2016-11-01 19:41:58 -04:00
|
|
|
// Copyright 2015-2016 Espressif Systems (Shanghai) PTE LTD
|
|
|
|
|
//
|
|
|
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
// you may not use this file except in compliance with the License.
|
|
|
|
|
// You may obtain a copy of the License at
|
|
|
|
|
|
|
|
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
//
|
|
|
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
// See the License for the specific language governing permissions and
|
|
|
|
|
// limitations under the License.
|
|
|
|
|
#include <stddef.h>
|
|
|
|
|
|
2020-07-12 15:23:12 -04:00
|
|
|
#include <bootloader_flash_priv.h>
|
2016-11-01 19:41:58 -04:00
|
|
|
#include <esp_log.h>
|
2017-01-26 02:30:32 -05:00
|
|
|
#include <esp_flash_encrypt.h>
|
bootloader: fix the WRSR format for ISSI flash chips
1. The 2nd bootloader always call `rom_spiflash_unlock()`, but never help to clear the WEL bit when exit. This may cause system unstability.
This commit helps to clear WEL when flash configuration is done.
**RISK:** When the app starts, it didn't have to clear the WEL before it actually write/erase. But now the very first write/erase operation should be done after a WEL clear. Though the risk is little (all the following write/erase also need to clear the WEL), we still have to test this carefully, especially for those functions used by the OTA.
2. The `rom_spiflash_unlock()` function in the patch of ESP32 may (1) trigger the QPI, (2) clear the QE or (3) fail to unlock the ISSI chips.
Status register bitmap of ISSI chip and GD chip:
| SR | ISSI | GD25LQ32C |
| -- | ---- | --------- |
| 0 | WIP | WIP |
| 1 | WEL | WEL |
| 2 | BP0 | BP0 |
| 3 | BP1 | BP1 |
| 4 | BP2 | BP2 |
| 5 | BP3 | BP3 |
| 6 | QE | BP4 |
| 7 | SRWD | SRP0 |
| 8 | | SRP1 |
| 9 | | QE |
| 10 | | SUS2 |
| 11 | | LB1 |
| 12 | | LB2 |
| 13 | | LB3 |
| 14 | | CMP |
| 15 | | SUS1 |
QE bit of other chips are at the bit 9 of the status register (i.e. bit 1 of SR2), which should be read by RDSR2 command.
However, the RDSR2 (35H, Read Status 2) command for chip of other vendors happens to be the QIOEN (Enter QPI mode) command of ISSI chips. When the `rom_spiflash_unlock()` function trys to read SR2, it may trigger the QPI of ISSI chips.
Moreover, when `rom_spiflash_unlock()` try to clear the BP4 bit in the status register, QE (bit 6) of ISSI chip may be cleared by accident. Or if the ISSI chip doesn't accept WRSR command with argument of two bytes (since it only have status register of one byte), it may fail to clear the other protect bits (BP0~BP3) as expected.
This commit makes the `rom_spiflash_unlock()` check whether the vendor is issi. if so, `rom_spiflash_unlock()` only send RDSR to read the status register, send WRSR with only 1 byte argument, and also avoid clearing the QE bit (bit 6).
3. `rom_spiflash_unlock()` always send WRSR command to clear protection bits even when there is no protection bit active. And the execution of clearing status registers, which takes about 700us, will also happen even when there's no bits cleared.
This commit skips the clearing of status register if there is no protection bits active.
Also move the execute_flash_command to be a bootloader API; move
implementation of spi_flash_wrap_set to the bootloader
2020-03-12 06:20:31 -04:00
|
|
|
#include "sdkconfig.h"
|
|
|
|
|
#include "soc/soc_caps.h"
|
|
|
|
|
|
|
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
|
|
|
|
# include "soc/spi_struct.h"
|
|
|
|
|
# include "soc/spi_reg.h"
|
|
|
|
|
/* SPI flash controller */
|
|
|
|
|
# define SPIFLASH SPI1
|
|
|
|
|
#else
|
|
|
|
|
# include "soc/spi_mem_struct.h"
|
|
|
|
|
# include "soc/spi_mem_reg.h"
|
|
|
|
|
/* SPI flash controller */
|
|
|
|
|
# define SPIFLASH SPIMEM1
|
|
|
|
|
#endif
|
|
|
|
|
|
2020-01-16 22:47:08 -05:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32S2
|
2020-07-29 10:03:46 -04:00
|
|
|
#include "esp32s2/rom/spi_flash.h"
|
|
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
#include "esp32s3/rom/spi_flash.h"
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
#include "esp32c3/rom/spi_flash.h"
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-01 19:41:58 -04:00
|
|
|
|
bootloader: fix the WRSR format for ISSI flash chips
1. The 2nd bootloader always call `rom_spiflash_unlock()`, but never help to clear the WEL bit when exit. This may cause system unstability.
This commit helps to clear WEL when flash configuration is done.
**RISK:** When the app starts, it didn't have to clear the WEL before it actually write/erase. But now the very first write/erase operation should be done after a WEL clear. Though the risk is little (all the following write/erase also need to clear the WEL), we still have to test this carefully, especially for those functions used by the OTA.
2. The `rom_spiflash_unlock()` function in the patch of ESP32 may (1) trigger the QPI, (2) clear the QE or (3) fail to unlock the ISSI chips.
Status register bitmap of ISSI chip and GD chip:
| SR | ISSI | GD25LQ32C |
| -- | ---- | --------- |
| 0 | WIP | WIP |
| 1 | WEL | WEL |
| 2 | BP0 | BP0 |
| 3 | BP1 | BP1 |
| 4 | BP2 | BP2 |
| 5 | BP3 | BP3 |
| 6 | QE | BP4 |
| 7 | SRWD | SRP0 |
| 8 | | SRP1 |
| 9 | | QE |
| 10 | | SUS2 |
| 11 | | LB1 |
| 12 | | LB2 |
| 13 | | LB3 |
| 14 | | CMP |
| 15 | | SUS1 |
QE bit of other chips are at the bit 9 of the status register (i.e. bit 1 of SR2), which should be read by RDSR2 command.
However, the RDSR2 (35H, Read Status 2) command for chip of other vendors happens to be the QIOEN (Enter QPI mode) command of ISSI chips. When the `rom_spiflash_unlock()` function trys to read SR2, it may trigger the QPI of ISSI chips.
