mirror of
https://github.com/Telecominfraproject/OpenCellular.git
synced 2026-01-04 14:01:54 +00:00
e6afb2ef97
The nvmem_write() and nvmem_move() funcitons return an error
if the write or move operation would exceed the user buffer
boundary. However, the TPM2 functions which call these functions
do not check for errors. Instead TPM2 NvMem relies on the return
value of the nv_commit() function to determine if a TPM command
which modifies NvMem succeeds or fails.
This CL adds a nvmem_write_error flag which is set in cases where
an nvmem_write/nvmem_move returns an error. This error flag
is then checked in nvmem_commit() so that the commit operation can
be abandonded and the error returned back up the TPM2 stack.
Tested in full system for two cases.
Installed TPM certificates on the Cr50, then manually erased NvMem with
flasherase 0x7b000 0x5000 and rebooted system. Then on Kevin console
entered the command <trunks_client --own>
NV_MEMORY_SIZE = 9932
NVMEM_TPM_SIZE = 7168
Case 1 -> Without internal write error state, so commit() always
executes if called. In this case, the Kevin console reports
a TRUNKS_RC_WRITE_ERROR and there is a Cr50 reboot.
Kevin Console:
localhost ~ # trunks_client --own
[INFO:tpm_utility_impl.cc(1692)] CreateStorageRootKeys: Created RSA SRK.
[INFO:tpm_utility_impl.cc(1735)] CreateStorageRootKeys: Created ECC SRK.
[ 134.056217] tpm tpm0: Operation Timed out
[ERROR:tpm_utility_impl.cc(1987)] DoesPersistentKeyExist:
querying handles: TRUNKS_RC_WRITE_ERROR
[ERROR:tpm_utility_impl.cc(269)] TakeOwnership: Error creating salting
key: TRUNKS_RC_WRITE_ERROR
[ERROR:trunks_client.cc(98)] Error taking ownership: TRUNKS_RC_WRITE_ERROR
Cr50 Console:
> [131.501920 nv_commit()]
[142.494755 nv_wr: max off = 0x1250]
[142.496347 nv_wr: max off = 0x17b4]
[142.548296 nv_commit()]
[142.678001 nv_rd: max off = 0x1250]
[142.679350 nv_rd: max off = 0x1254]
[143.269614 Nv Wr: overflow stop: reqst = 0x1d1c, avail = 0x1c00]
[143.271460 Nv Wr: overflow stop: reqst = 0x1d20, avail = 0x1c00]
[143.273055 Wr Err = TRUE, Resetting error only, not returning]
[143.325073 nv_commit()]
--- UART initialized after reboot ---
[Reset cause: rtc-alarm]
[Image: RW_B, cr50_v1.1.5056-8e5dc99+ private-cr51:v0.0.69- 12:23:02]
[0.004349 Inits done]
[0.007150 Active NVram partition set to 0]
[0.008086 Debug Accessory connected]
[0.009076 USB PHY B]
Console is enabled; type HELP for help.
tpm_manufactured: manufactured
[1.155766 usb_reset]
[1.240155 usb_reset]
[1.311188 SETAD 0x6c (108)]
Case 2 -> Using internal error state to gate the commit() operation.
In this case, the attempted write overflow sets the internal error
state and the commit() following attempted overflow detection is not
exectued. It results in a different AP TPM error shown below as
Error encrypting salt. The other different behavior is that observed
is that if after failing on the RSA SRK, the ECC SRK write is still
attempted.
Kevin Console:
localhost ~ # trunks_client --own
[INFO:tpm_utility_impl.cc(1692)] CreateStorageRootKeys: Created RSA SRK.
[INFO:tpm_utility_impl.cc(1735)] CreateStorageRootKeys: Created ECC SRK.
