1*4882a593Smuzhiyun #include <fcntl.h>
2*4882a593Smuzhiyun #include <sys/types.h>
3*4882a593Smuzhiyun #include <sys/stat.h>
4*4882a593Smuzhiyun #include <uuid/uuid.h>
5*4882a593Smuzhiyun
6*4882a593Smuzhiyun #include "RKAndroidDevice.h"
7*4882a593Smuzhiyun
8*4882a593Smuzhiyun #define OTP_NODE_PATH "/sys/bus/nvmem/devices/rockchip-otp0/nvmem"
9*4882a593Smuzhiyun
10*4882a593Smuzhiyun UpgradeCallbackFunc g_callback = NULL;
11*4882a593Smuzhiyun UpgradeProgressCallbackFunc g_progress_callback = NULL;
12*4882a593Smuzhiyun
13*4882a593Smuzhiyun /* RK3308 loader update*/
IsRK3308_Platform()14*4882a593Smuzhiyun int IsRK3308_Platform()
15*4882a593Smuzhiyun {
16*4882a593Smuzhiyun int fd = -1;
17*4882a593Smuzhiyun int len;
18*4882a593Smuzhiyun char buff[32];
19*4882a593Smuzhiyun fd = open(OTP_NODE_PATH, O_RDONLY);
20*4882a593Smuzhiyun if (fd < 0)
21*4882a593Smuzhiyun {
22*4882a593Smuzhiyun printf("Open OTP node fail!\n");
23*4882a593Smuzhiyun return false;
24*4882a593Smuzhiyun }
25*4882a593Smuzhiyun
26*4882a593Smuzhiyun len = read(fd, buff, sizeof(buff));
27*4882a593Smuzhiyun if (len != sizeof(buff))
28*4882a593Smuzhiyun {
29*4882a593Smuzhiyun printf("read OTP node data fail\n");
30*4882a593Smuzhiyun }
31*4882a593Smuzhiyun
32*4882a593Smuzhiyun close(fd);
33*4882a593Smuzhiyun
34*4882a593Smuzhiyun if (buff[0] == 'R' && buff[1] == 'K' && buff[2] == 0x33 && buff[3] == 0x08)
35*4882a593Smuzhiyun {
36*4882a593Smuzhiyun return 1;
37*4882a593Smuzhiyun }
38*4882a593Smuzhiyun else
39*4882a593Smuzhiyun {
40*4882a593Smuzhiyun int i = 0;
41*4882a593Smuzhiyun for (size_t i = 0; i < 32; i++)
42*4882a593Smuzhiyun {
43*4882a593Smuzhiyun if (i % 16 == 0 && i != 0)
44*4882a593Smuzhiyun {
45*4882a593Smuzhiyun printf("\n");
46*4882a593Smuzhiyun }
47*4882a593Smuzhiyun printf("%x ", buff[i]);
48*4882a593Smuzhiyun }
49*4882a593Smuzhiyun }
50*4882a593Smuzhiyun
51*4882a593Smuzhiyun return 0;
52*4882a593Smuzhiyun }
53*4882a593Smuzhiyun
Compatible_rk3308bs_loader()54*4882a593Smuzhiyun int Compatible_rk3308bs_loader()
55*4882a593Smuzhiyun {
56*4882a593Smuzhiyun int fd = -1;
57*4882a593Smuzhiyun int len;
58*4882a593Smuzhiyun char buff[32];
59*4882a593Smuzhiyun fd = open(OTP_NODE_PATH, O_RDONLY);
60*4882a593Smuzhiyun if (fd < 0)
61*4882a593Smuzhiyun {
62*4882a593Smuzhiyun printf("Open OTP node fail!\n");
63*4882a593Smuzhiyun return false;
64*4882a593Smuzhiyun }
65*4882a593Smuzhiyun
66*4882a593Smuzhiyun printf("%s: \n", __func__);
67*4882a593Smuzhiyun
68*4882a593Smuzhiyun len = read(fd, buff, sizeof(buff));
69*4882a593Smuzhiyun if (len != sizeof(buff))
70*4882a593Smuzhiyun {
71*4882a593Smuzhiyun printf("read OTP node data fail\n");
72*4882a593Smuzhiyun }
73*4882a593Smuzhiyun
74*4882a593Smuzhiyun close(fd);
75*4882a593Smuzhiyun printf("OTP node data Info: %x \n", buff[28]);
76*4882a593Smuzhiyun
77*4882a593Smuzhiyun return (buff[28] & 0x38) && (buff[28] & 0xc0);
78*4882a593Smuzhiyun }
79*4882a593Smuzhiyun
CreateUid(PBYTE pUid)80*4882a593Smuzhiyun bool CreateUid(PBYTE pUid)
81*4882a593Smuzhiyun {
82*4882a593Smuzhiyun if (!pUid)
83*4882a593Smuzhiyun {
84*4882a593Smuzhiyun return false;
85*4882a593Smuzhiyun }
86*4882a593Smuzhiyun memset(pUid, 0, RKDEVICE_UID_LEN);
87*4882a593Smuzhiyun
88*4882a593Smuzhiyun PBYTE pManufactory, pTime, pGuid, pCrc;
89*4882a593Smuzhiyun pManufactory = pUid;
90*4882a593Smuzhiyun pTime = pManufactory + 8;
91*4882a593Smuzhiyun pGuid = pTime + 4;
92*4882a593Smuzhiyun pCrc = pGuid + 16;
93*4882a593Smuzhiyun memcpy(pManufactory, "ROCKCHIP", 8);
94*4882a593Smuzhiyun time_t now;
95*4882a593Smuzhiyun now = time(NULL);
96*4882a593Smuzhiyun memcpy(pTime, (BYTE *)&now, 4);
97*4882a593Smuzhiyun uuid_t guidValue;
98*4882a593Smuzhiyun uuid_generate(guidValue);
99*4882a593Smuzhiyun
100*4882a593Smuzhiyun memcpy(pGuid, (BYTE *)guidValue, 16);
101*4882a593Smuzhiyun
102*4882a593Smuzhiyun USHORT usCrc = 0;
103*4882a593Smuzhiyun usCrc = CRC_CCITT(pManufactory, 28);
104*4882a593Smuzhiyun memcpy(pCrc, (BYTE *)&usCrc, 2);
105*4882a593Smuzhiyun return true;
106*4882a593Smuzhiyun }
107*4882a593Smuzhiyun
ParsePartitionInfo(string & strPartInfo,string & strName,UINT & uiOffset,UINT & uiLen)108*4882a593Smuzhiyun bool ParsePartitionInfo(string &strPartInfo, string &strName, UINT &uiOffset, UINT &uiLen)
109*4882a593Smuzhiyun {
110*4882a593Smuzhiyun string::size_type pos, prevPos;
111*4882a593Smuzhiyun string strOffset, strLen;
112*4882a593Smuzhiyun int iCount;
113*4882a593Smuzhiyun prevPos = pos = 0;
114*4882a593Smuzhiyun if (strPartInfo.size() <= 0)
115*4882a593Smuzhiyun {
116*4882a593Smuzhiyun return false;
117*4882a593Smuzhiyun }
118*4882a593Smuzhiyun pos = strPartInfo.find('@');
119*4882a593Smuzhiyun if (pos == string::npos)
120*4882a593Smuzhiyun {
121*4882a593Smuzhiyun return false;
122*4882a593Smuzhiyun }
123*4882a593Smuzhiyun strLen = strPartInfo.substr(prevPos, pos - prevPos);
124*4882a593Smuzhiyun strLen.erase(0, strLen.find_first_not_of(_T(" ")));
125*4882a593Smuzhiyun strLen.erase(strLen.find_last_not_of(_T(" ")) + 1);
126*4882a593Smuzhiyun if (strchr(strLen.c_str(), '-'))
127*4882a593Smuzhiyun {
128*4882a593Smuzhiyun uiLen = 0xFFFFFFFF;
129*4882a593Smuzhiyun }
130*4882a593Smuzhiyun else
131*4882a593Smuzhiyun {
132*4882a593Smuzhiyun iCount = sscanf(strLen.c_str(), "0x%x", &uiLen);
133*4882a593Smuzhiyun if (iCount != 1)
134*4882a593Smuzhiyun {
135*4882a593Smuzhiyun return false;
136*4882a593Smuzhiyun }
137*4882a593Smuzhiyun }
138*4882a593Smuzhiyun
139*4882a593Smuzhiyun prevPos = pos + 1;
140*4882a593Smuzhiyun pos = strPartInfo.find('(', prevPos);
141*4882a593Smuzhiyun if (pos == string::npos)
142*4882a593Smuzhiyun {
143*4882a593Smuzhiyun return false;
144*4882a593Smuzhiyun }
145*4882a593Smuzhiyun strOffset = strPartInfo.substr(prevPos, pos - prevPos);
146*4882a593Smuzhiyun strOffset.erase(0, strOffset.find_first_not_of(_T(" ")));
147*4882a593Smuzhiyun strOffset.erase(strOffset.find_last_not_of(_T(" ")) + 1);
148*4882a593Smuzhiyun iCount = sscanf(strOffset.c_str(), "0x%x", &uiOffset);
149*4882a593Smuzhiyun if (iCount != 1)
150*4882a593Smuzhiyun {
151*4882a593Smuzhiyun return false;
152*4882a593Smuzhiyun }
153*4882a593Smuzhiyun
154*4882a593Smuzhiyun prevPos = pos + 1;
155*4882a593Smuzhiyun pos = strPartInfo.find(')', prevPos);
156*4882a593Smuzhiyun if (pos == string::npos)
157*4882a593Smuzhiyun {
158*4882a593Smuzhiyun return false;
159*4882a593Smuzhiyun }
160*4882a593Smuzhiyun strName = strPartInfo.substr(prevPos, pos - prevPos);
161*4882a593Smuzhiyun strName.erase(0, strName.find_first_not_of(_T(" ")));
162*4882a593Smuzhiyun strName.erase(strName.find_last_not_of(_T(" ")) + 1);
163*4882a593Smuzhiyun
164*4882a593Smuzhiyun return true;
165*4882a593Smuzhiyun }
166*4882a593Smuzhiyun
parse_parameter(char * pParameter,PARAM_ITEM_VECTOR & vecItem)167*4882a593Smuzhiyun bool parse_parameter(char *pParameter, PARAM_ITEM_VECTOR &vecItem)
168*4882a593Smuzhiyun {
169*4882a593Smuzhiyun stringstream paramStream(pParameter);
170*4882a593Smuzhiyun bool bRet, bFind = false;
171*4882a593Smuzhiyun string strLine, strPartition, strPartInfo, strPartName;
172*4882a593Smuzhiyun string::size_type line_size, pos, posColon, posComma;
173*4882a593Smuzhiyun UINT uiPartOffset, uiPartSize;
174*4882a593Smuzhiyun STRUCT_PARAM_ITEM item;
175*4882a593Smuzhiyun vecItem.clear();
176*4882a593Smuzhiyun while (!paramStream.eof())
177*4882a593Smuzhiyun {
178*4882a593Smuzhiyun getline(paramStream, strLine);
179*4882a593Smuzhiyun line_size = strLine.size();
