mirror of
https://github.com/Telecominfraproject/OpenCellular.git
synced 2026-01-11 02:15:14 +00:00
98616d79c6
The region API was a way for firmware and kernel verification to get at various blocks of caller-provided data. In practice, we only used it internally as a way to get at parts of the GBB. Prune it down to access only the bits of GBB we still need, from the buffer we already know we have. In the long run we should use the same vb2ex_read_resource() API that vb2 firmware verification does, but that should be done in a follow-up CL since it'll need to be coordinated with support in depthcharge. No change in functionality. BUG=chromium:611535 BRANCH=none TEST=make -j runtests; build bob firmware and boot it Change-Id: I5715cb8d88274164a1a73ed4a56bbd93af46f9bf Signed-off-by: Randall Spangler <rspangler@chromium.org> Reviewed-on: https://chromium-review.googlesource.com/852798 Commit-Ready: ChromeOS CL Exonerator Bot <chromiumos-cl-exonerator@appspot.gserviceaccount.com> Reviewed-by: Stefan Reinauer <reinauer@chromium.org>
286 lines
8.5 KiB
C
286 lines
8.5 KiB
C
/* Copyright (c) 2011 The Chromium OS Authors. All rights reserved.
|
|
* Use of this source code is governed by a BSD-style license that can be
|
|
* found in the LICENSE file.
|
|
*/
|
|
|
|
/* Routines for verifying a file's signature. Useful in testing the core
|
|
* RSA verification implementation.
|
|
*/
|
|
|
|
#include <inttypes.h> /* For PRIu64 macro */
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include <sys/types.h>
|
|
#include <unistd.h>
|
|
|
|
#include "2sysincludes.h"
|
|
#include "2api.h"
|
|
#include "2misc.h"
|
|
#include "gbb_header.h"
|
|
#include "host_common.h"
|
|
#include "load_kernel_fw.h"
|
|
#include "rollback_index.h"
|
|
#include "vboot_common.h"
|
|
#include "vboot_kernel.h"
|
|
|
|
#define LBA_BYTES 512
|
|
#define KERNEL_BUFFER_SIZE 0xA00000
|
|
|
|
/* Global variables for stub functions */
|
|
static LoadKernelParams lkp;
|
|
static VbCommonParams cparams;
|
|
static FILE *image_file = NULL;
|
|
|
|
|
|
/* Boot device stub implementations to read from the image file */
|
|
VbError_t VbExDiskRead(VbExDiskHandle_t handle, uint64_t lba_start,
|
|
uint64_t lba_count, void *buffer) {
|
|
printf("Read(%" PRIu64 ", %" PRIu64 ")\n", lba_start, lba_count);
|
|
|
|
if (lba_start >= lkp.streaming_lba_count ||
|
|
lba_start + lba_count > lkp.streaming_lba_count) {
|
|
fprintf(stderr, "Read overrun: %" PRIu64 " + %" PRIu64 " > %" PRIu64 "\n",
|
|
lba_start, lba_count, lkp.streaming_lba_count);
|
|
return 1;
|
|
}
|
|
|
|
if (0 != fseek(image_file, lba_start * lkp.bytes_per_lba, SEEK_SET) ||
|
|
1 != fread(buffer, lba_count * lkp.bytes_per_lba, 1, image_file)) {
|
|
fprintf(stderr, "Read error.");
|
|
return 1;
|
|
}
|
|
return VBERROR_SUCCESS;
|
|
}
|
|
|
|
|
|
VbError_t VbExDiskWrite(VbExDiskHandle_t handle, uint64_t lba_start,
|
|
uint64_t lba_count, const void *buffer) {
|
|
printf("Write(%" PRIu64 ", %" PRIu64 ")\n", lba_start, lba_count);
|
|
|
|
if (lba_start >= lkp.streaming_lba_count ||
|
|
lba_start + lba_count > lkp.streaming_lba_count) {
|
|
fprintf(stderr, "Read overrun: %" PRIu64 " + %" PRIu64 " > %" PRIu64 "\n",
|
|
lba_start, lba_count, lkp.streaming_lba_count);
|
|
return 1;
|
|
}
|
|
|
|
/* TODO: enable writes, once we're sure it won't trash our example file */
