2 * Freescale i.MX23/i.MX28 SB image generator
4 * Copyright (C) 2012-2013 Marek Vasut <marex@denx.de>
6 * SPDX-License-Identifier: GPL-2.0+
18 #include <openssl/evp.h>
20 #include "imagetool.h"
22 #include "pbl_crc32.h"
28 * |-Write to address command block
31 * |-ORR address with mask command block
33 * |-Write to address command block
37 #define SB_HAB_DCD_WRITE 0xccUL
38 #define SB_HAB_DCD_CHECK 0xcfUL
39 #define SB_HAB_DCD_NOOP 0xc0UL
40 #define SB_HAB_DCD_MASK_BIT (1 << 3)
41 #define SB_HAB_DCD_SET_BIT (1 << 4)
43 /* Addr.n = Value.n */
44 #define SB_DCD_WRITE \
45 (SB_HAB_DCD_WRITE << 24)
46 /* Addr.n &= ~Value.n */
48 ((SB_HAB_DCD_WRITE << 24) | SB_HAB_DCD_SET_BIT)
49 /* Addr.n |= Value.n */
51 ((SB_HAB_DCD_WRITE << 24) | SB_HAB_DCD_SET_BIT | SB_HAB_DCD_MASK_BIT)
52 /* (Addr.n & Value.n) == 0 */
53 #define SB_DCD_CHK_EQZ \
54 (SB_HAB_DCD_CHECK << 24)
55 /* (Addr.n & Value.n) == Value.n */
56 #define SB_DCD_CHK_EQ \
57 ((SB_HAB_DCD_CHECK << 24) | SB_HAB_DCD_SET_BIT)
58 /* (Addr.n & Value.n) != Value.n */
59 #define SB_DCD_CHK_NEQ \
60 ((SB_HAB_DCD_CHECK << 24) | SB_HAB_DCD_MASK_BIT)
61 /* (Addr.n & Value.n) != 0 */
62 #define SB_DCD_CHK_NEZ \
63 ((SB_HAB_DCD_CHECK << 24) | SB_HAB_DCD_SET_BIT | SB_HAB_DCD_MASK_BIT)
66 (SB_HAB_DCD_NOOP << 24)
69 struct sb_dcd_ctx *dcd;
75 /* Size of the whole DCD block. */
78 /* Pointer to previous DCD command block. */
79 uint32_t *prev_dcd_head;
101 struct sb_cmd_ctx *cmd;
106 struct sb_command payload;
107 struct sb_command c_payload;
110 struct sb_section_ctx {
116 struct sb_section_ctx *sect;
118 struct sb_cmd_ctx *cmd_head;
119 struct sb_cmd_ctx *cmd_tail;
121 struct sb_sections_header payload;
124 struct sb_image_ctx {
125 unsigned int in_section:1;
126 unsigned int in_dcd:1;
127 /* Image configuration */
128 unsigned int display_progress:1;
129 unsigned int silent_dump:1;
130 char *input_filename;
131 char *output_filename;
133 uint8_t image_key[16];
135 /* Number of section in the image */
136 unsigned int sect_count;
137 /* Bootable section */
138 unsigned int sect_boot;
139 unsigned int sect_boot_found:1;
141 struct sb_section_ctx *sect_head;
142 struct sb_section_ctx *sect_tail;
144 struct sb_dcd_ctx *dcd_head;
145 struct sb_dcd_ctx *dcd_tail;
147 EVP_CIPHER_CTX *cipher_ctx;
150 struct sb_key_dictionary_key sb_dict_key;
152 struct sb_boot_image_header payload;
156 * Instruction semantics:
160 * LOAD IVT address IVT_entry_point
161 * FILL address pattern length
162 * JUMP [HAB] address [r0_arg]
163 * CALL [HAB] address [r0_arg]
165 * For i.MX23, mode = USB/I2C/SPI1_FLASH/SPI2_FLASH/NAND_BCH
166 * JTAG/SPI3_EEPROM/SD_SSP0/SD_SSP1
167 * For i.MX28, mode = USB/I2C/SPI2_FLASH/SPI3_FLASH/NAND_BCH
168 * JTAG/SPI2_EEPROM/SD_SSP0/SD_SSP1
174 static int sb_aes_init(struct sb_image_ctx *ictx, uint8_t *iv, int enc)
176 EVP_CIPHER_CTX *ctx = &ictx->cipher_ctx;
179 /* If there is no init vector, init vector is all zeroes. */
181 iv = ictx->image_key;
183 EVP_CIPHER_CTX_init(ctx);
184 ret = EVP_CipherInit(ctx, EVP_aes_128_cbc(), ictx->image_key, iv, enc);
186 EVP_CIPHER_CTX_set_padding(ctx, 0);
190 static int sb_aes_crypt(struct sb_image_ctx *ictx, uint8_t *in_data,
191 uint8_t *out_data, int in_len)
193 EVP_CIPHER_CTX *ctx = &ictx->cipher_ctx;
197 outbuf = malloc(in_len);
200 memset(outbuf, 0, sizeof(in_len));
202 ret = EVP_CipherUpdate(ctx, outbuf, &outlen, in_data, in_len);
209 memcpy(out_data, outbuf, outlen);
216 static int sb_aes_deinit(EVP_CIPHER_CTX *ctx)
218 return EVP_CIPHER_CTX_cleanup(ctx);
221 static int sb_aes_reinit(struct sb_image_ctx *ictx, int enc)
224 EVP_CIPHER_CTX *ctx = &ictx->cipher_ctx;
225 struct sb_boot_image_header *sb_header = &ictx->payload;
226 uint8_t *iv = sb_header->iv;
228 ret = sb_aes_deinit(ctx);
231 return sb_aes_init(ictx, iv, enc);
237 static void soprintf(struct sb_image_ctx *ictx, const char *fmt, ...)