180*4882a593Smuzhiyun if (line_size == 0)
181*4882a593Smuzhiyun {
182*4882a593Smuzhiyun continue;
183*4882a593Smuzhiyun }
184*4882a593Smuzhiyun if (strLine[0] == '#')
185*4882a593Smuzhiyun {
186*4882a593Smuzhiyun continue;
187*4882a593Smuzhiyun }
188*4882a593Smuzhiyun if (strLine[line_size - 1] == '\r')
189*4882a593Smuzhiyun {
190*4882a593Smuzhiyun strLine = strLine.substr(0, line_size - 1);
191*4882a593Smuzhiyun }
192*4882a593Smuzhiyun pos = strLine.find("mtdparts");
193*4882a593Smuzhiyun if (pos == string::npos)
194*4882a593Smuzhiyun {
195*4882a593Smuzhiyun continue;
196*4882a593Smuzhiyun }
197*4882a593Smuzhiyun bFind = true;
198*4882a593Smuzhiyun posColon = strLine.find(':', pos);
199*4882a593Smuzhiyun if (posColon == string::npos)
200*4882a593Smuzhiyun {
201*4882a593Smuzhiyun continue;
202*4882a593Smuzhiyun }
203*4882a593Smuzhiyun strPartition = strLine.substr(posColon + 1);
204*4882a593Smuzhiyun //��ȡ������Ϣ
205*4882a593Smuzhiyun pos = 0;
206*4882a593Smuzhiyun posComma = strPartition.find(',', pos);
207*4882a593Smuzhiyun while (posComma != string::npos)
208*4882a593Smuzhiyun {
209*4882a593Smuzhiyun strPartInfo = strPartition.substr(pos, posComma - pos);
210*4882a593Smuzhiyun bRet = ParsePartitionInfo(strPartInfo, strPartName, uiPartOffset, uiPartSize);
211*4882a593Smuzhiyun if (bRet)
212*4882a593Smuzhiyun {
213*4882a593Smuzhiyun strcpy(item.szItemName, strPartName.c_str());
214*4882a593Smuzhiyun item.uiItemOffset = uiPartOffset;
215*4882a593Smuzhiyun item.uiItemSize = uiPartSize;
216*4882a593Smuzhiyun vecItem.push_back(item);
217*4882a593Smuzhiyun }
218*4882a593Smuzhiyun pos = posComma + 1;
219*4882a593Smuzhiyun posComma = strPartition.find(',', pos);
220*4882a593Smuzhiyun }
221*4882a593Smuzhiyun strPartInfo = strPartition.substr(pos);
222*4882a593Smuzhiyun if (strPartInfo.size() > 0)
223*4882a593Smuzhiyun {
224*4882a593Smuzhiyun bRet = ParsePartitionInfo(strPartInfo, strPartName, uiPartOffset, uiPartSize);
225*4882a593Smuzhiyun if (bRet)
226*4882a593Smuzhiyun {
227*4882a593Smuzhiyun strcpy(item.szItemName, strPartName.c_str());
228*4882a593Smuzhiyun item.uiItemOffset = uiPartOffset;
229*4882a593Smuzhiyun item.uiItemSize = uiPartSize;
230*4882a593Smuzhiyun vecItem.push_back(item);
231*4882a593Smuzhiyun }
232*4882a593Smuzhiyun }
233*4882a593Smuzhiyun break;
234*4882a593Smuzhiyun }
235*4882a593Smuzhiyun return bFind;
236*4882a593Smuzhiyun }
237*4882a593Smuzhiyun
get_parameter_loader(CRKComm * pComm,char * pParameter,int & nParamSize)238*4882a593Smuzhiyun bool get_parameter_loader(CRKComm *pComm, char *pParameter, int &nParamSize)
239*4882a593Smuzhiyun {
240*4882a593Smuzhiyun if ((nParamSize != -1) && (!pParameter))
241*4882a593Smuzhiyun {
242*4882a593Smuzhiyun return false;
243*4882a593Smuzhiyun }
244*4882a593Smuzhiyun BYTE paramHead[512];
245*4882a593Smuzhiyun DWORD *pParamTag = (DWORD *)paramHead;
246*4882a593Smuzhiyun DWORD *pParamSize = (DWORD *)(paramHead + 4);
247*4882a593Smuzhiyun int iRet;
248*4882a593Smuzhiyun
249*4882a593Smuzhiyun iRet = pComm->RKU_ReadLBA(0, 1, paramHead);
250*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
251*4882a593Smuzhiyun {
252*4882a593Smuzhiyun return false;
253*4882a593Smuzhiyun }
254*4882a593Smuzhiyun if (*pParamTag != 0x4D524150)
255*4882a593Smuzhiyun {
256*4882a593Smuzhiyun return false;
257*4882a593Smuzhiyun }
258*4882a593Smuzhiyun if (nParamSize == -1)
259*4882a593Smuzhiyun {
260*4882a593Smuzhiyun //��ȡparameter��С
261*4882a593Smuzhiyun nParamSize = *pParamSize;
262*4882a593Smuzhiyun return true;
263*4882a593Smuzhiyun }
264*4882a593Smuzhiyun if (nParamSize < *pParamSize)
265*4882a593Smuzhiyun {
266*4882a593Smuzhiyun return false;
267*4882a593Smuzhiyun }
268*4882a593Smuzhiyun
269*4882a593Smuzhiyun nParamSize = *pParamSize;
270*4882a593Smuzhiyun int nParamSec;
271*4882a593Smuzhiyun nParamSec = (nParamSize + 12 - 1) / 512 + 1;
272*4882a593Smuzhiyun PBYTE pBuffer = NULL;
273*4882a593Smuzhiyun pBuffer = new BYTE[nParamSec * 512];
274*4882a593Smuzhiyun if (!pBuffer)
275*4882a593Smuzhiyun {
276*4882a593Smuzhiyun return false;
277*4882a593Smuzhiyun }
278*4882a593Smuzhiyun iRet = pComm->RKU_ReadLBA(0, nParamSec, pBuffer);
279*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
280*4882a593Smuzhiyun {
281*4882a593Smuzhiyun delete []pBuffer;
282*4882a593Smuzhiyun pBuffer = NULL;
283*4882a593Smuzhiyun return false;
284*4882a593Smuzhiyun }
285*4882a593Smuzhiyun
286*4882a593Smuzhiyun memcpy(pParameter, pBuffer + 8, nParamSize);
287*4882a593Smuzhiyun delete []pBuffer;
288*4882a593Smuzhiyun pBuffer = NULL;
289*4882a593Smuzhiyun return true;
290*4882a593Smuzhiyun }
291*4882a593Smuzhiyun
read_bytes_from_partition(DWORD dwPartitionOffset,long long ullstart,DWORD dwCount,PBYTE pOut,CRKComm * pComm)292*4882a593Smuzhiyun bool read_bytes_from_partition(DWORD dwPartitionOffset, long long ullstart, DWORD dwCount, PBYTE pOut, CRKComm *pComm)
293*4882a593Smuzhiyun {
294*4882a593Smuzhiyun int iRet;
295*4882a593Smuzhiyun UINT uiTransferSize = 16 * 1024;
296*4882a593Smuzhiyun UINT uiTransferSec = uiTransferSize / SECTOR_SIZE;
297*4882a593Smuzhiyun BYTE *pBuffer = NULL;
298*4882a593Smuzhiyun UINT uiBegin = dwPartitionOffset, uiLen, uiReadBytes = 0, uiTmp;
299*4882a593Smuzhiyun DWORD dwWritePos = 0;
300*4882a593Smuzhiyun pBuffer = new BYTE[uiTransferSize];
301*4882a593Smuzhiyun if (!pBuffer)
302*4882a593Smuzhiyun {
303*4882a593Smuzhiyun return false;
304*4882a593Smuzhiyun }
305*4882a593Smuzhiyun uiTmp = ullstart % 2048;
306*4882a593Smuzhiyun if (uiTmp == 0)
307*4882a593Smuzhiyun {
308*4882a593Smuzhiyun uiBegin += ullstart / SECTOR_SIZE;
309*4882a593Smuzhiyun }
310*4882a593Smuzhiyun else
311*4882a593Smuzhiyun {
312*4882a593Smuzhiyun uiReadBytes = 2048 - uiTmp;
313*4882a593Smuzhiyun uiBegin += ((ullstart / 2048) * 4);
314*4882a593Smuzhiyun uiLen = 4;
315*4882a593Smuzhiyun iRet = pComm->RKU_ReadLBA(uiBegin, uiLen, pBuffer);
316*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
317*4882a593Smuzhiyun {
318*4882a593Smuzhiyun delete []pBuffer;
319*4882a593Smuzhiyun return false;
320*4882a593Smuzhiyun }
321*4882a593Smuzhiyun if (dwCount >= uiReadBytes)
322*4882a593Smuzhiyun {
323*4882a593Smuzhiyun memcpy(pOut + dwWritePos, pBuffer + uiTmp, uiReadBytes);
324*4882a593Smuzhiyun dwWritePos += uiReadBytes;
325*4882a593Smuzhiyun dwCount -= uiReadBytes;
326*4882a593Smuzhiyun }
327*4882a593Smuzhiyun else
328*4882a593Smuzhiyun {
329*4882a593Smuzhiyun memcpy(pOut + dwWritePos, pBuffer + uiTmp, dwCount);
330*4882a593Smuzhiyun dwWritePos += dwCount;
331*4882a593Smuzhiyun dwCount = 0;
332*4882a593Smuzhiyun }
333*4882a593Smuzhiyun uiBegin += uiLen;
334*4882a593Smuzhiyun }
335*4882a593Smuzhiyun while (dwCount > 0)
336*4882a593Smuzhiyun {
337*4882a593Smuzhiyun if (dwCount >= uiTransferSize)
338*4882a593Smuzhiyun {
339*4882a593Smuzhiyun uiReadBytes = uiTransferSize;
340*4882a593Smuzhiyun uiLen = uiTransferSec;
341*4882a593Smuzhiyun }
342*4882a593Smuzhiyun else
343*4882a593Smuzhiyun {
344*4882a593Smuzhiyun uiReadBytes = dwCount;
345*4882a593Smuzhiyun uiLen = BYTE2SECTOR(uiReadBytes);
346*4882a593Smuzhiyun }
347*4882a593Smuzhiyun iRet = pComm->RKU_ReadLBA(uiBegin, uiLen, pBuffer);
348*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
349*4882a593Smuzhiyun {
350*4882a593Smuzhiyun delete []pBuffer;
351*4882a593Smuzhiyun return false;
352*4882a593Smuzhiyun }
353*4882a593Smuzhiyun memcpy(pOut + dwWritePos, pBuffer, uiReadBytes);
