| /* |
| * |
| * Copyright (c) 2021 Project CHIP Authors |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| |
| #include <app/clusters/ota-requestor/OTADownloader.h> |
| #include <app/clusters/ota-requestor/OTARequestorInterface.h> |
| #include <platform/CHIPDeviceEvent.h> |
| #include <platform/ESP32/ESP32Utils.h> |
| |
| #include "OTAImageProcessorImpl.h" |
| #include "esp_app_format.h" |
| #include "esp_err.h" |
| #include "esp_log.h" |
| #include "esp_ota_ops.h" |
| #include "esp_system.h" |
| #include "lib/core/CHIPError.h" |
| |
| #ifdef CONFIG_ENABLE_ENCRYPTED_OTA |
| #include <esp_encrypted_img.h> |
| #endif // CONFIG_ENABLE_ENCRYPTED_OTA |
| |
| #ifdef CONFIG_ENABLE_DELTA_OTA |
| #include <esp_delta_ota.h> |
| #endif // CONFIG_ENABLE_DELTA_OTA |
| |
| #define TAG "OTAImageProcessor" |
| |
| #ifdef CONFIG_ENABLE_DELTA_OTA |
| #define PATCH_HEADER_SIZE 64 |
| #define DIGEST_SIZE 32 |
| #endif // CONFIG_ENABLE_DELTA_OTA |
| |
| using namespace chip::System; |
| using namespace ::chip::DeviceLayer::Internal; |
| |
| namespace chip { |
| namespace { |
| |
| void HandleRestart(Layer * systemLayer, void * appState) |
| { |
| esp_restart(); |
| } |
| |
| void PostOTAStateChangeEvent(DeviceLayer::OtaState newState) |
| { |
| DeviceLayer::ChipDeviceEvent otaChange; |
| otaChange.Type = DeviceLayer::DeviceEventType::kOtaStateChanged; |
| otaChange.OtaStateChanged.newState = newState; |
| CHIP_ERROR error = DeviceLayer::PlatformMgr().PostEvent(&otaChange); |
| |
| if (error != CHIP_NO_ERROR) |
| { |
| ChipLogError(SoftwareUpdate, "Error while posting OtaChange event %" CHIP_ERROR_FORMAT, error.Format()); |
| } |
| } |
| |
| } // namespace |
| |
| bool OTAImageProcessorImpl::IsFirstImageRun() |
| { |
| OTARequestorInterface * requestor = GetRequestorInstance(); |
| if (requestor == nullptr) |
| { |
| return false; |
| } |
| |
| return requestor->GetCurrentUpdateState() == OTARequestorInterface::OTAUpdateStateEnum::kApplying; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::ConfirmCurrentImage() |
| { |
| OTARequestorInterface * requestor = GetRequestorInstance(); |
| if (requestor == nullptr) |
| { |
| return CHIP_ERROR_INTERNAL; |
| } |
| |
| uint32_t currentVersion; |
| ReturnErrorOnFailure(DeviceLayer::ConfigurationMgr().GetSoftwareVersion(currentVersion)); |
| if (currentVersion != requestor->GetTargetVersion()) |
| { |
| return CHIP_ERROR_INCORRECT_STATE; |
| } |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::PrepareDownload() |
| { |
| DeviceLayer::PlatformMgr().ScheduleWork(HandlePrepareDownload, reinterpret_cast<intptr_t>(this)); |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::Finalize() |
| { |
| DeviceLayer::PlatformMgr().ScheduleWork(HandleFinalize, reinterpret_cast<intptr_t>(this)); |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::Apply() |
| { |
| DeviceLayer::PlatformMgr().ScheduleWork(HandleApply, reinterpret_cast<intptr_t>(this)); |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::Abort() |
| { |
