1#!/usr/bin/env python 2# 3# Copyright (C) 2016 The Android Open Source Project 4# 5# Licensed under the Apache License, Version 2.0 (the "License"); 6# you may not use this file except in compliance with the License. 7# You may obtain a copy of the License at 8# 9# http://www.apache.org/licenses/LICENSE-2.0 10# 11# Unless required by applicable law or agreed to in writing, software 12# distributed under the License is distributed on an "AS IS" BASIS, 13# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 14# See the License for the specific language governing permissions and 15# limitations under the License. 16 17""" 18Verify a given OTA package with the specifed certificate. 19""" 20 21from __future__ import print_function 22 23import argparse 24import logging 25import re 26import subprocess 27import sys 28import zipfile 29from hashlib import sha1 30from hashlib import sha256 31 32import common 33 34logger = logging.getLogger(__name__) 35 36 37def CertUsesSha256(cert): 38 """Check if the cert uses SHA-256 hashing algorithm.""" 39 40 cmd = ['openssl', 'x509', '-text', '-noout', '-in', cert] 41 cert_dump = common.RunAndCheckOutput(cmd, stdout=subprocess.PIPE) 42 43 algorithm = re.search(r'Signature Algorithm: ([a-zA-Z0-9]+)', cert_dump) 44 assert algorithm, "Failed to identify the signature algorithm." 45 46 assert not algorithm.group(1).startswith('ecdsa'), ( 47 'This script doesn\'t support verifying ECDSA signed package yet.') 48 49 return algorithm.group(1).startswith('sha256') 50 51 52def VerifyPackage(cert, package): 53 """Verify the given package with the certificate. 54 55 (Comments from bootable/recovery/verifier.cpp:) 56 57 An archive with a whole-file signature will end in six bytes: 58 59 (2-byte signature start) $ff $ff (2-byte comment size) 60 61 (As far as the ZIP format is concerned, these are part of the 62 archive comment.) We start by reading this footer, this tells 63 us how far back from the end we have to start reading to find 64 the whole comment. 65 """ 66 67 print('Package: %s' % (package,)) 68 print('Certificate: %s' % (cert,)) 69 70 # Read in the package. 71 with open(package, 'rb') as package_file: 72 package_bytes = package_file.read() 73 74 length = len(package_bytes) 75 assert length >= 6, "Not big enough to contain footer." 76 77 footer = bytearray(package_bytes[-6:]) 78 assert footer[2] == 0xff and footer[3] == 0xff, "Footer is wrong." 79 80 signature_start_from_end = (footer[1] << 8) + footer[0] 81 assert signature_start_from_end > 6, "Signature start is in the footer." 82 83 signature_start = length - signature_start_from_end 84 85 # Determine how much of the file is covered by the signature. This is 86 # everything except the signature data and length, which includes all of the 87 # EOCD except for the comment length field (2 bytes) and the comment data. 88 comment_len = (footer[5] << 8) + footer[4] 89 signed_len = length - comment_len - 2 90 91 print('Package length: %d' % (length,)) 92 print('Comment length: %d' % (comment_len,)) 93 print('Signed data length: %d' % (signed_len,)) 94 print('Signature start: %d' % (signature_start,)) 95 96 use_sha256 = CertUsesSha256(cert) 97 print('Use SHA-256: %s' % (use_sha256,)) 98 99 h = sha256() if use_sha256 else sha1() 100 h.update(package_bytes[:signed_len]) 101 package_digest = h.hexdigest().lower() 102 103 print('Digest: %s' % (package_digest,)) 104 105 # Get the signature from the input package. 106 signature = package_bytes[signature_start:-6] 107 sig_file = common.MakeTempFile(prefix='sig-') 108 with open(sig_file, 'wb') as f: 109 f.write(signature) 110 111 # Parse the signature and get the hash. 112 cmd = ['openssl', 'asn1parse', '-inform', 'DER', '-in', sig_file] 113 sig = common.RunAndCheckOutput(cmd, stdout=subprocess.PIPE) 114 115 digest_line = sig.rstrip().split('\n')[-1] 116 digest_string = digest_line.split(':')[3] 117 digest_file = common.MakeTempFile(prefix='digest-') 118 with open(digest_file, 'wb') as f: 119 f.write(bytearray.fromhex(digest_string)) 120 121 # Verify the digest by outputing the decrypted result in ASN.1 structure. 122 decrypted_file = common.MakeTempFile(prefix='decrypted-') 123 cmd = ['openssl', 'rsautl', '-verify', '-certin', '-inkey', cert, 124 '-in', digest_file, '-out', decrypted_file] 125 common.RunAndCheckOutput(cmd, stdout=subprocess.PIPE) 126 127 # Parse the output ASN.1 structure. 128 cmd = ['openssl', 'asn1parse', '-inform', 'DER', '-in', decrypted_file] 129 decrypted_output = common.RunAndCheckOutput(cmd, stdout=subprocess.PIPE) 130 131 digest_line = decrypted_output.rstrip().split('\n')[-1] 132 digest_string = digest_line.split(':')[3].lower() 133 134 # Verify that the two digest strings match. 135 assert package_digest == digest_string, "Verification failed." 136 137 # Verified successfully upon reaching here. 138 print('\nWhole package signature VERIFIED\n') 139 140 141def VerifyAbOtaPayload(cert, package): 142 """Verifies the payload and metadata signatures in an A/B OTA payload.""" 143 package_zip = zipfile.ZipFile(package, 'r', allowZip64=True) 144 if 'payload.bin' not in package_zip.namelist(): 145 common.ZipClose(package_zip) 146 return 147 148 print('Verifying A/B OTA payload signatures...') 149 150 # Dump pubkey from the certificate. 151 pubkey = common.MakeTempFile(prefix="key-", suffix=".pem") 152 with open(pubkey, 'w') as pubkey_fp: 153 pubkey_fp.write(common.ExtractPublicKey(cert)) 154 155 package_dir = common.MakeTempDir(prefix='package-') 156 157 # Signature verification with delta_generator. 158 payload_file = package_zip.extract('payload.bin', package_dir) 159 cmd = ['delta_generator', 160 '--in_file=' + payload_file, 161 '--public_key=' + pubkey] 162 common.RunAndCheckOutput(cmd) 163 common.ZipClose(package_zip) 164 165 # Verified successfully upon reaching here. 166 print('\nPayload signatures VERIFIED\n\n') 167 168 169def main(): 170 parser = argparse.ArgumentParser() 171 parser.add_argument('certificate', help='The certificate to be used.') 172 parser.add_argument('package', help='The OTA package to be verified.') 173 args = parser.parse_args() 174 175 common.InitLogging() 176 177 VerifyPackage(args.certificate, args.package) 178 VerifyAbOtaPayload(args.certificate, args.package) 179 180 181if __name__ == '__main__': 182 try: 183 main() 184 finally: 185 common.Cleanup() 186