pihelp: main.c comparison

comparison main.c @ 47:747695bd4e0d

add printhmac support fix timer for new speed bootid command rebootpi command

author	Matt Johnston <matt@ucc.asn.au>
date	Mon, 01 Jul 2013 22:15:40 +0800
parents	b1c27f1d6289
children

comparison

equal deleted inserted replaced

-:b1c27f1d6289
+:747695bd4e0d
 // TICK should be 8 or less (8 untested). all timers need
 // to be a multiple.
 #define TICK 1
-#define SLEEP_COMPARE (F_CPU/256)   // == 19200 for 4915200mhz
+#define SLEEP_COMPARE (F_CPU/1024)   // == 10800 for 11059200hz
 #define NKEYS 10
 #define HMACLEN 20
 #define AESLEN 16
 #define KEYLEN HMACLEN
 // 64 bits is enough for a realtime challenge
 #define CHALLEN 8
+#define HMAC_PRINT_LEN 3
 #define BAUD 115200
 #define UBRR ((F_CPU)/(16*(BAUD))-1)
 #define PORT_PI_BOOT PORTD
 // all timeouts should be a multiple of TICK
 static uint32_t watchdog_long_limit = WATCHDOG_LONG_DEFAULT;
 static uint32_t watchdog_short_limit = 0;
 static uint32_t newboot_limit = NEWBOOT_DEFAULT;
-// avr proves itself
+// key index 0 is special, used internally for bootid
 static uint8_t avr_keys[NKEYS][KEYLEN] = {{0}};
 // ---- Atomic guards required accessing these variables
 // clock_epoch in seconds
 static uint32_t clock_epoch;
 // flips between 0 and 1 each watchdog_long_hit, so eventually a
 // working firmware should boot. set back to 0 for each 'alive'
 // command
 static uint8_t long_reboot_mode = 0;
-static uint8_t boot_id_set = 0;
 static uint8_t boot_id[HMACLEN];
 static uint8_t readpos;
 static char readbuf[150];
 static uint8_t have_cmd;
 static uint16_t adc_5v(uint16_t vcc);
 static uint16_t adc_temp();
 static void set_pi_boot_normal(uint8_t normal);
 static void adc_random(uint8_t admux,
 uint8_t *out, uint16_t num, uint32_t *tries);
+void printhex(uint8_t *id, uint8_t n, FILE *stream);
+static void cmd_rebootpi();
+uint8_t uart_hmac_print;
+uint32_t uart_hmac_counter;
+hmac_sha1_ctx_t uart_hmac_ctx;
+uint8_t uart_hmac_buf[SHA1_BLOCK_BITS/8];
+uint8_t uart_hmac_index;
 static FILE mystdout = FDEV_SETUP_STREAM(uart_putchar, NULL,
 _FDEV_SETUP_WRITE);
+static FILE _rawstdout = FDEV_SETUP_STREAM(uart_putchar, NULL,
+_FDEV_SETUP_WRITE);
+static FILE *raw_stdout = &_rawstdout;
 // thanks to http://projectgus.com/2010/07/eeprom-access-with-arduino/
 #define eeprom_read_to(dst_p, eeprom_field, dst_size) eeprom_read_block((dst_p), (void *)offsetof(struct __eeprom_data, eeprom_field), (dst_size))
 #define eeprom_read(dst, eeprom_field) eeprom_read_to((&dst), eeprom_field, sizeof(dst))
 #define eeprom_write_from(src_p, eeprom_field, src_size) eeprom_write_block((src_p), (void *)offsetof(struct __eeprom_data, eeprom_field), (src_size))
