J721S2 SA3UL Firewall Descriptions

Introduction

This chapter provides information on firewalls that system firmware configures for the crypto-accelerator SAUL by default at boot time for HS devices. The reasons for choosing specific firewalls and/or regions to configure during system firmware initialization are internal. The guide to read the tables in this chapter is provided below. For more details on firewalls, refer to the “Interconnect Firewalls” section of the TRM and Firewall TISCI Description. For more details on SAUL access, please refer to SAUL Access Outside of SYSFW.

Table Legend

• Firewall ID: The unique identifier for each firewall
• Owner: The host ID that owns the firewall
• CBA_PERMISSION_x: Each permission slot takes the form of [user, permission], where “user” is a host ID and “permission” is a combination of r-read, w-write, c-cache, d-debug. Additionally, each firewall region/channel can have up to 3 slots for configuring permissions.

Table Guide

• If a firewall is owned by TIFS/DMSC, it means that only TIFS/DMSC can configure it.
• If a firewall is owned by none, it means any host can configure it.
• If a firewall is owned by rm, it means that the corresponding resource is managed by the resource manager based on the RM boardcfg.

Note

For additional firewall information, checkout the Firewall FAQ.

List of Region Based SAUL Firewalls

Firewall ID	Region	Owner	Background/Foreground Region	Dev Group	Start Address	End Address	CBA_PERMISSION_0	CBA_PERMISSION_1	CBA_PERMISSION_2
1196	0	tifs	Foreground	SOC_DEVGRP_MCU_WAKEUP	0x40900000	0x40900FFF	tifs,rwd	everyone,r
1196	1	tifs	Foreground	SOC_DEVGRP_MCU_WAKEUP	0x40901000	0x409011FF	tifs,rwd	hsm,r
1196	2	none	Foreground	SOC_DEVGRP_MCU_WAKEUP	0x4070C000	0x4070C3FF	everyone,rwd
1196	3	none	Foreground	SOC_DEVGRP_MCU_WAKEUP	0x40910000	0x4091007F	everyone,rwd
1196	4	tifs	Foreground	SOC_DEVGRP_MCU_WAKEUP	0x40920000	0x4092FFFF	tifs,rwd