Home Explore Help
Register Sign In
RD_Software
/
ark1668ed-bsp
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
ark1668ed-bsp
/
u-boot
/
tools
/
key2dtsi.py

key2dtsi.py 2.3 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. #!/usr/bin/env python3
    2. 

  2. # SPDX-License-Identifier: GPL-2.0-only
    3. 

  3. #
    4. 

  4. # Public key to dtsi converter.
    5. 

  5. #
    6. 

  6. # Copyright (c) Siemens AG, 2022
    7. 

  7. #
    8. 

  8. 

  9. from argparse import ArgumentParser, FileType
    10. 

  10. from os.path import basename, splitext
    11. 

  11. from Cryptodome.PublicKey import RSA
    12. 

  12. from Cryptodome.Util.number import inverse
    13. 

  13. 

  14. def int_to_bytestr(n, length=None):
    15. 

  15.     if not length:
    16. 

  16.         length = (n.bit_length() + 7) // 8
    17. 

  17.     byte_array = n.to_bytes(length, 'big')
    18. 

  18.     return ' '.join(['{:02x}'.format(byte) for byte in byte_array])
    19. 

  19. 

  20. ap = ArgumentParser(description='Public key to dtsi converter')
    21. 

  21. 

  22. ap.add_argument('--hash', '-H', default='sha256',
    23. 

  23.                 help='hash to be used with key (default: sha256)')
    24. 

  24. ap.add_argument('--required-conf', '-c', action='store_true',
    25. 

  25.                 help='mark key required for configuration')
    26. 

  26. ap.add_argument('--required-image', '-i', action='store_true',
    27. 

  27.                 help='mark key required for image')
    28. 

  28. ap.add_argument('--spl', '-s', action='store_true',
    29. 

  29.                 help='mark key for usage in SPL')
    30. 

  30. ap.add_argument('key_file', metavar='KEY_FILE', type=FileType('r'),
    31. 

  31.                 help='key file (formats: X.509, PKCS#1, OpenSSH)')
    32. 

  32. ap.add_argument('dtsi_file', metavar='DTSI_FILE', type=FileType('w'),
    33. 

  33.                 help='dtsi output file')
    34. 

  34. 

  35. args = ap.parse_args()
    36. 

  36. 

  37. key_name, _ = splitext(basename(args.key_file.name))
    38. 

  38. 

  39. key_data = args.key_file.read()
    40. 

  40. key = RSA.importKey(key_data)
    41. 

  41. 

  42. r_squared = (2**key.size_in_bits())**2 % key.n
    43. 

  43. n0_inverse = 2**32 - inverse(key.n, 2**32)
    44. 

  44. 

  45. out = args.dtsi_file
    46. 

  46. out.write('/ {\n')
    47. 

  47. out.write('\tsignature {\n')
    48. 

  48. out.write('\t\tkey-{} {{\n'.format(key_name))
    49. 

  49. out.write('\t\t\tkey-name-hint = "{}";\n'.format(key_name))
    50. 

  50. out.write('\t\t\talgo = "{},rsa{}";\n'.format(args.hash, key.size_in_bits()))
    51. 

  51. out.write('\t\t\trsa,num-bits = <{}>;\n'.format(key.size_in_bits()))
    52. 

  52. out.write('\t\t\trsa,modulus = [{}];\n'.format(int_to_bytestr(key.n)))
    53. 

  53. out.write('\t\t\trsa,exponent = [{}];\n'.format(int_to_bytestr(key.e, 8)))
    54. 

  54. out.write('\t\t\trsa,r-squared = [{}];\n'.format(int_to_bytestr(r_squared)))
    55. 

  55. out.write('\t\t\trsa,n0-inverse = <0x{:x}>;\n'.format(n0_inverse))
    56. 

  56. if args.required_conf:
    57. 

  57.     out.write('\t\t\trequired = "conf";\n')
    58. 

  58. elif args.required_image:
    59. 

  59.     out.write('\t\t\trequired = "image";\n')
    60. 

  60. if args.spl:
    61. 

  61.     out.write('\t\t\tu-boot,dm-spl;\n')
    62. 

  62. out.write('\t\t};\n')
    63. 

  63. out.write('\t};\n')
    64. 

  64. out.write('};\n')
    65.