Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 1 | # SPDX-License-Identifier: GPL-2.0+ |
Tom Rini | 10e4779 | 2018-05-06 17:58:06 -0400 | [diff] [blame] | 2 | # Copyright (c) 2016, Google Inc. |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 3 | # |
| 4 | # U-Boot Verified Boot Test |
| 5 | |
| 6 | """ |
| 7 | This tests verified boot in the following ways: |
| 8 | |
| 9 | For image verification: |
| 10 | - Create FIT (unsigned) with mkimage |
| 11 | - Check that verification shows that no keys are verified |
| 12 | - Sign image |
| 13 | - Check that verification shows that a key is now verified |
| 14 | |
| 15 | For configuration verification: |
| 16 | - Corrupt signature and check for failure |
| 17 | - Create FIT (with unsigned configuration) with mkimage |
Simon Glass | d5deca0 | 2016-07-31 17:35:04 -0600 | [diff] [blame] | 18 | - Check that image verification works |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 19 | - Sign the FIT and mark the key as 'required' for verification |
| 20 | - Check that image verification works |
| 21 | - Corrupt the signature |
| 22 | - Check that image verification no-longer works |
| 23 | |
| 24 | Tests run with both SHA1 and SHA256 hashing. |
| 25 | """ |
| 26 | |
Simon Glass | e9eeca8 | 2021-09-19 15:14:48 -0600 | [diff] [blame] | 27 | import os |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 28 | import shutil |
Teddy Reed | e6a4783 | 2018-06-09 11:38:05 -0400 | [diff] [blame] | 29 | import struct |
Simon Glass | 861b504 | 2020-03-18 11:44:05 -0600 | [diff] [blame] | 30 | import pytest |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 31 | import u_boot_utils as util |
Simon Glass | c35df8f | 2020-03-18 11:43:59 -0600 | [diff] [blame] | 32 | import vboot_forge |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 33 | import vboot_evil |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 34 | |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 35 | # Only run the full suite on a few combinations, since it doesn't add any more |
| 36 | # test coverage. |
Simon Glass | a0ba39d | 2020-03-18 11:44:00 -0600 | [diff] [blame] | 37 | TESTDATA = [ |
Simon Glass | e9eeca8 | 2021-09-19 15:14:48 -0600 | [diff] [blame] | 38 | ['sha1-basic', 'sha1', '', None, False, True], |
| 39 | ['sha1-pad', 'sha1', '', '-E -p 0x10000', False, False], |
| 40 | ['sha1-pss', 'sha1', '-pss', None, False, False], |
| 41 | ['sha1-pss-pad', 'sha1', '-pss', '-E -p 0x10000', False, False], |
| 42 | ['sha256-basic', 'sha256', '', None, False, False], |
| 43 | ['sha256-pad', 'sha256', '', '-E -p 0x10000', False, False], |
| 44 | ['sha256-pss', 'sha256', '-pss', None, False, False], |
| 45 | ['sha256-pss-pad', 'sha256', '-pss', '-E -p 0x10000', False, False], |
| 46 | ['sha256-pss-required', 'sha256', '-pss', None, True, False], |
| 47 | ['sha256-pss-pad-required', 'sha256', '-pss', '-E -p 0x10000', True, True], |
Jamin Lin | 5975ad7 | 2022-01-19 16:23:21 +0800 | [diff] [blame] | 48 | ['sha384-basic', 'sha384', '', None, False, False], |
| 49 | ['sha384-pad', 'sha384', '', '-E -p 0x10000', False, False], |
Simon Glass | a0ba39d | 2020-03-18 11:44:00 -0600 | [diff] [blame] | 50 | ] |
| 51 | |
Michal Simek | 6e035ab | 2016-07-18 08:49:08 +0200 | [diff] [blame] | 52 | @pytest.mark.boardspec('sandbox') |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 53 | @pytest.mark.buildconfigspec('fit_signature') |
