123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158 |
- /*
- * Copyright (C) 2009 Gabor Juhos <juhosg@openwrt.org>
- *
- * This tool was based on:
- * TP-Link WR941 V2 firmware checksum fixing tool.
- * Copyright (C) 2008,2009 Wang Jian <lark@linux.net.cn>
- *
- * This program is free software; you can redistribute it and/or modify it
- * under the terms of the GNU General Public License version 2 as published
- * by the Free Software Foundation.
- *
- */
- #include <stdio.h>
- #include <stdlib.h>
- #include <stdint.h>
- #include <string.h>
- #include <unistd.h> /* for unlink() */
- #include <libgen.h>
- #include <getopt.h> /* for getopt() */
- #include <stdarg.h>
- #include <errno.h>
- #include <sys/stat.h>
- #include <arpa/inet.h>
- #include <netinet/in.h>
- #include "md5.h"
- #define ALIGN(x,a) ({ typeof(a) __a = (a); (((x) + __a - 1) & ~(__a - 1)); })
- #define HEADER_VERSION_V1 0x01000000
- #define HWID_GL_INET_V1 0x08000001
- #define HWID_GS_OOLITE_V1 0x3C000101
- #define HWID_TL_MR10U_V1 0x00100101
- #define HWID_TL_MR13U_V1 0x00130101
- #define HWID_TL_MR3020_V1 0x30200001
- #define HWID_TL_MR3220_V1 0x32200001
- #define HWID_TL_MR3220_V2 0x32200002
- #define HWID_TL_MR3420_V1 0x34200001
- #define HWID_TL_MR3420_V2 0x34200002
- #define HWID_TL_WA701N_V1 0x07010001
- #define HWID_TL_WA7510N_V1 0x75100001
- #define HWID_TL_WA801ND_V1 0x08010001
- #define HWID_TL_WA830RE_V1 0x08300010
- #define HWID_TL_WA830RE_V2 0x08300002
- #define HWID_TL_WA801ND_V2 0x08010002
- #define HWID_TL_WA901ND_V1 0x09010001
- #define HWID_TL_WA901ND_V2 0x09010002
- #define HWID_TL_WDR4300_V1_IL 0x43008001
- #define HWID_TL_WDR4900_V1 0x49000001
- #define HWID_TL_WR703N_V1 0x07030101
- #define HWID_TL_WR720N_V3 0x07200103
- #define HWID_TL_WR741ND_V1 0x07410001
- #define HWID_TL_WR741ND_V4 0x07410004
- #define HWID_TL_WR740N_V1 0x07400001
- #define HWID_TL_WR740N_V3 0x07400003
- #define HWID_TL_WR743ND_V1 0x07430001
- #define HWID_TL_WR743ND_V2 0x07430002
- #define HWID_TL_WR841N_V1_5 0x08410002
- #define HWID_TL_WR841ND_V3 0x08410003
- #define HWID_TL_WR841ND_V5 0x08410005
- #define HWID_TL_WR841ND_V7 0x08410007
- #define HWID_TL_WR941ND_V2 0x09410002
- #define HWID_TL_WR941ND_V4 0x09410004
- #define HWID_TL_WR1043ND_V1 0x10430001
- #define HWID_TL_WR1043ND_V2 0x10430002
- #define HWID_TL_WR1041N_V2 0x10410002
- #define HWID_TL_WR2543N_V1 0x25430001
- #define MD5SUM_LEN 16
- struct file_info {
- char *file_name; /* name of the file */
- uint32_t file_size; /* length of the file */
- };
- struct fw_header {
- uint32_t version; /* header version */
- char vendor_name[24];
- char fw_version[36];
- uint32_t hw_id; /* hardware id */
- uint32_t hw_rev; /* hardware revision */
- uint32_t unk1;
- uint8_t md5sum1[MD5SUM_LEN];
- uint32_t unk2;
- uint8_t md5sum2[MD5SUM_LEN];
- uint32_t unk3;
- uint32_t kernel_la; /* kernel load address */
- uint32_t kernel_ep; /* kernel entry point */
- uint32_t fw_length; /* total length of the firmware */
- uint32_t kernel_ofs; /* kernel data offset */
- uint32_t kernel_len; /* kernel data length */
- uint32_t rootfs_ofs; /* rootfs data offset */
- uint32_t rootfs_len; /* rootfs data length */
- uint32_t boot_ofs; /* bootloader data offset */
