1
0
mirror of https://github.com/trezor/trezor-firmware.git synced 2024-11-14 03:30:02 +00:00

bootloader: almost complete stage 1

This commit is contained in:
Pavol Rusnak 2017-02-11 16:47:36 +01:00
parent 5bdfbb3469
commit 3d89dc8085
No known key found for this signature in database
GPG Key ID: 91F3B339B9A02A3D
10 changed files with 349 additions and 65 deletions

View File

@ -58,7 +58,7 @@ CFLAGS += -Iboards/$(BOARD)
CFLAGS += -DSTM32_HAL_H='<stm32$(MCU_SERIES)xx_hal.h>'
LDFLAGS = -nostdlib -L $(LD_DIR) -T $(LD_FILE) -Map=$(@:.elf=.map) --cref
LIBS =
LIBS = $(shell $(CC) $(CFLAGS) -print-libgcc-file-name)
# Remove uncalled code from the final image.
CFLAGS += -fdata-sections -ffunction-sections
@ -72,9 +72,6 @@ else
COPT += -Os -DNDEBUG
endif
# uncomment this if you want libgcc
LIBS += $(shell $(CC) $(CFLAGS) -print-libgcc-file-name)
SRC_LIB = $(addprefix lib/,\
libc/string0.c \
)
@ -83,7 +80,7 @@ SRC_C = \
bootloader/basic.c \
bootloader/bootloader.c \
bootloader/crypto.c \
bootloader/header.c \
bootloader/sdcard.c \
bootloader/ui.c \
system_stm32.c \
$(wildcard boards/$(BOARD)/*.c)

View File

@ -1,13 +1,20 @@
#include STM32_HAL_H
#include <string.h>
#include "crypto.h"
#include "ui.h"
#include "display.h"
#include "sdcard.h"
#define STAGE2_SECTOR 4
#define STAGE2_START 0x08010000
#define STAGE2_SIZE (64 * 1024)
void SystemClock_Config(void);
int main(void) {
void periph_init(void)
{
HAL_Init();
SystemClock_Config();
@ -17,23 +24,92 @@ int main(void) {
__GPIOC_CLK_ENABLE();
__GPIOD_CLK_ENABLE();
sdcard_init();
display_init();
display_clear();
display_backlight(255);
}
uint8_t hash[32];
hash_flash(hash);
void check_sdcard()
{
if (!sdcard_is_present()) return;
screen_welcome();
sdcard_power_on();
uint8_t *pubkey = (uint8_t *)"ThisIsJustAFakePublicKeyForTest!";
uint8_t *signature = (uint8_t *)"ThisIsJustAFakeSignatureToTestTheVerifyMechanismInTRZRBootloader";
ed25519_verify(hash, 32, pubkey, signature);
uint64_t cap = sdcard_get_capacity_in_bytes();
if (cap < SDCARD_BLOCK_SIZE + STAGE2_SIZE) {
sdcard_power_off();
return;
}
uint8_t buf[SDCARD_BLOCK_SIZE] __attribute__((aligned(4)));
sdcard_read_blocks(buf, 0, 1);
if (!check_header(buf)) {
sdcard_power_off();
return;
}
// erase STAGE2_SECTOR
HAL_FLASH_Unlock();
FLASH_EraseInitTypeDef EraseInitStruct;
__HAL_FLASH_CLEAR_FLAG(FLASH_FLAG_EOP | FLASH_FLAG_OPERR | FLASH_FLAG_WRPERR |
FLASH_FLAG_PGAERR | FLASH_FLAG_PGPERR | FLASH_FLAG_PGSERR);
EraseInitStruct.TypeErase = TYPEERASE_SECTORS;
EraseInitStruct.VoltageRange = VOLTAGE_RANGE_3; // voltage range needs to be 2.7V to 3.6V
EraseInitStruct.Sector = STAGE2_SECTOR;
EraseInitStruct.NbSectors = 1;
uint32_t SectorError = 0;
if (HAL_FLASHEx_Erase(&EraseInitStruct, &SectorError) != HAL_OK) {
HAL_FLASH_Lock();
sdcard_power_off();
return;
}
// copy stage 2 from SD card to Flash
uint32_t src;
int block = 0;
int offset = 256;
for (int i = 0; i < STAGE2_SIZE / 4; i++) {
memcpy(&src, buf + offset, 4);
if (HAL_FLASH_Program(TYPEPROGRAM_WORD, STAGE2_START + i * 4, src) != HAL_OK) {
break;
}
offset += 4;
if (offset == SDCARD_BLOCK_SIZE) {
offset = 0;
block++;
sdcard_read_blocks(buf, block, 1);
}
}
HAL_FLASH_Lock();
sdcard_power_off();
}
int main(void) {
periph_init();
screen_stage1();
check_sdcard();
if (check_header((const uint8_t *)STAGE2_START)) {
screen_stage2_jump();
// TODO: jump to second stage
}
screen_stage2_invalid();
for (;;) {
display_backlight(255);
HAL_Delay(250);
HAL_Delay(950);
display_backlight(0);
HAL_Delay(250);
HAL_Delay(50);
}
return 0;