Stephen Warren | 2079db3 | 2017-09-18 11:11:49 -0600 | [diff] [blame] | 54 | @pytest.mark.requiredtool('dtc') |
| 55 | @pytest.mark.requiredtool('fdtget') |
| 56 | @pytest.mark.requiredtool('fdtput') |
| 57 | @pytest.mark.requiredtool('openssl') |
Simon Glass | e9eeca8 | 2021-09-19 15:14:48 -0600 | [diff] [blame] | 58 | @pytest.mark.parametrize("name,sha_algo,padding,sign_options,required,full_test", |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 59 | TESTDATA) |
Simon Glass | e9eeca8 | 2021-09-19 15:14:48 -0600 | [diff] [blame] | 60 | def test_vboot(u_boot_console, name, sha_algo, padding, sign_options, required, |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 61 | full_test): |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 62 | """Test verified boot signing with mkimage and verification with 'bootm'. |
| 63 | |
| 64 | This works using sandbox only as it needs to update the device tree used |
| 65 | by U-Boot to hold public keys from the signing process. |
| 66 | |
| 67 | The SHA1 and SHA256 tests are combined into a single test since the |
| 68 | key-generation process is quite slow and we want to avoid doing it twice. |
| 69 | """ |
| 70 | def dtc(dts): |
Simon Glass | d5deca0 | 2016-07-31 17:35:04 -0600 | [diff] [blame] | 71 | """Run the device tree compiler to compile a .dts file |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 72 | |
| 73 | The output file will be the same as the input file but with a .dtb |
| 74 | extension. |
| 75 | |
| 76 | Args: |
| 77 | dts: Device tree file to compile. |
| 78 | """ |
| 79 | dtb = dts.replace('.dts', '.dtb') |
Simon Glass | ba8116c | 2016-07-31 17:35:05 -0600 | [diff] [blame] | 80 | util.run_and_log(cons, 'dtc %s %s%s -O dtb ' |
| 81 | '-o %s%s' % (dtc_args, datadir, dts, tmpdir, dtb)) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 82 | |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 83 | def run_bootm(sha_algo, test_type, expect_string, boots, fit=None): |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 84 | """Run a 'bootm' command U-Boot. |
| 85 | |
| 86 | This always starts a fresh U-Boot instance since the device tree may |
| 87 | contain a new public key. |
| 88 | |
| 89 | Args: |
Simon Glass | f223c73 | 2016-07-31 17:35:06 -0600 | [diff] [blame] | 90 | test_type: A string identifying the test type. |
| 91 | expect_string: A string which is expected in the output. |
| 92 | sha_algo: Either 'sha1' or 'sha256', to select the algorithm to |
| 93 | use. |
Tom Rini | b65ce46 | 2016-09-18 09:46:58 -0400 | [diff] [blame] | 94 | boots: A boolean that is True if Linux should boot and False if |
| 95 | we are expected to not boot |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 96 | fit: FIT filename to load and verify |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 97 | """ |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 98 | if not fit: |
| 99 | fit = '%stest.fit' % tmpdir |
Simon Glass | 37c2ce1 | 2016-07-31 17:35:08 -0600 | [diff] [blame] | 100 | cons.restart_uboot() |
Simon Glass | 2a40d83 | 2016-07-31 17:35:07 -0600 | [diff] [blame] | 101 | with cons.log.section('Verified boot %s %s' % (sha_algo, test_type)): |
| 102 | output = cons.run_command_list( |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 103 | ['host load hostfs - 100 %s' % fit, |
Simon Glass | 861b504 | 2020-03-18 11:44:05 -0600 | [diff] [blame] | 104 | 'fdt addr 100', |
| 105 | 'bootm 100']) |
| 106 | assert expect_string in ''.join(output) |
