FCL/sf/incubator/python: src/tools/py2sis/ensymble/cmd_mergesis.py@ca70ae20a155 (annotated)

0 ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	1	#!/usr/bin/env python
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	2	# -- coding: utf-8 --
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	3
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	4	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	5	# cmd_mergesis.py - Ensymble command line tool, mergesis command
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	6	# Copyright 2006, 2007 Jussi Ylänen
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	7	#
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	8	# This file is part of Ensymble developer utilities for Symbian OS(TM).
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	9	#
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	10	# Ensymble is free software; you can redistribute it and/or modify
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	11	# it under the terms of the GNU General Public License as published by
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	12	# the Free Software Foundation; either version 2 of the License, or
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	13	# (at your option) any later version.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	14	#
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	15	# Ensymble is distributed in the hope that it will be useful,
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	16	# but WITHOUT ANY WARRANTY; without even the implied warranty of
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	17	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	18	# GNU General Public License for more details.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	19	#
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	20	# You should have received a copy of the GNU General Public License
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	21	# along with Ensymble; if not, write to the Free Software
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	22	# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	23	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	24
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	25	import sys
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	26	import os
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	27	import getopt
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	28	import getpass
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	29	import locale
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	30
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	31	import sisfile
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	32	import sisfield
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	33	import cryptutil
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	34
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	35
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	36	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	37	# Help texts
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	38	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	39
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	40	shorthelp = 'Merge several SIS packages into one'
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	41	longhelp = '''mergesis
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	42	[--cert=mycert.cer] [--privkey=mykey.key] [--passphrase=12345]
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	43	[--encoding=terminal,filesystem] [--verbose]
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	44	<infile> [mergefile]... <outfile>
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	45
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	46	Merge several SIS packages into one and sign the resulting SIS file with
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	47	the certificate provided. The first SIS file is used as the base file and
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	48	the remaining SIS files are added as unconditional embedded SIS files
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	49	into it. Any signatures present in the first SIS file are stripped.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	50
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	51	Options:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	52	infile - Path of the base SIS file
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	53	mergefile - Path of SIS file(s) to add to the base SIS file
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	54	outfile - Path of the resulting SIS file
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	55	cert - Certificate to use for signing (PEM format)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	56	privkey - Private key of the certificate (PEM format)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	57	passphrase - Pass phrase of the private key (insecure, use stdin instead)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	58	encoding - Local character encodings for terminal and filesystem
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	59	verbose - Print extra statistics
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	60
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	61	Merging SIS files that already contain other SIS files is not supported.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	62	'''
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	63
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	64
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	65	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	66	# Parameters
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	67	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	68
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	69	MAXPASSPHRASELENGTH = 256
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	70	MAXCERTIFICATELENGTH = 65536
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	71	MAXPRIVATEKEYLENGTH = 65536
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	72	MAXSISFILESIZE = 1024 * 1024 * 8 # Eight megabytes
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	73
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	74
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	75	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	76	# Global variables
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	77	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	78
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	79	debug = False
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	80
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	81
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	82	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	83	# Public module-level functions
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	84	##############################################################################
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	85
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	86	def run(pgmname, argv):
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	87	global debug
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	88
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	89	# Determine system character encodings.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	90	try:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	91	# getdefaultlocale() may sometimes return None.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	92	# Fall back to ASCII encoding in that case.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	93	terminalenc = locale.getdefaultlocale()[1] + ""
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	94	except TypeError:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	95	# Invalid locale, fall back to ASCII terminal encoding.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	96	terminalenc = "ascii"
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	97
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	98	try:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	99	# sys.getfilesystemencoding() was introduced in Python v2.3 and
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	100	# it can sometimes return None. Fall back to ASCII if something
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	101	# goes wrong.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	102	filesystemenc = sys.getfilesystemencoding() + ""
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	103	except (AttributeError, TypeError):
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	104	filesystemenc = "ascii"
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	105
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	106	try:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	107	gopt = getopt.gnu_getopt
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	108	except:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	109	# Python <v2.3, GNU-style parameter ordering not supported.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	110	gopt = getopt.getopt