- uint32_t boot_len; /* bootloader data length */
- uint16_t ver_hi;
- uint16_t ver_mid;
- uint16_t ver_lo;
- uint8_t pad[354];
- } __attribute__ ((packed));
- struct flash_layout {
- char *id;
- uint32_t fw_max_len;
- uint32_t kernel_la;
- uint32_t kernel_ep;
- uint32_t rootfs_ofs;
- };
- struct board_info {
- char *id;
- uint32_t hw_id;
- uint32_t hw_rev;
- char *layout_id;
- };
- /*
- * Globals
- */
- static char *ofname;
- static char *progname;
- static char *vendor = "TP-LINK Technologies";
- static char *version = "ver. 1.0";
- static char *fw_ver = "0.0.0";
- static char *board_id;
- static struct board_info *board;
- static char *layout_id;
- static struct flash_layout *layout;
- static char *opt_hw_id;
- static uint32_t hw_id;
- static char *opt_hw_rev;
- static uint32_t hw_rev;
- static int fw_ver_lo;
- static int fw_ver_mid;
- static int fw_ver_hi;
- static struct file_info kernel_info;
- static uint32_t kernel_la = 0;
- static uint32_t kernel_ep = 0;
- static uint32_t kernel_len = 0;
- static struct file_info rootfs_info;
- static uint32_t rootfs_ofs = 0;
- static uint32_t rootfs_align;
- static struct file_info boot_info;
- static int combined;
- static int strip_padding;
- static int add_jffs2_eof;
- static unsigned char jffs2_eof_mark[4] = {0xde, 0xad, 0xc0, 0xde};
- static uint32_t fw_max_len;
- static uint32_t reserved_space;
- static struct file_info inspect_info;
- static int extract = 0;
- char md5salt_normal[MD5SUM_LEN] = {
- 0xdc, 0xd7, 0x3a, 0xa5, 0xc3, 0x95, 0x98, 0xfb,
- 0xdd, 0xf9, 0xe7, 0xf4, 0x0e, 0xae, 0x47, 0x38,
- };
- char md5salt_boot[MD5SUM_LEN] = {
- 0x8c, 0xef, 0x33, 0x5b, 0xd5, 0xc5, 0xce, 0xfa,
- 0xa7, 0x9c, 0x28, 0xda, 0xb2, 0xe9, 0x0f, 0x42,
- };
- static struct flash_layout layouts[] = {
- {
- .id = "4M",
- .fw_max_len = 0x3c0000,
- .kernel_la = 0x80060000,
- .kernel_ep = 0x80060000,
- .rootfs_ofs = 0x140000,
- }, {
- .id = "4Mlzma",
- .fw_max_len = 0x3c0000,
- .kernel_la = 0x80060000,
- .kernel_ep = 0x80060000,
- .rootfs_ofs = 0x100000,
- }, {
- .id = "8M",
- .fw_max_len = 0x7c0000,
- .kernel_la = 0x80060000,
- .kernel_ep = 0x80060000,
- .rootfs_ofs = 0x140000,
- }, {
- .id = "8Mlzma",
- .fw_max_len = 0x7c0000,
- .kernel_la = 0x80060000,
- .kernel_ep = 0x80060000,
- .rootfs_ofs = 0x100000,
- }, {
- .id = "16M",
- .fw_max_len = 0xf80000,
- .kernel_la = 0x80060000,
- .kernel_ep = 0x80060000,
- .rootfs_ofs = 0x140000,
- }, {
- .id = "16Mlzma",
- .fw_max_len = 0xf80000,
- .kernel_la = 0x80060000,
- .kernel_ep = 0x80060000,
- .rootfs_ofs = 0x100000,
- }, {
- .id = "16Mppc",
- .fw_max_len = 0xf80000,
- .kernel_la = 0x00000000,
- .kernel_ep = 0xc0000000,
- .rootfs_ofs = 0x2a0000,
- }, {
- /* terminating entry */
- }
- };
- static struct board_info boards[] = {
- {
- .id = "TL-MR10Uv1",
- .hw_id = HWID_TL_MR10U_V1,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-MR13Uv1",
- .hw_id = HWID_TL_MR13U_V1,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-MR3020v1",
- .hw_id = HWID_TL_MR3020_V1,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-MR3220v1",
- .hw_id = HWID_TL_MR3220_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-MR3220v2",
- .hw_id = HWID_TL_MR3220_V2,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-MR3420v1",
