2025-08-19 22:46:09 +08:00
|
|
|
use crate::compress::{compress, decompress};
|
|
|
|
|
use crate::cpio::{cpio_commands, print_cpio_usage};
|
|
|
|
|
use crate::dtb::{DtbAction, dtb_commands, print_dtb_usage};
|
2025-08-20 22:25:19 -07:00
|
|
|
use crate::ffi::{BootImage, FileFormat, cleanup, repack, split_image_dtb, unpack};
|
2025-08-19 22:46:09 +08:00
|
|
|
use crate::patch::hexpatch;
|
|
|
|
|
use crate::payload::extract_boot_from_payload;
|
2025-08-20 22:25:19 -07:00
|
|
|
use crate::sign::{sha1_hash, sign_boot_image};
|
2025-08-19 22:46:09 +08:00
|
|
|
use argh::FromArgs;
|
|
|
|
|
use base::{
|
2025-08-20 22:25:19 -07:00
|
|
|
CmdArgs, EarlyExitExt, LoggedResult, MappedFile, ResultExt, Utf8CStr, WriteExt,
|
|
|
|
|
cmdline_logging, cstr, libc, libc::umask, log_err,
|
2025-08-19 22:46:09 +08:00
|
|
|
};
|
|
|
|
|
use std::ffi::c_char;
|
2025-08-20 22:25:19 -07:00
|
|
|
use std::io::{Seek, SeekFrom, Write};
|
2025-08-19 22:46:09 +08:00
|
|
|
use std::str::FromStr;
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
struct Cli {
|
|
|
|
|
#[argh(subcommand)]
|
|
|
|
|
action: Action,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand)]
|
|
|
|
|
enum Action {
|
|
|
|
|
Unpack(Unpack),
|
|
|
|
|
Repack(Repack),
|
|
|
|
|
Verify(Verify),
|
|
|
|
|
Sign(Sign),
|
|
|
|
|
Extract(Extract),
|
|
|
|
|
HexPatch(HexPatch),
|
|
|
|
|
Cpio(Cpio),
|
|
|
|
|
Dtb(Dtb),
|
|
|
|
|
Split(Split),
|
|
|
|
|
Sha1(Sha1),
|
|
|
|
|
Cleanup(Cleanup),
|
|
|
|
|
Compress(Compress),
|
|
|
|
|
Decompress(Decompress),
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "unpack")]
|
|
|
|
|
struct Unpack {
|
|
|
|
|
#[argh(switch, short = 'n')]
|
|
|
|
|
no_decompress: bool,
|
|
|
|
|
#[argh(switch, short = 'h')]
|
|
|
|
|
dump_header: bool,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
img: String,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "repack")]
|
|
|
|
|
struct Repack {
|
|
|
|
|
#[argh(switch, short = 'n')]
|
|
|
|
|
no_compress: bool,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
img: String,
|
|
|
|
|
#[argh(positional, default = r#""new-boot.img".to_string()"#)]
|
|
|
|
|
out: String,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "verify")]
|
|
|
|
|
struct Verify {
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
img: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
cert: Option<String>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "sign")]
|
|
|
|
|
struct Sign {
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
img: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
args: Vec<String>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "extract")]
|
|
|
|
|
struct Extract {
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
payload: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
args: Vec<String>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "hexpatch")]
|
|
|
|
|
struct HexPatch {
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
file: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
src: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
dest: String,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "cpio")]
|
|
|
|
|
struct Cpio {
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
file: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
cmds: Vec<String>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "dtb")]
|
|
|
|
|
struct Dtb {
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
file: String,
|
|
|
|
|
#[argh(subcommand)]
|
|
|
|
|
action: DtbAction,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "split")]
|
|
|
|
|
struct Split {
|
|
|
|
|
#[argh(switch, short = 'n')]
|
|
|
|
|
no_decompress: bool,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
file: String,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "sha1")]
|
|
|
|
|
struct Sha1 {
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
file: String,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "cleanup")]
|
|
|
|
|
struct Cleanup {}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "compress")]
|
|
|
|
|
struct Compress {
|
|
|
|
|
#[argh(option, short = 'f', default = r#""gzip".to_string()"#)]
|
|
|
|
|
format: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
file: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
out: Option<String>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(FromArgs)]
|
|
|
|
|
#[argh(subcommand, name = "decompress")]
|
|
|
|
|
struct Decompress {
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
file: String,
|
|
|
|
|
#[argh(positional)]
|
|
|
|
|
out: Option<String>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn print_usage(cmd: &str) {
|
|
|
|
|
eprintln!(
|
|
|
|
|
r#"MagiskBoot - Boot Image Modification Tool
|
|
|
|
|
|
2025-08-20 22:25:19 -07:00
|
|
|
Usage: {0} <action> [args...]
