Djam/u-boot
1
0
Fork 0
mirror of https://github.com/u-boot/u-boot.git synced 2025-04-21 12:25:27 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

test: Add sandbox TPM boot measurement

Browse source 
Use the sandbox TPM driver to measure some boot images in a unit
test case.

Signed-off-by: Eddie James <eajames@linux.ibm.com>
Reviewed-by: Simon Glass <sjg@chromium.org>
Acked-by: Ilias Apalodimas <ilias.apalodimas@linaro.org>
Signed-off-by: Ilias Apalodimas <ilias.apalodimas@linaro.org>
This commit is contained in:
Eddie James 2023-10-24 10:43:51 -05:00 committed by Ilias Apalodimas
parent dec166d6b2
commit 5999ea20fa
7 changed files with 99 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
arch/sandbox/dts/sandbox.dtsi
View file

@ -4,11 +4,23 @@
* and sandbox64 builds. * and sandbox64 builds.
*/ */
#include <config.h>
#include <dt-bindings/input/input.h> #include <dt-bindings/input/input.h>
#define USB_CLASS_HUB 9 #define USB_CLASS_HUB 9
/ { / {
reserved-memory {
#address-cells = <1>;
#size-cells = <1>;
ranges;
event_log: tcg_event_log {
no-map;
reg = <(CFG_SYS_SDRAM_SIZE - 0x2000) 0x2000>;
};
};
binman { binman {
}; };
@ -342,6 +354,7 @@
tpm2 { tpm2 {
compatible = "sandbox,tpm2"; compatible = "sandbox,tpm2";
memory-region = <&event_log>;
}; };
triangle { triangle {

13
arch/sandbox/dts/test.dts
View file

@ -9,6 +9,7 @@
/dts-v1/; /dts-v1/;
#include <config.h>
#include <dt-bindings/gpio/gpio.h> #include <dt-bindings/gpio/gpio.h>
#include <dt-bindings/gpio/sandbox-gpio.h> #include <dt-bindings/gpio/sandbox-gpio.h>
#include <dt-bindings/input/input.h> #include <dt-bindings/input/input.h>
@ -68,6 +69,17 @@
osd0 = "/osd"; osd0 = "/osd";
}; };
reserved-memory {
#address-cells = <1>;
#size-cells = <1>;
ranges;
event_log: tcg_event_log {
no-map;
reg = <(CFG_SYS_SDRAM_SIZE - 0x2000) 0x2000>;
};
};
binman: binman { binman: binman {
}; };
@ -1422,6 +1434,7 @@
tpm2 { tpm2 {
compatible = "sandbox,tpm2"; compatible = "sandbox,tpm2";
memory-region = <&event_log>;
}; };
tpm { tpm {

1
configs/sandbox_defconfig
View file

@ -348,4 +348,5 @@ CONFIG_TEST_FDTDEC=y
CONFIG_UNIT_TEST=y CONFIG_UNIT_TEST=y
CONFIG_UT_TIME=y CONFIG_UT_TIME=y
CONFIG_UT_DM=y CONFIG_UT_DM=y
CONFIG_MEASURED_BOOT=y
CONFIG_ARM_FFA_TRANSPORT=y CONFIG_ARM_FFA_TRANSPORT=y

1
include/test/suites.h
View file

@ -45,6 +45,7 @@ int do_ut_font(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]);
int do_ut_lib(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]); int do_ut_lib(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]);
int do_ut_loadm(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]); int do_ut_loadm(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]);
int do_ut_log(struct cmd_tbl *cmdtp, int flag, int argc, char * const argv[]); int do_ut_log(struct cmd_tbl *cmdtp, int flag, int argc, char * const argv[]);
int do_ut_measurement(struct cmd_tbl *cmdtp, int flag, int argc, char * const argv[]);
int do_ut_mem(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]); int do_ut_mem(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]);
int do_ut_optee(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]); int do_ut_optee(struct cmd_tbl *cmdtp, int flag, int argc, char *const argv[]);
int do_ut_overlay(struct cmd_tbl *cmdtp, int flag, int argc, int do_ut_overlay(struct cmd_tbl *cmdtp, int flag, int argc,

