X-Git-Url: http://git.rot13.org/?p=goodfet;a=blobdiff_plain;f=firmware%2Fgoodfet.c;h=5d33b39981c10d119e9aff75b5d07753ab893ad6;hp=11afcdda17bc5717e0a88e0ef2ab52528f7ac55f;hb=0fdf6e0b883ba3f7661e555145a3601609729e89;hpb=31f45062572380f91438aa566fe6b83ca66c4951 diff --git a/firmware/goodfet.c b/firmware/goodfet.c index 11afcdd..5d33b39 100644 --- a/firmware/goodfet.c +++ b/firmware/goodfet.c @@ -12,155 +12,121 @@ #include "apps.h" #include "glitch.h" +#define RESET 0x80 // not a real app -- causes firmware to reset +#define DEBUGAPP 0xFF -//! Initialize registers and all that jazz. +//! General init function, calls platform-specific one. void init(){ - int i; - WDTCTL = WDTPW + WDTHOLD; // Stop watchdog timer - - //LED out and on. - PLEDDIR |= PLEDPIN; - PLEDOUT &= ~PLEDPIN; - - //Setup clocks, unique to each '430. - msp430_init_dco(); - msp430_init_uart(); - - //DAC should be at full voltage if it exists. -#ifdef DAC12IR - //glitchvoltages(0xfff,0xfff); - ADC12CTL0 = REF2_5V + REFON; // Internal 2.5V ref on - for(i=0;i!=0xFFFF;i++) asm("nop"); - DAC12_0CTL = DAC12IR + DAC12AMP_5 + DAC12ENC; // Int ref gain 1 - DAC12_0DAT = 0xFFF; //Max voltage 0xfff - DAC12_1CTL = DAC12IR + DAC12AMP_5 + DAC12ENC; // Int ref gain 1 - DAC12_1DAT = 0x000; //Min voltage 0x000 +#ifdef MSP430 + msp430_init(); +#else +#warning "No init() routine for this platform!" +#endif + +#ifdef INITPLATFORM + INITPLATFORM #endif - - /** FIXME - - This part is really ugly. GSEL (P5.7) must be high to select - normal voltage, but a lot of applications light to swing it low - to be a nuissance. To get around this, we assume that anyone - with a glitching FET will also have a DAC, then we set that DAC - to a high voltage. - - At some point, each target must be sanitized to show that it - doesn't clear P5OUT or P5DIR. - */ - P5DIR|=BIT7; P5OUT=BIT7; //Normal Supply - //P5DIR&=~BIT7; //Glitch Supply - - //Enable Interrupts. - //eint(); } + //! Handle a command. -void handle(unsigned char app, - unsigned char verb, - unsigned long len){ - //debugstr("GoodFET"); - P1OUT&=~1; - switch(app){ - case GLITCH: - glitchhandle(app,verb,len); - break; - case MONITOR: - monitorhandle(app,verb,len); - break; - case SPI: - spihandle(app,verb,len); - break; - case AVR: - avrhandle(app,verb,len); - break; - case I2CAPP: - i2chandle(app,verb,len); - break; - case CHIPCON: - cchandle(app,verb,len); - break; - case JTAG: - jtaghandle(app,verb,len); - break; - case EJTAG: - ejtaghandle(app,verb,len); - break; - case JTAG430: //Also JTAG430X, JTAG430X2 - jtag430x2handle(app,verb,len); - break; - case SMARTCARD: - smartcardhandle(app,verb,len); - break; - default: - if(pluginhandle){ - pluginhandle(app,verb,len); - }else{ - debugstr("Plugin missing."); - debughex(app); - txdata(app,NOK,0); - } - break; - } +void handle(uint8_t const app, + uint8_t const verb, + uint32_t const len) +{ + int i; + + //debugstr("GoodFET"); + PLEDOUT&=~PLEDPIN; + + // find the app and call the handle fn + for(i = 0; i < num_apps; i++) + { + if(apps[i]->app == app) + { + // call the app's handle fn + (*(apps[i]->handle))(app, verb, len); + + // exit early + return; + } + } + + // if we get here, then the desired app is not copiled in + // this firmware + debugstr("App missing."); + debughex(app); + txdata(app, NOK, 0); } + //! Main loop. int main(void) { - volatile unsigned int i; - unsigned char app, verb; - unsigned long len; - // MSP reboot count for reset input & reboot function located at 0xFFFE - volatile unsigned int reset_count = 0; - void (*reboot_function)(void) = (void *) 0xFFFE; - - init(); + volatile unsigned int i; + unsigned char app, verb; + unsigned long len; + // MSP reboot count for reset input & reboot function located at 0xFFFE + volatile unsigned int reset_count = 0; + void (*reboot_function)(void) = (void *) 0xFFFE; - txstring(MONITOR,OK,"http://goodfet.sf.net/"); + init(); + txstring(MONITOR,OK,"http://goodfet.sf.net/"); - //Command loop. There's no end! - while(1){ - //Magic 3 - app=serial_rx(); - - // If the app is the reset byte (0x80) increment and loop - if (app == 0x80) { - reset_count++; - - if (reset_count > 4) { - // We could trigger the WDT with either: - // WDTCTL = 0; - // or - // WDTCTL = WDTPW + WDTCNTCL + WDTSSEL + 0x00; - // but instead we'll jump to our reboot function pointer - (*reboot_function)(); + //Command loop. There's no end! + while(1) + { + //Magic 3 + app = serial_rx(); + + // If the app is the reset byte (0x80) increment and loop + if (app == RESET) + { + reset_count++; + + if (reset_count > 4) + { + // We could trigger the WDT with either: + // WDTCTL = 0; + // or + // WDTCTL = WDTPW + WDTCNTCL + WDTSSEL + 0x00; + // but instead we'll jump to our reboot function pointer + (*reboot_function)(); + } + + continue; + } + else + { + reset_count = 0; } - continue; - } else { - reset_count = 0; - } + verb = serial_rx(); + //len=serial_rx(); + len = rxword(); + + //Read data, looking for buffer overflow.y + if(len <= CMDDATALEN) + { + for(i = 0; i < len; i++) + { + cmddata[i] = serial_rx(); + } + + handle(app,verb,len); + } + else + { + //Listen to the blaberring. + for(i = 0; i < len; i++) + serial_rx(); - verb=serial_rx(); - //len=serial_rx(); - len=rxword(); - - //Read data, looking for buffer overflow.y - if(len<=CMDDATALEN){ - for(i=0;i