util/broadcom/secimage: Add HMAC test

One of responsibilities of the `secimage` tool is signing the image using the HMAC-SHA256 algorithm. The test being added verifies that secimage's internal call yields same result as the according openssl tool does. Change-Id: I8de4328f435af56901a861e3d5e733657c3c7f78 Signed-off-by: Alex Thiessen <alex.thiessen.de+coreboot@gmail.com> Reviewed-on: https://review.coreboot.org/23474 Tested-by: build bot (Jenkins) <no-reply@coreboot.org> Reviewed-by: Patrick Georgi <pgeorgi@google.com> Reviewed-by: Paul Menzel <paulepanter@users.sourceforge.net>
2018-01-03 19:09:50 +00:00 · 2018-01-03 19:09:50 +00:00 · 457d1c8fa2
parent f300f36210
commit 457d1c8fa2
7 changed files with 2317 additions and 0 deletions
--- a/util/broadcom/secimage/Makefile
+++ b/util/broadcom/secimage/Makefile
@ -31,6 +31,11 @@ install:
 	install -d $(DESTDIR)/usr/bin
 	install $(TARGET) $(DESTDIR)/usr/bin

+.PHONY: test
+test: $(TARGET)
+	@find test -maxdepth 1 -type f -executable \
+		| xargs -I "{}" sh -c "{} $$(realpath $<)"
+
 .PHONY: clean