241 if (ictx->silent_dump)
245 vfprintf(stdout, fmt, ap);
252 static time_t sb_get_timestamp(void)
254 struct tm time_2000 = {
255 .tm_yday = 1, /* Jan. 1st */
256 .tm_year = 100, /* 2000 */
258 time_t seconds_to_2000 = mktime(&time_2000);
259 time_t seconds_to_now = time(NULL);
261 return seconds_to_now - seconds_to_2000;
264 static int sb_get_time(time_t time, struct tm *tm)
266 struct tm time_2000 = {
267 .tm_yday = 1, /* Jan. 1st */
268 .tm_year = 0, /* 1900 */
270 const time_t seconds_to_2000 = mktime(&time_2000);
271 const time_t seconds_to_now = seconds_to_2000 + time;
273 ret = gmtime_r(&seconds_to_now, tm);
274 return ret ? 0 : -EINVAL;
277 static void sb_encrypt_sb_header(struct sb_image_ctx *ictx)
279 EVP_MD_CTX *md_ctx = &ictx->md_ctx;
280 struct sb_boot_image_header *sb_header = &ictx->payload;
281 uint8_t *sb_header_ptr = (uint8_t *)sb_header;
283 /* Encrypt the header, compute the digest. */
284 sb_aes_crypt(ictx, sb_header_ptr, NULL, sizeof(*sb_header));
285 EVP_DigestUpdate(md_ctx, sb_header_ptr, sizeof(*sb_header));
288 static void sb_encrypt_sb_sections_header(struct sb_image_ctx *ictx)
290 EVP_MD_CTX *md_ctx = &ictx->md_ctx;
291 struct sb_section_ctx *sctx = ictx->sect_head;
292 struct sb_sections_header *shdr;
293 uint8_t *sb_sections_header_ptr;
294 const int size = sizeof(*shdr);
297 shdr = &sctx->payload;
298 sb_sections_header_ptr = (uint8_t *)shdr;
300 sb_aes_crypt(ictx, sb_sections_header_ptr,
301 ictx->sb_dict_key.cbc_mac, size);
302 EVP_DigestUpdate(md_ctx, sb_sections_header_ptr, size);
308 static void sb_encrypt_key_dictionary_key(struct sb_image_ctx *ictx)
310 EVP_MD_CTX *md_ctx = &ictx->md_ctx;
312 sb_aes_crypt(ictx, ictx->image_key, ictx->sb_dict_key.key,
313 sizeof(ictx->sb_dict_key.key));
314 EVP_DigestUpdate(md_ctx, &ictx->sb_dict_key, sizeof(ictx->sb_dict_key));
317 static void sb_decrypt_key_dictionary_key(struct sb_image_ctx *ictx)
319 EVP_MD_CTX *md_ctx = &ictx->md_ctx;
321 EVP_DigestUpdate(md_ctx, &ictx->sb_dict_key, sizeof(ictx->sb_dict_key));
322 sb_aes_crypt(ictx, ictx->sb_dict_key.key, ictx->image_key,
323 sizeof(ictx->sb_dict_key.key));
326 static void sb_encrypt_tag(struct sb_image_ctx *ictx,
327 struct sb_cmd_ctx *cctx)
329 EVP_MD_CTX *md_ctx = &ictx->md_ctx;
330 struct sb_command *cmd = &cctx->payload;
332 sb_aes_crypt(ictx, (uint8_t *)cmd,
333 (uint8_t *)&cctx->c_payload, sizeof(*cmd));
334 EVP_DigestUpdate(md_ctx, &cctx->c_payload, sizeof(*cmd));
337 static int sb_encrypt_image(struct sb_image_ctx *ictx)
339 /* Start image-wide crypto. */
340 EVP_MD_CTX_init(&ictx->md_ctx);
341 EVP_DigestInit(&ictx->md_ctx, EVP_sha1());
346 sb_aes_init(ictx, NULL, 1);
347 sb_encrypt_sb_header(ictx);
350 * SB sections header.
352 sb_encrypt_sb_sections_header(ictx);
357 sb_aes_reinit(ictx, 1);
358 sb_encrypt_key_dictionary_key(ictx);
363 struct sb_cmd_ctx *cctx;
364 struct sb_command *ccmd;
365 struct sb_section_ctx *sctx = ictx->sect_head;
368 cctx = sctx->cmd_head;
370 sb_aes_reinit(ictx, 1);
373 ccmd = &cctx->payload;
375 sb_encrypt_tag(ictx, cctx);
377 if (ccmd->header.tag == ROM_TAG_CMD) {
378 sb_aes_reinit(ictx, 1);
379 } else if (ccmd->header.tag == ROM_LOAD_CMD) {
380 sb_aes_crypt(ictx, cctx->data, cctx->data,
382 EVP_DigestUpdate(&ictx->md_ctx, cctx->data,
393 * Dump the SHA1 of the whole image.
395 sb_aes_reinit(ictx, 1);
397 EVP_DigestFinal(&ictx->md_ctx, ictx->digest, NULL);
398 sb_aes_crypt(ictx, ictx->digest, ictx->digest, sizeof(ictx->digest));
400 /* Stop the encryption session. */
401 sb_aes_deinit(&ictx->cipher_ctx);
406 static int sb_load_file(struct sb_cmd_ctx *cctx, char *filename)
408 long real_size, roundup_size;
415 fprintf(stderr, "ERR: Missing filename!\n");
419 fp = fopen(filename, "r");
423 ret = fseek(fp, 0, SEEK_END);
427 real_size = ftell(fp);
431 ret = fseek(fp, 0, SEEK_SET);
435 roundup_size = roundup(real_size, SB_BLOCK_SIZE);
436 data = calloc(1, roundup_size);
440 size = fread(data, 1, real_size, fp);
441 if (size != (unsigned long)real_size)
445 cctx->length = roundup_size;
455 fprintf(stderr, "ERR: Failed to load file \"%s\"\n", filename);
459 static uint8_t sb_command_checksum(struct sb_command *inst)
461 uint8_t *inst_ptr = (uint8_t *)inst;
465 for (i = 0; i < sizeof(struct sb_command); i++)
471 static int sb_token_to_long(char *tok, uint32_t *rid)
476 if (tok[0] != '0' || tok[1] != 'x') {
477 fprintf(stderr, "ERR: Invalid hexadecimal number!\n");
484 id = strtoul(tok, &endptr, 16);
485 if ((errno == ERANGE && id == ULONG_MAX) || (errno != 0 && id == 0)) {
486 fprintf(stderr, "ERR: Value can't be decoded!\n");
490 /* Check for 32-bit overflow. */
491 if (id > 0xffffffff) {
492 fprintf(stderr, "ERR: Value too big!\n");
497 fprintf(stderr, "ERR: Deformed value!\n");
505 static int sb_grow_dcd(struct sb_dcd_ctx *dctx, unsigned int inc_size)
512 dctx->size += inc_size;
513 tmp = realloc(dctx->payload, dctx->size);
519 /* Assemble and update the HAB DCD header. */
520 dctx->payload[0] = htonl((SB_HAB_DCD_TAG << 24) |
527 static int sb_build_dcd(struct sb_image_ctx *ictx, struct sb_cmd_list *cmd)
529 struct sb_dcd_ctx *dctx;
535 dctx = calloc(1, sizeof(*dctx));
539 ret = sb_grow_dcd(dctx, 4);
543 /* Read DCD block number. */
544 tok = strtok(cmd->cmd, " ");
546 fprintf(stderr, "#%i ERR: DCD block without number!\n",
552 /* Parse the DCD block number. */
553 ret = sb_token_to_long(tok, &id);
555 fprintf(stderr, "#%i ERR: Malformed DCD block number!\n",
563 * The DCD block is now constructed. Append it to the list.
564 * WARNING: The DCD size is still not computed and will be
565 * updated while parsing it's commands.
567 if (!ictx->dcd_head) {
568 ictx->dcd_head = dctx;
569 ictx->dcd_tail = dctx;
571 ictx->dcd_tail->dcd = dctx;
572 ictx->dcd_tail = dctx;
583 static int sb_build_dcd_block(struct sb_image_ctx *ictx,
584 struct sb_cmd_list *cmd,
588 uint32_t address, value, length;
591 struct sb_dcd_ctx *dctx = ictx->dcd_tail;
594 if (dctx->prev_dcd_head && (type != SB_DCD_NOOP) &&
595 ((dctx->prev_dcd_head[0] & 0xff0000ff) == type)) {
596 /* Same instruction as before, just append it. */
597 ret = sb_grow_dcd(dctx, 8);
600 } else if (type == SB_DCD_NOOP) {
601 ret = sb_grow_dcd(dctx, 4);
605 /* Update DCD command block pointer. */
606 dctx->prev_dcd_head = dctx->payload +
607 dctx->size / sizeof(*dctx->payload) - 1;
609 /* NOOP has only 4 bytes and no payload. */
613 * Either a different instruction block started now
614 * or this is the first instruction block.
