brillo_update_payload revision 957ce12832240c1e8a66af425d8524a3cbfdfd97
1be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma#!/bin/bash 2be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 3be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Copyright 2015 The Chromium OS Authors. All rights reserved. 4be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Use of this source code is governed by a BSD-style license that can be 5be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# found in the LICENSE file. 6be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 7be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Script to generate a Brillo update for use by the update engine. 8be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 9be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# usage: brillo_update_payload COMMAND [ARGS] 10be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# The following commands are supported: 11be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# generate generate an unsigned payload 12be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# hash generate a payload or metadata hash 13be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# sign generate a signed payload 14be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 15be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Generate command arguments: 169a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --payload generated unsigned payload output file 179a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --source_image if defined, generate a delta payload from the specified 189a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# image to the target_image 199a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --target_image the target image that should be sent to clients 209a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --metadata_size_file if defined, generate a file containing the size of the payload 219a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# metadata in bytes to the specified file 22be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 23be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Hash command arguments: 24be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --unsigned_payload the input unsigned payload to generate the hash from 25be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --signature_size signature sizes in bytes in the following format: 2689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "size1:size2[:...]" 27be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --payload_hash_file if defined, generate a payload hash and output to the 28be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# specified file 29be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --metadata_hash_file if defined, generate a metadata hash and output to the 30be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# specified file 31be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 32be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Sign command arguments: 3389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --unsigned_payload the input unsigned payload to insert the signatures 3489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --payload the output signed payload 3589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --signature_size signature sizes in bytes in the following format: 3689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "size1:size2[:...]" 3789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --payload_signature_file the payload signature files in the following 3889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# format: 3989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "payload_signature1:payload_signature2[:...]" 4089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --metadata_signature_file the metadata signature files in the following 4189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# format: 4289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "metadata_signature1:metadata_signature2[:...]" 439a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --metadata_size_file if defined, generate a file containing the size of 449a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# the signed payload metadata in bytes to the 459a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# specified file 46be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Note that the number of signature sizes and payload signatures have to match. 47be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 48957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnolddie() { 49957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold echo "brillo_update_payload: error: $*" >&2 50957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold exit 1 51957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold} 52be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 53957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold# Loads shflags. We first look at the default install location; then look for 54957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold# crosutils (chroot); finally check our own directory (au-generator zipfile). 55957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnoldload_shflags() { 56957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold local my_dir="$(dirname "$(readlink -f "$0")")" 57957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold local path 58957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold for path in /usr/share/misc {/usr/lib/crosutils,"${my_dir}"}/lib/shflags; do 59957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold if [[ -r "${path}/shflags" ]]; then 60957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold . "${path}/shflags" || die "Could not load ${path}/shflags." 61957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold return 62be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 63be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma done 64957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnold die "Could not find shflags." 65be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 66be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 67957ce12832240c1e8a66af425d8524a3cbfdfd97Gilad Arnoldload_shflags 68be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 69c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_GENERATE="generate: Generate an unsigned update payload." 70c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_HASH="hash: Generate the hashes of the unsigned payload and metadata used \ 71c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofor signing." 72c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_SIGN="sign: Insert the signatures into the unsigned payload." 73c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 74c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymousage() { 75c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Supported commands:" 76c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo 77c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_GENERATE}" 78c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_HASH}" 79c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_SIGN}" 80c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo 81c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Use: \"$0 <command> --help\" for more options." 82c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo} 83c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 84c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo# Check that a command is specified. 85be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaif [[ $# -lt 1 ]]; then 86be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Please specify a command [generate|hash|sign]" 87be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma exit 1 88be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumafi 89be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 90c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo# Parse command. 