354*4882a593Smuzhiyun dwWritePos += uiReadBytes;
355*4882a593Smuzhiyun dwCount -= uiReadBytes;
356*4882a593Smuzhiyun uiBegin += uiLen;
357*4882a593Smuzhiyun }
358*4882a593Smuzhiyun delete []pBuffer;
359*4882a593Smuzhiyun return true;
360*4882a593Smuzhiyun }
361*4882a593Smuzhiyun
check_fw_header(CRKComm * pComm,DWORD dwOffset,PSTRUCT_RKIMAGE_HDR pHeader,CRKLog * pLog=NULL)362*4882a593Smuzhiyun bool check_fw_header(CRKComm *pComm, DWORD dwOffset, PSTRUCT_RKIMAGE_HDR pHeader, CRKLog *pLog = NULL)
363*4882a593Smuzhiyun {
364*4882a593Smuzhiyun int nHeaderSec = BYTE2SECTOR(sizeof(STRUCT_RKIMAGE_HDR));
365*4882a593Smuzhiyun char model[256] = {0};
366*4882a593Smuzhiyun PBYTE pBuf = NULL;
367*4882a593Smuzhiyun pBuf = new BYTE[nHeaderSec * SECTOR_SIZE];
368*4882a593Smuzhiyun if (!pBuf)
369*4882a593Smuzhiyun {
370*4882a593Smuzhiyun return false;
371*4882a593Smuzhiyun }
372*4882a593Smuzhiyun int iRet;
373*4882a593Smuzhiyun iRet = pComm->RKU_ReadLBA(dwOffset, nHeaderSec, pBuf);
374*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
375*4882a593Smuzhiyun {
376*4882a593Smuzhiyun delete []pBuf;
377*4882a593Smuzhiyun pBuf = NULL;
378*4882a593Smuzhiyun return false;
379*4882a593Smuzhiyun }
380*4882a593Smuzhiyun memcpy(pHeader, pBuf, sizeof(STRUCT_RKIMAGE_HDR));
381*4882a593Smuzhiyun delete []pBuf;
382*4882a593Smuzhiyun pBuf = NULL;
383*4882a593Smuzhiyun if (pHeader->tag != RKIMAGE_TAG)
384*4882a593Smuzhiyun {
385*4882a593Smuzhiyun return false;
386*4882a593Smuzhiyun }
387*4882a593Smuzhiyun
388*4882a593Smuzhiyun #if 0 //chad.ma close
389*4882a593Smuzhiyun property_get("ro.product.model", model, "");
390*4882a593Smuzhiyun if (pLog)
391*4882a593Smuzhiyun {
392*4882a593Smuzhiyun pLog->Record(_T("model:%s\nbackup firmware model:%s\n"), model, pHeader->machine_model);
393*4882a593Smuzhiyun }
394*4882a593Smuzhiyun if (strcmp(model, pHeader->machine_model))
395*4882a593Smuzhiyun {
396*4882a593Smuzhiyun return false;
397*4882a593Smuzhiyun }
398*4882a593Smuzhiyun #endif
399*4882a593Smuzhiyun
400*4882a593Smuzhiyun return true;
401*4882a593Smuzhiyun }
check_fw_crc(CRKComm * pComm,DWORD dwOffset,PSTRUCT_RKIMAGE_HDR pHeader,CRKLog * pLog=NULL)402*4882a593Smuzhiyun bool check_fw_crc(CRKComm *pComm, DWORD dwOffset, PSTRUCT_RKIMAGE_HDR pHeader, CRKLog *pLog = NULL)
403*4882a593Smuzhiyun {
404*4882a593Smuzhiyun int iRet;
405*4882a593Smuzhiyun long long ullRemain, ullCrcOffset;
406*4882a593Smuzhiyun if (pHeader->machine_model[29] == 'H')
407*4882a593Smuzhiyun {
408*4882a593Smuzhiyun ullRemain = *((DWORD *)(&pHeader->machine_model[30]));
409*4882a593Smuzhiyun ullRemain <<= 32;
410*4882a593Smuzhiyun ullRemain += pHeader->size;
411*4882a593Smuzhiyun }
412*4882a593Smuzhiyun else
413*4882a593Smuzhiyun {
414*4882a593Smuzhiyun ullRemain = pHeader->size;
415*4882a593Smuzhiyun }
416*4882a593Smuzhiyun if (ullRemain <= 0)
417*4882a593Smuzhiyun {
418*4882a593Smuzhiyun return false;
419*4882a593Smuzhiyun }
420*4882a593Smuzhiyun ullCrcOffset = ullRemain;
421*4882a593Smuzhiyun UINT uiTransferSize = 16 * 1024;
422*4882a593Smuzhiyun UINT uiTransferSec = uiTransferSize / SECTOR_SIZE;
423*4882a593Smuzhiyun BYTE *pBuffer = NULL;
424*4882a593Smuzhiyun BYTE oldCrc[4];
425*4882a593Smuzhiyun UINT uiBegin = dwOffset, uiLen, uiCrc = 0, uiReadBytes = 0;
426*4882a593Smuzhiyun pBuffer = new BYTE[uiTransferSize];
427*4882a593Smuzhiyun if (!pBuffer)
428*4882a593Smuzhiyun {
429*4882a593Smuzhiyun return false;
430*4882a593Smuzhiyun }
431*4882a593Smuzhiyun while (ullRemain > 0)
432*4882a593Smuzhiyun {
433*4882a593Smuzhiyun if (ullRemain >= uiTransferSize)
434*4882a593Smuzhiyun {
435*4882a593Smuzhiyun uiReadBytes = uiTransferSize;
436*4882a593Smuzhiyun uiLen = uiTransferSec;
437*4882a593Smuzhiyun }
438*4882a593Smuzhiyun else
439*4882a593Smuzhiyun {
440*4882a593Smuzhiyun uiReadBytes = ullRemain;
441*4882a593Smuzhiyun uiLen = BYTE2SECTOR(uiReadBytes);
442*4882a593Smuzhiyun }
443*4882a593Smuzhiyun iRet = pComm->RKU_ReadLBA(uiBegin, uiLen, pBuffer);
444*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
445*4882a593Smuzhiyun {
446*4882a593Smuzhiyun delete []pBuffer;
447*4882a593Smuzhiyun if (pLog)
448*4882a593Smuzhiyun {
449*4882a593Smuzhiyun pLog->Record(_T("ERROR:check_fw_crc-->RKU_ReadLBA failed,err=%d"), iRet);
450*4882a593Smuzhiyun }
451*4882a593Smuzhiyun return false;
452*4882a593Smuzhiyun }
453*4882a593Smuzhiyun uiCrc = CRC_32(pBuffer, uiReadBytes, uiCrc);
454*4882a593Smuzhiyun uiBegin += uiLen;
455*4882a593Smuzhiyun ullRemain -= uiReadBytes;
456*4882a593Smuzhiyun }
457*4882a593Smuzhiyun delete []pBuffer;
458*4882a593Smuzhiyun if (!read_bytes_from_partition(dwOffset, ullCrcOffset, 4, oldCrc, pComm))
459*4882a593Smuzhiyun {
460*4882a593Smuzhiyun if (pLog)
461*4882a593Smuzhiyun {
462*4882a593Smuzhiyun pLog->Record(_T("ERROR:check_fw_crc-->read old crc failed"));
463*4882a593Smuzhiyun }
464*4882a593Smuzhiyun return false;
465*4882a593Smuzhiyun }
466*4882a593Smuzhiyun if (uiCrc != *((UINT *)(oldCrc)))
467*4882a593Smuzhiyun {
468*4882a593Smuzhiyun return false;
469*4882a593Smuzhiyun }
470*4882a593Smuzhiyun return true;
471*4882a593Smuzhiyun }
472*4882a593Smuzhiyun
download_backup_image(PARAM_ITEM_VECTOR & vecParam,char * pszItemName,DWORD dwBackupOffset,STRUCT_RKIMAGE_HDR & hdr,CRKComm * pComm,CRKLog * pLog=NULL)473*4882a593Smuzhiyun bool download_backup_image(PARAM_ITEM_VECTOR &vecParam, char *pszItemName, DWORD dwBackupOffset, STRUCT_RKIMAGE_HDR &hdr,
474*4882a593Smuzhiyun CRKComm *pComm, CRKLog *pLog = NULL)
475*4882a593Smuzhiyun {
476*4882a593Smuzhiyun DWORD dwToOffset, dwToSize;
477*4882a593Smuzhiyun int i, iRet;
478*4882a593Smuzhiyun if (g_progress_callback)
479*4882a593Smuzhiyun {
480*4882a593Smuzhiyun g_progress_callback(0.5, 50);
481*4882a593Smuzhiyun }
482*4882a593Smuzhiyun for (i = 0; i < vecParam.size(); i++)
483*4882a593Smuzhiyun {
484*4882a593Smuzhiyun if (strcmp(pszItemName, vecParam[i].szItemName) == 0)
485*4882a593Smuzhiyun {
486*4882a593Smuzhiyun dwToOffset = vecParam[i].uiItemOffset;
487*4882a593Smuzhiyun dwToSize = vecParam[i].uiItemSize;
488*4882a593Smuzhiyun break;
489*4882a593Smuzhiyun }
490*4882a593Smuzhiyun }
491*4882a593Smuzhiyun if (i >= vecParam.size())
492*4882a593Smuzhiyun {
493*4882a593Smuzhiyun if (pLog)
494*4882a593Smuzhiyun {
495*4882a593Smuzhiyun pLog->Record(_T("ERROR:download_backup_image-->no found dest partition."));
496*4882a593Smuzhiyun }
497*4882a593Smuzhiyun return false;
498*4882a593Smuzhiyun }
499*4882a593Smuzhiyun long long ullSrcPos, ullSrcSize;
500*4882a593Smuzhiyun for (i = 0; i < hdr.item_count; i++)
501*4882a593Smuzhiyun {
502*4882a593Smuzhiyun if (strcmp(pszItemName, hdr.item[i].name) == 0)
503*4882a593Smuzhiyun {
504*4882a593Smuzhiyun if (hdr.item[i].file[50] == 'H')
505*4882a593Smuzhiyun {
506*4882a593Smuzhiyun ullSrcPos = *((DWORD *)(&hdr.item[i].file[51]));
507*4882a593Smuzhiyun ullSrcPos <<= 32;
508*4882a593Smuzhiyun ullSrcPos += hdr.item[i].offset;
509*4882a593Smuzhiyun }
510*4882a593Smuzhiyun else
511*4882a593Smuzhiyun {
512*4882a593Smuzhiyun ullSrcPos = hdr.item[i].offset;
513*4882a593Smuzhiyun }
514*4882a593Smuzhiyun if (hdr.item[i].file[55] == 'H')
515*4882a593Smuzhiyun {
516*4882a593Smuzhiyun ullSrcSize = *((DWORD *)(&hdr.item[i].file[56]));
517*4882a593Smuzhiyun ullSrcSize <<= 32;
518*4882a593Smuzhiyun ullSrcSize += hdr.item[i].size;
519*4882a593Smuzhiyun }
520*4882a593Smuzhiyun else
521*4882a593Smuzhiyun {
522*4882a593Smuzhiyun ullSrcSize = hdr.item[i].size;
