brillo_update_payload revision c64ffd591d1f4f4f7bacce0670bc0fce70830f36
1be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma#!/bin/bash 2be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 3be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Copyright 2015 The Chromium OS Authors. All rights reserved. 4be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Use of this source code is governed by a BSD-style license that can be 5be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# found in the LICENSE file. 6be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 7be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Script to generate a Brillo update for use by the update engine. 8be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 9be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# usage: brillo_update_payload COMMAND [ARGS] 10be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# The following commands are supported: 11be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# generate generate an unsigned payload 12be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# hash generate a payload or metadata hash 13be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# sign generate a signed payload 14be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 15be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Generate command arguments: 16be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --payload generated unsigned payload output file 17be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --source_image if defined, generate a delta payload from the specified 18be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# image to the target_image 19be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --target_image the target image that should be sent to clients 20be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 21be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Hash command arguments: 22be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --unsigned_payload the input unsigned payload to generate the hash from 23be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --signature_size signature sizes in bytes in the following format: 2489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "size1:size2[:...]" 25be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --payload_hash_file if defined, generate a payload hash and output to the 26be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# specified file 27be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# --metadata_hash_file if defined, generate a metadata hash and output to the 28be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# specified file 29be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# 30be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Sign command arguments: 3189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --unsigned_payload the input unsigned payload to insert the signatures 3289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --payload the output signed payload 3389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --signature_size signature sizes in bytes in the following format: 3489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "size1:size2[:...]" 3589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --payload_signature_file the payload signature files in the following 3689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# format: 3789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "payload_signature1:payload_signature2[:...]" 3889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# --metadata_signature_file the metadata signature files in the following 3989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# format: 4089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# "metadata_signature1:metadata_signature2[:...]" 41be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Note that the number of signature sizes and payload signatures have to match. 42be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 43be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Load common CrOS utilities. Inside the chroot this file is installed in 44be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# /usr/lib/crosutils. This script may also be called from a zipfile, in which 45be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# case common.sh will be in the current directory. 46be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumafind_common_sh() { 47be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local thisdir="$(dirname "$(readlink -f "$0")")" 48be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local common_paths=(/usr/lib/crosutils "${thisdir}") 49be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local path 50be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 51be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma SCRIPT_ROOT="${common_paths[0]}" 52be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma for path in "${common_paths[@]}"; do 53be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -r "${path}/common.sh" ]]; then 54be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma SCRIPT_ROOT="${path}" 55be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma break 56be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 57be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma done 58be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 59be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # We have to fake GCLIENT_ROOT in case we're running inside 60be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # au_zip enviroment. GCLIENT_ROOT detection became fatal. 61be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ "${SCRIPT_ROOT}" == "${thisdir}" ]] && export GCLIENT_ROOT="." 62be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 63be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 64be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumafind_common_sh 65be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma. "${SCRIPT_ROOT}/common.sh" || exit 1 66be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 67c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_GENERATE="generate: Generate an unsigned update payload." 68c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_HASH="hash: Generate the hashes of the unsigned payload and metadata used \ 69c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofor signing." 70c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoHELP_SIGN="sign: Insert the signatures into the unsigned payload." 71c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 72c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymousage() { 73c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Supported commands:" 74c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo 75c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_GENERATE}" 76c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_HASH}" 77c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "${HELP_SIGN}" 78c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo 79c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Use: \"$0 <command> --help\" for more options." 80c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo} 81c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 82c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo# Check that a command is specified. 83be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaif [[ $# -lt 1 ]]; then 84be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Please specify a command [generate|hash|sign]" 85be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma exit 1 86be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumafi 87be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 88c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo# Parse command. 