| DeviceLayer::PlatformMgr().ScheduleWork(HandleAbort, reinterpret_cast<intptr_t>(this)); |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::ProcessBlock(ByteSpan & block) |
| { |
| CHIP_ERROR err = SetBlock(block); |
| if (err != CHIP_NO_ERROR) |
| { |
| ChipLogError(SoftwareUpdate, "Cannot set block data: %" CHIP_ERROR_FORMAT, err.Format()); |
| return err; |
| } |
| DeviceLayer::PlatformMgr().ScheduleWork(HandleProcessBlock, reinterpret_cast<intptr_t>(this)); |
| return CHIP_NO_ERROR; |
| } |
| |
| #ifdef CONFIG_ENABLE_DELTA_OTA |
| bool OTAImageProcessorImpl::VerifyChipId(esp_chip_id_t chipId) |
| { |
| if (chipId != CONFIG_IDF_FIRMWARE_CHIP_ID) |
| { |
| ESP_LOGE(TAG, "Mismatch chip id, expected %d, found %d", CONFIG_IDF_FIRMWARE_CHIP_ID, chipId); |
| return false; |
| } |
| return true; |
| } |
| |
| bool OTAImageProcessorImpl::VerifyPatchHeader(void * imgHeaderData) |
| { |
| const uint32_t espDeltaOtaMagic = 0xfccdde10; |
| if (!imgHeaderData) |
| { |
| return false; |
| } |
| uint32_t recvMagic = *(uint32_t *) imgHeaderData; |
| uint8_t * digest = (uint8_t *) ((uint8_t *) imgHeaderData + 4); |
| if (recvMagic != espDeltaOtaMagic) |
| { |
| ESP_LOGE(TAG, "Invalid magic word in patch"); |
| return false; |
| } |
| uint8_t sha_256[DIGEST_SIZE] = { 0 }; |
| esp_partition_get_sha256(esp_ota_get_running_partition(), sha_256); |
| if (memcmp(sha_256, digest, DIGEST_SIZE) != 0) |
| { |
| ESP_LOGE(TAG, "SHA256 of current firmware differs from than in patch header. Invalid patch for current firmware"); |
| return false; |
| } |
| return true; |
| } |
| |
| esp_err_t OTAImageProcessorImpl::VerifyHeaderData(const uint8_t * buf, size_t size, int * index) |
| { |
| static char patchHeader[PATCH_HEADER_SIZE]; |
| static int headerDataRead = 0; |
| if (!patchHeaderVerified) |
| { |
| if (headerDataRead + size < PATCH_HEADER_SIZE) |
| { |
| memcpy(patchHeader + headerDataRead, buf, size); |
| headerDataRead += size; |
| return ESP_OK; |
| } |
| else |
| { |
| *index = PATCH_HEADER_SIZE - headerDataRead; |
| memcpy(patchHeader + headerDataRead, buf, *index); |
| if (!VerifyPatchHeader(patchHeader)) |
| { |
| return ESP_ERR_INVALID_VERSION; |
| } |
| headerDataRead = 0; |
| *index = PATCH_HEADER_SIZE; |
| patchHeaderVerified = true; |
| } |
| } |
| return ESP_OK; |
| } |
| |
| void OTAImageProcessorImpl::DeltaOTACleanUp(intptr_t context) |
| { |
| auto * imageProcessor = reinterpret_cast<OTAImageProcessorImpl *>(context); |
| if (imageProcessor == nullptr) |
| { |
| ChipLogError(SoftwareUpdate, "ImageProcessor context is null"); |
| return; |
| } |
| imageProcessor->patchHeaderVerified = false; |
| imageProcessor->chipIdVerified = false; |
| return; |
| } |
| |
| esp_err_t OTAImageProcessorImpl::DeltaOTAReadCallback(uint8_t * buf, size_t size, int srcOffset) |
| { |
| if (size <= 0 || buf == NULL) |
| { |
| return ESP_ERR_INVALID_ARG; |
| } |
| |
| const esp_partition_t * currentPartition = esp_ota_get_running_partition(); |
| if (currentPartition == NULL) |
| { |
| return ESP_FAIL; |
