core/arch/arm/tee/arch_svc_a64.S - optee-os-mtk - Git at Google

 /* SPDX-License-Identifier: BSD-2-Clause */
 /*
  * Copyright (c) 2015, Linaro Limited
  */
 #include "tee_syscall_numbers.h"
 #include "trace_levels.h"
 #include <arm64.h>
 #include <arm64_macros.S>
 #include <asm.S>
 #include <generated/asm-defines.h>
 #include <kernel/thread.h>
 #include <tee_api_defines.h>

 #if 0
 struct sc_rec {
 	uint64_t x0;
 	uint64_t x1;
 	uint64_t x19;
 	uint64_t x30;
 }
 #endif
 #define SC_REC_X0		(8 * 0)
 #define SC_REC_X1		(8 * 1)
 #define SC_REC_X19		(8 * 2)
 #define SC_REC_X30		(8 * 3)
 #define SC_REC_SIZE		(SC_REC_X30 + 8)

 /*
  * uint32_t tee_svc_do_call(struct thread_svc_regs *regs, tee_svc_func func);
  *
  * Called from tee_svc_handler()
  */
 FUNC tee_svc_do_call , :
 	sub	sp, sp, #SC_REC_SIZE
 	stp	x0, x1, [sp, #SC_REC_X0]
 	stp	x19, x30, [sp, #SC_REC_X19]
 	mov	x19, sp

 	ldr	x2, [x0, #THREAD_SVC_REG_SPSR]
 	tst	x2, #(SPSR_MODE_RW_32 << SPSR_MODE_RW_SHIFT)
 	b.eq	.Lcall_a64

 	ldp	x5, x6, [x0, #THREAD_SVC_REG_X5]
 	cmp	x6, #0
 	b.eq	.Lno_args_a32

 	/*
 	 * Calculate required space on stack to copy Aarch32 arguments
 	 * and to transform them into Aarch64 arguments.
 	 * x6 = nargs_on_stack
          * n64 = (nargs_on_stack - 4) * 8
          * n32 = nargs_on_stack * 4
          * sp -= ROUNDUP(MAX(n32, n64), 16)
 	 *
 	 */
 	/* n64 = (nargs_on_stack - 4) * 8 */
 	sub	x1, x6, #0x4
 	lsl	x1, x1, #3
 	/* n32 = nargs_on_stack * 4 */
 	lsl	x0, x6, #2
 	/* sp -= ROUNDUP(MAX(n32, n64), 16) */
 	cmp	x1, x0
 	csel	x0, x1, x0, ge
 	add	x0, x0, #0xf
 	and	x0, x0, #0xfffffffffffffff0
 	sub	sp, sp, x0

 	/*
 	 * Find location on stack where to copy the Aarch32 arguments
 	 * and do the copy.
 	 * tee_svc_copy_from_user(sp, x5, nargs_on_stack * 4)
 	 */
 	mov	x0, sp
 	mov	x1, x5
 	add	x2, xzr, x6, lsl #2
 	bl	tee_svc_copy_from_user
 	/* If copy failed return the error */
 	cmp	x0, #0
 	bne	.Lret

 	/*
 	 * Load arguments into w4..w7, we're loading junk into unused
 	 * registers, but it's quicker than trying to figure out how
 	 * many registers to load into.
 	 */
 	/* x0 = nargs_on_stack */
 	ldr	x0, [x19, #SC_REC_X0]
 	ldr	x0, [x0, #THREAD_SVC_REG_X6]
 	load_wregs sp, 0, 4, 7

 	/*
 	 * Convert remaining Aarch32 parameters passed on stack as Aarch64
 	 * parameters on stack.
 	 *
 	 * nargs_on_stack is initialized in x0 above
 	 * n64 = (nargs_on_stack - 4) * 8
 	 * if n64 < 0 goro .Lno_args
 	 * x0 = x2 = x19 - n64
 	 * x1 points to next argument
 	 * while (x2 != x19) {
 	 *	w3 = *x1
 	 *	x1 += 4
 	 *	*x2 = x3
 	 *	x2 += 8
 	 * }
 	 * sp = x0
 	 */
 	/* n64 = (nargs_on_stack - 4) * 8 */
 	subs	x2, x0, #0x4
 	b.le	.Lno_args_a32
 	lsl	x2, x2, #3
 	mov	x0, x2

 .Lcpy_to_stack:
 	ldr	w3, [x1], #4
 	str	x3, [x2], #8
 	cmp	x2, x19
 	b.ne	.Lcpy_to_stack
 	mov	sp, x0


 .Lno_args_a32: /* Load the first 4 arguments to function */
 	ldr	x9, [x19, #SC_REC_X0]
 	load_xregs x9, THREAD_SVC_REG_X0, 0, 3
 	mov	w0, w0
 	mov	w1, w1
 	mov	w2, w2
 	mov	w3, w3