89c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoCOMMAND="${1:-}" 90c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoshift 91c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 92c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymocase "${COMMAND}" in 93c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo generate) 94c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_GENERATE}" 95c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo ;; 96c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 97c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo hash) 98c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_HASH}" 99c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo ;; 100c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 101c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo sign) 102c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo FLAGS_HELP="${HELP_SIGN}" 103be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 104be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma *) 105c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo echo "Unrecognized command: \"${COMMAND}\"" >&2 106c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo usage >&2 107be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma exit 1 108be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 109be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaesac 110be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 111be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Flags 112c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex DeymoFLAGS_HELP="Usage: $0 ${COMMAND} [flags] 113c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo${FLAGS_HELP}" 114c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo 115c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "generate" ]]; then 116c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload "" \ 117c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to output the generated unsigned payload file." 118c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string target_image "" \ 119c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to the target image that should be sent to clients." 120c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string source_image "" \ 121c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to a source image. If specified, this makes a delta update." 122c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 123c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "hash" || "${COMMAND}" == "sign" ]]; then 124c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string unsigned_payload "" "Path to the input unsigned payload." 125c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string signature_size "" \ 126c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Signature sizes in bytes in the following format: size1:size2[:...]" 127c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 128c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "hash" ]]; then 129c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string metadata_hash_file "" \ 130c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to output metadata hash file." 131c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload_hash_file "" \ 132c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Optional: Path to output payload hash file." 133c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 134c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymoif [[ "${COMMAND}" == "sign" ]]; then 135c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload "" \ 136c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "Path to output the generated unsigned payload file." 137c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string metadata_signature_file "" \ 138c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "The metatada signatures in the following format: \ 139c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymometadata_signature1:metadata_signature2[:...]" 140c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo DEFINE_string payload_signature_file "" \ 141c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymo "The payload signatures in the following format: \ 142c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymopayload_signature1:payload_signature2[:...]" 143c64ffd591d1f4f4f7bacce0670bc0fce70830f36Alex Deymofi 144be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaDEFINE_string work_dir "/tmp" "Where to dump temporary files." 145be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 146be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Parse command line flag arguments 147be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaFLAGS "$@" || exit 1 148be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaeval set -- "${FLAGS_ARGV}" 14989ff9e3221c358977f9c3124930ee6b559853740Alex Deymoset -e 150be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 15189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Associative arrays from partition name to file in the source and target 15289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# images. The size of the updated area must be the size of the file. 15389ff9e3221c358977f9c3124930ee6b559853740Alex Deymodeclare -A SRC_PARTITIONS 15489ff9e3221c358977f9c3124930ee6b559853740Alex Deymodeclare -A DST_PARTITIONS 15589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 15689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# A list of temporary files to remove during cleanup. 15789ff9e3221c358977f9c3124930ee6b559853740Alex DeymoCLEANUP_FILES=() 15889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 15948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Global options to force the version of the payload. 16048b502ab0cd56bf948602a45b990448f51e3e6b5Alex DeymoFORCE_MAJOR_VERSION="" 16148b502ab0cd56bf948602a45b990448f51e3e6b5Alex DeymoFORCE_MINOR_VERSION="" 16248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 163c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# read_option_int <file.txt> <option_key> [default_value] 164c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# 165c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# Reads the unsigned integer value associated with |option_key| in a key=value 166c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# file |file.txt|. Prints the read value if found and valid, otherwise prints 167c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo# the |default_value|. 168c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymoread_option_uint() { 169c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local file_txt="$1" 170c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local option_key="$2" 171c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local default_value="${3:-}" 172c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo local value 173c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if value=$(look "${option_key}=" "${file_txt}" | tail -n 1); then 174c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if value=$(echo "${value}" | cut -f 2- -d "=" | grep -E "^[0-9]+$"); then 175c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo echo "${value}" 176c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo return 177c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 178c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 179c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo echo "${default_value}" 180c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo} 181c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo 18289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Create a temporary file in the work_dir with an optional pattern name. 18389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# Prints the name of the newly created file. 18489ff9e3221c358977f9c3124930ee6b559853740Alex Deymocreate_tempfile() { 18589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local pattern="${1:-tempfile.XXXXXX}" 18689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo mktemp --tmpdir="${FLAGS_work_dir}" "${pattern}" 18789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo} 188be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 189be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup() { 190be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma local err="" 19189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo rm -f "${CLEANUP_FILES[@]}" || err=1 192be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 193be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # If we are cleaning up after an error, or if we got an error during 194be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # cleanup (even if we eventually succeeded) return a non-zero exit 195be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # code. This triggers additional logging in most environments that call 196be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # this script. 