mirror of
https://github.com/brain-hackers/u-boot-brain
synced 2024-07-08 04:06:15 +09:00
399c744b22
Normally, multiple public keys can be provided and U-Boot is not required to use all of them for verification. This is because some images may not be signed, or may be optionally signed. But we still need a mechanism to determine when a key must be used. This feature cannot be implemented in the FIT itself, since anyone could change it to mark a key as optional. The requirement for key verification must go in with the public keys, in a place that is protected from modification. Add a -r option which tells mkimage to mark all keys that it uses for signing as 'required'. If some keys are optional and some are required, run mkimage several times (perhaps with different key directories if some keys are very secret) using the -F flag to update an existing FIT. Signed-off-by: Simon Glass <sjg@chromium.org> Reviewed-by: Marek Vasut <marex@denx.de>
223 lines
5.9 KiB
C
223 lines
5.9 KiB
C
/*
|
|
* (C) Copyright 2008 Semihalf
|
|
*
|
|
* (C) Copyright 2000-2004
|
|
* DENX Software Engineering
|
|
* Wolfgang Denk, wd@denx.de
|
|
*
|
|
* Updated-by: Prafulla Wadaskar <prafulla@marvell.com>
|
|
* FIT image specific code abstracted from mkimage.c
|
|
* some functions added to address abstraction
|
|
*
|
|
* All rights reserved.
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public License as
|
|
* published by the Free Software Foundation; either version 2 of
|
|
* the License, or (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston,
|
|
* MA 02111-1307 USA
|
|
*/
|
|
|
|
#include "mkimage.h"
|
|
#include <image.h>
|
|
#include <u-boot/crc.h>
|
|
|
|
static image_header_t header;
|
|
|
|
static int fit_verify_header (unsigned char *ptr, int image_size,
|
|
struct mkimage_params *params)
|
|
{
|
|
return fdt_check_header ((void *)ptr);
|
|
}
|
|
|
|
static int fit_check_image_types (uint8_t type)
|
|
{
|
|
if (type == IH_TYPE_FLATDT)
|
|
return EXIT_SUCCESS;
|
|
else
|
|
return EXIT_FAILURE;
|
|
}
|
|
|
|
int mmap_fdt(struct mkimage_params *params, const char *fname, void **blobp,
|
|
struct stat *sbuf)
|
|
{
|
|
void *ptr;
|
|
int fd;
|
|
|
|
/* Load FIT blob into memory (we need to write hashes/signatures) */
|
|
fd = open(fname, O_RDWR | O_BINARY);
|
|
|
|
if (fd < 0) {
|
|
fprintf(stderr, "%s: Can't open %s: %s\n",
|
|
params->cmdname, fname, strerror(errno));
|
|
unlink(fname);
|
|
return -1;
|
|
}
|
|
|
|
if (fstat(fd, sbuf) < 0) {
|
|
fprintf(stderr, "%s: Can't stat %s: %s\n",
|
|
params->cmdname, fname, strerror(errno));
|
|
unlink(fname);
|
|
return -1;
|
|
}
|
|
|
|
ptr = mmap(0, sbuf->st_size, PROT_READ|PROT_WRITE, MAP_SHARED, fd, 0);
|
|
if (ptr == MAP_FAILED) {
|
|
fprintf(stderr, "%s: Can't read %s: %s\n",
|
|
params->cmdname, fname, strerror(errno));
|
|
unlink(fname);
|
|
return -1;
|
|
}
|
|
|
|
/* check if ptr has a valid blob */
|
|
if (fdt_check_header(ptr)) {
|
|
fprintf(stderr, "%s: Invalid FIT blob\n", params->cmdname);
|
|
unlink(fname);
|
|
return -1;
|
|
}
|
|
|
|
*blobp = ptr;
|
|
return fd;
|
|
}
|
|
|
|
/**
|
|
* fit_handle_file - main FIT file processing function
|
|
*
|
|
* fit_handle_file() runs dtc to convert .its to .itb, includes
|
|
* binary data, updates timestamp property and calculates hashes.
