fix(core): fix OTP programming on U5

[no changelog]
2024-12-18 20:38:10 +00:00 · 2023-11-23 12:50:02 +01:00 · 2023-11-23 12:50:02 +01:00 · 834693a115
commit 834693a115
parent cec0191360
3 changed files with 24 additions and 5 deletions
--- a/core/embed/firmware/main.c
+++ b/core/embed/firmware/main.c
@ -113,8 +113,6 @@ int main(void) {
  HAL_Init();
 #endif

-  collect_hw_entropy();
-
 #ifdef SYSTEM_VIEW
  enable_systemview();
 #endif
@ -139,6 +137,8 @@ int main(void) {

  mpu_config_firmware_initial();

+  collect_hw_entropy();
+
 #if PRODUCTION || BOOTLOADER_QA
  check_and_replace_bootloader();
 #endif
--- a/core/embed/trezorhal/stm32u5/flash_otp.c
+++ b/core/embed/trezorhal/stm32u5/flash_otp.c
@ -50,11 +50,11 @@ secbool flash_otp_write(uint8_t block, uint8_t offset, const uint8_t *data,
    return secfalse;
  }
  ensure(flash_unlock_write(), NULL);
-  for (uint8_t i = 0; i < datalen; i++) {
+  for (uint8_t i = 0; i < datalen; i += 16) {
    uint32_t address =
        FLASH_OTP_BASE + block * FLASH_OTP_BLOCK_SIZE + offset + i;
-    ensure(sectrue * (HAL_OK == HAL_FLASH_Program(FLASH_TYPEPROGRAM_QUADWORD,
-                                                  address, (uint32_t)data)),
+    ensure(sectrue * (HAL_OK == HAL_FLASH_Program(FLASH_TYPEPROGRAM_QUADWORD_NS,
+                                                  address, (uint32_t)&data[i])),
           NULL);
  }
  ensure(flash_lock_write(), NULL);
--- a/core/embed/trezorhal/stm32u5/trustzone.c
+++ b/core/embed/trezorhal/stm32u5/trustzone.c
@ -23,6 +23,22 @@

 #ifdef BOARDLOADER

+#define SAU_INIT_CTRL_ENABLE 1
+#define SAU_INIT_CTRL_ALLNS 0
+#define SAU_INIT_REGION(n, start, end, sec) \
+  SAU->RNR = ((n)&SAU_RNR_REGION_Msk);      \
+  SAU->RBAR = ((start)&SAU_RBAR_BADDR_Msk); \
+  SAU->RLAR = ((end)&SAU_RLAR_LADDR_Msk) |  \
+              (((sec) << SAU_RLAR_NSC_Pos) & SAU_RLAR_NSC_Msk) | 1U
+
+static void trustzone_configure_sau(void) {
+  SAU_INIT_REGION(0, 0x0BF90000, 0x0BFA8FFF, 0);  // OTP etc
+
+  SAU->CTRL =
+      ((SAU_INIT_CTRL_ENABLE << SAU_CTRL_ENABLE_Pos) & SAU_CTRL_ENABLE_Msk) |
+      ((SAU_INIT_CTRL_ALLNS << SAU_CTRL_ALLNS_Pos) & SAU_CTRL_ALLNS_Msk);
+}
+
 // Configure ARMCortex-M33 SCB and FPU security
 static void trustzone_configure_arm(void) {
  // Enable FPU in both secure and non-secure modes
@ -100,6 +116,9 @@ void trustzone_init_boardloader(void) {
  // Configure ARM SCB/FBU security
  trustzone_configure_arm();

+  // Configure SAU security attributes
+  trustzone_configure_sau();
+
  // Enable GTZC (Global Trust-Zone Controller) peripheral clock
  __HAL_RCC_GTZC1_CLK_ENABLE();
  __HAL_RCC_GTZC2_CLK_ENABLE();