197be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${err}" ]]; then 198be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Cleanup encountered an error." 199be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 200be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 201be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 202be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup_on_error() { 203be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma trap - INT TERM ERR EXIT 204be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cleanup 205be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Cleanup success after an error." 206be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 207be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 208be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacleanup_on_exit() { 209be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma trap - INT TERM ERR EXIT 210be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cleanup 211be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 212be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 213be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumatrap cleanup_on_error INT TERM ERR 214be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumatrap cleanup_on_exit EXIT 215be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 21648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 21748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# extract_image <image> <partitions_array> 21848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# 21948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Detect the format of the |image| file and extract its updatable partitions 22048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# into new temporary files. Add the list of partition names and its files to the 22148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# associative array passed in |partitions_array|. 22248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymoextract_image() { 22348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local image="$1" 22448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 22548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Brillo images are zip files. We detect the 4-byte magic header of the zip 22648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # file. 22748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local magic=$(head --bytes=4 "${image}" | hexdump -e '1/1 "%.2x"') 22848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${magic}" == "504b0304" ]]; then 22948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Detected .zip file, extracting Brillo image." 23048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image_brillo "$@" 23148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo return 23248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 23348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 23448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Chrome OS images are GPT partitioned disks. We should have the cgpt binary 23548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # bundled here and we will use it to extract the partitions, so the GPT 23648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # headers must be valid. 23748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if cgpt show -q -n "${image}" >/dev/null; then 23848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Detected GPT image, extracting Chrome OS image." 23948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image_cros "$@" 24048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo return 24148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 24248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 24348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo die "Couldn't detect the image format of ${image}" 24448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo} 24548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 24689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# extract_image_cros <image.bin> <partitions_array> 24789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo# 24848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Extract Chromium OS recovery images into new temporary files. 24989ff9e3221c358977f9c3124930ee6b559853740Alex Deymoextract_image_cros() { 25089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local image="$1" 25189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local partitions_array="$2" 25289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 25389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local kernel root 25489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo kernel=$(create_tempfile "kernel.bin.XXXXXX") 25589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo CLEANUP_FILES+=("${kernel}") 25689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo root=$(create_tempfile "root.bin.XXXXXX") 25789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo CLEANUP_FILES+=("${root}") 25889ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 25989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo cros_generate_update_payload --extract \ 26089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --image "${image}" \ 26189ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --kern_path "${kernel}" --root_path "${root}" \ 26289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo --work_dir "${FLAGS_work_dir}" --outside_chroot 26389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 26448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # When generating legacy Chrome OS images, we need to use "boot" and "system" 26548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # for the partition names to be compatible with updating Brillo devices with 26648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # Chrome OS images. 26748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval ${partitions_array}[boot]=\""${kernel}"\" 26848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval ${partitions_array}[system]=\""${root}"\" 26989ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 27089ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local part varname 27148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo for part in boot system; do 27289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo varname="${partitions_array}[${part}]" 27389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo printf "md5sum of %s: " "${varname}" 27489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo md5sum "${!varname}" 27589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo done 27689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo} 27789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 27848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# extract_image_brillo <target_files.zip> <partitions_array> 27948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# 28048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# Extract the A/B updated partitions from a Brillo target_files zip file into 28148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo# new temporary files. 