2906d1aa51
The presence of a separate build for the bootloader code has always been a wart with this platform. Sharing of code between the two has required great care. We've had bugs with mismatched include paths, macro definitions and compiler flags, etc... And of course it's not possible for one to see the other; in theory we'd like the ability to call back into IMR code after startup, to use the space for temporary storage, etc... So let's finally do it. This really isn't that complicated when you see it in isolation: + Move the module manifest metadata into an "rimage_modules.c", and put them in their own NOLOAD section where we can grab them later with objcopy. + Make a new "imr" memory region in the main linker and just paste the bootloader linkage (which is now using its own specific sections) in there. + After zephyr.elf is built and cache-remapped, we can extract the imr sections and the appropriate manifest for the bootloader rimage module, and then do the converse by excluding them for the main image module. Signed-off-by: Andy Ross <andrew.j.ross@intel.com>
474 lines
18 KiB
Python
474 lines
18 KiB
Python
# Copyright (c) 2018 Foundries.io
|
|
#
|
|
# SPDX-License-Identifier: Apache-2.0
|
|
|
|
import abc
|
|
import argparse
|
|
import os
|
|
import pathlib
|
|
import pickle
|
|
import platform
|
|
import shutil
|
|
import subprocess
|
|
import sys
|
|
|
|
from west import log
|
|
from west.util import quote_sh_list
|
|
|
|
from build_helpers import find_build_dir, is_zephyr_build, \
|
|
FIND_BUILD_DIR_DESCRIPTION
|
|
from runners.core import BuildConfiguration
|
|
from zcmake import CMakeCache
|
|
from zephyr_ext_common import Forceable, ZEPHYR_SCRIPTS
|
|
|
|
# This is needed to load edt.pickle files.
|
|
sys.path.append(str(ZEPHYR_SCRIPTS / 'dts' / 'python-devicetree' / 'src'))
|
|
|
|
SIGN_DESCRIPTION = '''\
|
|
This command automates some of the drudgery of creating signed Zephyr
|
|
binaries for chain-loading by a bootloader.
|
|
|
|
In the simplest usage, run this from your build directory:
|
|
|
|
west sign -t your_tool -- ARGS_FOR_YOUR_TOOL
|
|
|
|
The "ARGS_FOR_YOUR_TOOL" value can be any additional
|
|
arguments you want to pass to the tool, such as the location of a
|
|
signing key, a version identifier, etc.
|
|
|
|
See tool-specific help below for details.'''
|
|
|
|
SIGN_EPILOG = '''\
|
|
imgtool
|
|
-------
|
|
|
|
To build a signed binary you can load with MCUboot using imgtool,
|
|
run this from your build directory:
|
|
|
|
west sign -t imgtool -- --key YOUR_SIGNING_KEY.pem
|
|
|
|
For this to work, either imgtool must be installed (e.g. using pip3),
|
|
or you must pass the path to imgtool.py using the -p option.
|
|
|
|
Assuming your binary was properly built for processing and handling by
|
|
imgtool, this creates zephyr.signed.bin and zephyr.signed.hex
|
|
files which are ready for use by your bootloader.
|
|
|
|
The image header size, alignment, and slot sizes are determined from
|
|
the build directory using .config and the device tree. A default
|
|
version number of 0.0.0+0 is used (which can be overridden by passing
|
|
"--version x.y.z+w" after "--key"). As shown above, extra arguments
|
|
after a '--' are passed to imgtool directly.
|
|
|
|
rimage
|
|
------
|
|
|
|
To create a signed binary with the rimage tool, run this from your build
|
|
directory:
|
|
|
|
west sign -t rimage -- -k YOUR_SIGNING_KEY.pem
|
|
|
|
For this to work, either rimage must be installed or you must pass
|
|
the path to rimage using the -p option.'''