|
2025-08-19 22:46:09 +08:00
|
|
|
|
|
|
|
|
Supported actions:
|
|
|
|
|
unpack [-n] [-h] <bootimg>
|
|
|
|
|
Unpack <bootimg> to its individual components, each component to
|
|
|
|
|
a file with its corresponding file name in the current directory.
|
|
|
|
|
Supported components: kernel, kernel_dtb, ramdisk.cpio, second,
|
|
|
|
|
dtb, extra, and recovery_dtbo.
|
|
|
|
|
By default, each component will be decompressed on-the-fly.
|
|
|
|
|
If '-n' is provided, all decompression operations will be skipped;
|
|
|
|
|
each component will remain untouched, dumped in its original format.
|
|
|
|
|
If '-h' is provided, the boot image header information will be
|
|
|
|
|
dumped to the file 'header', which can be used to modify header
|
|
|
|
|
configurations during repacking.
|
|
|
|
|
Return values:
|
|
|
|
|
0:valid 1:error 2:chromeos
|
|
|
|
|
|
|
|
|
|
repack [-n] <origbootimg> [outbootimg]
|
|
|
|
|
Repack boot image components using files from the current directory
|
|
|
|
|
to [outbootimg], or 'new-boot.img' if not specified. Current directory
|
|
|
|
|
should only contain required files for [outbootimg], or incorrect
|
|
|
|
|
[outbootimg] may be produced.
|
|
|
|
|
<origbootimg> is the original boot image used to unpack the components.
|
|
|
|
|
By default, each component will be automatically compressed using its
|
|
|
|
|
corresponding format detected in <origbootimg>. If a component file
|
|
|
|
|
in the current directory is already compressed, then no addition
|
|
|
|
|
compression will be performed for that specific component.
|
|
|
|
|
If '-n' is provided, all compression operations will be skipped.
|
|
|
|
|
If env variable PATCHVBMETAFLAG is set to true, all disable flags in
|
|
|
|
|
the boot image's vbmeta header will be set.
|
|
|
|
|
|
|
|
|
|
verify <bootimg> [x509.pem]
|
|
|
|
|
Check whether the boot image is signed with AVB 1.0 signature.
|
|
|
|
|
Optionally provide a certificate to verify whether the image is
|
|
|
|
|
signed by the public key certificate.
|
|
|
|
|
Return value:
|
|
|
|
|
0:valid 1:error
|
|
|
|
|
|
|
|
|
|
sign <bootimg> [name] [x509.pem pk8]
|
|
|
|
|
Sign <bootimg> with AVB 1.0 signature.
|
|
|
|
|
Optionally provide the name of the image (default: '/boot').
|
|
|
|
|
Optionally provide the certificate/private key pair for signing.
|
|
|
|
|
If the certificate/private key pair is not provided, the AOSP
|
|
|
|
|
verity key bundled in the executable will be used.
|
|
|
|
|
|
|
|
|
|
extract <payload.bin> [partition] [outfile]
|
|
|
|
|
Extract [partition] from <payload.bin> to [outfile].
|
|
|
|
|
If [outfile] is not specified, then output to '[partition].img'.
|
|
|
|
|
If [partition] is not specified, then attempt to extract either
|
|
|
|
|
'init_boot' or 'boot'. Which partition was chosen can be determined
|
|
|
|
|
by whichever 'init_boot.img' or 'boot.img' exists.