Moreover, when `rom_spiflash_unlock()` try to clear the BP4 bit in the status register, QE (bit 6) of ISSI chip may be cleared by accident. Or if the ISSI chip doesn't accept WRSR command with argument of two bytes (since it only have status register of one byte), it may fail to clear the other protect bits (BP0~BP3) as expected.
This commit makes the `rom_spiflash_unlock()` check whether the vendor is issi. if so, `rom_spiflash_unlock()` only send RDSR to read the status register, send WRSR with only 1 byte argument, and also avoid clearing the QE bit (bit 6).
3. `rom_spiflash_unlock()` always send WRSR command to clear protection bits even when there is no protection bit active. And the execution of clearing status registers, which takes about 700us, will also happen even when there's no bits cleared.
This commit skips the clearing of status register if there is no protection bits active.
Also move the execute_flash_command to be a bootloader API; move
implementation of spi_flash_wrap_set to the bootloader
2020-03-12 06:20:31 -04:00
|
|
|
|
2016-11-01 19:41:58 -04:00
|
|
|
#ifndef BOOTLOADER_BUILD
|
|
|
|
|
/* Normal app version maps to esp_spi_flash.h operations...
|
|
|
|
|
*/
|
|
|
|
|
static const char *TAG = "bootloader_mmap";
|
|
|
|
|
|
2018-03-15 07:58:02 -04:00
|
|
|
static spi_flash_mmap_handle_t map;
|
2016-11-01 19:41:58 -04:00
|
|
|
|
2019-07-16 05:33:30 -04:00
|
|
|
uint32_t bootloader_mmap_get_free_pages(void)
|
2019-06-15 05:43:51 -04:00
|
|
|
{
|
|
|
|
|
return spi_flash_mmap_get_free_pages(SPI_FLASH_MMAP_DATA);
|
|
|
|
|
}
|
|
|
|
|
|
2016-11-01 19:41:58 -04:00
|
|
|
const void *bootloader_mmap(uint32_t src_addr, uint32_t size)
|
|
|
|
|
{
|
|
|
|
|
if (map) {
|
|
|
|
|
ESP_LOGE(TAG, "tried to bootloader_mmap twice");
|
|
|
|
|
return NULL; /* existing mapping in use... */
|
|
|
|
|
}
|
|
|
|
|
const void *result = NULL;
|
2019-05-27 02:29:43 -04:00
|
|
|
uint32_t src_page = src_addr & ~(SPI_FLASH_MMU_PAGE_SIZE - 1);
|
2017-06-27 03:25:30 -04:00
|
|
|
size += (src_addr - src_page);
|
|
|
|
|
esp_err_t err = spi_flash_mmap(src_page, size, SPI_FLASH_MMAP_DATA, &result, &map);
|
2016-11-01 19:41:58 -04:00
|
|
|
if (err != ESP_OK) {
|
2018-03-15 07:58:02 -04:00
|
|
|
ESP_LOGE(TAG, "spi_flash_mmap failed: 0x%x", err);
|
|
|
|
|
return NULL;
|
2016-11-01 19:41:58 -04:00
|
|
|
}
|
2017-06-27 03:25:30 -04:00
|
|
|
return (void *)((intptr_t)result + (src_addr - src_page));
|
2016-11-01 19:41:58 -04:00
|
|
|
}
|
|
|
|
|
|
2016-11-06 23:45:57 -05:00
|
|
|
void bootloader_munmap(const void *mapping)
|
2016-11-01 19:41:58 -04:00
|
|
|
{
|
2019-05-27 02:29:43 -04:00
|
|
|
if (mapping && map) {
|
2016-11-01 19:41:58 -04:00
|
|
|
spi_flash_munmap(map);
|
|
|
|
|
}
|
|
|
|
|
map = 0;
|
|
|
|
|
}
|
|
|
|
|
|
2016-11-11 01:00:34 -05:00
|
|
|
esp_err_t bootloader_flash_read(size_t src, void *dest, size_t size, bool allow_decrypt)
|
2016-11-01 19:41:58 -04:00
|
|
|
{
|
2017-01-26 02:30:32 -05:00
|
|
|
if (allow_decrypt && esp_flash_encryption_enabled()) {
|
|
|
|
|
return spi_flash_read_encrypted(src, dest, size);
|
|
|
|
|
} else {
|
|
|
|
|
return spi_flash_read(src, dest, size);
|
|
|
|
|
}
|
2016-11-01 19:41:58 -04:00
|
|
|
}
|
|
|
|
|
|
2016-11-11 01:00:34 -05:00
|
|
|
esp_err_t bootloader_flash_write(size_t dest_addr, void *src, size_t size, bool write_encrypted)
|
|
|
|
|
{
|
|
|
|
|
if (write_encrypted) {
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-11 01:00:34 -05:00
|
|
|
return spi_flash_write_encrypted(dest_addr, src, size);
|
2020-11-26 03:56:13 -05:00
|
|
|
#else
|
|
|
|
|
return esp_rom_spiflash_write_encrypted(dest_addr, src, size);
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-11 01:00:34 -05:00
|
|
|
} else {
|
|
|
|
|
return spi_flash_write(dest_addr, src, size);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
esp_err_t bootloader_flash_erase_sector(size_t sector)
|
|
|
|
|
{
|
|
|
|
|
return spi_flash_erase_sector(sector);
|
|
|
|
|
}
|
|
|
|
|
|
2018-08-24 08:28:04 -04:00
|
|
|
esp_err_t bootloader_flash_erase_range(uint32_t start_addr, uint32_t size)
|
|
|
|
|
{
|
|
|
|
|
return spi_flash_erase_range(start_addr, size);
|
|
|
|
|
}
|
|
|
|
|
|
2016-11-01 19:41:58 -04:00
|
|
|
#else
|
|
|
|
|
/* Bootloader version, uses ROM functions only */
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2019-12-26 02:25:24 -05:00
|
|
|
#include "esp32/rom/spi_flash.h"
|
|
|
|
|
#include "esp32/rom/cache.h"
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
|
|
|
|
#include "esp32s2/rom/spi_flash.h"
|
|
|
|
|
#include "esp32s2/rom/cache.h"
|
2019-12-26 02:25:24 -05:00
|
|
|
#include "soc/cache_memory.h"
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
#include "esp32s3/rom/spi_flash.h"
|
|
|
|
|
#include "esp32s3/rom/cache.h"
|
|
|
|
|
#include "soc/cache_memory.h"
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
#include "esp32c3/rom/spi_flash.h"
|
|
|
|
|
#include "esp32c3/rom/cache.h"
|
|
|
|
|
#include "soc/cache_memory.h"
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-01 19:41:58 -04:00
|
|
|
static const char *TAG = "bootloader_flash";
|
|
|
|
|
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-11 01:00:34 -05:00
|
|
|
/* Use first 50 blocks in MMU for bootloader_mmap,
|
|
|
|
|
50th block for bootloader_flash_read
