mirror of
https://github.com/rvtr/TwlIPL.git
synced 2025-10-31 06:01:12 -04:00
一時バッファ利用版AES対応 (未検証) git-svn-id: file:///Users/lillianskinner/Downloads/platinum/twl/TwlIPL/trunk@328 b08762b0-b915-fc4b-9d8c-17b2551a87ff
692 lines
22 KiB
C
692 lines
22 KiB
C
/*---------------------------------------------------------------------------*
|
|
Project: TwlIPL - libraries - fs
|
|
File: fs_firm.c
|
|
|
|
Copyright 2007 Nintendo. All rights reserved.
|
|
|
|
These coded instructions, statements, and computer programs contain
|
|
proprietary information of Nintendo of America Inc. and/or Nintendo
|
|
Company Ltd., and are protected by Federal copyright law. They may
|
|
not be disclosed to third parties or copied or duplicated in any form,
|
|
in whole or in part, without the prior written consent of Nintendo.
|
|
|
|
$Date:: $
|
|
$Rev$
|
|
$Author$
|
|
*---------------------------------------------------------------------------*/
|
|
|
|
#include <firm.h>
|
|
#include <estypes.h>
|
|
#include <es.h>
|
|
|
|
#define FS_HEADER_AUTH_SIZE 0xe00
|
|
|
|
#define MODULE_ALIGNMENT 0x10 // 16バイト単位で読み込む
|
|
//#define MODULE_ALIGNMENT 0x200 // 512バイト単位で読み込む
|
|
#define RoundUpModuleSize(value) (((value) + MODULE_ALIGNMENT - 1) & -MODULE_ALIGNMENT)
|
|
|
|
#define CONTENT_INDEX_SRL 0
|
|
#define HASH_UNIT 0x1000
|
|
|
|
static ROM_Header* const rh = (ROM_Header*)HW_TWL_ROM_HEADER_BUF;
|
|
|
|
static u8 currentKey[ SVC_SHA1_BLOCK_SIZE ];
|
|
|
|
static const u8 defaultKey[ SVC_SHA1_BLOCK_SIZE ] =
|
|
{
|
|
0x21, 0x06, 0xc0, 0xde,
|
|
0xba, 0x98, 0xce, 0x3f,
|
|
0xa6, 0x92, 0xe3, 0x9d,
|
|
0x46, 0xf2, 0xed, 0x01,
|
|
|
|
0x76, 0xe3, 0xcc, 0x08,
|
|
0x56, 0x23, 0x63, 0xfa,
|
|
0xca, 0xd4, 0xec, 0xdf,
|
|
0x9a, 0x62, 0x78, 0x34,
|
|
|
|
0x8f, 0x6d, 0x63, 0x3c,
|
|
0xfe, 0x22, 0xca, 0x92,
|
|
0x20, 0x88, 0x97, 0x23,
|
|
0xd2, 0xcf, 0xae, 0xc2,
|
|
|
|
0x32, 0x67, 0x8d, 0xfe,
|
|
0xca, 0x83, 0x64, 0x98,
|
|
0xac, 0xfd, 0x3e, 0x37,
|
|
0x87, 0x46, 0x58, 0x24,
|
|
};
|
|
|
|
static AESKey FSiAesKeySeed;
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_InitFIRM
|
|
|
|
Description: initialize FS/FATFS for firm
|
|
|
|
Arguments: None
|
|
|
|
Returns: None
|
|
*---------------------------------------------------------------------------*/
|
|
void FS_InitFIRM( void )
|
|
{
|
|
MI_CpuClearFast( (void*)HW_FIRM_FS_TWMP_BUFFER, HW_FIRM_FS_TWMP_BUFFER_SIZE );
|
|
FSiTemporaryBuffer = (void*)HW_FIRM_FS_TWMP_BUFFER;
|
|
FATFS_InitFIRM();
|
|
FS_Init( FS_DMA_NOT_USE );
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_GetAesKeySeed
|
|
|
|
Description: retreive aes key seed in the signature
|
|
|
|
Arguments: None
|
|
|
|
Returns: pointer to seed
|
|
*---------------------------------------------------------------------------*/
|
|
AESKey* const FS_GetAesKeySeed( void )
|
|
{
|
|
return &FSiAesKeySeed;
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_DeleteAesKeySeed
|
|
|
|
Description: delete aes key seed in the signature
|
|
|
|
Arguments: None
|
|
|
|
Returns: None
|
|
*---------------------------------------------------------------------------*/
|
|
void FS_DeleteAesKeySeed( void )
|
|
{
|
|
MI_CpuClear8( &FSiAesKeySeed, sizeof(FSiAesKeySeed) );
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_ResolveSrl
|
|
|
|
Description: resolve srl filename and store to HW_TWL_FS_BOOT_SRL_PATH_BUF
|
|
|
|
Arguments: titleId title id for srl file
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_ResolveSrl( u64 titleId )