|
|
|
|
|
<payload.bin> can be '-' to be STDIN.
|
|
|
|
|
|
|
|
|
|
hexpatch <file> <hexpattern1> <hexpattern2>
|
|
|
|
|
Search <hexpattern1> in <file>, and replace it with <hexpattern2>
|
|
|
|
|
|
|
|
|
|
cpio <incpio> [commands...]
|
|
|
|
|
Do cpio commands to <incpio> (modifications are done in-place).
|
|
|
|
|
Each command is a single argument; add quotes for each command.
|
|
|
|
|
See "cpio --help" for supported commands.
|
|
|
|
|
|
|
|
|
|
dtb <file> <action> [args...]
|
|
|
|
|
Do dtb related actions to <file>.
|
|
|
|
|
See "dtb --help" for supported actions.
|
|
|
|
|
|
|
|
|
|
split [-n] <file>
|
|
|
|
|
Split image.*-dtb into kernel + kernel_dtb.
|
|
|
|
|
If '-n' is provided, decompression operations will be skipped;
|
|
|
|
|
the kernel will remain untouched, split in its original format.
|
|
|
|
|
|
|
|
|
|
sha1 <file>
|
|
|
|
|
Print the SHA1 checksum for <file>
|
|
|
|
|
|
|
|
|
|
cleanup
|
|
|
|
|
Cleanup the current working directory
|
|
|
|
|
|
|
|
|
|
compress[=format] <infile> [outfile]
|
|
|
|
|
Compress <infile> with [format] to [outfile].
|
|
|
|
|
<infile>/[outfile] can be '-' to be STDIN/STDOUT.
|
|
|
|
|
If [format] is not specified, then gzip will be used.
|
|
|
|
|
If [outfile] is not specified, then <infile> will be replaced
|
|
|
|
|
with another file suffixed with a matching file extension.
|
|
|
|
|
Supported formats:
|
|
|
|
|
{1}
|
|
|
|
|
|
|
|
|
|
decompress <infile> [outfile]
|
|
|
|
|
Detect format and decompress <infile> to [outfile].
|
|
|
|
|
<infile>/[outfile] can be '-' to be STDIN/STDOUT.
|
|
|
|
|
If [outfile] is not specified, then <infile> will be replaced
|
|
|
|
|
with another file removing its archive format file extension.
|
|
|
|
|
Supported formats:
|
|
|
|
|
{1}
|
|
|
|
|
"#,
|
|
|
|
|
cmd,
|
|
|
|
|
FileFormat::formats()
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
2025-08-20 22:25:19 -07:00
|
|
|
fn verify_cmd(image: &Utf8CStr, cert: Option<&Utf8CStr>) -> bool {
|
|
|
|
|
let image = BootImage::new(image);
|
|
|
|
|
match cert {
|
|
|
|
|
None => {
|
|
|
|
|
// Boot image parsing already checks if the image is signed
|
|
|
|
|
image.is_signed()
|
|
|
|
|
}
|
|
|
|
|
Some(_) => {
|
|
|
|
|
// Provide a custom certificate and re-verify
|
|
|
|
|
image.verify(cert).is_ok()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn sign_cmd(
|
|
|
|
|
image: &Utf8CStr,
|
|
|
|
|
name: Option<&Utf8CStr>,
|
|
|
|
|
cert: Option<&Utf8CStr>,
|
|
|
|
|
key: Option<&Utf8CStr>,
|
|
|
|
|
) -> LoggedResult<()> {
|
|
|
|
|
let img = BootImage::new(image);
|
|
|
|
|
let name = name.unwrap_or(cstr!("/boot"));
|
|
|
|
|
let sig = sign_boot_image(img.payload(), name, cert, key)?;
|
|
|
|
|