| } |
| |
| esp_err_t err = esp_partition_read(currentPartition, srcOffset, buf, size); |
| |
| if (err != ESP_OK) |
| { |
| ESP_LOGE(TAG, "esp_partition_read failed (%s)!", esp_err_to_name(err)); |
| } |
| |
| return err; |
| } |
| |
| esp_err_t OTAImageProcessorImpl::DeltaOTAWriteCallback(const uint8_t * buf, size_t size, void * arg) |
| { |
| auto * imageProcessor = reinterpret_cast<OTAImageProcessorImpl *>(arg); |
| if (size <= 0 || buf == NULL) |
| { |
| return ESP_ERR_INVALID_ARG; |
| } |
| |
| int index = 0; |
| static int headerDataRead = 0; |
| static char headerData[IMG_HEADER_LEN]; |
| |
| if (!imageProcessor->chipIdVerified) |
| { |
| if (headerDataRead + size - index <= IMG_HEADER_LEN) |
| { |
| memcpy(headerData + headerDataRead, buf, size - index); |
| headerDataRead += size - index; |
| return ESP_OK; |
| } |
| else |
| { |
| index = IMG_HEADER_LEN - headerDataRead; |
| memcpy(headerData + headerDataRead, buf, index); |
| |
| esp_image_header_t * header = (esp_image_header_t *) headerData; |
| if (!VerifyChipId(header->chip_id)) |
| { |
| return ESP_ERR_INVALID_VERSION; |
| } |
| imageProcessor->chipIdVerified = true; |
| |
| // Write data in headerData buffer. |
| return esp_ota_write(imageProcessor->mOTAUpdateHandle, headerData, IMG_HEADER_LEN); |
| } |
| } |
| |
| esp_err_t err = esp_ota_write(imageProcessor->mOTAUpdateHandle, buf + index, size - index); |
| if (err != ESP_OK) |
| { |
| ESP_LOGE(TAG, "esp_ota_write failed (%s)!", esp_err_to_name(err)); |
| } |
| |
| return err; |
| } |
| #endif // CONFIG_ENABLE_DELTA_OTA |
| |
| void OTAImageProcessorImpl::HandlePrepareDownload(intptr_t context) |
| { |
| auto * imageProcessor = reinterpret_cast<OTAImageProcessorImpl *>(context); |
| if (imageProcessor == nullptr) |
| { |
| ChipLogError(SoftwareUpdate, "ImageProcessor context is null"); |
| return; |
| } |
| else if (imageProcessor->mDownloader == nullptr) |
| { |
| ChipLogError(SoftwareUpdate, "mDownloader is null"); |
| return; |
| } |
| imageProcessor->mOTAUpdatePartition = esp_ota_get_next_update_partition(NULL); |
| if (imageProcessor->mOTAUpdatePartition == NULL) |
| { |
| ChipLogError(SoftwareUpdate, "OTA partition not found"); |
| imageProcessor->mDownloader->OnPreparedForDownload(CHIP_ERROR_INTERNAL); |
| return; |
| } |
| #ifdef CONFIG_ENABLE_DELTA_OTA |
| // New image size is unknown for delta OTA, so we use OTA_SIZE_UNKNOWN flag. |
| esp_err_t err = esp_ota_begin(imageProcessor->mOTAUpdatePartition, OTA_SIZE_UNKNOWN, &(imageProcessor->mOTAUpdateHandle)); |
| #else |
| esp_err_t err = |
| esp_ota_begin(imageProcessor->mOTAUpdatePartition, OTA_WITH_SEQUENTIAL_WRITES, &(imageProcessor->mOTAUpdateHandle)); |
| #endif // CONFIG_ENABLE_DELTA_OTA |
| |
| if (err != ESP_OK) |
| { |
| imageProcessor->mDownloader->OnPreparedForDownload(ESP32Utils::MapError(err)); |
| return; |
| } |
| #ifdef CONFIG_ENABLE_DELTA_OTA |
| imageProcessor->deltaOtaCfg.user_data = imageProcessor, |
| imageProcessor->deltaOtaCfg.read_cb = &(imageProcessor->DeltaOTAReadCallback), |