|
|
{
|
|
if ( ES_ERR_OK != ES_InitLib() ||
|
|
ES_ERR_OK != ES_GetContentPath(titleId, CONTENT_INDEX_SRL, (char*)HW_TWL_FS_BOOT_SRL_PATH_BUF) ||
|
|
ES_ERR_OK != ES_CloseLib() )
|
|
{
|
|
return FALSE;
|
|
}
|
|
return TRUE;
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_SetDigestKey
|
|
|
|
Description: set specified key or default key for HMAC-SHA-1
|
|
|
|
Arguments: digestKey pointer to key
|
|
if NULL, use default key
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
void FS_SetDigestKey( const u8* digestKey )
|
|
{
|
|
if ( digestKey )
|
|
{
|
|
MI_CpuCopy8(digestKey, currentKey, SVC_SHA1_BLOCK_SIZE);
|
|
}
|
|
else
|
|
{
|
|
MI_CpuCopy8(defaultKey, currentKey, SVC_SHA1_BLOCK_SIZE);
|
|
}
|
|
}
|
|
|
|
static inline BOOL CheckDigest( u8* a, u8* b, BOOL aClr, BOOL bClr )
|
|
{
|
|
BOOL result = TRUE;
|
|
int i;
|
|
for ( i = 0; i < SVC_SHA1_DIGEST_SIZE; i++ )
|
|
{
|
|
if ( a[i] != b[i] )
|
|
{
|
|
result = FALSE;
|
|
}
|
|
}
|
|
if ( aClr ) MI_CpuClear8(a, SVC_SHA1_DIGEST_SIZE);
|
|
if ( bClr ) MI_CpuClear8(b, SVC_SHA1_DIGEST_SIZE);
|
|
return result;
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: CheckRomCertificate
|
|
|
|
Description: check the certification in the ROM
|
|
|
|
ROMヘッダに付加された証明書のチェックを行います。
|
|
makerom.TWL内のコードに依存します。
|
|
|
|
Arguments: pool pointer to the SVCSignHeapContext
|
|
pCert pointer to the certification
|
|
pCAPubKey pointer to the public key for the certification
|
|
gameCode initial code
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
static BOOL CheckRomCertificate( SVCSignHeapContext* pool, const RomCertificate *pCert, const void* pCAPubKey, u32 gameCode )
|
|
{
|
|
u8 digest[SVC_SHA1_DIGEST_SIZE];
|
|
u8 md[SVC_SHA1_DIGEST_SIZE];
|
|
|
|
// 証明書ヘッダのマジックナンバーチェック
|
|
if( pCert->header.magicNumber != TWL_ROM_CERT_MAGIC_NUMBER ||
|
|
// 証明書ヘッダとROMヘッダのゲームコード一致チェック
|
|
pCert->header.gameCode != gameCode )
|
|
{
|
|
return FALSE;
|
|
}
|
|
// 証明書署名チェック
|
|
SVC_DecryptSign( pool, &digest, pCert->sign, pCAPubKey );
|
|
|
|
// ダイジェストの計算
|
|
SVC_CalcSHA1( md, pCert, ROM_CERT_SIGN_OFFSET );
|
|
|
|
// 比較
|
|
return CheckDigest(md, digest, TRUE, TRUE);
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_LoadBuffer
|
|
|
|
Description: receive data from ARM7 via WRAM-B and store in destination address,
|
|
calculate SHA1 in parallel if ctx is specified
|
|
|
|
Arguments: dest destination address to read
|
|
size total length to read in bytes
|
|
ctx pointer to SHA1 context or NULL
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_LoadBuffer( u8* dest, u32 size, SVCSHA1Context *ctx )
|
|
{
|
|
static int count = 0;
|
|
|
|
while ( size > 0 )
|
|
{
|
|
u8* src = (u8*)HW_FIRM_LOAD_BUFFER_BASE + count * HW_FIRM_LOAD_BUFFER_UNIT_SIZE;
|
|
u32 unit = size < HW_FIRM_LOAD_BUFFER_UNIT_SIZE ? size : HW_FIRM_LOAD_BUFFER_UNIT_SIZE;
|
|
if ( PXI_RecvID() != FIRM_PXI_ID_LOAD_PIRIOD )
|
|
{
|
|
return FALSE;
|
|
}
|
|
MIi_SetWramBankMaster_B( count, MI_WRAM_ARM9 );
|
|
if (ctx)
|
|
{
|
|
int done;
|
|
for ( done = 0; done < unit; done += HASH_UNIT )
|
|
{
|
|
u8* s = src + done;
|
|
u8* d = dest + done;
|
|
u32 u = unit - done < HASH_UNIT ? unit - done : HASH_UNIT;
|
|
SVC_SHA1Update( ctx, s, u );
|
|
MI_CpuCopyFast( s, d, u );
|
|
MI_CpuClearFast( s, u ); // OS_Bootでのクリアと比較する
|
|
}
|
|
}
|
|
else
|
|
{
|
|
MI_CpuCopyFast( src, dest, unit );
|
|
MI_CpuClearFast( src, unit ); // OS_Bootでのクリアと比較する