 TCCR1A = _BV(COM1A0);
 #ifdef SIM_DEBUG
 // systemclock/8
 TCCR1B = _BV(CS11);
 #else
-// systemclock/256
+// systemclock/1024
-TCCR1B = _BV(CS12);
+TCCR1B = _BV(CS12) | _BV(CS10);
 #endif
 TCNT1 = 0;
 OCR1A = SLEEP_COMPARE;
 // interrupt
 TIMSK1 = _BV(OCIE1A);
 static char sim_out[140];
 static uint8_t sim_idx = 0;
 static uint8_t last_sim_idx = 0;
 #endif
+static void
+reset_uart_hmac(void)
+{
+uart_hmac_counter++;
+uint8_t key[KEYLEN + sizeof(boot_id) + sizeof(uart_hmac_counter)];
+uint8_t *k = key;
+memcpy(k, avr_keys[0], KEYLEN);
+k += KEYLEN;
+memcpy(k, boot_id, sizeof(boot_id));
+k += sizeof(boot_id);
+memcpy(k, &uart_hmac_counter, sizeof(uart_hmac_counter));
+hmac_sha1_init(&uart_hmac_ctx, key, 8*sizeof(key));
+uart_hmac_index = 0;
+}
+static void
+uart_hmac(char c)
+{
+if (c == '\r' || c == '\n')
+{
+hmac_sha1_lastBlock(&uart_hmac_ctx, uart_hmac_buf, 8*uart_hmac_index);
+uint8_t hmac_out[HMACLEN];
+hmac_sha1_final(hmac_out, &uart_hmac_ctx);
+if (uart_hmac_print)
+{
+fputc(' ', raw_stdout);
+printhex((uint8_t*)&uart_hmac_counter, sizeof(uart_hmac_counter), raw_stdout);
+fputc(' ', raw_stdout);
+printhex(hmac_out, HMAC_PRINT_LEN, raw_stdout);
+}
+reset_uart_hmac();
+return;
+}
+if (uart_hmac_index == sizeof(uart_hmac_buf))
+{
+hmac_sha1_nextBlock(&uart_hmac_ctx, uart_hmac_buf);
+uart_hmac_index = 0;
+}
+uart_hmac_buf[uart_hmac_index] = c;
+uart_hmac_index++;
+}
+static void
+cmd_printhmac(const char *arg)
+{
+uart_hmac_print = (strtoul(arg, NULL, 10) != 0);
+if (uart_hmac_print)
+{
+printf_P(PSTR("hmac printing on\n"));
+}
+else
+{
+printf_P(PSTR("hmac printing off\n"));
+}
+}
 int
 uart_putchar(char c, FILE *stream)
 {
+if (stream != raw_stdout)
+{
+uart_hmac(c);
+}
 // XXX could perhaps sleep in the loop for power.
 if (c == '\n')
 {
 loop_until_bit_is_set(UCSR0A, UDRE0);
 UDR0 = '\r';
 {
 printf_P(PSTR("FAIL: Bad input\n"));
 return;
 }
+if (key_index == 0)
+{
+printf_P(PSTR("Can't use key index 0\n"));
+return;
+}
 #ifndef SIM_DEBUG
 long_delay(200);
 #endif
 hmac_sha1(outdata, avr_keys[key_index], KEYLEN*8, indata, sizeof(indata)*8);
 uint8_t output[AESLEN];
 uint8_t key_index;
 if (parse_key(params, &key_index, indata, sizeof(indata)) != 0)
 {
 printf_P(PSTR("FAIL: Bad input\n"));
+return;
+}
+if (key_index == 0)
+{
+printf_P(PSTR("Can't use key index 0\n"));
 return;
 }
 #ifndef SIM_DEBUG
 long_delay(200);
 adc_random(0x44, rnd, sizeof(rnd), &tries);
 hmac_sha1(out, buildid, sizeof(buildid)*8, rnd, sizeof(rnd)*8);
 }
 static void
+cmd_newbootid()
+{
+get_random(boot_id);
+reset_uart_hmac();
+printf_P(PSTR("bootid cleared\n"));
+}
+static void
 cmd_bootid(const char *arg)
 {
 uint8_t hmac[HMACLEN];