91c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoCOMMAND="${1:-}" 92c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoshift 93c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 94c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymocase "${COMMAND}" in 95c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo generate) 96c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_GENERATE}" 97c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo ;; 98c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 99c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo hash) 100c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_HASH}" 101c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo ;; 102c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 103c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo sign) 104c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_SIGN}" 105be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 106be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma *) 107c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Unrecognized command: \"${COMMAND}\"" >&2 108c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo usage >&2 109be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma exit 1 110be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 111be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaesac 112be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 113be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Flags 114c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoFLAGS_HELP="Usage: $0 ${COMMAND} [flags] 115c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo${FLAGS_HELP}" 116c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 117c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "generate" ]]; then 118c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload "" \ 119c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to output the generated unsigned payload file." 120c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string target_image "" \ 121c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to the target image that should be sent to clients." 122c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string source_image "" \ 123c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to a source image. If specified, this makes a delta update." 1249a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma DEFINE_string metadata_size_file "" \ 1259a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma "Optional: Path to output metadata size." 126c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 127c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "hash" || "${COMMAND}" == "sign" ]]; then 128c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string unsigned_payload "" "Path to the input unsigned payload." 129c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string signature_size "" \ 130c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Signature sizes in bytes in the following format: size1:size2[:...]" 131c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 132c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "hash" ]]; then 133c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string metadata_hash_file "" \ 134c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to output metadata hash file." 135c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload_hash_file "" \ 136c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to output payload hash file." 137c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 138c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "sign" ]]; then 139c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload "" \ 140c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to output the generated unsigned payload file." 141c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string metadata_signature_file "" \ 142c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "The metatada signatures in the following format: \ 143c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymometadata_signature1:metadata_signature2[:...]" 144c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload_signature_file "" \ 145c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "The payload signatures in the following format: \ 146c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymopayload_signature1:payload_signature2[:...]" 1479a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma DEFINE_string metadata_size_file "" \ 1489a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma "Optional: Path to output metadata size." 149c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 150be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaDEFINE_string work_dir "/tmp" "Where to dump temporary files." 151be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 152be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Parse command line flag arguments 153be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaFLAGS "$@" || exit 1 154be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaeval set -- "${FLAGS_ARGV}" 15589ff9e3221c358977f9c3124930ee6b559853740Alex Deymoset -e 156be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 15789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Associative arrays from partition name to file in the source and target 15889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# images. The size of the updated area must be the size of the file. 15989ff9e3221c358977f9c3124930ee6b559853740Alex Deymodeclare -A SRC_PARTITIONS 16089ff9e3221c358977f9c3124930ee6b559853740Alex Deymodeclare -A DST_PARTITIONS 16189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 16289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# A list of temporary files to remove during cleanup. 16389ff9e3221c358977f9c3124930ee6b559853740Alex DeymoCLEANUP_FILES=() 16489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 16548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Global options to force the version of the payload. 16648b502ab0cd56bf948602a45b990448f51e3e6b5Alex DeymoFORCE_MAJOR_VERSION="" 16748b502ab0cd56bf948602a45b990448f51e3e6b5Alex DeymoFORCE_MINOR_VERSION="" 16848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 169c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# read_option_int <file.txt> <option_key> [default_value] 170c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# 171c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# Reads the unsigned integer value associated with |option_key| in a key=value 172c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# file |file.txt|. Prints the read value if found and valid, otherwise prints 173c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# the |default_value|. 174c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymoread_option_uint() { 175c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local file_txt="$1" 176c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local option_key="$2" 177c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local default_value="${3:-}" 178c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local value 179c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if value=$(look "${option_key}=" "${file_txt}" | tail -n 1); then 180c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if value=$(echo "${value}" | cut -f 2- -d "=" | grep -E "^[0-9]+$"); then 181c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo echo "${value}" 182c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo return 183c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 184c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 185c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo echo "${default_value}" 186c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo} 187c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo 18889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Create a temporary file in the work_dir with an optional pattern name. 18989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Prints the name of the newly created file. 19089ff9e3221c358977f9c3124930ee6b559853740Alex Deymocreate_tempfile() { 19189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local pattern="${1:-tempfile.XXXXXX}" 19289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo mktemp --tmpdir="${FLAGS_work_dir}" "${pattern}" 19389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo} 194be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 195be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup() { 196be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local err="" 19789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo rm -f "${CLEANUP_FILES[@]}" || err=1 198be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 199be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # If we are cleaning up after an error, or if we got an error during 200be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # cleanup (even if we eventually succeeded) return a non-zero exit 201be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # code. This triggers additional logging in most environments that call 202be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # this script. 