- .hw_id = HWID_TL_MR3420_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-MR3420v2",
- .hw_id = HWID_TL_MR3420_V2,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-WA701Nv1",
- .hw_id = HWID_TL_WA701N_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WA7510N",
- .hw_id = HWID_TL_WA7510N_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WA801NDv1",
- .hw_id = HWID_TL_WA801ND_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WA830REv1",
- .hw_id = HWID_TL_WA830RE_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WA830REv2",
- .hw_id = HWID_TL_WA830RE_V2,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WA801NDv2",
- .hw_id = HWID_TL_WA801ND_V2,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-WA901NDv1",
- .hw_id = HWID_TL_WA901ND_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WA901NDv2",
- .hw_id = HWID_TL_WA901ND_V2,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WDR4300v1",
- .hw_id = HWID_TL_WDR4300_V1_IL,
- .hw_rev = 1,
- .layout_id = "8Mlzma",
- }, {
- .id = "TL-WDR4900v1",
- .hw_id = HWID_TL_WDR4900_V1,
- .hw_rev = 1,
- .layout_id = "16Mppc",
- }, {
- .id = "TL-WR741NDv1",
- .hw_id = HWID_TL_WR741ND_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WR741NDv4",
- .hw_id = HWID_TL_WR741ND_V4,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-WR740Nv1",
- .hw_id = HWID_TL_WR740N_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WR740Nv3",
- .hw_id = HWID_TL_WR740N_V3,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WR743NDv1",
- .hw_id = HWID_TL_WR743ND_V1,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WR743NDv2",
- .hw_id = HWID_TL_WR743ND_V2,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-WR841Nv1.5",
- .hw_id = HWID_TL_WR841N_V1_5,
- .hw_rev = 2,
- .layout_id = "4M",
- }, {
- .id = "TL-WR841NDv3",
- .hw_id = HWID_TL_WR841ND_V3,
- .hw_rev = 3,
- .layout_id = "4M",
- }, {
- .id = "TL-WR841NDv5",
- .hw_id = HWID_TL_WR841ND_V5,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WR841NDv7",
- .hw_id = HWID_TL_WR841ND_V7,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WR941NDv2",
- .hw_id = HWID_TL_WR941ND_V2,
- .hw_rev = 2,
- .layout_id = "4M",
- }, {
- .id = "TL-WR941NDv4",
- .hw_id = HWID_TL_WR941ND_V4,
- .hw_rev = 1,
- .layout_id = "4M",
- }, {
- .id = "TL-WR1041Nv2",
- .hw_id = HWID_TL_WR1041N_V2,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-WR1043NDv1",
- .hw_id = HWID_TL_WR1043ND_V1,
- .hw_rev = 1,
- .layout_id = "8M",
- }, {
- .id = "TL-WR1043NDv2",
- .hw_id = HWID_TL_WR1043ND_V2,
- .hw_rev = 1,
- .layout_id = "8Mlzma",
- }, {
- .id = "TL-WR2543Nv1",
- .hw_id = HWID_TL_WR2543N_V1,
- .hw_rev = 1,
- .layout_id = "8Mlzma",
- }, {
- .id = "TL-WR703Nv1",
- .hw_id = HWID_TL_WR703N_V1,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "TL-WR720Nv3",
- .hw_id = HWID_TL_WR720N_V3,
- .hw_rev = 1,
- .layout_id = "4Mlzma",
- }, {
- .id = "GL-INETv1",
- .hw_id = HWID_GL_INET_V1,
- .hw_rev = 1,
- .layout_id = "8Mlzma",
- }, {
- .id = "GS-OOLITEv1",
- .hw_id = HWID_GS_OOLITE_V1,
- .hw_rev = 1,
- .layout_id = "16Mlzma",
- }, {
- /* terminating entry */
- }
- };
- /*
- * Message macros
- */
- #define ERR(fmt, ...) do { \
- fflush(0); \
- fprintf(stderr, "[%s] *** error: " fmt "\n", \
