/* * This file is part of the Trezor project, https://trezor.io/ * * Copyright (c) SatoshiLabs * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include STM32_HAL_H #include #include #include #include "py/builtin.h" #include "py/compile.h" #include "py/gc.h" #include "py/mperrno.h" #include "py/nlr.h" #include "py/repl.h" #include "py/runtime.h" #include "py/stackctrl.h" #include "shared/runtime/pyexec.h" #include "ports/stm32/gccollect.h" #include "ports/stm32/pendsv.h" #include "bl_check.h" #include "board_capabilities.h" #include "common.h" #include "compiler_traits.h" #include "display.h" #include "entropy.h" #include "fault_handlers.h" #include "flash.h" #include "image.h" #include "memzero.h" #include "model.h" #include "mpu.h" #include "random_delays.h" #include "rust_ui.h" #include "secure_aes.h" #include TREZOR_BOARD #ifdef USE_RGB_LED #include "rgb_led.h" #endif #ifdef USE_CONSUMPTION_MASK #include "consumption_mask.h" #endif #ifdef USE_DMA2D #ifdef NEW_RENDERING #include "dma2d_bitblt.h" #else #include "dma2d.h" #endif #endif #ifdef USE_BUTTON #include "button.h" #endif #ifdef USE_I2C #include "i2c.h" #endif #ifdef USE_TOUCH #include "touch.h" #endif #ifdef USE_SD_CARD #include "sdcard.h" #endif #ifdef USE_HASH_PROCESSOR #include "hash_processor.h" #endif #ifdef USE_OPTIGA #include "optiga_commands.h" #include "optiga_transport.h" #endif #if defined USE_OPTIGA | defined STM32U5 #include "secret.h" #endif #include "unit_variant.h" #ifdef SYSTEM_VIEW #include "systemview.h" #endif #include "platform.h" #include "rng.h" #include "supervise.h" #ifdef USE_SECP256K1_ZKP #include "zkp_context.h" #endif #ifdef USE_HAPTIC #include "haptic.h" #endif // from util.s extern void shutdown_privileged(void); #ifdef USE_OPTIGA #if !PYOPT #include #if 1 // color log #define OPTIGA_LOG_FORMAT \ "%" PRIu32 " \x1b[35moptiga\x1b[0m \x1b[32mDEBUG\x1b[0m %s: " #else #define OPTIGA_LOG_FORMAT "%" PRIu32 " optiga DEBUG %s: " #endif static void optiga_log_hex(const char *prefix, const uint8_t *data, size_t data_size) { printf(OPTIGA_LOG_FORMAT, hal_ticks_ms() * 1000, prefix); for (size_t i = 0; i < data_size; i++) { printf("%02x", data[i]); } printf("\n"); } #endif #endif int main(void) { svc_init(); random_delays_init(); #ifdef RDI rdi_start(); #endif // reinitialize HAL for Trezor One #if defined TREZOR_MODEL_1 HAL_Init(); #endif #ifdef SYSTEM_VIEW enable_systemview(); #endif #ifdef USE_HASH_PROCESSOR hash_processor_init(); #endif #ifdef USE_DMA2D dma2d_init(); #endif display_init(DISPLAY_RETAIN_CONTENT); #ifdef STM32U5 check_oem_keys(); #endif screen_boot_stage_2(); #if !defined TREZOR_MODEL_1 parse_boardloader_capabilities(); unit_variant_init(); #ifdef STM32U5 secure_aes_init(); #endif #ifdef USE_OPTIGA uint8_t secret[SECRET_OPTIGA_KEY_LEN] = {0}; secbool secret_ok = secret_optiga_get(secret); #endif mpu_config_firmware_initial(); entropy_init(); #if PRODUCTION || BOOTLOADER_QA check_and_replace_bootloader(); #endif // Enable MPU mpu_config_firmware(); #endif // Init peripherals fault_handlers_init(); #if defined TREZOR_MODEL_T set_core_clock(CLOCK_180_MHZ); #endif #ifdef USE_BUTTON button_init(); #endif #ifdef USE_RGB_LED rgb_led_init(); #endif #ifdef USE_CONSUMPTION_MASK consumption_mask_init(); #endif #ifdef USE_I2C i2c_init(); #endif #ifdef USE_TOUCH touch_init(); #endif #ifdef USE_SD_CARD sdcard_init(); #endif #ifdef USE_HAPTIC haptic_init(); #endif #ifdef USE_OPTIGA #if !PYOPT // command log is relatively quiet so we enable it in debug builds optiga_command_set_log_hex(optiga_log_hex); // transport log can be spammy, uncomment if you want it: // optiga_transport_set_log_hex(optiga_log_hex); #endif optiga_init(); if (sectrue == secret_ok) { // If the shielded connection cannot be established, reset Optiga and // continue without it. In this case, OID_KEY_FIDO and OID_KEY_DEV cannot be // used, which means device and FIDO attestation will not work. if (optiga_sec_chan_handshake(secret, sizeof(secret)) != OPTIGA_SUCCESS) { optiga_soft_reset(); } } memzero(secret, sizeof(secret)); ensure(sectrue * (optiga_open_application() == OPTIGA_SUCCESS), "Cannot initialize optiga."); #endif #if !defined TREZOR_MODEL_1 drop_privileges(); #endif #ifdef USE_SECP256K1_ZKP ensure(sectrue * (zkp_context_init() == 0), NULL); #endif printf("CORE: Preparing stack\n"); // Stack limit should be less than real stack size, so we have a chance // to recover from limit hit. mp_stack_set_top(&_estack); mp_stack_set_limit((char *)&_estack - (char *)&_sstack - 1024); #if MICROPY_ENABLE_PYSTACK static mp_obj_t pystack[1024]; mp_pystack_init(pystack, &pystack[MP_ARRAY_SIZE(pystack)]); #endif // GC init printf("CORE: Starting GC\n"); gc_init(&_heap_start, &_heap_end); // Interpreter init printf("CORE: Starting interpreter\n"); mp_init(); mp_obj_list_init(mp_sys_argv, 0); mp_obj_list_init(mp_sys_path, 0); mp_obj_list_append(mp_sys_path, MP_OBJ_NEW_QSTR(MP_QSTR__dot_frozen)); // Execute the main script printf("CORE: Executing main script\n"); pyexec_frozen_module("main.py"); // Clean up printf("CORE: Main script finished, cleaning up\n"); mp_deinit(); // Python code shouldn't ever exit, avoid black screen if it does error_shutdown("(PE)"); return 0; } // MicroPython default exception handler void __attribute__((noreturn)) nlr_jump_fail(void *val) { error_shutdown("(UE)"); } // MicroPython builtin stubs mp_import_stat_t mp_import_stat(const char *path) { return MP_IMPORT_STAT_NO_EXIST; } mp_obj_t mp_builtin_open(uint n_args, const mp_obj_t *args, mp_map_t *kwargs) { return mp_const_none; } MP_DEFINE_CONST_FUN_OBJ_KW(mp_builtin_open_obj, 1, mp_builtin_open);