|
|
|
|
|
*/
|
2019-05-27 02:29:43 -04:00
|
|
|
#define MMU_BLOCK0_VADDR SOC_DROM_LOW
|
|
|
|
|
#define MMU_SIZE (0x320000)
|
|
|
|
|
#define MMU_BLOCK50_VADDR (MMU_BLOCK0_VADDR + MMU_SIZE)
|
2019-08-07 23:44:24 -04:00
|
|
|
#define FLASH_READ_VADDR MMU_BLOCK50_VADDR
|
2020-11-26 03:56:13 -05:00
|
|
|
|
|
|
|
|
#else // !CONFIG_IDF_TARGET_ESP32
|
|
|
|
|
|
2019-05-27 02:29:43 -04:00
|
|
|
/* Use first 63 blocks in MMU for bootloader_mmap,
|
|
|
|
|
63th block for bootloader_flash_read
|
|
|
|
|
*/
|
|
|
|
|
#define MMU_BLOCK0_VADDR SOC_DROM_LOW
|
|
|
|
|
#define MMU_SIZE (0x3f0000)
|
|
|
|
|
#define MMU_BLOCK63_VADDR (MMU_BLOCK0_VADDR + MMU_SIZE)
|
2019-08-07 23:44:24 -04:00
|
|
|
#define FLASH_READ_VADDR MMU_BLOCK63_VADDR
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-11 01:00:34 -05:00
|
|
|
|
2019-08-07 23:44:24 -04:00
|
|
|
#define MMU_FREE_PAGES (MMU_SIZE / FLASH_BLOCK_SIZE)
|
2019-12-26 02:25:24 -05:00
|
|
|
|
2016-11-01 19:41:58 -04:00
|
|
|
static bool mapped;
|
|
|
|
|
|
2017-06-16 02:30:21 -04:00
|
|
|
// Current bootloader mapping (ab)used for bootloader_read()
|
2016-11-11 01:00:34 -05:00
|
|
|
static uint32_t current_read_mapping = UINT32_MAX;
|
|
|
|
|
|
2019-07-16 05:33:30 -04:00
|
|
|
uint32_t bootloader_mmap_get_free_pages(void)
|
2019-06-15 05:43:51 -04:00
|
|
|
{
|
|
|
|
|
/**
|
|
|
|
|
* Allow mapping up to 50 of the 51 available MMU blocks (last one used for reads)
|
|
|
|
|
* Since, bootloader_mmap function below assumes it to be 0x320000 (50 pages), we can safely do this.
|
|
|
|
|
*/
|
|
|
|
|
return MMU_FREE_PAGES;
|
|
|
|
|
}
|
|
|
|
|
|
2016-11-01 19:41:58 -04:00
|
|
|
const void *bootloader_mmap(uint32_t src_addr, uint32_t size)
|
|
|
|
|
{
|
|
|
|
|
if (mapped) {
|
|
|
|
|
ESP_LOGE(TAG, "tried to bootloader_mmap twice");
|
|
|
|
|
return NULL; /* can't map twice */
|
|
|
|
|
}
|
2019-05-27 02:29:43 -04:00
|
|
|
if (size > MMU_SIZE) {
|
2016-11-11 01:00:34 -05:00
|
|
|
ESP_LOGE(TAG, "bootloader_mmap excess size %x", size);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2016-11-01 19:41:58 -04:00
|
|
|
|
2016-11-11 01:00:34 -05:00
|
|
|
uint32_t src_addr_aligned = src_addr & MMU_FLASH_MASK;
|
2018-09-03 06:15:20 -04:00
|
|
|
uint32_t count = bootloader_cache_pages_to_map(size, src_addr);
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-01 19:41:58 -04:00
|
|
|
Cache_Read_Disable(0);
|
|
|
|
|
Cache_Flush(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
uint32_t autoload = Cache_Suspend_ICache();
|
|
|
|
|
Cache_Invalidate_ICache_All();
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
uint32_t autoload = Cache_Suspend_DCache();
|
|
|
|
|
Cache_Invalidate_DCache_All();
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
uint32_t autoload = Cache_Suspend_ICache();
|
|
|
|
|
Cache_Invalidate_ICache_All();
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2018-09-03 06:15:20 -04:00
|
|
|
ESP_LOGD(TAG, "mmu set paddr=%08x count=%d size=%x src_addr=%x src_addr_aligned=%x",
|
2019-05-27 02:29:43 -04:00
|
|
|
src_addr & MMU_FLASH_MASK, count, size, src_addr, src_addr_aligned );
|
|
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2017-04-05 05:26:37 -04:00
|
|
|
int e = cache_flash_mmu_set(0, 0, MMU_BLOCK0_VADDR, src_addr_aligned, 64, count);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-12-26 02:25:24 -05:00
|
|
|
int e = Cache_Ibus_MMU_Set(MMU_ACCESS_FLASH, MMU_BLOCK0_VADDR, src_addr_aligned, 64, count, 0);
|
2020-11-26 03:56:13 -05:00
|
|
|
#else // S3, C3
|
2020-07-29 10:03:46 -04:00
|
|
|
int e = Cache_Dbus_MMU_Set(MMU_ACCESS_FLASH, MMU_BLOCK0_VADDR, src_addr_aligned, 64, count, 0);
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2017-04-05 05:26:37 -04:00
|
|
|
if (e != 0) {
|
|
|
|
|
ESP_LOGE(TAG, "cache_flash_mmu_set failed: %d\n", e);
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2017-04-05 05:26:37 -04:00
|
|
|
Cache_Read_Enable(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
Cache_Resume_ICache(autoload);
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
Cache_Resume_DCache(autoload);
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
Cache_Resume_ICache(autoload);
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2017-04-05 05:26:37 -04:00
|
|
|
return NULL;
|
|
|
|
|
}
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2017-04-05 05:26:37 -04:00
|
|
|
Cache_Read_Enable(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
Cache_Resume_ICache(autoload);
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
Cache_Resume_DCache(autoload);
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
Cache_Resume_ICache(autoload);
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-01 19:41:58 -04:00
|
|
|
|
|
|
|
|
mapped = true;
|
|
|
|
|
|
2016-11-11 01:00:34 -05:00
|
|
|
return (void *)(MMU_BLOCK0_VADDR + (src_addr - src_addr_aligned));
|
2016-11-01 19:41:58 -04:00
|
|
|
}
|
|
|
|
|
|
2016-11-06 23:45:57 -05:00
|
|
|
void bootloader_munmap(const void *mapping)
|
2016-11-01 19:41:58 -04:00
|
|
|
{
|
|
|
|
|
if (mapped) {
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-01 19:41:58 -04:00
|
|
|
/* Full MMU reset */
|
|
|
|
|
Cache_Read_Disable(0);
|
|
|
|
|
Cache_Flush(0);
|
|
|
|
|
mmu_init(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
//TODO, save the autoload value.
