| /* Run the boot image. */ |
| |
| #include <assert.h> |
| #include <setjmp.h> |
| #include <stdio.h> |
| #include <stdlib.h> |
| #include <string.h> |
| #include <bootutil/bootutil.h> |
| #include <bootutil/image.h> |
| |
| #include <flash_map_backend/flash_map_backend.h> |
| |
| #include "../../../boot/bootutil/src/bootutil_priv.h" |
| #include "bootsim.h" |
| |
| #ifdef MCUBOOT_ENCRYPT_RSA |
| #include "mbedtls/rsa.h" |
| #include "mbedtls/asn1.h" |
| #endif |
| |
| #ifdef MCUBOOT_ENCRYPT_KW |
| #include "mbedtls/nist_kw.h" |
| #endif |
| |
| #define BOOT_LOG_LEVEL BOOT_LOG_LEVEL_ERROR |
| #include <bootutil/bootutil_log.h> |
| |
| #define ARRAY_SIZE(x) (sizeof(x) / sizeof((x)[0])) |
| |
| extern int sim_flash_erase(uint8_t flash_id, uint32_t offset, uint32_t size); |
| extern int sim_flash_read(uint8_t flash_id, uint32_t offset, uint8_t *dest, |
| uint32_t size); |
| extern int sim_flash_write(uint8_t flash_id, uint32_t offset, const uint8_t *src, |
| uint32_t size); |
| extern uint8_t sim_flash_align(uint8_t flash_id); |
| extern uint8_t sim_flash_erased_val(uint8_t flash_id); |
| |
| static jmp_buf boot_jmpbuf; |
| int flash_counter; |
| |
| int jumped = 0; |
| uint8_t c_asserts = 0; |
| uint8_t c_catch_asserts = 0; |
| |
| #ifdef MCUBOOT_ENCRYPT_RSA |
| static int |
| parse_pubkey(mbedtls_rsa_context *ctx, uint8_t **p, uint8_t *end) |
| { |
| int rc; |
| size_t len; |
| |
| if ((rc = mbedtls_asn1_get_tag(p, end, &len, |
| MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE)) != 0) { |
| return -1; |
| } |
| |
| if (*p + len != end) { |
| return -2; |
| } |
| |
| if ((rc = mbedtls_asn1_get_tag(p, end, &len, |
| MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE)) != 0) { |
| return -3; |
| } |
| |
| *p += len; |
| |
| if ((rc = mbedtls_asn1_get_tag(p, end, &len, MBEDTLS_ASN1_BIT_STRING)) != 0) { |
| return -4; |
| } |
| |
| if (**p != MBEDTLS_ASN1_PRIMITIVE) { |
| return -5; |
| } |
| |
| *p += 1; |
| |
| if ((rc = mbedtls_asn1_get_tag(p, end, &len, |
| MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE)) != 0) { |
| return -6; |
| } |
| |
| if (mbedtls_asn1_get_mpi(p, end, &ctx->N) != 0) { |
| return -7; |
| } |
| |
| if (mbedtls_asn1_get_mpi(p, end, &ctx->E) != 0) { |
| return -8; |
| } |
| |
| ctx->len = mbedtls_mpi_size(&ctx->N); |
| |
| if (*p != end) { |
| return -9; |
| } |
| |
| if (mbedtls_rsa_check_pubkey(ctx) != 0) { |
| return -10; |
| } |
| |
| return 0; |
| } |
| |
| static int |
| fake_rng(void *p_rng, unsigned char *output, size_t len) |
| { |
| size_t i; |
| |
| (void)p_rng; |
| for (i = 0; i < len; i++) { |
| output[i] = (char)i; |
| } |
| |
| return 0; |
| } |
| #endif |
| |
| int mbedtls_platform_set_calloc_free(void * (*calloc_func)(size_t, size_t), |
| void (*free_func)(void *)); |
| |
| int rsa_oaep_encrypt_(const uint8_t *pubkey, unsigned pubkey_len, |
| const uint8_t *seckey, unsigned seckey_len, |
| uint8_t *encbuf) |
| { |
| #ifdef MCUBOOT_ENCRYPT_RSA |
| mbedtls_rsa_context ctx; |
| uint8_t *cp; |
| uint8_t *cpend; |
| int rc; |
| |
| mbedtls_platform_set_calloc_free(calloc, free); |
| |
| mbedtls_rsa_init(&ctx, MBEDTLS_RSA_PKCS_V21, MBEDTLS_MD_SHA256); |
| |
| cp = (uint8_t *)pubkey; |
| cpend = cp + pubkey_len; |
| |
| rc = parse_pubkey(&ctx, &cp, cpend); |
| if (rc) { |
| goto done; |
| } |
| |