|
|
|
|
|
|
class ToggleAction(argparse.Action):
|
|
|
|
def __call__(self, parser, args, ignored, option):
|
|
setattr(args, self.dest, not option.startswith('--no-'))
|
|
|
|
|
|
class Sign(Forceable):
|
|
def __init__(self):
|
|
super(Sign, self).__init__(
|
|
'sign',
|
|
# Keep this in sync with the string in west-commands.yml.
|
|
'sign a Zephyr binary for bootloader chain-loading',
|
|
SIGN_DESCRIPTION,
|
|
accepts_unknown_args=False)
|
|
|
|
def do_add_parser(self, parser_adder):
|
|
parser = parser_adder.add_parser(
|
|
self.name,
|
|
epilog=SIGN_EPILOG,
|
|
help=self.help,
|
|
formatter_class=argparse.RawDescriptionHelpFormatter,
|
|
description=self.description)
|
|
|
|
parser.add_argument('-d', '--build-dir',
|
|
help=FIND_BUILD_DIR_DESCRIPTION)
|
|
parser.add_argument('-q', '--quiet', action='store_true',
|
|
help='suppress non-error output')
|
|
self.add_force_arg(parser)
|
|
|
|
# general options
|
|
group = parser.add_argument_group('tool control options')
|
|
group.add_argument('-t', '--tool', choices=['imgtool', 'rimage'],
|
|
required=True,
|
|
help='''image signing tool name; imgtool and rimage
|
|
are currently supported''')
|
|
group.add_argument('-p', '--tool-path', default=None,
|
|
help='''path to the tool itself, if needed''')
|
|
group.add_argument('-D', '--tool-data', default=None,
|
|
help='''path to tool data/configuration directory, if needed''')
|
|
group.add_argument('tool_args', nargs='*', metavar='tool_opt',
|
|
help='extra option(s) to pass to the signing tool')
|
|
|
|
# bin file options
|
|
group = parser.add_argument_group('binary (.bin) file options')
|
|
group.add_argument('--bin', '--no-bin', dest='gen_bin', nargs=0,
|
|
action=ToggleAction,
|
|
help='''produce a signed .bin file?
|
|
(default: yes, if supported and unsigned bin
|
|
exists)''')
|
|
group.add_argument('-B', '--sbin', metavar='BIN',
|
|
help='''signed .bin file name
|
|
(default: zephyr.signed.bin in the build
|
|
directory, next to zephyr.bin)''')
|
|
|
|
# hex file options
|
|
group = parser.add_argument_group('Intel HEX (.hex) file options')
|
|
group.add_argument('--hex', '--no-hex', dest='gen_hex', nargs=0,
|
|
action=ToggleAction,
|
|
help='''produce a signed .hex file?
|
|
(default: yes, if supported and unsigned hex
|
|
exists)''')
|
|
group.add_argument('-H', '--shex', metavar='HEX',
|
|
help='''signed .hex file name
|
|
(default: zephyr.signed.hex in the build
|
|
directory, next to zephyr.hex)''')
|
|
|
|
return parser
|
|
|
|
def do_run(self, args, ignored):
|
|
self.args = args # for check_force
|
|
|
|
# Find the build directory and parse .config and DT.
|
|
build_dir = find_build_dir(args.build_dir)
|
|
self.check_force(os.path.isdir(build_dir),
|
|
'no such build directory {}'.format(build_dir))
|
|
self.check_force(is_zephyr_build(build_dir),
|
|
"build directory {} doesn't look like a Zephyr build "
|
|
'directory'.format(build_dir))
|
|
build_conf = BuildConfiguration(build_dir)
|
|
|
|
# Decide on output formats.
|
|
formats = []
|
|
bin_exists = build_conf.getboolean('CONFIG_BUILD_OUTPUT_BIN')
|
|
if args.gen_bin:
|
|
self.check_force(bin_exists,
|
|
'--bin given but CONFIG_BUILD_OUTPUT_BIN not set '
|
|
"in build directory's ({}) .config".
|
|
format(build_dir))
|
|
formats.append('bin')
|
|
elif args.gen_bin is None and bin_exists:
|
|
formats.append('bin')
|
|
|
|
hex_exists = build_conf.getboolean('CONFIG_BUILD_OUTPUT_HEX')
|
|
if args.gen_hex:
|
|
self.check_force(hex_exists,
|
|
'--hex given but CONFIG_BUILD_OUTPUT_HEX not set '
|
|
"in build directory's ({}) .config".
|
|
format(build_dir))
|
|
formats.append('hex')
|
|
elif args.gen_hex is None and hex_exists:
|
|
formats.append('hex')
|
|
|
|
# Delegate to the signer.
|
|
if args.tool == 'imgtool':
|
|
signer = ImgtoolSigner()
|
|
elif args.tool == 'rimage':
|
|
signer = RimageSigner()
|
|
# (Add support for other signers here in elif blocks)
|
|
else:
|
|
raise RuntimeError("can't happen")
|
|
|
|
signer.sign(self, build_dir, build_conf, formats)
|
|
|
|
|
|
class Signer(abc.ABC):
|
|
'''Common abstract superclass for signers.
