cloudFPGA (cF) API  1.0
The documentation of the source code of cloudFPGA (cF)
Functions
create_sig Namespace Reference

Functions

def get_file_hash (file_path)
 
def get_string_hash (inp_string)
 
def get_sig_string (dcp_hash, my_hash, current_cl_cert, new_pr_hash, rpt_hash, debugging_flow=None)
 
def main (new_bin_file_name, pr_verify_rpt_file_name)
 

Function Documentation

◆ get_file_hash()

def create_sig.get_file_hash (   file_path)

Definition at line 52 of file create_sig.py.

52 def get_file_hash(file_path):
53  # check right version
54  assert __THIS_FILE_ALGORITHM_VERSION == 'hc1'
55  sha256_hash = hashlib.sha256()
56  with open(file_path, 'rb') as f:
57  # Read and update hash string value in blocks of 4K
58  for byte_block in iter(lambda: f.read(4096), b""):
59  sha256_hash.update(byte_block)
60  return sha256_hash.hexdigest()
61 
62 
create_sig.get_file_hash
def get_file_hash(file_path)
Definition: create_sig.py:52
Here is the caller graph for this function:

◆ get_sig_string()

def create_sig.get_sig_string (   dcp_hash,
  my_hash,
  current_cl_cert,
  new_pr_hash,
  rpt_hash,
  debugging_flow = None 
)

Definition at line 70 of file create_sig.py.

70 def get_sig_string(dcp_hash, my_hash, current_cl_cert, new_pr_hash, rpt_hash, debugging_flow=None):
71  # check right version
72  assert __THIS_FILE_ALGORITHM_VERSION == 'hc1'
73  new_cert_string = str(dcp_hash) + str(my_hash) + str(current_cl_cert) + str(new_pr_hash) + str(rpt_hash)
74  cert = hashlib.sha384(new_cert_string.encode('utf-8')).hexdigest()
75  if debugging_flow is not None:
76  print("\tnew_cert_string: {}".format(new_cert_string))
77  return cert
78 
79 
create_sig.get_sig_string
def get_sig_string(dcp_hash, my_hash, current_cl_cert, new_pr_hash, rpt_hash, debugging_flow=None)
Definition: create_sig.py:70
tc_TcpEcho.str
str
Definition: tc_TcpEcho.py:310
Here is the caller graph for this function:

◆ get_string_hash()

def create_sig.get_string_hash (   inp_string)

Definition at line 63 of file create_sig.py.

63 def get_string_hash(inp_string):
64  # check right version
65  assert __THIS_FILE_ALGORITHM_VERSION == 'hc1'
66  sha256_hash = hashlib.sha256(inp_string.encode('utf-8'))
67  return sha256_hash.hexdigest()
68 
69 
create_sig.get_string_hash
def get_string_hash(inp_string)
Definition: create_sig.py:63
Here is the caller graph for this function:

◆ main()

def create_sig.main (   new_bin_file_name,
  pr_verify_rpt_file_name 
)

Definition at line 80 of file create_sig.py.