616 ret = sb_grow_dcd(dctx, 12);
620 /* Update DCD command block pointer. */
621 dctx->prev_dcd_head = dctx->payload +
622 dctx->size / sizeof(*dctx->payload) - 3;
625 dcd = dctx->payload + dctx->size / sizeof(*dctx->payload) - 2;
628 * Prepare the command.
630 tok = strtok(cmd->cmd, " ");
632 fprintf(stderr, "#%i ERR: Missing DCD address!\n",
638 /* Read DCD destination address. */
639 ret = sb_token_to_long(tok, &address);
641 fprintf(stderr, "#%i ERR: Incorrect DCD address!\n",
646 tok = strtok(NULL, " ");
648 fprintf(stderr, "#%i ERR: Missing DCD value!\n",
654 /* Read DCD operation value. */
655 ret = sb_token_to_long(tok, &value);
657 fprintf(stderr, "#%i ERR: Incorrect DCD value!\n",
662 /* Fill in the new DCD entry. */
663 dcd[0] = htonl(address);
664 dcd[1] = htonl(value);
667 /* Update the DCD command block. */
668 length = dctx->size -
669 ((dctx->prev_dcd_head - dctx->payload) *
670 sizeof(*dctx->payload));
671 dctx->prev_dcd_head[0] = htonl(type | (length << 8));
677 static int sb_build_section(struct sb_image_ctx *ictx, struct sb_cmd_list *cmd)
679 struct sb_section_ctx *sctx;
680 struct sb_sections_header *shdr;
682 uint32_t bootable = 0;
686 sctx = calloc(1, sizeof(*sctx));
690 /* Read section number. */
691 tok = strtok(cmd->cmd, " ");
693 fprintf(stderr, "#%i ERR: Section without number!\n",
699 /* Parse the section number. */
700 ret = sb_token_to_long(tok, &id);
702 fprintf(stderr, "#%i ERR: Malformed section number!\n",
707 /* Read section's BOOTABLE flag. */
708 tok = strtok(NULL, " ");
709 if (tok && (strlen(tok) == 8) && !strncmp(tok, "BOOTABLE", 8))
710 bootable = SB_SECTION_FLAG_BOOTABLE;
712 sctx->boot = bootable;
714 shdr = &sctx->payload;
715 shdr->section_number = id;
716 shdr->section_flags = bootable;
719 * The section is now constructed. Append it to the list.
720 * WARNING: The section size is still not computed and will
721 * be updated while parsing it's commands.
725 /* Mark that this section is bootable one. */
727 if (ictx->sect_boot_found) {
729 "#%i WARN: Multiple bootable section!\n",
732 ictx->sect_boot = id;
733 ictx->sect_boot_found = 1;
737 if (!ictx->sect_head) {
738 ictx->sect_head = sctx;
739 ictx->sect_tail = sctx;
741 ictx->sect_tail->sect = sctx;
742 ictx->sect_tail = sctx;
752 static int sb_build_command_nop(struct sb_image_ctx *ictx)
754 struct sb_section_ctx *sctx = ictx->sect_tail;
755 struct sb_cmd_ctx *cctx;
756 struct sb_command *ccmd;
758 cctx = calloc(1, sizeof(*cctx));
762 ccmd = &cctx->payload;
765 * Construct the command.
767 ccmd->header.checksum = 0x5a;
768 ccmd->header.tag = ROM_NOP_CMD;
770 cctx->size = sizeof(*ccmd);
773 * Append the command to the last section.
775 if (!sctx->cmd_head) {
776 sctx->cmd_head = cctx;
777 sctx->cmd_tail = cctx;
779 sctx->cmd_tail->cmd = cctx;
780 sctx->cmd_tail = cctx;
786 static int sb_build_command_tag(struct sb_image_ctx *ictx,
787 struct sb_cmd_list *cmd)
789 struct sb_section_ctx *sctx = ictx->sect_tail;
790 struct sb_cmd_ctx *cctx;
791 struct sb_command *ccmd;
794 cctx = calloc(1, sizeof(*cctx));
798 ccmd = &cctx->payload;
801 * Prepare the command.
803 /* Check for the LAST keyword. */
804 tok = strtok(cmd->cmd, " ");
805 if (tok && !strcmp(tok, "LAST"))
806 ccmd->header.flags = ROM_TAG_CMD_FLAG_ROM_LAST_TAG;
809 * Construct the command.
811 ccmd->header.checksum = 0x5a;
812 ccmd->header.tag = ROM_TAG_CMD;
814 cctx->size = sizeof(*ccmd);
817 * Append the command to the last section.
819 if (!sctx->cmd_head) {
820 sctx->cmd_head = cctx;
821 sctx->cmd_tail = cctx;
823 sctx->cmd_tail->cmd = cctx;
824 sctx->cmd_tail = cctx;
830 static int sb_build_command_load(struct sb_image_ctx *ictx,
831 struct sb_cmd_list *cmd)
833 struct sb_section_ctx *sctx = ictx->sect_tail;
834 struct sb_cmd_ctx *cctx;
835 struct sb_command *ccmd;
837 int ret, is_ivt = 0, is_dcd = 0;
838 uint32_t dest, dcd = 0;
840 cctx = calloc(1, sizeof(*cctx));
844 ccmd = &cctx->payload;
847 * Prepare the command.
849 tok = strtok(cmd->cmd, " ");
851 fprintf(stderr, "#%i ERR: Missing LOAD address or 'IVT'!\n",
857 /* Check for "IVT" flag. */
858 if (!strcmp(tok, "IVT"))
860 if (!strcmp(tok, "DCD"))
862 if (is_ivt || is_dcd) {
863 tok = strtok(NULL, " ");
865 fprintf(stderr, "#%i ERR: Missing LOAD address!\n",
872 /* Read load destination address. */
873 ret = sb_token_to_long(tok, &dest);
875 fprintf(stderr, "#%i ERR: Incorrect LOAD address!\n",
880 /* Read filename or IVT entrypoint or DCD block ID. */
881 tok = strtok(NULL, " ");
884 "#%i ERR: Missing LOAD filename or IVT ep or DCD block ID!\n",
892 struct sb_ivt_header *ivt;
894 ret = sb_token_to_long(tok, &ivtep);
898 "#%i ERR: Incorrect IVT entry point!\n",
903 ivt = calloc(1, sizeof(*ivt));
909 ivt->header = sb_hab_ivt_header();
913 cctx->data = (uint8_t *)ivt;
914 cctx->length = sizeof(*ivt);
916 struct sb_dcd_ctx *dctx = ictx->dcd_head;
920 ret = sb_token_to_long(tok, &dcdid);
924 "#%i ERR: Incorrect DCD block ID!\n",
930 if (dctx->id == dcdid)
936 fprintf(stderr, "#%i ERR: DCD block %08x not found!\n",
941 asize = roundup(dctx->size, SB_BLOCK_SIZE);
942 payload = calloc(1, asize);
948 memcpy(payload, dctx->payload, dctx->size);
950 cctx->data = payload;
951 cctx->length = asize;
953 /* Set the Load DCD flag. */
954 dcd = ROM_LOAD_CMD_FLAG_DCD_LOAD;
956 /* Regular LOAD of a file. */
957 ret = sb_load_file(cctx, tok);
959 fprintf(stderr, "#%i ERR: Cannot load '%s'!\n",
965 if (cctx->length & (SB_BLOCK_SIZE - 1)) {
966 fprintf(stderr, "#%i ERR: Unaligned payload!\n",
971 * Construct the command.