|
|
}
|
|
DC_FlushRange( src, unit );
|
|
size -= unit;
|
|
dest += unit;
|
|
MIi_SetWramBankMaster_B( count, MI_WRAM_ARM7 );
|
|
count = ( count + 1 ) % HW_FIRM_LOAD_BUFFER_UNIT_NUMS;
|
|
}
|
|
return TRUE;
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: GetTransferSize
|
|
|
|
Description: get size to transfer once
|
|
|
|
一度に受信するサイズを返します。
|
|
|
|
転送範囲がAES領域をまたぐ場合は、境界までのサイズ (引数より
|
|
小さなサイズ) を返します。
|
|
makerom.TWLまたはIPLの使用に依存します。
|
|
|
|
Arguments: offset offset of region from head of ROM_Header
|
|
size size of region
|
|
|
|
Returns: size to transfer once
|
|
*---------------------------------------------------------------------------*/
|
|
static u32 GetTransferSize( u32 offset, u32 size )
|
|
{
|
|
u32 aes_offset = rh->s.aes_target_rom_offset;
|
|
u32 aes_end = aes_offset + rh->s.aes_target_size;
|
|
u32 end = offset + size;
|
|
if ( rh->s.enable_aes )
|
|
{
|
|
if ( offset >= aes_offset && offset < aes_end )
|
|
{
|
|
if ( end > aes_end )
|
|
{
|
|
size = aes_end - offset;
|
|
}
|
|
}
|
|
else
|
|
{
|
|
if ( offset < aes_offset && offset + size > aes_offset )
|
|
{
|
|
size = aes_offset - offset;
|
|
}
|
|
}
|
|
}
|
|
return size;
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_LoadModule
|
|
|
|
Description: receive data from ARM7 via WRAM-B and store in destination address
|
|
in view of AES settings in the ROM header at HW_TWL_ROM_HEADER_BUF,
|
|
then verify the digest
|
|
|
|
Arguments: dest destination address to read
|
|
offset file offset to start to read in bytes
|
|
size total length to read in bytes
|
|
digest digest to verify
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_LoadModule( u8* dest, u32 offset, u32 size, const u8 digest[SVC_SHA1_DIGEST_SIZE] )
|
|
{
|
|
SVCHMACSHA1Context ctx;
|
|
u8 md[SVC_SHA1_DIGEST_SIZE];
|
|
|
|
SVC_HMACSHA1Init(&ctx, currentKey, SVC_SHA1_BLOCK_SIZE );
|
|
while ( size > 0 )
|
|
{
|
|
u32 unit = GetTransferSize( offset, size );
|
|
if ( !FS_LoadBuffer( dest, unit, &ctx.sha1_ctx ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
dest += unit;
|
|
offset += unit;
|
|
size -= unit;
|
|
}
|
|
SVC_HMACSHA1GetHash(&ctx, md);
|
|
return CheckDigest(md, (u8*)digest, TRUE, FALSE);
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_LoadHeader
|
|
|
|
Description: receive ROM header, store to HW_TWL_ROM_HEADER_BUF,
|
|
and verify signature
|
|
|
|
Arguments: pool heap context to call SVC_DecryptSign
|
|
rsa_key public key to verify the signature
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_LoadHeader( SVCSignHeapContext* pool, const void* rsa_key )
|
|
{
|
|
SVCSHA1Context ctx;
|
|
u8 md[SVC_SHA1_DIGEST_SIZE];
|
|
SignatureData sd;
|
|
|
|
SVC_SHA1Init( &ctx );
|
|
if ( !FS_LoadBuffer( (u8*)rh, FS_HEADER_AUTH_SIZE, &ctx ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
SVC_SHA1GetHash( &ctx, md );
|
|
if ( !FS_LoadBuffer( (u8*)rh + FS_HEADER_AUTH_SIZE, HW_TWL_ROM_HEADER_BUF_SIZE - FS_HEADER_AUTH_SIZE, NULL ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
|
|
// コンテンツ証明書
|
|
if ( CheckRomCertificate( pool, &rh->certificate, rsa_key, *(u32*)rh->s.game_code ) )
|
|
{
|
|
rsa_key = rh->certificate.pubKeyMod; // ヘッダ用の鍵の取り出し
|
|
}
|
|
else
|
|
{
|
|
// とりあえずコンテンツ証明書用の鍵がそのまま使えると仮定
|
|
}
|
|
|
|
// ヘッダ署名チェック
|
|
SVC_DecryptSign( pool, &sd, rh->signature, rsa_key );
|
|
|
|
if ( !CheckDigest( md, sd.digest, TRUE, FALSE ) )
|
|
{
|
|
MI_CpuClear8( &sd, sizeof(sd) ); // 残り削除 (他に必要なものはない?)
