out: If a secure violation happens, the master number of the master that caused the violation can be read from the AHB_SECURE_CTRL->SEC_VIO_MISC_INFO register (SEC_VIO_INFO_MASTER bits). Number 0 seems to be CPU0, but I did not find a list of the other master numbers. Is this somewhere documented?

0 Kudos
Reply

Jump to solution
‎05-31-2019 12:34 AM
748 Views
Alice_Yang
NXP TechSupport
NXP TechSupport

Hello Simon,

Feedback as below: 

Check “Master secure level register (MASTER_SEC_LEVEL, offset = 0xFD0) bit description” should give you the master list:

0 – CPU0 CortexM33 code bus port

1 - CPU0 CortexM33 system bus port

2 – CPU1 CortexM33 code bus port

3 – CPU1 CortexM33 system bus port

4 - USB full speed Device

5 - System DMA 0.

6 - EZH data.

7 - EZH instruction.

8 – SDIO

9 - Power quad.

10 – Hash-Crypt engine

11 - USB full speed host.

12 - System DMA 1

Hope it helps,


Have a great day,
TIC

-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!

- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

0 Kudos
Reply

Jump to solution
‎05-30-2019 08:16 PM
747 Views
Alice_Yang
NXP TechSupport
NXP TechSupport

Hello Simon,

In the Reference Manual, really lost the detail meaning of SEC_VIO_INFO_MASTER.

I have ask development team about this, will tell you after I get feedback .ASAP.

Sorry for the inconvenient to you .

 BR

Alice

0 Kudos
Reply

Jump to solution
‎05-23-2019 02:42 AM
747 Views
Alice_Yang
NXP TechSupport
NXP TechSupport

Hello Simon Ott,

In order to analysis your question, could you please tell me:

1) How about " enable the Secure AHB Controller, "? Please show the enable code.

2) Which part of he memory you wan to read and write,? And how to configure the their secure rules?

3) Have you config the SAU and IDAU ? If yes, how to config?

BR

Alice

0 Kudos
Reply