blob: 2c1e04908483358ad8beba3968497b8cb5ee471c [file] [log] [blame]
Fabio Utzige89841d2018-12-21 11:19:06 -02001#! /usr/bin/env python3
2#
3# Copyright 2017 Linaro Limited
David Vinczeda8c9192019-03-26 17:17:41 +01004# Copyright 2019 Arm Limited
Fabio Utzige89841d2018-12-21 11:19:06 -02005#
6# Licensed under the Apache License, Version 2.0 (the "License");
7# you may not use this file except in compliance with the License.
8# You may obtain a copy of the License at
9#
10# http://www.apache.org/licenses/LICENSE-2.0
11#
12# Unless required by applicable law or agreed to in writing, software
13# distributed under the License is distributed on an "AS IS" BASIS,
14# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15# See the License for the specific language governing permissions and
16# limitations under the License.
17
David Vinczeda8c9192019-03-26 17:17:41 +010018import re
Fabio Utzige89841d2018-12-21 11:19:06 -020019import click
20import getpass
21import imgtool.keys as keys
Fabio Utzig4a5477a2019-05-27 15:45:08 -030022import sys
Fabio Utzig25c6a152019-09-10 12:52:26 -030023from imgtool import image, imgtool_version
Fabio Utzige89841d2018-12-21 11:19:06 -020024from imgtool.version import decode_version
25
26
27def gen_rsa2048(keyfile, passwd):
Fabio Utzig19fd79a2019-05-08 18:20:39 -030028 keys.RSA.generate().export_private(path=keyfile, passwd=passwd)
29
30
31def gen_rsa3072(keyfile, passwd):
32 keys.RSA.generate(key_size=3072).export_private(path=keyfile,
33 passwd=passwd)
Fabio Utzige89841d2018-12-21 11:19:06 -020034
35
36def gen_ecdsa_p256(keyfile, passwd):
37 keys.ECDSA256P1.generate().export_private(keyfile, passwd=passwd)
38
39
40def gen_ecdsa_p224(keyfile, passwd):
41 print("TODO: p-224 not yet implemented")
42
43
Fabio Utzig8101d1f2019-05-09 15:03:22 -030044def gen_ed25519(keyfile, passwd):
Fabio Utzig4bd4c7c2019-06-27 08:23:21 -030045 keys.Ed25519.generate().export_private(path=keyfile, passwd=passwd)
Fabio Utzig8101d1f2019-05-09 15:03:22 -030046
47
Fabio Utzige89841d2018-12-21 11:19:06 -020048valid_langs = ['c', 'rust']
49keygens = {
50 'rsa-2048': gen_rsa2048,
Fabio Utzig19fd79a2019-05-08 18:20:39 -030051 'rsa-3072': gen_rsa3072,
Fabio Utzige89841d2018-12-21 11:19:06 -020052 'ecdsa-p256': gen_ecdsa_p256,
53 'ecdsa-p224': gen_ecdsa_p224,
Fabio Utzig8101d1f2019-05-09 15:03:22 -030054 'ed25519': gen_ed25519,
Fabio Utzige89841d2018-12-21 11:19:06 -020055}
56
57
58def load_key(keyfile):
59 # TODO: better handling of invalid pass-phrase
60 key = keys.load(keyfile)
61 if key is not None:
62 return key
63 passwd = getpass.getpass("Enter key passphrase: ").encode('utf-8')
64 return keys.load(keyfile, passwd)
65
66
67def get_password():
68 while True:
69 passwd = getpass.getpass("Enter key passphrase: ")
70 passwd2 = getpass.getpass("Reenter passphrase: ")
71 if passwd == passwd2:
72 break
73 print("Passwords do not match, try again")
74
75 # Password must be bytes, always use UTF-8 for consistent
76 # encoding.
77 return passwd.encode('utf-8')
78
79
80@click.option('-p', '--password', is_flag=True,
81 help='Prompt for password to protect key')
82@click.option('-t', '--type', metavar='type', required=True,
Fabio Utzig7ca28552019-12-13 11:24:20 -030083 type=click.Choice(keygens.keys()), prompt=True,
84 help='{}'.format('One of: {}'.format(', '.join(keygens.keys()))))
Fabio Utzige89841d2018-12-21 11:19:06 -020085@click.option('-k', '--key', metavar='filename', required=True)
86@click.command(help='Generate pub/private keypair')
87def keygen(type, key, password):
88 password = get_password() if password else None
89 keygens[type](key, password)
90
91
92@click.option('-l', '--lang', metavar='lang', default=valid_langs[0],
93 type=click.Choice(valid_langs))
94@click.option('-k', '--key', metavar='filename', required=True)
95@click.command(help='Get public key from keypair')
96def getpub(key, lang):
97 key = load_key(key)
98 if key is None:
99 print("Invalid passphrase")
100 elif lang == 'c':
101 key.emit_c()
102 elif lang == 'rust':
103 key.emit_rust()
104 else:
105 raise ValueError("BUG: should never get here!")