Tom Rini | b65ce46 | 2016-09-18 09:46:58 -0400 | [diff] [blame] | 107 | if boots: |
Simon Glass | 861b504 | 2020-03-18 11:44:05 -0600 | [diff] [blame] | 108 | assert 'sandbox: continuing, as we cannot run' in ''.join(output) |
Philippe Reynes | 1d5ef52 | 2019-09-18 16:04:53 +0200 | [diff] [blame] | 109 | else: |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 110 | assert('sandbox: continuing, as we cannot run' |
| 111 | not in ''.join(output)) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 112 | |
| 113 | def make_fit(its): |
Simon Glass | d5deca0 | 2016-07-31 17:35:04 -0600 | [diff] [blame] | 114 | """Make a new FIT from the .its source file. |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 115 | |
| 116 | This runs 'mkimage -f' to create a new FIT. |
| 117 | |
| 118 | Args: |
Simon Glass | d5deca0 | 2016-07-31 17:35:04 -0600 | [diff] [blame] | 119 | its: Filename containing .its source. |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 120 | """ |
| 121 | util.run_and_log(cons, [mkimage, '-D', dtc_args, '-f', |
| 122 | '%s%s' % (datadir, its), fit]) |
| 123 | |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 124 | def sign_fit(sha_algo, options): |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 125 | """Sign the FIT |
| 126 | |
| 127 | Signs the FIT and writes the signature into it. It also writes the |
| 128 | public key into the dtb. |
Simon Glass | f223c73 | 2016-07-31 17:35:06 -0600 | [diff] [blame] | 129 | |
| 130 | Args: |
| 131 | sha_algo: Either 'sha1' or 'sha256', to select the algorithm to |
| 132 | use. |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 133 | options: Options to provide to mkimage. |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 134 | """ |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 135 | args = [mkimage, '-F', '-k', tmpdir, '-K', dtb, '-r', fit] |
| 136 | if options: |
| 137 | args += options.split(' ') |
Simon Glass | f223c73 | 2016-07-31 17:35:06 -0600 | [diff] [blame] | 138 | cons.log.action('%s: Sign images' % sha_algo) |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 139 | util.run_and_log(cons, args) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 140 | |
Thirupathaiah Annapureddy | 7e703f7 | 2020-08-16 23:01:10 -0700 | [diff] [blame] | 141 | def sign_fit_norequire(sha_algo, options): |
| 142 | """Sign the FIT |
| 143 | |
| 144 | Signs the FIT and writes the signature into it. It also writes the |
| 145 | public key into the dtb. It does not mark key as 'required' in dtb. |
| 146 | |
| 147 | Args: |
| 148 | sha_algo: Either 'sha1' or 'sha256', to select the algorithm to |
| 149 | use. |
| 150 | options: Options to provide to mkimage. |
| 151 | """ |
| 152 | args = [mkimage, '-F', '-k', tmpdir, '-K', dtb, fit] |
| 153 | if options: |
| 154 | args += options.split(' ') |
| 155 | cons.log.action('%s: Sign images' % sha_algo) |
| 156 | util.run_and_log(cons, args) |
| 157 | |
Teddy Reed | e6a4783 | 2018-06-09 11:38:05 -0400 | [diff] [blame] | 158 | def replace_fit_totalsize(size): |
| 159 | """Replace FIT header's totalsize with something greater. |
| 160 | |
| 161 | The totalsize must be less than or equal to FIT_SIGNATURE_MAX_SIZE. |
| 162 | If the size is greater, the signature verification should return false. |
| 163 | |
| 164 | Args: |
| 165 | size: The new totalsize of the header |
| 166 | |
| 167 | Returns: |
| 168 | prev_size: The previous totalsize read from the header |