[ERROR:session_manager_impl.cc(154)] Error fetching salting key public
info: Handle 1: TPM_RC_HANDLE
[ERROR:session_manager_impl.cc(94)] Error encrypting salt: Handle 1:
TPM_RC_HANDLE
[ERROR:tpm_utility_impl.cc(277)] TakeOwnership: Error initializing
AuthorizationSession: Handle 1: TPM_RC_HANDLE
[ERROR:trunks_client.cc(98)] Error taking ownership: Handle 1:
TPM_RC_HANDLE
Cr50 Console:
> [107.867473 nv_commit()]
[133.743522 nv_wr: max off = 0x123f]
[133.744908 nv_wr: max off = 0x1250]
[133.746159 nv_wr: max off = 0x17b4]
[133.798498 nv_commit()]
[133.900131 nv_rd: max off = 0x1250]
[133.901496 nv_rd: max off = 0x1254]
[134.507033 Nv Wr: overflow stop: reqst = 0x1d1c, avail = 0x1c00]
[134.508852 Nv Wr: overflow stop: reqst = 0x1d20, avail = 0x1c00]
[134.510440 Wr Err = TRUE, Aborting Commit!]
[144.856751 Nv Wr: overflow stop: reqst = 0x1d1c, avail = 0x1c00]
[144.858611 Nv Wr: overflow stop: reqst = 0x1d20, avail = 0x1c00]
[144.860198 Wr Err = TRUE, Aborting Commit!]
BRANCH=none
BUG=chrome-os-partner:55910
TEST=manual Test in system as described above and
ran NVMEM unit tests and verified that when a write would overrun the
user buffer, the write fails and sets the error state. Then,
verified that the nv_commit() call returns an error and clears
the internal error state.
Change-Id: I376e17b273003ff3d75459b4e68ed69d42dc7415
Signed-off-by: Scott <scollyer@chromium.org>
Reviewed-on: https://chromium-review.googlesource.com/366757
Commit-Ready: Scott Collyer <scollyer@chromium.org>
Tested-by: Scott Collyer <scollyer@chromium.org>
Reviewed-by: Vadim Bendebury <vbendeb@chromium.org>
598 lines
16 KiB
C
598 lines
16 KiB
C
/* Copyright 2016 The Chromium OS Authors. All rights reserved.
|
|
* Use of this source code is governed by a BSD-style license that can be
|
|
* found in the LICENSE file.
|
|
*
|
|
* Test Cr-50 Non-Voltatile memory module
|
|
*/
|
|
|
|
#include "common.h"
|
|
#include "console.h"
|
|
#include "crc.h"
|
|
#include "nvmem.h"
|
|
#include "flash.h"
|
|
#include "shared_mem.h"
|
|
#include "task.h"
|
|
#include "test_util.h"
|
|
#include "timer.h"
|
|
#include "util.h"
|
|
|
|
#define WRITE_SEGMENT_LEN 200
|
|
#define WRITE_READ_SEGMENTS 4
|
|
|
|
uint32_t nvmem_user_sizes[NVMEM_NUM_USERS] = {
|
|
NVMEM_USER_0_SIZE,
|
|
NVMEM_USER_1_SIZE,
|
|
NVMEM_USER_2_SIZE
|
|
};
|
|
|
|
static uint8_t write_buffer[NVMEM_PARTITION_SIZE];
|
|
static uint8_t read_buffer[NVMEM_PARTITION_SIZE];
|
|
static int flash_write_fail;
|
|
static int lock_test_started;
|
|
|
|
void nvmem_compute_sha(uint8_t *p_buf, int num_bytes, uint8_t *p_sha,
|
|
int sha_bytes)
|
|
{
|
|
uint32_t crc;
|
|
uint32_t *p_data;
|
|
int n;
|
|
|
|
crc32_init();
|
|
/* Assuming here that buffer is 4 byte aligned and that num_bytes is
|
|
* divisible by 4
|
|
*/
|
|
p_data = (uint32_t *)p_buf;
|
|
for (n = 0; n < num_bytes/4; n++)
|
|
crc32_hash32(*p_data++);
|
|
crc = crc32_result();
|
|
|
|
p_data = (uint32_t *)p_sha;
|
|
*p_data = crc;
|
|
}
|
|
|
|
/* Used to allow/prevent Flash erase/write operations */
|
|
int flash_pre_op(void)
|
|
{
|
|
return flash_write_fail ? EC_ERROR_UNKNOWN : EC_SUCCESS;
|
|
}
|
|
|
|
static int generate_random_data(int offset, int num_bytes)
|
|
{
|
|
int m, n, limit;
|
|
uint32_t r_data;
|
|
|
|
/* Ensure it will fit in the write buffer */
