• State Accepted Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 349 subscribers
  • Views 10731 views
  • Users 0 members are here
Options
Related
How was your experience today?
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ARMv8 EL1 MMU

Harish G

Hi,

    I am working on bootloader porting to ARM v8 platform. I am facing a problem in enabling MMU in execution level-1 EL1.

I am not able to set sctlr_el1.M bit when ever i try to set this bit the instruction won't complete. I think it is raising an exception where as i have not enabled the interrupts to capture. apart form sctlr_el1.M

bit i am able to set all other bits like sctlr.C, sctlr_el1.I.  Can some one please help regarding this issue? thanks in advance.

Parents
  • 0 Arm Employee Badge in reply to Harish G

    Hello Harish,

    Ah, I understand now. I thought you were asking whether there is a way for EL1/EL2 to know whether it is in the Secure state, to which the answer is, architecturally, no. However, EL3 controls the security state through the SCR_EL3.NS bit (bit [0]).

    From the ARM Architecture Reference Manual (ARM DDI 0487A.f) Section D7.2.80 "SCR_EL3, Secure Configuration Register":

    NS, bit [0]

        Non-secure bit.

        0    Indicates that EL0 and EL1 are in Secure state, and so memory accesses from those Exception levels can access Secure memory.

        1    Indicates that EL0 and EL1 are in Non-secure state, and so memory accesses from those Exception levels cannot access Secure memory.

    So setting the NS bit and performing an exception return to EL1 or EL0 from EL3 will drop you to Non-secure EL1/EL0, whereas having the NS bit cleared would drop you to Secure EL1/EL0.

    By your statement  "However, EL2 will always be non-secure. "  we can i assume the system is in non secure state since the "ERET" instruction from EL-3 is taking me to EL-2! where as in secure system it should directly take me to EL-1! is my understanding correct?

    Not quite. When performing the exception return from EL3, you will configure the SPSR_EL3.M[3:0] field from the following table:

    M[3:0]Mode
    0b0000EL0t
    0b0100EL1t
    0b0101EL1h
    0b1000EL2t
    0b1001EL2h
    0b1100EL3t
    0b1101EL3h

    If you were to set SPSR_EL3.M[3:0] to either of the EL2 modes (0b1000 or 0b1001) and perform an exception return with the SCR_EL3.NS bit cleared, i.e. you attempt to perform an exception return to Secure EL2, this is treated as an illegal exception return, so you will actually stay at EL3 and the PSTATE.IL bit will be set, causing the next instruction to be illegal and cause a synchronous exception, taking you to your EL3 vector table.

    More information on this can be found in the ARM Architecture Reference Manual (ARM DDI 0487A.f) Section D1.11.2 "Illegal return events from AArch64 state". As listed there under the situations that cause an illegal exception return:

    • A return to EL2 when EL3 is implemented and the value of the SCR_EL3.NS bit is 0.

    I hope that helps,

    Ash.

Reply
  • 0 Arm Employee Badge in reply to Harish G

    Hello Harish,

    Ah, I understand now. I thought you were asking whether there is a way for EL1/EL2 to know whether it is in the Secure state, to which the answer is, architecturally, no. However, EL3 controls the security state through the SCR_EL3.NS bit (bit [0]).

    From the ARM Architecture Reference Manual (ARM DDI 0487A.f) Section D7.2.80 "SCR_EL3, Secure Configuration Register":

    NS, bit [0]

        Non-secure bit.

        0    Indicates that EL0 and EL1 are in Secure state, and so memory accesses from those Exception levels can access Secure memory.

        1    Indicates that EL0 and EL1 are in Non-secure state, and so memory accesses from those Exception levels cannot access Secure memory.

    So setting the NS bit and performing an exception return to EL1 or EL0 from EL3 will drop you to Non-secure EL1/EL0, whereas having the NS bit cleared would drop you to Secure EL1/EL0.

    By your statement  "However, EL2 will always be non-secure. "  we can i assume the system is in non secure state since the "ERET" instruction from EL-3 is taking me to EL-2! where as in secure system it should directly take me to EL-1! is my understanding correct?

    Not quite. When performing the exception return from EL3, you will configure the SPSR_EL3.M[3:0] field from the following table:

    M[3:0]Mode
    0b0000EL0t
    0b0100EL1t
    0b0101EL1h
    0b1000EL2t
    0b1001EL2h
    0b1100EL3t
    0b1101EL3h

    If you were to set SPSR_EL3.M[3:0] to either of the EL2 modes (0b1000 or 0b1001) and perform an exception return with the SCR_EL3.NS bit cleared, i.e. you attempt to perform an exception return to Secure EL2, this is treated as an illegal exception return, so you will actually stay at EL3 and the PSTATE.IL bit will be set, causing the next instruction to be illegal and cause a synchronous exception, taking you to your EL3 vector table.

    More information on this can be found in the ARM Architecture Reference Manual (ARM DDI 0487A.f) Section D1.11.2 "Illegal return events from AArch64 state". As listed there under the situations that cause an illegal exception return:

    • A return to EL2 when EL3 is implemented and the value of the SCR_EL3.NS bit is 0.

    I hope that helps,

    Ash.

Children
No data