[review] Add script to sign bootstrap TAs

Signed-off-by: Jens Wiklander <[email protected]>

scripts/sign_bsta.py

@@ -1,77 +1,81 @@
 #!/usr/bin/env python
 #
-# Copyright (c) 2015, Linaro Limited
+# Copyright (c) 2017, Linaro Limited
 # All rights reserved.
 #
 # SPDX-License-Identifier: BSD-2-Clause
 #
 
+
 def uuid_parse(s):
-	from uuid import UUID
-	return UUID(s)
+    from uuid import UUID
+    return UUID(s)
+
 
 def int_parse(str):
-	return int(str, 0)
+    return int(str, 0)
+
 
 def get_args():
-	from argparse import ArgumentParser
-
-	parser = ArgumentParser()
-	parser.add_argument('--uuid', required=True, \
-			type=uuid_parse, help='UUID of TA')
-	parser.add_argument('--version', \
-			type=int_parse, default=0, help='Version')
-	parser.add_argument('--key', required=True, help='Name of key file')
-	parser.add_argument('--in', required=True, dest='inf', \
-			help='Name of in file')
-	parser.add_argument('--out', required=True, help='Name of out file')
-	return parser.parse_args()
+    from argparse import ArgumentParser
+
+    parser = ArgumentParser()
+    parser.add_argument('--uuid', required=True,
+                        type=uuid_parse, help='UUID of TA')
+    parser.add_argument('--version', type=int_parse, default=0, help='Version')
+    parser.add_argument('--key', required=True, help='Name of key file')
+    parser.add_argument('--in', required=True, dest='inf',
+                        help='Name of in file')
+    parser.add_argument('--out', required=True, help='Name of out file')
+    return parser.parse_args()
+
 
 def main():
-	from Crypto.Signature import PKCS1_v1_5
-	from Crypto.Hash import SHA256
-	from Crypto.PublicKey import RSA
-	import struct
-
-	args = get_args()
-
-	f = open(args.key, 'rb')
-	key = RSA.importKey(f.read())
-	f.close()
-
-	f = open(args.inf, 'rb')
-	img = f.read()
-	f.close()
-
-	signer = PKCS1_v1_5.new(key)
-	h = SHA256.new()
-
-	digest_len = h.digest_size
-	sig_len = len(signer.sign(h))
-	img_size = len(img)
-
-	magic = 0x4f545348	# SHDR_MAGIC
-	img_type = 1		# SHDR_BOOTSTRAP_TA
-	algo = 0x70004830	# TEE_ALG_RSASSA_PKCS1_V1_5_SHA256
-	shdr = struct.pack('<IIIIHH', \
-		magic, img_type, img_size, algo, digest_len, sig_len)
-	shdr_uuid = args.uuid.bytes
-	shdr_version = struct.pack('<I', args.version);
-
-	h.update(shdr)
-	h.update(shdr_uuid)
-	h.update(shdr_version)
-	h.update(img)
-	sig = signer.sign(h)
-
-	f = open(args.out, 'wb')
-	f.write(shdr)
-	f.write(h.digest())
-	f.write(sig)
-	f.write(shdr_uuid)
-	f.write(shdr_version)
-	f.write(img)
-	f.close()
+    from Crypto.Signature import PKCS1_v1_5
+    from Crypto.Hash import SHA256
+    from Crypto.PublicKey import RSA
+    import struct
+
+    args = get_args()
+
+    f = open(args.key, 'rb')
+    key = RSA.importKey(f.read())
+    f.close()
+
+    f = open(args.inf, 'rb')
+    img = f.read()
+    f.close()
+
+    signer = PKCS1_v1_5.new(key)
+    h = SHA256.new()
+
+    digest_len = h.digest_size
+    sig_len = len(signer.sign(h))
+    img_size = len(img)
+
+    magic = 0x4f545348    # SHDR_MAGIC
+    img_type = 1        # SHDR_BOOTSTRAP_TA
+    algo = 0x70004830    # TEE_ALG_RSASSA_PKCS1_V1_5_SHA256
+    shdr = struct.pack('<IIIIHH',
+                       magic, img_type, img_size, algo, digest_len, sig_len)
+    shdr_uuid = args.uuid.bytes
+    shdr_version = struct.pack('<I', args.version)
+
+    h.update(shdr)
+    h.update(shdr_uuid)
+    h.update(shdr_version)
+    h.update(img)
+    sig = signer.sign(h)
+
+    f = open(args.out, 'wb')
+    f.write(shdr)
+    f.write(h.digest())
+    f.write(sig)
+    f.write(shdr_uuid)
+    f.write(shdr_version)
+    f.write(img)
+    f.close()
+
 
 if __name__ == "__main__":
-	main()
+    main()