|
|
return VBERROR_SUCCESS;
|
|
|
|
fseek(image_file, lba_start * lkp.bytes_per_lba, SEEK_SET);
|
|
if (1 != fwrite(buffer, lba_count * lkp.bytes_per_lba, 1, image_file)) {
|
|
fprintf(stderr, "Read error.");
|
|
return 1;
|
|
}
|
|
return VBERROR_SUCCESS;
|
|
}
|
|
|
|
|
|
#define BOOT_FLAG_DEVELOPER (1 << 0)
|
|
#define BOOT_FLAG_RECOVERY (1 << 1)
|
|
|
|
/* Main routine */
|
|
int main(int argc, char* argv[]) {
|
|
|
|
const char* image_name;
|
|
uint64_t key_size;
|
|
uint8_t* key_blob = NULL;
|
|
VbSharedDataHeader* shared;
|
|
GoogleBinaryBlockHeader* gbb;
|
|
VbError_t rv;
|
|
int c, argsleft;
|
|
int errorcnt = 0;
|
|
char *e = 0;
|
|
|
|
memset(&lkp, 0, sizeof(LoadKernelParams));
|
|
lkp.bytes_per_lba = LBA_BYTES;
|
|
int boot_flags = BOOT_FLAG_RECOVERY;
|
|
memset(&cparams, 0, sizeof(VbCommonParams));
|
|
|
|
/* Parse options */
|
|
opterr = 0;
|
|
while ((c=getopt(argc, argv, ":b:")) != -1)
|
|
{
|
|
switch (c)
|
|
{
|
|
case 'b':
|
|
boot_flags = strtoull(optarg, &e, 0);
|
|
if (!*optarg || (e && *e))
|
|
{
|
|
fprintf(stderr, "Invalid argument to -%c: \"%s\"\n", c, optarg);
|
|
errorcnt++;
|
|
}
|
|
break;
|
|
case '?':
|
|
fprintf(stderr, "Unrecognized switch: -%c\n", optopt);
|
|
errorcnt++;
|
|
break;
|
|
case ':':
|
|
fprintf(stderr, "Missing argument to -%c\n", optopt);
|
|
errorcnt++;
|
|
break;
|
|
default:
|
|
errorcnt++;
|
|
break;
|
|
}
|
|
}
|
|
|
|
/* Update argc */
|
|
argsleft = argc - optind;
|
|
|
|
if (errorcnt || !argsleft)
|
|
{
|
|
fprintf(stderr, "usage: %s [options] <drive_image> [<sign_key>]\n",
|
|
argv[0]);
|
|
fprintf(stderr, "\noptions:\n");
|
|
/* These cases are because uint64_t isn't necessarily the same as ULL. */
|
|
fprintf(stderr, " -b NUM boot flag bits (default %d):\n",
|
|
BOOT_FLAG_RECOVERY);
|
|
fprintf(stderr, " %d = developer mode on\n",
|
|
BOOT_FLAG_DEVELOPER);
|
|
fprintf(stderr, " %d = recovery mode on\n",
|
|
BOOT_FLAG_RECOVERY);
|
|
return 1;
|
|
}
|
|
|
|
image_name = argv[optind];
|
|
|
|
/* Read header signing key blob */
|
|
if (argsleft > 1) {
|
|
key_blob = ReadFile(argv[optind+1], &key_size);
|
|
if (!key_blob) {
|
|
fprintf(stderr, "Unable to read key file %s\n", argv[optind+1]);
|
|
return 1;
|
|
}
|
|
printf("Read %" PRIu64 " bytes of key from %s\n", key_size, argv[optind+1]);
|
|
if (key_size > 16*1024*1024) {
|
|
fprintf(stderr, "Key blob size=%" PRIu64 " is ridiculous.\n", key_size);
|
|
free(key_blob);
|
|
return 1;
|
|
}
|
|
}
|
|
|
|
/* Initialize the GBB */
|
|
cparams.gbb_size = sizeof(GoogleBinaryBlockHeader) + key_size;
|
|
cparams.gbb_data = gbb = (GoogleBinaryBlockHeader*)malloc(cparams.gbb_size);
|
|
memset(gbb, 0, cparams.gbb_size);
|
|
memcpy(gbb->signature, GBB_SIGNATURE, GBB_SIGNATURE_SIZE);
|
|
gbb->major_version = GBB_MAJOR_VER;
|
|
gbb->minor_version = GBB_MINOR_VER;
|
|
gbb->header_size = sizeof(GoogleBinaryBlockHeader);
|
|
/* Fill in the given key, if any, for both root and recovery */
|
|
if (key_blob) {
|
|
gbb->rootkey_offset = gbb->header_size;
|
|
gbb->rootkey_size = key_size;
|
|
memcpy((uint8_t*)gbb + gbb->rootkey_offset, key_blob, key_size);
|
|
|
|
gbb->recovery_key_offset = gbb->rootkey_offset;
|
|
gbb->recovery_key_size = key_size;
|
|
}
|
|
|
|
/* Initialize the shared data area */
|
|
cparams.shared_data_blob = malloc(VB_SHARED_DATA_REC_SIZE);