View File

@ -1,9 +1,11 @@
#include "crypto.h"
#include <string.h>
#include "sha2.h"
#include "ed25519-donna/ed25519.h"
#include "cmsis/stm32f405xx.h"
#include "crypto.h"
/*
void hash_flash(uint8_t hash[SHA256_DIGEST_LENGTH])
{
sha256_Raw((const uint8_t *)FLASH_BASE, 1024*1024, hash);
@ -13,3 +15,38 @@ bool ed25519_verify(const uint8_t *msg, uint32_t msglen, uint8_t *pubkey, uint8_
{
return (0 == ed25519_sign_open(msg, msglen, *(const ed25519_public_key *)pubkey, *(const ed25519_signature *)signature));
}
*/
bool check_header(const uint8_t *data)
{
uint32_t magic;
memcpy(&magic, data, 4);
if (magic != 0x425A5254) return false; // TRZB
uint32_t hdrlen;
memcpy(&hdrlen, data + 4, 4);
if (hdrlen != 256) return false;
uint32_t expiry;
memcpy(&expiry, data + 8, 4);
if (expiry != 0) return false;
uint32_t codelen;
memcpy(&codelen, data + 12, 4);
if (codelen != 64 * 1024) return false;
uint32_t version;
memcpy(&version, data + 16, 4);
// uint8_t reserved[171];
uint8_t sigidx;
memcpy(&sigidx, data + 0x00BF, 1);
uint8_t sig[64];
memcpy(sig, data + 0x00C0, 64);
// TODO: check signature
return true;
}

View File

@ -4,9 +4,6 @@
#include <stdint.h>
#include <stdbool.h>
#include "sha2.h"
void hash_flash(uint8_t hash[SHA256_DIGEST_LENGTH]);
bool ed25519_verify(const uint8_t *msg, uint32_t msglen, uint8_t *pubkey, uint8_t *signature);
bool check_header(const uint8_t *data);
#endif

View File

@ -1,29 +0,0 @@
#include <string.h>
#include "header.h"
bool read_header(const uint8_t *data, uint32_t *expiry, uint32_t *version, uint8_t *sigidx, uint8_t *sig)
{
uint32_t magic;
memcpy(&magic, data, 4);
if (magic != 0x425A5254) return false; // TRZB
uint32_t hdrlen;
memcpy(&hdrlen, data + 4, 4);
if (hdrlen != 256) return false;
memcpy(expiry, data + 8, 4);
uint32_t codelen;
memcpy(&codelen, data + 12, 4);
if (codelen != 64 * 1024) return false;
memcpy(version, data + 16, 4);
// reserved
memcpy(sigidx, data + 0x00BF, 1);
memcpy(sig, data + 0x00C0, 64);
return true;
}

View File

@ -1,9 +0,0 @@
#ifndef __BOOTLOADER_HEADER_H__
#define __BOOTLOADER_HEADER_H__
#include <stdint.h>
#include <stdbool.h>
bool read_header(const uint8_t *data, uint32_t *expiry, uint32_t *version, uint8_t *sigidx, uint8_t *sig);
#endif