| imageProcessor->deltaOtaCfg.write_cb_with_user_data = &(imageProcessor->DeltaOTAWriteCallback), |
| |
| imageProcessor->mDeltaOTAUpdateHandle = esp_delta_ota_init(&imageProcessor->deltaOtaCfg); |
| if (imageProcessor->mDeltaOTAUpdateHandle == NULL) |
| { |
| ChipLogError(SoftwareUpdate, "esp_delta_ota_init failed"); |
| imageProcessor->mDownloader->OnPreparedForDownload(CHIP_ERROR_INTERNAL); |
| return; |
| } |
| #endif // CONFIG_ENABLE_DELTA_OTA |
| |
| #ifdef CONFIG_ENABLE_ENCRYPTED_OTA |
| CHIP_ERROR chipError = imageProcessor->DecryptStart(); |
| if (chipError != CHIP_NO_ERROR) |
| { |
| ChipLogError(SoftwareUpdate, "Failed to start decryption process, err:%" CHIP_ERROR_FORMAT, chipError.Format()); |
| imageProcessor->mDownloader->OnPreparedForDownload(chipError); |
| return; |
| } |
| #endif // CONFIG_ENABLE_ENCRYPTED_OTA |
| |
| imageProcessor->mHeaderParser.Init(); |
| imageProcessor->mDownloader->OnPreparedForDownload(CHIP_NO_ERROR); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadInProgress); |
| } |
| |
| void OTAImageProcessorImpl::HandleFinalize(intptr_t context) |
| { |
| DeviceLayer::OtaState otaState = DeviceLayer::kOtaDownloadFailed; |
| auto * imageProcessor = reinterpret_cast<OTAImageProcessorImpl *>(context); |
| VerifyOrReturn(imageProcessor, ChipLogError(SoftwareUpdate, "ImageProcessor context is null")); |
| |
| #ifdef CONFIG_ENABLE_ENCRYPTED_OTA |
| if (CHIP_NO_ERROR != imageProcessor->DecryptEnd()) |
| { |
| ChipLogError(SoftwareUpdate, "Failed to end pre encrypted OTA"); |
| esp_ota_abort(imageProcessor->mOTAUpdateHandle); |
| imageProcessor->ReleaseBlock(); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadFailed); |
| return; |
| } |
| #endif // CONFIG_ENABLE_ENCRYPTED_OTA |
| |
| #ifdef CONFIG_ENABLE_DELTA_OTA |
| esp_err_t err = esp_delta_ota_finalize(imageProcessor->mDeltaOTAUpdateHandle); |
| if (err != ESP_OK) |
| { |
| ESP_LOGE(TAG, "esp_delta_ota_finalize() failed (%s)!", esp_err_to_name(err)); |
| esp_ota_abort(imageProcessor->mOTAUpdateHandle); |
| imageProcessor->ReleaseBlock(); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadFailed); |
| } |
| |
| err = esp_delta_ota_deinit(imageProcessor->mDeltaOTAUpdateHandle); |
| if (err != ESP_OK) |
| { |
| ESP_LOGE(TAG, "esp_delta_ota_deinit() failed (%s)!", esp_err_to_name(err)); |
| esp_ota_abort(imageProcessor->mOTAUpdateHandle); |
| imageProcessor->ReleaseBlock(); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadFailed); |
| } |
| |
| err = esp_ota_end(imageProcessor->mOTAUpdateHandle); |
| DeltaOTACleanUp(reinterpret_cast<intptr_t>(imageProcessor)); |
| #else |
| esp_err_t err = esp_ota_end(imageProcessor->mOTAUpdateHandle); |
| #endif // CONFIG_ENABLE_DELTA_OTA |
| if (err != ESP_OK) |
| { |
| if (err == ESP_ERR_OTA_VALIDATE_FAILED) |
| { |
| ESP_LOGE(TAG, "Image validation failed, image is corrupted"); |
| } |
| else |
| { |
| ESP_LOGE(TAG, "esp_ota_end failed (%s)!", esp_err_to_name(err)); |
| } |
| } |
| else |
| { |