| 169 | """ |
| 170 | total_size = 0 |
| 171 | with open(fit, 'r+b') as handle: |
| 172 | handle.seek(4) |
| 173 | total_size = handle.read(4) |
| 174 | handle.seek(4) |
| 175 | handle.write(struct.pack(">I", size)) |
| 176 | return struct.unpack(">I", total_size)[0] |
| 177 | |
Simon Glass | b4a2f6a | 2020-03-18 11:44:07 -0600 | [diff] [blame] | 178 | def create_rsa_pair(name): |
| 179 | """Generate a new RSA key paid and certificate |
| 180 | |
| 181 | Args: |
| 182 | name: Name of of the key (e.g. 'dev') |
| 183 | """ |
| 184 | public_exponent = 65537 |
Jamin Lin | 5975ad7 | 2022-01-19 16:23:21 +0800 | [diff] [blame] | 185 | |
| 186 | if sha_algo == "sha384": |
| 187 | rsa_keygen_bits = 3072 |
| 188 | else: |
| 189 | rsa_keygen_bits = 2048 |
| 190 | |
Simon Glass | b4a2f6a | 2020-03-18 11:44:07 -0600 | [diff] [blame] | 191 | util.run_and_log(cons, 'openssl genpkey -algorithm RSA -out %s%s.key ' |
Jamin Lin | 5975ad7 | 2022-01-19 16:23:21 +0800 | [diff] [blame] | 192 | '-pkeyopt rsa_keygen_bits:%d ' |
Simon Glass | b4a2f6a | 2020-03-18 11:44:07 -0600 | [diff] [blame] | 193 | '-pkeyopt rsa_keygen_pubexp:%d' % |
Jamin Lin | 5975ad7 | 2022-01-19 16:23:21 +0800 | [diff] [blame] | 194 | (tmpdir, name, rsa_keygen_bits, public_exponent)) |
Simon Glass | b4a2f6a | 2020-03-18 11:44:07 -0600 | [diff] [blame] | 195 | |
| 196 | # Create a certificate containing the public key |
| 197 | util.run_and_log(cons, 'openssl req -batch -new -x509 -key %s%s.key ' |
| 198 | '-out %s%s.crt' % (tmpdir, name, tmpdir, name)) |
| 199 | |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 200 | def test_with_algo(sha_algo, padding, sign_options): |
Simon Glass | d5deca0 | 2016-07-31 17:35:04 -0600 | [diff] [blame] | 201 | """Test verified boot with the given hash algorithm. |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 202 | |
| 203 | This is the main part of the test code. The same procedure is followed |
| 204 | for both hashing algorithms. |
| 205 | |
| 206 | Args: |
Simon Glass | f223c73 | 2016-07-31 17:35:06 -0600 | [diff] [blame] | 207 | sha_algo: Either 'sha1' or 'sha256', to select the algorithm to |
| 208 | use. |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 209 | padding: Either '' or '-pss', to select the padding to use for the |
| 210 | rsa signature algorithm. |
| 211 | sign_options: Options to mkimage when signing a fit image. |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 212 | """ |
Simon Glass | dc3ab7e | 2016-07-31 17:35:02 -0600 | [diff] [blame] | 213 | # Compile our device tree files for kernel and U-Boot. These are |
| 214 | # regenerated here since mkimage will modify them (by adding a |
| 215 | # public key) below. |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 216 | dtc('sandbox-kernel.dts') |
| 217 | dtc('sandbox-u-boot.dts') |
| 218 | |
| 219 | # Build the FIT, but don't sign anything yet |
Simon Glass | f223c73 | 2016-07-31 17:35:06 -0600 | [diff] [blame] | 220 | cons.log.action('%s: Test FIT with signed images' % sha_algo) |
Simon Glass | 861b504 | 2020-03-18 11:44:05 -0600 | [diff] [blame] | 221 | make_fit('sign-images-%s%s.its' % (sha_algo, padding)) |
Tom Rini | b65ce46 | 2016-09-18 09:46:58 -0400 | [diff] [blame] | 222 | run_bootm(sha_algo, 'unsigned images', 'dev-', True) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 223 | |
| 224 | # Sign images with our dev keys |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 225 | sign_fit(sha_algo, sign_options) |
