forked from MarcoBuster/Magisk
50 lines
1.8 KiB
Java
50 lines
1.8 KiB
Java
package com.topjohnwu.signing;
|
|
|
|
import java.io.FileInputStream;
|
|
import java.io.InputStream;
|
|
|
|
public class BootSigner {
|
|
|
|
public static void main(String[] args) throws Exception {
|
|
if (args.length > 0 && "-verify".equals(args[0])) {
|
|
String certPath = "";
|
|
if (args.length >= 2) {
|
|
/* args[1] is the path to a public key certificate */
|
|
certPath = args[1];
|
|
}
|
|
boolean signed = SignBoot.verifySignature(System.in,
|
|
certPath.isEmpty() ? null : new FileInputStream(certPath));
|
|
System.exit(signed ? 0 : 1);
|
|
} else if (args.length > 0 && "-sign".equals(args[0])) {
|
|
InputStream cert = null;
|
|
InputStream key = null;
|
|
String name = "/boot";
|
|
|
|
if (args.length >= 3) {
|
|
cert = new FileInputStream(args[1]);
|
|
key = new FileInputStream(args[2]);
|
|
}
|
|
if (args.length == 2) {
|
|
name = args[1];
|
|
} else if (args.length >= 4) {
|
|
name = args[3];
|
|
}
|
|
|
|
boolean success = SignBoot.doSignature(name, System.in, System.out, cert, key);
|
|
System.exit(success ? 0 : 1);
|
|
} else {
|
|
System.err.println(
|
|
"BootSigner <actions> [args]\n" +
|
|
"Input from stdin, outputs to stdout\n" +
|
|
"\n" +
|
|
"Actions:\n" +
|
|
" -verify [x509.pem]\n" +
|
|
" verify image, cert is optional\n" +
|
|
" -sign [x509.pem] [pk8] [name]\n" +
|
|
" sign image, name, cert and key pair are optional\n" +
|
|
" name should be /boot (default) or /recovery\n"
|
|
);
|
|
}
|
|
}
|
|
}
|