| rc = mbedtls_rsa_rsaes_oaep_encrypt(&ctx, fake_rng, NULL, MBEDTLS_RSA_PUBLIC, |
| NULL, 0, seckey_len, seckey, encbuf); |
| if (rc) { |
| goto done; |
| } |
| |
| done: |
| mbedtls_rsa_free(&ctx); |
| return rc; |
| |
| #else |
| (void)pubkey; |
| (void)pubkey_len; |
| (void)seckey; |
| (void)seckey_len; |
| (void)encbuf; |
| return 0; |
| #endif |
| } |
| |
| int kw_encrypt_(const uint8_t *kek, const uint8_t *seckey, uint8_t *encbuf) |
| { |
| #ifdef MCUBOOT_ENCRYPT_KW |
| mbedtls_nist_kw_context kw; |
| size_t olen; |
| int rc; |
| |
| mbedtls_platform_set_calloc_free(calloc, free); |
| |
| mbedtls_nist_kw_init(&kw); |
| |
| rc = mbedtls_nist_kw_setkey(&kw, MBEDTLS_CIPHER_ID_AES, kek, 128, 1); |
| if (rc) { |
| goto done; |
| } |
| |
| rc = mbedtls_nist_kw_wrap(&kw, MBEDTLS_KW_MODE_KW, seckey, 16, encbuf, |
| &olen, 24); |
| |
| done: |
| mbedtls_nist_kw_free(&kw); |
| return rc; |
| |
| #else |
| (void)kek; |
| (void)seckey; |
| (void)encbuf; |
| return 0; |
| #endif |
| } |
| |
| uint8_t flash_area_align(const struct flash_area *area) |
| { |
| return sim_flash_align(area->fa_device_id); |
| } |
| |
| uint8_t flash_area_erased_val(const struct flash_area *area) |
| { |
| return sim_flash_erased_val(area->fa_device_id); |
| } |
| |
| struct area { |
| struct flash_area whole; |
| struct flash_area *areas; |
| uint32_t num_areas; |
| uint8_t id; |
| }; |
| |
| struct area_desc { |
| struct area slots[16]; |
| uint32_t num_slots; |
| }; |
| |
| static struct area_desc *flash_areas; |
| |
| int invoke_boot_go(struct area_desc *adesc) |
| { |
| int res; |
| struct boot_rsp rsp; |
| |
| #if defined(MCUBOOT_SIGN_RSA) |
| mbedtls_platform_set_calloc_free(calloc, free); |
| #endif |
| |
| flash_areas = adesc; |
| if (setjmp(boot_jmpbuf) == 0) { |
| res = boot_go(&rsp); |
| flash_areas = NULL; |
| /* printf("boot_go off: %d (0x%08x)\n", res, rsp.br_image_off); */ |
| return res; |
| } else { |
| flash_areas = NULL; |
| return -0x13579; |
| } |
| } |
| |
| void *os_malloc(size_t size) |
| { |
| // printf("os_malloc 0x%x bytes\n", size); |
| return malloc(size); |
| } |
| |
| int flash_area_id_from_multi_image_slot(int image_index, int slot) |
| { |
| switch (slot) { |
| case 0: return FLASH_AREA_IMAGE_PRIMARY(image_index); |
| case 1: return FLASH_AREA_IMAGE_SECONDARY(image_index); |
| case 2: return FLASH_AREA_IMAGE_SCRATCH; |
| } |
| |
| printf("Image flash area ID not found\n"); |
| return -1; /* flash_area_open will fail on that */ |
| } |
| |
| int flash_area_open(uint8_t id, const struct flash_area **area) |
| { |
| uint32_t i; |
| |
| for (i = 0; i < flash_areas->num_slots; i++) { |
| if (flash_areas->slots[i].id == id) |
| break; |
| } |
| if (i == flash_areas->num_slots) { |
| printf("Unsupported area\n"); |
| abort(); |
| } |
| |
| /* Unsure if this is right, just returning the first area. */ |
| *area = &flash_areas->slots[i].whole; |
| return 0; |
| } |
| |
| void flash_area_close(const struct flash_area *area) |
| { |
| (void)area; |
| } |
| |
| /* |
| * Read/write/erase. Offset is relative from beginning of flash area. |
| */ |
| int flash_area_read(const struct flash_area *area, uint32_t off, void *dst, |
| uint32_t len) |
| { |
| BOOT_LOG_DBG("%s: area=%d, off=%x, len=%x", |
| __func__, area->fa_id, off, len); |
| return sim_flash_read(area->fa_device_id, area->fa_off + off, dst, len); |