106
107
Fabio Utzig4a5477a2019-05-27 15:45:08 -0300108@click.argument('imgfile')
109@click.option('-k', '--key', metavar='filename')
110@click.command(help="Check that signed image can be verified by given key")
111def verify(key, imgfile):
112 key = load_key(key) if key else None
Marek Pietae9555102019-08-08 16:08:16 +0200113 ret, version = image.Image.verify(imgfile, key)
Fabio Utzig4a5477a2019-05-27 15:45:08 -0300114 if ret == image.VerifyResult.OK:
115 print("Image was correctly validated")
Marek Pietae9555102019-08-08 16:08:16 +0200116 print("Image version: {}.{}.{}+{}".format(*version))
Fabio Utzig4a5477a2019-05-27 15:45:08 -0300117 return
118 elif ret == image.VerifyResult.INVALID_MAGIC:
119 print("Invalid image magic; is this an MCUboot image?")
Christian Skubichf13db122019-07-31 11:34:15 +0200120 elif ret == image.VerifyResult.INVALID_TLV_INFO_MAGIC:
Fabio Utzig4a5477a2019-05-27 15:45:08 -0300121 print("Invalid TLV info magic; is this an MCUboot image?")
122 elif ret == image.VerifyResult.INVALID_HASH:
123 print("Image has an invalid sha256 digest")
124 elif ret == image.VerifyResult.INVALID_SIGNATURE:
125 print("No signature found for the given key")
Christian Skubichf13db122019-07-31 11:34:15 +0200126 else:
127 print("Unknown return code: {}".format(ret))
Fabio Utzig4a5477a2019-05-27 15:45:08 -0300128 sys.exit(1)
129
130
Fabio Utzige89841d2018-12-21 11:19:06 -0200131def validate_version(ctx, param, value):
132 try:
133 decode_version(value)
134 return value
135 except ValueError as e:
136 raise click.BadParameter("{}".format(e))
137
138
139def validate_header_size(ctx, param, value):
140 min_hdr_size = image.IMAGE_HEADER_SIZE
141 if value < min_hdr_size:
142 raise click.BadParameter(
143 "Minimum value for -H/--header-size is {}".format(min_hdr_size))
144 return value
145
146
David Vinczeda8c9192019-03-26 17:17:41 +0100147def get_dependencies(ctx, param, value):
148 if value is not None:
149 versions = []
150 images = re.findall(r"\((\d+)", value)
151 if len(images) == 0:
152 raise click.BadParameter(
153 "Image dependency format is invalid: {}".format(value))
154 raw_versions = re.findall(r",\s*([0-9.+]+)\)", value)
155 if len(images) != len(raw_versions):
156 raise click.BadParameter(
157 '''There's a mismatch between the number of dependency images
158 and versions in: {}'''.format(value))
159 for raw_version in raw_versions:
160 try:
161 versions.append(decode_version(raw_version))
162 except ValueError as e:
163 raise click.BadParameter("{}".format(e))
164 dependencies = dict()
165 dependencies[image.DEP_IMAGES_KEY] = images
166 dependencies[image.DEP_VERSIONS_KEY] = versions
167 return dependencies
168
169
Fabio Utzige89841d2018-12-21 11:19:06 -0200170class BasedIntParamType(click.ParamType):
171 name = 'integer'
172
173 def convert(self, value, param, ctx):
174 try:
175 if value[:2].lower() == '0x':
176 return int(value[2:], 16)
177 elif value[:1] == '0':
178 return int(value, 8)
179 return int(value, 10)
180 except ValueError:
181 self.fail('%s is not a valid integer' % value, param, ctx)
182
183
184@click.argument('outfile')
185@click.argument('infile')
Fabio Utzig9117fde2019-10-17 11:11:46 -0300186@click.option('-R', '--erased-val', type=click.Choice(['0', '0xff']),
187 required=False,
188 help='The value that is read back from erased flash.')
Fabio Utzigedbabcf2019-10-11 13:03:37 -0300189@click.option('-x', '--hex-addr', type=BasedIntParamType(), required=False,
190 help='Adjust address in hex output file.')
Håkon Øye Amundsendf8c8912019-08-26 12:15:28 +0000191@click.option('-L', '--load-addr', type=BasedIntParamType(), required=False,
192 help='Load address for image when it is in its primary slot.')
