brillo_update_payload revision 9a4cae24e671face0c8786ff87e9d3de405cf4c8
1be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma#!/bin/bash 2be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 3be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Copyright 2015 The Chromium OS Authors. All rights reserved. 4be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Use of this source code is governed by a BSD-style license that can be 5be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# found in the LICENSE file. 6be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 7be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Script to generate a Brillo update for use by the update engine. 8be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 9be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# usage: brillo_update_payload COMMAND [ARGS] 10be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# The following commands are supported: 11be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# generate generate an unsigned payload 12be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# hash generate a payload or metadata hash 13be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# sign generate a signed payload 14be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 15be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Generate command arguments: 169a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --payload generated unsigned payload output file 179a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --source_image if defined, generate a delta payload from the specified 189a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# image to the target_image 199a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --target_image the target image that should be sent to clients 209a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --metadata_size_file if defined, generate a file containing the size of the payload 219a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# metadata in bytes to the specified file 22be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 23be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Hash command arguments: 24be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --unsigned_payload the input unsigned payload to generate the hash from 25be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --signature_size signature sizes in bytes in the following format: 2689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "size1:size2[:...]" 27be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --payload_hash_file if defined, generate a payload hash and output to the 28be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# specified file 29be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --metadata_hash_file if defined, generate a metadata hash and output to the 30be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# specified file 31be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 32be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Sign command arguments: 3389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --unsigned_payload the input unsigned payload to insert the signatures 3489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --payload the output signed payload 3589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --signature_size signature sizes in bytes in the following format: 3689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "size1:size2[:...]" 3789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --payload_signature_file the payload signature files in the following 3889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# format: 3989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "payload_signature1:payload_signature2[:...]" 4089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --metadata_signature_file the metadata signature files in the following 4189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# format: 4289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "metadata_signature1:metadata_signature2[:...]" 439a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# --metadata_size_file if defined, generate a file containing the size of 449a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# the signed payload metadata in bytes to the 459a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma# specified file 46be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Note that the number of signature sizes and payload signatures have to match. 47be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 48be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Load common CrOS utilities. Inside the chroot this file is installed in 49be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# /usr/lib/crosutils. This script may also be called from a zipfile, in which 50be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# case common.sh will be in the current directory. 51be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumafind_common_sh() { 52be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local thisdir="$(dirname "$(readlink -f "$0")")" 53be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local common_paths=(/usr/lib/crosutils "${thisdir}") 54be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local path 55be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 56be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma SCRIPT_ROOT="${common_paths[0]}" 57be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma for path in "${common_paths[@]}"; do 58be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -r "${path}/common.sh" ]]; then 59be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma SCRIPT_ROOT="${path}" 60be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma break 61be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 62be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma done 63be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 64be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # We have to fake GCLIENT_ROOT in case we're running inside 65be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # au_zip enviroment. GCLIENT_ROOT detection became fatal. 66be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ "${SCRIPT_ROOT}" == "${thisdir}" ]] && export GCLIENT_ROOT="." 67be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 68be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 69be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumafind_common_sh 70be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma. "${SCRIPT_ROOT}/common.sh" || exit 1 71be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 72c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_GENERATE="generate: Generate an unsigned update payload." 73c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_HASH="hash: Generate the hashes of the unsigned payload and metadata used \ 74c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofor signing." 75c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_SIGN="sign: Insert the signatures into the unsigned payload." 76c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 77c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymousage() { 78c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Supported commands:" 79c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo 80c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_GENERATE}" 81c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_HASH}" 82c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_SIGN}" 83c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo 84c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Use: \"$0 <command> --help\" for more options." 85c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo} 86c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 87c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo# Check that a command is specified. 88be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaif [[ $# -lt 1 ]]; then 89be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Please specify a command [generate|hash|sign]" 90be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma exit 1 91be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumafi 92be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 93c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo# Parse command. 