- progname, ## __VA_ARGS__ ); \
- } while (0)
- #define ERRS(fmt, ...) do { \
- int save = errno; \
- fflush(0); \
- fprintf(stderr, "[%s] *** error: " fmt "\n", \
- progname, ## __VA_ARGS__, strerror(save)); \
- } while (0)
- #define DBG(fmt, ...) do { \
- fprintf(stderr, "[%s] " fmt "\n", progname, ## __VA_ARGS__ ); \
- } while (0)
- static struct board_info *find_board(char *id)
- {
- struct board_info *ret;
- struct board_info *board;
- ret = NULL;
- for (board = boards; board->id != NULL; board++){
- if (strcasecmp(id, board->id) == 0) {
- ret = board;
- break;
- }
- };
- return ret;
- }
- static struct board_info *find_board_by_hwid(uint32_t hw_id)
- {
- struct board_info *board;
- for (board = boards; board->id != NULL; board++) {
- if (hw_id == board->hw_id)
- return board;
- };
- return NULL;
- }
- static struct flash_layout *find_layout(char *id)
- {
- struct flash_layout *ret;
- struct flash_layout *l;
- ret = NULL;
- for (l = layouts; l->id != NULL; l++){
- if (strcasecmp(id, l->id) == 0) {
- ret = l;
- break;
- }
- };
- return ret;
- }
- static void usage(int status)
- {
- FILE *stream = (status != EXIT_SUCCESS) ? stderr : stdout;
- struct board_info *board;
- fprintf(stream, "Usage: %s [OPTIONS...]\n", progname);
- fprintf(stream,
- "\n"
- "Options:\n"
- " -B <board> create image for the board specified with <board>\n"
- " -c use combined kernel image\n"
- " -E <ep> overwrite kernel entry point with <ep> (hexval prefixed with 0x)\n"
- " -L <la> overwrite kernel load address with <la> (hexval prefixed with 0x)\n"
- " -H <hwid> use hardware id specified with <hwid>\n"
- " -W <hwrev> use hardware revision specified with <hwrev>\n"
- " -F <id> use flash layout specified with <id>\n"
- " -k <file> read kernel image from the file <file>\n"
- " -r <file> read rootfs image from the file <file>\n"
- " -a <align> align the rootfs start on an <align> bytes boundary\n"
- " -R <offset> overwrite rootfs offset with <offset> (hexval prefixed with 0x)\n"
- " -o <file> write output to the file <file>\n"
- " -s strip padding from the end of the image\n"
- " -j add jffs2 end-of-filesystem markers\n"
- " -N <vendor> set image vendor to <vendor>\n"
- " -V <version> set image version to <version>\n"
- " -v <version> set firmware version to <version>\n"
- " -i <file> inspect given firmware file <file>\n"
- " -x extract kernel and rootfs while inspecting (requires -i)\n"
- " -X <size> reserve <size> bytes in the firmware image (hexval prefixed with 0x)\n"
- " -h show this screen\n"
- );
- exit(status);
- }
- static int get_md5(char *data, int size, char *md5)
- {
- MD5_CTX ctx;
- MD5_Init(&ctx);
- MD5_Update(&ctx, data, size);
- MD5_Final(md5, &ctx);
- }
- static int get_file_stat(struct file_info *fdata)
- {
- struct stat st;
- int res;
- if (fdata->file_name == NULL)
- return 0;
- res = stat(fdata->file_name, &st);
- if (res){
- ERRS("stat failed on %s", fdata->file_name);
- return res;
- }
- fdata->file_size = st.st_size;
- return 0;
- }
- static int read_to_buf(struct file_info *fdata, char *buf)
- {
- FILE *f;
- int ret = EXIT_FAILURE;
- f = fopen(fdata->file_name, "r");
- if (f == NULL) {
- ERRS("could not open \"%s\" for reading", fdata->file_name);
- goto out;
- }
- errno = 0;