|
|
|
|
To add support for a new tool, subclass this and add support for
|
|
it in the Sign.do_run() method.'''
|
|
|
|
@abc.abstractmethod
|
|
def sign(self, command, build_dir, build_conf, formats):
|
|
'''Abstract method to perform a signature; subclasses must implement.
|
|
|
|
:param command: the Sign instance
|
|
:param build_dir: the build directory
|
|
:param build_conf: BuildConfiguration for build directory
|
|
:param formats: list of formats to generate ('bin', 'hex')
|
|
'''
|
|
|
|
|
|
class ImgtoolSigner(Signer):
|
|
|
|
def sign(self, command, build_dir, build_conf, formats):
|
|
if not formats:
|
|
return
|
|
|
|
args = command.args
|
|
b = pathlib.Path(build_dir)
|
|
|
|
imgtool = self.find_imgtool(command, args)
|
|
# The vector table offset is set in Kconfig:
|
|
vtoff = self.get_cfg(command, build_conf, 'CONFIG_ROM_START_OFFSET')
|
|
# Flash device write alignment and the partition's slot size
|
|
# come from devicetree:
|
|
flash = self.edt_flash_node(b, args.quiet)
|
|
align, addr, size = self.edt_flash_params(flash)
|
|
|
|
if not build_conf.getboolean('CONFIG_BOOTLOADER_MCUBOOT'):
|
|
log.wrn("CONFIG_BOOTLOADER_MCUBOOT is not set to y in "
|
|
f"{build_conf.path}; this probably won't work")
|
|
|
|
kernel = build_conf.get('CONFIG_KERNEL_BIN_NAME', 'zephyr')
|
|
|
|
if 'bin' in formats:
|
|
in_bin = b / 'zephyr' / f'{kernel}.bin'
|
|
if not in_bin.is_file():
|
|
log.die(f"no unsigned .bin found at {in_bin}")
|
|
in_bin = os.fspath(in_bin)
|
|
else:
|
|
in_bin = None
|
|
if 'hex' in formats:
|
|
in_hex = b / 'zephyr' / f'{kernel}.hex'
|
|
if not in_hex.is_file():
|
|
log.die(f"no unsigned .hex found at {in_hex}")
|
|
in_hex = os.fspath(in_hex)
|
|
else:
|
|
in_hex = None
|
|
|
|
if not args.quiet:
|
|
log.banner('image configuration:')
|
|
log.inf('partition offset: {0} (0x{0:x})'.format(addr))
|
|
log.inf('partition size: {0} (0x{0:x})'.format(size))
|
|
log.inf('rom start offset: {0} (0x{0:x})'.format(vtoff))
|
|
|
|
# Base sign command.
|
|
#
|
|
# We provide a default --version in case the user is just
|
|
# messing around and doesn't want to set one. It will be
|
|
# overridden if there is a --version in args.tool_args.
|
|
sign_base = imgtool + ['sign',
|
|
'--version', '0.0.0+0',
|
|
'--align', str(align),
|
|
'--header-size', str(vtoff),
|
|
'--slot-size', str(size)]
|
|
sign_base.extend(args.tool_args)
|
|
|
|
if not args.quiet:
|
|
log.banner('signing binaries')
|
|
if in_bin:
|
|
out_bin = args.sbin or str(b / 'zephyr' / 'zephyr.signed.bin')
|
|
sign_bin = sign_base + [in_bin, out_bin]
|
|
if not args.quiet:
|
|
log.inf(f'unsigned bin: {in_bin}')
|
|
log.inf(f'signed bin: {out_bin}')
|
|
log.dbg(quote_sh_list(sign_bin))
|
|
subprocess.check_call(sign_bin)
|
|
if in_hex:
|
|
out_hex = args.shex or str(b / 'zephyr' / 'zephyr.signed.hex')
|
|
sign_hex = sign_base + [in_hex, out_hex]
|
|
if not args.quiet:
|
|
log.inf(f'unsigned hex: {in_hex}')
|
|
log.inf(f'signed hex: {out_hex}')
|
|
log.dbg(quote_sh_list(sign_hex))
|
|
subprocess.check_call(sign_hex)
|
|
|
|
@staticmethod
|
|
def find_imgtool(command, args):
|
|
if args.tool_path:
|
|
imgtool = args.tool_path
|
|
if not os.path.isfile(imgtool):
|
|
log.die(f'--tool-path {imgtool}: no such file')
|
|
else:
|
|
imgtool = shutil.which('imgtool') or shutil.which('imgtool.py')
|
|
if not imgtool:
|
|
log.die('imgtool not found; either install it',
|
|
'(e.g. "pip3 install imgtool") or provide --tool-path')
|
|
|
|
if platform.system() == 'Windows' and imgtool.endswith('.py'):
