Djam/arm-trusted-firmware
1
0
Fork 0
mirror of https://github.com/ARM-software/arm-trusted-firmware.git synced 2025-04-16 01:24:27 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat(gpt): validate CRC of GPT partition entries

Browse source 
While loading partition entries, calculate CRC using tf_crc32() for each
entry to find the full CRC value of the partition entry array.

The start of the GPT partition entry array is located at the LBA
indicated by the partition entry array LBA field in the GPT header. The
size of the partition entry array is indicated by the size of partition
entry multiplied by the number of partition entries.

Compare the calculated CRC with the partition entry array CRC in the GPT
header, error out if the values do not match.

Change-Id: I4bfed8cf903125c1ef3fac2f0f4c0fb87d63aa78
Signed-off-by: Lauren Wehrmeister <lauren.wehrmeister@arm.com>
This commit is contained in:
laurenw-arm 2024-01-31 16:21:48 -06:00
parent 17a261decd
commit 7a9e9f6e96
1 changed files with 41 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

44
drivers/partition/partition.c
View file

@ -233,7 +233,9 @@ static int load_partition_gpt(uintptr_t image_handle, gpt_header_t header)
{
const signed long long gpt_entry_offset = LBA(header.part_lba);
gpt_entry_t entry;
int result, i;
int result;
unsigned int i;
uint32_t calc_crc = 0U;
result = io_seek(image_handle, IO_SEEK_SET, gpt_entry_offset);
if (result != 0) {
@ -242,23 +244,36 @@ static int load_partition_gpt(uintptr_t image_handle, gpt_header_t header)
return result;
}
for (i = 0; i < list.entry_count; i++) {
for (i = 0; i < (unsigned int)list.entry_count; i++) {
result = load_gpt_entry(image_handle, &entry);
if (result != 0) {
VERBOSE("Failed to load gpt entry data(%i) error is (%i)\n",
VERBOSE("Failed to load gpt entry data(%u) error is (%i)\n",
i, result);
return result;
}
result = parse_gpt_entry(&entry, &list.list[i]);
if (result != 0) {
result = io_seek(image_handle, IO_SEEK_SET,
(gpt_entry_offset + (i * sizeof(gpt_entry_t))));
if (result != 0) {
VERBOSE("Failed to seek (%i)\n", result);
return result;
}
break;
}
/*
* Calculate CRC of Partition entry array to compare with CRC
* value in header
*/
calc_crc = tf_crc32(calc_crc, (uint8_t *)&entry, sizeof(gpt_entry_t));
}
if (i == 0) {
VERBOSE("No Valid GPT Entries found\n");
return -EINVAL;
}
/*
* Only records the valid partition number that is loaded from
* partition table.
@ -266,6 +281,29 @@ static int load_partition_gpt(uintptr_t image_handle, gpt_header_t header)
list.entry_count = i;
dump_entries(list.entry_count);
/*
* If there are less valid entries than the possible number of entries
* from the header, continue to load the partition entry table to
* calculate the full CRC in order to check against the partition CRC
* from the header for validation.
*/
for (; i < header.list_num; i++) {
result = load_gpt_entry(image_handle, &entry);
if (result != 0) {
VERBOSE("Failed to load gpt entry data(%u) error is (%i)\n",
i, result);
return result;
}
calc_crc = tf_crc32(calc_crc, (uint8_t *)&entry, sizeof(gpt_entry_t));
}
if (header.part_crc != calc_crc) {
ERROR("Invalid GPT Partition Array Entry CRC: Expected 0x%x"
" but got 0x%x.\n", header.part_crc, calc_crc);
return -EINVAL;
}
return 0;
}