|
|
TEST_ASSERT((num_bytes + offset) <= NVMEM_PARTITION_SIZE);
|
|
/* Seed random number sequence */
|
|
r_data = prng((uint32_t)clock());
|
|
m = 0;
|
|
while (m < num_bytes) {
|
|
r_data = prng(r_data);
|
|
limit = MIN(4, num_bytes - m);
|
|
/* No byte alignment assumptions */
|
|
for (n = 0; n < limit; n++)
|
|
write_buffer[offset + m + n] = (r_data >> (n*8)) & 0xff;
|
|
m += limit;
|
|
}
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static int test_write_read(uint32_t offset, uint32_t num_bytes, int user)
|
|
{
|
|
int ret;
|
|
|
|
/* Generate source data */
|
|
generate_random_data(0, num_bytes);
|
|
/* Write source data to NvMem */
|
|
ret = nvmem_write(offset, num_bytes, write_buffer, user);
|
|
/* Write to flash */
|
|
ret = nvmem_commit();
|
|
if (ret != EC_SUCCESS)
|
|
return ret;
|
|
/* Read from flash */
|
|
nvmem_read(offset, num_bytes, read_buffer, user);
|
|
/* Verify that write to flash was successful */
|
|
TEST_ASSERT_ARRAY_EQ(write_buffer, read_buffer, num_bytes);
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static int write_full_buffer(uint32_t size, int user)
|
|
{
|
|
uint32_t offset;
|
|
uint32_t len;
|
|
int ret;
|
|
|
|
/* Start at beginning of the user buffer */
|
|
offset = 0;
|
|
do {
|
|
/* User default segment length unless it will exceed */
|
|
len = MIN(WRITE_SEGMENT_LEN, size - offset);
|
|
/* Generate data for tx buffer */
|
|
generate_random_data(offset, len);
|
|
/* Write data to Nvmem cache memory */
|
|
nvmem_write(offset, len, &write_buffer[offset], user);
|
|
/* Write to flash */
|
|
ret = nvmem_commit();
|
|
if (ret != EC_SUCCESS)
|
|
return ret;
|
|
/* Adjust starting offset by segment length */
|
|
offset += len;
|
|
} while (offset < size);
|
|
|
|
/* Entire flash buffer should be full at this point */
|
|
nvmem_read(0, size, read_buffer, user);
|
|
/* Verify that write to flash was successful */
|
|
TEST_ASSERT_ARRAY_EQ(write_buffer, read_buffer, size);
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static int test_fully_erased_nvmem(void)
|
|
{
|
|
/*
|
|
* The purpose of this test is to check NvMem intialization when NvMem
|
|
* is completely erased (i.e. following SpiFlash write of program). In
|
|
* this configuration, nvmem_init() should be able to detect this case
|
|
* and configure an initial NvMem partition.
|
|
*/
|
|
|
|
/* Erase full NvMem area */
|
|
flash_physical_erase(CONFIG_FLASH_NVMEM_OFFSET,
|
|
CONFIG_FLASH_NVMEM_SIZE);
|
|
/* Call NvMem initialization function */
|
|
return nvmem_init();
|
|
}
|
|
|
|
static int test_configured_nvmem(void)
|
|
{
|
|
/*
|
|
* The purpose of this test is to check nvmem_init() when both
|
|
* partitions are configured and valid.
|
|
*/
|
|
|
|
/* Configure all NvMem partitions with starting version number 0 */
|
|
nvmem_setup(0);
|
|
/* Call NvMem initialization */
|
|
return nvmem_init();
|
|
}
|
|
|
|
static int test_corrupt_nvmem(void)
|
|
{
|
|
uint32_t offset;
|
|
int n;
|
|
int ret;
|
|
struct nvmem_tag *p_part;
|
|
uint8_t *p_data;
|
|
|
|
/*
|
|
* The purpose of this test is to check nvmem_init() in the case when no
|
|
* vailid partition exists (not fully erased and no valid sha). In this
|
|
* case, the initialization function will call setup() to create two new
|
|
* valid partitions.