1
test/boot/Makefile
View file

@ -4,6 +4,7 @@
obj-$(CONFIG_BOOTSTD) += bootdev.o bootstd_common.o bootflow.o bootmeth.o obj-$(CONFIG_BOOTSTD) += bootdev.o bootstd_common.o bootflow.o bootmeth.o
obj-$(CONFIG_FIT) += image.o obj-$(CONFIG_FIT) += image.o
obj-$(CONFIG_MEASURED_BOOT) += measurement.o
obj-$(CONFIG_EXPO) += expo.o obj-$(CONFIG_EXPO) += expo.o
obj-$(CONFIG_CEDIT) += cedit.o obj-$(CONFIG_CEDIT) += cedit.o

66
test/boot/measurement.c Normal file
View file

@ -0,0 +1,66 @@
// SPDX-License-Identifier: GPL-2.0+
/*
* Test for measured boot functions
*
* Copyright 2023 IBM Corp.
* Written by Eddie James <eajames@linux.ibm.com>
*/
#include <common.h>
#include <bootm.h>
#include <malloc.h>
#include <test/suites.h>
#include <test/test.h>
#include <test/ut.h>
#include <asm/io.h>
#define MEASUREMENT_TEST(_name, _flags) \
UNIT_TEST(_name, _flags, measurement_test)
static int measure(struct unit_test_state *uts)
{
struct bootm_headers images;
const size_t size = 1024;
u8 *kernel;
u8 *initrd;
size_t i;
kernel = malloc(size);
initrd = malloc(size);
images.os.image_start = map_to_sysmem(kernel);
images.os.image_len = size;
images.rd_start = map_to_sysmem(initrd);
images.rd_end = images.rd_start + size;
images.ft_addr = malloc(size);
images.ft_len = size;
env_set("bootargs", "measurement testing");
for (i = 0; i < size; ++i) {
kernel[i] = 0xf0 | (i & 0xf);
initrd[i] = (i & 0xf0) | 0xf;
images.ft_addr[i] = i & 0xff;
}
ut_assertok(bootm_measure(&images));
free(images.ft_addr);
free(initrd);
free(kernel);
return 0;
}
MEASUREMENT_TEST(measure, 0);
int do_ut_measurement(struct cmd_tbl *cmdtp, int flag, int argc,
char *const argv[])
{
struct unit_test *tests = UNIT_TEST_SUITE_START(measurement_test);
const int n_ents = UNIT_TEST_SUITE_COUNT(measurement_test);
return cmd_ut_category("measurement", "measurement_test_", tests,
n_ents, argc, argv);
}

4
test/cmd_ut.c
View file

@ -99,6 +99,10 @@ static struct cmd_tbl cmd_ut_sub[] = {
#if CONFIG_IS_ENABLED(UT_UNICODE) && !defined(API_BUILD) #if CONFIG_IS_ENABLED(UT_UNICODE) && !defined(API_BUILD)
U_BOOT_CMD_MKENT(unicode, CONFIG_SYS_MAXARGS, 1, do_ut_unicode, "", ""), U_BOOT_CMD_MKENT(unicode, CONFIG_SYS_MAXARGS, 1, do_ut_unicode, "", ""),
#endif #endif
#ifdef CONFIG_MEASURED_BOOT
U_BOOT_CMD_MKENT(measurement, CONFIG_SYS_MAXARGS, 1, do_ut_measurement,
"", ""),
#endif
#ifdef CONFIG_SANDBOX #ifdef CONFIG_SANDBOX
U_BOOT_CMD_MKENT(compression, CONFIG_SYS_MAXARGS, 1, do_ut_compression, U_BOOT_CMD_MKENT(compression, CONFIG_SYS_MAXARGS, 1, do_ut_compression,
"", ""), "", ""),