28248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymoextract_image_brillo() { 28348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local image="$1" 28448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local partitions_array="$2" 28548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 28648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # TODO(deymo): Read the list of partitions from the metadata. We should 28748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # sanitize the list of partition names to be in [a-zA-Z0-9-]+. 28848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local partitions=( "boot" "system" ) 28948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 29048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${partitions_array}" == "SRC_PARTITIONS" ]]; then 291c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo ue_config=$(create_tempfile "ue_config.XXXXXX") 292c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo CLEANUP_FILES+=("${ue_config}") 293c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo if ! unzip -p "${image}" "META/update_engine_config.txt" \ 294c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo >"${ue_config}"; then 295c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo warn "No update_engine_config.txt found. Assuming pre-release image, \ 296c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymousing payload minor version 2" 297c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo fi 298c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo FORCE_MINOR_VERSION=$(read_option_uint "${ue_config}" \ 299c97df43fdc7c4fcfe06a76274f43211e6aa9255cAlex Deymo "PAYLOAD_MINOR_VERSION" 2) 30048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 30148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 30248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local part part_file temp_raw filesize 30348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo for part in "${partitions[@]}"; do 30448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo part_file=$(create_tempfile "${part}.img.XXXXXX") 30548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo CLEANUP_FILES+=("${part_file}") 30648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo unzip -p "${image}" "IMAGES/${part}.img" >"${part_file}" 30748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 30848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # If the partition is stored as an Android sparse image file, we need to 30948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # convert them to a raw image for the update. 31048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo local magic=$(head --bytes=4 "${part_file}" | hexdump -e '1/1 "%.2x"') 31148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ "${magic}" == "3aff26ed" ]]; then 31248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo temp_raw=$(create_tempfile "${part}.raw.XXXXXX") 31348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo CLEANUP_FILES+=("${temp_raw}") 31448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Converting Android sparse image ${part}.img to RAW." 31548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo simg2img "${part_file}" "${temp_raw}" 31648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # At this point, we can drop the contents of the old part_file file, but 31748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # we can't delete the file because it will be deleted in cleanup. 31848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo true >"${part_file}" 31948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo part_file="${temp_raw}" 32048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 32148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 32248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # delta_generator only supports images multiple of 4 KiB, so we pad with 32348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo # zeros if needed. 32448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo filesize=$(stat -c%s "${part_file}") 32548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ $(( filesize % 4096 )) -ne 0 ]]; then 32648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Rounding up partition ${part}.img to multiple of 4 KiB." 32748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo : $(( filesize = (filesize + 4095) & -4096 )) 32848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo truncate --size="${filesize}" "${part_file}" 32948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 33048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 33148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo eval "${partitions_array}[\"${part}\"]=\"${part_file}\"" 33248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Extracted ${partitions_array}[${part}]: ${filesize} bytes" 33348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo done 33448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo} 33548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 336be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_generate() { 337be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload}" ]] || 338be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify an output filename with --payload FILENAME" 339be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 340be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_target_image}" ]] || 341be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify a target image with --target_image FILENAME" 342be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 343be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 344be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_generate() { 34589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo local payload_type="delta" 346be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -z "${FLAGS_source_image}" ]]; then 34789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo payload_type="full" 348be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 349be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 35048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Extracting images for ${payload_type} update." 351be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 35248b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image "${FLAGS_target_image}" DST_PARTITIONS 35389ff9e3221c358977f9c3124930ee6b559853740Alex Deymo if [[ "${payload_type}" == "delta" ]]; then 35448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo extract_image "${FLAGS_source_image}" SRC_PARTITIONS 355be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 356be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 35748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo echo "Generating ${payload_type} update." 358be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma GENERATOR_ARGS=( 359be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Common payload args: 360be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_file="${FLAGS_payload}" 361be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Target image args: 36289ff9e3221c358977f9c3124930ee6b559853740Alex Deymo # TODO(deymo): Pass the list of partitions to the generator. 