|
|
return FALSE;
|
|
}
|
|
|
|
// ダイジェスト以外のデータのチェックが必要!!
|
|
|
|
// 鍵の保存
|
|
MI_CpuCopy8( (AESKey*)sd.aes_key_seed, &FSiAesKeySeed, sizeof(FSiAesKeySeed) );
|
|
|
|
MI_CpuClear8( &sd, sizeof(sd) ); // 残り削除 (他に必要なものはない?)
|
|
|
|
// ROMヘッダのコピー
|
|
MI_CpuCopyFast( rh, (void*)HW_ROM_HEADER_BUF, HW_ROM_HEADER_BUF_END-HW_ROM_HEADER_BUF );
|
|
return TRUE;
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_LoadStatic
|
|
|
|
Description: receive static regions from ARM6 via WRAM-B and store them
|
|
specified by ROM header at HW_TWL_ROM_HEADER_BUF
|
|
|
|
Arguments: None
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_LoadStatic( void )
|
|
{
|
|
if ( rh->s.main_size > 0 )
|
|
{
|
|
if ( !FS_LoadModule( rh->s.main_ram_address, rh->s.main_rom_offset, rh->s.main_size, rh->s.main_static_digest ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
if ( rh->s.sub_size > 0 )
|
|
{
|
|
if ( !FS_LoadModule( rh->s.sub_ram_address, rh->s.sub_rom_offset, rh->s.sub_size, rh->s.sub_static_digest ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
if ( rh->s.main_ltd_size > 0 )
|
|
{
|
|
if ( !FS_LoadModule( rh->s.main_ltd_ram_address, rh->s.main_ltd_rom_offset, rh->s.main_ltd_size, rh->s.main_ltd_static_digest ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
if ( rh->s.sub_ltd_size > 0 )
|
|
{
|
|
if ( !FS_LoadModule( rh->s.sub_ltd_ram_address, rh->s.sub_ltd_rom_offset, rh->s.sub_ltd_size, rh->s.sub_ltd_static_digest ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
return TRUE;
|
|
}
|
|
|
|
/*
|
|
以下、LoadBufferを使わない版 (通常FS APIを使用する)
|
|
*/
|
|
#include <twl/aes.h>
|
|
|
|
static BOOL aesFlag;
|
|
static AESCounter aesCounter;
|
|
static u8* const aesBuffer = (u8*)HW_FIRM_FS_AES_BUFFER; // 0x2ff0000
|
|
|
|
static void AesCallback( AESResult result, void* arg )
|
|
{
|
|
BOOL* pFlag = (BOOL*)arg;
|
|
*pFlag = TRUE;
|
|
if (result != AES_RESULT_SUCCESS)
|
|
{
|
|
OS_TPrintf("Failed to decrypt by AES (%d)\n", result);
|
|
}
|
|
}
|
|
|
|
static void CopyWithAes( const void* src, void* dest, u32 size )
|
|
{
|
|
volatile BOOL aesBusy = TRUE;
|
|
if ( AES_RESULT_SUCCESS == AES_CtrDecrypt( rh->s.developer_encrypt ? AES_KEY_TYPE_RAW : AES_KEY_TYPE_APP,
|
|
&aesCounter, src, size, dest, AesCallback, (void*)&aesBusy) )
|
|
{
|
|
while (aesBusy)
|
|
{
|
|
}
|
|
}
|
|
AES_AddToCounter( &aesCounter, size / AES_BLOCK_SIZE );
|
|
}
|
|
|
|
static void EnableAes( u32 offset )
|
|
{
|
|
aesFlag = TRUE;
|
|
MI_CpuCopy8( rh->s.main_static_digest, &aesCounter, AES_BLOCK_SIZE );
|
|
AES_AddToCounter( &aesCounter, (offset - rh->s.aes_target_rom_offset) / AES_BLOCK_SIZE );
|
|
}
|
|
static void DisableAes( void )
|
|
{
|
|
aesFlag = FALSE;
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: GetSrlTransferSize
|
|
|
|
Description: get size to transfer once
|
|
|
|
一度に受信するサイズを返します。
|
|
AESのセットアップもすべきです。
|
|
|
|
転送範囲がAES領域をまたぐ場合は、境界までのサイズ (引数より
