blob: 4627ceb0260d08a7401ac1b8569bd556ea83a690 [file] [log] [blame]
Simon Glassd977ecd2016-07-03 09:40:46 -06001# SPDX-License-Identifier: GPL-2.0+
Tom Rini10e47792018-05-06 17:58:06 -04002# Copyright (c) 2016, Google Inc.
Simon Glassd977ecd2016-07-03 09:40:46 -06003#
4# U-Boot Verified Boot Test
5
6"""
7This tests verified boot in the following ways:
8
9For image verification:
10- Create FIT (unsigned) with mkimage
11- Check that verification shows that no keys are verified
12- Sign image
13- Check that verification shows that a key is now verified
14
15For configuration verification:
16- Corrupt signature and check for failure
17- Create FIT (with unsigned configuration) with mkimage
Simon Glassd5deca02016-07-31 17:35:04 -060018- Check that image verification works
Simon Glassd977ecd2016-07-03 09:40:46 -060019- Sign the FIT and mark the key as 'required' for verification
20- Check that image verification works
21- Corrupt the signature
22- Check that image verification no-longer works
23
24Tests run with both SHA1 and SHA256 hashing.
25"""
26
27import pytest
28import sys
Teddy Reede6a47832018-06-09 11:38:05 -040029import struct
Simon Glassd977ecd2016-07-03 09:40:46 -060030import u_boot_utils as util
31
Michal Simek6e035ab2016-07-18 08:49:08 +020032@pytest.mark.boardspec('sandbox')
Simon Glassd977ecd2016-07-03 09:40:46 -060033@pytest.mark.buildconfigspec('fit_signature')
Stephen Warren2079db32017-09-18 11:11:49 -060034@pytest.mark.requiredtool('dtc')
35@pytest.mark.requiredtool('fdtget')
36@pytest.mark.requiredtool('fdtput')
37@pytest.mark.requiredtool('openssl')
Simon Glassd977ecd2016-07-03 09:40:46 -060038def test_vboot(u_boot_console):
39 """Test verified boot signing with mkimage and verification with 'bootm'.
40
41 This works using sandbox only as it needs to update the device tree used
42 by U-Boot to hold public keys from the signing process.
43
44 The SHA1 and SHA256 tests are combined into a single test since the
45 key-generation process is quite slow and we want to avoid doing it twice.
46 """
47 def dtc(dts):
Simon Glassd5deca02016-07-31 17:35:04 -060048 """Run the device tree compiler to compile a .dts file
Simon Glassd977ecd2016-07-03 09:40:46 -060049
50 The output file will be the same as the input file but with a .dtb
51 extension.
52
53 Args:
54 dts: Device tree file to compile.
55 """
56 dtb = dts.replace('.dts', '.dtb')
Simon Glassba8116c2016-07-31 17:35:05 -060057 util.run_and_log(cons, 'dtc %s %s%s -O dtb '
58 '-o %s%s' % (dtc_args, datadir, dts, tmpdir, dtb))
Simon Glassd977ecd2016-07-03 09:40:46 -060059
Tom Rinib65ce462016-09-18 09:46:58 -040060 def run_bootm(sha_algo, test_type, expect_string, boots):
Simon Glassd977ecd2016-07-03 09:40:46 -060061 """Run a 'bootm' command U-Boot.
62
63 This always starts a fresh U-Boot instance since the device tree may
64 contain a new public key.
65
66 Args:
Simon Glassf223c732016-07-31 17:35:06 -060067 test_type: A string identifying the test type.
68 expect_string: A string which is expected in the output.
69 sha_algo: Either 'sha1' or 'sha256', to select the algorithm to
70 use.
Tom Rinib65ce462016-09-18 09:46:58 -040071 boots: A boolean that is True if Linux should boot and False if
72 we are expected to not boot
Simon Glassd977ecd2016-07-03 09:40:46 -060073 """
Simon Glass37c2ce12016-07-31 17:35:08 -060074 cons.restart_uboot()
Simon Glass2a40d832016-07-31 17:35:07 -060075 with cons.log.section('Verified boot %s %s' % (sha_algo, test_type)):
76 output = cons.run_command_list(
Simon Glassf250d472018-11-15 18:44:02 -070077 ['host load hostfs - 100 %stest.fit' % tmpdir,
Simon Glass2a40d832016-07-31 17:35:07 -060078 'fdt addr 100',
79 'bootm 100'])
Simon Glass2ca73112016-07-31 17:35:09 -060080 assert(expect_string in ''.join(output))
Tom Rinib65ce462016-09-18 09:46:58 -040081 if boots:
82 assert('sandbox: continuing, as we cannot run' in ''.join(output))
Simon Glassd977ecd2016-07-03 09:40:46 -060083
84 def make_fit(its):
Simon Glassd5deca02016-07-31 17:35:04 -060085 """Make a new FIT from the .its source file.
Simon Glassd977ecd2016-07-03 09:40:46 -060086
87 This runs 'mkimage -f' to create a new FIT.
88
89 Args:
Simon Glassd5deca02016-07-31 17:35:04 -060090 its: Filename containing .its source.
Simon Glassd977ecd2016-07-03 09:40:46 -060091 """
92 util.run_and_log(cons, [mkimage, '-D', dtc_args, '-f',
93 '%s%s' % (datadir, its), fit])
94
Simon Glassf223c732016-07-31 17:35:06 -060095 def sign_fit(sha_algo):
Simon Glassd977ecd2016-07-03 09:40:46 -060096 """Sign the FIT
97
98 Signs the FIT and writes the signature into it. It also writes the
99 public key into the dtb.
Simon Glassf223c732016-07-31 17:35:06 -0600100
101 Args:
102 sha_algo: Either 'sha1' or 'sha256', to select the algorithm to
103 use.
Simon Glassd977ecd2016-07-03 09:40:46 -0600104 """
Simon Glassf223c732016-07-31 17:35:06 -0600105 cons.log.action('%s: Sign images' % sha_algo)
Simon Glassd977ecd2016-07-03 09:40:46 -0600106 util.run_and_log(cons, [mkimage, '-F', '-k', tmpdir, '-K', dtb,
107 '-r', fit])
108
Teddy Reede6a47832018-06-09 11:38:05 -0400109 def replace_fit_totalsize(size):
110 """Replace FIT header's totalsize with something greater.
111
112 The totalsize must be less than or equal to FIT_SIGNATURE_MAX_SIZE.
113 If the size is greater, the signature verification should return false.
114
115 Args:
116 size: The new totalsize of the header
117
118 Returns:
119 prev_size: The previous totalsize read from the header
120 """
121 total_size = 0
122 with open(fit, 'r+b') as handle:
123 handle.seek(4)
124 total_size = handle.read(4)
125 handle.seek(4)
126 handle.write(struct.pack(">I", size))
127 return struct.unpack(">I", total_size)[0]
128
Philippe Reynesafdbcdb2018-11-14 13:51:04 +0100129 def test_with_algo(sha_algo, padding):
Simon Glassd5deca02016-07-31 17:35:04 -0600130 """Test verified boot with the given hash algorithm.
Simon Glassd977ecd2016-07-03 09:40:46 -0600131
132 This is the main part of the test code. The same procedure is followed
133 for both hashing algorithms.
134
135 Args:
Simon Glassf223c732016-07-31 17:35:06 -0600136 sha_algo: Either 'sha1' or 'sha256', to select the algorithm to
137 use.
Simon Glassd977ecd2016-07-03 09:40:46 -0600138 """
Simon Glassdc3ab7e2016-07-31 17:35:02 -0600139 # Compile our device tree files for kernel and U-Boot. These are
140 # regenerated here since mkimage will modify them (by adding a
141 # public key) below.
Simon Glassd977ecd2016-07-03 09:40:46 -0600142 dtc('sandbox-kernel.dts')
143 dtc('sandbox-u-boot.dts')
144
145 # Build the FIT, but don't sign anything yet
Simon Glassf223c732016-07-31 17:35:06 -0600146 cons.log.action('%s: Test FIT with signed images' % sha_algo)
Philippe Reynesafdbcdb2018-11-14 13:51:04 +0100147 make_fit('sign-images-%s%s.its' % (sha_algo , padding))
Tom Rinib65ce462016-09-18 09:46:58 -0400148 run_bootm(sha_algo, 'unsigned images', 'dev-', True)
Simon Glassd977ecd2016-07-03 09:40:46 -0600149
150 # Sign images with our dev keys
Simon Glassf223c732016-07-31 17:35:06 -0600151 sign_fit(sha_algo)
Tom Rinib65ce462016-09-18 09:46:58 -0400152 run_bootm(sha_algo, 'signed images', 'dev+', True)
Simon Glassd977ecd2016-07-03 09:40:46 -0600153
154 # Create a fresh .dtb without the public keys
155 dtc('sandbox-u-boot.dts')
156
Simon Glassf223c732016-07-31 17:35:06 -0600157 cons.log.action('%s: Test FIT with signed configuration' % sha_algo)
Philippe Reynesafdbcdb2018-11-14 13:51:04 +0100158 make_fit('sign-configs-%s%s.its' % (sha_algo , padding))
Tom Rinib65ce462016-09-18 09:46:58 -0400159 run_bootm(sha_algo, 'unsigned config', '%s+ OK' % sha_algo, True)
Simon Glassd977ecd2016-07-03 09:40:46 -0600160
161 # Sign images with our dev keys
Simon Glassf223c732016-07-31 17:35:06 -0600162 sign_fit(sha_algo)
Tom Rinib65ce462016-09-18 09:46:58 -0400163 run_bootm(sha_algo, 'signed config', 'dev+', True)
Simon Glassd977ecd2016-07-03 09:40:46 -0600164
Simon Glassf223c732016-07-31 17:35:06 -0600165 cons.log.action('%s: Check signed config on the host' % sha_algo)
Simon Glassd977ecd2016-07-03 09:40:46 -0600166
167 util.run_and_log(cons, [fit_check_sign, '-f', fit, '-k', tmpdir,
168 '-k', dtb])
169
Teddy Reede6a47832018-06-09 11:38:05 -0400170 # Replace header bytes
171 bcfg = u_boot_console.config.buildconfig
172 max_size = int(bcfg.get('config_fit_signature_max_size', 0x10000000), 0)
173 existing_size = replace_fit_totalsize(max_size + 1)
174 run_bootm(sha_algo, 'Signed config with bad hash', 'Bad Data Hash', False)
175 cons.log.action('%s: Check overflowed FIT header totalsize' % sha_algo)
176
177 # Replace with existing header bytes
178 replace_fit_totalsize(existing_size)
179 run_bootm(sha_algo, 'signed config', 'dev+', True)
180 cons.log.action('%s: Check default FIT header totalsize' % sha_algo)
181
Simon Glassd977ecd2016-07-03 09:40:46 -0600182 # Increment the first byte of the signature, which should cause failure
Simon Glassba8116c2016-07-31 17:35:05 -0600183 sig = util.run_and_log(cons, 'fdtget -t bx %s %s value' %
184 (fit, sig_node))
Simon Glassd977ecd2016-07-03 09:40:46 -0600185 byte_list = sig.split()
186 byte = int(byte_list[0], 16)
Simon Glassdc3ab7e2016-07-31 17:35:02 -0600187 byte_list[0] = '%x' % (byte + 1)
Simon Glassd977ecd2016-07-03 09:40:46 -0600188 sig = ' '.join(byte_list)
Simon Glassba8116c2016-07-31 17:35:05 -0600189 util.run_and_log(cons, 'fdtput -t bx %s %s value %s' %
190 (fit, sig_node, sig))
Simon Glassd977ecd2016-07-03 09:40:46 -0600191
Tom Rinib65ce462016-09-18 09:46:58 -0400192 run_bootm(sha_algo, 'Signed config with bad hash', 'Bad Data Hash', False)
Simon Glassd977ecd2016-07-03 09:40:46 -0600193
Simon Glassf223c732016-07-31 17:35:06 -0600194 cons.log.action('%s: Check bad config on the host' % sha_algo)
Simon Glassd977ecd2016-07-03 09:40:46 -0600195 util.run_and_log_expect_exception(cons, [fit_check_sign, '-f', fit,
196 '-k', dtb], 1, 'Failed to verify required signature')
197
198 cons = u_boot_console
199 tmpdir = cons.config.result_dir + '/'
200 tmp = tmpdir + 'vboot.tmp'
Stephen Warren7047d952016-07-18 10:07:25 -0600201 datadir = cons.config.source_dir + '/test/py/tests/vboot/'
Simon Glassd977ecd2016-07-03 09:40:46 -0600202 fit = '%stest.fit' % tmpdir
203 mkimage = cons.config.build_dir + '/tools/mkimage'
204 fit_check_sign = cons.config.build_dir + '/tools/fit_check_sign'
205 dtc_args = '-I dts -O dtb -i %s' % tmpdir
206 dtb = '%ssandbox-u-boot.dtb' % tmpdir
Philippe Reynesa28e9222018-11-14 13:51:05 +0100207 sig_node = '/configurations/conf-1/signature'
Simon Glassd977ecd2016-07-03 09:40:46 -0600208
209 # Create an RSA key pair
210 public_exponent = 65537
Simon Glassba8116c2016-07-31 17:35:05 -0600211 util.run_and_log(cons, 'openssl genpkey -algorithm RSA -out %sdev.key '
212 '-pkeyopt rsa_keygen_bits:2048 '
Paul Burton2662c822017-09-14 14:34:50 -0700213 '-pkeyopt rsa_keygen_pubexp:%d' %
214 (tmpdir, public_exponent))
Simon Glassd977ecd2016-07-03 09:40:46 -0600215
216 # Create a certificate containing the public key
Simon Glassba8116c2016-07-31 17:35:05 -0600217 util.run_and_log(cons, 'openssl req -batch -new -x509 -key %sdev.key -out '
218 '%sdev.crt' % (tmpdir, tmpdir))
Simon Glassd977ecd2016-07-03 09:40:46 -0600219
220 # Create a number kernel image with zeroes
221 with open('%stest-kernel.bin' % tmpdir, 'w') as fd:
222 fd.write(5000 * chr(0))
223
224 try:
225 # We need to use our own device tree file. Remember to restore it
226 # afterwards.
227 old_dtb = cons.config.dtb
228 cons.config.dtb = dtb
Philippe Reynesafdbcdb2018-11-14 13:51:04 +0100229 test_with_algo('sha1','')
230 test_with_algo('sha1','-pss')
231 test_with_algo('sha256','')
232 test_with_algo('sha256','-pss')
Simon Glassd977ecd2016-07-03 09:40:46 -0600233 finally:
Simon Glass37c2ce12016-07-31 17:35:08 -0600234 # Go back to the original U-Boot with the correct dtb.
Simon Glassd977ecd2016-07-03 09:40:46 -0600235 cons.config.dtb = old_dtb
Simon Glass37c2ce12016-07-31 17:35:08 -0600236 cons.restart_uboot()