bl_Alg.c
10.5 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
/*****************************************************************************
* Copyright Statement:
* --------------------
* This software is protected by Copyright and the information contained
* herein is confidential. The software may not be copied and the information
* contained herein may not be used or disclosed except with the written
* permission of MediaTek Inc. (C) 2007
*
* BY OPENING THIS FILE, BUYER HEREBY UNEQUIVOCALLY ACKNOWLEDGES AND AGREES
* THAT THE SOFTWARE/FIRMWARE AND ITS DOCUMENTATIONS ("MEDIATEK SOFTWARE")
* RECEIVED FROM MEDIATEK AND/OR ITS REPRESENTATIVES ARE PROVIDED TO BUYER ON
* AN "AS-IS" BASIS ONLY. MEDIATEK EXPRESSLY DISCLAIMS ANY AND ALL WARRANTIES,
* EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF
* MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NONINFRINGEMENT.
* NEITHER DOES MEDIATEK PROVIDE ANY WARRANTY WHATSOEVER WITH RESPECT TO THE
* SOFTWARE OF ANY THIRD PARTY WHICH MAY BE USED BY, INCORPORATED IN, OR
* SUPPLIED WITH THE MEDIATEK SOFTWARE, AND BUYER AGREES TO LOOK ONLY TO SUCH
* THIRD PARTY FOR ANY WARRANTY CLAIM RELATING THERETO. MEDIATEK SHALL ALSO
* NOT BE RESPONSIBLE FOR ANY MEDIATEK SOFTWARE RELEASES MADE TO BUYER'S
* SPECIFICATION OR TO CONFORM TO A PARTICULAR STANDARD OR OPEN FORUM.
*
* BUYER'S SOLE AND EXCLUSIVE REMEDY AND MEDIATEK'S ENTIRE AND CUMULATIVE
* LIABILITY WITH RESPECT TO THE MEDIATEK SOFTWARE RELEASED HEREUNDER WILL BE,
* AT MEDIATEK'S OPTION, TO REVISE OR REPLACE THE MEDIATEK SOFTWARE AT ISSUE,
* OR REFUND ANY SOFTWARE LICENSE FEES OR SERVICE CHARGE PAID BY BUYER TO
* MEDIATEK FOR SUCH MEDIATEK SOFTWARE AT ISSUE.
*
* THE TRANSACTION CONTEMPLATED HEREUNDER SHALL BE CONSTRUED IN ACCORDANCE
* WITH THE LAWS OF THE STATE OF CALIFORNIA, USA, EXCLUDING ITS CONFLICT OF
* LAWS PRINCIPLES. ANY DISPUTES, CONTROVERSIES OR CLAIMS ARISING THEREOF AND
* RELATED THERETO SHALL BE SETTLED BY ARBITRATION IN SAN FRANCISCO, CA, UNDER
* THE RULES OF THE INTERNATIONAL CHAMBER OF COMMERCE (ICC).
*
*****************************************************************************/
/*****************************************************************************
*
* Filename:
* ---------
* BL_Alg.c
*
* Project:
* --------
* BootLoader
*
* Description:
* ------------
* This Module defines cryptographic algorithm
*
* Author:
* -------
* -------
*
*============================================================================
* HISTORY
* Below this line, this part is controlled by PVCS VM. DO NOT MODIFY!!
*------------------------------------------------------------------------------
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
* removed!
* removed!
* removed!
*
*
*------------------------------------------------------------------------------
* Upper this line, this part is controlled by PVCS VM. DO NOT MODIFY!!