Tom Rini | b65ce46 | 2016-09-18 09:46:58 -0400 | [diff] [blame] | 226 | run_bootm(sha_algo, 'signed images', 'dev+', True) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 227 | |
| 228 | # Create a fresh .dtb without the public keys |
| 229 | dtc('sandbox-u-boot.dts') |
| 230 | |
Simon Glass | f223c73 | 2016-07-31 17:35:06 -0600 | [diff] [blame] | 231 | cons.log.action('%s: Test FIT with signed configuration' % sha_algo) |
Simon Glass | 861b504 | 2020-03-18 11:44:05 -0600 | [diff] [blame] | 232 | make_fit('sign-configs-%s%s.its' % (sha_algo, padding)) |
Tom Rini | b65ce46 | 2016-09-18 09:46:58 -0400 | [diff] [blame] | 233 | run_bootm(sha_algo, 'unsigned config', '%s+ OK' % sha_algo, True) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 234 | |
| 235 | # Sign images with our dev keys |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 236 | sign_fit(sha_algo, sign_options) |
Tom Rini | b65ce46 | 2016-09-18 09:46:58 -0400 | [diff] [blame] | 237 | run_bootm(sha_algo, 'signed config', 'dev+', True) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 238 | |
Simon Glass | f223c73 | 2016-07-31 17:35:06 -0600 | [diff] [blame] | 239 | cons.log.action('%s: Check signed config on the host' % sha_algo) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 240 | |
Simon Glass | f411a89 | 2020-03-18 11:43:58 -0600 | [diff] [blame] | 241 | util.run_and_log(cons, [fit_check_sign, '-f', fit, '-k', dtb]) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 242 | |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 243 | if full_test: |
Simon Glass | b823daa | 2021-02-15 17:08:12 -0700 | [diff] [blame] | 244 | # Make sure that U-Boot checks that the config is in the list of |
| 245 | # hashed nodes. If it isn't, a security bypass is possible. |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 246 | ffit = '%stest.forged.fit' % tmpdir |
| 247 | shutil.copyfile(fit, ffit) |
| 248 | with open(ffit, 'rb') as fd: |
| 249 | root, strblock = vboot_forge.read_fdt(fd) |
| 250 | root, strblock = vboot_forge.manipulate(root, strblock) |
| 251 | with open(ffit, 'w+b') as fd: |
| 252 | vboot_forge.write_fdt(root, strblock, fd) |
| 253 | util.run_and_log_expect_exception( |
| 254 | cons, [fit_check_sign, '-f', ffit, '-k', dtb], |
| 255 | 1, 'Failed to verify required signature') |
| 256 | |
| 257 | run_bootm(sha_algo, 'forged config', 'Bad Data Hash', False, ffit) |
Simon Glass | c35df8f | 2020-03-18 11:43:59 -0600 | [diff] [blame] | 258 | |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 259 | # Try adding an evil root node. This should be detected. |
| 260 | efit = '%stest.evilf.fit' % tmpdir |
| 261 | shutil.copyfile(fit, efit) |
| 262 | vboot_evil.add_evil_node(fit, efit, evil_kernel, 'fakeroot') |
| 263 | |
| 264 | util.run_and_log_expect_exception( |
| 265 | cons, [fit_check_sign, '-f', efit, '-k', dtb], |
| 266 | 1, 'Failed to verify required signature') |
Simon Glass | 19d2c02 | 2021-02-15 17:08:11 -0700 | [diff] [blame] | 267 | run_bootm(sha_algo, 'evil fakeroot', 'Bad FIT kernel image format', |
| 268 | False, efit) |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 269 | |
| 270 | # Try adding an @ to the kernel node name. This should be detected. |
| 271 | efit = '%stest.evilk.fit' % tmpdir |
| 272 | shutil.copyfile(fit, efit) |
| 273 | vboot_evil.add_evil_node(fit, efit, evil_kernel, 'kernel@') |
| 274 | |