|
|
*/
|
|
|
|
/* Overwrite each partition will all 0s */
|
|
memset(write_buffer, 0, NVMEM_PARTITION_SIZE);
|
|
for (n = 0; n < NVMEM_NUM_PARTITIONS; n++) {
|
|
offset = NVMEM_PARTITION_SIZE * n;
|
|
flash_physical_write(CONFIG_FLASH_NVMEM_OFFSET + offset,
|
|
NVMEM_PARTITION_SIZE,
|
|
(const char *)write_buffer);
|
|
}
|
|
/*
|
|
* The initialization function will look for a valid partition and if
|
|
* none is found, then will call nvmem_setup() which will erase the
|
|
* paritions and setup new tags.
|
|
*/
|
|
ret = nvmem_init();
|
|
if (ret)
|
|
return ret;
|
|
/* Fill buffer with 0xffs */
|
|
memset(write_buffer, 0xff, NVMEM_PARTITION_SIZE);
|
|
/*
|
|
* nvmem_setup() will write put version 1 into partition 1 since the
|
|
* commit() function toggles the active partition. Check here that
|
|
* partition 0 has a version number of 1 and that all of the user buffer
|
|
* data has been erased.
|
|
*/
|
|
p_part = (struct nvmem_tag *)CONFIG_FLASH_NVMEM_BASE;
|
|
TEST_ASSERT(p_part->version == 1);
|
|
p_data = (uint8_t *)p_part + sizeof(struct nvmem_tag);
|
|
/* Verify that partition 0 is fully erased */
|
|
TEST_ASSERT_ARRAY_EQ(write_buffer, p_data, NVMEM_PARTITION_SIZE -
|
|
sizeof(struct nvmem_tag));
|
|
|
|
/* Run the same test for partition 1 which should have version 0 */
|
|
p_part = (struct nvmem_tag *)(CONFIG_FLASH_NVMEM_BASE +
|
|
NVMEM_PARTITION_SIZE);
|
|
TEST_ASSERT(p_part->version == 0);
|
|
p_data = (uint8_t *)p_part + sizeof(struct nvmem_tag);
|
|
ccprintf("Partition Version = %d\n", p_part->version);
|
|
/* Verify that partition 1 is fully erased */
|
|
TEST_ASSERT_ARRAY_EQ(write_buffer, p_data, NVMEM_PARTITION_SIZE -
|
|
sizeof(struct nvmem_tag));
|
|
return ret;
|
|
}
|
|
|
|
static int test_write_read_sequence(void)
|
|
{
|
|
uint32_t offset;
|
|
uint32_t length;
|
|
int user;
|
|
int n;
|
|
int ret;
|
|
|
|
for (user = 0; user < NVMEM_NUM_USERS; user++) {
|
|
/* Length for each write/read segment */
|
|
length = nvmem_user_sizes[user] / WRITE_READ_SEGMENTS;
|
|
/* Start at beginning of user buffer */
|
|
offset = 0;
|
|
for (n = 0; n < WRITE_READ_SEGMENTS; n++) {
|
|
ret = test_write_read(offset, length, user);
|
|
if (ret != EC_SUCCESS)
|
|
return ret;
|
|
/* Adjust offset by segment length */
|
|
offset += length;
|
|
/* For 1st iteration only, adjust to create stagger */
|
|
if (n == 0)
|
|
offset -= length / 2;
|
|
|
|
}
|
|
}
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static int test_write_full_multi(void)
|
|
{
|
|
int n;
|
|
int ret;
|
|
|
|
/*
|
|
* The purpose of this test is to completely fill each user buffer in
|
|
* NvMem with random data a segment length at a time. The data written
|
|
* to NvMem is saved in write_buffer[] and then can be used to check the
|
|
* NvMem writes were successful by reading and then comparing each user
|
|
* buffer.