|
|
cparams.shared_data_size = VB_SHARED_DATA_REC_SIZE;
|
|
shared = (VbSharedDataHeader*)cparams.shared_data_blob;
|
|
if (0 != VbSharedDataInit(shared, cparams.shared_data_size)) {
|
|
fprintf(stderr, "Unable to init shared data\n");
|
|
return 1;
|
|
}
|
|
/* Copy in the key blob, if any */
|
|
if (key_blob) {
|
|
if (0 != VbSharedDataSetKernelKey(shared, (VbPublicKey*)key_blob)) {
|
|
fprintf(stderr, "Unable to set key in shared data\n");
|
|
return 1;
|
|
}
|
|
}
|
|
|
|
/* Free the key blob, now that we're done with it */
|
|
free(key_blob);
|
|
|
|
printf("bootflags = %d\n", boot_flags);
|
|
lkp.boot_flags = boot_flags;
|
|
|
|
/* Get image size */
|
|
printf("Reading from image: %s\n", image_name);
|
|
image_file = fopen(image_name, "rb");
|
|
if (!image_file) {
|
|
fprintf(stderr, "Unable to open image file %s\n", image_name);
|
|
return 1;
|
|
}
|
|
fseek(image_file, 0, SEEK_END);
|
|
lkp.streaming_lba_count = (ftell(image_file) / LBA_BYTES);
|
|
lkp.gpt_lba_count = lkp.streaming_lba_count;
|
|
rewind(image_file);
|
|
printf("Streaming LBA count: %" PRIu64 "\n", lkp.streaming_lba_count);
|
|
|
|
/* Allocate a buffer for the kernel */
|
|
lkp.kernel_buffer = malloc(KERNEL_BUFFER_SIZE);
|
|
if(!lkp.kernel_buffer) {
|
|
fprintf(stderr, "Unable to allocate kernel buffer.\n");
|
|
return 1;
|
|
}
|
|
lkp.kernel_buffer_size = KERNEL_BUFFER_SIZE;
|
|
|
|
/*
|
|
* Set up vboot context.
|
|
*
|
|
* TODO: Propagate this up to higher API levels
|
|
*/
|
|
struct vb2_context ctx;
|
|
memset(&ctx, 0, sizeof(ctx));
|
|
/* No need to initialize ctx->nvdata[]; defaults are fine */
|
|
/* TODO(chromium:441893): support dev-mode flag and external gpt flag */
|
|
ctx.workbuf = malloc(VB2_KERNEL_WORKBUF_RECOMMENDED_SIZE);
|
|
if (!ctx.workbuf) {
|
|
fprintf(stderr, "Can't allocate workbuf\n");
|
|
return 1;
|
|
}
|
|
ctx.workbuf_size = VB2_KERNEL_WORKBUF_RECOMMENDED_SIZE;
|
|
if (boot_flags & BOOT_FLAG_RECOVERY)
|
|
ctx.flags |= VB2_CONTEXT_RECOVERY_MODE;
|
|
if (boot_flags & BOOT_FLAG_DEVELOPER)
|
|
ctx.flags |= VB2_CONTEXT_DEVELOPER_MODE;
|
|
if (VB2_SUCCESS != vb2_init_context(&ctx)) {
|
|
free(ctx.workbuf);
|
|
fprintf(stderr, "Can't init context\n");
|
|
return 1;
|
|
}
|
|
|
|
struct vb2_shared_data *sd = vb2_get_sd(&ctx);
|
|
sd->vbsd = shared;
|
|
|
|
/* Call LoadKernel() */
|
|
rv = LoadKernel(&ctx, &lkp, &cparams);
|
|
printf("LoadKernel() returned %d\n", rv);
|
|
|
|
if (VBERROR_SUCCESS == rv) {
|
|
printf("Partition number: %u\n", lkp.partition_number);
|
|
printf("Bootloader address: %" PRIu64 "\n", lkp.bootloader_address);
|
|
printf("Bootloader size: %u\n", lkp.bootloader_size);
|
|
printf("Partition guid: "
|
|
"%02x%02x%02x%02x-%02x%02x-%02x%02x"
|
|
"-%02x%02x-%02x%02x%02x%02x%02x%02x\n",
|
|
lkp.partition_guid[3],
|
|
lkp.partition_guid[2],
|
|
lkp.partition_guid[1],
|
|
lkp.partition_guid[0],
|
|
lkp.partition_guid[5],
|
|
lkp.partition_guid[4],
|
|
lkp.partition_guid[7],
|
|
lkp.partition_guid[6],
|
|
lkp.partition_guid[8],
|
|
lkp.partition_guid[9],
|
|
lkp.partition_guid[10],
|
|
lkp.partition_guid[11],
|
|
lkp.partition_guid[12],
|
|
lkp.partition_guid[13],
|
|
lkp.partition_guid[14],
|
|
lkp.partition_guid[15]);
|
|
}
|
|
|
|
fclose(image_file);
|
|
free(lkp.kernel_buffer);
|
|
return rv != VBERROR_SUCCESS;
|
|
}
|