PRODINFO: Revamp blanking/write disallow policy. (#913)

* exo/fusee: hookup new prodinfo settings * fusee: new scheme doesn't need FLAGS_DEFAULT * fusee: fix c/p errors * ams.mitm: completely revamp prodinfo backup mechanism * ams.mitm: Implement revamped blanking/write policy * strat: make early boot more debuggable * exo: condense flag logic
2020-04-22 16:22:14 -07:00
parent 6ac1ff6f24
commit 3bc2d79384
42 changed files with 1355 additions and 142 deletions
--- a/libraries/libstratosphere/include/stratosphere/ams/ams_environment.hpp
+++ b/libraries/libstratosphere/include/stratosphere/ams/ams_environment.hpp
@@ -22,4 +22,8 @@ namespace ams {
    /* Will be called by libstratosphere on crash. */
    void CrashHandler(ThreadExceptionDump *ctx);

+    /* API for boot sysmodule. */
+    void InitializeForBoot();
+    void SetInitialRebootPayload(const void *src, size_t src_size);
+
 }
--- a/libraries/libstratosphere/include/stratosphere/ams/ams_exosphere_api.hpp
+++ b/libraries/libstratosphere/include/stratosphere/ams/ams_exosphere_api.hpp
@@ -27,6 +27,11 @@ namespace ams::exosphere {

    bool IsRcmBugPatched();

+    bool ShouldBlankProdInfo();
+    bool ShouldAllowWritesToProdInfo();
+
+    u64 GetDeviceId();
+
    void CopyToIram(uintptr_t iram_dst, const void *dram_src, size_t size);
    void CopyFromIram(void *dram_dst, uintptr_t iram_src, size_t size);

--- a/libraries/libstratosphere/include/stratosphere/settings.hpp
+++ b/libraries/libstratosphere/include/stratosphere/settings.hpp
@@ -16,11 +16,13 @@

 #pragma once

-#include "settings/settings_types.hpp"
-#include "settings/settings_fwdbg_types.hpp"
-#include "settings/settings_fwdbg_api.hpp"
-#include "settings/system/settings_error_report.hpp"
-#include "settings/system/settings_firmware_version.hpp"
-#include "settings/system/settings_product_model.hpp"
-#include "settings/system/settings_region.hpp"
-#include "settings/system/settings_serial_number.hpp"
+#include <stratosphere/settings/settings_types.hpp>
+#include <stratosphere/settings/settings_fwdbg_types.hpp>
+#include <stratosphere/settings/settings_fwdbg_api.hpp>
+#include <stratosphere/settings/factory/settings_serial_number.hpp>
+#include <stratosphere/settings/factory/settings_device_certificate.hpp>
+#include <stratosphere/settings/system/settings_error_report.hpp>
+#include <stratosphere/settings/system/settings_firmware_version.hpp>
+#include <stratosphere/settings/system/settings_product_model.hpp>
+#include <stratosphere/settings/system/settings_region.hpp>
+#include <stratosphere/settings/system/settings_serial_number.hpp>
--- a/libraries/libstratosphere/include/stratosphere/settings/factory/settings_device_certificate.hpp
+++ b/libraries/libstratosphere/include/stratosphere/settings/factory/settings_device_certificate.hpp
@@ -0,0 +1,39 @@
+/*
+ * Copyright (c) 2018-2020 Atmosphère-NX
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms and conditions of the GNU General Public License,
+ * version 2, as published by the Free Software Foundation.
+ *
+ * This program is distributed in the hope it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
+ * more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+#pragma once
+#include <vapours.hpp>
+
+namespace ams::settings::factory {
+
+    struct EccP256DeviceCertificate {
+        u8 data[0x180];
+    };
+    static_assert(sizeof(EccP256DeviceCertificate) == 0x180);
+    static_assert(std::is_pod<EccP256DeviceCertificate>::value);
+
+    struct EccB233DeviceCertificate {
+        u8 data[0x180];
+    };
+    static_assert(sizeof(EccB233DeviceCertificate) == 0x180);
+    static_assert(std::is_pod<EccB233DeviceCertificate>::value);
+
+    struct Rsa2048DeviceCertificate {
+        u8 data[0x240];
+    };
+    static_assert(sizeof(Rsa2048DeviceCertificate) == 0x240);
+    static_assert(std::is_pod<Rsa2048DeviceCertificate>::value);
+
+}
--- a/libraries/libstratosphere/include/stratosphere/settings/factory/settings_serial_number.hpp
+++ b/libraries/libstratosphere/include/stratosphere/settings/factory/settings_serial_number.hpp
@@ -0,0 +1,27 @@
+/*
+ * Copyright (c) 2018-2020 Atmosphère-NX
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms and conditions of the GNU General Public License,
+ * version 2, as published by the Free Software Foundation.
+ *
+ * This program is distributed in the hope it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
+ * more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+#pragma once
+#include <vapours.hpp>
+
+namespace ams::settings::factory {
+
+    struct SerialNumber {
+        char str[0x18];
+    };
+    static_assert(sizeof(SerialNumber) == 0x18);
+    static_assert(std::is_pod<SerialNumber>::value);
+
+}
--- a/libraries/libstratosphere/include/stratosphere/spl/spl_api.hpp
+++ b/libraries/libstratosphere/include/stratosphere/spl/spl_api.hpp
@@ -27,4 +27,7 @@ namespace ams::spl {
    bool IsMariko();
    bool IsRecoveryBoot();