203be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${err}" ]]; then 204be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Cleanup encountered an error." 205be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 206be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 207be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 208be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup_on_error() { 209be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma trap - INT TERM ERR EXIT 210be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cleanup 211be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Cleanup success after an error." 212be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 213be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 214be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup_on_exit() { 215be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma trap - INT TERM ERR EXIT 216be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cleanup 217be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 218be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 219be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumatrap cleanup_on_error INT TERM ERR 220be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumatrap cleanup_on_exit EXIT 221be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 22248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 22348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# extract_image <image> <partitions_array> 22448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# 22548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Detect the format of the |image| file and extract its updatable partitions 22648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# into new temporary files. Add the list of partition names and its files to the 22748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# associative array passed in |partitions_array|. 22848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymoextract_image() { 22948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local image="$1" 23048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 23148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Brillo images are zip files. We detect the 4-byte magic header of the zip 23248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # file. 23348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local magic=$(head --bytes=4 "${image}" | hexdump -e '1/1 "%.2x"') 23448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${magic}" == "504b0304" ]]; then 23548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Detected .zip file, extracting Brillo image." 23648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image_brillo "$@" 23748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo return 23848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 23948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 24048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Chrome OS images are GPT partitioned disks. We should have the cgpt binary 24148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # bundled here and we will use it to extract the partitions, so the GPT 24248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # headers must be valid. 24348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if cgpt show -q -n "${image}" >/dev/null; then 24448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Detected GPT image, extracting Chrome OS image." 24548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image_cros "$@" 24648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo return 24748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 24848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 24948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo die "Couldn't detect the image format of ${image}" 25048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo} 25148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 25289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# extract_image_cros <image.bin> <partitions_array> 25389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# 25448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Extract Chromium OS recovery images into new temporary files. 25589ff9e3221c358977f9c3124930ee6b559853740Alex Deymoextract_image_cros() { 25689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local image="$1" 25789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local partitions_array="$2" 25889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 25989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local kernel root 26089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo kernel=$(create_tempfile "kernel.bin.XXXXXX") 26189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo CLEANUP_FILES+=("${kernel}") 26289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo root=$(create_tempfile "root.bin.XXXXXX") 26389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo CLEANUP_FILES+=("${root}") 26489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 26589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo cros_generate_update_payload --extract \ 26689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --image "${image}" \ 26789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --kern_path "${kernel}" --root_path "${root}" \ 26889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --work_dir "${FLAGS_work_dir}" --outside_chroot 26989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 27048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # When generating legacy Chrome OS images, we need to use "boot" and "system" 27148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # for the partition names to be compatible with updating Brillo devices with 27248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Chrome OS images. 27348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval ${partitions_array}[boot]=\""${kernel}"\" 27448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval ${partitions_array}[system]=\""${root}"\" 27589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 27689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local part varname 27748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo for part in boot system; do 27889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo varname="${partitions_array}[${part}]" 27989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo printf "md5sum of %s: " "${varname}" 28089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo md5sum "${!varname}" 28189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo done 28289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo} 28389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 28448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# extract_image_brillo <target_files.zip> <partitions_array> 28548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# 28648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Extract the A/B updated partitions from a Brillo target_files zip file into 28748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# new temporary files. 