973 ccmd->header.checksum = 0x5a;
974 ccmd->header.tag = ROM_LOAD_CMD;
975 ccmd->header.flags = dcd;
977 ccmd->load.address = dest;
978 ccmd->load.count = cctx->length;
979 ccmd->load.crc32 = pbl_crc32(0,
980 (const char *)cctx->data,
983 cctx->size = sizeof(*ccmd) + cctx->length;
986 * Append the command to the last section.
988 if (!sctx->cmd_head) {
989 sctx->cmd_head = cctx;
990 sctx->cmd_tail = cctx;
992 sctx->cmd_tail->cmd = cctx;
993 sctx->cmd_tail = cctx;
1003 static int sb_build_command_fill(struct sb_image_ctx *ictx,
1004 struct sb_cmd_list *cmd)
1006 struct sb_section_ctx *sctx = ictx->sect_tail;
1007 struct sb_cmd_ctx *cctx;
1008 struct sb_command *ccmd;
1010 uint32_t address, pattern, length;
1013 cctx = calloc(1, sizeof(*cctx));
1017 ccmd = &cctx->payload;
1020 * Prepare the command.
1022 tok = strtok(cmd->cmd, " ");
1024 fprintf(stderr, "#%i ERR: Missing FILL address!\n",
1030 /* Read fill destination address. */
1031 ret = sb_token_to_long(tok, &address);
1033 fprintf(stderr, "#%i ERR: Incorrect FILL address!\n",
1038 tok = strtok(NULL, " ");
1040 fprintf(stderr, "#%i ERR: Missing FILL pattern!\n",
1046 /* Read fill pattern address. */
1047 ret = sb_token_to_long(tok, &pattern);
1049 fprintf(stderr, "#%i ERR: Incorrect FILL pattern!\n",
1054 tok = strtok(NULL, " ");
1056 fprintf(stderr, "#%i ERR: Missing FILL length!\n",
1062 /* Read fill pattern address. */
1063 ret = sb_token_to_long(tok, &length);
1065 fprintf(stderr, "#%i ERR: Incorrect FILL length!\n",
1071 * Construct the command.
1073 ccmd->header.checksum = 0x5a;
1074 ccmd->header.tag = ROM_FILL_CMD;
1076 ccmd->fill.address = address;
1077 ccmd->fill.count = length;
1078 ccmd->fill.pattern = pattern;
1080 cctx->size = sizeof(*ccmd);
1083 * Append the command to the last section.
1085 if (!sctx->cmd_head) {
1086 sctx->cmd_head = cctx;
1087 sctx->cmd_tail = cctx;
1089 sctx->cmd_tail->cmd = cctx;
1090 sctx->cmd_tail = cctx;
1100 static int sb_build_command_jump_call(struct sb_image_ctx *ictx,
1101 struct sb_cmd_list *cmd,
1102 unsigned int is_call)
1104 struct sb_section_ctx *sctx = ictx->sect_tail;
1105 struct sb_cmd_ctx *cctx;
1106 struct sb_command *ccmd;
1108 uint32_t dest, arg = 0x0;
1111 const char *cmdname = is_call ? "CALL" : "JUMP";
1113 cctx = calloc(1, sizeof(*cctx));
1117 ccmd = &cctx->payload;
1120 * Prepare the command.
1122 tok = strtok(cmd->cmd, " ");
1125 "#%i ERR: Missing %s address or 'HAB'!\n",
1126 cmd->lineno, cmdname);
1131 /* Check for "HAB" flag. */
1132 if (!strcmp(tok, "HAB")) {
1133 hab = is_call ? ROM_CALL_CMD_FLAG_HAB : ROM_JUMP_CMD_FLAG_HAB;
1134 tok = strtok(NULL, " ");
1136 fprintf(stderr, "#%i ERR: Missing %s address!\n",
1137 cmd->lineno, cmdname);
1142 /* Read load destination address. */
1143 ret = sb_token_to_long(tok, &dest);
1145 fprintf(stderr, "#%i ERR: Incorrect %s address!\n",
1146 cmd->lineno, cmdname);
1150 tok = strtok(NULL, " ");
1152 ret = sb_token_to_long(tok, &arg);
1155 "#%i ERR: Incorrect %s argument!\n",
1156 cmd->lineno, cmdname);
1162 * Construct the command.
1164 ccmd->header.checksum = 0x5a;
1165 ccmd->header.tag = is_call ? ROM_CALL_CMD : ROM_JUMP_CMD;
1166 ccmd->header.flags = hab;
1168 ccmd->call.address = dest;
1169 ccmd->call.argument = arg;
1171 cctx->size = sizeof(*ccmd);
1174 * Append the command to the last section.
1176 if (!sctx->cmd_head) {
1177 sctx->cmd_head = cctx;
1178 sctx->cmd_tail = cctx;
1180 sctx->cmd_tail->cmd = cctx;
1181 sctx->cmd_tail = cctx;
1191 static int sb_build_command_jump(struct sb_image_ctx *ictx,
1192 struct sb_cmd_list *cmd)
1194 return sb_build_command_jump_call(ictx, cmd, 0);
1197 static int sb_build_command_call(struct sb_image_ctx *ictx,
1198 struct sb_cmd_list *cmd)
1200 return sb_build_command_jump_call(ictx, cmd, 1);
1203 static int sb_build_command_mode(struct sb_image_ctx *ictx,
1204 struct sb_cmd_list *cmd)
1206 struct sb_section_ctx *sctx = ictx->sect_tail;
1207 struct sb_cmd_ctx *cctx;
1208 struct sb_command *ccmd;
1212 uint32_t mode = 0xffffffff;
1214 cctx = calloc(1, sizeof(*cctx));
1218 ccmd = &cctx->payload;
1221 * Prepare the command.
1223 tok = strtok(cmd->cmd, " ");
1225 fprintf(stderr, "#%i ERR: Missing MODE boot mode argument!\n",
1231 for (i = 0; i < ARRAY_SIZE(modetable); i++) {
1232 if (!strcmp(tok, modetable[i].name)) {
1233 mode = modetable[i].mode;
1237 if (!modetable[i].altname)
1240 if (!strcmp(tok, modetable[i].altname)) {
1241 mode = modetable[i].mode;
1246 if (mode == 0xffffffff) {
1247 fprintf(stderr, "#%i ERR: Invalid MODE boot mode argument!\n",
1254 * Construct the command.
1256 ccmd->header.checksum = 0x5a;
1257 ccmd->header.tag = ROM_MODE_CMD;
1259 ccmd->mode.mode = mode;
1261 cctx->size = sizeof(*ccmd);
1264 * Append the command to the last section.
1266 if (!sctx->cmd_head) {
1267 sctx->cmd_head = cctx;
1268 sctx->cmd_tail = cctx;
1270 sctx->cmd_tail->cmd = cctx;
1271 sctx->cmd_tail = cctx;
1281 static int sb_prefill_image_header(struct sb_image_ctx *ictx)
1283 struct sb_boot_image_header *hdr = &ictx->payload;
1285 /* Fill signatures */
1286 memcpy(hdr->signature1, "STMP", 4);
1287 memcpy(hdr->signature2, "sgtl", 4);
1289 /* SB Image version 1.1 */
1290 hdr->major_version = SB_VERSION_MAJOR;
1291 hdr->minor_version = SB_VERSION_MINOR;
1293 /* Boot image major version */
1294 hdr->product_version.major = htons(0x999);
1295 hdr->product_version.minor = htons(0x999);
1296 hdr->product_version.revision = htons(0x999);
1297 /* Boot image major version */
1298 hdr->component_version.major = htons(0x999);
1299 hdr->component_version.minor = htons(0x999);
1300 hdr->component_version.revision = htons(0x999);
1302 /* Drive tag must be 0x0 for i.MX23 */
1305 hdr->header_blocks =
1306 sizeof(struct sb_boot_image_header) / SB_BLOCK_SIZE;
1307 hdr->section_header_size =
1308 sizeof(struct sb_sections_header) / SB_BLOCK_SIZE;
1309 hdr->timestamp_us = sb_get_timestamp() * 1000000;
1311 hdr->flags = ictx->display_progress ?