|
|
|
|
|
Cache_Suspend_ICache();
|
|
|
|
|
Cache_Invalidate_ICache_All();
|
|
|
|
|
Cache_MMU_Init();
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
Cache_Suspend_DCache();
|
|
|
|
|
Cache_Invalidate_DCache_All();
|
|
|
|
|
Cache_MMU_Init();
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
//TODO, save the autoload value.
|
|
|
|
|
Cache_Suspend_ICache();
|
|
|
|
|
Cache_Invalidate_ICache_All();
|
|
|
|
|
Cache_MMU_Init();
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-01 19:41:58 -04:00
|
|
|
mapped = false;
|
2016-11-11 01:00:34 -05:00
|
|
|
current_read_mapping = UINT32_MAX;
|
2016-11-01 19:41:58 -04:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-03-09 02:29:00 -05:00
|
|
|
static esp_err_t spi_to_esp_err(esp_rom_spiflash_result_t r)
|
2016-11-01 19:41:58 -04:00
|
|
|
{
|
2019-05-27 02:29:43 -04:00
|
|
|
switch (r) {
|
2017-03-09 02:29:00 -05:00
|
|
|
case ESP_ROM_SPIFLASH_RESULT_OK:
|
2016-11-01 19:41:58 -04:00
|
|
|
return ESP_OK;
|
2017-03-09 02:29:00 -05:00
|
|
|
case ESP_ROM_SPIFLASH_RESULT_ERR:
|
2016-11-01 19:41:58 -04:00
|
|
|
return ESP_ERR_FLASH_OP_FAIL;
|
2017-03-09 02:29:00 -05:00
|
|
|
case ESP_ROM_SPIFLASH_RESULT_TIMEOUT:
|
2016-11-01 19:41:58 -04:00
|
|
|
return ESP_ERR_FLASH_OP_TIMEOUT;
|
|
|
|
|
default:
|
|
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-11-11 01:00:34 -05:00
|
|
|
static esp_err_t bootloader_flash_read_no_decrypt(size_t src_addr, void *dest, size_t size)
|
|
|
|
|
{
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-11 01:00:34 -05:00
|
|
|
Cache_Read_Disable(0);
|
|
|
|
|
Cache_Flush(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
uint32_t autoload = Cache_Suspend_ICache();
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
uint32_t autoload = Cache_Suspend_DCache();
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
uint32_t autoload = Cache_Suspend_ICache();
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2017-03-09 02:29:00 -05:00
|
|
|
esp_rom_spiflash_result_t r = esp_rom_spiflash_read(src_addr, dest, size);
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-11 01:00:34 -05:00
|
|
|
Cache_Read_Enable(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
Cache_Resume_ICache(autoload);
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
Cache_Resume_DCache(autoload);
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
Cache_Resume_ICache(autoload);
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-11 01:00:34 -05:00
|
|
|
|
|
|
|
|
return spi_to_esp_err(r);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static esp_err_t bootloader_flash_read_allow_decrypt(size_t src_addr, void *dest, size_t size)
|
|
|
|
|
{
|
|
|
|
|
uint32_t *dest_words = (uint32_t *)dest;
|
|
|
|
|
|
|
|
|
|
for (int word = 0; word < size / 4; word++) {
|
|
|
|
|
uint32_t word_src = src_addr + word * 4; /* Read this offset from flash */
|
|
|
|
|
uint32_t map_at = word_src & MMU_FLASH_MASK; /* Map this 64KB block from flash */
|
|
|
|
|
uint32_t *map_ptr;
|
|
|
|
|
if (map_at != current_read_mapping) {
|
|
|
|
|
/* Move the 64KB mmu mapping window to fit map_at */
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-11 01:00:34 -05:00
|
|
|
Cache_Read_Disable(0);
|
|
|
|
|
Cache_Flush(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
uint32_t autoload = Cache_Suspend_ICache();
|
|
|
|
|
Cache_Invalidate_ICache_All();
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
uint32_t autoload = Cache_Suspend_DCache();
|
|
|
|
|
Cache_Invalidate_DCache_All();
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
uint32_t autoload = Cache_Suspend_ICache();
|
|
|
|
|
Cache_Invalidate_ICache_All();
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-11 01:00:34 -05:00
|
|
|
ESP_LOGD(TAG, "mmu set block paddr=0x%08x (was 0x%08x)", map_at, current_read_mapping);
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2019-08-07 23:44:24 -04:00
|
|
|
int e = cache_flash_mmu_set(0, 0, FLASH_READ_VADDR, map_at, 64, 1);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-12-26 02:25:24 -05:00
|
|
|
int e = Cache_Ibus_MMU_Set(MMU_ACCESS_FLASH, MMU_BLOCK63_VADDR, map_at, 64, 1, 0);
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
int e = Cache_Dbus_MMU_Set(MMU_ACCESS_FLASH, MMU_BLOCK63_VADDR, map_at, 64, 1, 0);
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
int e = Cache_Dbus_MMU_Set(MMU_ACCESS_FLASH, MMU_BLOCK63_VADDR, map_at, 64, 1, 0);
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-11 01:00:34 -05:00
|
|
|
if (e != 0) {
|
|
|
|
|
ESP_LOGE(TAG, "cache_flash_mmu_set failed: %d\n", e);
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-11 01:00:34 -05:00
|
|
|
Cache_Read_Enable(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
Cache_Resume_ICache(autoload);
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
Cache_Resume_DCache(autoload);
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
Cache_Resume_ICache(autoload);
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-11 01:00:34 -05:00