| ChipLogProgress(SoftwareUpdate, "OTA image downloaded to offset 0x%" PRIx32, imageProcessor->mOTAUpdatePartition->address); |
| otaState = DeviceLayer::kOtaDownloadComplete; |
| } |
| |
| imageProcessor->ReleaseBlock(); |
| PostOTAStateChangeEvent(otaState); |
| } |
| |
| void OTAImageProcessorImpl::HandleAbort(intptr_t context) |
| { |
| auto * imageProcessor = reinterpret_cast<OTAImageProcessorImpl *>(context); |
| if (imageProcessor == nullptr) |
| { |
| ChipLogError(SoftwareUpdate, "ImageProcessor context is null"); |
| return; |
| } |
| |
| #ifdef CONFIG_ENABLE_ENCRYPTED_OTA |
| imageProcessor->DecryptAbort(); |
| #endif // CONFIG_ENABLE_ENCRYPTED_OTA |
| |
| #ifdef CONFIG_ENABLE_DELTA_OTA |
| DeltaOTACleanUp(reinterpret_cast<intptr_t>(imageProcessor)); |
| #endif // CONFIG_ENABLE_DELTA_OTA |
| |
| if (esp_ota_abort(imageProcessor->mOTAUpdateHandle) != ESP_OK) |
| { |
| ESP_LOGE(TAG, "ESP OTA abort failed"); |
| } |
| imageProcessor->ReleaseBlock(); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadAborted); |
| } |
| |
| void OTAImageProcessorImpl::HandleProcessBlock(intptr_t context) |
| { |
| auto * imageProcessor = reinterpret_cast<OTAImageProcessorImpl *>(context); |
| if (imageProcessor == nullptr) |
| { |
| ChipLogError(SoftwareUpdate, "ImageProcessor context is null"); |
| return; |
| } |
| else if (imageProcessor->mDownloader == nullptr) |
| { |
| ChipLogError(SoftwareUpdate, "mDownloader is null"); |
| return; |
| } |
| |
| ByteSpan block = ByteSpan(imageProcessor->mBlock.data(), imageProcessor->mBlock.size()); |
| |
| CHIP_ERROR error = imageProcessor->ProcessHeader(block); |
| if (error != CHIP_NO_ERROR) |
| { |
| ESP_LOGE(TAG, "Failed to process OTA image header"); |
| imageProcessor->mDownloader->EndDownload(error); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadFailed); |
| return; |
| } |
| |
| esp_err_t err; |
| ByteSpan blockToWrite = block; |
| |
| #ifdef CONFIG_ENABLE_ENCRYPTED_OTA |
| error = imageProcessor->DecryptBlock(block, blockToWrite); |
| if (error != CHIP_NO_ERROR) |
| { |
| ChipLogError(SoftwareUpdate, "esp_encrypted_img_decrypt_data failed err:%d", err); |
| imageProcessor->mDownloader->EndDownload(CHIP_ERROR_WRITE_FAILED); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadFailed); |
| return; |
| } |
| #endif // CONFIG_ENABLE_ENCRYPTED_OTA |
| |
| #ifdef CONFIG_ENABLE_DELTA_OTA |
| |
| int index = 0; |
| err = imageProcessor->VerifyHeaderData(blockToWrite.data(), blockToWrite.size(), &index); |
| |
| if (err != ESP_OK) |
| { |
| ESP_LOGE(TAG, "Header data verification failed (%s)", esp_err_to_name(err)); |
| imageProcessor->mDownloader->EndDownload(CHIP_ERROR_INVALID_SIGNATURE); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadFailed); |
| return; |
| } |
| |
| // Apply the patch and writes that data to the passive partition. |
| err = esp_delta_ota_feed_patch(imageProcessor->mDeltaOTAUpdateHandle, blockToWrite.data() + index, blockToWrite.size() - index); |
| #else |
| err = esp_ota_write(imageProcessor->mOTAUpdateHandle, blockToWrite.data(), blockToWrite.size()); |