 clean:
--- a/util/broadcom/secimage/test/data/expected/binary.xxdump
+++ b/util/broadcom/secimage/test/data/expected/binary.xxdump
--- a/util/broadcom/secimage/test/data/input/binary.xxdump
+++ b/util/broadcom/secimage/test/data/input/binary.xxdump
--- a/util/broadcom/secimage/test/data/input/configfile.xxdump
+++ b/util/broadcom/secimage/test/data/input/configfile.xxdump
@ -0,0 +1,41 @@
+00000000: 2f2f 2055 6e61 7574 6820 4865 6164 6572  // Unauth Header |
+00000010: 0a2f 2f0a 2f2f 2073 7472 7563 7420 556e  .//.// struct Un |
+00000020: 4175 7468 656e 7469 6361 7465 6448 6561  AuthenticatedHea |
+00000030: 6465 725f 7420 7b0a 2f2f 0975 696e 7433  der_t {.//.uint3 |
+00000040: 325f 7420 5461 673b 0909 2f2a 2054 6167  2_t Tag;../* Tag |
+00000050: 2075 7365 6420 746f 206c 6f63 6174 6520   used to locate  |
+00000060: 626f 6f74 2062 696e 6172 7920 696e 206d  boot binary in m |
+00000070: 656d 6f72 7920 2a2f 0a2f 2f09 7569 6e74  emory */.//.uint |
+00000080: 3332 5f74 204c 656e 6774 683b 092f 2a20  32_t Length;./*  |
+00000090: 4c65 6e67 7468 206f 6620 7468 6520 626f  Length of the bo |
+000000a0: 6f74 2062 696e 6172 7920 2a2f 0a2f 2f09  ot binary */.//. |
+000000b0: 7569 6e74 3332 5f74 2052 6573 6572 7665  uint32_t Reserve |
+000000c0: 643b 092f 2a20 4164 6472 6573 7320 666f  d;./* Address fo |
+000000d0: 7220 7468 6520 6e6f 6e2d 6175 7468 656e  r the non-authen |
+000000e0: 7469 6361 7465 6420 626f 6f74 2e0a 2f2f  ticated boot..// |
+000000f0: 0909 0909 2020 2054 6865 2061 6464 7265  ....   The addre |
+00000100: 7373 2069 7320 616c 6967 6e65 6420 746f  ss is aligned to |
+00000110: 2031 3620 6279 7465 7320 626f 756e 6461   16 bytes bounda |
+00000120: 7279 2e0a 2f2f 0909 0909 2020 2054 6865  ry..//....   The |
+00000130: 206c 6f77 6572 2034 2062 6974 7320 6172   lower 4 bits ar |
+00000140: 6520 7573 6564 2066 6f72 2043 6c6b 436f  e used for ClkCo |
+00000150: 6e66 6967 3a0a 2f2f 0909 0909 2020 2056  nfig:.//....   V |
+00000160: 616c 7565 2020 2046 7265 710a 2f2f 0909  alue   Freq.//.. |
+00000170: 0909 2020 2031 2020 2020 2020 2034 3030  ..   1       400 |
+00000180: 0a2f 2f09 0909 0920 2020 3220 2020 2020  .//....   2      |
+00000190: 2020 3147 487a 0a2f 2f09 0909 0920 2020    1GHz.//....    |
+000001a0: 3320 2020 2020 2020 4d61 7820 2831 2e32  3       Max (1.2 |
+000001b0: 4748 7a29 0a2f 2f09 0909 0920 2020 3420  GHz).//....   4  |
+000001c0: 2020 2020 2020 6e6f 2050 4c4c 206c 6f63        no PLL loc |
+000001d0: 6b3a 2032 3030 4d48 7a0a 2f2f 0909 0909  k: 200MHz.//.... |
+000001e0: 202a 2f0a 2f2f 0975 696e 7433 325f 7420   */.//.uint32_t  |
+000001f0: 6372 633b 0909 2f2a 2043 5243 2063 6f6d  crc;../* CRC com |
+00000200: 7075 7465 6420 6f6e 2061 6c6c 206f 7468  puted on all oth |
+00000210: 6572 2066 6965 6c64 7320 696e 2074 6869  er fields in thi |
+00000220: 730a 2f2f 0909 0909 2020 2073 7472 7563  s.//....   struc |
+00000230: 7475 7265 2065 7863 6c75 6469 6e67 2063  ture excluding c |
+00000240: 7263 2066 6965 6c64 202a 2f0a 2f2f 207d  rc field */.// } |
+00000250: 3b0a 5461 673d 0909 3078 4135 4135 4135  ;.Tag=..0xA5A5A5 |
+00000260: 4135 0a4c 656e 6774 683d 0909 3078 3030  A5.Length=..0x00 |
+00000270: 3030 3030 3030 0a52 6573 6572 7665 643d  000000.Reserved= |
+00000280: 2020 0930 7830 3030 3030 3030 320a         .0x00000002. |
--- a/util/broadcom/secimage/test/data/input/hmac_binary_key.xxdump
+++ b/util/broadcom/secimage/test/data/input/hmac_binary_key.xxdump
@ -0,0 +1,2 @@
+00000000: d1ef bcba d798 d871 003d ee3b f7b8 461c  .......q.=.;..F. |
+00000010: 53a8 b9c5 b6dc 57dc 1280 631d aea3 e003  S.....W...c..... |
--- a/util/broadcom/secimage/test/hmac.sh
+++ b/util/broadcom/secimage/test/hmac.sh
@ -0,0 +1,78 @@
+#!/bin/bash
+
+##
+## This file is part of the coreboot project.
+##
+## Copyright (C) 2003-2018 Alex Thiessen <alex.thiessen.de+coreboot@gmail.com>
+##
+## This program is free software; you can redistribute it and/or modify
+## it under the terms of the GNU General Public License as published by
+## the Free Software Foundation; version 3 or later of the License.
+##
+## This program is distributed in the hope that it will be useful,
+## but WITHOUT ANY WARRANTY; without even the implied warranty of
+## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+## GNU General Public License for more details.
+##
+## SPDX-License-Identifier: GPL-3.0-or-later
+## <https://spdx.org/licenses/GPL-3.0-or-later.html>
+##
+
+set -o errexit
+set -o nounset
+set -o pipefail
+
+# static analysis
+if command -v shellcheck 1>/dev/null; then
+	shellcheck "${BASH_SOURCE[0]}"
+else
+       echo "shellcheck not found, running unchecked" >&2
+fi
+
+# dependency check
+dependencies=(basename diff dirname head mkdir mktemp openssl rm tail xxd)
+for dependency in "${dependencies[@]}"; do
+	if ! command -v "${dependency}" 1>/dev/null; then
+		echo "missing ${dependency}, test skipped" >&2
+		exit 0
+	fi
+done
+
+# parameters
+if [ ${#} -ne 1 ]; then
+	echo "usage: '${0}' <testee>"
+	exit 1
+fi
+
+# setup
+testee="${1}"
+declare -i header_len=16 signature_len=32
+tmp_dir="$(mktemp --directory --tmpdir secimage-test-XXXXXXXX)"
+shopt -s globstar nullglob
+for dump_file in test/data/**/*.xxdump; do
+	bin_file_dir="${tmp_dir}/$(dirname "${dump_file#test/data/}")"
+	mkdir --parents "${bin_file_dir}"
+	xxd -r "${dump_file}" \
+	       "${bin_file_dir}/$(basename "${dump_file}" .xxdump)"
+done
+tail --bytes=+$((header_len + 1)) "${tmp_dir}/expected/binary" \
+	| head --bytes=-${signature_len} \
+	| openssl dgst -sha256 -mac hmac \
+		-macopt hexkey:"$(xxd -c$((signature_len * 2)) -ps \
+			"${tmp_dir}/input/hmac_binary_key")" \
+		-binary \
+		> "${tmp_dir}/expected/signature"
+mkdir "${tmp_dir}/actual"
+
+# test
+"${testee}" \
+	-out "${tmp_dir}/actual/binary" \
+	-config "${tmp_dir}/input/configfile" \
+	-hmac "${tmp_dir}/input/hmac_binary_key" \
+	-bl "${tmp_dir}/input/binary"
+tail --bytes=${signature_len} "${tmp_dir}/actual/binary" \
+	> "${tmp_dir}/actual/signature"
+diff --recursive "${tmp_dir}/actual" "${tmp_dir}/expected" 1>/dev/null
+
+# teardown
+rm --force --recursive "${tmp_dir}"
--- a/util/testing/Makefile.inc
+++ b/util/testing/Makefile.inc
@ -50,6 +50,7 @@ junit.xml:
 	echo

 TOOLLIST= \
+broadcom/secimage \
 cbmem \
 ectool \
 futility \
@ -110,6 +111,8 @@ test-tools:
 	$(foreach tool, $(TOOLLIST), echo "Building $(tool)";export MFLAGS= ;export MAKEFLAGS= ;$(MAKE) -C util/$(tool) all V=$(V) Q=$(Q) || exit 1; )
 	echo "Building romcc"
 	$(MAKE) -C util/romcc all test -j $(CPUS) V=$(V) Q=$(Q)
+	echo "Testing broadcom/secimage"
+	$(MAKE) -C util/broadcom/secimage test

 test-cleanup:
 	rm -rf coreboot-builds coreboot-builds-chromeos