summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJulius Werner <jwerner@chromium.org>2015-05-29 16:56:20 -0700
committerChromeOS Commit Bot <chromeos-commit-bot@chromium.org>2015-06-02 19:16:55 +0000
commit7a9490e00872467620c4a02c0ce5d4eff1f062fa (patch)
treedd2775342d11af28c0027e36253b734fa7046697
parentfa32d9924249886668d61b73d6b56cc00c9ca6e3 (diff)
downloadvboot-firmware-storm-6315.B.tar.gz
vboot2: secdata: Check struct_version on initializationfirmware-storm-6315.B
This patch reintroduces a vb2_secdata->struct_version check similar to the one that was removed in CL:244846. The CRC is not a reliable way to detect zeroed buffers, so this check helps vboot fail earlier and more clearly in certain situations. BRANCH=kitty,smaug,storm,veyron BUG=chrome-os-partner:40778 TEST=make runtests. Rebooted Jerry with 'mem w 0xff7601b0 0xfdb9', saw that recovery reason was now 0x2b (VBNV_RECOVERY_VB2_SECDATA_INIT). Change-Id: Ic4376d127e6d14d4ef9c2f53c83090040ca4cb68 Signed-off-by: Julius Werner <jwerner@chromium.org> Reviewed-on: https://chromium-review.googlesource.com/274138 Reviewed-by: Randall Spangler <rspangler@chromium.org> Reviewed-by: Vadim Bendebury <vbendeb@chromium.org> Reviewed-on: https://chromium-review.googlesource.com/274833 Commit-Queue: Vadim Bendebury <vbendeb@chromium.org> Tested-by: Vadim Bendebury <vbendeb@chromium.org>
Diffstat
-rw-r--r--firmware/2lib/2secdata.c4
-rw-r--r--firmware/2lib/include/2return_codes.h4
-rw-r--r--tests/vb2_secdata_tests.c4
3 files changed, 10 insertions, 2 deletions
diff --git a/firmware/2lib/2secdata.c b/firmware/2lib/2secdata.c
index 0fd6c522..3281f7c3 100644
--- a/firmware/2lib/2secdata.c
+++ b/firmware/2lib/2secdata.c
@@ -20,6 +20,10 @@ int vb2_secdata_check_crc(const struct vb2_context *ctx)
if (sec->crc8 != vb2_crc8(sec, offsetof(struct vb2_secdata, crc8)))
return VB2_ERROR_SECDATA_CRC;
+ /* CRC(<000...00>) is 0, so check version as well (should never be 0) */
+ if (!sec->struct_version)
+ return VB2_ERROR_SECDATA_ZERO;
+
return VB2_SUCCESS;
}
diff --git a/firmware/2lib/include/2return_codes.h b/firmware/2lib/include/2return_codes.h
index 20a7947c..c209d541 100644
--- a/firmware/2lib/include/2return_codes.h
+++ b/firmware/2lib/include/2return_codes.h
@@ -93,8 +93,8 @@ enum vb2_return_code {
/* Bad CRC in vb2_secdata_check_crc() */
VB2_ERROR_SECDATA_CRC,
- /* Bad struct version in vb2_secdata_init() */
- VB2_ERROR_SECDATA_VERSION,
+ /* Secdata is all zeroes (uninitialized) in vb2_secdata_check_crc() */
+ VB2_ERROR_SECDATA_ZERO,
/* Invalid param in vb2_secdata_get() */
VB2_ERROR_SECDATA_GET_PARAM,
diff --git a/tests/vb2_secdata_tests.c b/tests/vb2_secdata_tests.c
index 94f92fb7..b8ffafaa 100644
--- a/tests/vb2_secdata_tests.c
+++ b/tests/vb2_secdata_tests.c
@@ -46,6 +46,10 @@ static void secdata_test(void)
TEST_EQ(vb2_secdata_init(&c),
VB2_ERROR_SECDATA_CRC, "Init blank CRC");
+ /* Ensure zeroed buffers are invalid (coreboot relies on this) */
+ memset(c.secdata, 0, sizeof(c.secdata));
+ TEST_EQ(vb2_secdata_init(&c), VB2_ERROR_SECDATA_ZERO, "Zeroed buffer");
+
/* Create good data */
TEST_SUCC(vb2_secdata_create(&c), "Create");
TEST_SUCC(vb2_secdata_check_crc(&c), "Check created CRC");
View Lorry Controller Status