summaryrefslogtreecommitdiffstats
path: root/verifier24/verifier.h
diff options
context:
space:
mode:
authorEthan Yonker <dees_troy@teamw.in>2016-08-29 18:50:34 +0200
committerEthan Yonker <dees_troy@teamw.in>2016-08-29 18:50:34 +0200
commit4bf259fab7214331920f3bde864a8e508831f299 (patch)
tree4c567746de62e80ef874677e4cb56fa406652621 /verifier24/verifier.h
parentSupport update binary log command (diff)
downloadandroid_bootable_recovery-4bf259fab7214331920f3bde864a8e508831f299.tar
android_bootable_recovery-4bf259fab7214331920f3bde864a8e508831f299.tar.gz
android_bootable_recovery-4bf259fab7214331920f3bde864a8e508831f299.tar.bz2
android_bootable_recovery-4bf259fab7214331920f3bde864a8e508831f299.tar.lz
android_bootable_recovery-4bf259fab7214331920f3bde864a8e508831f299.tar.xz
android_bootable_recovery-4bf259fab7214331920f3bde864a8e508831f299.tar.zst
android_bootable_recovery-4bf259fab7214331920f3bde864a8e508831f299.zip
Diffstat (limited to 'verifier24/verifier.h')
-rw-r--r--verifier24/verifier.h58
1 files changed, 58 insertions, 0 deletions
diff --git a/verifier24/verifier.h b/verifier24/verifier.h
new file mode 100644
index 000000000..17ab257ad
--- /dev/null
+++ b/verifier24/verifier.h
@@ -0,0 +1,58 @@
+/*
+ * Copyright (C) 2008 The Android Open Source Project
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+#ifndef _RECOVERY_VERIFIER_H
+#define _RECOVERY_VERIFIER_H
+
+#include "mincrypt/p256.h"
+#include "mincrypt/rsa.h"
+
+#define ASSUMED_UPDATE_BINARY_NAME "META-INF/com/google/android/update-binary"
+
+enum { INSTALL_SUCCESS, INSTALL_ERROR, INSTALL_CORRUPT };
+
+static const float VERIFICATION_PROGRESS_FRACTION = 0.25;
+
+typedef struct {
+ p256_int x;
+ p256_int y;
+} ECPublicKey;
+
+typedef struct {
+ typedef enum {
+ RSA,
+ EC,
+ } KeyType;
+
+ int hash_len; // SHA_DIGEST_SIZE (SHA-1) or SHA256_DIGEST_SIZE (SHA-256)
+ KeyType key_type;
+ RSAPublicKey* rsa;
+ ECPublicKey* ec;
+} Certificate;
+
+/* addr and length define a an update package file that has been
+ * loaded (or mmap'ed, or whatever) into memory. Verify that the file
+ * is signed and the signature matches one of the given keys. Return
+ * one of the constants below.
+ */
+int verify_file(unsigned char* addr, size_t length);
+
+Certificate* load_keys(const char* filename, int* numKeys);
+
+#define VERIFY_SUCCESS 0
+#define VERIFY_FAILURE 1
+
+#endif /* _RECOVERY_VERIFIER_H */