28848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymoextract_image_brillo() { 28948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local image="$1" 29048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local partitions_array="$2" 29148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 29248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # TODO(deymo): Read the list of partitions from the metadata. We should 29348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # sanitize the list of partition names to be in [a-zA-Z0-9-]+. 29448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local partitions=( "boot" "system" ) 29548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 29648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${partitions_array}" == "SRC_PARTITIONS" ]]; then 297c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo ue_config=$(create_tempfile "ue_config.XXXXXX") 298c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo CLEANUP_FILES+=("${ue_config}") 299c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if ! unzip -p "${image}" "META/update_engine_config.txt" \ 300c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo >"${ue_config}"; then 301c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo warn "No update_engine_config.txt found. Assuming pre-release image, \ 302c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymousing payload minor version 2" 303c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 304c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo FORCE_MINOR_VERSION=$(read_option_uint "${ue_config}" \ 305c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo "PAYLOAD_MINOR_VERSION" 2) 30648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 30748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 30848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local part part_file temp_raw filesize 30948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo for part in "${partitions[@]}"; do 31048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo part_file=$(create_tempfile "${part}.img.XXXXXX") 31148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo CLEANUP_FILES+=("${part_file}") 31248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo unzip -p "${image}" "IMAGES/${part}.img" >"${part_file}" 31348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 31448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # If the partition is stored as an Android sparse image file, we need to 31548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # convert them to a raw image for the update. 31648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local magic=$(head --bytes=4 "${part_file}" | hexdump -e '1/1 "%.2x"') 31748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${magic}" == "3aff26ed" ]]; then 31848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo temp_raw=$(create_tempfile "${part}.raw.XXXXXX") 31948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo CLEANUP_FILES+=("${temp_raw}") 32048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Converting Android sparse image ${part}.img to RAW." 32148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo simg2img "${part_file}" "${temp_raw}" 32248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # At this point, we can drop the contents of the old part_file file, but 32348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # we can't delete the file because it will be deleted in cleanup. 32448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo true >"${part_file}" 32548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo part_file="${temp_raw}" 32648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 32748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 32848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # delta_generator only supports images multiple of 4 KiB, so we pad with 32948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # zeros if needed. 33048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo filesize=$(stat -c%s "${part_file}") 33148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ $(( filesize % 4096 )) -ne 0 ]]; then 33248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Rounding up partition ${part}.img to multiple of 4 KiB." 33348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo : $(( filesize = (filesize + 4095) & -4096 )) 33448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo truncate --size="${filesize}" "${part_file}" 33548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 33648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 33748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval "${partitions_array}[\"${part}\"]=\"${part_file}\"" 33848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Extracted ${partitions_array}[${part}]: ${filesize} bytes" 33948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo done 34048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo} 34148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 342be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_generate() { 343be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload}" ]] || 344be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify an output filename with --payload FILENAME" 345be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 346be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_target_image}" ]] || 347be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify a target image with --target_image FILENAME" 348be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 349be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 350be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_generate() { 35189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local payload_type="delta" 352be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -z "${FLAGS_source_image}" ]]; then 35389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo payload_type="full" 354be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 355be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 35648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Extracting images for ${payload_type} update." 357be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 35848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image "${FLAGS_target_image}" DST_PARTITIONS 35989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo if [[ "${payload_type}" == "delta" ]]; then 36048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image "${FLAGS_source_image}" SRC_PARTITIONS 361be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 362be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 36348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Generating ${payload_type} update." 364be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma GENERATOR_ARGS=( 365be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Common payload args: 366be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_file="${FLAGS_payload}" 367be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Target image args: 36889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo # TODO(deymo): Pass the list of partitions to the generator. 36948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -new_image="${DST_PARTITIONS[system]}" 37048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -new_kernel="${DST_PARTITIONS[boot]}" 371be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ) 372be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 37389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo if [[ "${payload_type}" == "delta" ]]; then 374be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma GENERATOR_ARGS+=( 375be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Source image args: 37648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -old_image="${SRC_PARTITIONS[system]}" 37748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -old_kernel="${SRC_PARTITIONS[boot]}" 378be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ) 37948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ -n "${FORCE_MINOR_VERSION}" ]]; then 38048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo GENERATOR_ARGS+=( --minor_version="${FORCE_MINOR_VERSION}" ) 38148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 38248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 38348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 38448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ -n "${FORCE_MAJOR_VERSION}" ]]; then 38548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo GENERATOR_ARGS+=( --major_version="${FORCE_MAJOR_VERSION}" ) 386be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 387be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 3889a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma if [[ -n "${FLAGS_metadata_size_file}" ]]; then 3899a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma GENERATOR_ARGS+=( --out_metadata_size_file="${FLAGS_metadata_size_file}" ) 3909a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma fi 3919a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma 392be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Running delta_generator with args: ${GENERATOR_ARGS[@]}" 3939a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma "${GENERATOR}" "${GENERATOR_ARGS[@]}" 394be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 39589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo echo "Done generating ${payload_type} update." 