|
|
*/
|
|
for (n = 0; n < NVMEM_NUM_USERS; n++) {
|
|
ret = write_full_buffer(nvmem_user_sizes[n], n);
|
|
if (ret != EC_SUCCESS)
|
|
return ret;
|
|
}
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static int test_write_fail(void)
|
|
{
|
|
uint32_t offset = 0;
|
|
uint32_t num_bytes = 0x200;
|
|
int ret;
|
|
|
|
/* Do write/read sequence that's expected to be successful */
|
|
if (test_write_read(offset, num_bytes, NVMEM_USER_0))
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
/* Prevent flash erase/write operations */
|
|
flash_write_fail = 1;
|
|
/* Attempt flash write */
|
|
ret = test_write_read(offset, num_bytes, NVMEM_USER_0);
|
|
/* Resume normal operation */
|
|
flash_write_fail = 0;
|
|
|
|
/* This test is successful if write attempt failed */
|
|
return !ret;
|
|
}
|
|
|
|
static int test_cache_not_available(void)
|
|
{
|
|
char **p_shared;
|
|
int ret;
|
|
uint32_t offset = 0;
|
|
uint32_t num_bytes = 0x200;
|
|
|
|
/*
|
|
* The purpose of this test is to validate that NvMem writes behave as
|
|
* expected when the shared memory buffer (used for cache ram) is and
|
|
* isn't available.
|
|
*/
|
|
|
|
/* Do write/read sequence that's expected to be successful */
|
|
if (test_write_read(offset, num_bytes, NVMEM_USER_1))
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
/* Acquire shared memory */
|
|
if (shared_mem_acquire(num_bytes, p_shared))
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
/* Attempt write/read sequence that should fail */
|
|
ret = test_write_read(offset, num_bytes, NVMEM_USER_1);
|
|
/* Release shared memory */
|
|
shared_mem_release(*p_shared);
|
|
if (!ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
/* Write/read sequence should work now */
|
|
return test_write_read(offset, num_bytes, NVMEM_USER_1);
|
|
}
|
|
|
|
static int test_buffer_overflow(void)
|
|
{
|
|
int ret;
|
|
int n;
|
|
|
|
/*
|
|
* The purpose of this test is to check that NvMem writes behave
|
|
* properly in relation to the defined length of each user buffer. A
|
|
* write operation to completely fill the buffer is done first. This
|
|
* should pass. Then the same buffer is written to with one extra byte
|
|
* and this operation is expected to fail.
|
|
*/
|
|
|
|
/* Do test for each user buffer */
|
|
for (n = 0; n < NVMEM_NUM_USERS; n++) {
|
|
/* Write full buffer */
|
|
ret = write_full_buffer(nvmem_user_sizes[n], n);
|
|
if (ret != EC_SUCCESS)
|
|
return ret;
|
|
/* Attempt to write full buffer plus 1 extra byte */
|
|
ret = write_full_buffer(nvmem_user_sizes[n] + 1, n);
|
|
if (!ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
}
|
|
|
|
/* Test case where user buffer number is valid */
|
|
ret = test_write_read(0, 0x100, NVMEM_USER_0);
|
|
if (ret != EC_SUCCESS)
|
|
return ret;
|
|
/* Attempt same write, but with invalid user number */
|
|
ret = test_write_read(0, 0x100, NVMEM_NUM_USERS);
|
|
if (!ret)
|
|
return ret;
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static int test_move(void)
|
|
{
|
|
uint32_t len = 0x100;
|
|
uint32_t nv1_offset;
|
|
uint32_t nv2_offset;
|
|
int user = 0;
|
|
int n;
|
|
int ret;
|
|
|
|
/*
|
|
* The purpose of this test is to check that nvmem_move() behaves
|
|
* properly. This test only uses one user buffer as accessing multiple
|
|
* user buffers is tested separately. This test uses writes a set of
|
|
* test data then test move operations with full overlap, half overlap
|
|
* and no overlap. Folliwng these tests, the boundary conditions for
|
|
* move operations are checked for the giver user buffer.