*============================================================================
****************************************************************************/
#include "kal_general_types.h"
#include "kal_public_api.h"
#include "bl_loader.h"
#include "bl_common.h"
#include <string.h>
#if defined(__SECURE_USB_DOWNLOAD__) || defined(__SECURE_UART_DOWNLOAD__) || defined(__CARD_DOWNLOAD__) || defined(__FUNET_ENABLE__)
#include "che_api.h"
#include "sha1.h"
#include "rc4.h"
#include "custom_nvram_sec.h"
//#define _BL_ALG_DEBUG_
//#define _BL_ALG_SKIP_
#if 0
/* under construction !*/
/* under construction !*/
/* under construction !*/
/* under construction !*/
/* under construction !*/
/* under construction !*/
/* under construction !*/
/* under construction !*/
/* under construction !*/
/* under construction !*/
#endif
extern kal_uint32 Image$$EXT_READ_WRITE$$ZI$$Limit;
extern kal_uint32 custom_get_symmetric_key(kal_uint8 *key, kal_uint32 len);
extern kal_uint32 custom_get_asymmetric_key(kal_uint8 *key, kal_uint32 len);
extern kal_bool RSA_Encode(kal_uint32 dest_addr, kal_uint32 src_addr, kal_uint32 len, kal_uint32 key, kal_uint32 key_len);
kal_bool bl_Alg_Hash_Init(void);
kal_bool bl_Alg_Hash_Append(kal_uint32 addr, kal_uint32 len);
kal_bool bl_Alg_Hash_Finish(kal_uint32 digest, kal_uint32 len);
kal_bool bl_Alg_Sym_Decrypt(kal_uint32 dest_addr, kal_uint32 src_addr, kal_uint32 len, kal_uint32 key, kal_uint32 key_len);
kal_bool bl_Alg_Asym_Decrypt(kal_uint32 dest_addr, kal_uint32 src_addr, kal_uint32 len, kal_uint32 key, kal_uint32 key_len);
#endif /* __SECURE_USB_DOWNLOAD__ || __SECURE_UART_DOWNLOAD__ || __CARD_DOWNLOAD__ */
#pragma arm section rodata = "BL_ALG_TABLE"
#if defined(__SECURE_USB_DOWNLOAD__) || defined(__SECURE_UART_DOWNLOAD__)
const T_BL_FUNC_TABLE g_BlFunc_Table =
{
bl_Alg_Hash_Init,
bl_Alg_Hash_Append,
bl_Alg_Hash_Finish,
bl_Alg_Sym_Decrypt,
bl_Alg_Asym_Decrypt,
sizeof(T_BL_FUNC_TABLE),
FUNC_TABLE_ID
};
#else /* __SECURE_USB_DOWNLOAD__ || __SECURE_UART_DOWNLOAD__ */
const T_BL_FUNC_TABLE g_BlFunc_Table;
#endif /* __SECURE_USB_DOWNLOAD__ || __SECURE_UART_DOWNLOAD__ */
#pragma arm section rodata
#pragma arm section code = "BL_ALGORITHM"
#if defined(__SECURE_USB_DOWNLOAD__) || defined(__SECURE_UART_DOWNLOAD__) || defined(__CARD_DOWNLOAD__) || defined(__FUNET_ENABLE__)
static sha1_context hash_context;
kal_bool bl_Alg_Hash_Init(void)
{
#ifdef _BL_ALG_DEBUG_
dbg_print("bl_Alg_Hash_Init\n\r");
#endif /*_BL_ALG_DEBUG_ */
#ifndef _BL_ALG_SKIP_
CHE_sha1_Init(&hash_context);
#endif /* _BL_ALG_SKIP_ */
return KAL_TRUE;
}
kal_bool bl_Alg_Hash_Append(kal_uint32 addr, kal_uint32 len)
{
#ifdef _BL_ALG_DEBUG_
dbg_print("bl_Alg_Hash_Append(%x, %d)\n\r", addr, len);
#endif /*_BL_ALG_DEBUG_ */
#ifndef _BL_ALG_SKIP_
CHE_sha1_append(&hash_context, (kal_uint8 *)addr, (int)len);
#endif /* _BL_ALG_SKIP_ */
return KAL_TRUE;
}
kal_bool bl_Alg_Hash_Finish(kal_uint32 digest, kal_uint32 len)
{
#ifdef _BL_ALG_DEBUG_
dbg_print("bl_Alg_Hash_Finish(%x, %d)\n\r", digest, len);
#endif /*_BL_ALG_DEBUG_ */
#ifndef _BL_ALG_SKIP_
if (len < sizeof(sha1_digest))
{
return KAL_FALSE;
}
CHE_sha1_finish(&hash_context, (kal_uint8 *)digest);
#endif /* _BL_ALG_SKIP_ */
return KAL_TRUE;
}
kal_bool bl_Alg_Sym_Decrypt(kal_uint32 dest_addr, kal_uint32 src_addr, kal_uint32 len, kal_uint32 key, kal_uint32 key_len)
{
RC4_CNXT cnxt;
#ifdef _BL_ALG_DEBUG_
dbg_print("bl_Alg_Sym_Decrypt(%x, %x, %d, %x, %d)\n\r", dest_addr, src_addr, len, key, key_len);