523*4882a593Smuzhiyun }
524*4882a593Smuzhiyun break;
525*4882a593Smuzhiyun }
526*4882a593Smuzhiyun }
527*4882a593Smuzhiyun if (i >= hdr.item_count)
528*4882a593Smuzhiyun {
529*4882a593Smuzhiyun if (pLog)
530*4882a593Smuzhiyun {
531*4882a593Smuzhiyun pLog->Record(_T("ERROR:download_backup_image-->no found source in the backup."));
532*4882a593Smuzhiyun }
533*4882a593Smuzhiyun return false;
534*4882a593Smuzhiyun }
535*4882a593Smuzhiyun long long ullRemain, ullstart, ullToStart;
536*4882a593Smuzhiyun UINT uiBegin, uiLen, uiTransferByte;
537*4882a593Smuzhiyun UINT uiBufferSize = 16 * 1024;
538*4882a593Smuzhiyun BYTE buffer[16 * 1024];
539*4882a593Smuzhiyun BYTE readbuffer[16 * 1024];
540*4882a593Smuzhiyun
541*4882a593Smuzhiyun //write image
542*4882a593Smuzhiyun ullRemain = ullSrcSize;
543*4882a593Smuzhiyun uiBegin = dwToOffset;
544*4882a593Smuzhiyun ullstart = ullSrcPos;
545*4882a593Smuzhiyun while (ullRemain > 0)
546*4882a593Smuzhiyun {
547*4882a593Smuzhiyun if (ullRemain >= uiBufferSize)
548*4882a593Smuzhiyun {
549*4882a593Smuzhiyun uiTransferByte = uiBufferSize;
550*4882a593Smuzhiyun uiLen = 32;
551*4882a593Smuzhiyun }
552*4882a593Smuzhiyun else
553*4882a593Smuzhiyun {
554*4882a593Smuzhiyun uiTransferByte = ullRemain;
555*4882a593Smuzhiyun uiLen = BYTE2SECTOR(uiTransferByte);
556*4882a593Smuzhiyun }
557*4882a593Smuzhiyun if (!read_bytes_from_partition(dwBackupOffset, ullstart, uiTransferByte, buffer, pComm))
558*4882a593Smuzhiyun {
559*4882a593Smuzhiyun if (pLog)
560*4882a593Smuzhiyun {
561*4882a593Smuzhiyun pLog->Record(_T("ERROR:download_backup_image-->read data from backup failed."));
562*4882a593Smuzhiyun }
563*4882a593Smuzhiyun return false;
564*4882a593Smuzhiyun }
565*4882a593Smuzhiyun iRet = pComm->RKU_WriteLBA(uiBegin, uiLen, buffer);
566*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
567*4882a593Smuzhiyun {
568*4882a593Smuzhiyun if (pLog)
569*4882a593Smuzhiyun {
570*4882a593Smuzhiyun pLog->Record(_T("ERROR:download_backup_image-->write data to partition failed."));
571*4882a593Smuzhiyun }
572*4882a593Smuzhiyun return false;
573*4882a593Smuzhiyun }
574*4882a593Smuzhiyun ullRemain -= uiTransferByte;
575*4882a593Smuzhiyun uiBegin += uiLen;
576*4882a593Smuzhiyun ullstart += uiTransferByte;
577*4882a593Smuzhiyun
578*4882a593Smuzhiyun }
579*4882a593Smuzhiyun pComm->RKU_ReopenLBAHandle();
580*4882a593Smuzhiyun if (g_progress_callback)
581*4882a593Smuzhiyun {
582*4882a593Smuzhiyun g_progress_callback(1, 0);
583*4882a593Smuzhiyun }
584*4882a593Smuzhiyun if (g_progress_callback)
585*4882a593Smuzhiyun {
586*4882a593Smuzhiyun g_progress_callback(0.4, 30);
587*4882a593Smuzhiyun }
588*4882a593Smuzhiyun //check image
589*4882a593Smuzhiyun if (pLog)
590*4882a593Smuzhiyun {
591*4882a593Smuzhiyun pLog->Record(_T("Start to check system..."));
592*4882a593Smuzhiyun }
593*4882a593Smuzhiyun ullRemain = ullSrcSize;
594*4882a593Smuzhiyun ullToStart = 0;
595*4882a593Smuzhiyun ullstart = ullSrcPos;
596*4882a593Smuzhiyun while (ullRemain > 0)
597*4882a593Smuzhiyun {
598*4882a593Smuzhiyun if (ullRemain >= uiBufferSize)
599*4882a593Smuzhiyun {
600*4882a593Smuzhiyun uiTransferByte = uiBufferSize;
601*4882a593Smuzhiyun }
602*4882a593Smuzhiyun else
603*4882a593Smuzhiyun {
604*4882a593Smuzhiyun uiTransferByte = ullRemain;
605*4882a593Smuzhiyun }
606*4882a593Smuzhiyun if (!read_bytes_from_partition(dwBackupOffset, ullstart, uiTransferByte, buffer, pComm))
607*4882a593Smuzhiyun {
608*4882a593Smuzhiyun if (pLog)
609*4882a593Smuzhiyun {
610*4882a593Smuzhiyun pLog->Record(_T("ERROR:download_backup_image-->read data from backup failed."));
611*4882a593Smuzhiyun }
612*4882a593Smuzhiyun return false;
613*4882a593Smuzhiyun }
614*4882a593Smuzhiyun if (!read_bytes_from_partition(dwToOffset, ullToStart, uiTransferByte, readbuffer, pComm))
615*4882a593Smuzhiyun {
616*4882a593Smuzhiyun if (pLog)
617*4882a593Smuzhiyun {
618*4882a593Smuzhiyun pLog->Record(_T("ERROR:download_backup_image-->read data from partition failed."));
619*4882a593Smuzhiyun }
620*4882a593Smuzhiyun return false;
621*4882a593Smuzhiyun }
622*4882a593Smuzhiyun if (memcmp(buffer, readbuffer, uiTransferByte) != 0)
623*4882a593Smuzhiyun {
624*4882a593Smuzhiyun if (pLog)
625*4882a593Smuzhiyun {
626*4882a593Smuzhiyun pLog->Record(_T("ERROR:download_backup_image-->compare data failed."));
627*4882a593Smuzhiyun }
628*4882a593Smuzhiyun return false;
629*4882a593Smuzhiyun }
630*4882a593Smuzhiyun
631*4882a593Smuzhiyun ullRemain -= uiTransferByte;
632*4882a593Smuzhiyun ullToStart += uiTransferByte;
633*4882a593Smuzhiyun ullstart += uiTransferByte;
634*4882a593Smuzhiyun
635*4882a593Smuzhiyun }
636*4882a593Smuzhiyun if (g_progress_callback)
637*4882a593Smuzhiyun {
638*4882a593Smuzhiyun g_progress_callback(1, 0);
639*4882a593Smuzhiyun }
640*4882a593Smuzhiyun return true;
641*4882a593Smuzhiyun }
642*4882a593Smuzhiyun
IsDeviceLock(CRKComm * pComm,bool & bLock)643*4882a593Smuzhiyun bool IsDeviceLock(CRKComm *pComm, bool &bLock)
644*4882a593Smuzhiyun {
645*4882a593Smuzhiyun int iRet;
646*4882a593Smuzhiyun BYTE buffer[4];
647*4882a593Smuzhiyun iRet = pComm->RKU_GetLockFlag(buffer);
648*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
649*4882a593Smuzhiyun {
650*4882a593Smuzhiyun return false;
651*4882a593Smuzhiyun }
652*4882a593Smuzhiyun DWORD *pFlag = (DWORD *)buffer;
653*4882a593Smuzhiyun if (*pFlag == 1)
654*4882a593Smuzhiyun {
655*4882a593Smuzhiyun bLock = true;
656*4882a593Smuzhiyun }
657*4882a593Smuzhiyun else
658*4882a593Smuzhiyun {
659*4882a593Smuzhiyun bLock = false;
660*4882a593Smuzhiyun }
661*4882a593Smuzhiyun return true;
662*4882a593Smuzhiyun }
663*4882a593Smuzhiyun
GetPubicKeyFromExternal(char * szDev,CRKLog * pLog,unsigned char * pKey,unsigned int & nKeySize)664*4882a593Smuzhiyun bool GetPubicKeyFromExternal(char *szDev, CRKLog *pLog, unsigned char *pKey, unsigned int &nKeySize)
665*4882a593Smuzhiyun {
666*4882a593Smuzhiyun int hDev = -1;
667*4882a593Smuzhiyun int j, ret, nRsaByte;
668*4882a593Smuzhiyun bool bSuccess = false;
669*4882a593Smuzhiyun BYTE bData[SECTOR_SIZE * 8];
670*4882a593Smuzhiyun PRKANDROID_IDB_SEC0 pSec0 = (PRKANDROID_IDB_SEC0)bData;
671*4882a593Smuzhiyun PRK_SECURE_HEADER pSecureHdr = (PRK_SECURE_HEADER)(bData + SECTOR_SIZE * 4);
672*4882a593Smuzhiyun string strOutput;
673*4882a593Smuzhiyun if (!szDev)
674*4882a593Smuzhiyun {
675*4882a593Smuzhiyun printf("In GetPubicKeyFromExternal device=NULL\n");
676*4882a593Smuzhiyun return false;
677*4882a593Smuzhiyun }
678*4882a593Smuzhiyun else
679*4882a593Smuzhiyun {
680*4882a593Smuzhiyun printf("In GetPubicKeyFromExternal device=%s\n", szDev);
681*4882a593Smuzhiyun }
682*4882a593Smuzhiyun hDev = open(szDev, O_RDONLY, 0);
683*4882a593Smuzhiyun if (hDev < 0)
684*4882a593Smuzhiyun {
685*4882a593Smuzhiyun if (pLog)
686*4882a593Smuzhiyun {
687*4882a593Smuzhiyun pLog->Record(_T("ERROR:GetPubicKeyFromExternal-->open %s failed,err=%d"), szDev, errno);
688*4882a593Smuzhiyun }
689*4882a593Smuzhiyun goto Exit_GetPubicKeyFromExternal;
690*4882a593Smuzhiyun }
691*4882a593Smuzhiyun else
692*4882a593Smuzhiyun {
693*4882a593Smuzhiyun if (pLog)
694*4882a593Smuzhiyun {
695*4882a593Smuzhiyun pLog->Record(_T("INFO:GetPubicKeyFromExternal-->%s=%d"), szDev, hDev);
696*4882a593Smuzhiyun }
697*4882a593Smuzhiyun }
698*4882a593Smuzhiyun
699*4882a593Smuzhiyun ret = lseek(hDev, 64 * 512, SEEK_SET);
700*4882a593Smuzhiyun if (ret < 0)
701*4882a593Smuzhiyun {
