u-boot/arch/arm/mach-tegra/tegra20/bct.c

// SPDX-License-Identifier: GPL-2.0-or-later
/*
 * Copyright (c) 2022, Ramin <raminterex@yahoo.com>
 * Copyright (c) 2022, Svyatoslav Ryhel <clamor95@gmail.com>
 */

#include <common.h>
#include <command.h>
#include <log.h>
#include <asm/arch-tegra/crypto.h>
#include "bct.h"
#include "uboot_aes.h"

/* Device with "sbk burned: false" will expose zero key */
const u8 nosbk[AES128_KEY_LENGTH] = { 0 };

/*
 * @param  bct		boot config table start in RAM
 * @param  ect		bootloader start in RAM
 * @param  ebt_size	bootloader file size in bytes
 * Return: 0, or 1 if failed
 */
static int bct_patch(u8 *bct, u8 *ebt, u32 ebt_size)
{
	struct nvboot_config_table *bct_tbl = NULL;
	u8 ebt_hash[AES128_KEY_LENGTH] = { 0 };
	u8 sbk[AES128_KEY_LENGTH] = { 0 };
	u8 *bct_hash = bct;
	bool encrypted;
	int ret;

	bct += BCT_HASH;

	ebt_size = roundup(ebt_size, EBT_ALIGNMENT);

	memcpy(sbk, (u8 *)(bct + BCT_LENGTH),
	       NVBOOT_CMAC_AES_HASH_LENGTH * 4);

	encrypted = memcmp(&sbk, &nosbk, AES128_KEY_LENGTH);

	if (encrypted) {
		ret = decrypt_data_block(bct, BCT_LENGTH, sbk);
		if (ret)
			return 1;

		ret = encrypt_data_block(ebt, ebt_size, sbk);
		if (ret)
			return 1;
	}

	ret = sign_enc_data_block(ebt, ebt_size, ebt_hash, sbk);
	if (ret)
		return 1;

	bct_tbl = (struct nvboot_config_table *)bct;

	memcpy((u8 *)&bct_tbl->bootloader[0].crypto_hash,
	       ebt_hash, NVBOOT_CMAC_AES_HASH_LENGTH * 4);
	bct_tbl->bootloader[0].entry_point = CONFIG_SPL_TEXT_BASE;
	bct_tbl->bootloader[0].load_addr = CONFIG_SPL_TEXT_BASE;
	bct_tbl->bootloader[0].length = ebt_size;

	if (encrypted) {
		ret = encrypt_data_block(bct, BCT_LENGTH, sbk);
		if (ret)
			return 1;
	}

	ret = sign_enc_data_block(bct, BCT_LENGTH, bct_hash, sbk);
	if (ret)
		return 1;

	return 0;
}

static int do_ebtupdate(struct cmd_tbl *cmdtp, int flag, int argc,
			char *const argv[])
{
	u32 bct_addr = hextoul(argv[1], NULL);
	u32 ebt_addr = hextoul(argv[2], NULL);
	u32 ebt_size = hextoul(argv[3], NULL);

	return bct_patch((u8 *)bct_addr, (u8 *)ebt_addr, ebt_size);
}

U_BOOT_CMD(ebtupdate,	4,	0,	do_ebtupdate,
	   "update bootloader on re-crypted Tegra20 devices",
	   ""
);
ARM: tegra20: implement BCT patching This function allows updating bootloader from u-boot on production devices without need in host PC. Be aware! It works only with re-crypt BCT. Tested-by: Robert Eckelmann <longnoserob@gmail.com> # ASUS TF101 T20 Signed-off-by: Ramin Khonsari <raminterex@yahoo.com> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> Signed-off-by: Tom <twarren@nvidia.com> 2023-02-14 17:35:38 +00:00			`// SPDX-License-Identifier: GPL-2.0-or-later`
			`/*`
			`* Copyright (c) 2022, Ramin <raminterex@yahoo.com>`
			`* Copyright (c) 2022, Svyatoslav Ryhel <clamor95@gmail.com>`
			`*/`

			`#include <common.h>`
			`#include <command.h>`
			`#include <log.h>`
			`#include <asm/arch-tegra/crypto.h>`
			`#include "bct.h"`
			`#include "uboot_aes.h"`