|
|
# Windows users may not be able to run .py files
|
|
# as executables in subprocesses, regardless of
|
|
# what the mode says. Always run imgtool as
|
|
# 'python path/to/imgtool.py' instead of
|
|
# 'path/to/imgtool.py' in these cases.
|
|
# https://github.com/zephyrproject-rtos/zephyr/issues/31876
|
|
return [sys.executable, imgtool]
|
|
|
|
return [imgtool]
|
|
|
|
@staticmethod
|
|
def get_cfg(command, build_conf, item):
|
|
try:
|
|
return build_conf[item]
|
|
except KeyError:
|
|
command.check_force(
|
|
False, "build .config is missing a {} value".format(item))
|
|
return None
|
|
|
|
@staticmethod
|
|
def edt_flash_node(b, quiet=False):
|
|
# Get the EDT Node corresponding to the zephyr,flash chosen DT
|
|
# node; 'b' is the build directory as a pathlib object.
|
|
|
|
# Ensure the build directory has a compiled DTS file
|
|
# where we expect it to be.
|
|
dts = b / 'zephyr' / 'zephyr.dts'
|
|
if not quiet:
|
|
log.dbg('DTS file:', dts, level=log.VERBOSE_VERY)
|
|
edt_pickle = b / 'zephyr' / 'edt.pickle'
|
|
if not edt_pickle.is_file():
|
|
log.die("can't load devicetree; expected to find:", edt_pickle)
|
|
|
|
# Load the devicetree.
|
|
with open(edt_pickle, 'rb') as f:
|
|
edt = pickle.load(f)
|
|
|
|
# By convention, the zephyr,flash chosen node contains the
|
|
# partition information about the zephyr image to sign.
|
|
flash = edt.chosen_node('zephyr,flash')
|
|
if not flash:
|
|
log.die('devicetree has no chosen zephyr,flash node;',
|
|
"can't infer flash write block or image-0 slot sizes")
|
|
|
|
return flash
|
|
|
|
@staticmethod
|
|
def edt_flash_params(flash):
|
|
# Get the flash device's write alignment and offset from the
|
|
# image-0 partition and the size from image-1 partition, out of the
|
|
# build directory's devicetree. image-1 partition size is used,
|
|
# when available, because in swap-move mode it can be one sector
|
|
# smaller. When not available, fallback to image-0 (single image dfu).
|
|
|
|
# The node must have a "partitions" child node, which in turn
|
|
# must have child node labeled "image-0" and may have a child node
|
|
# named "image-1". By convention, the slots for consumption by
|
|
# imgtool are linked into these partitions.
|
|
if 'partitions' not in flash.children:
|
|
log.die("DT zephyr,flash chosen node has no partitions,",
|
|
"can't find partitions for MCUboot slots")
|
|
|
|
partitions = flash.children['partitions']
|
|
images = {
|
|
node.label: node for node in partitions.children.values()
|
|
if node.label in set(['image-0', 'image-1'])
|
|
}
|
|
|
|
if 'image-0' not in images:
|
|
log.die("DT zephyr,flash chosen node has no image-0 partition,",
|
|
"can't determine its address")
|
|
|
|
# Die on missing or zero alignment or slot_size.
|
|
if "write-block-size" not in flash.props:
|
|
log.die('DT zephyr,flash node has no write-block-size;',
|
|
"can't determine imgtool write alignment")
|
|
align = flash.props['write-block-size'].val
|
|
if align == 0:
|
|
log.die('expected nonzero flash alignment, but got '
|
|
'DT flash device write-block-size {}'.format(align))