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
current_read_mapping = map_at;
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2016-11-11 01:00:34 -05:00
|
|
|
Cache_Read_Enable(0);
|
2020-01-16 22:47:08 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2
|
2019-05-27 02:29:43 -04:00
|
|
|
Cache_Resume_ICache(autoload);
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
Cache_Resume_DCache(autoload);
|
2020-11-26 03:56:13 -05:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32C3
|
|
|
|
|
Cache_Resume_ICache(autoload);
|
2019-05-27 02:29:43 -04:00
|
|
|
#endif
|
2016-11-11 01:00:34 -05:00
|
|
|
}
|
2019-08-07 23:44:24 -04:00
|
|
|
map_ptr = (uint32_t *)(FLASH_READ_VADDR + (word_src - map_at));
|
2016-11-11 01:00:34 -05:00
|
|
|
dest_words[word] = *map_ptr;
|
|
|
|
|
}
|
|
|
|
|
return ESP_OK;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
esp_err_t bootloader_flash_read(size_t src_addr, void *dest, size_t size, bool allow_decrypt)
|
|
|
|
|
{
|
|
|
|
|
if (src_addr & 3) {
|
|
|
|
|
ESP_LOGE(TAG, "bootloader_flash_read src_addr 0x%x not 4-byte aligned", src_addr);
|
|
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
if (size & 3) {
|
|
|
|
|
ESP_LOGE(TAG, "bootloader_flash_read size 0x%x not 4-byte aligned", size);
|
|
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
if ((intptr_t)dest & 3) {
|
|
|
|
|
ESP_LOGE(TAG, "bootloader_flash_read dest 0x%x not 4-byte aligned", (intptr_t)dest);
|
|
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (allow_decrypt) {
|
|
|
|
|
return bootloader_flash_read_allow_decrypt(src_addr, dest, size);
|
|
|
|
|
} else {
|
|
|
|
|
return bootloader_flash_read_no_decrypt(src_addr, dest, size);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
esp_err_t bootloader_flash_write(size_t dest_addr, void *src, size_t size, bool write_encrypted)
|
|
|
|
|
{
|
|
|
|
|
esp_err_t err;
|
|
|
|
|
size_t alignment = write_encrypted ? 32 : 4;
|
|
|
|
|
if ((dest_addr % alignment) != 0) {
|
|
|
|
|
ESP_LOGE(TAG, "bootloader_flash_write dest_addr 0x%x not %d-byte aligned", dest_addr, alignment);
|
|
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
if ((size % alignment) != 0) {
|
|
|
|
|
ESP_LOGE(TAG, "bootloader_flash_write size 0x%x not %d-byte aligned", size, alignment);
|
|
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
if (((intptr_t)src % 4) != 0) {
|
|
|
|
|
ESP_LOGE(TAG, "bootloader_flash_write src 0x%x not 4 byte aligned", (intptr_t)src);
|
|
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
|
2017-03-09 02:29:00 -05:00
|
|
|
err = spi_to_esp_err(esp_rom_spiflash_unlock());
|
2016-11-11 01:00:34 -05:00
|
|
|
if (err != ESP_OK) {
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (write_encrypted) {
|
2019-05-27 02:29:43 -04:00
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
2017-03-09 02:29:00 -05:00
|
|
|
return spi_to_esp_err(esp_rom_spiflash_write_encrypted(dest_addr, src, size));
|
2020-07-29 10:03:46 -04:00
|
|
|
#elif CONFIG_IDF_TARGET_ESP32S2 || CONFIG_IDF_TARGET_ESP32S3
|
|
|
|
|
// TODO: use the same ROM API here
|
2019-05-27 02:29:43 -04:00
|
|
|
return spi_to_esp_err(SPI_Encrypt_Write(dest_addr, src, size));
|
|
|
|
|
#endif
|
2016-11-11 01:00:34 -05:00
|
|
|
} else {
|
2017-03-09 02:29:00 -05:00
|
|
|
return spi_to_esp_err(esp_rom_spiflash_write(dest_addr, src, size));
|
2016-11-11 01:00:34 -05:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
esp_err_t bootloader_flash_erase_sector(size_t sector)
|
|
|
|
|
{
|
2017-03-09 02:29:00 -05:00
|
|
|
return spi_to_esp_err(esp_rom_spiflash_erase_sector(sector));
|
2016-11-11 01:00:34 -05:00
|
|
|
}
|
|
|
|
|
|
2018-08-24 08:28:04 -04:00
|
|
|
esp_err_t bootloader_flash_erase_range(uint32_t start_addr, uint32_t size)
|
|
|
|
|
{
|
|
|
|
|
if (start_addr % FLASH_SECTOR_SIZE != 0) {
|
|
|
|
|
return ESP_ERR_INVALID_ARG;
|
|
|
|
|
}
|
|
|
|
|
if (size % FLASH_SECTOR_SIZE != 0) {
|
|
|
|
|
return ESP_ERR_INVALID_SIZE;
|
|
|
|
|
}
|
|
|
|
|
size_t start = start_addr / FLASH_SECTOR_SIZE;
|
|
|
|
|
size_t end = start + size / FLASH_SECTOR_SIZE;
|
|
|
|
|
const size_t sectors_per_block = FLASH_BLOCK_SIZE / FLASH_SECTOR_SIZE;
|
|
|
|
|
|
|
|
|
|
esp_rom_spiflash_result_t rc = ESP_ROM_SPIFLASH_RESULT_OK;
|
|
|
|
|
for (size_t sector = start; sector != end && rc == ESP_ROM_SPIFLASH_RESULT_OK; ) {
|
|
|
|
|
if (sector % sectors_per_block == 0 && end - sector >= sectors_per_block) {
|
|
|
|
|
rc = esp_rom_spiflash_erase_block(sector / sectors_per_block);
|
|
|
|
|
sector += sectors_per_block;
|
|
|
|
|
} else {
|
|
|
|
|
rc = esp_rom_spiflash_erase_sector(sector);
|
|
|
|
|
++sector;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return spi_to_esp_err(rc);
|
|
|
|
|
}
|
bootloader: fix the WRSR format for ISSI flash chips
1. The 2nd bootloader always call `rom_spiflash_unlock()`, but never help to clear the WEL bit when exit. This may cause system unstability.
This commit helps to clear WEL when flash configuration is done.
