UPGRADE YOUR BROWSER

We have detected your current browser version is not the latest one. Xilinx.com uses the latest web technologies to bring you the best online experience possible. Please upgrade to a Xilinx.com supported browser:Chrome, Firefox, Internet Explorer 11, Safari. Thank you!

AR# 52017

Zynq-7000 AP SoC, Security - Register Initialization During BootROM Handover Does Not Error on Illegal Addresses

Description

The boot image can contain address-data pairs that initialize control registers during the BootROM handover to user code. Unintended access to illegal addresses is enabled.

Solution

When a boot image address-data pair writes outside of its subset of addresses, the system generates a lockdown situation and a BootROM error code to generated.

The registers that are accessible during the handover depends on the boot mode (secure versus non-secure) and the device revision as shown in the table.

Boot Mode Allowed Addresses:
7z020 CES

7z045 CES
Allowed Addresses:
Design intention
Non-Secure E000_0000 to F800_6FFF

E000_1000 to E000_1FFF
E000_D000 to E000_EFFF

E010_0004 to E010_0FFF
(except not E010_0058)

F800_0100 to F800_01B0
F800_01B4 to F800_01FF
F800_0204 to F800_0234
F800_024C
F800_0304 to F800_0834
F800_0A00 to F800_0A8C
F800_0AB0 to F800_0B74

F800_8000 to FFEF_FFFF F800_6000 to F800_6FFF
Secure F800_0100 to F800_01B4 F800_0100 to F800_01AF
AR# 52017
Date Created 09/25/2012
Last Updated 10/25/2012
Status Active
Type Design Advisory
Devices
  • Zynq-7000