| #endif // CONFIG_ENABLE_DELTA_OTA |
| |
| #ifdef CONFIG_ENABLE_ENCRYPTED_OTA |
| free((void *) (blockToWrite.data())); |
| #endif // CONFIG_ENABLE_ENCRYPTED_OTA |
| |
| if (err != ESP_OK) |
| { |
| ESP_LOGE(TAG, "esp_ota_write failed (%s)", esp_err_to_name(err)); |
| imageProcessor->mDownloader->EndDownload(CHIP_ERROR_WRITE_FAILED); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaDownloadFailed); |
| return; |
| } |
| |
| imageProcessor->mParams.downloadedBytes += blockToWrite.size(); |
| imageProcessor->mDownloader->FetchNextData(); |
| } |
| |
| void OTAImageProcessorImpl::HandleApply(intptr_t context) |
| { |
| PostOTAStateChangeEvent(DeviceLayer::kOtaApplyInProgress); |
| auto * imageProcessor = reinterpret_cast<OTAImageProcessorImpl *>(context); |
| esp_err_t err = esp_ota_set_boot_partition(imageProcessor->mOTAUpdatePartition); |
| if (err != ESP_OK) |
| { |
| ESP_LOGE(TAG, "esp_ota_set_boot_partition failed (%s)!", esp_err_to_name(err)); |
| PostOTAStateChangeEvent(DeviceLayer::kOtaApplyFailed); |
| return; |
| } |
| ESP_LOGI(TAG, "Applying, Boot partition set offset:0x%" PRIx32, imageProcessor->mOTAUpdatePartition->address); |
| |
| PostOTAStateChangeEvent(DeviceLayer::kOtaApplyComplete); |
| |
| #ifdef CONFIG_OTA_AUTO_REBOOT_ON_APPLY |
| // HandleApply is called after delayed action time seconds are elapsed, so it would be safe to schedule the restart |
| DeviceLayer::SystemLayer().StartTimer(System::Clock::Milliseconds32(CONFIG_OTA_AUTO_REBOOT_DELAY_MS), HandleRestart, nullptr); |
| #else |
| ESP_LOGI(TAG, "Please reboot the device manually to apply the new image"); |
| #endif |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::SetBlock(ByteSpan & block) |
| { |
| if (block.empty()) |
| { |
| ReleaseBlock(); |
| return CHIP_NO_ERROR; |
| } |
| if (mBlock.size() < block.size()) |
| { |
| if (!mBlock.empty()) |
| { |
| ReleaseBlock(); |
| } |
| uint8_t * mBlock_ptr = static_cast<uint8_t *>(Platform::MemoryAlloc(block.size())); |
| if (mBlock_ptr == nullptr) |
| { |
| return CHIP_ERROR_NO_MEMORY; |
| } |
| mBlock = MutableByteSpan(mBlock_ptr, block.size()); |
| } |
| CHIP_ERROR err = CopySpanToMutableSpan(block, mBlock); |
| if (err != CHIP_NO_ERROR) |
| { |
| ChipLogError(SoftwareUpdate, "Cannot copy block data: %" CHIP_ERROR_FORMAT, err.Format()); |
| return err; |
| } |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::ReleaseBlock() |
| { |
| if (mBlock.data() != nullptr) |
| { |
| Platform::MemoryFree(mBlock.data()); |
| } |
| mBlock = MutableByteSpan(); |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::ProcessHeader(ByteSpan & block) |
| { |
| if (mHeaderParser.IsInitialized()) |
| { |
| OTAImageHeader header; |
| CHIP_ERROR error = mHeaderParser.AccumulateAndDecode(block, header); |
| |
| // Need more data to decode the header |
| ReturnErrorCodeIf(error == CHIP_ERROR_BUFFER_TOO_SMALL, CHIP_NO_ERROR); |
| ReturnErrorOnFailure(error); |
| |
| mParams.totalFileBytes = header.mPayloadSize; |