 	/* Call the svc function */
 	ldr	x16, [x19, #SC_REC_X1]
 	blr	x16
 	b	.Lret

 .Lcall_a64: /* Load the first 8 arguments to function */
 	ldr	x9, [x19, #SC_REC_X0]
 	load_xregs x9, THREAD_SVC_REG_X0, 0, 8

 	/* Call the svc function */
 	ldr	x16, [x19, #SC_REC_X1]
 	blr	x16

 .Lret:
 	mov	sp, x19
 	ldp	x19, x30, [sp, #SC_REC_X19]
 	add	sp, sp, #SC_REC_SIZE
 	ret
 END_FUNC tee_svc_do_call

 /*
  * syscall_sys_return() and syscall_panic() are two special cases for syscalls
  * in the way that they do not return to the TA, instead execution is resumed
  * as if __thread_enter_user_mode() had returned to thread_enter_user_mode().
  *
  * In order to do this the functions need a way to get hold of a pointer to
  * the struct thread_svc_regs provided by storing relevant registers on the
  * stack in el0_svc() and later load them into registers again when el0_svc()
  * is returning.
  *
  * tee_svc_do_call() is supplied the pointer to struct thread_svc_regs in
  * x0. This pointer can later be retrieved by chasing x19.
  */

 /*
  * User space sees this function as:
  * void syscall_sys_return(uint32_t ret) __noreturn;
  *
  * But internally the function depends on being called from
  * tee_svc_do_call() to be able to chase x19 in order to get hold of a
  * pointer to struct thread_svc_regs.
  *
  * The argument ret is already in x0 so we don't touch that and let it
  * propagate as return value of the called
  * tee_svc_unwind_enter_user_mode().
  */
 FUNC syscall_sys_return , :
 	mov	x1, #0  /* panic = false */
 	mov	x2, #0  /* panic_code = 0 */
 	ldr	x3, [x19, #SC_REC_X0] /* pointer to struct thread_svc_regs */
 	b	tee_svc_sys_return_helper
 END_FUNC syscall_sys_return

 /*
  * User space sees this function as:
  * void syscall_panic(uint32_t code) __noreturn;
  *
  * But internally the function depends on being called from
  * tee_svc_do_call() to be able to chase x19 in order to get hold of a
  * pointer to struct thread_svc_regs.
  */
 FUNC syscall_panic , :
 	mov	x1, #1  /* panic = true */
 	mov	x2, x0  /* code */
 	ldr	w0, =TEE_ERROR_TARGET_DEAD
 	ldr	x3, [x19, #SC_REC_X0] /* pointer to struct thread_svc_regs */
 	b	tee_svc_sys_return_helper
 END_FUNC syscall_panic
	/* SPDX-License-Identifier: BSD-2-Clause */
	/*
	* Copyright (c) 2015, Linaro Limited
	*/
	#include "tee_syscall_numbers.h"
	#include "trace_levels.h"
	#include <arm64.h>
	#include <arm64_macros.S>
	#include <asm.S>
	#include <generated/asm-defines.h>
	#include <kernel/thread.h>
	#include <tee_api_defines.h>

	#if 0
	struct sc_rec {
	uint64_t x0;
	uint64_t x1;
	uint64_t x19;
	uint64_t x30;
	}
	#endif
	#define SC_REC_X0 (8 * 0)
	#define SC_REC_X1 (8 * 1)
	#define SC_REC_X19 (8 * 2)
	#define SC_REC_X30 (8 * 3)
	#define SC_REC_SIZE (SC_REC_X30 + 8)

	/*
	* uint32_t tee_svc_do_call(struct thread_svc_regs *regs, tee_svc_func func);
	*
	* Called from tee_svc_handler()
	*/
	FUNC tee_svc_do_call , :
	sub sp, sp, #SC_REC_SIZE
	stp x0, x1, [sp, #SC_REC_X0]
	stp x19, x30, [sp, #SC_REC_X19]
	mov x19, sp

	ldr x2, [x0, #THREAD_SVC_REG_SPSR]
	tst x2, #(SPSR_MODE_RW_32 << SPSR_MODE_RW_SHIFT)
	b.eq .Lcall_a64

	ldp x5, x6, [x0, #THREAD_SVC_REG_X5]
	cmp x6, #0
	b.eq .Lno_args_a32

	/*
	* Calculate required space on stack to copy Aarch32 arguments
	* and to transform them into Aarch64 arguments.
	* x6 = nargs_on_stack
	* n64 = (nargs_on_stack - 4) * 8
	* n32 = nargs_on_stack * 4
	* sp -= ROUNDUP(MAX(n32, n64), 16)
	*
	*/
	/* n64 = (nargs_on_stack - 4) * 8 */
	sub x1, x6, #0x4
	lsl x1, x1, #3
	/* n32 = nargs_on_stack * 4 */
	lsl x0, x6, #2
	/* sp -= ROUNDUP(MAX(n32, n64), 16) */
	cmp x1, x0
	csel x0, x1, x0, ge
	add x0, x0, #0xf
	and x0, x0, #0xfffffffffffffff0
	sub sp, sp, x0