702*4882a593Smuzhiyun if (pLog)
703*4882a593Smuzhiyun {
704*4882a593Smuzhiyun pLog->Record(_T("ERROR:GetPubicKeyFromExternal-->seek IDBlock failed,err=%d"), errno);
705*4882a593Smuzhiyun }
706*4882a593Smuzhiyun goto Exit_GetPubicKeyFromExternal;
707*4882a593Smuzhiyun }
708*4882a593Smuzhiyun ret = read(hDev, bData, 8 * 512);
709*4882a593Smuzhiyun if (ret != 8 * 512)
710*4882a593Smuzhiyun {
711*4882a593Smuzhiyun if (pLog)
712*4882a593Smuzhiyun {
713*4882a593Smuzhiyun pLog->Record(_T("ERROR:GetPubicKeyFromExternal-->read IDBlock failed,err=%d"), errno);
714*4882a593Smuzhiyun }
715*4882a593Smuzhiyun goto Exit_GetPubicKeyFromExternal;
716*4882a593Smuzhiyun }
717*4882a593Smuzhiyun // if (pLog)
718*4882a593Smuzhiyun // {
719*4882a593Smuzhiyun // pLog->PrintBuffer(strOutput,bData,512,16);
720*4882a593Smuzhiyun // pLog->Record("INFO:idb\n%s",strOutput.c_str());
721*4882a593Smuzhiyun // }
722*4882a593Smuzhiyun P_RC4(bData, SECTOR_SIZE);
723*4882a593Smuzhiyun // if (pLog)
724*4882a593Smuzhiyun // {
725*4882a593Smuzhiyun // pLog->PrintBuffer(strOutput,bData,512,16);
726*4882a593Smuzhiyun // pLog->Record("INFO:idb rc4\n%s",strOutput.c_str());
727*4882a593Smuzhiyun // }
728*4882a593Smuzhiyun if (pSec0->dwTag != 0x0FF0AA55)
729*4882a593Smuzhiyun {
730*4882a593Smuzhiyun if (pLog)
731*4882a593Smuzhiyun {
732*4882a593Smuzhiyun pLog->Record(_T("ERROR:GetPubicKeyFromExternal-->check IDBlock failed,tag=0x%x"), pSec0->dwTag);
733*4882a593Smuzhiyun }
734*4882a593Smuzhiyun goto Exit_GetPubicKeyFromExternal;
735*4882a593Smuzhiyun }
736*4882a593Smuzhiyun if (pSec0->uiRc4Flag == 0)
737*4882a593Smuzhiyun {
738*4882a593Smuzhiyun for (j = 0; j < 4; j++)
739*4882a593Smuzhiyun {
740*4882a593Smuzhiyun P_RC4(bData + SECTOR_SIZE * (j + 4), SECTOR_SIZE);
741*4882a593Smuzhiyun }
742*4882a593Smuzhiyun }
743*4882a593Smuzhiyun if (pSecureHdr->uiTag != 0x4B415352)
744*4882a593Smuzhiyun {
745*4882a593Smuzhiyun if (pLog)
746*4882a593Smuzhiyun {
747*4882a593Smuzhiyun pLog->Record(_T("ERROR:GetPubicKeyFromExternal-->check SecureHeader failed,tag=0x%x"), pSecureHdr->uiTag);
748*4882a593Smuzhiyun }
749*4882a593Smuzhiyun goto Exit_GetPubicKeyFromExternal;
750*4882a593Smuzhiyun }
751*4882a593Smuzhiyun nRsaByte = pSecureHdr->usRsaBit / 8;
752*4882a593Smuzhiyun *((USHORT *)pKey) = pSecureHdr->usRsaBit;
753*4882a593Smuzhiyun for (j = 0; j < nRsaByte; j++)
754*4882a593Smuzhiyun {
755*4882a593Smuzhiyun *(pKey + j + 2) = pSecureHdr->nFactor[nRsaByte - j - 1];
756*4882a593Smuzhiyun }
757*4882a593Smuzhiyun for (j = 0; j < nRsaByte; j++)
758*4882a593Smuzhiyun {
759*4882a593Smuzhiyun *(pKey + j + 2 + nRsaByte) = pSecureHdr->eFactor[nRsaByte - j - 1];
760*4882a593Smuzhiyun }
761*4882a593Smuzhiyun nKeySize = nRsaByte * 2 + 2;
762*4882a593Smuzhiyun // if (pLog)
763*4882a593Smuzhiyun // {
764*4882a593Smuzhiyun // pLog->PrintBuffer(strOutput,pKey,nKeySize,16);
765*4882a593Smuzhiyun // pLog->Record("INFO:Key\n%s",strOutput.c_str());
766*4882a593Smuzhiyun // }
767*4882a593Smuzhiyun bSuccess = true;
768*4882a593Smuzhiyun Exit_GetPubicKeyFromExternal:
769*4882a593Smuzhiyun if (hDev != -1)
770*4882a593Smuzhiyun {
771*4882a593Smuzhiyun close(hDev);
772*4882a593Smuzhiyun }
773*4882a593Smuzhiyun return bSuccess;
774*4882a593Smuzhiyun }
775*4882a593Smuzhiyun
GetPubicKeyFromDevice(CRKLog * pLog,unsigned char * pKey,unsigned int & nKeySize)776*4882a593Smuzhiyun bool GetPubicKeyFromDevice(CRKLog *pLog, unsigned char *pKey, unsigned int &nKeySize)
777*4882a593Smuzhiyun {
778*4882a593Smuzhiyun bool bSuccess = false, bRet;
779*4882a593Smuzhiyun CRKComm *pComm = NULL;
780*4882a593Smuzhiyun CRKAndroidDevice *pDevice = NULL;
781*4882a593Smuzhiyun STRUCT_RKDEVICE_DESC device;
782*4882a593Smuzhiyun pComm = new CRKUsbComm(pLog);
783*4882a593Smuzhiyun if (!pComm)
784*4882a593Smuzhiyun {
785*4882a593Smuzhiyun pLog->Record("ERROR:GetPubicKeyFromDevice-->new CRKComm failed!");
786*4882a593Smuzhiyun goto EXIT_GetPubicKeyFromDevice;
787*4882a593Smuzhiyun }
788*4882a593Smuzhiyun pDevice = new CRKAndroidDevice(device);
789*4882a593Smuzhiyun if (!pDevice)
790*4882a593Smuzhiyun {
791*4882a593Smuzhiyun pLog->Record("ERROR:GetPubicKeyFromDevice-->new CRKAndroidDevice failed!");
792*4882a593Smuzhiyun goto EXIT_GetPubicKeyFromDevice;
793*4882a593Smuzhiyun }
794*4882a593Smuzhiyun pDevice->SetObject(NULL, pComm, pLog);
795*4882a593Smuzhiyun pDevice->m_pCallback = (UpgradeCallbackFunc)NULL;
796*4882a593Smuzhiyun pDevice->m_pProcessCallback = (UpgradeProgressCallbackFunc)NULL;
797*4882a593Smuzhiyun bRet = pDevice->GetPublicKey(pKey, nKeySize);
798*4882a593Smuzhiyun if (!bRet)
799*4882a593Smuzhiyun {
800*4882a593Smuzhiyun pLog->Record("ERROR:GetPubicKeyFromDevice-->GetPublicKey failed!");
801*4882a593Smuzhiyun goto EXIT_GetPubicKeyFromDevice;
802*4882a593Smuzhiyun }
803*4882a593Smuzhiyun bSuccess = true;
804*4882a593Smuzhiyun EXIT_GetPubicKeyFromDevice:
805*4882a593Smuzhiyun if (pDevice)
806*4882a593Smuzhiyun {
807*4882a593Smuzhiyun delete pDevice;
808*4882a593Smuzhiyun pDevice = NULL;
809*4882a593Smuzhiyun }
810*4882a593Smuzhiyun else if (pComm)
811*4882a593Smuzhiyun {
812*4882a593Smuzhiyun delete pComm;
813*4882a593Smuzhiyun pComm = NULL;
814*4882a593Smuzhiyun }
815*4882a593Smuzhiyun return bSuccess;
816*4882a593Smuzhiyun }
817*4882a593Smuzhiyun
UnlockDevice(CRKImage * pImage,CRKLog * pLog,unsigned char * pKey,unsigned int nKeySize)818*4882a593Smuzhiyun bool UnlockDevice(CRKImage *pImage, CRKLog *pLog, unsigned char *pKey, unsigned int nKeySize)
819*4882a593Smuzhiyun {
820*4882a593Smuzhiyun PBYTE pMd5, pSignMd5;
821*4882a593Smuzhiyun int nSignSize;
822*4882a593Smuzhiyun unsigned int nOutput;
823*4882a593Smuzhiyun bool bRet;
824*4882a593Smuzhiyun BYTE output[256];
825*4882a593Smuzhiyun string strOutput;
826*4882a593Smuzhiyun printf("in UnlockDevice\n");
827*4882a593Smuzhiyun if ((!pImage) || (!pKey))
828*4882a593Smuzhiyun {
829*4882a593Smuzhiyun return false;
830*4882a593Smuzhiyun }
831*4882a593Smuzhiyun nSignSize = pImage->GetMd5Data(pMd5, pSignMd5);
832*4882a593Smuzhiyun if (nSignSize == 0)
833*4882a593Smuzhiyun {
834*4882a593Smuzhiyun if (pLog)
835*4882a593Smuzhiyun {
836*4882a593Smuzhiyun pLog->Record("Get signed info failed.");
837*4882a593Smuzhiyun }
838*4882a593Smuzhiyun return false;
839*4882a593Smuzhiyun }
840*4882a593Smuzhiyun //bRet= DoRsa(output,&nOutput,pSignMd5,nSignSize,pKey,nKeySize);
841*4882a593Smuzhiyun //if (!bRet)
842*4882a593Smuzhiyun //{
843*4882a593Smuzhiyun // if (pLog)
844*4882a593Smuzhiyun // pLog->Record("DoRsa failed.");
845*4882a593Smuzhiyun // return false;
846*4882a593Smuzhiyun //}
847*4882a593Smuzhiyun if (pLog)
848*4882a593Smuzhiyun {
849*4882a593Smuzhiyun pLog->PrintBuffer(strOutput, pMd5, 32, 16);
850*4882a593Smuzhiyun pLog->Record("INFO:Old Md5\n%s", strOutput.c_str());
851*4882a593Smuzhiyun pLog->PrintBuffer(strOutput, output + nOutput - 32, 32, 16);
852*4882a593Smuzhiyun pLog->Record("INFO:New Md5\n%s", strOutput.c_str());
853*4882a593Smuzhiyun }
854*4882a593Smuzhiyun return true;
855*4882a593Smuzhiyun if (memcmp(pMd5, output + nOutput - 32, 32) == 0)
856*4882a593Smuzhiyun {
857*4882a593Smuzhiyun return true;
858*4882a593Smuzhiyun }
859*4882a593Smuzhiyun else
860*4882a593Smuzhiyun {
861*4882a593Smuzhiyun return false;
862*4882a593Smuzhiyun }
863*4882a593Smuzhiyun }
864*4882a593Smuzhiyun
865*4882a593Smuzhiyun extern int sdBootUpdate;