ARM: tegra20: tegra30: support EBTUPDATE on non-encrypted devices Re-crypt support was extended to devices without burnt SBK. In case SBK is not set, place from where it is read is filled with zeroes. This patch adds support for ebtupdate function to detect nosbk device and avoid crypto operations for it. Tested-by: Maksim Kurnosenko <asusx2@mail.ru> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> 2023-10-03 06:36:44 +00:00			`/* Device with "sbk burned: false" will expose zero key */`
			`const u8 nosbk[AES128_KEY_LENGTH] = { 0 };`

ARM: tegra20: implement BCT patching This function allows updating bootloader from u-boot on production devices without need in host PC. Be aware! It works only with re-crypt BCT. Tested-by: Robert Eckelmann <longnoserob@gmail.com> # ASUS TF101 T20 Signed-off-by: Ramin Khonsari <raminterex@yahoo.com> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> Signed-off-by: Tom <twarren@nvidia.com> 2023-02-14 17:35:38 +00:00			`/*`
			`* @param bct boot config table start in RAM`
			`* @param ect bootloader start in RAM`
			`* @param ebt_size bootloader file size in bytes`
			`* Return: 0, or 1 if failed`
			`*/`
			`static int bct_patch(u8 bct, u8 ebt, u32 ebt_size)`
			`{`
			`struct nvboot_config_table *bct_tbl = NULL;`
			`u8 ebt_hash[AES128_KEY_LENGTH] = { 0 };`
			`u8 sbk[AES128_KEY_LENGTH] = { 0 };`
			`u8 *bct_hash = bct;`
ARM: tegra20: tegra30: support EBTUPDATE on non-encrypted devices Re-crypt support was extended to devices without burnt SBK. In case SBK is not set, place from where it is read is filled with zeroes. This patch adds support for ebtupdate function to detect nosbk device and avoid crypto operations for it. Tested-by: Maksim Kurnosenko <asusx2@mail.ru> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> 2023-10-03 06:36:44 +00:00			`bool encrypted;`
ARM: tegra20: implement BCT patching This function allows updating bootloader from u-boot on production devices without need in host PC. Be aware! It works only with re-crypt BCT. Tested-by: Robert Eckelmann <longnoserob@gmail.com> # ASUS TF101 T20 Signed-off-by: Ramin Khonsari <raminterex@yahoo.com> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> Signed-off-by: Tom <twarren@nvidia.com> 2023-02-14 17:35:38 +00:00			`int ret;`

			`bct += BCT_HASH;`

ARM: tegra20: tegra30: support EBTUPDATE on non-encrypted devices Re-crypt support was extended to devices without burnt SBK. In case SBK is not set, place from where it is read is filled with zeroes. This patch adds support for ebtupdate function to detect nosbk device and avoid crypto operations for it. Tested-by: Maksim Kurnosenko <asusx2@mail.ru> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> 2023-10-03 06:36:44 +00:00			`ebt_size = roundup(ebt_size, EBT_ALIGNMENT);`

ARM: tegra20: implement BCT patching This function allows updating bootloader from u-boot on production devices without need in host PC. Be aware! It works only with re-crypt BCT. Tested-by: Robert Eckelmann <longnoserob@gmail.com> # ASUS TF101 T20 Signed-off-by: Ramin Khonsari <raminterex@yahoo.com> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> Signed-off-by: Tom <twarren@nvidia.com> 2023-02-14 17:35:38 +00:00			`memcpy(sbk, (u8 *)(bct + BCT_LENGTH),`
			`NVBOOT_CMAC_AES_HASH_LENGTH * 4);`