94c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoCOMMAND="${1:-}" 95c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoshift 96c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 97c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymocase "${COMMAND}" in 98c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo generate) 99c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_GENERATE}" 100c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo ;; 101c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 102c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo hash) 103c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_HASH}" 104c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo ;; 105c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 106c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo sign) 107c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_SIGN}" 108be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 109be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma *) 110c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Unrecognized command: \"${COMMAND}\"" >&2 111c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo usage >&2 112be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma exit 1 113be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 114be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaesac 115be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 116be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Flags 117c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoFLAGS_HELP="Usage: $0 ${COMMAND} [flags] 118c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo${FLAGS_HELP}" 119c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 120c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "generate" ]]; then 121c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload "" \ 122c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to output the generated unsigned payload file." 123c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string target_image "" \ 124c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to the target image that should be sent to clients." 125c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string source_image "" \ 126c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to a source image. If specified, this makes a delta update." 1279a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma DEFINE_string metadata_size_file "" \ 1289a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma "Optional: Path to output metadata size." 129c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 130c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "hash" || "${COMMAND}" == "sign" ]]; then 131c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string unsigned_payload "" "Path to the input unsigned payload." 132c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string signature_size "" \ 133c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Signature sizes in bytes in the following format: size1:size2[:...]" 134c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 135c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "hash" ]]; then 136c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string metadata_hash_file "" \ 137c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to output metadata hash file." 138c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload_hash_file "" \ 139c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to output payload hash file." 140c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 141c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "sign" ]]; then 142c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload "" \ 143c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to output the generated unsigned payload file." 144c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string metadata_signature_file "" \ 145c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "The metatada signatures in the following format: \ 146c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymometadata_signature1:metadata_signature2[:...]" 147c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload_signature_file "" \ 148c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "The payload signatures in the following format: \ 149c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymopayload_signature1:payload_signature2[:...]" 1509a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma DEFINE_string metadata_size_file "" \ 1519a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma "Optional: Path to output metadata size." 152c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 153be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaDEFINE_string work_dir "/tmp" "Where to dump temporary files." 154be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 155be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Parse command line flag arguments 156be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaFLAGS "$@" || exit 1 157be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaeval set -- "${FLAGS_ARGV}" 15889ff9e3221c358977f9c3124930ee6b559853740Alex Deymoset -e 159be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 16089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Associative arrays from partition name to file in the source and target 16189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# images. The size of the updated area must be the size of the file. 16289ff9e3221c358977f9c3124930ee6b559853740Alex Deymodeclare -A SRC_PARTITIONS 16389ff9e3221c358977f9c3124930ee6b559853740Alex Deymodeclare -A DST_PARTITIONS 16489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 16589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# A list of temporary files to remove during cleanup. 16689ff9e3221c358977f9c3124930ee6b559853740Alex DeymoCLEANUP_FILES=() 16789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 16848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Global options to force the version of the payload. 16948b502ab0cd56bf948602a45b990448f51e3e6b5Alex DeymoFORCE_MAJOR_VERSION="" 17048b502ab0cd56bf948602a45b990448f51e3e6b5Alex DeymoFORCE_MINOR_VERSION="" 17148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 172c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# read_option_int <file.txt> <option_key> [default_value] 173c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# 174c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# Reads the unsigned integer value associated with |option_key| in a key=value 175c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# file |file.txt|. Prints the read value if found and valid, otherwise prints 176c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# the |default_value|. 177c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymoread_option_uint() { 178c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local file_txt="$1" 179c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local option_key="$2" 180c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local default_value="${3:-}" 181c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local value 182c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if value=$(look "${option_key}=" "${file_txt}" | tail -n 1); then 183c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if value=$(echo "${value}" | cut -f 2- -d "=" | grep -E "^[0-9]+$"); then 184c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo echo "${value}" 185c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo return 186c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 187c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 188c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo echo "${default_value}" 189c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo} 190c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo 19189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Create a temporary file in the work_dir with an optional pattern name. 19289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Prints the name of the newly created file. 19389ff9e3221c358977f9c3124930ee6b559853740Alex Deymocreate_tempfile() { 19489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local pattern="${1:-tempfile.XXXXXX}" 19589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo mktemp --tmpdir="${FLAGS_work_dir}" "${pattern}" 19689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo} 197be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 198be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup() { 199be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local err="" 20089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo rm -f "${CLEANUP_FILES[@]}" || err=1 201be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 202be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # If we are cleaning up after an error, or if we got an error during 203be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # cleanup (even if we eventually succeeded) return a non-zero exit 204be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # code. This triggers additional logging in most environments that call 205be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # this script. 