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	111
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	112	# Parse command line arguments.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	113	short_opts = "a:k:p:e:vh"
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	114	long_opts = [
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	115	"cert=", "privkey=", "passphrase=",
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	116	"encoding=", "verbose", "debug", "help"
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	117	]
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	118	args = gopt(argv, short_opts, long_opts)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	119
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	120	opts = dict(args[0])
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	121	pargs = args[1]
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	122
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	123	if len(pargs) < 2:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	124	raise ValueError("wrong number of arguments")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	125
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	126	# Override character encoding of command line and filesystem.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	127	encs = opts.get("--encoding", opts.get("-e", "%s,%s" % (terminalenc,
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	128	filesystemenc)))
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	129	try:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	130	terminalenc, filesystemenc = encs.split(",")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	131	except (ValueError, TypeError):
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	132	raise ValueError("invalid encoding string '%s'" % encs)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	133
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	134	# Get input SIS file names.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	135	infiles = [f.decode(terminalenc).encode(filesystemenc) for f in pargs[:-1]]
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	136
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	137	# Determine output SIS file name.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	138	outfile = pargs[-1].decode(terminalenc).encode(filesystemenc)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	139	if os.path.isdir(outfile):
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	140	# Output to directory, use input file name.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	141	outfile = os.path.join(outfile, os.path.basename(infiles[0]))
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	142
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	143	# Get certificate and its private key file names.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	144	cert = opts.get("--cert", opts.get("-a", None))
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	145	privkey = opts.get("--privkey", opts.get("-k", None))
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	146	if cert != None and privkey != None:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	147	# Convert file names from terminal encoding to filesystem encoding.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	148	cert = cert.decode(terminalenc).encode(filesystemenc)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	149	privkey = privkey.decode(terminalenc).encode(filesystemenc)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	150
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	151	# Read certificate file.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	152	f = file(cert, "rb")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	153	certdata = f.read(MAXCERTIFICATELENGTH + 1)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	154	f.close()
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	155
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	156	if len(certdata) > MAXCERTIFICATELENGTH:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	157	raise ValueError("certificate file too large")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	158
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	159	# Read private key file.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	160	f = file(privkey, "rb")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	161	privkeydata = f.read(MAXPRIVATEKEYLENGTH + 1)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	162	f.close()
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	163
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	164	if len(privkeydata) > MAXPRIVATEKEYLENGTH:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	165	raise ValueError("private key file too large")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	166	elif cert == None and privkey == None:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	167	# No certificate given, use the Ensymble default certificate.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	168	# defaultcert.py is not imported when not needed. This speeds
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	169	# up program start-up a little.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	170	import defaultcert
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	171	certdata = defaultcert.cert
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	172	privkeydata = defaultcert.privkey
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	173
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	174	print ("%s: warning: no certificate given, using "
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	175	"insecure built-in one" % pgmname)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	176	else:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	177	raise ValueError("missing certificate or private key")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	178
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	179	# Get pass phrase. Pass phrase remains in terminal encoding.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	180	passphrase = opts.get("--passphrase", opts.get("-p", None))
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	181	if passphrase == None and privkey != None:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	182	# Private key given without "--passphrase" option, ask it.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	183	if sys.stdin.isatty():
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	184	# Standard input is a TTY, ask password interactively.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	185	passphrase = getpass.getpass("Enter private key pass phrase:")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	186	else:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	187	# Not connected to a TTY, read stdin non-interactively instead.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	188	passphrase = sys.stdin.read(MAXPASSPHRASELENGTH + 1)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	189
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	190	if len(passphrase) > MAXPASSPHRASELENGTH:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	191	raise ValueError("pass phrase too long")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	192
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	193	passphrase = passphrase.strip()
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	194
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	195	# Determine verbosity.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	196	verbose = False
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	197	if "--verbose" in opts.keys() or "-v" in opts.keys():
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	198	verbose = True
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	199
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	200	# Determine if debug output is requested.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	201	if "--debug" in opts.keys():
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	202	debug = True
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	203
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	204	# Enable debug output for OpenSSL-related functions.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	205	cryptutil.setdebug(True)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	206
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	207	# Ingredients for successful SIS generation:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	208	#
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	209	# terminalenc Terminal character encoding (autodetected)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	210	# filesystemenc File system name encoding (autodetected)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	211	# infiles A list of input SIS file names, filesystemenc encoded
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	212	# outfile Output SIS file name, filesystemenc encoded
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	213	# cert Certificate in PEM format
