From 397a2ab18e5067ff0c7a5848b1201fb94189fa47 Mon Sep 17 00:00:00 2001
From: Pavol Rusnak <pavol@rusnak.io>
Date: Thu, 22 Apr 2021 20:19:23 +0200
Subject: [PATCH] feat(legacy): make sure that known_bootloader check contains
 the hash of our bundled bootloader

---
 legacy/firmware/bl_check.c |  6 +++---
 legacy/firmware/bl_data.py | 20 ++++++++++++++++++--
 2 files changed, 21 insertions(+), 5 deletions(-)

diff --git a/legacy/firmware/bl_check.c b/legacy/firmware/bl_check.c
index 46e3284a6..809cd2502 100644
--- a/legacy/firmware/bl_check.c
+++ b/legacy/firmware/bl_check.c
@@ -75,9 +75,9 @@ static int known_bootloader(int r, const uint8_t *hash) {
   // note to those verifying these values: bootloader versions above this
   // comment are aligned/padded to 32KiB with trailing 0xFF bytes and versions
   // below are padded with 0x00.
-  //                                       for more info, refer to "make -C
-  //                                       bootloader align" and
-  //                                       "firmware/bl_data.py".
+  //
+  // for more info, refer to "make -C bootloader align" and
+  // "firmware/bl_data.py".
   if (0 ==
       memcmp(hash,
              "\x8c\xe8\xd7\x9e\xdf\x43\x0c\x03\x42\x64\x68\x6c\xa9\xb1\xd7\x8d"
diff --git a/legacy/firmware/bl_data.py b/legacy/firmware/bl_data.py
index c719d29e7..3734825f1 100755
--- a/legacy/firmware/bl_data.py
+++ b/legacy/firmware/bl_data.py
@@ -9,11 +9,27 @@ if len(data) > 32768:
 
 data += b"\x00" * (32768 - len(data))
 
-h = sha256(sha256(data).digest()).digest()
+bh = sha256(sha256(data).digest()).digest()
 
-bl_hash = ", ".join("0x%02x" % x for x in bytearray(h))
+bl_hash = ", ".join("0x%02x" % x for x in bytearray(bh))
 bl_data = ", ".join("0x%02x" % x for x in bytearray(data))
 
 with open("bl_data.h", "wt") as f:
     f.write("static const uint8_t bl_hash[32] = {%s};\n" % bl_hash)
     f.write("static const uint8_t bl_data[32768] = {%s};\n" % bl_data)
+
+# make sure the last item listed in known_bootloader function
+# is our bootloader
+with open("bl_check.c", "rt") as f:
+    hashes = []
+    for l in f.readlines():
+        if not len(l) >= 78 or not l.startswith('             "\\x'):
+            continue
+        l = l[14:78]
+        h = ""
+        for i in range(0, len(l), 4):
+            h += l[i + 2 : i + 4]
+        hashes.append(h)
+    check = hashes[-2] + hashes[-1]
+    if check != bh.hex():
+        raise Exception("bootloader hash not listed in bl_check.c")