projects / openwrt / staging / wigyori.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
base-files: fix ucert verification
[openwrt/staging/wigyori.git] / package / base-files / files / lib / upgrade / fwtool.sh
1 fwtool_check_signature() {
2 [ $# -gt 1 ] && return 1
3
4 [ ! -x /usr/bin/ucert ] && {
5 if [ "$REQUIRE_IMAGE_SIGNATURE" = 1 ]; then
6 return 1
7 else
8 return 0
9 fi
10 }
11
12 if ! fwtool -q -s /tmp/sysupgrade.ucert "$1"; then
13 echo "Image signature not found"
14 [ "$REQUIRE_IMAGE_SIGNATURE" = 1 -a "$FORCE" != 1 ] && {
15 echo "Use sysupgrade -F to override this check when downgrading or flashing to vendor firmware"
16 }
17 [ "$REQUIRE_IMAGE_SIGNATURE" = 1 ] && return 1
18 return 0
19 fi
20
21 fwtool -q -T -s /dev/null "$1" | \
22 ucert -V -m - -c "/tmp/sysupgrade.ucert" -P /etc/opkg/keys
23
24 return $?
25 }
26
27 fwtool_check_image() {
28 [ $# -gt 1 ] && return 1
29
30 . /usr/share/libubox/jshn.sh
31
32 if ! fwtool -q -i /tmp/sysupgrade.meta "$1"; then
33 echo "Image metadata not found"
34 [ "$REQUIRE_IMAGE_METADATA" = 1 -a "$FORCE" != 1 ] && {
35 echo "Use sysupgrade -F to override this check when downgrading or flashing to vendor firmware"
36 }
37 [ "$REQUIRE_IMAGE_METADATA" = 1 ] && return 1
38 return 0
39 fi
40
41 json_load "$(cat /tmp/sysupgrade.meta)" || {
42 echo "Invalid image metadata"
43 return 1
44 }
45
46 device="$(cat /tmp/sysinfo/board_name)"
47
48 json_select supported_devices || return 1
49
50 json_get_keys dev_keys
51 for k in $dev_keys; do
52 json_get_var dev "$k"
53 [ "$dev" = "$device" ] && return 0
54 done
55
56 echo "Device $device not supported by this image"
57 echo -n "Supported devices:"
58 for k in $dev_keys; do
59 json_get_var dev "$k"
60 echo -n " $dev"
61 done
62 echo
63
64 return 1
65 }
Staging tree of Zoltan Herpai