ARM: tegra20: tegra30: support EBTUPDATE on non-encrypted devices Re-crypt support was extended to devices without burnt SBK. In case SBK is not set, place from where it is read is filled with zeroes. This patch adds support for ebtupdate function to detect nosbk device and avoid crypto operations for it. Tested-by: Maksim Kurnosenko <asusx2@mail.ru> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> 2023-10-03 06:36:44 +00:00			`encrypted = memcmp(&sbk, &nosbk, AES128_KEY_LENGTH);`
ARM: tegra20: implement BCT patching This function allows updating bootloader from u-boot on production devices without need in host PC. Be aware! It works only with re-crypt BCT. Tested-by: Robert Eckelmann <longnoserob@gmail.com> # ASUS TF101 T20 Signed-off-by: Ramin Khonsari <raminterex@yahoo.com> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> Signed-off-by: Tom <twarren@nvidia.com> 2023-02-14 17:35:38 +00:00
ARM: tegra20: tegra30: support EBTUPDATE on non-encrypted devices Re-crypt support was extended to devices without burnt SBK. In case SBK is not set, place from where it is read is filled with zeroes. This patch adds support for ebtupdate function to detect nosbk device and avoid crypto operations for it. Tested-by: Maksim Kurnosenko <asusx2@mail.ru> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> 2023-10-03 06:36:44 +00:00			`if (encrypted) {`
			`ret = decrypt_data_block(bct, BCT_LENGTH, sbk);`
			`if (ret)`
			`return 1;`
ARM: tegra20: implement BCT patching This function allows updating bootloader from u-boot on production devices without need in host PC. Be aware! It works only with re-crypt BCT. Tested-by: Robert Eckelmann <longnoserob@gmail.com> # ASUS TF101 T20 Signed-off-by: Ramin Khonsari <raminterex@yahoo.com> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> Signed-off-by: Tom <twarren@nvidia.com> 2023-02-14 17:35:38 +00:00
ARM: tegra20: tegra30: support EBTUPDATE on non-encrypted devices Re-crypt support was extended to devices without burnt SBK. In case SBK is not set, place from where it is read is filled with zeroes. This patch adds support for ebtupdate function to detect nosbk device and avoid crypto operations for it. Tested-by: Maksim Kurnosenko <asusx2@mail.ru> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> 2023-10-03 06:36:44 +00:00			`ret = encrypt_data_block(ebt, ebt_size, sbk);`
			`if (ret)`
			`return 1;`
			`}`
ARM: tegra20: implement BCT patching This function allows updating bootloader from u-boot on production devices without need in host PC. Be aware! It works only with re-crypt BCT. Tested-by: Robert Eckelmann <longnoserob@gmail.com> # ASUS TF101 T20 Signed-off-by: Ramin Khonsari <raminterex@yahoo.com> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> Signed-off-by: Tom <twarren@nvidia.com> 2023-02-14 17:35:38 +00:00
			`ret = sign_enc_data_block(ebt, ebt_size, ebt_hash, sbk);`
			`if (ret)`
			`return 1;`

			`bct_tbl = (struct nvboot_config_table *)bct;`

			`memcpy((u8 *)&bct_tbl->bootloader[0].crypto_hash,`
			`ebt_hash, NVBOOT_CMAC_AES_HASH_LENGTH * 4);`
			`bct_tbl->bootloader[0].entry_point = CONFIG_SPL_TEXT_BASE;`
			`bct_tbl->bootloader[0].load_addr = CONFIG_SPL_TEXT_BASE;`
			`bct_tbl->bootloader[0].length = ebt_size;`

ARM: tegra20: tegra30: support EBTUPDATE on non-encrypted devices Re-crypt support was extended to devices without burnt SBK. In case SBK is not set, place from where it is read is filled with zeroes. This patch adds support for ebtupdate function to detect nosbk device and avoid crypto operations for it. Tested-by: Maksim Kurnosenko <asusx2@mail.ru> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> 2023-10-03 06:36:44 +00:00			`if (encrypted) {`
			`ret = encrypt_data_block(bct, BCT_LENGTH, sbk);`
			`if (ret)`
			`return 1;`
			`}`
ARM: tegra20: implement BCT patching This function allows updating bootloader from u-boot on production devices without need in host PC. Be aware! It works only with re-crypt BCT. Tested-by: Robert Eckelmann <longnoserob@gmail.com> # ASUS TF101 T20 Signed-off-by: Ramin Khonsari <raminterex@yahoo.com> Signed-off-by: Svyatoslav Ryhel <clamor95@gmail.com> Signed-off-by: Tom <twarren@nvidia.com> 2023-02-14 17:35:38 +00:00
			`ret = sign_enc_data_block(bct, BCT_LENGTH, bct_hash, sbk);`
			`if (ret)`
			`return 1;`

			`return 0;`
			`}`

			`static int do_ebtupdate(struct cmd_tbl *cmdtp, int flag, int argc,`
			`char *const argv[])`
			`{`
			`u32 bct_addr = hextoul(argv[1], NULL);`
			`u32 ebt_addr = hextoul(argv[2], NULL);`
			`u32 ebt_size = hextoul(argv[3], NULL);`

			`return bct_patch((u8 )bct_addr, (u8 )ebt_addr, ebt_size);`
			`}`

			`U_BOOT_CMD(ebtupdate, 4, 0, do_ebtupdate,`
			`"update bootloader on re-crypted Tegra20 devices",`
			`""`
			`);`