**RISK:** When the app starts, it didn't have to clear the WEL before it actually write/erase. But now the very first write/erase operation should be done after a WEL clear. Though the risk is little (all the following write/erase also need to clear the WEL), we still have to test this carefully, especially for those functions used by the OTA.
2. The `rom_spiflash_unlock()` function in the patch of ESP32 may (1) trigger the QPI, (2) clear the QE or (3) fail to unlock the ISSI chips.
Status register bitmap of ISSI chip and GD chip:
| SR | ISSI | GD25LQ32C |
| -- | ---- | --------- |
| 0 | WIP | WIP |
| 1 | WEL | WEL |
| 2 | BP0 | BP0 |
| 3 | BP1 | BP1 |
| 4 | BP2 | BP2 |
| 5 | BP3 | BP3 |
| 6 | QE | BP4 |
| 7 | SRWD | SRP0 |
| 8 | | SRP1 |
| 9 | | QE |
| 10 | | SUS2 |
| 11 | | LB1 |
| 12 | | LB2 |
| 13 | | LB3 |
| 14 | | CMP |
| 15 | | SUS1 |
QE bit of other chips are at the bit 9 of the status register (i.e. bit 1 of SR2), which should be read by RDSR2 command.
However, the RDSR2 (35H, Read Status 2) command for chip of other vendors happens to be the QIOEN (Enter QPI mode) command of ISSI chips. When the `rom_spiflash_unlock()` function trys to read SR2, it may trigger the QPI of ISSI chips.
Moreover, when `rom_spiflash_unlock()` try to clear the BP4 bit in the status register, QE (bit 6) of ISSI chip may be cleared by accident. Or if the ISSI chip doesn't accept WRSR command with argument of two bytes (since it only have status register of one byte), it may fail to clear the other protect bits (BP0~BP3) as expected.
This commit makes the `rom_spiflash_unlock()` check whether the vendor is issi. if so, `rom_spiflash_unlock()` only send RDSR to read the status register, send WRSR with only 1 byte argument, and also avoid clearing the QE bit (bit 6).
3. `rom_spiflash_unlock()` always send WRSR command to clear protection bits even when there is no protection bit active. And the execution of clearing status registers, which takes about 700us, will also happen even when there's no bits cleared.
This commit skips the clearing of status register if there is no protection bits active.
Also move the execute_flash_command to be a bootloader API; move
implementation of spi_flash_wrap_set to the bootloader
2020-03-12 06:20:31 -04:00
|
|
|
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
extern uint8_t g_rom_spiflash_dummy_len_plus[];
|
|
|
|
|
uint32_t bootloader_execute_flash_command(uint8_t command, uint32_t mosi_data, uint8_t mosi_len, uint8_t miso_len)
|
|
|
|
|
{
|
|
|
|
|
uint32_t old_ctrl_reg = SPIFLASH.ctrl.val;
|
|
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
|
|
|
|
SPIFLASH.ctrl.val = SPI_WP_REG_M; // keep WP high while idle, otherwise leave DIO mode
|
2020-11-26 03:56:13 -05:00
|
|
|
#else
|
bootloader: fix the WRSR format for ISSI flash chips
1. The 2nd bootloader always call `rom_spiflash_unlock()`, but never help to clear the WEL bit when exit. This may cause system unstability.
This commit helps to clear WEL when flash configuration is done.
**RISK:** When the app starts, it didn't have to clear the WEL before it actually write/erase. But now the very first write/erase operation should be done after a WEL clear. Though the risk is little (all the following write/erase also need to clear the WEL), we still have to test this carefully, especially for those functions used by the OTA.
2. The `rom_spiflash_unlock()` function in the patch of ESP32 may (1) trigger the QPI, (2) clear the QE or (3) fail to unlock the ISSI chips.
Status register bitmap of ISSI chip and GD chip:
| SR | ISSI | GD25LQ32C |
| -- | ---- | --------- |
| 0 | WIP | WIP |
| 1 | WEL | WEL |
| 2 | BP0 | BP0 |
| 3 | BP1 | BP1 |
| 4 | BP2 | BP2 |
| 5 | BP3 | BP3 |
| 6 | QE | BP4 |
| 7 | SRWD | SRP0 |
| 8 | | SRP1 |
| 9 | | QE |
| 10 | | SUS2 |
| 11 | | LB1 |
| 12 | | LB2 |
| 13 | | LB3 |
| 14 | | CMP |
| 15 | | SUS1 |
QE bit of other chips are at the bit 9 of the status register (i.e. bit 1 of SR2), which should be read by RDSR2 command.
However, the RDSR2 (35H, Read Status 2) command for chip of other vendors happens to be the QIOEN (Enter QPI mode) command of ISSI chips. When the `rom_spiflash_unlock()` function trys to read SR2, it may trigger the QPI of ISSI chips.
Moreover, when `rom_spiflash_unlock()` try to clear the BP4 bit in the status register, QE (bit 6) of ISSI chip may be cleared by accident. Or if the ISSI chip doesn't accept WRSR command with argument of two bytes (since it only have status register of one byte), it may fail to clear the other protect bits (BP0~BP3) as expected.
This commit makes the `rom_spiflash_unlock()` check whether the vendor is issi. if so, `rom_spiflash_unlock()` only send RDSR to read the status register, send WRSR with only 1 byte argument, and also avoid clearing the QE bit (bit 6).
3. `rom_spiflash_unlock()` always send WRSR command to clear protection bits even when there is no protection bit active. And the execution of clearing status registers, which takes about 700us, will also happen even when there's no bits cleared.
This commit skips the clearing of status register if there is no protection bits active.
Also move the execute_flash_command to be a bootloader API; move
implementation of spi_flash_wrap_set to the bootloader
2020-03-12 06:20:31 -04:00
|
|
|
SPIFLASH.ctrl.val = SPI_MEM_WP_REG_M; // keep WP high while idle, otherwise leave DIO mode
|
|
|
|
|
#endif
|
|
|
|
|
SPIFLASH.user.usr_dummy = 0;
|
|
|
|
|
SPIFLASH.user.usr_addr = 0;
|
|
|
|
|
SPIFLASH.user.usr_command = 1;
|
|
|
|
|
SPIFLASH.user2.usr_command_bitlen = 7;
|
|
|
|
|
|
|
|
|
|
SPIFLASH.user2.usr_command_value = command;
|
|
|
|
|
SPIFLASH.user.usr_miso = miso_len > 0;
|
|
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
|
|
|
|
SPIFLASH.miso_dlen.usr_miso_dbitlen = miso_len ? (miso_len - 1) : 0;
|
2020-11-26 03:56:13 -05:00
|
|
|
#else
|
bootloader: fix the WRSR format for ISSI flash chips
1. The 2nd bootloader always call `rom_spiflash_unlock()`, but never help to clear the WEL bit when exit. This may cause system unstability.