36348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -new_image="${DST_PARTITIONS[system]}" 36448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -new_kernel="${DST_PARTITIONS[boot]}" 365be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ) 366be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 36789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo if [[ "${payload_type}" == "delta" ]]; then 368be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma GENERATOR_ARGS+=( 369be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma # Source image args: 37048b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -old_image="${SRC_PARTITIONS[system]}" 37148b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo -old_kernel="${SRC_PARTITIONS[boot]}" 372be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ) 37348b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ -n "${FORCE_MINOR_VERSION}" ]]; then 37448b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo GENERATOR_ARGS+=( --minor_version="${FORCE_MINOR_VERSION}" ) 37548b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 37648b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo fi 37748b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo 37848b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo if [[ -n "${FORCE_MAJOR_VERSION}" ]]; then 37948b502ab0cd56bf948602a45b990448f51e3e6b5Alex Deymo GENERATOR_ARGS+=( --major_version="${FORCE_MAJOR_VERSION}" ) 380be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 381be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 382be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Running delta_generator with args: ${GENERATOR_ARGS[@]}" 383be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma "${GENERATOR}" "${GENERATOR_ARGS[@]}" 384be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 38589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo echo "Done generating ${payload_type} update." 386be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 387be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 388be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_hash() { 389be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_signature_size}" ]] || 390be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify signature size with --signature_size SIZES" 391be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 392be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_unsigned_payload}" ]] || 393be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the input unsigned payload with \ 394be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--unsigned_payload FILENAME" 395be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 396be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_metadata_hash_file}" ]] || 397be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload_hash_file}" ]] || 398be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify --metadata_hash_file FILENAME \ 399be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaor --payload_hash_file FILENAME" 400be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 401be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 402be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_hash() { 403be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${FLAGS_metadata_hash_file}" ]]; then 404be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma "${GENERATOR}" \ 405be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -in_file="${FLAGS_unsigned_payload}" \ 406be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -signature_size="${FLAGS_signature_size}" \ 407be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_metadata_hash_file="${FLAGS_metadata_hash_file}" 408be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 409be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 410be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma if [[ -n "${FLAGS_payload_hash_file}" ]]; then 411be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma "${GENERATOR}" \ 412be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -in_file="${FLAGS_unsigned_payload}" \ 413be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -signature_size="${FLAGS_signature_size}" \ 414be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_hash_file="${FLAGS_payload_hash_file}" 415be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma fi 416be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Done generating hash." 417be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 418be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 419be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumavalidate_sign() { 420be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_signature_size}" ]] || 421be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify signature size with --signature_size SIZES" 422be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 423be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_unsigned_payload}" ]] || 424be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the input unsigned payload with \ 425be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--unsigned_payload FILENAME" 426be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 427be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload}" ]] || 428be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the output signed payload with \ 429be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--payload FILENAME" 430be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 431be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma [[ -n "${FLAGS_payload_signature_file}" ]] || 432be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma die "Error: you must specify the payload signature file with \ 433be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma--payload_signature_file SIGNATURES" 43489ff9e3221c358977f9c3124930ee6b559853740Alex Deymo 43589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo [[ -n "${FLAGS_metadata_signature_file}" ]] || 43689ff9e3221c358977f9c3124930ee6b559853740Alex Deymo die "Error: you must specify the metadata signature file with \ 43789ff9e3221c358977f9c3124930ee6b559853740Alex Deymo--metadata_signature_file SIGNATURES" 438be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 439be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 440be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacmd_sign() { 441be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma "${GENERATOR}" \ 442be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -in_file="${FLAGS_unsigned_payload}" \ 443be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -signature_size="${FLAGS_signature_size}" \ 444be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -signature_file="${FLAGS_payload_signature_file}" \ 44589ff9e3221c358977f9c3124930ee6b559853740Alex Deymo -metadata_signature_file="${FLAGS_metadata_signature_file}" \ 446be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma -out_file="${FLAGS_payload}" 447be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma echo "Done signing payload." 448be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma} 449be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 450be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# TODO: Extract the input zip files once the format is finalized 451be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 452be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma# Sanity check that the real generator exists: 453be998f47ccb02c5f118f73e79729e9187c39e919Jason KusumaGENERATOR="$(which delta_generator)" 454be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma[[ -x "${GENERATOR}" ]] || die "can't find delta_generator" 455be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma 456be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumacase "$COMMAND" in 457be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma generate) validate_generate 458be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_generate 459be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 460be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma hash) validate_hash 461be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_hash 462be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 463be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma sign) validate_sign 464be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma cmd_sign 465be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusuma ;; 466be998f47ccb02c5f118f73e79729e9187c39e919Jason Kusumaesac 467