206be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${err}" ]]; then 207be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Cleanup encountered an error." 208be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 209be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 210be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 211be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup_on_error() { 212be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma trap - INT TERM ERR EXIT 213be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cleanup 214be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Cleanup success after an error." 215be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 216be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 217be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup_on_exit() { 218be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma trap - INT TERM ERR EXIT 219be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cleanup 220be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 221be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 222be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumatrap cleanup_on_error INT TERM ERR 223be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumatrap cleanup_on_exit EXIT 224be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 22548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 22648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# extract_image <image> <partitions_array> 22748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# 22848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Detect the format of the |image| file and extract its updatable partitions 22948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# into new temporary files. Add the list of partition names and its files to the 23048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# associative array passed in |partitions_array|. 23148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymoextract_image() { 23248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local image="$1" 23348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 23448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Brillo images are zip files. We detect the 4-byte magic header of the zip 23548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # file. 23648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local magic=$(head --bytes=4 "${image}" | hexdump -e '1/1 "%.2x"') 23748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${magic}" == "504b0304" ]]; then 23848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Detected .zip file, extracting Brillo image." 23948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image_brillo "$@" 24048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo return 24148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 24248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 24348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Chrome OS images are GPT partitioned disks. We should have the cgpt binary 24448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # bundled here and we will use it to extract the partitions, so the GPT 24548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # headers must be valid. 24648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if cgpt show -q -n "${image}" >/dev/null; then 24748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Detected GPT image, extracting Chrome OS image." 24848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image_cros "$@" 24948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo return 25048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 25148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 25248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo die "Couldn't detect the image format of ${image}" 25348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo} 25448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 25589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# extract_image_cros <image.bin> <partitions_array> 25689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# 25748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Extract Chromium OS recovery images into new temporary files. 25889ff9e3221c358977f9c3124930ee6b559853740Alex Deymoextract_image_cros() { 25989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local image="$1" 26089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local partitions_array="$2" 26189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 26289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local kernel root 26389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo kernel=$(create_tempfile "kernel.bin.XXXXXX") 26489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo CLEANUP_FILES+=("${kernel}") 26589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo root=$(create_tempfile "root.bin.XXXXXX") 26689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo CLEANUP_FILES+=("${root}") 26789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 26889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo cros_generate_update_payload --extract \ 26989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --image "${image}" \ 27089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --kern_path "${kernel}" --root_path "${root}" \ 27189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --work_dir "${FLAGS_work_dir}" --outside_chroot 27289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 27348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # When generating legacy Chrome OS images, we need to use "boot" and "system" 27448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # for the partition names to be compatible with updating Brillo devices with 27548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Chrome OS images. 27648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval ${partitions_array}[boot]=\""${kernel}"\" 27748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval ${partitions_array}[system]=\""${root}"\" 27889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 27989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local part varname 28048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo for part in boot system; do 28189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo varname="${partitions_array}[${part}]" 28289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo printf "md5sum of %s: " "${varname}" 28389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo md5sum "${!varname}" 28489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo done 28589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo} 28689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 28748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# extract_image_brillo <target_files.zip> <partitions_array> 28848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# 28948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Extract the A/B updated partitions from a Brillo target_files zip file into 29048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# new temporary files. 