| mHeaderParser.Clear(); |
| } |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| #ifdef CONFIG_ENABLE_ENCRYPTED_OTA |
| CHIP_ERROR OTAImageProcessorImpl::InitEncryptedOTA(const CharSpan & key) |
| { |
| VerifyOrReturnError(mEncryptedOTAEnabled == false, CHIP_ERROR_INCORRECT_STATE); |
| VerifyOrReturnError(!key.empty(), CHIP_ERROR_INVALID_ARGUMENT); |
| |
| mKey = key; |
| mEncryptedOTAEnabled = true; |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::DecryptStart() |
| { |
| VerifyOrReturnError(mEncryptedOTAEnabled, CHIP_ERROR_INCORRECT_STATE); |
| |
| const esp_decrypt_cfg_t decryptionConfig = { |
| .rsa_priv_key = mKey.data(), |
| .rsa_priv_key_len = mKey.size(), |
| }; |
| |
| mOTADecryptionHandle = esp_encrypted_img_decrypt_start(&decryptionConfig); |
| VerifyOrReturnError(mOTADecryptionHandle, CHIP_ERROR_INCORRECT_STATE); |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::DecryptEnd() |
| { |
| VerifyOrReturnError(mEncryptedOTAEnabled, CHIP_ERROR_INCORRECT_STATE); |
| |
| esp_err_t err = esp_encrypted_img_decrypt_end(mOTADecryptionHandle); |
| if (err != ESP_OK) |
| { |
| ChipLogError(SoftwareUpdate, "Failed to end pre encrypted OTA esp_err:%d", err); |
| } |
| mOTADecryptionHandle = nullptr; |
| return ESP32Utils::MapError(err); |
| } |
| |
| void OTAImageProcessorImpl::DecryptAbort() |
| { |
| VerifyOrReturn(mEncryptedOTAEnabled); |
| |
| esp_err_t err = esp_encrypted_img_decrypt_abort(mOTADecryptionHandle); |
| if (err != ESP_OK) |
| { |
| ChipLogError(SoftwareUpdate, "Failed to abort pre encrypted OTA esp_err:%d", err); |
| } |
| mOTADecryptionHandle = nullptr; |
| } |
| |
| CHIP_ERROR OTAImageProcessorImpl::DecryptBlock(const ByteSpan & blockToDecrypt, ByteSpan & decryptedBlock) |
| { |
| VerifyOrReturnError(mEncryptedOTAEnabled, CHIP_ERROR_INCORRECT_STATE); |
| VerifyOrReturnError(mOTADecryptionHandle, CHIP_ERROR_INCORRECT_STATE); |
| |
| pre_enc_decrypt_arg_t preEncOtaDecryptArgs = { |
| .data_in = reinterpret_cast<const char *>(blockToDecrypt.data()), |
| .data_in_len = blockToDecrypt.size(), |
| .data_out = nullptr, |
| .data_out_len = 0, |
| }; |
| |
| esp_err_t err = esp_encrypted_img_decrypt_data(mOTADecryptionHandle, &preEncOtaDecryptArgs); |
| if (err != ESP_OK && err != ESP_ERR_NOT_FINISHED) |
| { |
| ChipLogError(SoftwareUpdate, "esp_encrypted_img_decrypt_data failed err:%d", err); |
| return ESP32Utils::MapError(err); |
| } |
| |
| ChipLogDetail(SoftwareUpdate, "esp_encrypted_img_decrypt_data data_in_len:%u, data_out_len:%u", |
| preEncOtaDecryptArgs.data_in_len, preEncOtaDecryptArgs.data_out_len); |
| |
| if (preEncOtaDecryptArgs.data_out == nullptr || preEncOtaDecryptArgs.data_out_len <= 0) |
| { |
| ChipLogProgress(SoftwareUpdate, "Decrypted data is null or out len is zero"); |
| } |
| |
| decryptedBlock = ByteSpan(reinterpret_cast<const uint8_t *>(preEncOtaDecryptArgs.data_out), preEncOtaDecryptArgs.data_out_len); |
| return CHIP_NO_ERROR; |
| } |
| #endif // CONFIG_ENABLE_ENCRYPTED_OTA |
| |
| } // namespace chip |
