xref: /aosp_15_r20/external/avb/test/avbtool_signing_helper_test.py (revision d289c2ba6de359471b23d594623b906876bc48a0) 
1#!/usr/bin/env python3
2
3#
4# Copyright (C) 2016-2020 The Android Open Source Project
5#
6# Permission is hereby granted, free of charge, to any person
7# obtaining a copy of this software and associated documentation
8# files (the "Software"), to deal in the Software without
9# restriction, including without limitation the rights to use, copy,
10# modify, merge, publish, distribute, sublicense, and/or sell copies
11# of the Software, and to permit persons to whom the Software is
12# furnished to do so, subject to the following conditions:
13#
14# The above copyright notice and this permission notice shall be
15# included in all copies or substantial portions of the Software.
16#
17# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
18# EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
19# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
20# NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
21# BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
22# ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
23# CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
24# SOFTWARE.
25#
26
27# This shell-script checks the symbols in libavb.a and fails
28# if a reference not starting with avb_ is referenced. It's intended
29# to catch mistakes where the standard C library is inadvertently
30# used.
31
32import errno
33import os
34import subprocess
35import sys
36
37
38def rsa_signer(argv):
39  if len(argv) != 3:
40    sys.stderr.write('Wrong number of arguments: {} <alg> <pub key>\n'
41                     .format(argv[0]))
42    return errno.EINVAL
43
44  data = sys.stdin.buffer.read()
45  if not data:
46    sys.stderr.write('There is not input data\n')
47    return errno.EINVAL
48
49  if os.environ.get('SIGNING_HELPER_GENERATE_WRONG_SIGNATURE'):
50    # We're only called with this algorithm which signature size is 256.
51    assert sys.argv[1] == 'SHA256_RSA2048'
52    sys.stdout.buffer.write(b'X' * 256)
53    return 0
54
55  if not os.getenv('SIGNING_HELPER_TEST'):
56    sys.stderr.write('env SIGNING_HELPER_TEST is not set or empty\n')
57    return errno.EINVAL
58
59  test_file_name = os.environ['SIGNING_HELPER_TEST']
60  if os.path.isfile(test_file_name) and not os.access(test_file_name, os.W_OK):
61    sys.stderr.write('no permission to write into {} file\n'
62                     .format(test_file_name))
63    return errno.EACCES
64
65  p = subprocess.Popen(
66      ['openssl', 'rsautl', '-sign', '-inkey', argv[2], '-raw'],
67      stdin=subprocess.PIPE)
68
69  p.communicate(data)
70  retcode = p.wait()
71  if retcode != 0:
72    return retcode
73
74  with open(test_file_name, 'w') as f:
75    f.write('DONE')
76
77  return 0
78
79if __name__ == '__main__':
80  sys.exit(rsa_signer(sys.argv))
81