	/*
	* Find location on stack where to copy the Aarch32 arguments
	* and do the copy.
	* tee_svc_copy_from_user(sp, x5, nargs_on_stack * 4)
	*/
	mov x0, sp
	mov x1, x5
	add x2, xzr, x6, lsl #2
	bl tee_svc_copy_from_user
	/* If copy failed return the error */
	cmp x0, #0
	bne .Lret

	/*
	* Load arguments into w4..w7, we're loading junk into unused
	* registers, but it's quicker than trying to figure out how
	* many registers to load into.
	*/
	/* x0 = nargs_on_stack */
	ldr x0, [x19, #SC_REC_X0]
	ldr x0, [x0, #THREAD_SVC_REG_X6]
	load_wregs sp, 0, 4, 7

	/*
	* Convert remaining Aarch32 parameters passed on stack as Aarch64
	* parameters on stack.
	*
	* nargs_on_stack is initialized in x0 above
	* n64 = (nargs_on_stack - 4) * 8
	* if n64 < 0 goro .Lno_args
	* x0 = x2 = x19 - n64
	* x1 points to next argument
	* while (x2 != x19) {
	* w3 = *x1
	* x1 += 4
	* *x2 = x3
	* x2 += 8
	* }
	* sp = x0
	*/
	/* n64 = (nargs_on_stack - 4) * 8 */
	subs x2, x0, #0x4
	b.le .Lno_args_a32
	lsl x2, x2, #3
	mov x0, x2

	.Lcpy_to_stack:
	ldr w3, [x1], #4
	str x3, [x2], #8
	cmp x2, x19
	b.ne .Lcpy_to_stack
	mov sp, x0


	.Lno_args_a32: /* Load the first 4 arguments to function */
	ldr x9, [x19, #SC_REC_X0]
	load_xregs x9, THREAD_SVC_REG_X0, 0, 3
	mov w0, w0
	mov w1, w1
	mov w2, w2
	mov w3, w3

	/* Call the svc function */
	ldr x16, [x19, #SC_REC_X1]
	blr x16
	b .Lret

	.Lcall_a64: /* Load the first 8 arguments to function */
	ldr x9, [x19, #SC_REC_X0]
	load_xregs x9, THREAD_SVC_REG_X0, 0, 8

	/* Call the svc function */
	ldr x16, [x19, #SC_REC_X1]
	blr x16

	.Lret:
	mov sp, x19
	ldp x19, x30, [sp, #SC_REC_X19]
	add sp, sp, #SC_REC_SIZE
	ret
	END_FUNC tee_svc_do_call

	/*
	* syscall_sys_return() and syscall_panic() are two special cases for syscalls
	* in the way that they do not return to the TA, instead execution is resumed
	* as if __thread_enter_user_mode() had returned to thread_enter_user_mode().
	*
	* In order to do this the functions need a way to get hold of a pointer to
	* the struct thread_svc_regs provided by storing relevant registers on the
	* stack in el0_svc() and later load them into registers again when el0_svc()
	* is returning.
	*
	* tee_svc_do_call() is supplied the pointer to struct thread_svc_regs in
	* x0. This pointer can later be retrieved by chasing x19.
	*/

	/*
	* User space sees this function as:
	* void syscall_sys_return(uint32_t ret) __noreturn;
	*
	* But internally the function depends on being called from
	* tee_svc_do_call() to be able to chase x19 in order to get hold of a
	* pointer to struct thread_svc_regs.
	*
	* The argument ret is already in x0 so we don't touch that and let it
	* propagate as return value of the called
	* tee_svc_unwind_enter_user_mode().
	*/
	FUNC syscall_sys_return , :
	mov x1, #0 /* panic = false */
	mov x2, #0 /* panic_code = 0 */
	ldr x3, [x19, #SC_REC_X0] /* pointer to struct thread_svc_regs */
	b tee_svc_sys_return_helper
	END_FUNC syscall_sys_return

	/*
	* User space sees this function as:
	* void syscall_panic(uint32_t code) __noreturn;
	*
	* But internally the function depends on being called from
	* tee_svc_do_call() to be able to chase x19 in order to get hold of a
	* pointer to struct thread_svc_regs.
	*/
	FUNC syscall_panic , :
	mov x1, #1 /* panic = true */
	mov x2, x0 /* code */
	ldr w0, =TEE_ERROR_TARGET_DEAD
	ldr x3, [x19, #SC_REC_X0] /* pointer to struct thread_svc_regs */
	b tee_svc_sys_return_helper
	END_FUNC syscall_panic