1312 SB_IMAGE_FLAG_DISPLAY_PROGRESS : 0;
1314 /* FIXME -- We support only default key */
1320 static int sb_postfill_image_header(struct sb_image_ctx *ictx)
1322 struct sb_boot_image_header *hdr = &ictx->payload;
1323 struct sb_section_ctx *sctx = ictx->sect_head;
1324 uint32_t kd_size, sections_blocks;
1325 EVP_MD_CTX *md_ctx = EVP_MD_CTX_new();
1327 /* The main SB header size in blocks. */
1328 hdr->image_blocks = hdr->header_blocks;
1330 /* Size of the key dictionary, which has single zero entry. */
1331 kd_size = hdr->key_count * sizeof(struct sb_key_dictionary_key);
1332 hdr->image_blocks += kd_size / SB_BLOCK_SIZE;
1334 /* Now count the payloads. */
1335 hdr->section_count = ictx->sect_count;
1337 hdr->image_blocks += sctx->size / SB_BLOCK_SIZE;
1341 if (!ictx->sect_boot_found) {
1342 fprintf(stderr, "ERR: No bootable section selected!\n");
1343 EVP_CIPHER_CTX_free(md_ctx);
1346 hdr->first_boot_section_id = ictx->sect_boot;
1348 /* The n * SB section size in blocks. */
1349 sections_blocks = hdr->section_count * hdr->section_header_size;
1350 hdr->image_blocks += sections_blocks;
1352 /* Key dictionary offset. */
1353 hdr->key_dictionary_block = hdr->header_blocks + sections_blocks;
1355 /* Digest of the whole image. */
1356 hdr->image_blocks += 2;
1358 /* Pointer past the dictionary. */
1359 hdr->first_boot_tag_block =
1360 hdr->key_dictionary_block + kd_size / SB_BLOCK_SIZE;
1362 /* Compute header digest. */
1363 EVP_MD_CTX_init(&md_ctx);
1365 EVP_DigestInit(&md_ctx, EVP_sha1());
1366 EVP_DigestUpdate(&md_ctx, hdr->signature1,
1367 sizeof(struct sb_boot_image_header) -
1368 sizeof(hdr->digest));
1369 EVP_DigestFinal(&md_ctx, hdr->digest, NULL);
1371 EVP_CIPHER_CTX_free(md_ctx);
1375 static int sb_fixup_sections_and_tags(struct sb_image_ctx *ictx)
1377 /* Fixup the placement of sections. */
1378 struct sb_boot_image_header *ihdr = &ictx->payload;
1379 struct sb_section_ctx *sctx = ictx->sect_head;
1380 struct sb_sections_header *shdr;
1381 struct sb_cmd_ctx *cctx;
1382 struct sb_command *ccmd;
1383 uint32_t offset = ihdr->first_boot_tag_block;
1386 shdr = &sctx->payload;
1388 /* Fill in the section TAG offset. */
1389 shdr->section_offset = offset + 1;
1390 offset += shdr->section_size;
1392 /* Section length is measured from the TAG block. */
1393 shdr->section_size--;
1395 /* Fixup the TAG command. */
1396 cctx = sctx->cmd_head;
1398 ccmd = &cctx->payload;
1399 if (ccmd->header.tag == ROM_TAG_CMD) {
1400 ccmd->tag.section_number = shdr->section_number;
1401 ccmd->tag.section_length = shdr->section_size;
1402 ccmd->tag.section_flags = shdr->section_flags;
1405 /* Update the command checksum. */
1406 ccmd->header.checksum = sb_command_checksum(ccmd);
1417 static int sb_parse_line(struct sb_image_ctx *ictx, struct sb_cmd_list *cmd)
1420 char *line = cmd->cmd;
1424 /* Analyze the identifier on this line first. */
1425 tok = strtok_r(line, " ", &rptr);
1426 if (!tok || (strlen(tok) == 0)) {
1427 fprintf(stderr, "#%i ERR: Invalid line!\n", cmd->lineno);
1433 /* set DISPLAY_PROGRESS flag */
1434 if (!strcmp(tok, "DISPLAYPROGRESS")) {
1435 ictx->display_progress = 1;
1440 if (!strcmp(tok, "DCD")) {
1441 ictx->in_section = 0;
1443 sb_build_dcd(ictx, cmd);
1448 if (!strcmp(tok, "SECTION")) {
1449 ictx->in_section = 1;
1451 sb_build_section(ictx, cmd);
1455 if (!ictx->in_section && !ictx->in_dcd) {
1456 fprintf(stderr, "#%i ERR: Data outside of a section!\n",
1461 if (ictx->in_section) {
1462 /* Section commands */
1463 if (!strcmp(tok, "NOP")) {
1464 ret = sb_build_command_nop(ictx);
1465 } else if (!strcmp(tok, "TAG")) {
1466 ret = sb_build_command_tag(ictx, cmd);
1467 } else if (!strcmp(tok, "LOAD")) {
1468 ret = sb_build_command_load(ictx, cmd);
1469 } else if (!strcmp(tok, "FILL")) {
1470 ret = sb_build_command_fill(ictx, cmd);
1471 } else if (!strcmp(tok, "JUMP")) {
1472 ret = sb_build_command_jump(ictx, cmd);
1473 } else if (!strcmp(tok, "CALL")) {
1474 ret = sb_build_command_call(ictx, cmd);
1475 } else if (!strcmp(tok, "MODE")) {
1476 ret = sb_build_command_mode(ictx, cmd);
1479 "#%i ERR: Unsupported instruction '%s'!\n",
1483 } else if (ictx->in_dcd) {
1485 uint32_t ilen = '1';
1487 tok = strtok_r(tok, ".", &lptr);
1488 if (!tok || (strlen(tok) == 0) || (lptr && strlen(lptr) != 1)) {
1489 fprintf(stderr, "#%i ERR: Invalid line!\n",
1495 (lptr[0] != '1' && lptr[0] != '2' && lptr[0] != '4')) {
1496 fprintf(stderr, "#%i ERR: Invalid instruction width!\n",
1502 ilen = lptr[0] - '1';
1505 if (!strcmp(tok, "WRITE")) {
1506 ret = sb_build_dcd_block(ictx, cmd,
1507 SB_DCD_WRITE | ilen);
1508 } else if (!strcmp(tok, "ANDC")) {
1509 ret = sb_build_dcd_block(ictx, cmd,
1510 SB_DCD_ANDC | ilen);
1511 } else if (!strcmp(tok, "ORR")) {
1512 ret = sb_build_dcd_block(ictx, cmd,
1514 } else if (!strcmp(tok, "EQZ")) {
1515 ret = sb_build_dcd_block(ictx, cmd,
1516 SB_DCD_CHK_EQZ | ilen);
1517 } else if (!strcmp(tok, "EQ")) {
1518 ret = sb_build_dcd_block(ictx, cmd,
1519 SB_DCD_CHK_EQ | ilen);
1520 } else if (!strcmp(tok, "NEQ")) {
1521 ret = sb_build_dcd_block(ictx, cmd,
1522 SB_DCD_CHK_NEQ | ilen);
1523 } else if (!strcmp(tok, "NEZ")) {
1524 ret = sb_build_dcd_block(ictx, cmd,
1525 SB_DCD_CHK_NEZ | ilen);
1526 } else if (!strcmp(tok, "NOOP")) {
1527 ret = sb_build_dcd_block(ictx, cmd, SB_DCD_NOOP);
1530 "#%i ERR: Unsupported instruction '%s'!\n",
1535 fprintf(stderr, "#%i ERR: Unsupported instruction '%s'!\n",
1541 * Here we have at least one section with one command, otherwise we
1542 * would have failed already higher above.