396be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 397be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 398be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_hash() { 399be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_signature_size}" ]] || 400be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify signature size with --signature_size SIZES" 401be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 402be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_unsigned_payload}" ]] || 403be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the input unsigned payload with \ 404be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--unsigned_payload FILENAME" 405be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 406be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_metadata_hash_file}" ]] || 407be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload_hash_file}" ]] || 408be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify --metadata_hash_file FILENAME \ 409be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaor --payload_hash_file FILENAME" 410be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 411be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 412be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_hash() { 413be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${FLAGS_metadata_hash_file}" ]]; then 414be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma "${GENERATOR}" \ 415be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -in_file="${FLAGS_unsigned_payload}" \ 416be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -signature_size="${FLAGS_signature_size}" \ 417be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_metadata_hash_file="${FLAGS_metadata_hash_file}" 418be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 419be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 420be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${FLAGS_payload_hash_file}" ]]; then 421be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma "${GENERATOR}" \ 422be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -in_file="${FLAGS_unsigned_payload}" \ 423be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -signature_size="${FLAGS_signature_size}" \ 424be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_hash_file="${FLAGS_payload_hash_file}" 425be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 426be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Done generating hash." 427be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 428be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 429be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_sign() { 430be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_signature_size}" ]] || 431be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify signature size with --signature_size SIZES" 432be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 433be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_unsigned_payload}" ]] || 434be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the input unsigned payload with \ 435be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--unsigned_payload FILENAME" 436be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 437be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload}" ]] || 438be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the output signed payload with \ 439be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--payload FILENAME" 440be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 441be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload_signature_file}" ]] || 442be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the payload signature file with \ 443be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--payload_signature_file SIGNATURES" 44489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 44589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo [[ -n "${FLAGS_metadata_signature_file}" ]] || 44689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo die "Error: you must specify the metadata signature file with \ 44789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo--metadata_signature_file SIGNATURES" 448be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 449be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 450be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_sign() { 4519a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma GENERATOR_ARGS=( 4529a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -in_file="${FLAGS_unsigned_payload}" 4539a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -signature_size="${FLAGS_signature_size}" 4549a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -signature_file="${FLAGS_payload_signature_file}" 4559a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -metadata_signature_file="${FLAGS_metadata_signature_file}" 4569a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -out_file="${FLAGS_payload}" 4579a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma ) 4589a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma 4599a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma if [[ -n "${FLAGS_metadata_size_file}" ]]; then 4609a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma GENERATOR_ARGS+=( --out_metadata_size_file="${FLAGS_metadata_size_file}" ) 4619a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma fi 4629a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma 4639a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma "${GENERATOR}" "${GENERATOR_ARGS[@]}" 464be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Done signing payload." 465be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 466be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 467be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# TODO: Extract the input zip files once the format is finalized 468be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 469be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Sanity check that the real generator exists: 470be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaGENERATOR="$(which delta_generator)" 471be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma[[ -x "${GENERATOR}" ]] || die "can't find delta_generator" 472be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 473be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacase "$COMMAND" in 474be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma generate) validate_generate 475be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_generate 476be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 477be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma hash) validate_hash 478be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_hash 479be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 480be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma sign) validate_sign 481be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_sign 482be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 483be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaesac 484