2018-12-14 10:10:15 -05:00
|
|
|
#[macro_use] extern crate failure;
|
|
|
|
|
#[macro_use] extern crate nix;
|
|
|
|
|
#[macro_use] extern crate serde_derive;
|
|
|
|
|
#[macro_use] extern crate lazy_static;
|
|
|
|
|
|
|
|
|
|
#[macro_export]
|
|
|
|
|
macro_rules! info {
|
|
|
|
|
($e:expr) => { if $crate::verbose() { println!("[+] {}", $e);} };
|
|
|
|
|
($fmt:expr, $($arg:tt)+) => { if $crate::verbose() { println!("[+] {}", format!($fmt, $($arg)+));} };
|
|
|
|
|
}
|
|
|
|
|
#[macro_export]
|
|
|
|
|
macro_rules! warn {
|
|
|
|
|
($e:expr) => { println!("WARNING: {}", $e); };
|
|
|
|
|
($fmt:expr, $($arg:tt)+) => { println!("WARNING: {}", format!($fmt, $($arg)+)); };
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[macro_export]
|
|
|
|
|
macro_rules! notify {
|
|
|
|
|
($e:expr) => { println!("[+] {}", $e); };
|
|
|
|
|
($fmt:expr, $($arg:tt)+) => { println!("[+] {}", format!($fmt, $($arg)+)); };
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
use std::cell::RefCell;
|
|
|
|
|
use std::result;
|
|
|
|
|
|
|
|
|
|
use failure::Error;
|
|
|
|
|
|
|
|
|
|
thread_local! {
|
|
|
|
|
pub static VERBOSE: RefCell<bool> = RefCell::new(false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pub fn verbose() -> bool {
|
|
|
|
|
VERBOSE.with(|f| { *f.borrow() })
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pub fn set_verbose(val: bool) {
|
|
|
|
|
VERBOSE.with(|f| { *f.borrow_mut() = val });
|
|
|
|
|
}
|
|
|
|
|
|
2018-12-31 18:27:17 -05:00
|
|
|
pub fn format_error(err: &Error) -> String {
|
|
|
|
|
let mut output = err.to_string();
|
|
|
|
|
let mut prev = err.as_fail();
|
|
|
|
|
while let Some(next) = prev.cause() {
|
|
|
|
|
output.push_str(": ");
|
|
|
|
|
output.push_str(&next.to_string());
|
|
|
|
|
prev = next;
|
|
|
|
|
}
|
|
|
|
|
output
|
|
|
|
|
}
|
|
|
|
|
|
2018-12-14 10:10:15 -05:00
|
|
|
mod blockdev;
|
|
|
|
|
mod config;
|
|
|
|
|
mod keys;
|
|
|
|
|
mod cmdline;
|
|
|
|
|
mod header;
|
|
|
|
|
mod partition;
|
|
|
|
|
mod resource;
|
2018-12-31 18:27:17 -05:00
|
|
|
pub mod util;
|
|
|
|
|
pub mod verity;
|
|
|
|
|
mod mount;
|
2019-01-30 14:26:46 -05:00
|
|
|
mod realmfs;
|
2018-12-14 10:10:15 -05:00
|
|
|
|
2019-01-17 09:25:24 -05:00
|
|
|
pub use crate::config::OsRelease;
|
|
|
|
|
pub use crate::blockdev::BlockDev;
|
|
|
|
|
pub use crate::cmdline::CommandLine;
|
|
|
|
|
pub use crate::header::{ImageHeader,MetaInfo};
|
|
|
|
|
pub use crate::partition::Partition;
|
|
|
|
|
pub use crate::resource::ResourceImage;
|
|
|
|
|
pub use crate::keys::{KeyPair,PublicKey};
|
|
|
|
|
pub use crate::mount::Mount;
|
2019-01-30 14:26:46 -05:00
|
|
|
pub use crate::realmfs::RealmFS;
|
2018-12-31 18:27:17 -05:00
|
|
|
|
2019-01-05 20:38:57 -05:00
|
|
|
const DEVKEYS_HEX: &str =
|
|
|
|
|
"3053020101300506032b6570042204206ed2849c6c5168e1aebc50005ac3d4a4e84af4889e4e0189bb4c787e6ee0be49a1230321006b652764c62a1de35e7e37af2b743e9a5b82cee2211cf3091d2514441b417f5f";
|
|
|
|
|
|
|
|
|
|
pub fn devkeys() -> KeyPair {
|
|
|
|
|
KeyPair::from_hex(&DEVKEYS_HEX)
|
|
|
|
|
.expect("Error parsing built in dev channel keys")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pub fn public_key_for_channel(channel: &str) -> Result<Option<PublicKey>> {
|
|
|
|
|
if channel == "dev" {
|
|
|
|
|
return Ok(Some(devkeys().public_key()));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Look in /etc/os-release
|
|
|
|
|
if Some(channel) == OsRelease::citadel_channel() {
|
|
|
|
|
if let Some(hex) = OsRelease::citadel_image_pubkey() {
|
|
|
|
|
let pubkey = PublicKey::from_hex(hex)?;
|
|
|
|
|
return Ok(Some(pubkey));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Does kernel command line have citadel.channel=name:[hex encoded pubkey]
|
|
|
|
|
if Some(channel) == CommandLine::channel_name() {
|
|
|
|
|
if let Some(hex) = CommandLine::channel_pubkey() {
|
|
|
|
|
let pubkey = PublicKey::from_hex(hex)?;
|
|
|
|
|
return Ok(Some(pubkey))
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Ok(None)
|
|
|
|
|
}
|
2018-12-14 10:10:15 -05:00
|
|
|
|
|
|
|
|
pub type Result<T> = result::Result<T,Error>;
|
|
|
|
|
|
|
|
|
|
pub const BLOCK_SIZE: usize = 4096;
|