|
|
|
|
# The partitions node, and its subnode, must provide
|
|
# the size of image-1 or image-0 partition via the regs property.
|
|
image_key = 'image-1' if 'image-1' in images else 'image-0'
|
|
if not images[image_key].regs:
|
|
log.die(f'{image_key} flash partition has no regs property;',
|
|
"can't determine size of image")
|
|
|
|
# always use addr of image-0, which is where images are run
|
|
addr = images['image-0'].regs[0].addr
|
|
|
|
size = images[image_key].regs[0].size
|
|
if size == 0:
|
|
log.die('expected nonzero slot size for {}'.format(image_key))
|
|
|
|
return (align, addr, size)
|
|
|
|
class RimageSigner(Signer):
|
|
|
|
def sign(self, command, build_dir, build_conf, formats):
|
|
args = command.args
|
|
|
|
if args.tool_path:
|
|
command.check_force(shutil.which(args.tool_path),
|
|
'--tool-path {}: not an executable'.
|
|
format(args.tool_path))
|
|
tool_path = args.tool_path
|
|
else:
|
|
tool_path = shutil.which('rimage')
|
|
if not tool_path:
|
|
log.die('rimage not found; either install it',
|
|
'or provide --tool-path')
|
|
|
|
b = pathlib.Path(build_dir)
|
|
cache = CMakeCache.from_build_dir(build_dir)
|
|
|
|
target = cache.get('RIMAGE_TARGET')
|
|
if not target:
|
|
log.die('rimage target not defined')
|
|
|
|
conf = target + '.toml'
|
|
log.inf('Signing for SOC target ' + target + ' using ' + conf)
|
|
|
|
if not args.quiet:
|
|
log.inf('Signing with tool {}'.format(tool_path))
|
|
|
|
if target in ('imx8', 'imx8m'):
|
|
kernel = str(b / 'zephyr' / 'zephyr.elf')
|
|
out_bin = str(b / 'zephyr' / 'zephyr.ri')
|
|
out_xman = str(b / 'zephyr' / 'zephyr.ri.xman')
|
|
out_tmp = str(b / 'zephyr' / 'zephyr.rix')
|
|
else:
|
|
bootloader = str(b / 'zephyr' / 'boot.mod')
|
|
kernel = str(b / 'zephyr' / 'main.mod')
|
|
out_bin = str(b / 'zephyr' / 'zephyr.ri')
|
|
out_xman = str(b / 'zephyr' / 'zephyr.ri.xman')
|
|
out_tmp = str(b / 'zephyr' / 'zephyr.rix')
|
|
conf_path_cmd = []
|
|
if cache.get('RIMAGE_CONFIG_PATH') and not args.tool_data:
|
|
rimage_conf = pathlib.Path(cache['RIMAGE_CONFIG_PATH'])
|
|
conf_path = str(rimage_conf / conf)
|
|
conf_path_cmd = ['-c', conf_path]
|
|
elif args.tool_data:
|
|
conf_dir = pathlib.Path(args.tool_data)
|
|
conf_path = str(conf_dir / conf)
|
|
conf_path_cmd = ['-c', conf_path]
|
|
else:
|
|
log.die('Configuration not found')
|
|
if '--no-manifest' in args.tool_args:
|
|
no_manifest = True
|
|
args.tool_args.remove('--no-manifest')
|
|
else:
|
|
no_manifest = False
|
|
|
|
if no_manifest:
|
|
extra_ri_args = ['-i', '3']
|
|
else:
|
|
extra_ri_args = ['-i', '3', '-e']
|
|
|
|
components = [ ] if (target in ('imx8', 'imx8m')) else [ bootloader ]
|
|
components += [ kernel ]
|
|
sign_base = ([tool_path] + args.tool_args +
|
|
['-o', out_bin] + conf_path_cmd + extra_ri_args +
|
|
components)
|
|
|
|
if not args.quiet:
|
|
log.inf(quote_sh_list(sign_base))
|
|
subprocess.check_call(sign_base)
|
|
|
|
if no_manifest:
|
|
filenames = [out_bin]
|
|
else:
|
|
filenames = [out_xman, out_bin]
|
|
with open(out_tmp, 'wb') as outfile:
|
|
for fname in filenames:
|
|
with open(fname, 'rb') as infile:
|
|
outfile.write(infile.read())
|
|
|
|
os.remove(out_bin)
|
|
os.rename(out_tmp, out_bin)
|