- fread(buf, fdata->file_size, 1, f);
- if (errno != 0) {
- ERRS("unable to read from file \"%s\"", fdata->file_name);
- goto out_close;
- }
- ret = EXIT_SUCCESS;
- out_close:
- fclose(f);
- out:
- return ret;
- }
- static int check_options(void)
- {
- int ret;
- if (inspect_info.file_name) {
- ret = get_file_stat(&inspect_info);
- if (ret)
- return ret;
- return 0;
- } else if (extract) {
- ERR("no firmware for inspection specified");
- return -1;
- }
- if (board_id == NULL && opt_hw_id == NULL) {
- ERR("either board or hardware id must be specified");
- return -1;
- }
- if (board_id) {
- board = find_board(board_id);
- if (board == NULL) {
- ERR("unknown/unsupported board id \"%s\"", board_id);
- return -1;
- }
- if (layout_id == NULL)
- layout_id = board->layout_id;
- hw_id = board->hw_id;
- hw_rev = board->hw_rev;
- } else {
- if (layout_id == NULL) {
- ERR("flash layout is not specified");
- return -1;
- }
- hw_id = strtoul(opt_hw_id, NULL, 0);
- if (opt_hw_rev)
- hw_rev = strtoul(opt_hw_rev, NULL, 0);
- else
- hw_rev = 1;
- }
- layout = find_layout(layout_id);
- if (layout == NULL) {
- ERR("unknown flash layout \"%s\"", layout_id);
- return -1;
- }
- if (!kernel_la)
- kernel_la = layout->kernel_la;
- if (!kernel_ep)
- kernel_ep = layout->kernel_ep;
- if (!rootfs_ofs)
- rootfs_ofs = layout->rootfs_ofs;
- if (reserved_space > layout->fw_max_len) {
- ERR("reserved space is not valid");
- return -1;
- }
- fw_max_len = layout->fw_max_len - reserved_space;
- if (kernel_info.file_name == NULL) {
- ERR("no kernel image specified");
- return -1;
- }
- ret = get_file_stat(&kernel_info);
- if (ret)
- return ret;
- kernel_len = kernel_info.file_size;
- if (combined) {
- if (kernel_info.file_size >
- fw_max_len - sizeof(struct fw_header)) {
- ERR("kernel image is too big");
- return -1;
- }
- } else {
- if (rootfs_info.file_name == NULL) {
- ERR("no rootfs image specified");
- return -1;
- }
- ret = get_file_stat(&rootfs_info);
- if (ret)
- return ret;
- if (rootfs_align) {
- kernel_len += sizeof(struct fw_header);
- kernel_len = ALIGN(kernel_len, rootfs_align);
- kernel_len -= sizeof(struct fw_header);
- DBG("kernel length aligned to %u", kernel_len);
- if (kernel_len + rootfs_info.file_size >
- fw_max_len - sizeof(struct fw_header)) {
- ERR("images are too big");
- return -1;
- }
- } else {
- if (kernel_info.file_size >
- rootfs_ofs - sizeof(struct fw_header)) {
- ERR("kernel image is too big");
- return -1;
- }
- if (rootfs_info.file_size >
- (fw_max_len - rootfs_ofs)) {
- ERR("rootfs image is too big");
- return -1;
- }
- }
- }
- if (ofname == NULL) {
- ERR("no output file specified");
- return -1;
- }
- ret = sscanf(fw_ver, "%d.%d.%d", &fw_ver_hi, &fw_ver_mid, &fw_ver_lo);
- if (ret != 3) {
- ERR("invalid firmware version '%s'", fw_ver);
- return -1;
- }
- return 0;
- }
- static void fill_header(char *buf, int len)
- {
- struct fw_header *hdr = (struct fw_header *)buf;
- memset(hdr, 0, sizeof(struct fw_header));
- hdr->version = htonl(HEADER_VERSION_V1);
- strncpy(hdr->vendor_name, vendor, sizeof(hdr->vendor_name));
- strncpy(hdr->fw_version, version, sizeof(hdr->fw_version));
- hdr->hw_id = htonl(hw_id);
- hdr->hw_rev = htonl(hw_rev);
- if (boot_info.file_size == 0)