let tail_off = img.tail_off();
|
|
|
|
|
drop(img);
|
|
|
|
|
let mut fd = image.open(libc::O_WRONLY | libc::O_CLOEXEC)?;
|
|
|
|
|
fd.seek(SeekFrom::Start(tail_off))?;
|
|
|
|
|
fd.write_all(&sig)?;
|
|
|
|
|
let current = fd.stream_position()?;
|
|
|
|
|
let eof = fd.seek(SeekFrom::End(0))?;
|
|
|
|
|
if eof > current {
|
|
|
|
|
// Zero out rest of the file
|
|
|
|
|
fd.seek(SeekFrom::Start(current))?;
|
|
|
|
|
fd.write_zeros((eof - current) as usize)?;
|
|
|
|
|
}
|
|
|
|
|
Ok(())
|
|
|
|
|
}
|
|
|
|
|
|
2025-08-19 22:46:09 +08:00
|
|
|
#[unsafe(no_mangle)]
|
|
|
|
|
pub extern "C" fn main(argc: i32, argv: *const *const c_char, _envp: *const *const c_char) -> i32 {
|
|
|
|
|
cmdline_logging();
|
|
|
|
|
unsafe { umask(0) };
|
|
|
|
|
let res: LoggedResult<()> = try {
|
2025-08-15 17:44:30 -07:00
|
|
|
let mut cmds = CmdArgs::new(argc, argv).0;
|
2025-08-19 22:46:09 +08:00
|
|
|
if argc < 2 {
|
|
|
|
|
print_usage(cmds.first().unwrap_or(&"magiskboot"));
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if cmds[1].starts_with("--") {
|
|
|
|
|
cmds[1] = &cmds[1][2..];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if let Some(fmt) = str::strip_prefix(cmds[1], "compress=") {
|
|
|
|
|
cmds.insert(1, "compress");
|
|
|
|
|
cmds.insert(2, "-f");
|
|
|
|
|
cmds[3] = fmt;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let mut cli = Cli::from_args(&[cmds[0]], &cmds[1..]).on_early_exit(|| match cmds.get(1) {
|
|
|
|
|
Some(&"dtb") => print_dtb_usage(),
|
|
|
|
|
Some(&"cpio") => print_cpio_usage(),
|
|
|
|
|
_ => print_usage(cmds[0]),
|
|
|
|
|
});
|
|
|
|
|
match cli.action {
|
|
|
|
|
Action::Unpack(Unpack {
|
|
|
|
|
no_decompress,
|
|
|
|
|
dump_header,
|
|
|
|
|
ref mut img,
|
|
|
|
|
}) => return unpack(Utf8CStr::from_string(img), no_decompress, dump_header),
|
|
|
|
|
Action::Repack(Repack {
|
|
|
|
|
no_compress,
|
|
|
|
|
ref mut img,
|
|
|
|
|
ref mut out,
|
|
|
|
|
}) => {
|
|
|
|
|
repack(
|
|
|
|
|
Utf8CStr::from_string(img),
|
|
|
|
|
Utf8CStr::from_string(out),
|
|
|
|
|
no_compress,
|
|
|
|
|
);
|
|
|
|
|
}
|
2025-08-20 22:25:19 -07:00
|
|
|
Action::Verify(Verify { mut img, mut cert }) => {
|
|
|
|
|
return if verify_cmd(
|
|
|
|
|
Utf8CStr::from_string(&mut img),
|
|
|
|
|
cert.as_mut().map(Utf8CStr::from_string),
|
|
|
|
|
) {
|
|
|
|
|
0
|
|
|
|
|
} else {
|
|
|
|
|
1
|
2025-08-19 22:46:09 +08:00
|
|
|
};
|
|
|
|
|
}
|
2025-08-20 22:25:19 -07:00
|
|
|
Action::Sign(Sign { mut img, mut args }) => {
|
|
|
|
|
let mut iter = args.iter_mut();
|
|
|
|
|
sign_cmd(
|
|
|
|
|
Utf8CStr::from_string(&mut img),
|
|
|
|
|
iter.next().map(Utf8CStr::from_string),
|
|
|
|
|
iter.next().map(Utf8CStr::from_string),
|
|
|
|
|