Simon Glass | b823daa | 2021-02-15 17:08:12 -0700 | [diff] [blame] | 275 | msg = 'Signature checking prevents use of unit addresses (@) in nodes' |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 276 | util.run_and_log_expect_exception( |
| 277 | cons, [fit_check_sign, '-f', efit, '-k', dtb], |
Simon Glass | b823daa | 2021-02-15 17:08:12 -0700 | [diff] [blame] | 278 | 1, msg) |
| 279 | run_bootm(sha_algo, 'evil kernel@', msg, False, efit) |
Simon Glass | c35df8f | 2020-03-18 11:43:59 -0600 | [diff] [blame] | 280 | |
| 281 | # Create a new properly signed fit and replace header bytes |
| 282 | make_fit('sign-configs-%s%s.its' % (sha_algo, padding)) |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 283 | sign_fit(sha_algo, sign_options) |
Teddy Reed | e6a4783 | 2018-06-09 11:38:05 -0400 | [diff] [blame] | 284 | bcfg = u_boot_console.config.buildconfig |
| 285 | max_size = int(bcfg.get('config_fit_signature_max_size', 0x10000000), 0) |
| 286 | existing_size = replace_fit_totalsize(max_size + 1) |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 287 | run_bootm(sha_algo, 'Signed config with bad hash', 'Bad Data Hash', |
| 288 | False) |
Teddy Reed | e6a4783 | 2018-06-09 11:38:05 -0400 | [diff] [blame] | 289 | cons.log.action('%s: Check overflowed FIT header totalsize' % sha_algo) |
| 290 | |
| 291 | # Replace with existing header bytes |
| 292 | replace_fit_totalsize(existing_size) |
| 293 | run_bootm(sha_algo, 'signed config', 'dev+', True) |
| 294 | cons.log.action('%s: Check default FIT header totalsize' % sha_algo) |
| 295 | |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 296 | # Increment the first byte of the signature, which should cause failure |
Simon Glass | ba8116c | 2016-07-31 17:35:05 -0600 | [diff] [blame] | 297 | sig = util.run_and_log(cons, 'fdtget -t bx %s %s value' % |
| 298 | (fit, sig_node)) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 299 | byte_list = sig.split() |
| 300 | byte = int(byte_list[0], 16) |
Simon Glass | dc3ab7e | 2016-07-31 17:35:02 -0600 | [diff] [blame] | 301 | byte_list[0] = '%x' % (byte + 1) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 302 | sig = ' '.join(byte_list) |
Simon Glass | ba8116c | 2016-07-31 17:35:05 -0600 | [diff] [blame] | 303 | util.run_and_log(cons, 'fdtput -t bx %s %s value %s' % |
| 304 | (fit, sig_node, sig)) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 305 | |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 306 | run_bootm(sha_algo, 'Signed config with bad hash', 'Bad Data Hash', |
| 307 | False) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 308 | |
Simon Glass | f223c73 | 2016-07-31 17:35:06 -0600 | [diff] [blame] | 309 | cons.log.action('%s: Check bad config on the host' % sha_algo) |
Simon Glass | 861b504 | 2020-03-18 11:44:05 -0600 | [diff] [blame] | 310 | util.run_and_log_expect_exception( |
| 311 | cons, [fit_check_sign, '-f', fit, '-k', dtb], |
| 312 | 1, 'Failed to verify required signature') |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 313 | |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 314 | def test_required_key(sha_algo, padding, sign_options): |
Philippe Reynes | 1d5ef52 | 2019-09-18 16:04:53 +0200 | [diff] [blame] | 315 | """Test verified boot with the given hash algorithm. |
| 316 | |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 317 | This function tests if U-Boot rejects an image when a required key isn't |
| 318 | used to sign a FIT. |