|
|
*
|
|
* datafile - .its file
|
|
* imagefile - .itb file
|
|
*
|
|
* returns:
|
|
* only on success, otherwise calls exit (EXIT_FAILURE);
|
|
*/
|
|
static int fit_handle_file (struct mkimage_params *params)
|
|
{
|
|
char tmpfile[MKIMAGE_MAX_TMPFILE_LEN];
|
|
char cmd[MKIMAGE_MAX_DTC_CMDLINE_LEN];
|
|
int tfd, destfd = 0;
|
|
void *dest_blob = NULL;
|
|
struct stat sbuf;
|
|
void *ptr;
|
|
off_t destfd_size = 0;
|
|
|
|
/* Flattened Image Tree (FIT) format handling */
|
|
debug ("FIT format handling\n");
|
|
|
|
/* call dtc to include binary properties into the tmp file */
|
|
if (strlen (params->imagefile) +
|
|
strlen (MKIMAGE_TMPFILE_SUFFIX) + 1 > sizeof (tmpfile)) {
|
|
fprintf (stderr, "%s: Image file name (%s) too long, "
|
|
"can't create tmpfile",
|
|
params->imagefile, params->cmdname);
|
|
return (EXIT_FAILURE);
|
|
}
|
|
sprintf (tmpfile, "%s%s", params->imagefile, MKIMAGE_TMPFILE_SUFFIX);
|
|
|
|
/* We either compile the source file, or use the existing FIT image */
|
|
if (params->datafile) {
|
|
/* dtc -I dts -O dtb -p 500 datafile > tmpfile */
|
|
snprintf(cmd, sizeof(cmd), "%s %s %s > %s",
|
|
MKIMAGE_DTC, params->dtc, params->datafile, tmpfile);
|
|
debug("Trying to execute \"%s\"\n", cmd);
|
|
} else {
|
|
snprintf(cmd, sizeof(cmd), "cp %s %s",
|
|
params->imagefile, tmpfile);
|
|
}
|
|
if (system (cmd) == -1) {
|
|
fprintf (stderr, "%s: system(%s) failed: %s\n",
|
|
params->cmdname, cmd, strerror(errno));
|
|
goto err_system;
|
|
}
|
|
|
|
if (params->keydest) {
|
|
destfd = mmap_fdt(params, params->keydest, &dest_blob, &sbuf);
|
|
if (destfd < 0)
|
|
goto err_keydest;
|
|
destfd_size = sbuf.st_size;
|
|
}
|
|
|
|
tfd = mmap_fdt(params, tmpfile, &ptr, &sbuf);
|
|
if (tfd < 0)
|
|
goto err_mmap;
|
|
|
|
/* set hashes for images in the blob */
|
|
if (fit_add_verification_data(params->keydir,
|
|
dest_blob, ptr, params->comment,
|
|
params->require_keys)) {
|
|
fprintf(stderr, "%s Can't add hashes to FIT blob\n",
|
|
params->cmdname);
|
|
goto err_add_hashes;
|
|
}
|
|
|
|
/* for first image creation, add a timestamp at offset 0 i.e., root */
|
|
if (params->datafile && fit_set_timestamp(ptr, 0, sbuf.st_mtime)) {
|
|
fprintf (stderr, "%s: Can't add image timestamp\n",
|
|
params->cmdname);
|
|
goto err_add_timestamp;
|
|
}
|
|
debug ("Added timestamp successfully\n");
|
|
|
|
munmap ((void *)ptr, sbuf.st_size);
|
|
close (tfd);
|
|
if (dest_blob) {
|
|
munmap(dest_blob, destfd_size);
|
|
close(destfd);
|
|
}
|
|
|
|
if (rename (tmpfile, params->imagefile) == -1) {
|
|
fprintf (stderr, "%s: Can't rename %s to %s: %s\n",
|
|
params->cmdname, tmpfile, params->imagefile,
|
|
strerror (errno));
|
|
unlink (tmpfile);
|
|
unlink (params->imagefile);
|
|
return (EXIT_FAILURE);
|
|
}
|
|
return (EXIT_SUCCESS);
|
|
|
|
err_add_timestamp:
|
|
err_add_hashes:
|
|
munmap(ptr, sbuf.st_size);
|
|
err_mmap:
|
|
if (dest_blob)
|
|
munmap(dest_blob, destfd_size);
|
|
err_keydest:
|
|
err_system:
|
|
unlink(tmpfile);
|
|
return -1;
|
|
}
|
|
|
|
static int fit_check_params (struct mkimage_params *params)
|
|
{
|
|
return ((params->dflag && (params->fflag || params->lflag)) ||
|
|
(params->fflag && (params->dflag || params->lflag)) ||
|
|
(params->lflag && (params->dflag || params->fflag)));
|
|
}
|
|
|
|
static struct image_type_params fitimage_params = {
|
|
.name = "FIT Image support",
|
|
.header_size = sizeof(image_header_t),
|
|
.hdr = (void*)&header,
|
|
.verify_header = fit_verify_header,
|
|
.print_header = fit_print_contents,
|
|
.check_image_type = fit_check_image_types,
|
|
.fflag_handle = fit_handle_file,
|
|
.set_header = NULL, /* FIT images use DTB header */
|
|
.check_params = fit_check_params,
|
|
};
|
|
|
|
void init_fit_image_type (void)
|
|
{
|
|
mkimage_register (&fitimage_params);
|
|
}
|