do_rk_firmware_upgrade(char * szFw,void * pCallback,void * pProgressCallback,char * szBootDev)866*4882a593Smuzhiyun bool do_rk_firmware_upgrade(char *szFw, void *pCallback, void *pProgressCallback, char *szBootDev)
867*4882a593Smuzhiyun {
868*4882a593Smuzhiyun bool bSuccess = false, bRet = false, bLock;
869*4882a593Smuzhiyun int iRet;
870*4882a593Smuzhiyun CRKImage *pImage = NULL;
871*4882a593Smuzhiyun CRKLog *pLog = NULL;
872*4882a593Smuzhiyun CRKAndroidDevice *pDevice = NULL;
873*4882a593Smuzhiyun CRKComm *pComm = NULL;
874*4882a593Smuzhiyun STRUCT_RKDEVICE_DESC device;
875*4882a593Smuzhiyun BYTE key[514];
876*4882a593Smuzhiyun UINT nKeySize = 514;
877*4882a593Smuzhiyun BYTE uid[RKDEVICE_UID_LEN];
878*4882a593Smuzhiyun tstring strFw = szFw;
879*4882a593Smuzhiyun tstring strUid;
880*4882a593Smuzhiyun bool bUpdateLoader = true;
881*4882a593Smuzhiyun
882*4882a593Smuzhiyun g_callback = (UpgradeCallbackFunc)pCallback;
883*4882a593Smuzhiyun g_progress_callback = (UpgradeProgressCallbackFunc)pProgressCallback;
884*4882a593Smuzhiyun if (g_progress_callback)
885*4882a593Smuzhiyun {
886*4882a593Smuzhiyun g_progress_callback(0.1, 10);
887*4882a593Smuzhiyun }
888*4882a593Smuzhiyun
889*4882a593Smuzhiyun pLog = new CRKLog();
890*4882a593Smuzhiyun if (!pLog)
891*4882a593Smuzhiyun {
892*4882a593Smuzhiyun goto EXIT_UPGRADE;
893*4882a593Smuzhiyun }
894*4882a593Smuzhiyun pLog->Record("Start to upgrade firmware...");
895*4882a593Smuzhiyun pImage = new CRKImage(strFw, bRet);
896*4882a593Smuzhiyun if (!bRet)
897*4882a593Smuzhiyun {
898*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->new CRKImage failed!");
899*4882a593Smuzhiyun goto EXIT_UPGRADE;
900*4882a593Smuzhiyun }
901*4882a593Smuzhiyun pComm = new CRKUsbComm(pLog);
902*4882a593Smuzhiyun if (!pComm)
903*4882a593Smuzhiyun {
904*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->new CRKComm failed!");
905*4882a593Smuzhiyun goto EXIT_UPGRADE;
906*4882a593Smuzhiyun }
907*4882a593Smuzhiyun
908*4882a593Smuzhiyun pDevice = new CRKAndroidDevice(device);
909*4882a593Smuzhiyun if (!pDevice)
910*4882a593Smuzhiyun {
911*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->new CRKAndroidDevice failed!");
912*4882a593Smuzhiyun goto EXIT_UPGRADE;
913*4882a593Smuzhiyun }
914*4882a593Smuzhiyun pDevice->SetObject(pImage, pComm, pLog);
915*4882a593Smuzhiyun
916*4882a593Smuzhiyun if (!pComm->RKU_IsEmmcFlash()) //chad.ma if is Emmc flash don't create UUID.
917*4882a593Smuzhiyun {
918*4882a593Smuzhiyun if (CreateUid(uid))
919*4882a593Smuzhiyun {
920*4882a593Smuzhiyun pDevice->Uid = uid;
921*4882a593Smuzhiyun pLog->PrintBuffer(strUid, uid, RKDEVICE_UID_LEN);
922*4882a593Smuzhiyun pLog->Record("uid:%s", strUid.c_str());
923*4882a593Smuzhiyun }
924*4882a593Smuzhiyun }
925*4882a593Smuzhiyun
926*4882a593Smuzhiyun pDevice->m_pCallback = (UpgradeCallbackFunc)pCallback;
927*4882a593Smuzhiyun pDevice->m_pProcessCallback = (UpgradeProgressCallbackFunc)pProgressCallback;
928*4882a593Smuzhiyun pLog->Record("Get FlashInfo...");
929*4882a593Smuzhiyun bRet = pDevice->GetFlashInfo();
930*4882a593Smuzhiyun if (!bRet)
931*4882a593Smuzhiyun {
932*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->GetFlashInfo failed!");
933*4882a593Smuzhiyun goto EXIT_UPGRADE;
934*4882a593Smuzhiyun }
935*4882a593Smuzhiyun
936*4882a593Smuzhiyun bUpdateLoader = pDevice->IsExistBootloaderInFw();
937*4882a593Smuzhiyun
938*4882a593Smuzhiyun if (IsRK3308_Platform() && Compatible_rk3308bs_loader())
939*4882a593Smuzhiyun {
940*4882a593Smuzhiyun bool bFound_3308bs_loader = false;
941*4882a593Smuzhiyun const char *rk3308bs_loader = "rk3308bs_loader";
942*4882a593Smuzhiyun DWORD rk3308bs_loaderOffset = 0;
943*4882a593Smuzhiyun DWORD rk3308bs_loaderSize = 0;
944*4882a593Smuzhiyun
945*4882a593Smuzhiyun bUpdateLoader = false;
946*4882a593Smuzhiyun if (pDevice->IsExistPartitionInFw(rk3308bs_loader, rk3308bs_loaderOffset, rk3308bs_loaderSize))
947*4882a593Smuzhiyun {
948*4882a593Smuzhiyun printf("Found RK3308bs loader in fw and offset :%d size :%d.\n",
949*4882a593Smuzhiyun rk3308bs_loaderOffset, rk3308bs_loaderSize);
950*4882a593Smuzhiyun
951*4882a593Smuzhiyun if (pImage->m_bootObject)
952*4882a593Smuzhiyun {
953*4882a593Smuzhiyun delete pImage->m_bootObject;
954*4882a593Smuzhiyun
955*4882a593Smuzhiyun bool bRet;
956*4882a593Smuzhiyun PBYTE lpBoot;
957*4882a593Smuzhiyun lpBoot = new BYTE[rk3308bs_loaderSize];
958*4882a593Smuzhiyun
959*4882a593Smuzhiyun long offset = rk3308bs_loaderOffset + pImage->GetFWOffset();
960*4882a593Smuzhiyun fseeko64(pImage->GetFWFileHandle(), offset, SEEK_SET);
961*4882a593Smuzhiyun size_t ret = fread(lpBoot, 1, rk3308bs_loaderSize, pImage->GetFWFileHandle());
962*4882a593Smuzhiyun if (ret != rk3308bs_loaderSize)
963*4882a593Smuzhiyun {
964*4882a593Smuzhiyun printf("%s : read error\n", __func__);
965*4882a593Smuzhiyun }
966*4882a593Smuzhiyun pImage->m_bootObject = new CRKBoot(lpBoot, rk3308bs_loaderSize, bRet);
967*4882a593Smuzhiyun if (!bRet)
968*4882a593Smuzhiyun {
969*4882a593Smuzhiyun printf("CRKImage :Error! new CRKBoot fail!\n");
970*4882a593Smuzhiyun return false;
971*4882a593Smuzhiyun }
972*4882a593Smuzhiyun bUpdateLoader = true;
973*4882a593Smuzhiyun }
974*4882a593Smuzhiyun }
975*4882a593Smuzhiyun }
976*4882a593Smuzhiyun
977*4882a593Smuzhiyun #ifndef USE_SIGNATURE_FW
978*4882a593Smuzhiyun if (bUpdateLoader)
979*4882a593Smuzhiyun {
980*4882a593Smuzhiyun printf("############### update bootloader start ############\n");
981*4882a593Smuzhiyun
982*4882a593Smuzhiyun pLog->Record("IDBlock Preparing...");
983*4882a593Smuzhiyun printf("\t\t############### IDBlock Preparing...\n");
984*4882a593Smuzhiyun iRet = pDevice->PrepareIDB();
985*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
986*4882a593Smuzhiyun {
987*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->PrepareIDB failed!");
988*4882a593Smuzhiyun goto EXIT_UPGRADE;
989*4882a593Smuzhiyun }
990*4882a593Smuzhiyun pLog->Record("IDBlock Writing...");
991*4882a593Smuzhiyun printf("\t\t############### IDBlock Writing...\n");
992*4882a593Smuzhiyun iRet = pDevice->DownloadIDBlock();
993*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
994*4882a593Smuzhiyun {
995*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->DownloadIDBlock failed!");
996*4882a593Smuzhiyun goto EXIT_UPGRADE;
997*4882a593Smuzhiyun }
998*4882a593Smuzhiyun printf("############### update bootloader Success############\n");
999*4882a593Smuzhiyun
1000*4882a593Smuzhiyun if (strFw.find(_T(".bin")) != tstring::npos)
1001*4882a593Smuzhiyun {
1002*4882a593Smuzhiyun pLog->Record("INFO:do_rk_firmware_upgrade-->Download loader only success!");
1003*4882a593Smuzhiyun bSuccess = true;
1004*4882a593Smuzhiyun return bSuccess;
1005*4882a593Smuzhiyun }
1006*4882a593Smuzhiyun }
1007*4882a593Smuzhiyun
1008*4882a593Smuzhiyun iRet = pDevice->DownloadImage();
1009*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
1010*4882a593Smuzhiyun {
1011*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->DownloadImage failed!");
1012*4882a593Smuzhiyun goto EXIT_UPGRADE;
1013*4882a593Smuzhiyun }
1014*4882a593Smuzhiyun
1015*4882a593Smuzhiyun #else
1016*4882a593Smuzhiyun printf("use signature firmware to update.\n");
1017*4882a593Smuzhiyun iRet = pDevice->DownloadImage();
1018*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
1019*4882a593Smuzhiyun {
1020*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->DownloadImage failed!");
1021*4882a593Smuzhiyun goto EXIT_UPGRADE;
1022*4882a593Smuzhiyun }
1023*4882a593Smuzhiyun