|
|
*/
|
|
|
|
nv1_offset = 0;
|
|
for (n = 0; n < 3; n++) {
|
|
/* Generate Test data */
|
|
generate_random_data(nv1_offset, len);
|
|
nv2_offset = nv1_offset + (len / 2) * n;
|
|
/* Write data to Nvmem cache memory */
|
|
nvmem_write(nv1_offset, len, &write_buffer[nv1_offset], user);
|
|
nvmem_commit();
|
|
/* Test move while data is in cache area */
|
|
nvmem_move(nv1_offset, nv2_offset, len, user);
|
|
nvmem_read(nv2_offset, len, read_buffer, user);
|
|
if (memcmp(write_buffer, read_buffer, len))
|
|
return EC_ERROR_UNKNOWN;
|
|
ccprintf("Memmove nv1 = 0x%x, nv2 = 0x%x\n",
|
|
nv1_offset, nv2_offset);
|
|
}
|
|
/* Test invalid buffer offsets */
|
|
/* Destination offset is equal to length of buffer */
|
|
nv1_offset = 0;
|
|
nv2_offset = nvmem_user_sizes[user];
|
|
/* Attempt to move just 1 byte */
|
|
ret = nvmem_move(nv1_offset, nv2_offset, 1, user);
|
|
if (!ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
/* Source offset is equal to length of buffer */
|
|
nv1_offset = nvmem_user_sizes[user];
|
|
nv2_offset = 0;
|
|
/* Attempt to move just 1 byte */
|
|
ret = nvmem_move(nv1_offset, nv2_offset, 1, user);
|
|
if (!ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
nv1_offset = 0;
|
|
nv2_offset = nvmem_user_sizes[user] - len;
|
|
/* Move data chunk from start to end of buffer */
|
|
ret = nvmem_move(nv1_offset, nv2_offset,
|
|
len, user);
|
|
if (ret)
|
|
return ret;
|
|
|
|
/* Attempt to move data chunk 1 byte beyond end of user buffer */
|
|
nv1_offset = 0;
|
|
nv2_offset = nvmem_user_sizes[user] - len + 1;
|
|
ret = nvmem_move(nv1_offset, nv2_offset,
|
|
len, user);
|
|
if (!ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
/* nvmem_move returned an error, need to clear internal error state */
|
|
nvmem_commit();
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static int test_is_different(void)
|
|
{
|
|
uint32_t len = 0x41;
|
|
uint32_t nv1_offset = 0;
|
|
int user = 1;
|
|
int ret;
|
|
|
|
/*
|
|
* The purpose of this test is to verify nv_is_different(). Test data is
|
|
* written to a location in user buffer 1, then a case that's expected
|
|
* to pass along with a case that is expected to fail are checked. Next
|
|
* the same tests are repeated when the NvMem write is followed by a
|
|
* commit operation.
|
|
*/
|
|
|
|
/* Generate test data */
|
|
generate_random_data(nv1_offset, len);
|
|
/* Write to NvMem cache buffer */
|
|
nvmem_write(nv1_offset, len, &write_buffer[nv1_offset], user);
|
|
/* Expected to be the same */
|
|
ret = nvmem_is_different(nv1_offset, len,
|
|
&write_buffer[nv1_offset], user);
|
|
if (ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
/* Expected to be different */
|
|
ret = nvmem_is_different(nv1_offset + 1, len,
|
|
&write_buffer[nv1_offset], user);
|
|
if (!ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
/* Commit cache buffer and retest */
|
|
nvmem_commit();
|
|
/* Expected to be the same */
|
|
ret = nvmem_is_different(nv1_offset, len,
|
|
&write_buffer[nv1_offset], user);
|
|
if (ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
/* Expected to be different */
|
|
write_buffer[nv1_offset] ^= 0xff;
|
|
ret = nvmem_is_different(nv1_offset, len,
|
|
&write_buffer[nv1_offset], user);
|
|
if (!ret)
|
|
return EC_ERROR_UNKNOWN;
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
int nvmem_first_task(void *unused)
|
|
{
|
|
uint32_t offset = 0;
|
|
uint32_t num_bytes = WRITE_SEGMENT_LEN;
|
|
int user = NVMEM_USER_0;
|
|
|
|
task_wait_event(0);
|
|
/* Generate source data */
|
|
generate_random_data(0, num_bytes);
|
|
nvmem_write(0, num_bytes, &write_buffer[offset], user);
|
|
/* Read from cache memory */
|
|
nvmem_read(0, num_bytes, read_buffer, user);
|
|
/* Verify that write to nvmem was successful */
|
|