|
|
小さなサイズ) を返します。
|
|
makerom.TWLまたはIPLの使用に依存します。
|
|
|
|
Arguments: offset offset of region from head of ROM_Header
|
|
size size of region
|
|
|
|
Returns: size to transfer once
|
|
*---------------------------------------------------------------------------*/
|
|
static u32 GetSrlTransferSize( u32 offset, u32 size )
|
|
{
|
|
u32 aes_offset = rh->s.aes_target_rom_offset;
|
|
u32 aes_end = aes_offset + RoundUpModuleSize(rh->s.aes_target_size);
|
|
u32 end = offset + RoundUpModuleSize(size);
|
|
if ( rh->s.enable_aes )
|
|
{
|
|
if ( offset >= aes_offset && offset < aes_end )
|
|
{
|
|
if ( end > aes_end )
|
|
{
|
|
size = aes_end - offset;
|
|
}
|
|
if ( size >= HW_FIRM_FS_AES_BUFFER_SIZE )
|
|
{
|
|
size = HW_FIRM_FS_AES_BUFFER_SIZE;
|
|
}
|
|
if ( rh->s.developer_encrypt )
|
|
{
|
|
AES_SetKey( AES_KEY_TYPE_RAW, FS_GetAesKeySeed() );
|
|
}
|
|
else
|
|
{
|
|
AES_SetKey( AES_KEY_TYPE_APP, FS_GetAesKeySeed() );
|
|
}
|
|
EnableAes( offset );
|
|
}
|
|
else
|
|
{
|
|
if ( offset < aes_offset && offset + size > aes_offset )
|
|
{
|
|
size = aes_offset - offset;
|
|
}
|
|
DisableAes();
|
|
}
|
|
}
|
|
else
|
|
{
|
|
DisableAes();
|
|
}
|
|
return size;
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_LoadSrlModule
|
|
|
|
Description: receive data from ARM7 via WRAM-B and store in destination address
|
|
in view of AES settings in the ROM header at HW_TWL_ROM_HEADER_BUF,
|
|
then verify the digest
|
|
|
|
Arguments: pFile pointer to FSFile streucture
|
|
dest destination address to read
|
|
offset file offset to start to read in bytes
|
|
size total length to read in bytes
|
|
digest digest to verify
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_LoadSrlModule( FSFile *pFile, u8* dest, u32 offset, u32 size, const u8 digest[SVC_SHA1_DIGEST_SIZE] )
|
|
{
|
|
u8 md[SVC_SHA1_DIGEST_SIZE];
|
|
u8* hmacDest = dest;
|
|
u32 hmacSize = size;
|
|
|
|
if ( !FS_SeekFile( pFile, (s32)offset, FS_SEEK_SET ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
while ( size > 0 )
|
|
{
|
|
u32 unit = GetSrlTransferSize( offset, size );
|
|
if (aesFlag)
|
|
{
|
|
if ( !FS_ReadFile( pFile, aesBuffer, (s32)unit ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
DC_FlushRange( aesBuffer, unit );
|
|
CopyWithAes( aesBuffer, dest, unit );
|
|
}
|
|
else
|
|
{
|
|
if ( !FS_ReadFile( pFile, dest, (s32)unit ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
dest += unit;
|
|
offset += unit;
|
|
size -= unit;
|
|
}
|
|
SVC_CalcHMACSHA1( md, hmacDest, hmacSize, currentKey, SVC_SHA1_BLOCK_SIZE );
|
|
return CheckDigest(md, (u8*)digest, TRUE, FALSE);
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_OpenSrl
|
|
|
|
Description: open srl file named at HW_TWL_FS_BOOT_SRL_PATH_BUF
|
|
|
|
Arguments: pFile pointer to FSFile streucture
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_OpenSrl( FSFile *pFile )
|
|
{
|
|