View File

@ -0,0 +1,158 @@
/*
* This file is part of the Micro Python project, http://micropython.org/
*
* The MIT License (MIT)
*
* Copyright (c) 2013, 2014 Damien P. George
*
* Permission is hereby granted, free of charge, to any person obtaining a copy
* of this software and associated documentation files (the "Software"), to deal
* in the Software without restriction, including without limitation the rights
* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
* copies of the Software, and to permit persons to whom the Software is
* furnished to do so, subject to the following conditions:
*
* The above copyright notice and this permission notice shall be included in
* all copies or substantial portions of the Software.
*
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
* THE SOFTWARE.
*/
#include STM32_HAL_H
#include <string.h>
#include "sdcard.h"
#define IRQ_PRI_SDIO 4
#define IRQ_SUBPRI_SDIO 0
static SD_HandleTypeDef sd_handle;
void sdcard_init(void) {
// invalidate the sd_handle
sd_handle.Instance = NULL;
GPIO_InitTypeDef GPIO_InitStructure;
// configure SD GPIO
GPIO_InitStructure.Mode = GPIO_MODE_AF_PP;
GPIO_InitStructure.Pull = GPIO_PULLUP;
GPIO_InitStructure.Speed = GPIO_SPEED_HIGH;
GPIO_InitStructure.Alternate = GPIO_AF12_SDIO;
GPIO_InitStructure.Pin = GPIO_PIN_8 | GPIO_PIN_9 | GPIO_PIN_10 | GPIO_PIN_11 | GPIO_PIN_12;
HAL_GPIO_Init(GPIOC, &GPIO_InitStructure);
GPIO_InitStructure.Pin = GPIO_PIN_2;
HAL_GPIO_Init(GPIOD, &GPIO_InitStructure);
// configure the SD card detect pin
GPIO_InitStructure.Mode = GPIO_MODE_INPUT;
GPIO_InitStructure.Pull = GPIO_PULLUP;
GPIO_InitStructure.Speed = GPIO_SPEED_HIGH;
GPIO_InitStructure.Pin = GPIO_PIN_13;
HAL_GPIO_Init(GPIOC, &GPIO_InitStructure);
}
void HAL_SD_MspInit(SD_HandleTypeDef *hsd) {
// enable SDIO clock
__SDIO_CLK_ENABLE();
// NVIC configuration for SDIO interrupts
HAL_NVIC_SetPriority(SDIO_IRQn, IRQ_PRI_SDIO, IRQ_SUBPRI_SDIO);
HAL_NVIC_EnableIRQ(SDIO_IRQn);
// GPIO have already been initialised by sdcard_init
}
void HAL_SD_MspDeInit(SD_HandleTypeDef *hsd) {
HAL_NVIC_DisableIRQ(SDIO_IRQn);
__SDIO_CLK_DISABLE();
}
bool sdcard_is_present(void) {
return GPIO_PIN_RESET == HAL_GPIO_ReadPin(GPIOC, GPIO_PIN_13);
}
bool sdcard_power_on(void) {
if (!sdcard_is_present()) {
return false;
}
if (sd_handle.Instance) {
return true;
}
// SD device interface configuration
sd_handle.Instance = SDIO;
sd_handle.Init.ClockEdge = SDIO_CLOCK_EDGE_RISING;
sd_handle.Init.ClockBypass = SDIO_CLOCK_BYPASS_DISABLE;
sd_handle.Init.ClockPowerSave = SDIO_CLOCK_POWER_SAVE_ENABLE;
sd_handle.Init.BusWide = SDIO_BUS_WIDE_1B;
sd_handle.Init.HardwareFlowControl = SDIO_HARDWARE_FLOW_CONTROL_DISABLE;
sd_handle.Init.ClockDiv = SDIO_TRANSFER_CLK_DIV;
// init the SD interface, with retry if it's not ready yet
HAL_SD_CardInfoTypedef cardinfo;
for (int retry = 10; HAL_SD_Init(&sd_handle, &cardinfo) != SD_OK; retry--) {
if (retry == 0) {
goto error;
}
HAL_Delay(50);
}
// configure the SD bus width for wide operation
if (HAL_SD_WideBusOperation_Config(&sd_handle, SDIO_BUS_WIDE_4B) != SD_OK) {
HAL_SD_DeInit(&sd_handle);
goto error;
}
return true;
error:
sd_handle.Instance = NULL;
return false;
}
void sdcard_power_off(void) {
if (!sd_handle.Instance) {
return;
}
HAL_SD_DeInit(&sd_handle);
sd_handle.Instance = NULL;
}
uint64_t sdcard_get_capacity_in_bytes(void) {
if (sd_handle.Instance == NULL) {
return 0;
}
HAL_SD_CardInfoTypedef cardinfo;
HAL_SD_Get_CardInfo(&sd_handle, &cardinfo);
return cardinfo.CardCapacity;
}
void SDIO_IRQHandler(void) {
HAL_SD_IRQHandler(&sd_handle);
}
uint32_t sdcard_read_blocks(uint8_t *dest, uint32_t block_num, uint32_t num_blocks) {
// check that SD card is initialised
if (sd_handle.Instance == NULL) {
return SD_ERROR;
}
HAL_SD_ErrorTypedef err = SD_OK;
// check that dest pointer is aligned on a 4-byte boundary
if (((uint32_t)dest & 3) != 0) {
return SD_ERROR;
}
err = HAL_SD_ReadBlocks_BlockNumber(&sd_handle, (uint32_t*)dest, block_num, SDCARD_BLOCK_SIZE, num_blocks);
return err;
}