#endif /*_BL_ALG_DEBUG_ */
#ifndef _BL_ALG_SKIP_
che_rc4_set_key((RC4_CNXT *)&cnxt, (kal_uint32)key_len, (kal_uint8 *)key);
//che_rc4((RC4_CNXT *)&cnxt, (kal_uint32)len, (kal_uint8 *)src_addr, (kal_uint8 *)dest_addr);
//che_rc4((kal_uint8 *)src_addr, (int)len, (kal_uint8 *)key, (int)key_len, CHE_MODE_NULL, (kal_uint8 *)dest_addr);
che_rc4(&cnxt, (kal_uint8 *)src_addr, len, (kal_uint8 *)key, key_len, CHE_MODE_NULL, (kal_uint8 *)dest_addr);
#endif /* _BL_ALG_SKIP_ */
return KAL_TRUE;
}
kal_bool bl_Alg_Asym_Decrypt(kal_uint32 dest_addr, kal_uint32 src_addr, kal_uint32 len, kal_uint32 key, kal_uint32 key_len)
{
kal_uint32 Asym_Decrypt_Failed = 0;
#ifdef _BL_ALG_DEBUG_
dbg_print("bl_Alg_Asym_Decrypt(%x, %x, %d, %x, %d)\n\r", dest_addr, src_addr, len, key, key_len);
#endif /*_BL_ALG_DEBUG_ */
#ifndef _BL_ALG_SKIP_
if (RSA_Encode(dest_addr, src_addr, len, key, key_len) != KAL_TRUE)
{
dbg_print("RSA decryption: failed\n\r");
ASSERT(Asym_Decrypt_Failed);
}
#endif /* _BL_ALG_SKIP_ */
return KAL_TRUE;
}
#endif /* __SECURE_USB_DOWNLOAD__ || __SECURE_UART_DOWNLOAD__ || __CARD_DOWNLOAD__ */
kal_uint32 bl_Alg_Copy_Func_Tbl(kal_uint32 dest_addr)
{
#if defined(__SECURE_USB_DOWNLOAD__) || defined(__SECURE_UART_DOWNLOAD__)
#if defined(_NAND_FLASH_BOOTING_) || defined(__EMMC_BOOTING__)
kal_uint32 i;
kal_uint32 *pSrc = (kal_uint32*)(&g_BlFunc_Table);
kal_uint32 *pDst = (kal_uint32*)dest_addr;
for ( i=0; i<(sizeof(g_BlFunc_Table)+3)/4; i++ )
{
*pDst = *pSrc;
pSrc++;
pDst++;
}
#else
dest_addr = (kal_uint32)&g_BlFunc_Table;
#endif /* _NAND_FLASH_BOOTING_ || __EMMC_BOOTING__ */
#if defined(__SV5_ENABLED__)
//Prepare data for DA usage
{
kal_uint32 *pFuncTblAddr = (kal_uint32*) bl_Allocate_BL_DA_SharedData(BL_DA_SHARED_DATA_ID_FUNC_TBL_ADDR, 4);
//Pass the address of func tbl string to DA
*pFuncTblAddr = dest_addr + sizeof(g_BlFunc_Table) - sizeof(g_BlFunc_Table.m_func_table_id);
}
#endif
#endif /* __SECURE_USB_DOWNLOAD__ */
return 0;
}
kal_bool bl_Alg_SignatureVerify(kal_uint32 addr, kal_uint32 len, kal_uint32 sig_addr, kal_uint32 sig_len)
{
#if defined(__SECURE_USB_DOWNLOAD__) || defined(__SECURE_UART_DOWNLOAD__)
kal_uint8 *dest_addr = (kal_uint8 *)addr;
kal_uint8 *sig = (kal_uint8 *)sig_addr;
kal_uint8 *key = (kal_uint8 *)&Image$$EXT_READ_WRITE$$ZI$$Limit;
kal_uint32 key_len;
kal_uint8 hash[20];
char sig_buf[32];
kal_uint32 Sig_Verify_Failed = 0;
#ifdef _BL_ALG_DEBUG_
dbg_print("bl_Alg_SignatureVerify(%x, %d, %x, %d)\n\r", addr, len, sig_addr, sig_len);
#endif /*_BL_ALG_DEBUG_ */
/* Use the customer symmetric key to decrypt the binary image content */
key_len = custom_get_symmetric_key(key, 128);
#ifndef _BL_ALG_SKIP_
ASSERT(key_len > 0);
#endif /* _BL_ALG_SKIP_ */
bl_Alg_Sym_Decrypt((kal_uint32)dest_addr, addr, len, (kal_uint32)key, key_len);
/* Use the customer asymmetric key to decrypt the signature */
key_len = custom_get_asymmetric_key(key, NVRAM_ASYMMETRIC_KEY_MAX_SIZE);
#ifndef _BL_ALG_SKIP_
ASSERT(key_len > 0);
#endif /* _BL_ALG_SKIP_ */
bl_Alg_Asym_Decrypt((kal_uint32)sig_buf, sig_addr, sig_len, (kal_uint32)key, key_len);
/* Calculate the hash value */
bl_Alg_Hash_Init();
bl_Alg_Hash_Append((kal_uint32)dest_addr, len);
bl_Alg_Hash_Finish((kal_uint32)hash, sizeof(hash));
/* Compare the hash value */
if (memcmp(hash, sig_buf, sizeof(hash)) != 0)
{
#ifndef _BL_ALG_SKIP_
ASSERT(Sig_Verify_Failed);
#endif /* _BL_ALG_SKIP_ */
}
#endif /* __SECURE_USB_DOWNLOAD__ || __SECURE_UART_DOWNLOAD__ */
return KAL_TRUE;
}
#pragma arm section code