| } |
| |
| int flash_area_write(const struct flash_area *area, uint32_t off, const void *src, |
| uint32_t len) |
| { |
| BOOT_LOG_DBG("%s: area=%d, off=%x, len=%x", __func__, |
| area->fa_id, off, len); |
| if (--flash_counter == 0) { |
| jumped++; |
| longjmp(boot_jmpbuf, 1); |
| } |
| return sim_flash_write(area->fa_device_id, area->fa_off + off, src, len); |
| } |
| |
| int flash_area_erase(const struct flash_area *area, uint32_t off, uint32_t len) |
| { |
| BOOT_LOG_DBG("%s: area=%d, off=%x, len=%x", __func__, |
| area->fa_id, off, len); |
| if (--flash_counter == 0) { |
| jumped++; |
| longjmp(boot_jmpbuf, 1); |
| } |
| return sim_flash_erase(area->fa_device_id, area->fa_off + off, len); |
| } |
| |
| int flash_area_read_is_empty(const struct flash_area *area, uint32_t off, |
| void *dst, uint32_t len) |
| { |
| uint8_t i; |
| uint8_t *u8dst; |
| int rc; |
| |
| BOOT_LOG_DBG("%s: area=%d, off=%x, len=%x", __func__, area->fa_id, off, len); |
| |
| rc = sim_flash_read(area->fa_device_id, area->fa_off + off, dst, len); |
| if (rc) { |
| return -1; |
| } |
| |
| for (i = 0, u8dst = (uint8_t *)dst; i < len; i++) { |
| if (u8dst[i] != sim_flash_erased_val(area->fa_device_id)) { |
| return 0; |
| } |
| } |
| |
| return 1; |
| } |
| |
| int flash_area_to_sectors(int idx, int *cnt, struct flash_area *ret) |
| { |
| uint32_t i; |
| struct area *slot; |
| |
| for (i = 0; i < flash_areas->num_slots; i++) { |
| if (flash_areas->slots[i].id == idx) |
| break; |
| } |
| if (i == flash_areas->num_slots) { |
| printf("Unsupported area\n"); |
| abort(); |
| } |
| |
| slot = &flash_areas->slots[i]; |
| |
| if (slot->num_areas > (uint32_t)*cnt) { |
| printf("Too many areas in slot\n"); |
| abort(); |
| } |
| |
| *cnt = slot->num_areas; |
| memcpy(ret, slot->areas, slot->num_areas * sizeof(struct flash_area)); |
| |
| return 0; |
| } |
| |
| int flash_area_get_sectors(int fa_id, uint32_t *count, |
| struct flash_sector *sectors) |
| { |
| uint32_t i; |
| struct area *slot; |
| |
| for (i = 0; i < flash_areas->num_slots; i++) { |
| if (flash_areas->slots[i].id == fa_id) |
| break; |
| } |
| if (i == flash_areas->num_slots) { |
| printf("Unsupported area\n"); |
| abort(); |
| } |
| |
| slot = &flash_areas->slots[i]; |
| |
| if (slot->num_areas > *count) { |
| printf("Too many areas in slot\n"); |
| abort(); |
| } |
| |
| for (i = 0; i < slot->num_areas; i++) { |
| sectors[i].fs_off = slot->areas[i].fa_off - |
| slot->whole.fa_off; |
| sectors[i].fs_size = slot->areas[i].fa_size; |
| } |
| *count = slot->num_areas; |
| |
| return 0; |
| } |
| |
| int flash_area_id_to_multi_image_slot(int image_index, int area_id) |
| { |
| if (area_id == FLASH_AREA_IMAGE_PRIMARY(image_index)) { |
| return 0; |
| } |
| if (area_id == FLASH_AREA_IMAGE_SECONDARY(image_index)) { |
| return 1; |
| } |
| |
| printf("Unsupported image area ID\n"); |
| abort(); |
| } |
| |
| void sim_assert(int x, const char *assertion, const char *file, unsigned int line, const char *function) |
| { |
| if (!(x)) { |
| if (c_catch_asserts) { |
| c_asserts++; |
| } else { |
| BOOT_LOG_ERR("%s:%d: %s: Assertion `%s' failed.", file, line, function, assertion); |
| |
| /* NOTE: if the assert below is triggered, the place where it was originally |
| * asserted is printed by the message above... |
| */ |
| assert(x); |
| } |
| } |
| } |