Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
kb-light
/
ffho-firmware-build
sklonowany z FreifunkHochstift/ffho-firmware-build
1
0
Forkuj 0
Pliki
Gałąź: trusted_builds
Gałęzie Tagi
ffho-firmwar...
/
check.sh

check.sh 4.6 KB
Bezpośredni odnośnik Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146 
  1. #!/bin/bash
    2. 

  2. # (c) 2015 Helge Jung <hej@c3pb.de>
    3. 

  3. #
    4. 

  4. # This script is controlled by environment variables,
    5. 

  5. # only the first being mandatory:
    6. 

  6. #
    7. 

  7. # CANDIDATE       = directory in which to find the to-be-checked firmware images
    8. 

  8. # REFERENCE       = directory of your build firmware, defaults to './src/images'
    9. 

  9. # MANIFEST        = if given, use files referenced in Gluon manifest file
    10. 

  10. #                   if left empty (unset), 'find' is used to examine all '.bin' files
    11. 

  11. # VERBOSE         = 0 (default) or 1, putting lots of debug output
    12. 

  12. #
    13. 

  13. 

  14. MY_DIR=$(dirname $0)
    15. 

  15. MY_DIR=$(readlink -f "$MY_DIR")
    16. 

  16. 

  17. pushd "$MY_DIR" > /dev/null
    18. 

  18. . functions.sh
    19. 

  19. 

  20. # check for necessary tools
    21. 

  21. for tool in bbe binwalk find gawk unsquashfs; do
    22. 

  22. 	[ -x "$(which $tool)" ] || abort "Missing necessary tool '$tool'."
    23. 

  23. done
    24. 

  24. 

  25. # check that CANDIDATE dir is given and existing
    26. 

  26. [ "_$CANDIDATE" == "_" ] && abort "Please specify CANDIDATE environment variable point to the directory of to-be-checked firmware images."
    27. 

  27. [ ! -d "$CANDIDATE" ] && abort "The directory indicated by CANDIDATE was not found."
    28. 

  28. CANDIDATE=$(readlink -f $CANDIDATE)
    29. 

  29. 

  30. # set defaults for environment variables
    31. 

  31. [ -n "${REFERENCE}" ] || REFERENCE="./src/images"
    32. 

  32. if [ "_$VERBOSE" == "_1" ]; then VERBOSE=1; else VERBOSE=0; fi
    33. 

  33. 

  34. # assemble file list
    35. 

  35. declare -a FILELIST
    36. 

  36. if [ -n "$MANIFEST" ]; then
    37. 

  37. 	progress "Assembling file list from manifest file ..."
    38. 

  38. 	FILELIST=()
    39. 

  39. else
    40. 

  40. 	[ ! -d "$REFERENCE" ] && abort "The REFERENCE directory was not found. Have you built the firmware?"
    41. 

  41. 	REFERENCE=$(readlink -f $REFERENCE)
    42. 

  42. 

  43. 	progress "Assembling file list ..."
    44. 

  44. 	FILELIST=($(find "$REFERENCE" -type f -name "*.bin"))
    45. 

  45. fi
    46. 

  46. 

  47. COUNT=${#FILELIST[*]}
    48. 

  48. [ "$COUNT" = 0 ] && abort "No firmware files found. Please check that you built software in the REFERENCE dir."
    49. 

  49. 

  50. info "Need to check $COUNT files."
    51. 

  51. 

  52. # setup temp dir for checking
    53. 

  53. TEMPDIR=$(mktemp -d)
    54. 

  54. debug "Temporary dir = $TEMPDIR"
    55. 

  55. 

  56. # check each file
    57. 

  57. IDX=0
    58. 

  58. declare -a ERRORS
    59. 

  59. 

  60. filter_timestamp() {
    61. 

  61. 	file=$1
    62. 

  62. 	cp "$file" "$file.orig"
    63. 

  63. 	egrep -ao '(Mon|Tue|Wed|Thu|Fri|Sat|Sun) (Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec) [0-9]{2} [0-9]{2}:[0-9]{2}:[0-9]{2} UTC [0-9]{4}' "$file" | sort -u | while read ts; do
    64. 

  64. 		debug "Normalizing timestamp: '$ts'"
    65. 

  65. 		bbe -e "s/$ts/Abc Def 12 34:56:78 UTC 9010/" -o "${file}" "${file}.orig"
    66. 

  66. 	done
    67. 

  67. }
    68. 

  68. 

  69. for ref in ${FILELIST[*]}; do
    70. 

