kukui_scp: Enable MPU to protect code RAM and data RAM in RW image.

kukui_scp is loaded into SRAM. We would like to protect
the memory from a modified code RAM content and executing injected
code in data RAM.

BRANCH=None
BUG=b:123269246
TEST=Apply MPU test patch https://crrev.com/c/1530265.
     Test data ram XN:
     1. mpu 0 # disable MPU
     2. mpu_test # see it prints
     3. mpu 1 # enable MPU
     4. mpu_test # memory access violation, and reset.
     5. mpu_test # memory access violation, and reset
                 # again. (MPU enabled by default)

     Test code ram RO:
     1. rw 0x8 0x5566 # Write to code RAM and see memory
                      # access violation and reset.
     2. mpu 0  # disable MPU
     3. rw 0x8 0x5566 # Nothing happended
     4. rw 0x8 # Read 0x5566
     5. mpu 1  # enable MPU
     6. rw 0x8 0x5566 # memory access violation.

Change-Id: I6af5029d8c55d795543d4759b2c9168a06eb9ff1
Signed-off-by: Yilun Lin <yllin@google.com>
Reviewed-on: https://chromium-review.googlesource.com/1530264
Commit-Ready: Yilun Lin <yllin@chromium.org>
Tested-by: Yilun Lin <yllin@chromium.org>
Reviewed-by: Rong Chang <rongchang@chromium.org>

1 files changed, 2 insertions, 0 deletions

diff --git a/core/cortex-m/include/mpu.h b/core/cortex-m/include/mpu.h
index 84a82bb3f8..c252ab6ddc 100644
--- a/core/cortex-m/include/mpu.h
+++ b/core/cortex-m/include/mpu.h
@@ -58,6 +58,8 @@ enum mpu_region {
 
 /* AP bit. See table 3-5 of Stellaris LM4F232H5QC datasheet for details */
 #define MPU_ATTR_NO_NO (0 << 8)  /* previleged no access, unprev no access */
+#define MPU_ATTR_RW_NO (1 << 8)  /* previleged ReadWrite, unprev no access */
+#define MPU_ATTR_RW_RO (2 << 8)  /* previleged ReadWrite, unprev Read-only */
 #define MPU_ATTR_RW_RW (3 << 8)  /* previleged ReadWrite, unprev ReadWrite */
 #define MPU_ATTR_RO_NO (5 << 8)  /* previleged Read-only, unprev no access */