 uint8_t input[CHALLEN+sizeof(boot_id)];
-if (!boot_id_set)
-{
-_Static_assert(sizeof(boot_id) == HMACLEN, "boot_id size correct");
-get_random(boot_id);
-boot_id_set = 1;
-}
 if (strlen(arg) != CHALLEN*2)
 {
 printf_P(PSTR("Bad challenge\n"));
 }
 for (int i = 0, p = 0; i < CHALLEN; i++, p += 2)
 LOCAL_PSTR(oldboot);
 LOCAL_PSTR(status);
 LOCAL_PSTR(random);
 LOCAL_PSTR(prog);
 LOCAL_PSTR(bootid);
+LOCAL_PSTR(newbootid);
+LOCAL_PSTR(rebootpi);
+LOCAL_PSTR(printhmac);
 LOCAL_HELP(set_params, "<long_limit> <short_limit> <newboot_limit>");
 LOCAL_HELP(set_key, "20_byte_hex>");
 LOCAL_HELP(oneshot, "<timeout>");
 LOCAL_HELP(prog, "<password>");
 LOCAL_HELP(random, "<admux> <nbytes>");
 LOCAL_HELP(hmac, "<key_index> <20_byte_hex_data>");
 LOCAL_HELP(decrypt, "<key_index> <20_byte_hmac|16_byte_aes_block>");
 LOCAL_HELP(bootid, "<8_byte_challenge>")
+LOCAL_HELP(printhmac, "<0|1>")
 static const struct handler {
 PGM_P name;
 void(*cmd)(const char *param);
 // existence of arg_help indicates if the cmd takes a parameter.
 {set_params_str, cmd_set_params, set_params_help},
 {set_key_str, cmd_set_avr_key, set_key_help},
 {random_str, cmd_random, random_help},
 {vcc_str, cmd_vcc, NULL},
 {reset_str, cmd_reset, NULL},
+{rebootpi_str, cmd_rebootpi, NULL},
 {prog_str, cmd_prog, prog_help},
 {bootid_str, cmd_bootid, bootid_help},
+{newbootid_str, cmd_newbootid, NULL},
+{printhmac_str, cmd_printhmac, printhmac_help},
 };
 if (readbuf[0] == '\0')
 {
 return;
 static void
 reboot_pi()
 {
 printf_P(PSTR("Real reboot now\n"));
-boot_id_set = 0;
+cmd_newbootid();
 // pull it low for 200ms
 PORT_PI_RESET &= ~_BV(PIN_PI_RESET);
 DDR_PI_RESET |= _BV(PIN_PI_RESET);
 long_delay(200);
 	PORT_PI_WARNING &= ~_BV(PIN_PI_WARNING);
 DDR_PI_RESET &= ~_BV(PIN_PI_RESET);
 }
 static void
+cmd_rebootpi()
+{
+printf_P(PSTR("Rebooting.\n"));
+long_delay(1000);
+reboot_pi();
+}
+static void
 wait_reboot_pi()
 {
 	PORT_PI_WARNING |= _BV(PIN_PI_WARNING);
 ATOMIC_BLOCK(ATOMIC_RESTORESTATE)
 {
 wdt_disable();
 }
 int main(void)
 {
-_Static_assert(F_CPU % 256 == 0, "clock prescaler remainder 0");
+_Static_assert(F_CPU % 1024 == 0, "clock prescaler remainder 0");
 _Static_assert(NEWBOOT_MAX < WATCHDOG_LONG_MIN, "newboot max shorter than watchdog min");
 _Static_assert((F_CPU)%(16*(BAUD)) == 0, "baud rate good multiple");
 setup_chip();
 blink();
-stdout = &mystdout;
+stdout = raw_stdout;
 uart_on();
 long_delay(500);
 printf_P(PSTR("Pi Watchdog\nMatt Johnston [email protected]\n"));
 set_pi_boot_normal(0);
 load_params();
+cmd_newbootid();
+reset_uart_hmac();
+stdout = &mystdout;
 setup_tick_counter();
 sei();

Mercurial > pihelp

comparison main.c @ 47:747695bd4e0d