+    Result GenerateAesKek(AccessKey *access_key, const void *key_source, size_t key_source_size, u32 generation, u32 option);
+    Result GenerateAesKey(void *dst, size_t dst_size, const AccessKey &access_key, const void *key_source, size_t key_source_size);
+
 }
--- a/libraries/libstratosphere/include/stratosphere/spl/spl_types.hpp
+++ b/libraries/libstratosphere/include/stratosphere/spl/spl_types.hpp
@@ -183,6 +183,36 @@ namespace ams::spl {
    static_assert(alignof(AccessKey) == alignof(u8), "KeySource definition!");
    #pragma pack(pop)

+    enum class ConfigItem : u32 {
+        /* Standard config items. */
+        DisableProgramVerification  = 1,
+        DramId                      = 2,
+        SecurityEngineIrqNumber     = 3,
+        Version                     = 4,
+        HardwareType                = 5,
+        IsRetail                    = 6,
+        IsRecoveryBoot              = 7,
+        DeviceId                    = 8,
+        BootReason                  = 9,
+        MemoryMode                  = 10,
+        IsDebugMode                 = 11,
+        KernelConfiguration         = 12,
+        IsChargerHiZModeEnabled     = 13,
+        IsQuest                     = 14,
+        RegulatorType               = 15,
+        DeviceUniqueKeyGeneration   = 16,
+        Package2Hash                = 17,
+
+        /* Extension config items for exosphere. */
+        ExosphereApiVersion     = 65000,
+        ExosphereNeedsReboot    = 65001,
+        ExosphereNeedsShutdown  = 65002,
+        ExosphereGitCommitHash  = 65003,
+        ExosphereHasRcmBugPatch = 65004,
+        ExosphereBlankProdInfo  = 65005,
+        ExosphereAllowCalWrites = 65006,
+    };
+
 }

 /* Extensions to libnx spl config item enum. */
@@ -191,3 +221,5 @@ constexpr inline SplConfigItem SplConfigItem_ExosphereNeedsReboot    = static_ca
 constexpr inline SplConfigItem SplConfigItem_ExosphereNeedsShutdown  = static_cast<SplConfigItem>(65002);
 constexpr inline SplConfigItem SplConfigItem_ExosphereGitCommitHash  = static_cast<SplConfigItem>(65003);
 constexpr inline SplConfigItem SplConfigItem_ExosphereHasRcmBugPatch = static_cast<SplConfigItem>(65004);
+constexpr inline SplConfigItem SplConfigItem_ExosphereBlankProdInfo  = static_cast<SplConfigItem>(65005);
+constexpr inline SplConfigItem SplConfigItem_ExosphereAllowCalWrites = static_cast<SplConfigItem>(65006);