- memcpy(hdr->md5sum1, md5salt_normal, sizeof(hdr->md5sum1));
- else
- memcpy(hdr->md5sum1, md5salt_boot, sizeof(hdr->md5sum1));
- hdr->kernel_la = htonl(kernel_la);
- hdr->kernel_ep = htonl(kernel_ep);
- hdr->fw_length = htonl(layout->fw_max_len);
- hdr->kernel_ofs = htonl(sizeof(struct fw_header));
- hdr->kernel_len = htonl(kernel_len);
- if (!combined) {
- hdr->rootfs_ofs = htonl(rootfs_ofs);
- hdr->rootfs_len = htonl(rootfs_info.file_size);
- }
- hdr->ver_hi = htons(fw_ver_hi);
- hdr->ver_mid = htons(fw_ver_mid);
- hdr->ver_lo = htons(fw_ver_lo);
- get_md5(buf, len, hdr->md5sum1);
- }
- static int pad_jffs2(char *buf, int currlen)
- {
- int len;
- uint32_t pad_mask;
- len = currlen;
- pad_mask = (64 * 1024);
- while ((len < layout->fw_max_len) && (pad_mask != 0)) {
- uint32_t mask;
- int i;
- for (i = 10; i < 32; i++) {
- mask = 1 << i;
- if (pad_mask & mask)
- break;
- }
- len = ALIGN(len, mask);
- for (i = 10; i < 32; i++) {
- mask = 1 << i;
- if ((len & (mask - 1)) == 0)
- pad_mask &= ~mask;
- }
- for (i = 0; i < sizeof(jffs2_eof_mark); i++)
- buf[len + i] = jffs2_eof_mark[i];
- len += sizeof(jffs2_eof_mark);
- }
- return len;
- }
- static int write_fw(char *data, int len)
- {
- FILE *f;
- int ret = EXIT_FAILURE;
- f = fopen(ofname, "w");
- if (f == NULL) {
- ERRS("could not open \"%s\" for writing", ofname);
- goto out;
- }
- errno = 0;
- fwrite(data, len, 1, f);
- if (errno) {
- ERRS("unable to write output file");
- goto out_flush;
- }
- DBG("firmware file \"%s\" completed", ofname);
- ret = EXIT_SUCCESS;
- out_flush:
- fflush(f);
- fclose(f);
- if (ret != EXIT_SUCCESS) {
- unlink(ofname);
- }
- out:
- return ret;
- }
- static int build_fw(void)
- {
- int buflen;
- char *buf;
- char *p;
- int ret = EXIT_FAILURE;
- int writelen = 0;
- buflen = layout->fw_max_len;
- buf = malloc(buflen);
- if (!buf) {
- ERR("no memory for buffer\n");
- goto out;
- }
- memset(buf, 0xff, buflen);
- p = buf + sizeof(struct fw_header);
- ret = read_to_buf(&kernel_info, p);
- if (ret)
- goto out_free_buf;
- writelen = sizeof(struct fw_header) + kernel_len;
- if (!combined) {
- if (rootfs_align)
- p = buf + writelen;
- else
- p = buf + rootfs_ofs;
- ret = read_to_buf(&rootfs_info, p);
- if (ret)
- goto out_free_buf;
- if (rootfs_align)
- writelen += rootfs_info.file_size;
- else
- writelen = rootfs_ofs + rootfs_info.file_size;
- if (add_jffs2_eof)
- writelen = pad_jffs2(buf, writelen);
- }
- if (!strip_padding)
- writelen = buflen;
- fill_header(buf, writelen);
- ret = write_fw(buf, writelen);
- if (ret)
- goto out_free_buf;
- ret = EXIT_SUCCESS;
- out_free_buf:
- free(buf);
- out:
- return ret;
- }
- /* Helper functions to inspect_fw() representing different output formats */
- static inline void inspect_fw_pstr(char *label, char *str)
- {
- printf("%-23s: %s\n", label, str);
- }
- static inline void inspect_fw_phex(char *label, uint32_t val)
- {
- printf("%-23s: 0x%08x\n", label, val);
- }
- static inline void inspect_fw_phexpost(char *label,
- uint32_t val, char *post)
- {
- printf("%-23s: 0x%08x (%s)\n", label, val, post);
- }
- static inline void inspect_fw_phexdef(char *label,
- uint32_t val, uint32_t defval)
- {
- printf("%-23s: 0x%08x ", label, val);
- if (val == defval)