This commit helps to clear WEL when flash configuration is done.
**RISK:** When the app starts, it didn't have to clear the WEL before it actually write/erase. But now the very first write/erase operation should be done after a WEL clear. Though the risk is little (all the following write/erase also need to clear the WEL), we still have to test this carefully, especially for those functions used by the OTA.
2. The `rom_spiflash_unlock()` function in the patch of ESP32 may (1) trigger the QPI, (2) clear the QE or (3) fail to unlock the ISSI chips.
Status register bitmap of ISSI chip and GD chip:
| SR | ISSI | GD25LQ32C |
| -- | ---- | --------- |
| 0 | WIP | WIP |
| 1 | WEL | WEL |
| 2 | BP0 | BP0 |
| 3 | BP1 | BP1 |
| 4 | BP2 | BP2 |
| 5 | BP3 | BP3 |
| 6 | QE | BP4 |
| 7 | SRWD | SRP0 |
| 8 | | SRP1 |
| 9 | | QE |
| 10 | | SUS2 |
| 11 | | LB1 |
| 12 | | LB2 |
| 13 | | LB3 |
| 14 | | CMP |
| 15 | | SUS1 |
QE bit of other chips are at the bit 9 of the status register (i.e. bit 1 of SR2), which should be read by RDSR2 command.
However, the RDSR2 (35H, Read Status 2) command for chip of other vendors happens to be the QIOEN (Enter QPI mode) command of ISSI chips. When the `rom_spiflash_unlock()` function trys to read SR2, it may trigger the QPI of ISSI chips.
Moreover, when `rom_spiflash_unlock()` try to clear the BP4 bit in the status register, QE (bit 6) of ISSI chip may be cleared by accident. Or if the ISSI chip doesn't accept WRSR command with argument of two bytes (since it only have status register of one byte), it may fail to clear the other protect bits (BP0~BP3) as expected.
This commit makes the `rom_spiflash_unlock()` check whether the vendor is issi. if so, `rom_spiflash_unlock()` only send RDSR to read the status register, send WRSR with only 1 byte argument, and also avoid clearing the QE bit (bit 6).
3. `rom_spiflash_unlock()` always send WRSR command to clear protection bits even when there is no protection bit active. And the execution of clearing status registers, which takes about 700us, will also happen even when there's no bits cleared.
This commit skips the clearing of status register if there is no protection bits active.
Also move the execute_flash_command to be a bootloader API; move
implementation of spi_flash_wrap_set to the bootloader
2020-03-12 06:20:31 -04:00
|
|
|
SPIFLASH.miso_dlen.usr_miso_bit_len = miso_len ? (miso_len - 1) : 0;
|
|
|
|
|
#endif
|
|
|
|
|
SPIFLASH.user.usr_mosi = mosi_len > 0;
|
|
|
|
|
#if CONFIG_IDF_TARGET_ESP32
|
|
|
|
|
SPIFLASH.mosi_dlen.usr_mosi_dbitlen = mosi_len ? (mosi_len - 1) : 0;
|
2020-11-26 03:56:13 -05:00
|
|
|
#else
|
bootloader: fix the WRSR format for ISSI flash chips
1. The 2nd bootloader always call `rom_spiflash_unlock()`, but never help to clear the WEL bit when exit. This may cause system unstability.
This commit helps to clear WEL when flash configuration is done.
**RISK:** When the app starts, it didn't have to clear the WEL before it actually write/erase. But now the very first write/erase operation should be done after a WEL clear. Though the risk is little (all the following write/erase also need to clear the WEL), we still have to test this carefully, especially for those functions used by the OTA.
2. The `rom_spiflash_unlock()` function in the patch of ESP32 may (1) trigger the QPI, (2) clear the QE or (3) fail to unlock the ISSI chips.
Status register bitmap of ISSI chip and GD chip:
| SR | ISSI | GD25LQ32C |
| -- | ---- | --------- |
| 0 | WIP | WIP |
| 1 | WEL | WEL |
| 2 | BP0 | BP0 |
| 3 | BP1 | BP1 |
| 4 | BP2 | BP2 |
| 5 | BP3 | BP3 |
| 6 | QE | BP4 |
| 7 | SRWD | SRP0 |
| 8 | | SRP1 |
| 9 | | QE |
| 10 | | SUS2 |
| 11 | | LB1 |
| 12 | | LB2 |
| 13 | | LB3 |
| 14 | | CMP |
| 15 | | SUS1 |
QE bit of other chips are at the bit 9 of the status register (i.e. bit 1 of SR2), which should be read by RDSR2 command.
However, the RDSR2 (35H, Read Status 2) command for chip of other vendors happens to be the QIOEN (Enter QPI mode) command of ISSI chips. When the `rom_spiflash_unlock()` function trys to read SR2, it may trigger the QPI of ISSI chips.
Moreover, when `rom_spiflash_unlock()` try to clear the BP4 bit in the status register, QE (bit 6) of ISSI chip may be cleared by accident. Or if the ISSI chip doesn't accept WRSR command with argument of two bytes (since it only have status register of one byte), it may fail to clear the other protect bits (BP0~BP3) as expected.
This commit makes the `rom_spiflash_unlock()` check whether the vendor is issi. if so, `rom_spiflash_unlock()` only send RDSR to read the status register, send WRSR with only 1 byte argument, and also avoid clearing the QE bit (bit 6).
3. `rom_spiflash_unlock()` always send WRSR command to clear protection bits even when there is no protection bit active. And the execution of clearing status registers, which takes about 700us, will also happen even when there's no bits cleared.
This commit skips the clearing of status register if there is no protection bits active.
Also move the execute_flash_command to be a bootloader API; move
implementation of spi_flash_wrap_set to the bootloader
2020-03-12 06:20:31 -04:00
|
|
|
SPIFLASH.mosi_dlen.usr_mosi_bit_len = mosi_len ? (mosi_len - 1) : 0;
|
2016-11-01 19:41:58 -04:00
|
|
|
#endif
|
bootloader: fix the WRSR format for ISSI flash chips
1. The 2nd bootloader always call `rom_spiflash_unlock()`, but never help to clear the WEL bit when exit. This may cause system unstability.