return FS_OpenFileEx( pFile, (char*)HW_TWL_FS_BOOT_SRL_PATH_BUF, FS_FILEMODE_R );
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_LoadSrlHeader
|
|
|
|
Description: load ROM header to HW_TWL_ROM_HEADER_BUF using normal FS,
|
|
and verify signature
|
|
|
|
Arguments: pFile pointer to FSFile streucture
|
|
pool heap context to call SVC_DecryptSign
|
|
rsa_key public key to verify the signature
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_LoadSrlHeader( FSFile *pFile, SVCSignHeapContext* pool, const void* rsa_key )
|
|
{
|
|
u8 md[SVC_SHA1_DIGEST_SIZE];
|
|
u8 digest[SVC_SHA1_DIGEST_SIZE];
|
|
SignatureData sd;
|
|
|
|
if ( !FS_SeekFile( pFile, 0, FS_SEEK_SET ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
if ( !FS_ReadFile( pFile, rh, HW_TWL_ROM_HEADER_BUF_SIZE ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
SVC_CalcSHA1( md, rh, FS_HEADER_AUTH_SIZE );
|
|
|
|
// コンテンツ証明書
|
|
if ( CheckRomCertificate( pool, &rh->certificate, rsa_key, *(u32*)rh->s.game_code ) )
|
|
{
|
|
rsa_key = rh->certificate.pubKeyMod; // ヘッダ用の鍵の取り出し
|
|
}
|
|
else
|
|
{
|
|
// とりあえずコンテンツ証明書用の鍵がそのまま使えると仮定
|
|
}
|
|
|
|
// ヘッダ署名チェック
|
|
SVC_DecryptSign( pool, &sd, rh->signature, rsa_key );
|
|
MI_CpuCopy8( sd.digest, digest, SVC_SHA1_DIGEST_SIZE ); // ダイジェストの取り出し
|
|
|
|
// ダイジェスト以外のデータのチェックが必要!!
|
|
|
|
// 鍵の保存
|
|
MI_CpuCopy8( (AESKey*)sd.aes_key_seed, &FSiAesKeySeed, sizeof(FSiAesKeySeed) );
|
|
|
|
MI_CpuClear8( &sd, sizeof(sd) ); // 残り削除 (他に必要なものはない?)
|
|
return CheckDigest( md, digest, TRUE, TRUE );
|
|
}
|
|
|
|
/*---------------------------------------------------------------------------*
|
|
Name: FS_LoadSrlStatic
|
|
|
|
Description: receive static regions from ARM6 via WRAM-B and store them
|
|
specified by ROM header at HW_TWL_ROM_HEADER_BUF
|
|
|
|
Arguments: pFile pointer to FSFile streucture
|
|
|
|
Returns: TRUE if success
|
|
*---------------------------------------------------------------------------*/
|
|
BOOL FS_LoadSrlStatic( FSFile *pFile )
|
|
{
|
|
if ( rh->s.main_size > 0 )
|
|
{
|
|
if ( !FS_LoadSrlModule( pFile, rh->s.main_ram_address, rh->s.main_rom_offset, rh->s.main_size, rh->s.main_static_digest ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
if ( rh->s.sub_size > 0 )
|
|
{
|
|
if ( !FS_LoadSrlModule( pFile, rh->s.sub_ram_address, rh->s.sub_rom_offset, rh->s.sub_size, rh->s.sub_static_digest ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
if ( rh->s.main_ltd_size > 0 )
|
|
{
|
|
if ( !FS_LoadSrlModule( pFile, rh->s.main_ltd_ram_address, rh->s.main_ltd_rom_offset, rh->s.main_ltd_size, rh->s.main_ltd_static_digest ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
if ( rh->s.sub_ltd_size > 0 )
|
|
{
|
|
if ( !FS_LoadSrlModule( pFile, rh->s.sub_ltd_ram_address, rh->s.sub_ltd_rom_offset, rh->s.sub_ltd_size, rh->s.sub_ltd_static_digest ) )
|
|
{
|
|
return FALSE;
|
|
}
|
|
}
|
|
return TRUE;
|
|
}
|