- printf("(== OpenWrt default)\n");
- else
- printf("(OpenWrt default: 0x%08x)\n", defval);
- }
- static inline void inspect_fw_phexexp(char *label,
- uint32_t val, uint32_t expval)
- {
- printf("%-23s: 0x%08x ", label, val);
- if (val == expval)
- printf("(ok)\n");
- else
- printf("(expected: 0x%08x)\n", expval);
- }
- static inline void inspect_fw_phexdec(char *label, uint32_t val)
- {
- printf("%-23s: 0x%08x / %8u bytes\n", label, val, val);
- }
- static inline void inspect_fw_phexdecdef(char *label,
- uint32_t val, uint32_t defval)
- {
- printf("%-23s: 0x%08x / %8u bytes ", label, val, val);
- if (val == defval)
- printf("(== OpenWrt default)\n");
- else
- printf("(OpenWrt default: 0x%08x)\n", defval);
- }
- static inline void inspect_fw_pmd5sum(char *label, uint8_t *val, char *text)
- {
- int i;
- printf("%-23s:", label);
- for (i=0; i<MD5SUM_LEN; i++)
- printf(" %02x", val[i]);
- printf(" %s\n", text);
- }
- static int inspect_fw(void)
- {
- char *buf;
- struct fw_header *hdr;
- uint8_t md5sum[MD5SUM_LEN];
- struct board_info *board;
- int ret = EXIT_FAILURE;
- buf = malloc(inspect_info.file_size);
- if (!buf) {
- ERR("no memory for buffer!\n");
- goto out;
- }
- ret = read_to_buf(&inspect_info, buf);
- if (ret)
- goto out_free_buf;
- hdr = (struct fw_header *)buf;
- inspect_fw_pstr("File name", inspect_info.file_name);
- inspect_fw_phexdec("File size", inspect_info.file_size);
- if (ntohl(hdr->version) != HEADER_VERSION_V1) {
- ERR("file does not seem to have V1 header!\n");
- goto out_free_buf;
- }
- inspect_fw_phexdec("Version 1 Header size", sizeof(struct fw_header));
- if (ntohl(hdr->unk1) != 0)
- inspect_fw_phexdec("Unknown value 1", hdr->unk1);
- memcpy(md5sum, hdr->md5sum1, sizeof(md5sum));
- if (ntohl(hdr->boot_len) == 0)
- memcpy(hdr->md5sum1, md5salt_normal, sizeof(md5sum));
- else
- memcpy(hdr->md5sum1, md5salt_boot, sizeof(md5sum));
- get_md5(buf, inspect_info.file_size, hdr->md5sum1);
- if (memcmp(md5sum, hdr->md5sum1, sizeof(md5sum))) {
- inspect_fw_pmd5sum("Header MD5Sum1", md5sum, "(*ERROR*)");
- inspect_fw_pmd5sum(" --> expected", hdr->md5sum1, "");
- } else {
- inspect_fw_pmd5sum("Header MD5Sum1", md5sum, "(ok)");
- }
- if (ntohl(hdr->unk2) != 0)
- inspect_fw_phexdec("Unknown value 2", hdr->unk2);
- inspect_fw_pmd5sum("Header MD5Sum2", hdr->md5sum2,
- "(purpose yet unknown, unchecked here)");
- if (ntohl(hdr->unk3) != 0)
- inspect_fw_phexdec("Unknown value 3", hdr->unk3);
- printf("\n");
- inspect_fw_pstr("Vendor name", hdr->vendor_name);
- inspect_fw_pstr("Firmware version", hdr->fw_version);
- board = find_board_by_hwid(ntohl(hdr->hw_id));
- if (board) {
- layout = find_layout(board->layout_id);
- inspect_fw_phexpost("Hardware ID",
- ntohl(hdr->hw_id), board->id);
- inspect_fw_phexexp("Hardware Revision",
- ntohl(hdr->hw_rev), board->hw_rev);
- } else {
- inspect_fw_phexpost("Hardware ID",
- ntohl(hdr->hw_id), "unknown");
- inspect_fw_phex("Hardware Revision",
- ntohl(hdr->hw_rev));
- }
- printf("\n");
- inspect_fw_phexdec("Kernel data offset",
- ntohl(hdr->kernel_ofs));
- inspect_fw_phexdec("Kernel data length",
- ntohl(hdr->kernel_len));
- if (board) {
- inspect_fw_phexdef("Kernel load address",
- ntohl(hdr->kernel_la),