  70.         IDX=$(($IDX + 1))
    71. 

  71.         NAME=`basename "$ref"`
    72. 

  72. 	[ $VERBOSE -eq 1 ] && progress "[${IDX}/${COUNT}] $NAME"
    73. 

  73. 

  74. 	if [ ! -r "$ref" ]; then
    75. 

  75. 		ERRORS=( "${ERRORS[@]}" "$NAME: missing reference file ($ref)" )
    76. 

  76. 		continue
    77. 

  77. 	fi
    78. 

  78. 

  79.         cand=$(readlink -f "${CANDIDATE}/${NAME}")
    80. 

  80. 	if [ ! -r "$cand" ]; then
    81. 

  81. 		ERRORS=( "${ERRORS[@]}" "$NAME: missing candidate file in $CANDIDATE" )
    82. 

  82. 		continue
    83. 

  83. 	fi
    84. 

  84. 

  85. 	pushd "$TEMPDIR" > /dev/null
    86. 

  86. 

  87. 	rm -Rf candidate ; mkdir candidate
    88. 

  88. 	rm -Rf reference ; mkdir reference
    89. 

  89. 

  90. 	# TODO: check output of binwalk that there are only the two expected parts
    91. 

  91. 	cd candidate
    92. 

  92. 	binwalk -qe "$cand" 2>/dev/null
    93. 

  93. 	cd ../reference
    94. 

  94. 	binwalk -qe "$ref" 2>/dev/null
    95. 

  95. 	cd ..
    96. 

  96. 

  97. 	# check ROM part
    98. 

  98. 	debug "Filtering timestamps in ROM part (uboot+kernel) ..."
    99. 

  99. 	filter_timestamp candidate/200
    100. 

  100. 	filter_timestamp reference/200
    101. 

  101. 

  102. 	hash_rom_cand=$(sha512sum candidate/200)
    103. 

  103. 	hash_rom_ref=$(sha512sum reference/200)
    104. 

  104.         if [ "$hash_rom_cand" != "$hash_rom_ref" ]; then
    105. 

  105. 		ERRORS=( "${ERRORS[@]}" "$NAME: ROM part mismatch" )
    106. 

  106. 

  107. 		debug "Calling vbindiff for your visual pleasure."
    108. 

  108. 		vbindiff reference/200 candidate/200
    109. 

  109. 	fi
    110. 

  110. 

  111. 	# extract root filesystem
    112. 

  112. 	for dir in candidate reference; do
    113. 

  113. 		cd $dir
    114. 

  114. 		unsquashfs -n -f *.squashfs > /dev/null
    115. 

  115. 		cd ..
    116. 

  116. 	done
    117. 

  117. 

  118. 	fsdiff=$(diff -ur reference/squashfs-root candidate/squashfs-root 2>&1)
    119. 

  119. 	# TODO: intelligent diff statt 'diff -r', Verhalten abhängig vom Dateinamen
    120. 

  120. 	#   squashfs-root/usr/lib/opkg/info/*.list: erst sortieren, dann diffen
    121. 

  121. 	#   squashfs-root/usr/lib/opkg/info/*.control: Unterschied in "Installed Size" ignorieren (kommt vermutlich durch unterschiedliche Reihenfolge und Block-Alignments?)
    122. 

  122.         #   squashfs-root/usr/lib/opkg/status: Delta in "Installed-Time: " Zeilen ignorieren
    123. 

  123. 	#   squashfs-root/usr/lib/lua/luci/version.lua: neoraider/openwrt hauen, die Änderung im luciversion-String kommt durch manuelles git patching
    124. 

  124. 	#   else: binary file compare, sha512sum
    125. 

  125. 	if [ "$?" -ne 0 ]; then
    126. 

  126. 		ERRORS=( "${ERRORS[@]}" "$NAME: Filesystems do not match" )
    127. 

  127. 		echo $fsdiff | less
    128. 

  128. 	fi
    129. 

  129. 

  130. 	popd > /dev/null
    131. 

  131. done
    132. 

  132. rm -R "$TEMPDIR"
    133. 

  133. 

  134. # check if everything was fine - if yes, exit clean+smooth
    135. 

  135. if [ ${#ERRORS[*]} -eq 0 ]; then
    136. 

  136. 	success "Everything OK, what a nice and lovely built firmware \o/"
    137. 

  137. 	exit 0
    138. 

  138. fi
    139. 

  139. 

  140. # got some errors - output them
    141. 

  141. for errmsg in "${ERRORS[@]}"; do
    142. 

  142.     echo $errmsg
    143. 

  143. done
    144. 

  144. 

  145. abort "Firmware check failed, see above :("
    146. 

  146.