iter.next().map(Utf8CStr::from_string),
|
|
|
|
|
)?;
|
2025-08-19 22:46:09 +08:00
|
|
|
}
|
|
|
|
|
Action::Extract(Extract {
|
|
|
|
|
ref payload,
|
|
|
|
|
ref args,
|
|
|
|
|
}) => {
|
|
|
|
|
if args.len() > 2 {
|
2025-08-21 21:05:35 -07:00
|
|
|
log_err!("Too many arguments")?;
|
2025-08-19 22:46:09 +08:00
|
|
|
}
|
|
|
|
|
extract_boot_from_payload(
|
|
|
|
|
payload,
|
|
|
|
|
args.first().map(|x| x.as_str()),
|
|
|
|
|
args.get(1).map(|x| x.as_str()),
|
|
|
|
|
)
|
|
|
|
|
.log_with_msg(|w| w.write_str("Failed to extract from payload"))?;
|
|
|
|
|
}
|
|
|
|
|
Action::HexPatch(HexPatch {
|
|
|
|
|
ref mut file,
|
|
|
|
|
ref mut src,
|
|
|
|
|
ref mut dest,
|
|
|
|
|
}) => {
|
|
|
|
|
if !hexpatch(
|
|
|
|
|
file,
|
|
|
|
|
Utf8CStr::from_string(src),
|
|
|
|
|
Utf8CStr::from_string(dest),
|
|
|
|
|
) {
|
2025-08-21 21:05:35 -07:00
|
|
|
log_err!("Failed to patch")?;
|
2025-08-19 22:46:09 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
Action::Cpio(Cpio {
|
|
|
|
|
ref mut file,
|
|
|
|
|
ref mut cmds,
|
|
|
|
|
}) => {
|
|
|
|
|
return if cpio_commands(file, cmds)
|
|
|
|
|
.log_with_msg(|w| w.write_str("Failed to process cpio"))?
|
|
|
|
|
{
|
|
|
|
|
0
|
|
|
|
|
} else {
|
|
|
|
|
1
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
Action::Dtb(Dtb {
|
|
|
|
|
ref mut file,
|
|
|
|
|
ref action,
|
|
|
|
|
}) => {
|
|
|
|
|
return if dtb_commands(file, action)
|
|
|
|
|
.log_with_msg(|w| w.write_str("Failed to process dtb"))?
|
|
|
|
|
{
|
|
|
|
|
0
|
|
|
|
|
} else {
|
|
|
|
|
1
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
Action::Split(Split {
|
|
|
|
|
no_decompress,
|
|
|
|
|
ref mut file,
|
|
|
|
|
}) => {
|
|
|
|
|
return split_image_dtb(Utf8CStr::from_string(file), no_decompress);
|
|
|
|
|
}
|
|
|
|
|
Action::Sha1(Sha1 { ref mut file }) => {
|
|
|
|
|
let file = MappedFile::open(Utf8CStr::from_string(file))?;
|
|
|
|
|
let mut sha1 = [0u8; 20];
|
|
|
|
|
sha1_hash(file.as_ref(), &mut sha1);
|
|
|
|
|
for byte in &sha1 {
|
|
|
|
|
print!("{byte:02x}");
|
|
|
|
|
}
|
|
|
|
|
println!();
|
|
|
|
|
}
|
|
|
|
|
Action::Cleanup(_) => {
|
|
|
|
|
eprintln!("Cleaning up...");
|
|
|
|
|
cleanup();
|
|
|
|
|
}
|
|
|
|
|
Action::Decompress(Decompress {
|
|
|
|
|
ref mut file,
|
|
|
|
|
ref mut out,
|
|
|
|
|
}) => {
|
|
|
|
|
decompress(file, out.as_mut())?;
|
|
|
|
|
}
|
|
|
|
|
Action::Compress(Compress {
|
|
|
|
|
ref mut file,
|
|
|
|
|
ref format,
|
|
|
|
|
ref mut out,
|
|
|
|
|
}) => {
|
|
|
|
|
compress(
|
|
|
|
|
FileFormat::from_str(format).unwrap_or(FileFormat::UNKNOWN),
|
|
|
|
|
file,
|
|
|
|
|
out.as_mut(),
|
|
|
|
|
)?;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
if res.is_ok() { 0 } else { 1 }
|
|
|
|
|
}
|