29148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymoextract_image_brillo() { 29248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local image="$1" 29348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local partitions_array="$2" 29448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 29548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # TODO(deymo): Read the list of partitions from the metadata. We should 29648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # sanitize the list of partition names to be in [a-zA-Z0-9-]+. 29748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local partitions=( "boot" "system" ) 29848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 29948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${partitions_array}" == "SRC_PARTITIONS" ]]; then 300c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo ue_config=$(create_tempfile "ue_config.XXXXXX") 301c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo CLEANUP_FILES+=("${ue_config}") 302c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if ! unzip -p "${image}" "META/update_engine_config.txt" \ 303c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo >"${ue_config}"; then 304c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo warn "No update_engine_config.txt found. Assuming pre-release image, \ 305c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymousing payload minor version 2" 306c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 307c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo FORCE_MINOR_VERSION=$(read_option_uint "${ue_config}" \ 308c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo "PAYLOAD_MINOR_VERSION" 2) 30948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 31048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 31148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local part part_file temp_raw filesize 31248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo for part in "${partitions[@]}"; do 31348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo part_file=$(create_tempfile "${part}.img.XXXXXX") 31448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo CLEANUP_FILES+=("${part_file}") 31548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo unzip -p "${image}" "IMAGES/${part}.img" >"${part_file}" 31648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 31748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # If the partition is stored as an Android sparse image file, we need to 31848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # convert them to a raw image for the update. 31948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local magic=$(head --bytes=4 "${part_file}" | hexdump -e '1/1 "%.2x"') 32048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${magic}" == "3aff26ed" ]]; then 32148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo temp_raw=$(create_tempfile "${part}.raw.XXXXXX") 32248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo CLEANUP_FILES+=("${temp_raw}") 32348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Converting Android sparse image ${part}.img to RAW." 32448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo simg2img "${part_file}" "${temp_raw}" 32548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # At this point, we can drop the contents of the old part_file file, but 32648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # we can't delete the file because it will be deleted in cleanup. 32748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo true >"${part_file}" 32848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo part_file="${temp_raw}" 32948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 33048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 33148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # delta_generator only supports images multiple of 4 KiB, so we pad with 33248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # zeros if needed. 33348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo filesize=$(stat -c%s "${part_file}") 33448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ $(( filesize % 4096 )) -ne 0 ]]; then 33548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Rounding up partition ${part}.img to multiple of 4 KiB." 33648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo : $(( filesize = (filesize + 4095) & -4096 )) 33748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo truncate --size="${filesize}" "${part_file}" 33848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 33948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 34048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval "${partitions_array}[\"${part}\"]=\"${part_file}\"" 34148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Extracted ${partitions_array}[${part}]: ${filesize} bytes" 34248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo done 34348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo} 34448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 345be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_generate() { 346be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload}" ]] || 347be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify an output filename with --payload FILENAME" 348be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 349be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_target_image}" ]] || 350be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify a target image with --target_image FILENAME" 351be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 352be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 353be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_generate() { 35489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local payload_type="delta" 355be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -z "${FLAGS_source_image}" ]]; then 35689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo payload_type="full" 357be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 358be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 35948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Extracting images for ${payload_type} update." 360be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 36148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image "${FLAGS_target_image}" DST_PARTITIONS 36289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo if [[ "${payload_type}" == "delta" ]]; then 36348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image "${FLAGS_source_image}" SRC_PARTITIONS 364be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 365be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 36648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Generating ${payload_type} update." 367be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma GENERATOR_ARGS=( 368be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Common payload args: 369be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_file="${FLAGS_payload}" 370be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Target image args: 37189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo # TODO(deymo): Pass the list of partitions to the generator. 