Philippe Reynes | 1d5ef52 | 2019-09-18 16:04:53 +0200 | [diff] [blame] | 319 | |
| 320 | Args: |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 321 | sha_algo: Either 'sha1' or 'sha256', to select the algorithm to use |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 322 | padding: Either '' or '-pss', to select the padding to use for the |
| 323 | rsa signature algorithm. |
| 324 | sign_options: Options to mkimage when signing a fit image. |
Philippe Reynes | 1d5ef52 | 2019-09-18 16:04:53 +0200 | [diff] [blame] | 325 | """ |
| 326 | # Compile our device tree files for kernel and U-Boot. These are |
| 327 | # regenerated here since mkimage will modify them (by adding a |
| 328 | # public key) below. |
| 329 | dtc('sandbox-kernel.dts') |
| 330 | dtc('sandbox-u-boot.dts') |
| 331 | |
Philippe Reynes | 1d5ef52 | 2019-09-18 16:04:53 +0200 | [diff] [blame] | 332 | cons.log.action('%s: Test FIT with configs images' % sha_algo) |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 333 | |
| 334 | # Build the FIT with prod key (keys required) and sign it. This puts the |
| 335 | # signature into sandbox-u-boot.dtb, marked 'required' |
Simon Glass | 861b504 | 2020-03-18 11:44:05 -0600 | [diff] [blame] | 336 | make_fit('sign-configs-%s%s-prod.its' % (sha_algo, padding)) |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 337 | sign_fit(sha_algo, sign_options) |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 338 | |
| 339 | # Build the FIT with dev key (keys NOT required). This adds the |
| 340 | # signature into sandbox-u-boot.dtb, NOT marked 'required'. |
Simon Glass | 861b504 | 2020-03-18 11:44:05 -0600 | [diff] [blame] | 341 | make_fit('sign-configs-%s%s.its' % (sha_algo, padding)) |
Thirupathaiah Annapureddy | 7e703f7 | 2020-08-16 23:01:10 -0700 | [diff] [blame] | 342 | sign_fit_norequire(sha_algo, sign_options) |
Philippe Reynes | 1d5ef52 | 2019-09-18 16:04:53 +0200 | [diff] [blame] | 343 | |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 344 | # So now sandbox-u-boot.dtb two signatures, for the prod and dev keys. |
| 345 | # Only the prod key is set as 'required'. But FIT we just built has |
Thirupathaiah Annapureddy | 7e703f7 | 2020-08-16 23:01:10 -0700 | [diff] [blame] | 346 | # a dev signature only (sign_fit_norequire() overwrites the FIT). |
Simon Glass | 724c03b | 2020-03-18 11:44:04 -0600 | [diff] [blame] | 347 | # Try to boot the FIT with dev key. This FIT should not be accepted by |
| 348 | # U-Boot because the prod key is required. |
| 349 | run_bootm(sha_algo, 'required key', '', False) |
Philippe Reynes | 1d5ef52 | 2019-09-18 16:04:53 +0200 | [diff] [blame] | 350 | |
Thirupathaiah Annapureddy | 7e703f7 | 2020-08-16 23:01:10 -0700 | [diff] [blame] | 351 | # Build the FIT with dev key (keys required) and sign it. This puts the |
| 352 | # signature into sandbox-u-boot.dtb, marked 'required'. |
| 353 | make_fit('sign-configs-%s%s.its' % (sha_algo, padding)) |
| 354 | sign_fit(sha_algo, sign_options) |
| 355 | |
| 356 | # Set the required-mode policy to "any". |
| 357 | # So now sandbox-u-boot.dtb two signatures, for the prod and dev keys. |
| 358 | # Both the dev and prod key are set as 'required'. But FIT we just built has |
| 359 | # a dev signature only (sign_fit() overwrites the FIT). |
| 360 | # Try to boot the FIT with dev key. This FIT should be accepted by |
| 361 | # U-Boot because the dev key is required and policy is "any" required key. |