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	214	# privkey Certificate private key in PEM format
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	215	# passphrase Pass phrase of priv. key, terminalenc encoded string
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	216	# verbose Boolean indicating verbose terminal output
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	217
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	218	if verbose:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	219	print
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	220	print "Input SIS files %s" % " ".join(
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	221	[f.decode(filesystemenc).encode(terminalenc) for f in infiles])
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	222	print "Output SIS file %s" % (
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	223	outfile.decode(filesystemenc).encode(terminalenc))
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	224	print "Certificate %s" % ((cert and
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	225	cert.decode(filesystemenc).encode(terminalenc)) or "<default>")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	226	print "Private key %s" % ((privkey and
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	227	privkey.decode(filesystemenc).encode(terminalenc)) or "<default>")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	228	print
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	229
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	230	insis = []
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	231	for n in xrange(len(infiles)):
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	232	# Read input SIS files.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	233	f = file(infiles[n], "rb")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	234	instring = f.read(MAXSISFILESIZE + 1)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	235	f.close()
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	236
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	237	if len(instring) > MAXSISFILESIZE:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	238	raise ValueError("%s: input SIS file too large" % infiles[n])
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	239
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	240	if n == 0:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	241	# Store UIDs for later use.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	242	uids = instring[:16] # UID1, UID2, UID3 and UIDCRC
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	243
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	244	# Convert input SIS file to SISFields.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	245	sf, rlen = sisfield.SISField(instring[16:], False)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	246
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	247	# Ignore extra bytes after SIS file.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	248	if len(instring) > (rlen + 16):
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	249	print ("%s: %s: warning: %d extra bytes after SIS file (ignored)" %
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	250	(pgmname, infiles[n], (len(instring) - (rlen + 16))))
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	251
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	252	# Try to release some memory early.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	253	del instring
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	254
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	255	# Check that there are no embedded SIS files.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	256	if len(sf.Data.DataUnits) > 1:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	257	raise ValueError("%s: input SIS file contains "
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	258	"embedded SIS files" % infiles[n])
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	259
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	260	insis.append(sf)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	261
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	262	# Temporarily remove the SISDataIndex SISField from the first SISController.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	263	ctrlfield = insis[0].Controller.Data
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	264	didxfield = ctrlfield.DataIndex
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	265	ctrlfield.DataIndex = None
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	266
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	267	# Remove old signatures from the first SIS file.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	268	if len(ctrlfield.getsignatures()) > 0:
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	269	print ("%s: warning: removing old signatures "
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	270	"from the first input SIS file" % pgmname)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	271	ctrlfield.setsignatures([])
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	272
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	273	for n in xrange(1, len(insis)):
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	274	# Append SISDataUnit SISFields into SISData array of the first SIS file.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	275	insis[0].Data.DataUnits.append(insis[n].Data.DataUnits[0])
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	276
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	277	# Set data index in SISController SISField.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	278	insis[n].Controller.Data.DataIndex.DataIndex = n
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	279
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	280	# Embed SISController into SISInstallBlock of the first SIS file.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	281	ctrlfield.InstallBlock.EmbeddedSISFiles.append(insis[n].Controller.Data)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	282
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	283	# Calculate a signature of the modified SISController.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	284	string = ctrlfield.tostring()
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	285	string = sisfield.stripheaderandpadding(string)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	286	signature, algoid = sisfile.signstring(privkeydata, passphrase, string)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	287
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	288	# Create a SISCertificateChain SISField from certificate data.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	289	sf1 = sisfield.SISBlob(Data = cryptutil.certtobinary(certdata))
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	290	sf2 = sisfield.SISCertificateChain(CertificateData = sf1)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	291
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	292	# Create a SISSignature SISField from calculated signature.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	293	sf3 = sisfield.SISString(String = algoid)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	294	sf4 = sisfield.SISSignatureAlgorithm(AlgorithmIdentifier = sf3)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	295	sf5 = sisfield.SISBlob(Data = signature)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	296	sf6 = sisfield.SISSignature(SignatureAlgorithm = sf4, SignatureData = sf5)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	297
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	298	# Create a new SISSignatureCertificateChain SISField.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	299	sa = sisfield.SISArray(SISFields = [sf6])
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	300	sf7 = sisfield.SISSignatureCertificateChain(Signatures = sa,
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	301	CertificateChain = sf2)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	302
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	303	# Set certificate, restore data index.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	304	ctrlfield.Signature0 = sf7
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	305	ctrlfield.DataIndex = didxfield
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	306
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	307	# Convert SISFields to string.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	308	outstring = insis[0].tostring()
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	309
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	310	# Write output SIS file.
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	311	f = file(outfile, "wb")
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	312	f.write(uids)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	313	f.write(outstring)
ca70ae20a155 Base Python2.0 code Vijayan <ts.vijayan@nokia.com> parents: diff changeset	314	f.close()

author	Vijayan <ts.vijayan@nokia.com>
	Tue, 16 Feb 2010 10:07:05 +0530
changeset 0	ca70ae20a155
permissions	-rw-r--r--