AR# 52017

Zynq-7000 SoC, Security - Register Initialization During BootROM Handover Does Not Error on Illegal Addresses

Description

The boot image can contain address-data pairs that initialize control registers during the BootROM handover to user code. Unintended access to illegal addresses is enabled.

Solution

When a boot image address-data pair writes outside of its subset of addresses, the system generates a lockdown situation and a BootROM error code to generated.

The registers that are accessible during the handover depends on the boot mode (secure versus non-secure) and the device revision as shown in the table.

Boot Mode	Allowed Addresses: 7z020 CES 7z045 CES	Allowed Addresses: Design intention
Non-Secure	E000_0000 to F800_6FFF	E000_1000 to E000_1FFF E000_D000 to E000_EFFF E010_0004 to E010_0FFF (except not E010_0058) F800_0100 to F800_01B0 F800_01B4 to F800_01FF F800_0204 to F800_0234 F800_024C F800_0304 to F800_0834 F800_0A00 to F800_0A8C F800_0AB0 to F800_0B74
Non-Secure	F800_8000 to FFEF_FFFF	F800_6000 to F800_6FFF
Secure	F800_0100 to F800_01B4	F800_0100 to F800_01AF

Was this Answer Record helpful?

AR# 52017
Date	06/13/2018
Status	Active
Type	Design Advisory
Devices	Zynq-7000

Data Center

Communications

Industry Solutions

AI Inference Acceleration

Devices

Boards & Kits

Software Development Tools

Software Development Resources

Hardware Development Tools

Hardware Development Resources

Embedded Development

Core Technologies

Support

Services

Company

Partners

Contact Us

AR# 52017

Zynq-7000 SoC, Security - Register Initialization During BootROM Handover Does Not Error on Illegal Addresses

Description

Solution

Get to know us

News & Events

Media & Community

Product Support

Partners & Investors