1024*4882a593Smuzhiyun if (bUpdateLoader)
1025*4882a593Smuzhiyun {
1026*4882a593Smuzhiyun printf("############### update bootloader start ############\n");
1027*4882a593Smuzhiyun pLog->Record("IDBlock Preparing...");
1028*4882a593Smuzhiyun printf("\t\t ############### IDBlock Preparing...\n");
1029*4882a593Smuzhiyun iRet = pDevice->PrepareIDB();
1030*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
1031*4882a593Smuzhiyun {
1032*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->PrepareIDB failed!");
1033*4882a593Smuzhiyun goto EXIT_UPGRADE;
1034*4882a593Smuzhiyun }
1035*4882a593Smuzhiyun pLog->Record("IDBlock Writing...");
1036*4882a593Smuzhiyun printf("\t\t ############### IDBlock Writing...\n");
1037*4882a593Smuzhiyun iRet = pDevice->DownloadIDBlock();
1038*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
1039*4882a593Smuzhiyun {
1040*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_firmware_upgrade-->DownloadIDBlock failed!");
1041*4882a593Smuzhiyun goto EXIT_UPGRADE;
1042*4882a593Smuzhiyun }
1043*4882a593Smuzhiyun printf("############### update bootloader Success############\n");
1044*4882a593Smuzhiyun
1045*4882a593Smuzhiyun if (strFw.find(_T(".bin")) != tstring::npos)
1046*4882a593Smuzhiyun {
1047*4882a593Smuzhiyun pLog->Record("INFO:do_rk_firmware_upgrade-->Download loader only success!");
1048*4882a593Smuzhiyun bSuccess = true;
1049*4882a593Smuzhiyun return bSuccess;
1050*4882a593Smuzhiyun }
1051*4882a593Smuzhiyun }
1052*4882a593Smuzhiyun #endif
1053*4882a593Smuzhiyun
1054*4882a593Smuzhiyun bSuccess = true;
1055*4882a593Smuzhiyun
1056*4882a593Smuzhiyun EXIT_UPGRADE:
1057*4882a593Smuzhiyun if (bSuccess)
1058*4882a593Smuzhiyun {
1059*4882a593Smuzhiyun pLog->Record("Finish to upgrade firmware.");
1060*4882a593Smuzhiyun }
1061*4882a593Smuzhiyun else
1062*4882a593Smuzhiyun {
1063*4882a593Smuzhiyun pLog->Record("Fail to upgrade firmware!");
1064*4882a593Smuzhiyun }
1065*4882a593Smuzhiyun if (pLog)
1066*4882a593Smuzhiyun {
1067*4882a593Smuzhiyun delete pLog;
1068*4882a593Smuzhiyun pLog = NULL;
1069*4882a593Smuzhiyun }
1070*4882a593Smuzhiyun if (pImage)
1071*4882a593Smuzhiyun {
1072*4882a593Smuzhiyun delete pImage;
1073*4882a593Smuzhiyun pImage = NULL;
1074*4882a593Smuzhiyun }
1075*4882a593Smuzhiyun if (pDevice)
1076*4882a593Smuzhiyun {
1077*4882a593Smuzhiyun delete pDevice;
1078*4882a593Smuzhiyun pDevice = NULL;
1079*4882a593Smuzhiyun }
1080*4882a593Smuzhiyun else
1081*4882a593Smuzhiyun {
1082*4882a593Smuzhiyun if (pComm)
1083*4882a593Smuzhiyun {
1084*4882a593Smuzhiyun delete pComm;
1085*4882a593Smuzhiyun pComm = NULL;
1086*4882a593Smuzhiyun }
1087*4882a593Smuzhiyun }
1088*4882a593Smuzhiyun
1089*4882a593Smuzhiyun return bSuccess;
1090*4882a593Smuzhiyun }
1091*4882a593Smuzhiyun
do_rk_partition_upgrade(char * szFw,void * pCallback,void * pProgressCallback,char nBoot,char * szBootDev)1092*4882a593Smuzhiyun bool do_rk_partition_upgrade(char *szFw, void *pCallback, void *pProgressCallback, char nBoot, char *szBootDev)
1093*4882a593Smuzhiyun {
1094*4882a593Smuzhiyun bool bSuccess = false, bRet = false, bLock;
1095*4882a593Smuzhiyun int iRet;
1096*4882a593Smuzhiyun CRKImage *pImage = NULL;
1097*4882a593Smuzhiyun CRKLog *pLog = NULL;
1098*4882a593Smuzhiyun CRKAndroidDevice *pDevice = NULL;
1099*4882a593Smuzhiyun CRKComm *pComm = NULL;
1100*4882a593Smuzhiyun STRUCT_RKDEVICE_DESC device;
1101*4882a593Smuzhiyun BYTE key[514];
1102*4882a593Smuzhiyun UINT nKeySize = 514;
1103*4882a593Smuzhiyun tstring strFw = szFw;
1104*4882a593Smuzhiyun vector<int> vecDownloadEntry;
1105*4882a593Smuzhiyun vecDownloadEntry.clear();
1106*4882a593Smuzhiyun g_callback = (UpgradeCallbackFunc)pCallback;
1107*4882a593Smuzhiyun g_progress_callback = (UpgradeProgressCallbackFunc)pProgressCallback;
1108*4882a593Smuzhiyun if (g_progress_callback)
1109*4882a593Smuzhiyun {
1110*4882a593Smuzhiyun g_progress_callback(0.1, 5);
1111*4882a593Smuzhiyun }
1112*4882a593Smuzhiyun pLog = new CRKLog();
1113*4882a593Smuzhiyun if (!pLog)
1114*4882a593Smuzhiyun {
1115*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1116*4882a593Smuzhiyun }
1117*4882a593Smuzhiyun pLog->Record("Start to upgrade partition...");
1118*4882a593Smuzhiyun
1119*4882a593Smuzhiyun pComm = new CRKUsbComm(pLog);
1120*4882a593Smuzhiyun if (!pComm)
1121*4882a593Smuzhiyun {
1122*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->new CRKComm failed!");
1123*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1124*4882a593Smuzhiyun }
1125*4882a593Smuzhiyun if (IsDeviceLock(pComm, bLock))
1126*4882a593Smuzhiyun {
1127*4882a593Smuzhiyun if (bLock)
1128*4882a593Smuzhiyun {
1129*4882a593Smuzhiyun bRet = true;
1130*4882a593Smuzhiyun pImage = new CRKImage(strFw, bRet);
1131*4882a593Smuzhiyun if (!bRet)
1132*4882a593Smuzhiyun {
1133*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->new CRKImage with check failed,%s!", szFw);
1134*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1135*4882a593Smuzhiyun }
1136*4882a593Smuzhiyun if (nBoot == 0) //get key from nand or emmc
1137*4882a593Smuzhiyun {
1138*4882a593Smuzhiyun bRet = GetPubicKeyFromDevice(pLog, key, nKeySize);
1139*4882a593Smuzhiyun }
1140*4882a593Smuzhiyun else if ((nBoot == 1) || (nBoot == 2)) //get key from sd or usb disk
1141*4882a593Smuzhiyun {
1142*4882a593Smuzhiyun bRet = GetPubicKeyFromExternal(szBootDev, pLog, key, nKeySize);
1143*4882a593Smuzhiyun }
1144*4882a593Smuzhiyun else
1145*4882a593Smuzhiyun {
1146*4882a593Smuzhiyun bRet = false;
1147*4882a593Smuzhiyun }
1148*4882a593Smuzhiyun if (!bRet)
1149*4882a593Smuzhiyun {
1150*4882a593Smuzhiyun if (szBootDev)
1151*4882a593Smuzhiyun {
1152*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->Get PubicKey failed,boot=%d,dev=%s!", nBoot, szBootDev);
1153*4882a593Smuzhiyun }
1154*4882a593Smuzhiyun else
1155*4882a593Smuzhiyun {
1156*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->Get PubicKey failed,boot=%d,dev=NULL!", nBoot);
1157*4882a593Smuzhiyun }
1158*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1159*4882a593Smuzhiyun }
1160*4882a593Smuzhiyun
1161*4882a593Smuzhiyun if (!UnlockDevice(pImage, pLog, key, nKeySize))
1162*4882a593Smuzhiyun {
1163*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->UnlockDevice failed!");
1164*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1165*4882a593Smuzhiyun }
1166*4882a593Smuzhiyun // if (pCallback)
1167*4882a593Smuzhiyun // ((UpgradeCallbackFunc)pCallback)("pause");
1168*4882a593Smuzhiyun }
1169*4882a593Smuzhiyun else
1170*4882a593Smuzhiyun {
1171*4882a593Smuzhiyun pImage = new CRKImage(strFw, bRet);
1172*4882a593Smuzhiyun if (!bRet)
1173*4882a593Smuzhiyun {
1174*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->new CRKImage failed,%s!", szFw);
1175*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1176*4882a593Smuzhiyun }
1177*4882a593Smuzhiyun }
1178*4882a593Smuzhiyun }
1179*4882a593Smuzhiyun else
1180*4882a593Smuzhiyun {
1181*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->IsDeviceLock failed!");
1182*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1183*4882a593Smuzhiyun }
1184*4882a593Smuzhiyun pDevice = new CRKAndroidDevice(device);
1185*4882a593Smuzhiyun if (!pDevice)
1186*4882a593Smuzhiyun {
1187*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->new CRKAndroidDevice failed!");
1188*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1189*4882a593Smuzhiyun }
1190*4882a593Smuzhiyun pDevice->SetObject(pImage, pComm, pLog);