This commit helps to clear WEL when flash configuration is done.
**RISK:** When the app starts, it didn't have to clear the WEL before it actually write/erase. But now the very first write/erase operation should be done after a WEL clear. Though the risk is little (all the following write/erase also need to clear the WEL), we still have to test this carefully, especially for those functions used by the OTA.
2. The `rom_spiflash_unlock()` function in the patch of ESP32 may (1) trigger the QPI, (2) clear the QE or (3) fail to unlock the ISSI chips.
Status register bitmap of ISSI chip and GD chip:
| SR | ISSI | GD25LQ32C |
| -- | ---- | --------- |
| 0 | WIP | WIP |
| 1 | WEL | WEL |
| 2 | BP0 | BP0 |
| 3 | BP1 | BP1 |
| 4 | BP2 | BP2 |
| 5 | BP3 | BP3 |
| 6 | QE | BP4 |
| 7 | SRWD | SRP0 |
| 8 | | SRP1 |
| 9 | | QE |
| 10 | | SUS2 |
| 11 | | LB1 |
| 12 | | LB2 |
| 13 | | LB3 |
| 14 | | CMP |
| 15 | | SUS1 |
QE bit of other chips are at the bit 9 of the status register (i.e. bit 1 of SR2), which should be read by RDSR2 command.
However, the RDSR2 (35H, Read Status 2) command for chip of other vendors happens to be the QIOEN (Enter QPI mode) command of ISSI chips. When the `rom_spiflash_unlock()` function trys to read SR2, it may trigger the QPI of ISSI chips.
Moreover, when `rom_spiflash_unlock()` try to clear the BP4 bit in the status register, QE (bit 6) of ISSI chip may be cleared by accident. Or if the ISSI chip doesn't accept WRSR command with argument of two bytes (since it only have status register of one byte), it may fail to clear the other protect bits (BP0~BP3) as expected.
This commit makes the `rom_spiflash_unlock()` check whether the vendor is issi. if so, `rom_spiflash_unlock()` only send RDSR to read the status register, send WRSR with only 1 byte argument, and also avoid clearing the QE bit (bit 6).
3. `rom_spiflash_unlock()` always send WRSR command to clear protection bits even when there is no protection bit active. And the execution of clearing status registers, which takes about 700us, will also happen even when there's no bits cleared.
This commit skips the clearing of status register if there is no protection bits active.
Also move the execute_flash_command to be a bootloader API; move
implementation of spi_flash_wrap_set to the bootloader
2020-03-12 06:20:31 -04:00
|
|
|
SPIFLASH.data_buf[0] = mosi_data;
|
|
|
|
|
|
|
|
|
|
if (g_rom_spiflash_dummy_len_plus[1]) {
|
|
|
|
|
/* When flash pins are mapped via GPIO matrix, need a dummy cycle before reading via MISO */
|
|
|
|
|
if (miso_len > 0) {
|
|
|
|
|
SPIFLASH.user.usr_dummy = 1;
|
|
|
|
|
SPIFLASH.user1.usr_dummy_cyclelen = g_rom_spiflash_dummy_len_plus[1] - 1;
|
|
|
|
|
} else {
|
|
|
|
|
SPIFLASH.user.usr_dummy = 0;
|
|
|
|
|
SPIFLASH.user1.usr_dummy_cyclelen = 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
SPIFLASH.cmd.usr = 1;
|
|
|
|
|
while (SPIFLASH.cmd.usr != 0) {
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
SPIFLASH.ctrl.val = old_ctrl_reg;
|
|
|
|
|
return SPIFLASH.data_buf[0];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void bootloader_enable_wp(void)
|
|
|
|
|
{
|
|
|
|
|
bootloader_execute_flash_command(CMD_WRDI, 0, 0, 0); /* Exit OTP mode */
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#if SOC_CACHE_SUPPORT_WRAP
|
|
|
|
|
esp_err_t bootloader_flash_wrap_set(spi_flash_wrap_mode_t mode)
|
|
|
|
|
{
|
|
|
|
|
uint32_t reg_bkp_ctrl = SPIFLASH.ctrl.val;
|
|
|
|
|
uint32_t reg_bkp_usr = SPIFLASH.user.val;
|
|
|
|
|
SPIFLASH.user.fwrite_dio = 0;
|
|
|
|
|
SPIFLASH.user.fwrite_dual = 0;
|
|
|
|
|
SPIFLASH.user.fwrite_qio = 1;
|
|
|
|
|
SPIFLASH.user.fwrite_quad = 0;
|
|
|
|
|
SPIFLASH.ctrl.fcmd_dual = 0;
|
|
|
|
|
SPIFLASH.ctrl.fcmd_quad = 0;
|
|
|
|
|
SPIFLASH.user.usr_dummy = 0;
|
|
|
|
|
SPIFLASH.user.usr_addr = 1;
|
|
|
|
|
SPIFLASH.user.usr_command = 1;
|
|
|
|
|
SPIFLASH.user2.usr_command_bitlen = 7;
|
|
|
|
|
SPIFLASH.user2.usr_command_value = CMD_WRAP;
|
|
|
|
|
SPIFLASH.user1.usr_addr_bitlen = 23;
|
|
|
|
|
SPIFLASH.addr = 0;
|
|
|
|
|
SPIFLASH.user.usr_miso = 0;
|
|
|
|
|
SPIFLASH.user.usr_mosi = 1;
|
|
|
|
|
SPIFLASH.mosi_dlen.usr_mosi_bit_len = 7;
|
|
|
|
|
SPIFLASH.data_buf[0] = (uint32_t) mode << 4;;
|
|
|
|
|
SPIFLASH.cmd.usr = 1;
|
|
|
|
|
while(SPIFLASH.cmd.usr != 0)
|
|
|
|
|
{ }
|
|
|
|
|
|
|
|
|
|
SPIFLASH.ctrl.val = reg_bkp_ctrl;
|
|
|
|
|
SPIFLASH.user.val = reg_bkp_usr;
|
|
|
|
|
return ESP_OK;
|
|
|
|
|
}
|
2020-11-10 02:40:01 -05:00
|
|
|
#endif //SOC_CACHE_SUPPORT_WRAP
|