| 362 | util.run_and_log(cons, 'fdtput -t s %s /signature required-mode any' % |
| 363 | (dtb)) |
| 364 | run_bootm(sha_algo, 'multi required key', 'dev+', True) |
| 365 | |
| 366 | # Set the required-mode policy to "all". |
| 367 | # So now sandbox-u-boot.dtb two signatures, for the prod and dev keys. |
| 368 | # Both the dev and prod key are set as 'required'. But FIT we just built has |
| 369 | # a dev signature only (sign_fit() overwrites the FIT). |
| 370 | # Try to boot the FIT with dev key. This FIT should not be accepted by |
| 371 | # U-Boot because the prod key is required and policy is "all" required key |
| 372 | util.run_and_log(cons, 'fdtput -t s %s /signature required-mode all' % |
| 373 | (dtb)) |
| 374 | run_bootm(sha_algo, 'multi required key', '', False) |
| 375 | |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 376 | cons = u_boot_console |
Simon Glass | e9eeca8 | 2021-09-19 15:14:48 -0600 | [diff] [blame] | 377 | tmpdir = os.path.join(cons.config.result_dir, name) + '/' |
| 378 | if not os.path.exists(tmpdir): |
| 379 | os.mkdir(tmpdir) |
Stephen Warren | 7047d95 | 2016-07-18 10:07:25 -0600 | [diff] [blame] | 380 | datadir = cons.config.source_dir + '/test/py/tests/vboot/' |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 381 | fit = '%stest.fit' % tmpdir |
| 382 | mkimage = cons.config.build_dir + '/tools/mkimage' |
| 383 | fit_check_sign = cons.config.build_dir + '/tools/fit_check_sign' |
| 384 | dtc_args = '-I dts -O dtb -i %s' % tmpdir |
| 385 | dtb = '%ssandbox-u-boot.dtb' % tmpdir |
Philippe Reynes | a28e922 | 2018-11-14 13:51:05 +0100 | [diff] [blame] | 386 | sig_node = '/configurations/conf-1/signature' |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 387 | |
Simon Glass | b4a2f6a | 2020-03-18 11:44:07 -0600 | [diff] [blame] | 388 | create_rsa_pair('dev') |
| 389 | create_rsa_pair('prod') |
Philippe Reynes | 1d5ef52 | 2019-09-18 16:04:53 +0200 | [diff] [blame] | 390 | |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 391 | # Create a number kernel image with zeroes |
Simon Glass | 5e942f7 | 2021-02-15 17:08:08 -0700 | [diff] [blame] | 392 | with open('%stest-kernel.bin' % tmpdir, 'wb') as fd: |
| 393 | fd.write(500 * b'\0') |
| 394 | |
| 395 | # Create a second kernel image with ones |
| 396 | evil_kernel = '%stest-kernel1.bin' % tmpdir |
| 397 | with open(evil_kernel, 'wb') as fd: |
| 398 | fd.write(500 * b'\x01') |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 399 | |
| 400 | try: |
| 401 | # We need to use our own device tree file. Remember to restore it |
| 402 | # afterwards. |
| 403 | old_dtb = cons.config.dtb |
| 404 | cons.config.dtb = dtb |
Simon Glass | a0ba39d | 2020-03-18 11:44:00 -0600 | [diff] [blame] | 405 | if required: |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 406 | test_required_key(sha_algo, padding, sign_options) |
Simon Glass | a0ba39d | 2020-03-18 11:44:00 -0600 | [diff] [blame] | 407 | else: |
Philippe Reynes | 2fbd17c | 2020-04-29 15:26:16 +0200 | [diff] [blame] | 408 | test_with_algo(sha_algo, padding, sign_options) |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 409 | finally: |
Simon Glass | 37c2ce1 | 2016-07-31 17:35:08 -0600 | [diff] [blame] | 410 | # Go back to the original U-Boot with the correct dtb. |
Simon Glass | d977ecd | 2016-07-03 09:40:46 -0600 | [diff] [blame] | 411 | cons.config.dtb = old_dtb |
Simon Glass | 37c2ce1 | 2016-07-31 17:35:08 -0600 | [diff] [blame] | 412 | cons.restart_uboot() |