1191*4882a593Smuzhiyun pDevice->m_pCallback = (UpgradeCallbackFunc)pCallback;
1192*4882a593Smuzhiyun pDevice->m_pProcessCallback = (UpgradeProgressCallbackFunc)pProgressCallback;
1193*4882a593Smuzhiyun bRet = pDevice->GetFlashInfo();
1194*4882a593Smuzhiyun if (!bRet)
1195*4882a593Smuzhiyun {
1196*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->GetFlashInfo failed!");
1197*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1198*4882a593Smuzhiyun }
1199*4882a593Smuzhiyun iRet = pComm->RKU_ShowNandLBADevice();
1200*4882a593Smuzhiyun pLog->Record("Info:do_rk_partition_upgrade-->RKU_ShowNandLBADevice ret=%d", iRet);
1201*4882a593Smuzhiyun iRet = pDevice->UpgradePartition();
1202*4882a593Smuzhiyun if (iRet != ERR_SUCCESS)
1203*4882a593Smuzhiyun {
1204*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_partition_upgrade-->DownloadImage failed!");
1205*4882a593Smuzhiyun goto EXIT_DOWNLOAD;
1206*4882a593Smuzhiyun }
1207*4882a593Smuzhiyun
1208*4882a593Smuzhiyun bSuccess = true;
1209*4882a593Smuzhiyun EXIT_DOWNLOAD:
1210*4882a593Smuzhiyun if (bSuccess)
1211*4882a593Smuzhiyun {
1212*4882a593Smuzhiyun pLog->Record("Finish to upgrade partition.");
1213*4882a593Smuzhiyun }
1214*4882a593Smuzhiyun else
1215*4882a593Smuzhiyun {
1216*4882a593Smuzhiyun pLog->Record("Fail to upgrade partition!");
1217*4882a593Smuzhiyun }
1218*4882a593Smuzhiyun if (pLog)
1219*4882a593Smuzhiyun {
1220*4882a593Smuzhiyun delete pLog;
1221*4882a593Smuzhiyun pLog = NULL;
1222*4882a593Smuzhiyun }
1223*4882a593Smuzhiyun if (pImage)
1224*4882a593Smuzhiyun {
1225*4882a593Smuzhiyun delete pImage;
1226*4882a593Smuzhiyun pImage = NULL;
1227*4882a593Smuzhiyun }
1228*4882a593Smuzhiyun if (pDevice)
1229*4882a593Smuzhiyun {
1230*4882a593Smuzhiyun delete pDevice;
1231*4882a593Smuzhiyun pDevice = NULL;
1232*4882a593Smuzhiyun }
1233*4882a593Smuzhiyun else
1234*4882a593Smuzhiyun {
1235*4882a593Smuzhiyun if (pComm)
1236*4882a593Smuzhiyun {
1237*4882a593Smuzhiyun delete pComm;
1238*4882a593Smuzhiyun pComm = NULL;
1239*4882a593Smuzhiyun }
1240*4882a593Smuzhiyun }
1241*4882a593Smuzhiyun
1242*4882a593Smuzhiyun return bSuccess;
1243*4882a593Smuzhiyun }
1244*4882a593Smuzhiyun
do_rk_backup_recovery(void * pCallback,void * pProgressCallback)1245*4882a593Smuzhiyun bool do_rk_backup_recovery(void *pCallback, void *pProgressCallback)
1246*4882a593Smuzhiyun {
1247*4882a593Smuzhiyun bool bSuccess = false, bRet;
1248*4882a593Smuzhiyun int i, iRet;
1249*4882a593Smuzhiyun CRKLog *pLog = NULL;
1250*4882a593Smuzhiyun CRKComm *pComm = NULL;
1251*4882a593Smuzhiyun char *pParam = NULL;
1252*4882a593Smuzhiyun int nParamSize = -1;
1253*4882a593Smuzhiyun DWORD dwBackupOffset = 0;
1254*4882a593Smuzhiyun PARAM_ITEM_VECTOR vecParam;
1255*4882a593Smuzhiyun STRUCT_RKIMAGE_HDR hdr;
1256*4882a593Smuzhiyun const char *strPartSys = PARTNAME_SYSTEM;
1257*4882a593Smuzhiyun
1258*4882a593Smuzhiyun g_callback = (UpgradeCallbackFunc)pCallback;
1259*4882a593Smuzhiyun g_progress_callback = (UpgradeProgressCallbackFunc)pProgressCallback;
1260*4882a593Smuzhiyun if (g_progress_callback)
1261*4882a593Smuzhiyun {
1262*4882a593Smuzhiyun g_progress_callback(0.1, 10);
1263*4882a593Smuzhiyun }
1264*4882a593Smuzhiyun pLog = new CRKLog();
1265*4882a593Smuzhiyun if (!pLog)
1266*4882a593Smuzhiyun {
1267*4882a593Smuzhiyun goto EXIT_RECOVERY;
1268*4882a593Smuzhiyun }
1269*4882a593Smuzhiyun pLog->Record("Start to recovery from backup...");
1270*4882a593Smuzhiyun
1271*4882a593Smuzhiyun pComm = new CRKUsbComm(pLog);
1272*4882a593Smuzhiyun if (!pComm)
1273*4882a593Smuzhiyun {
1274*4882a593Smuzhiyun pLog->Record("ERROR:do_rk_backup_recovery-->new CRKComm failed!");
1275*4882a593Smuzhiyun goto EXIT_RECOVERY;
1276*4882a593Smuzhiyun }
1277*4882a593Smuzhiyun iRet = pComm->RKU_ShowNandLBADevice();
1278*4882a593Smuzhiyun pLog->Record("Info:do_rk_backup_recovery-->RKU_ShowNandLBADevice ret=%d", iRet);
1279*4882a593Smuzhiyun pLog->Record("Start to read parameter...");
1280*4882a593Smuzhiyun bRet = get_parameter_loader(pComm, pParam, nParamSize);
1281*4882a593Smuzhiyun if (bRet)
1282*4882a593Smuzhiyun {
1283*4882a593Smuzhiyun pParam = new char[nParamSize];
1284*4882a593Smuzhiyun if (pParam)
1285*4882a593Smuzhiyun {
1286*4882a593Smuzhiyun bRet = get_parameter_loader(pComm, pParam, nParamSize);
1287*4882a593Smuzhiyun }
1288*4882a593Smuzhiyun }
1289*4882a593Smuzhiyun if (!bRet)
1290*4882a593Smuzhiyun {
1291*4882a593Smuzhiyun pLog->Record("Read parameter failed!");
1292*4882a593Smuzhiyun goto EXIT_RECOVERY;
1293*4882a593Smuzhiyun }
1294*4882a593Smuzhiyun pLog->Record("Start to parse parameter...");
1295*4882a593Smuzhiyun bRet = parse_parameter(pParam, vecParam);
1296*4882a593Smuzhiyun if (!bRet)
1297*4882a593Smuzhiyun {
1298*4882a593Smuzhiyun pLog->Record("Parse parameter failed!");
1299*4882a593Smuzhiyun goto EXIT_RECOVERY;
1300*4882a593Smuzhiyun }
1301*4882a593Smuzhiyun for (i = 0; i < vecParam.size(); i++)
1302*4882a593Smuzhiyun {
1303*4882a593Smuzhiyun if (strcmp(vecParam[i].szItemName, PARTNAME_BACKUP) == 0)
1304*4882a593Smuzhiyun {
1305*4882a593Smuzhiyun dwBackupOffset = vecParam[i].uiItemOffset;
1306*4882a593Smuzhiyun break;
1307*4882a593Smuzhiyun }
1308*4882a593Smuzhiyun }
1309*4882a593Smuzhiyun if (dwBackupOffset == 0)
1310*4882a593Smuzhiyun {
1311*4882a593Smuzhiyun pLog->Record("Get backup offset failed!");
1312*4882a593Smuzhiyun goto EXIT_RECOVERY;
1313*4882a593Smuzhiyun }
1314*4882a593Smuzhiyun pLog->Record("Start to check firmware...");
1315*4882a593Smuzhiyun if (!check_fw_header(pComm, dwBackupOffset, &hdr, pLog))
1316*4882a593Smuzhiyun {
1317*4882a593Smuzhiyun pLog->Record("Check firmware header failed!");
1318*4882a593Smuzhiyun goto EXIT_RECOVERY;
1319*4882a593Smuzhiyun }
1320*4882a593Smuzhiyun
1321*4882a593Smuzhiyun if (!check_fw_crc(pComm, dwBackupOffset, &hdr, pLog))
1322*4882a593Smuzhiyun {
1323*4882a593Smuzhiyun pLog->Record("Check firmware crc failed!");
1324*4882a593Smuzhiyun goto EXIT_RECOVERY;
1325*4882a593Smuzhiyun }
1326*4882a593Smuzhiyun
1327*4882a593Smuzhiyun pLog->Record("Start to write system...");
1328*4882a593Smuzhiyun
1329*4882a593Smuzhiyun if (!download_backup_image(vecParam, (char *)strPartSys, dwBackupOffset, hdr, pComm, pLog))
1330*4882a593Smuzhiyun {
1331*4882a593Smuzhiyun pLog->Record("write system failed!");
1332*4882a593Smuzhiyun goto EXIT_RECOVERY;
1333*4882a593Smuzhiyun }
1334*4882a593Smuzhiyun
1335*4882a593Smuzhiyun bSuccess = true;
1336*4882a593Smuzhiyun
1337*4882a593Smuzhiyun EXIT_RECOVERY:
1338*4882a593Smuzhiyun if (bSuccess)
1339*4882a593Smuzhiyun {
1340*4882a593Smuzhiyun pLog->Record("Finish to recovery from backup.");
1341*4882a593Smuzhiyun }
1342*4882a593Smuzhiyun else
1343*4882a593Smuzhiyun {
1344*4882a593Smuzhiyun pLog->Record("Fail to recovery from backup!");
1345*4882a593Smuzhiyun }
1346*4882a593Smuzhiyun if (pParam)
1347*4882a593Smuzhiyun {
1348*4882a593Smuzhiyun delete []pParam;
1349*4882a593Smuzhiyun pParam = NULL;
1350*4882a593Smuzhiyun }
1351*4882a593Smuzhiyun
1352*4882a593Smuzhiyun if (pLog)
1353*4882a593Smuzhiyun {
1354*4882a593Smuzhiyun delete pLog;
1355*4882a593Smuzhiyun pLog = NULL;
1356*4882a593Smuzhiyun }
1357*4882a593Smuzhiyun
1358*4882a593Smuzhiyun if (pComm)
1359*4882a593Smuzhiyun {
1360*4882a593Smuzhiyun delete pComm;
1361*4882a593Smuzhiyun pComm = NULL;
1362*4882a593Smuzhiyun }
1363*4882a593Smuzhiyun
1364*4882a593Smuzhiyun return bSuccess;
1365*4882a593Smuzhiyun }
1366