80 def main(new_bin_file_name, pr_verify_rpt_file_name):
81  # we print only on error
82  me_abs_dir = os.path.dirname(os.path.realpath(__file__))
83  me_abs_file = os.path.abspath(os.path.realpath(__file__))
84  cfp_json_file = me_abs_dir + __cfp_json_path__
85  debugging_flow = os.environ.get('CFP_DEBUGGING')
86  if debugging_flow is not None:
87  cfp_json_file = me_abs_dir + debugging_flow + '/cFp.json'
88  with open(cfp_json_file, 'r') as json_file:
89  cFp_data = json.load(json_file)
90 
91  # 1. check folders and file names
92  root_abs = os.path.realpath(me_abs_dir+"/../")
93  if debugging_flow is not None:
94  root_abs = os.path.realpath(me_abs_dir + debugging_flow + "/env/" + "/../")
95  cFp_data['abs_path'] = root_abs
96  dcps_folder = root_abs + __dcps_folder_name__
97  # folder should exist...
98  dcp_file_name = "3_top{}_STATIC.dcp".format(cFp_data[__mod_type_key__])
99  target_file_name = os.path.abspath(dcps_folder + "/" + dcp_file_name)
100  meta_file_name = "3_top{}_STATIC.json".format(cFp_data[__mod_type_key__])
101  target_meta_name = os.path.abspath(dcps_folder + "/" + meta_file_name)
102  # check preconditions and stop if necessary
103  if not os.path.isfile(target_file_name) or not os.path.isfile(target_meta_name):
104  print("[cFBuild] WARNING: {} or {} does not exist, so no signature can be created. Stop.".format(dcp_file_name, meta_file_name))
105  # return so that the tcl can continue
106  return 0
107 
108  new_bin_file_path = os.path.abspath(dcps_folder + '/' + new_bin_file_name)
109  if not os.path.isfile(new_bin_file_path):
110  print("[cFBuild] ERROR: {} is not a file. STOP.".format(new_bin_file_path))
111  exit(1)
112  ignore_pr_verify = False
113  if pr_verify_rpt_file_name == __ignore_key__:
114  ignore_pr_verify = True
115  if not ignore_pr_verify:
116  pr_verify_rpt_file_path = os.path.abspath(dcps_folder + '/' + pr_verify_rpt_file_name)
117  if not os.path.isfile(pr_verify_rpt_file_path):
118  print("[cFBuild] ERROR: {} is not a file. STOP.".format(pr_verify_rpt_file_path))
119  exit(1)
120  rpt_file_lines = []
121  with open(pr_verify_rpt_file_path) as rpt_in:
122  for line in rpt_in:
123  rpt_file_lines.append(line.rstrip())
124  pr_verify_str = ''.join(rpt_file_lines)
125 
126  sig_file_path = os.path.abspath(new_bin_file_path + '.' + __sig_file_ending__)
127  new_sig = {'build_id': __THIS_FILE_VERSION_NUMBER__, 'algorithm': __THIS_FILE_ALGORITHM_VERSION,
128  'file': new_bin_file_name}
129 
130  with open(target_meta_name, 'r') as meta_file:
131  cur_meta = json.load(meta_file)
132  current_cl_cert = cur_meta['cert']
133  pl_id = cur_meta['id']
134  # for Mantles
135  if 'pl_id' in cur_meta:
136  pl_id = cur_meta['pl_id']
137  new_sig['pl_id'] = pl_id
138 
139  # crete new cert
140  dcp_hash = get_file_hash(target_file_name)
141  my_hash = get_file_hash(me_abs_file)
142  new_pr_hash = get_file_hash(new_bin_file_path)
143  if not ignore_pr_verify:
144  # rpt_hash = get_file_hash(pr_verify_rpt_file_path) # not file!
145  rpt_hash = get_string_hash(pr_verify_str)
146  else:
147  rpt_hash = __ignore_hash__
148 
149  if debugging_flow is not None:
150  print("\tdcp hash: {}".format(dcp_hash))
151  print("\trpt hash: {}".format(rpt_hash))
152  print("\tmy hash: {}".format(my_hash))
153  print("\tsig_file_path: {}".format(sig_file_path))
154 
155  new_sig['sig'] = get_sig_string(dcp_hash, my_hash, current_cl_cert, new_pr_hash, rpt_hash,
156  debugging_flow=debugging_flow)
157  new_sig['hash'] = new_pr_hash # to check for transport errors first?
158 
159  if not ignore_pr_verify:
160  rpt_sum_line = rpt_file_lines[-1]
161  new_sig['verify_rpt'] = rpt_sum_line
162  if dcp_file_name in rpt_sum_line:
163  new_sig['verify'] = 'OK'
164  else:
165  new_sig['verify'] = 'NOK'
166  else:
167  new_sig['verify_rpt'] = __ignore_key__
168  new_sig['verify'] = 'OK'
169 
170  with open(sig_file_path, 'w') as outfile:
171  json.dump(new_sig, outfile)
172 
173  # save current pr_verify
174  if not ignore_pr_verify:
175  verify_report_name = os.path.abspath(dcps_folder + '/5_' + new_bin_file_name[2:-4] + '.' + __rpt_file_ending__)
176  os.system("cp -f {} {}".format(pr_verify_rpt_file_path, verify_report_name))
177 
178  return 0
179 
180 
create_sig.main
def main(new_bin_file_name, pr_verify_rpt_file_name)
Definition: create_sig.py:80
Here is the call graph for this function: