blob: b3e5f019b87b2094a72880517f827ad4dd126893 [file] [log] [blame]
gaurav rana47151e42015-02-27 09:45:35 +05301/*
2 * Copyright 2015 Freescale Semiconductor, Inc.
3 *
4 * SPDX-License-Identifier: GPL-2.0+
5 */
6
7#include <common.h>
8#include <command.h>
9#include <fsl_validate.h>
10
Saksham Jainc4666cf2016-03-23 16:24:44 +053011int do_esbc_halt(cmd_tbl_t *cmdtp, int flag, int argc,
gaurav rana98cb0ef2015-03-10 14:08:50 +053012 char * const argv[])
13{
Aneesh Bansal856b2842016-01-22 16:37:28 +053014 if (fsl_check_boot_mode_secure() == 0) {
15 printf("Boot Mode is Non-Secure. Not entering spin loop.\n");
16 return 0;
17 }
18
gaurav rana98cb0ef2015-03-10 14:08:50 +053019 printf("Core is entering spin loop.\n");
20loop:
21 goto loop;
22
23 return 0;
24}
25
gaurav rana47151e42015-02-27 09:45:35 +053026static int do_esbc_validate(cmd_tbl_t *cmdtp, int flag, int argc,
27 char * const argv[])
28{
Aneesh Bansalbc71f922015-12-08 14:14:12 +053029 char *hash_str = NULL;
Aneesh Bansalb055a0f2015-12-08 14:14:15 +053030 uintptr_t haddr;
Aneesh Bansalbc71f922015-12-08 14:14:12 +053031 int ret;
Saksham Jain85bb3892016-03-23 16:24:45 +053032 uintptr_t img_addr = 0;
33 char buf[20];
Aneesh Bansalbc71f922015-12-08 14:14:12 +053034
gaurav rana47151e42015-02-27 09:45:35 +053035 if (argc < 2)
36 return cmd_usage(cmdtp);
Aneesh Bansalbc71f922015-12-08 14:14:12 +053037 else if (argc > 2)
38 /* Second arg - Optional - Hash Str*/
39 hash_str = argv[2];
gaurav rana47151e42015-02-27 09:45:35 +053040
Aneesh Bansalbc71f922015-12-08 14:14:12 +053041 /* First argument - header address -32/64bit */
Aneesh Bansalb055a0f2015-12-08 14:14:15 +053042 haddr = (uintptr_t)simple_strtoul(argv[1], NULL, 16);
Aneesh Bansalbc71f922015-12-08 14:14:12 +053043
Aneesh Bansalb055a0f2015-12-08 14:14:15 +053044 /* With esbc_validate command, Image address must be
45 * part of header. So, the function is called
46 * by passing this argument as 0.
47 */
Saksham Jain85bb3892016-03-23 16:24:45 +053048 ret = fsl_secboot_validate(haddr, hash_str, &img_addr);
49
50 /* Need to set "img_addr" even if validation failure.
51 * Required when SB_EN in RCW set and non-fatal error
52 * to continue U-Boot
53 */
54 sprintf(buf, "%lx", img_addr);
Simon Glass382bee52017-08-03 12:22:09 -060055 env_set("img_addr", buf);
Saksham Jain85bb3892016-03-23 16:24:45 +053056
Aneesh Bansalbc71f922015-12-08 14:14:12 +053057 if (ret)
58 return 1;
59
60 printf("esbc_validate command successful\n");
61 return 0;
gaurav rana47151e42015-02-27 09:45:35 +053062}
63
64/***************************************************/
65static char esbc_validate_help_text[] =
66 "esbc_validate hdr_addr <hash_val> - Validates signature using\n"
67 " RSA verification\n"
68 " $hdr_addr Address of header of the image\n"
69 " to be validated.\n"
70 " $hash_val -Optional\n"
71 " It provides Hash of public/srk key to be\n"
72 " used to verify signature.\n";
73
74U_BOOT_CMD(
75 esbc_validate, 3, 0, do_esbc_validate,
76 "Validates signature on a given image using RSA verification",
77 esbc_validate_help_text
78);
gaurav rana98cb0ef2015-03-10 14:08:50 +053079
80U_BOOT_CMD(
81 esbc_halt, 1, 0, do_esbc_halt,
Aneesh Bansal856b2842016-01-22 16:37:28 +053082 "Put the core in spin loop (Secure Boot Only)",
gaurav rana98cb0ef2015-03-10 14:08:50 +053083 ""
84);