1544 * FIXME -- should the updating happen here ?
1546 if (ictx->in_section && !ret) {
1547 ictx->sect_tail->size += ictx->sect_tail->cmd_tail->size;
1548 ictx->sect_tail->payload.section_size =
1549 ictx->sect_tail->size / SB_BLOCK_SIZE;
1555 static int sb_load_cmdfile(struct sb_image_ctx *ictx)
1557 struct sb_cmd_list cmd;
1564 fp = fopen(ictx->cfg_filename, "r");
1568 while ((rlen = getline(&line, &len, fp)) > 0) {
1569 memset(&cmd, 0, sizeof(cmd));
1571 /* Strip the trailing newline. */
1572 line[rlen - 1] = '\0';
1576 cmd.lineno = lineno++;
1578 sb_parse_line(ictx, &cmd);
1589 fprintf(stderr, "ERR: Failed to load file \"%s\"\n",
1590 ictx->cfg_filename);
1594 static int sb_build_tree_from_cfg(struct sb_image_ctx *ictx)
1598 ret = sb_load_cmdfile(ictx);
1602 ret = sb_prefill_image_header(ictx);
1606 ret = sb_postfill_image_header(ictx);
1610 ret = sb_fixup_sections_and_tags(ictx);
1617 static int sb_verify_image_header(struct sb_image_ctx *ictx,
1618 FILE *fp, long fsize)
1620 /* Verify static fields in the image header. */
1621 struct sb_boot_image_header *hdr = &ictx->payload;
1622 const char *stat[2] = { "[PASS]", "[FAIL]" };
1625 unsigned char digest[20];
1626 EVP_MD_CTX *md_ctx = EVP_MD_CTX_new();
1629 /* Start image-wide crypto. */
1630 EVP_MD_CTX_init(&ictx->md_ctx);
1631 EVP_DigestInit(&ictx->md_ctx, EVP_sha1());
1633 soprintf(ictx, "---------- Verifying SB Image Header ----------\n");
1635 size = fread(&ictx->payload, 1, sizeof(ictx->payload), fp);
1636 if (size != sizeof(ictx->payload)) {
1637 fprintf(stderr, "ERR: SB image header too short!\n");
1638 EVP_CIPHER_CTX_free(md_ctx);
1642 /* Compute header digest. */
1643 EVP_MD_CTX_init(&md_ctx);
1644 EVP_DigestInit(&md_ctx, EVP_sha1());
1645 EVP_DigestUpdate(&md_ctx, hdr->signature1,
1646 sizeof(struct sb_boot_image_header) -
1647 sizeof(hdr->digest));
1648 EVP_DigestFinal(&md_ctx, digest, NULL);
1649 EVP_CIPHER_CTX_free(md_ctx);
1651 sb_aes_init(ictx, NULL, 1);
1652 sb_encrypt_sb_header(ictx);
1654 if (memcmp(digest, hdr->digest, 20))
1656 soprintf(ictx, "%s Image header checksum: %s\n", stat[!!ret],
1657 ret ? "BAD" : "OK");
1661 if (memcmp(hdr->signature1, "STMP", 4) ||
1662 memcmp(hdr->signature2, "sgtl", 4))
1664 soprintf(ictx, "%s Signatures: '%.4s' '%.4s'\n",
1665 stat[!!ret], hdr->signature1, hdr->signature2);
1669 if ((hdr->major_version != SB_VERSION_MAJOR) ||
1670 ((hdr->minor_version != 1) && (hdr->minor_version != 2)))
1672 soprintf(ictx, "%s Image version: v%i.%i\n", stat[!!ret],
1673 hdr->major_version, hdr->minor_version);
1677 ret = sb_get_time(hdr->timestamp_us / 1000000, &tm);
1679 "%s Creation time: %02i:%02i:%02i %02i/%02i/%04i\n",
1680 stat[!!ret], tm.tm_hour, tm.tm_min, tm.tm_sec,
1681 tm.tm_mday, tm.tm_mon, tm.tm_year + 2000);
1685 soprintf(ictx, "%s Product version: %x.%x.%x\n", stat[0],
1686 ntohs(hdr->product_version.major),
1687 ntohs(hdr->product_version.minor),
1688 ntohs(hdr->product_version.revision));
1689 soprintf(ictx, "%s Component version: %x.%x.%x\n", stat[0],
1690 ntohs(hdr->component_version.major),
1691 ntohs(hdr->component_version.minor),
1692 ntohs(hdr->component_version.revision));
1694 if (hdr->flags & ~SB_IMAGE_FLAGS_MASK)
1696 soprintf(ictx, "%s Image flags: %s\n", stat[!!ret],
1697 hdr->flags & SB_IMAGE_FLAG_DISPLAY_PROGRESS ?
