forked from CTCaer/hekate
0ddc1c71a8
- Make debugmode for exosphere mandatory - Support dev RSA modulus for warmboot - Fix a critical bug where it allowed free() to be used on a non-heap address. - Better the makefile
118 lines
2.8 KiB
C
118 lines
2.8 KiB
C
/*
|
|
* Copyright (C) 2018-2019 CTCaer
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify it
|
|
* under the terms and conditions of the GNU General Public License,
|
|
* version 2, as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope it will be useful, but WITHOUT
|
|
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
|
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
|
|
* more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
#include <string.h>
|
|
|
|
#include "hos.h"
|
|
#include "../mem/heap.h"
|
|
#include "../soc/fuse.h"
|
|
#include "../storage/sdmmc.h"
|
|
#include "../utils/types.h"
|
|
|
|
typedef struct _exo_cfg_t
|
|
{
|
|
vu32 magic;
|
|
vu32 fwno;
|
|
vu32 flags;
|
|
vu32 rsvd;
|
|
} exo_cfg_t;
|
|
|
|
typedef struct _atm_meta_t
|
|
{
|
|
uint32_t magic;
|
|
uint32_t fwno;
|
|
} wb_cfg_t;
|
|
|
|
#define ATM_WB_HEADER_OFF 0x244
|
|
#define ATM_WB_MAGIC 0x30544257
|
|
|
|
// Exosphère mailbox defines.
|
|
#define EXO_CFG_DEPR_ADDR 0x40002E40 // Deprecated.
|
|
#define EXO_CFG_ADDR 0x8000F000
|
|
#define EXO_MAGIC_DEPR_VAL 0x31434258
|
|
#define EXO_MAGIC_VAL 0x304F5845
|
|
#define EXO_FLAG_620_KGN (1 << 0)
|
|
#define EXO_FLAG_DBG_PRIV (1 << 1)
|
|
#define EXO_FLAG_DBG_USER (1 << 2)
|
|
|
|
void config_exosphere(const char *id, u32 kb, void *warmboot, void *pkg1)
|
|
{
|
|
u32 exoFwNo = 0;
|
|
u32 exoFlags = 0;
|
|
|
|
volatile exo_cfg_t *exo_cfg_depr = (exo_cfg_t *)EXO_CFG_DEPR_ADDR;
|
|
volatile exo_cfg_t *exo_cfg = (exo_cfg_t *)EXO_CFG_ADDR;
|
|
|
|
switch (kb)
|
|
{
|
|
case KB_FIRMWARE_VERSION_100_200:
|
|
if (!strcmp(id, "20161121183008"))
|
|
exoFwNo = 1;
|
|
else
|
|
exoFwNo = 2;
|
|
break;
|
|
case KB_FIRMWARE_VERSION_300:
|
|
exoFwNo = 3;
|
|
break;
|
|
default:
|
|
exoFwNo = kb + 1;
|
|
break;
|
|
}
|
|
|
|
if (kb == KB_FIRMWARE_VERSION_620)
|
|
exoFlags |= EXO_FLAG_620_KGN;
|
|
|
|
// To avoid problems, make private debug mode always on.
|
|
exoFlags |= EXO_FLAG_DBG_PRIV;
|
|
|
|
// Set mailbox values.
|
|
exo_cfg_depr->magic = EXO_MAGIC_VAL;
|
|
exo_cfg->magic = EXO_MAGIC_VAL;
|
|
|
|
exo_cfg_depr->fwno = exoFwNo;
|
|
exo_cfg->fwno = exoFwNo;
|
|
|
|
exo_cfg_depr->flags = exoFlags;
|
|
exo_cfg->flags = exoFlags;
|
|
|
|
// If warmboot is lp0fw, add in RSA modulus.
|
|
volatile wb_cfg_t *wb_cfg = (wb_cfg_t *)(warmboot + ATM_WB_HEADER_OFF);
|
|
|
|
if (wb_cfg->magic == ATM_WB_MAGIC)
|
|
{
|
|
wb_cfg->fwno = exoFwNo;
|
|
|
|
sdmmc_storage_t storage;
|
|
sdmmc_t sdmmc;
|
|
|
|
// Set warmboot binary rsa modulus.
|
|
u8 *rsa_mod = (u8 *)malloc(512);
|
|
|
|
sdmmc_storage_init_mmc(&storage, &sdmmc, SDMMC_4, SDMMC_BUS_WIDTH_8, 4);
|
|
sdmmc_storage_set_mmc_partition(&storage, 1);
|
|
sdmmc_storage_read(&storage, 1, 1, rsa_mod);
|
|
sdmmc_storage_end(&storage);
|
|
|
|
// Patch AutoRCM out.
|
|
if ((fuse_read_odm(4) & 3) != 3)
|
|
rsa_mod[0x10] = 0xF7;
|
|
else
|
|
rsa_mod[0x10] = 0x37;
|
|
|
|
memcpy(warmboot + 0x10, rsa_mod + 0x10, 0x100);
|
|
}
|
|
}
|