37248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -new_image="${DST_PARTITIONS[system]}" 37348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -new_kernel="${DST_PARTITIONS[boot]}" 374be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ) 375be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 37689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo if [[ "${payload_type}" == "delta" ]]; then 377be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma GENERATOR_ARGS+=( 378be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Source image args: 37948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -old_image="${SRC_PARTITIONS[system]}" 38048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -old_kernel="${SRC_PARTITIONS[boot]}" 381be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ) 38248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ -n "${FORCE_MINOR_VERSION}" ]]; then 38348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo GENERATOR_ARGS+=( --minor_version="${FORCE_MINOR_VERSION}" ) 38448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 38548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 38648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 38748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ -n "${FORCE_MAJOR_VERSION}" ]]; then 38848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo GENERATOR_ARGS+=( --major_version="${FORCE_MAJOR_VERSION}" ) 389be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 390be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 3919a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma if [[ -n "${FLAGS_metadata_size_file}" ]]; then 3929a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma GENERATOR_ARGS+=( --out_metadata_size_file="${FLAGS_metadata_size_file}" ) 3939a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma fi 3949a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma 395be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Running delta_generator with args: ${GENERATOR_ARGS[@]}" 3969a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma "${GENERATOR}" "${GENERATOR_ARGS[@]}" 397be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 39889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo echo "Done generating ${payload_type} update." 399be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 400be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 401be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_hash() { 402be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_signature_size}" ]] || 403be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify signature size with --signature_size SIZES" 404be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 405be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_unsigned_payload}" ]] || 406be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the input unsigned payload with \ 407be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--unsigned_payload FILENAME" 408be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 409be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_metadata_hash_file}" ]] || 410be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload_hash_file}" ]] || 411be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify --metadata_hash_file FILENAME \ 412be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaor --payload_hash_file FILENAME" 413be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 414be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 415be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_hash() { 416be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${FLAGS_metadata_hash_file}" ]]; then 417be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma "${GENERATOR}" \ 418be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -in_file="${FLAGS_unsigned_payload}" \ 419be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -signature_size="${FLAGS_signature_size}" \ 420be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_metadata_hash_file="${FLAGS_metadata_hash_file}" 421be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 422be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 423be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${FLAGS_payload_hash_file}" ]]; then 424be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma "${GENERATOR}" \ 425be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -in_file="${FLAGS_unsigned_payload}" \ 426be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -signature_size="${FLAGS_signature_size}" \ 427be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_hash_file="${FLAGS_payload_hash_file}" 428be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 429be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Done generating hash." 430be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 431be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 432be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_sign() { 433be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_signature_size}" ]] || 434be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify signature size with --signature_size SIZES" 435be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 436be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_unsigned_payload}" ]] || 437be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the input unsigned payload with \ 438be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--unsigned_payload FILENAME" 439be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 440be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload}" ]] || 441be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the output signed payload with \ 442be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--payload FILENAME" 443be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 444be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload_signature_file}" ]] || 445be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the payload signature file with \ 446be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--payload_signature_file SIGNATURES" 44789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 44889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo [[ -n "${FLAGS_metadata_signature_file}" ]] || 44989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo die "Error: you must specify the metadata signature file with \ 45089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo--metadata_signature_file SIGNATURES" 451be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 452be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 453be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_sign() { 4549a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma GENERATOR_ARGS=( 4559a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -in_file="${FLAGS_unsigned_payload}" 4569a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -signature_size="${FLAGS_signature_size}" 4579a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -signature_file="${FLAGS_payload_signature_file}" 4589a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -metadata_signature_file="${FLAGS_metadata_signature_file}" 4599a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma -out_file="${FLAGS_payload}" 4609a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma ) 4619a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma 4629a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma if [[ -n "${FLAGS_metadata_size_file}" ]]; then 4639a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma GENERATOR_ARGS+=( --out_metadata_size_file="${FLAGS_metadata_size_file}" ) 4649a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma fi 4659a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma 4669a4cae24e671face0c8786ff87e9d3de405cf4c8Jason Kusuma "${GENERATOR}" "${GENERATOR_ARGS[@]}" 467be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Done signing payload." 468be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 469be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 470be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# TODO: Extract the input zip files once the format is finalized 471be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 472be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Sanity check that the real generator exists: 473be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaGENERATOR="$(which delta_generator)" 474be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma[[ -x "${GENERATOR}" ]] || die "can't find delta_generator" 475be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 476be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacase "$COMMAND" in 477be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma generate) validate_generate 478be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_generate 479be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 480be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma hash) validate_hash 481be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_hash 482be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 483be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma sign) validate_sign 484be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_sign 485be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 486be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaesac 487