TEST_ASSERT_ARRAY_EQ(write_buffer, read_buffer, num_bytes);
|
|
/* Wait here with mutex held by this task */
|
|
task_wait_event(0);
|
|
/* Write to flash which releases nvmem mutex */
|
|
nvmem_commit();
|
|
nvmem_read(0, num_bytes, read_buffer, user);
|
|
/* Verify that write to flash was successful */
|
|
TEST_ASSERT_ARRAY_EQ(write_buffer, read_buffer, num_bytes);
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
int nvmem_second_task(void *unused)
|
|
{
|
|
uint32_t offset = WRITE_SEGMENT_LEN;
|
|
uint32_t num_bytes = WRITE_SEGMENT_LEN;
|
|
int user = NVMEM_USER_0;
|
|
|
|
task_wait_event(0);
|
|
|
|
/* Gen test data and don't overwite test data generated by 1st task */
|
|
generate_random_data(offset, num_bytes);
|
|
/* Write test data at offset 0 nvmem user buffer */
|
|
nvmem_write(0, num_bytes, &write_buffer[offset], user);
|
|
/* Write to flash */
|
|
nvmem_commit();
|
|
/* Read from nvmem */
|
|
nvmem_read(0, num_bytes, read_buffer, user);
|
|
/* Verify that write to nvmem was successful */
|
|
TEST_ASSERT_ARRAY_EQ(&write_buffer[offset], read_buffer, num_bytes);
|
|
/* Clear flag to indicate lock test is complete */
|
|
lock_test_started = 0;
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static int test_lock(void)
|
|
{
|
|
/*
|
|
* This purpose of this test is to verify the mutex lock portion of the
|
|
* nvmem module. There are two additional tasks utilized. The first task
|
|
* is woken and it creates some test data and does an
|
|
* nvmem_write(). This will cause the mutex to be locked by the 1st
|
|
* task. The 1st task then waits and control is returned to this
|
|
* function and the 2nd task is woken, the 2nd task also attempts to
|
|
* write data to nvmem. The 2nd task should stall waiting for the mutex
|
|
* to be unlocked.
|
|
*
|
|
* When control returns to this function, the 1st task is woken again
|
|
* and the nvmem operation is completed. This will allow the 2nd task to
|
|
* grab the lock and finish its nvmem operation. The test will not
|
|
* complete until the 2nd task finishes the nvmem write. A static global
|
|
* flag is used to let this function know when the 2nd task is complete.
|
|
*
|
|
* Both tasks write to the same location in nvmem so the test will only
|
|
* pass if the 2nd task can't write until the nvmem write in the 1st
|
|
* task is completed.
|
|
*/
|
|
|
|
/* Set flag for start of test */
|
|
lock_test_started = 1;
|
|
/* Wake first_task */
|
|
task_wake(TASK_ID_NV_1);
|
|
task_wait_event(1000);
|
|
/* Wake second_task. It should stall waiting for mutex */
|
|
task_wake(TASK_ID_NV_2);
|
|
task_wait_event(1000);
|
|
/* Go back to first_task so it can complete its nvmem operation */
|
|
task_wake(TASK_ID_NV_1);
|
|
/* Wait for 2nd task to complete nvmem operation */
|
|
while (lock_test_started)
|
|
task_wait_event(100);
|
|
|
|
return EC_SUCCESS;
|
|
}
|
|
|
|
static void run_test_setup(void)
|
|
{
|
|
/* Allow Flash erase/writes */
|
|
flash_write_fail = 0;
|
|
test_reset();
|
|
}
|
|
|
|
void run_test(void)
|
|
{
|
|
run_test_setup();
|
|
/* Test NvMem Initialization function */
|
|
RUN_TEST(test_corrupt_nvmem);
|
|
RUN_TEST(test_fully_erased_nvmem);
|
|
RUN_TEST(test_configured_nvmem);
|
|
/* Test Read/Write/Commit functions */
|
|
RUN_TEST(test_write_read_sequence);
|
|
RUN_TEST(test_write_full_multi);
|
|
/* Test flash erase/write fail case */
|
|
RUN_TEST(test_write_fail);
|
|
/* Test shared_mem not available case */
|
|
RUN_TEST(test_cache_not_available);
|
|
/* Test buffer overflow logic */
|
|
RUN_TEST(test_buffer_overflow);
|
|
/* Test NvMem Move function */
|
|
RUN_TEST(test_move);
|
|
/* Test NvMem IsDifferent function */
|
|
RUN_TEST(test_is_different);
|
|
/* Test Nvmem write lock */
|
|
RUN_TEST(test_lock);
|
|
test_print_result();
|
|
}
|