- layout ? layout->kernel_la : 0xffffffff);
- inspect_fw_phexdef("Kernel entry point",
- ntohl(hdr->kernel_ep),
- layout ? layout->kernel_ep : 0xffffffff);
- inspect_fw_phexdecdef("Rootfs data offset",
- ntohl(hdr->rootfs_ofs),
- layout ? layout->rootfs_ofs : 0xffffffff);
- } else {
- inspect_fw_phex("Kernel load address",
- ntohl(hdr->kernel_la));
- inspect_fw_phex("Kernel entry point",
- ntohl(hdr->kernel_ep));
- inspect_fw_phexdec("Rootfs data offset",
- ntohl(hdr->rootfs_ofs));
- }
- inspect_fw_phexdec("Rootfs data length",
- ntohl(hdr->rootfs_len));
- inspect_fw_phexdec("Boot loader data offset",
- ntohl(hdr->boot_ofs));
- inspect_fw_phexdec("Boot loader data length",
- ntohl(hdr->boot_len));
- inspect_fw_phexdec("Total firmware length",
- ntohl(hdr->fw_length));
- if (extract) {
- FILE *fp;
- char *filename;
- printf("\n");
- filename = malloc(strlen(inspect_info.file_name) + 8);
- sprintf(filename, "%s-kernel", inspect_info.file_name);
- printf("Extracting kernel to \"%s\"...\n", filename);
- fp = fopen(filename, "w");
- if (fp) {
- if (!fwrite(buf + ntohl(hdr->kernel_ofs),
- ntohl(hdr->kernel_len), 1, fp)) {
- ERR("error in fwrite(): %s", strerror(errno));
- }
- fclose(fp);
- } else {
- ERR("error in fopen(): %s", strerror(errno));
- }
- free(filename);
- filename = malloc(strlen(inspect_info.file_name) + 8);
- sprintf(filename, "%s-rootfs", inspect_info.file_name);
- printf("Extracting rootfs to \"%s\"...\n", filename);
- fp = fopen(filename, "w");
- if (fp) {
- if (!fwrite(buf + ntohl(hdr->rootfs_ofs),
- ntohl(hdr->rootfs_len), 1, fp)) {
- ERR("error in fwrite(): %s", strerror(errno));
- }
- fclose(fp);
- } else {
- ERR("error in fopen(): %s", strerror(errno));
- }
- free(filename);
- }
- out_free_buf:
- free(buf);
- out:
- return ret;
- }
- int main(int argc, char *argv[])
- {
- int ret = EXIT_FAILURE;
- int err;
- FILE *outfile;
- progname = basename(argv[0]);
- while ( 1 ) {
- int c;
- c = getopt(argc, argv, "a:B:H:E:F:L:V:N:W:ci:k:r:R:o:xX:hsjv:");
- if (c == -1)
- break;
- switch (c) {
- case 'a':
- sscanf(optarg, "0x%x", &rootfs_align);
- break;
- case 'B':
- board_id = optarg;
- break;
- case 'H':
- opt_hw_id = optarg;
- break;
- case 'E':
- sscanf(optarg, "0x%x", &kernel_ep);
- break;
- case 'F':
- layout_id = optarg;
- break;
- case 'W':
- opt_hw_rev = optarg;
- break;
- case 'L':
- sscanf(optarg, "0x%x", &kernel_la);
- break;
- case 'V':
- version = optarg;
- break;
- case 'v':
- fw_ver = optarg;
- break;
- case 'N':
- vendor = optarg;
- break;
- case 'c':
- combined++;
- break;
- case 'k':
- kernel_info.file_name = optarg;
- break;
- case 'r':
- rootfs_info.file_name = optarg;
- break;
- case 'R':
- sscanf(optarg, "0x%x", &rootfs_ofs);
- break;
- case 'o':
- ofname = optarg;
- break;
- case 's':
- strip_padding = 1;
- break;
- case 'i':
- inspect_info.file_name = optarg;
- break;
- case 'j':
- add_jffs2_eof = 1;
- break;
- case 'x':
- extract = 1;
- break;
- case 'h':
- usage(EXIT_SUCCESS);
- break;
- case 'X':
- sscanf(optarg, "0x%x", &reserved_space);
- break;
- default:
- usage(EXIT_FAILURE);
- break;
- }
- }
- ret = check_options();
- if (ret)
- goto out;
- if (!inspect_info.file_name)
- ret = build_fw();
- else
- ret = inspect_fw();
- out:
- return ret;
- }
|