Fabio Utzige89841d2018-12-21 11:19:06 -0200193@click.option('-E', '--encrypt', metavar='filename',
194 help='Encrypt image using the provided public key')
195@click.option('-e', '--endian', type=click.Choice(['little', 'big']),
196 default='little', help="Select little or big endian")
197@click.option('--overwrite-only', default=False, is_flag=True,
198 help='Use overwrite-only instead of swap upgrades')
199@click.option('-M', '--max-sectors', type=int,
200 help='When padding allow for this amount of sectors (defaults to 128)')
201@click.option('--pad', default=False, is_flag=True,
202 help='Pad image to --slot-size bytes, adding trailer magic')
203@click.option('-S', '--slot-size', type=BasedIntParamType(), required=True,
204 help='Size of the slot where the image will be written')
205@click.option('--pad-header', default=False, is_flag=True,
206 help='Add --header-size zeroed bytes at the beginning of the image')
207@click.option('-H', '--header-size', callback=validate_header_size,
208 type=BasedIntParamType(), required=True)
David Vinczeda8c9192019-03-26 17:17:41 +0100209@click.option('-d', '--dependencies', callback=get_dependencies,
210 required=False, help='''Add dependence on another image, format:
211 "(<image_ID>,<image_version>), ... "''')
Fabio Utzige89841d2018-12-21 11:19:06 -0200212@click.option('-v', '--version', callback=validate_version, required=True)
213@click.option('--align', type=click.Choice(['1', '2', '4', '8']),
214 required=True)
215@click.option('-k', '--key', metavar='filename')
Fabio Utzig7c00acd2019-01-07 09:54:20 -0200216@click.command(help='''Create a signed or unsigned image\n
217 INFILE and OUTFILE are parsed as Intel HEX if the params have
Håkon Øye Amundsendf8c8912019-08-26 12:15:28 +0000218 .hex extension, otherwise binary format is used''')
Fabio Utzige89841d2018-12-21 11:19:06 -0200219def sign(key, align, version, header_size, pad_header, slot_size, pad,
David Vinczeda8c9192019-03-26 17:17:41 +0100220 max_sectors, overwrite_only, endian, encrypt, infile, outfile,
Fabio Utzig9117fde2019-10-17 11:11:46 -0300221 dependencies, load_addr, hex_addr, erased_val):
Fabio Utzig7c00acd2019-01-07 09:54:20 -0200222 img = image.Image(version=decode_version(version), header_size=header_size,
223 pad_header=pad_header, pad=pad, align=int(align),
224 slot_size=slot_size, max_sectors=max_sectors,
Fabio Utzig4f0ea742019-09-10 12:53:18 -0300225 overwrite_only=overwrite_only, endian=endian,
Fabio Utzig9117fde2019-10-17 11:11:46 -0300226 load_addr=load_addr, erased_val=erased_val)
Fabio Utzig7c00acd2019-01-07 09:54:20 -0200227 img.load(infile)
Fabio Utzige89841d2018-12-21 11:19:06 -0200228 key = load_key(key) if key else None
229 enckey = load_key(encrypt) if encrypt else None
Fabio Utzig7a3b2602019-10-22 09:56:44 -0300230 if enckey and key:
231 if ((isinstance(key, keys.ECDSA256P1) and
232 not isinstance(enckey, keys.ECDSA256P1Public))
233 or (isinstance(key, keys.RSA) and
234 not isinstance(enckey, keys.RSAPublic))):
235 # FIXME
236 raise Exception("Signing and encryption must use the same type of key")
David Vinczeda8c9192019-03-26 17:17:41 +0100237 img.create(key, enckey, dependencies)
Fabio Utzigedbabcf2019-10-11 13:03:37 -0300238 img.save(outfile, hex_addr)
Fabio Utzige89841d2018-12-21 11:19:06 -0200239
240
241class AliasesGroup(click.Group):
242
243 _aliases = {
244 "create": "sign",
245 }
246
247 def list_commands(self, ctx):
248 cmds = [k for k in self.commands]
249 aliases = [k for k in self._aliases]
250 return sorted(cmds + aliases)
251
252 def get_command(self, ctx, cmd_name):
253 rv = click.Group.get_command(self, ctx, cmd_name)
254 if rv is not None:
255 return rv
256 if cmd_name in self._aliases:
257 return click.Group.get_command(self, ctx, self._aliases[cmd_name])
258 return None
259
260
Fabio Utzig25c6a152019-09-10 12:52:26 -0300261@click.command(help='Print imgtool version information')
262def version():
263 print(imgtool_version)
264
265
Fabio Utzige89841d2018-12-21 11:19:06 -0200266@click.command(cls=AliasesGroup,
267 context_settings=dict(help_option_names=['-h', '--help']))
268def imgtool():
269 pass
270
271
272imgtool.add_command(keygen)
273imgtool.add_command(getpub)
Fabio Utzig4a5477a2019-05-27 15:45:08 -0300274imgtool.add_command(verify)
Fabio Utzige89841d2018-12-21 11:19:06 -0200275imgtool.add_command(sign)
Fabio Utzig25c6a152019-09-10 12:52:26 -0300276imgtool.add_command(version)
Fabio Utzige89841d2018-12-21 11:19:06 -0200277
278
279if __name__ == '__main__':
280 imgtool()