1698 "Display_progress" : "");
1702 if (hdr->drive_tag != 0)
1704 soprintf(ictx, "%s Drive tag: %i\n", stat[!!ret],
1709 sz = sizeof(struct sb_boot_image_header) / SB_BLOCK_SIZE;
1710 if (hdr->header_blocks != sz)
1712 soprintf(ictx, "%s Image header size (blocks): %i\n", stat[!!ret],
1713 hdr->header_blocks);
1717 sz = sizeof(struct sb_sections_header) / SB_BLOCK_SIZE;
1718 if (hdr->section_header_size != sz)
1720 soprintf(ictx, "%s Section header size (blocks): %i\n", stat[!!ret],
1721 hdr->section_header_size);
1725 soprintf(ictx, "%s Sections count: %i\n", stat[!!ret],
1726 hdr->section_count);
1727 soprintf(ictx, "%s First bootable section %i\n", stat[!!ret],
1728 hdr->first_boot_section_id);
1730 if (hdr->image_blocks != fsize / SB_BLOCK_SIZE)
1732 soprintf(ictx, "%s Image size (blocks): %i\n", stat[!!ret],
1737 sz = hdr->header_blocks + hdr->section_header_size * hdr->section_count;
1738 if (hdr->key_dictionary_block != sz)
1740 soprintf(ictx, "%s Key dict offset (blocks): %i\n", stat[!!ret],
1741 hdr->key_dictionary_block);
1745 if (hdr->key_count != 1)
1747 soprintf(ictx, "%s Number of encryption keys: %i\n", stat[!!ret],
1752 sz = hdr->header_blocks + hdr->section_header_size * hdr->section_count;
1753 sz += hdr->key_count *
1754 sizeof(struct sb_key_dictionary_key) / SB_BLOCK_SIZE;
1755 if (hdr->first_boot_tag_block != (unsigned)sz)
1757 soprintf(ictx, "%s First TAG block (blocks): %i\n", stat[!!ret],
1758 hdr->first_boot_tag_block);
1765 static void sb_decrypt_tag(struct sb_image_ctx *ictx,
1766 struct sb_cmd_ctx *cctx)
1768 EVP_MD_CTX *md_ctx = &ictx->md_ctx;
1769 struct sb_command *cmd = &cctx->payload;
1771 sb_aes_crypt(ictx, (uint8_t *)&cctx->c_payload,
1772 (uint8_t *)&cctx->payload, sizeof(*cmd));
1773 EVP_DigestUpdate(md_ctx, &cctx->c_payload, sizeof(*cmd));
1776 static int sb_verify_command(struct sb_image_ctx *ictx,
1777 struct sb_cmd_ctx *cctx, FILE *fp,
1778 unsigned long *tsize)
1780 struct sb_command *ccmd = &cctx->payload;
1781 unsigned long size, asize;
1782 char *csum, *flag = "";
1785 uint8_t csn, csc = ccmd->header.checksum;
1786 ccmd->header.checksum = 0x5a;
1787 csn = sb_command_checksum(ccmd);
1788 ccmd->header.checksum = csc;
1794 csum = ret ? "checksum BAD" : "checksum OK";
1796 switch (ccmd->header.tag) {
1798 soprintf(ictx, " NOOP # %s\n", csum);
1801 if (ccmd->header.flags & ROM_TAG_CMD_FLAG_ROM_LAST_TAG)
1803 soprintf(ictx, " TAG %s # %s\n", flag, csum);
1804 sb_aes_reinit(ictx, 0);
1807 soprintf(ictx, " LOAD addr=0x%08x length=0x%08x # %s\n",
1808 ccmd->load.address, ccmd->load.count, csum);
1810 cctx->length = ccmd->load.count;
1811 asize = roundup(cctx->length, SB_BLOCK_SIZE);
1812 cctx->data = malloc(asize);
1816 size = fread(cctx->data, 1, asize, fp);
1817 if (size != asize) {
1819 "ERR: SB LOAD command payload too short!\n");
1825 EVP_DigestUpdate(&ictx->md_ctx, cctx->data, asize);
1826 sb_aes_crypt(ictx, cctx->data, cctx->data, asize);
1828 if (ccmd->load.crc32 != pbl_crc32(0,
1829 (const char *)cctx->data,
1832 "ERR: SB LOAD command payload CRC32 invalid!\n");
1838 " FILL addr=0x%08x length=0x%08x pattern=0x%08x # %s\n",
1839 ccmd->fill.address, ccmd->fill.count,
1840 ccmd->fill.pattern, csum);
1843 if (ccmd->header.flags & ROM_JUMP_CMD_FLAG_HAB)
1846 " JUMP%s addr=0x%08x r0_arg=0x%08x # %s\n",
1847 flag, ccmd->fill.address, ccmd->jump.argument, csum);
1850 if (ccmd->header.flags & ROM_CALL_CMD_FLAG_HAB)
1853 " CALL%s addr=0x%08x r0_arg=0x%08x # %s\n",
1854 flag, ccmd->fill.address, ccmd->jump.argument, csum);
1857 for (i = 0; i < ARRAY_SIZE(modetable); i++) {
1858 if (ccmd->mode.mode == modetable[i].mode) {
1859 soprintf(ictx, " MODE %s # %s\n",
1860 modetable[i].name, csum);
1864 fprintf(stderr, " MODE !INVALID! # %s\n", csum);
1871 static int sb_verify_commands(struct sb_image_ctx *ictx,
1872 struct sb_section_ctx *sctx, FILE *fp)
1874 unsigned long size, tsize = 0;
1875 struct sb_cmd_ctx *cctx;
1878 sb_aes_reinit(ictx, 0);
1880 while (tsize < sctx->size) {
1881 cctx = calloc(1, sizeof(*cctx));
1884 if (!sctx->cmd_head) {
1885 sctx->cmd_head = cctx;
1886 sctx->cmd_tail = cctx;
1888 sctx->cmd_tail->cmd = cctx;
1889 sctx->cmd_tail = cctx;
1892 size = fread(&cctx->c_payload, 1, sizeof(cctx->c_payload), fp);
1893 if (size != sizeof(cctx->c_payload)) {
1894 fprintf(stderr, "ERR: SB command header too short!\n");
1900 sb_decrypt_tag(ictx, cctx);
1902 ret = sb_verify_command(ictx, cctx, fp, &tsize);
1910 static int sb_verify_sections_cmds(struct sb_image_ctx *ictx, FILE *fp)
1912 struct sb_boot_image_header *hdr = &ictx->payload;
1913 struct sb_sections_header *shdr;
1916 struct sb_section_ctx *sctx;
1918 char *bootable = "";
1920 soprintf(ictx, "----- Verifying SB Sections and Commands -----\n");
1922 for (i = 0; i < hdr->section_count; i++) {
1923 sctx = calloc(1, sizeof(*sctx));
1926 if (!ictx->sect_head) {
1927 ictx->sect_head = sctx;
1928 ictx->sect_tail = sctx;
1930 ictx->sect_tail->sect = sctx;
1931 ictx->sect_tail = sctx;
1934 size = fread(&sctx->payload, 1, sizeof(sctx->payload), fp);
1935 if (size != sizeof(sctx->payload)) {
1936 fprintf(stderr, "ERR: SB section header too short!\n");
1941 size = fread(&ictx->sb_dict_key, 1, sizeof(ictx->sb_dict_key), fp);
1942 if (size != sizeof(ictx->sb_dict_key)) {
1943 fprintf(stderr, "ERR: SB key dictionary too short!\n");
1947 sb_encrypt_sb_sections_header(ictx);
1948 sb_aes_reinit(ictx, 0);
1949 sb_decrypt_key_dictionary_key(ictx);
1951 sb_aes_reinit(ictx, 0);
1953 sctx = ictx->sect_head;
1955 shdr = &sctx->payload;
1957 if (shdr->section_flags & SB_SECTION_FLAG_BOOTABLE) {
1959 bootable = " BOOTABLE";
1962 sctx->size = (shdr->section_size * SB_BLOCK_SIZE) +
1963 sizeof(struct sb_command);
1964 soprintf(ictx, "SECTION 0x%x%s # size = %i bytes\n",
1965 shdr->section_number, bootable, sctx->size);
1967 if (shdr->section_flags & ~SB_SECTION_FLAG_BOOTABLE)
1968 fprintf(stderr, " WARN: Unknown section flag(s) %08x\n",
1969 shdr->section_flags);
1971 if ((shdr->section_flags & SB_SECTION_FLAG_BOOTABLE) &&
1972 (hdr->first_boot_section_id != shdr->section_number)) {
1974 " WARN: Bootable section does ID not match image header ID!\n");
1977 ret = sb_verify_commands(ictx, sctx, fp);