View File

@ -0,0 +1,42 @@
/*
* This file is part of the Micro Python project, http://micropython.org/
*
* The MIT License (MIT)
*
* Copyright (c) 2013, 2014 Damien P. George
*
* Permission is hereby granted, free of charge, to any person obtaining a copy
* of this software and associated documentation files (the "Software"), to deal
* in the Software without restriction, including without limitation the rights
* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
* copies of the Software, and to permit persons to whom the Software is
* furnished to do so, subject to the following conditions:
*
* The above copyright notice and this permission notice shall be included in
* all copies or substantial portions of the Software.
*
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
* THE SOFTWARE.
*/
#ifndef __BOOTLOADER_SDCARD_H__
#define __BOOTLOADER_SDCARD_H__
#include <stdbool.h>
// this is a fixed size and should not be changed
#define SDCARD_BLOCK_SIZE (512)
void sdcard_init(void);
bool sdcard_is_present(void);
bool sdcard_power_on(void);
void sdcard_power_off(void);
uint64_t sdcard_get_capacity_in_bytes(void);
uint32_t sdcard_read_blocks(uint8_t *dest, uint32_t block_num, uint32_t num_blocks);
#endif

View File

@ -1,10 +1,20 @@
#include "ui.h"
#include "display.h"
#define ui_WHITE 0xFFFF
#define ui_BLACK 0x0000
void screen_welcome(void)
void screen_stage1(void)
{
display_text(0, 240, "bootloader", 10, FONT_MONO, ui_WHITE, ui_BLACK);
display_clear();
display_text(0, 240, "BL stage 1", -1, FONT_MONO, ui_WHITE, ui_BLACK);
}
void screen_stage2_jump(void)
{
display_clear();
display_text(0, 240, "BL stage 2 jump", -1, FONT_MONO, ui_WHITE, ui_BLACK);
}
void screen_stage2_invalid(void)
{
display_clear();
display_text(0, 240, "BL stage 2 invalid", -1, FONT_MONO, ui_WHITE, ui_BLACK);
}

View File

@ -1,6 +1,11 @@
#ifndef __BOOTLOADER_UI_H__
#define __BOOTLOADER_UI_H__
void screen_welcome(void);
#define ui_WHITE 0xFFFF
#define ui_BLACK 0x0000
void screen_stage1(void);
void screen_stage2_jump(void);
void screen_stage2_invalid(void);
#endif