1986 * check if the first TAG command is at sctx->section_offset
1991 static int sb_verify_image_end(struct sb_image_ctx *ictx,
1992 FILE *fp, off_t filesz)
1999 soprintf(ictx, "------------- Verifying image end -------------\n");
2001 size = fread(digest, 1, sizeof(digest), fp);
2002 if (size != sizeof(digest)) {
2003 fprintf(stderr, "ERR: SB key dictionary too short!\n");
2008 if (pos != filesz) {
2009 fprintf(stderr, "ERR: Trailing data past the image!\n");
2013 /* Check the image digest. */
2014 EVP_DigestFinal(&ictx->md_ctx, ictx->digest, NULL);
2016 /* Decrypt the image digest from the input image. */
2017 sb_aes_reinit(ictx, 0);
2018 sb_aes_crypt(ictx, digest, digest, sizeof(digest));
2020 /* Check all of 20 bytes of the SHA1 hash. */
2021 ret = memcmp(digest, ictx->digest, 20) ? -EINVAL : 0;
2024 soprintf(ictx, "[FAIL] Full-image checksum: BAD\n");
2026 soprintf(ictx, "[PASS] Full-image checksum: OK\n");
2032 static int sb_build_tree_from_img(struct sb_image_ctx *ictx)
2038 if (!ictx->input_filename) {
2039 fprintf(stderr, "ERR: Missing filename!\n");
2043 fp = fopen(ictx->input_filename, "r");
2047 ret = fseek(fp, 0, SEEK_END);
2051 filesize = ftell(fp);
2055 ret = fseek(fp, 0, SEEK_SET);
2059 if (filesize < (signed)sizeof(ictx->payload)) {
2060 fprintf(stderr, "ERR: File too short!\n");
2064 if (filesize & (SB_BLOCK_SIZE - 1)) {
2065 fprintf(stderr, "ERR: The file is not aligned!\n");
2069 /* Load and verify image header */
2070 ret = sb_verify_image_header(ictx, fp, filesize);
2074 /* Load and verify sections and commands */
2075 ret = sb_verify_sections_cmds(ictx, fp);
2079 ret = sb_verify_image_end(ictx, fp, filesize);
2086 soprintf(ictx, "-------------------- Result -------------------\n");
2087 soprintf(ictx, "Verification %s\n", ret ? "FAILED" : "PASSED");
2089 /* Stop the encryption session. */
2090 sb_aes_deinit(&ictx->cipher_ctx);
2098 fprintf(stderr, "ERR: Failed to load file \"%s\"\n",
2099 ictx->input_filename);
2103 static void sb_free_image(struct sb_image_ctx *ictx)
2105 struct sb_section_ctx *sctx = ictx->sect_head, *s_head;
2106 struct sb_dcd_ctx *dctx = ictx->dcd_head, *d_head;
2107 struct sb_cmd_ctx *cctx, *c_head;
2111 c_head = sctx->cmd_head;
2115 c_head = c_head->cmd;
2128 free(d_head->payload);
2134 * MXSSB-MKIMAGE glue code.
2136 static int mxsimage_check_image_types(uint8_t type)
2138 if (type == IH_TYPE_MXSIMAGE)
2139 return EXIT_SUCCESS;
2141 return EXIT_FAILURE;
2144 static void mxsimage_set_header(void *ptr, struct stat *sbuf, int ifd,
2145 struct image_tool_params *params)
2149 int mxsimage_check_params(struct image_tool_params *params)
2153 if (!strlen(params->imagename)) {
2155 "Error: %s - Configuration file not specified, it is needed for mxsimage generation\n",
2162 * XIP is not allowed and verify that incompatible
2163 * parameters are not sent at the same time
2164 * For example, if list is required a data image must not be provided
2166 return (params->dflag && (params->fflag || params->lflag)) ||
2167 (params->fflag && (params->dflag || params->lflag)) ||
2168 (params->lflag && (params->dflag || params->fflag)) ||
2169 (params->xflag) || !(strlen(params->imagename));
2172 static int mxsimage_verify_print_header(char *file, int silent)
2175 struct sb_image_ctx ctx;
2177 memset(&ctx, 0, sizeof(ctx));
2179 ctx.input_filename = file;
2180 ctx.silent_dump = silent;
2182 ret = sb_build_tree_from_img(&ctx);
2183 sb_free_image(&ctx);
2189 static int mxsimage_verify_header(unsigned char *ptr, int image_size,
2190 struct image_tool_params *params)
2192 struct sb_boot_image_header *hdr;
2197 hdr = (struct sb_boot_image_header *)ptr;
2200 * Check if the header contains the MXS image signatures,
2201 * if so, do a full-image verification.
2203 if (memcmp(hdr->signature1, "STMP", 4) ||
2204 memcmp(hdr->signature2, "sgtl", 4))
2207 imagefile = params->imagefile;
2209 return mxsimage_verify_print_header(params->imagefile, 1);
2212 static void mxsimage_print_header(const void *hdr)
2215 mxsimage_verify_print_header(imagefile, 0);
2218 static int sb_build_image(struct sb_image_ctx *ictx,
2219 struct image_type_params *tparams)
2221 struct sb_boot_image_header *sb_header = &ictx->payload;
2222 struct sb_section_ctx *sctx;
2223 struct sb_cmd_ctx *cctx;
2224 struct sb_command *ccmd;
2225 struct sb_key_dictionary_key *sb_dict_key = &ictx->sb_dict_key;
2227 uint8_t *image, *iptr;
2229 /* Calculate image size. */
2230 uint32_t size = sizeof(*sb_header) +
2231 ictx->sect_count * sizeof(struct sb_sections_header) +
2232 sizeof(*sb_dict_key) + sizeof(ictx->digest);
2234 sctx = ictx->sect_head;
2240 image = malloc(size);
2245 memcpy(iptr, sb_header, sizeof(*sb_header));
2246 iptr += sizeof(*sb_header);
2248 sctx = ictx->sect_head;
2250 memcpy(iptr, &sctx->payload, sizeof(struct sb_sections_header));
2251 iptr += sizeof(struct sb_sections_header);
2255 memcpy(iptr, sb_dict_key, sizeof(*sb_dict_key));
2256 iptr += sizeof(*sb_dict_key);
2258 sctx = ictx->sect_head;
2260 cctx = sctx->cmd_head;
2262 ccmd = &cctx->payload;
2264 memcpy(iptr, &cctx->c_payload, sizeof(cctx->payload));
2265 iptr += sizeof(cctx->payload);
2267 if (ccmd->header.tag == ROM_LOAD_CMD) {
2268 memcpy(iptr, cctx->data, cctx->length);
2269 iptr += cctx->length;
2278 memcpy(iptr, ictx->digest, sizeof(ictx->digest));
2279 iptr += sizeof(ictx->digest);
2281 /* Configure the mkimage */
2282 tparams->hdr = image;
2283 tparams->header_size = size;
2288 static int mxsimage_generate(struct image_tool_params *params,
2289 struct image_type_params *tparams)
2292 struct sb_image_ctx ctx;
2294 /* Do not copy the U-Boot image! */
2295 params->skipcpy = 1;
2297 memset(&ctx, 0, sizeof(ctx));
2299 ctx.cfg_filename = params->imagename;
2300 ctx.output_filename = params->imagefile;
2302 ret = sb_build_tree_from_cfg(&ctx);
2306 ret = sb_encrypt_image(&ctx);
2308 ret = sb_build_image(&ctx, tparams);
2311 sb_free_image(&ctx);
2317 * mxsimage parameters
2321 "Freescale MXS Boot Image support",
2324 mxsimage_check_params,
2325 mxsimage_verify_header,
2326 mxsimage_print_header,
2327 mxsimage_set_header,
2329 mxsimage_check_image_types,
projects / karo-tx-uboot.git / blob